Hi! <script>alert('Hello, world!');</script>
{ test("should get a challenge", async () => { - const response = await fakeRequest("/api/v1/challenges", { - method: "POST", - }); + await using client = await generateClient(); - expect(response.status).toBe(200); + const { data, ok } = await client.getChallenge(); - const body = await response.json(); - - expect(body).toMatchObject({ + expect(ok).toBe(true); + expect(data).toMatchObject({ id: expect.any(String), algorithm: expect.any(String), challenge: expect.any(String), diff --git a/api/api/v1/challenges/index.ts b/api/api/v1/challenges/index.ts index 7a6ea9a3..6f945f61 100644 --- a/api/api/v1/challenges/index.ts +++ b/api/api/v1/challenges/index.ts @@ -1,6 +1,7 @@ import { apiRoute, auth } from "@/api"; import { generateChallenge } from "@/challenges"; -import { createRoute, z } from "@hono/zod-openapi"; +import { createRoute } from "@hono/zod-openapi"; +import { Challenge } from "@versia/client-ng/schemas"; import { ApiError } from "~/classes/errors/api-error"; import { config } from "~/config.ts"; import { ErrorSchema } from "~/types/api"; @@ -21,14 +22,7 @@ const route = createRoute({ description: "Challenge", content: { "application/json": { - schema: z.object({ - id: z.string(), - algorithm: z.enum(["SHA-1", "SHA-256", "SHA-512"]), - challenge: z.string(), - maxnumber: z.number().optional(), - salt: z.string(), - signature: z.string(), - }), + schema: Challenge, }, }, }, diff --git a/api/api/v1/custom_emojis/index.test.ts b/api/api/v1/custom_emojis/index.test.ts index e6479baa..eca78e36 100644 --- a/api/api/v1/custom_emojis/index.test.ts +++ b/api/api/v1/custom_emojis/index.test.ts @@ -2,53 +2,42 @@ import { afterAll, beforeAll, describe, expect, test } from "bun:test"; import { db } from "@versia/kit/db"; import { Emojis } from "@versia/kit/tables"; import { inArray } from "drizzle-orm"; -import { fakeRequest, getTestUsers } from "~/tests/utils"; +import { generateClient, getTestUsers } from "~/tests/utils"; -const { users, tokens, deleteUsers } = await getTestUsers(2); +const { users, deleteUsers } = await getTestUsers(2); // Make user 2 an admin beforeAll(async () => { await users[1].update({ isAdmin: true }); // Upload one emoji as admin, then one as each user - const response = await fakeRequest("/api/v1/emojis", { - headers: { - Authorization: `Bearer ${tokens[1].data.accessToken}`, - "Content-Type": "application/json", - }, - method: "POST", - body: JSON.stringify({ - shortcode: "test1", - element: "https://cdn.versia.social/logo.webp", + await using client1 = await generateClient(users[1]); + + const { ok } = await client1.uploadEmoji( + "test1", + new URL("https://cdn.versia.social/logo.webp"), + { global: true, - }), - }); - - expect(response.status).toBe(201); - - await fakeRequest("/api/v1/emojis", { - headers: { - Authorization: `Bearer ${tokens[0].data.accessToken}`, - "Content-Type": "application/json", }, - method: "POST", - body: JSON.stringify({ - shortcode: "test2", - element: "https://cdn.versia.social/logo.webp", - }), - }); + ); - await fakeRequest("/api/v1/emojis", { - headers: { - Authorization: `Bearer ${tokens[1].data.accessToken}`, - "Content-Type": "application/json", - }, - method: "POST", - body: JSON.stringify({ - shortcode: "test3", - element: "https://cdn.versia.social/logo.webp", - }), - }); + expect(ok).toBe(true); + + await using client0 = await generateClient(users[0]); + + const { ok: ok2 } = await client0.uploadEmoji( + "test2", + new URL("https://cdn.versia.social/logo.webp"), + ); + + expect(ok2).toBe(true); + + const { ok: ok3 } = await client1.uploadEmoji( + "test3", + new URL("https://cdn.versia.social/logo.webp"), + ); + + expect(ok3).toBe(true); }); afterAll(async () => { @@ -61,31 +50,23 @@ afterAll(async () => { describe("/api/v1/custom_emojis", () => { test("should return all global emojis", async () => { - const response = await fakeRequest("/api/v1/custom_emojis", { - headers: { - Authorization: `Bearer ${tokens[1].data.accessToken}`, - }, - }); + await using client = await generateClient(users[1]); - expect(response.status).toBe(200); - expect(response.headers.get("content-type")).toContain( - "application/json", - ); - - const