forked from cybrespace/mastodon
		
	Fix AccountNote not having a maximum length (#16942)
This commit is contained in:
		
							parent
							
								
									39cdf61ab7
								
							
						
					
					
						commit
						87085a5152
					
				
					 4 changed files with 86 additions and 12 deletions
				
			
		|  | @ -17,4 +17,5 @@ class AccountNote < ApplicationRecord | |||
|   belongs_to :target_account, class_name: 'Account' | ||||
| 
 | ||||
|   validates :account_id, uniqueness: { scope: :target_account_id } | ||||
|   validates :comment, length: { maximum: 2_000 } | ||||
| end | ||||
|  |  | |||
|  | @ -53,10 +53,16 @@ class MoveWorker | |||
| 
 | ||||
|       new_note = AccountNote.find_by(account: note.account, target_account: @target_account) | ||||
|       if new_note.nil? | ||||
|         begin | ||||
|           AccountNote.create!(account: note.account, target_account: @target_account, comment: [text, note.comment].join("\n")) | ||||
|         rescue ActiveRecord::RecordInvalid | ||||
|           AccountNote.create!(account: note.account, target_account: @target_account, comment: note.comment) | ||||
|         end | ||||
|       else | ||||
|         new_note.update!(comment: [text, note.comment, "\n", new_note.comment].join("\n")) | ||||
|       end | ||||
|     rescue ActiveRecord::RecordInvalid | ||||
|       nil | ||||
|     rescue => e | ||||
|       @deferred_error = e | ||||
|     end | ||||
|  |  | |||
							
								
								
									
										48
									
								
								spec/controllers/api/v1/accounts/notes_controller_spec.rb
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										48
									
								
								spec/controllers/api/v1/accounts/notes_controller_spec.rb
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,48 @@ | |||
| require 'rails_helper' | ||||
| 
 | ||||
| describe Api::V1::Accounts::NotesController do | ||||
|   render_views | ||||
| 
 | ||||
|   let(:user)    { Fabricate(:user, account: Fabricate(:account, username: 'alice')) } | ||||
|   let(:token)   { Fabricate(:accessible_access_token, resource_owner_id: user.id, scopes: 'write:accounts') } | ||||
|   let(:account) { Fabricate(:account) } | ||||
|   let(:comment) { 'foo' } | ||||
| 
 | ||||
|   before do | ||||
|     allow(controller).to receive(:doorkeeper_token) { token } | ||||
|   end | ||||
| 
 | ||||
|   describe 'POST #create' do | ||||
|     subject do | ||||
|       post :create, params: { account_id: account.id, comment: comment } | ||||
|     end | ||||
| 
 | ||||
|     context 'when account note has reasonable length' do | ||||
|       let(:comment) { 'foo' } | ||||
| 
 | ||||
|       it 'returns http success' do | ||||
|         subject | ||||
|         expect(response).to have_http_status(200) | ||||
|       end | ||||
| 
 | ||||
|       it 'updates account note' do | ||||
|         subject | ||||
|         expect(AccountNote.find_by(account_id: user.account.id, target_account_id: account.id).comment).to eq comment | ||||
|       end | ||||
|     end | ||||
| 
 | ||||
|     context 'when account note exceends allowed length' do | ||||
|       let(:comment) { 'a' * 2_001 } | ||||
| 
 | ||||
|       it 'returns 422' do | ||||
|         subject | ||||
|         expect(response).to have_http_status(422) | ||||
|       end | ||||
| 
 | ||||
|       it 'does not create account note' do | ||||
|         subject | ||||
|         expect(AccountNote.where(account_id: user.account.id, target_account_id: account.id).exists?).to be_falsey | ||||
|       end | ||||
|     end | ||||
|   end | ||||
| end | ||||
|  | @ -9,7 +9,8 @@ describe MoveWorker do | |||
|   let(:source_account)   { Fabricate(:account, protocol: :activitypub, domain: 'example.com') } | ||||
|   let(:target_account)   { Fabricate(:account, protocol: :activitypub, domain: 'example.com') } | ||||
|   let(:local_user)       { Fabricate(:user) } | ||||
|   let!(:account_note)    { Fabricate(:account_note, account: local_user.account, target_account: source_account) } | ||||
|   let(:comment)          { 'old note prior to move' } | ||||
|   let!(:account_note)    { Fabricate(:account_note, account: local_user.account, target_account: source_account, comment: comment) } | ||||
| 
 | ||||
|   let(:block_service) { double } | ||||
| 
 | ||||
|  | @ -26,7 +27,8 @@ describe MoveWorker do | |||
|   end | ||||
| 
 | ||||
|   shared_examples 'user note handling' do | ||||
|     it 'copies user note' do | ||||
|     context 'when user notes are short enough' do | ||||
|       it 'copies user note with prelude' do | ||||
|         subject.perform(source_account.id, target_account.id) | ||||
|         expect(AccountNote.find_by(account: account_note.account, target_account: target_account).comment).to include(source_account.acct) | ||||
|         expect(AccountNote.find_by(account: account_note.account, target_account: target_account).comment).to include(account_note.comment) | ||||
|  | @ -42,6 +44,23 @@ describe MoveWorker do | |||
|       end | ||||
|     end | ||||
| 
 | ||||
|     context 'when user notes are too long' do | ||||
|       let(:comment) { 'abc' * 333 } | ||||
| 
 | ||||
|       it 'copies user note without prelude' do | ||||
|         subject.perform(source_account.id, target_account.id) | ||||
|         expect(AccountNote.find_by(account: account_note.account, target_account: target_account).comment).to include(account_note.comment) | ||||
|       end | ||||
| 
 | ||||
|       it 'keeps user notes unchanged' do | ||||
|         new_account_note = AccountNote.create!(account: account_note.account, target_account: target_account, comment: 'new note prior to move') | ||||
| 
 | ||||
|         subject.perform(source_account.id, target_account.id) | ||||
|         expect(AccountNote.find_by(account: account_note.account, target_account: target_account).comment).to include(new_account_note.comment) | ||||
|       end | ||||
|     end | ||||
|   end | ||||
| 
 | ||||
|   shared_examples 'block and mute handling' do | ||||
|     it 'makes blocks carry over and add a note' do | ||||
|       subject.perform(source_account.id, target_account.id) | ||||
|  |  | |||
		Loading…
	
	Add table
		
		Reference in a new issue