emojis = await response.json(); + const { data, ok } = await client.getInstanceCustomEmojis(); + expect(ok).toBe(true); // Should contain test1 and test2, but not test2 - expect(emojis).toContainEqual( + expect(data).toContainEqual( expect.objectContaining({ shortcode: "test1", }), ); - expect(emojis).not.toContainEqual( + expect(data).not.toContainEqual( expect.objectContaining({ shortcode: "test2", }), ); - expect(emojis).toContainEqual( + expect(data).toContainEqual( expect.objectContaining({ shortcode: "test3", }), @@ -93,31 +74,23 @@ describe("/api/v1/custom_emojis", () => { }); test("should return all user emojis", async () => { - const response = await fakeRequest("/api/v1/custom_emojis", { - headers: { - Authorization: `Bearer ${tokens[0].data.accessToken}`, - }, - }); + await using client = await generateClient(users[0]); - expect(response.status).toBe(200); - expect(response.headers.get("content-type")).toContain( - "application/json", - ); - - const emojis = await response.json(); + const { data, ok } = await client.getInstanceCustomEmojis(); + expect(ok).toBe(true); // Should contain test1 and test2, but not test3 - expect(emojis).toContainEqual( + expect(data).toContainEqual( expect.objectContaining({ shortcode: "test1", }), ); - expect(emojis).toContainEqual( + expect(data).toContainEqual( expect.objectContaining({ shortcode: "test2", }), ); - expect(emojis).not.toContainEqual( + expect(data).not.toContainEqual( expect.objectContaining({ shortcode: "test3", }), @@ -125,27 +98,24 @@ describe("/api/v1/custom_emojis", () => { }); test("should return all global emojis when signed out", async () => { - const response = await fakeRequest("/api/v1/custom_emojis"); + await using client = await generateClient(); - expect(response.status).toBe(200); - expect(response.headers.get("content-type")).toContain( - "application/json", - ); + const { data, ok } = await client.getInstanceCustomEmojis(); - const emojis = await response.json(); + expect(ok).toBe(true); // Should contain test1, but not test2 or test3 - expect(emojis).toContainEqual( + expect(data).toContainEqual( expect.objectContaining({ shortcode: "test1", }), ); - expect(emojis).not.toContainEqual( + expect(data).not.toContainEqual( expect.objectContaining({ shortcode: "test2", }), ); - expect(emojis).not.toContainEqual( + expect(data).not.toContainEqual( expect.objectContaining({ shortcode: "test3", }), diff --git a/packages/client/schemas.ts b/packages/client/schemas.ts index 7af54629..f44e960c 100644 --- a/packages/client/schemas.ts +++ b/packages/client/schemas.ts @@ -34,6 +34,6 @@ export { Status, Mention, StatusSource } from "./schemas/status.ts"; export { Tag } from "./schemas/tag.ts"; export { Token } from "./schemas/token.ts"; export { TermsOfService } from "./schemas/tos.ts"; -export { Role, NoteReaction, SSOConfig } from "./schemas/versia.ts"; +export { Role, NoteReaction, SSOConfig, Challenge } from "./schemas/versia.ts"; export { Id, iso631, zBoolean } from "./schemas/common.ts"; diff --git a/packages/client/schemas/versia.ts b/packages/client/schemas/versia.ts index a293d580..7428e784 100644 --- a/packages/client/schemas/versia.ts +++ b/packages/client/schemas/versia.ts @@ -105,3 +105,35 @@ export const SSOConfig = z.object({ "An array of external OpenID Connect providers that users can link their accounts to.", }), }); + +/* Versia Server API extension */ +export const Challenge = z + .object({ + id: Id.openapi({}).openapi({ + description: "Challenge ID in the database.", + example: "b4a7e0f0-8f6a-479b-910b-9265c070d5bd", + }), + algorithm: z.enum(["SHA-1", "SHA-256", "SHA-512"]).openapi({ + description: "Algorithm used to generate the challenge.", + example: "SHA-1", + }), + challenge: z.string().openapi({ + description: "Challenge to solve.", + example: "1234567890", + }), + maxnumber: z.number().int().nonnegative().optional().openapi({ + description: "Maximum number to solve the challenge.", + example: 100, + }), + salt: z.string().openapi({ + description: "Salt used to generate the challenge.", + example: "1234567890", + }), + signature: z.string().openapi({ + description: "Signature of the challenge.", + example: "1234567890", + }), + }) + .openapi({ + description: "A cryptographic challenge to solve. Used for Captchas.", + }); diff --git a/packages/client/versia/base.ts b/packages/client/versia/base.ts index 725d462b..8b115e7d 100644 --- a/packages/client/versia/base.ts +++ b/packages/client/versia/base.ts @@ -91,9 +91,10 @@ export class BaseClient { public constructor( protected baseUrl: URL, private accessToken?: string, - public globalCatch: (error: ResponseError) => void = () => { - // Do nothing by default - }, + private options: { + globalCatch?: (error: ResponseError) => void; + throwOnError?: boolean; + } = {}, ) {} public get url(): URL { @@ -104,16 +105,21 @@ export class BaseClient { return this.accessToken; } + /** Overridable by testing */ + private fetch = fetch; + private async request( request: Request, ): Promise> { - const result = await fetch(request); + const result = await this.fetch(request); const isJson = result.headers .get("Content-Type") ?.includes("application/json"); - if (!result.ok) { - const error = isJson ? await result.json() : await result.text(); + if (!result.ok && this.options.throwOnError) { + const error = isJson + ? await result.clone().json() + : await result.clone().text(); throw new ResponseError( { data: error, @@ -127,8 +133,10 @@ export class BaseClient { } return { - data: isJson ? await result.json() : (await result.text()) || null, - ok: true, + data: isJson + ? await result.clone().json() + : (await result.clone().text()) || null, + ok: result.ok, raw: result, }; } @@ -168,19 +176,19 @@ export class BaseClient { }); } - public get( + public get( path: string, extra?: RequestInit, ): Promise> { return this.request( this.constructRequest(path, "GET", undefined, extra), ).catch((e) => { - this.globalCatch(e); + this.options.globalCatch?.(e); throw e; }); } - public post( + public post( path: string, body?: object, extra?: RequestInit, @@ -188,12 +196,12 @@ export class BaseClient { return this.request( this.constructRequest(path, "POST", body, extra), ).catch((e) => { - this.globalCatch(e); + this.options.globalCatch?.(e); throw e; }); } - public postForm( + public postForm( path: string, body: FormData | ConvertibleObject, extra?: RequestInit, @@ -206,12 +214,12 @@ export class BaseClient { extra, ), ).catch((e) => { - this.globalCatch(e); + this.options.globalCatch?.(e); throw e; }); } - public put( + public put( path: string, body?: object, extra?: RequestInit, @@ -219,12 +227,12 @@ export class BaseClient { return this.request( this.constructRequest(path, "PUT", body, extra), ).catch((e) => { - this.globalCatch(e); + this.options.globalCatch?.(e); throw e; }); } - public putForm( + public putForm( path: string, body: FormData | ConvertibleObject, extra?: RequestInit, @@ -237,12 +245,12 @@ export class BaseClient { extra, ), ).catch((e) => { - this.globalCatch(e); + this.options.globalCatch?.(e); throw e; }); } - public patch( + public patch( path: string, body?: object, extra?: RequestInit, @@ -250,12 +258,12 @@ export class BaseClient { return this.request( this.constructRequest(path, "PATCH", body, extra), ).catch((e) => { - this.globalCatch(e); + this.options.globalCatch?.(e); throw e; }); } - public patchForm( + public patchForm( path: string, body: FormData | ConvertibleObject, extra?: RequestInit, @@ -268,12 +276,12 @@ export class BaseClient { extra, ), ).catch((e) => { - this.globalCatch(e); + this.options.globalCatch?.(e); throw e; }); } - public delete( + public delete( path: string, body?: object, extra?: RequestInit, @@ -281,12 +289,12 @@ export class BaseClient { return this.request( this.constructRequest(path, "DELETE", body, extra), ).catch((e) => { - this.globalCatch(e); + this.options.globalCatch?.(e); throw e; }); } - public deleteForm( + public deleteForm( path: string, body: FormData | ConvertibleObject, extra?: RequestInit, @@ -299,7 +307,7 @@ export class BaseClient { extra, ), ).catch((e) => { - this.globalCatch(e); + this.options.globalCatch?.(e); throw e; }); } diff --git a/packages/client/versia/client.ts b/packages/client/versia/client.ts index 6dc3d1e8..0d987042 100644 --- a/packages/client/versia/client.ts +++ b/packages/client/versia/client.ts @@ -7,6 +7,7 @@ import type { Attachment } from "../schemas/attachment.ts"; import type { Context } from "../schemas/context.ts"; import type { CustomEmoji } from "../schemas/emoji.ts"; import type { ExtendedDescription } from "../schemas/extended-description.ts"; +import type { FamiliarFollowers } from "../schemas/familiar-followers.ts"; import type { Instance } from "../schemas/instance.ts"; import type { Marker } from "../schemas/marker.ts"; import type { Notification } from "../schemas/notification.ts"; @@ -21,7 +22,7 @@ import type { Status, StatusSource } from "../schemas/status.ts"; import type { Tag } from "../schemas/tag.ts"; import type { Token } from "../schemas/token.ts"; import type { TermsOfService } from "../schemas/tos.ts"; -import type { Role } from "../schemas/versia.ts"; +import type { Challenge, Role } from "../schemas/versia.ts"; import { BaseClient, type Output } from "./base.ts"; import { DEFAULT_SCOPE, NO_REDIRECT } from "./constants.ts"; @@ -71,7 +72,7 @@ export class Client extends BaseClient { account_ids: string[], extra?: RequestInit, ): Promise> { - return this.post( + return this.post( `/api/v1/lists/${id}/accounts`, { account_ids }, extra, @@ -89,7 +90,7 @@ export class Client extends BaseClient { name: string, extra?: RequestInit, ): Promise> { - return this.put( + return this.put( `/api/v1/announcements/${id}/reactions/${name}`, undefined, extra, @@ -108,7 +109,7 @@ export class Client extends BaseClient { role_id: string, extra?: RequestInit, ): Promise> { - return this.post( + return this.post( `/api/v1/accounts/${account_id}/roles/${role_id}`, undefined, extra, @@ -141,7 +142,7 @@ export class Client extends BaseClient { domain: string, extra?: RequestInit, ): Promise> { - return this.post("/api/v1/domain_blocks", { domain }, extra); + return this.post("/api/v1/domain_blocks", { domain }, extra); } public bookmarkStatus( @@ -164,7 +165,7 @@ export class Client extends BaseClient { id: string, extra?: RequestInit, ): Promise> { - return this.delete( + return this.delete( `/api/v1/scheduled_statuses/${id}/cancel`, undefined, extra, @@ -287,7 +288,7 @@ export class Client extends BaseClient { account_ids: string[], extra?: RequestInit, ): Promise> { - return this.delete( + return this.delete( `/api/v1/lists/${id}/accounts`, { account_ids }, extra, @@ -303,11 +304,7 @@ export class Client extends BaseClient { id: string, extra?: RequestInit, ): Promise> { - return this.delete( - `/api/v1/conversations/${id}`, - undefined, - extra, - ); + return this.delete(`/api/v1/conversations/${id}`, undefined, extra); } /** @@ -318,7 +315,7 @@ export class Client extends BaseClient { * @return Empty. */ public deleteEmoji(id: string, extra?: RequestInit): Promise> { - return this.delete(`/api/v1/emojis/${id}`, undefined, extra); + return this.delete(`/api/v1/emojis/${id}`, undefined, extra); } /** @@ -350,11 +347,7 @@ export class Client extends BaseClient { id: string, extra?: RequestInit, ): Promise> { - return this.delete( - `/api/v1/featured_tags/${id}`, - undefined, - extra, - ); + return this.delete(`/api/v1/featured_tags/${id}`, undefined, extra); } /** @@ -363,14 +356,14 @@ export class Client extends BaseClient { * @param id Target list ID. */ public deleteList(id: string, extra?: RequestInit): Promise> { - return this.delete(`/api/v1/lists/${id}`, undefined, extra); + return this.delete(`/api/v1/lists/${id}`, undefined, extra); } /** * DELETE /api/v1/push/subscription */ public deletePushSubscription(extra?: RequestInit): Promise> { - return this.delete("/api/v1/push/subscription", undefined, extra); + return this.delete("/api/v1/push/subscription", undefined, extra); } /** @@ -381,7 +374,7 @@ export class Client extends BaseClient { * @return Empty. */ public deleteRole(id: string, extra?: RequestInit): Promise> { - return this.delete(`/api/v1/roles/${id}`, undefined, extra); + return this.delete(`/api/v1/roles/${id}`, undefined, extra); } /** @@ -412,7 +405,7 @@ export class Client extends BaseClient { id: string, extra?: RequestInit, ): Promise> { - return this.post( + return this.post( `/api/v1/instance/announcements/${id}/dismiss`, undefined, extra, @@ -428,7 +421,7 @@ export class Client extends BaseClient { id: string, extra?: RequestInit, ): Promise> { - return this.post( + return this.post( `/api/v1/notifications/${id}/dismiss`, undefined, extra, @@ -439,7 +432,7 @@ export class Client extends BaseClient { * POST /api/v1/notifications/clear */ public dismissNotifications(extra?: RequestInit): Promise> { - return this.post("/api/v1/notifications/clear", undefined, extra); + return this.post("/api/v1/notifications/clear", undefined, extra); } /** @@ -600,6 +593,22 @@ export class Client extends BaseClient { }); } + /** + * POST /api/v1/challenges + * + * Generates a new Captcha to solve. + * @returns A challenge. + */ + public getChallenge( + extra?: RequestInit, + ): Promise>> { + return this.post>( + "/api/v1/challenges", + undefined, + extra, + ); + } + /** * GET /api/v1/accounts/:id * @@ -1047,6 +1056,28 @@ export class Client extends BaseClient { ); } + /** + * GET /api/v1/accounts/familiar_followers + * + * @param ids Array of account IDs. + * @return Array of familiar followers. + */ + public getFamiliarFollowers( + ids: string[], + ): Promise[]>> { + const params = new URLSearchParams(); + + if (ids) { + for (const id of ids) { + params.append("id[]", id); + } + } + + return this.get[]>( + `/api/v1/accounts/familiar_followers?${params}`, + ); + } + /** * GET /api/v1/favourites * @@ -2354,7 +2385,7 @@ export class Client extends BaseClient { role_id: string, extra?: RequestInit, ): Promise> { - return this.delete(`/api/v1/roles/${role_id}`, undefined, extra); + return this.delete(`/api/v1/roles/${role_id}`, undefined, extra); } /** @@ -2400,7 +2431,7 @@ export class Client extends BaseClient { token: string, extra?: RequestInit, ): Promise> { - return this.post( + return this.post( "/oauth/revoke", { client_id, client_secret, token }, extra, @@ -2534,7 +2565,7 @@ export class Client extends BaseClient { */ public searchAccount( q: string, - options: Partial<{ + options?: Partial<{ following: boolean; limit: number; max_id: string; @@ -2547,22 +2578,20 @@ export class Client extends BaseClient { params.set("q", q); - if (options) { - if (options.following) { - params.set("following", "true"); - } - if (options.limit) { - params.set("limit", options.limit.toString()); - } - if (options.max_id) { - params.set("max_id", options.max_id); - } - if (options.resolve) { - params.set("resolve", "true"); - } - if (options.since_id) { - params.set("since_id", options.since_id); - } + if (options?.following) { + params.set("following", "true"); + } + if (options?.limit) { + params.set("limit", options.limit.toString()); + } + if (options?.max_id) { + params.set("max_id", options.max_id); + } + if (options?.resolve) { + params.set("resolve", "true"); + } + if (options?.since_id) { + params.set("since_id", options.since_id); } return this.get[]>( @@ -2639,7 +2668,7 @@ export class Client extends BaseClient { role_id: string, extra?: RequestInit, ): Promise> { - return this.delete( + return this.delete( `/api/v1/accounts/${account_id}/roles/${role_id}`, undefined, extra, @@ -2672,7 +2701,7 @@ export class Client extends BaseClient { domain: string, extra?: RequestInit, ): Promise> { - return this.delete("/api/v1/domain_blocks", { domain }, extra); + return this.delete("/api/v1/domain_blocks", { domain }, extra); } /** diff --git a/tests/utils.ts b/tests/utils.ts index 3b191028..f686f451 100644 --- a/tests/utils.ts +++ b/tests/utils.ts @@ -1,5 +1,6 @@ import { generateChallenge } from "@/challenges"; import { randomString } from "@/math"; +import { Client as VersiaClient } from "@versia/client-ng"; import { Note, Token, User, db } from "@versia/kit/db"; import { Notes, Users } from "@versia/kit/tables"; import { solveChallenge } from "altcha-lib"; @@ -26,6 +27,52 @@ export function fakeRequest( ); } +/** + * Generate a client instance monkeypatched to use the test server + * instead of going through HTTP, and also doesn't throw on errors + * @param user User to automatically generate a token for + * @returns Client instance + */ +export const generateClient = async ( + user?: User, +): Promise< + VersiaClient & { + [Symbol.asyncDispose](): Promise; + } +> => { + const token = user + ? await Token.insert({ + accessToken: randomString(32, "hex"), + tokenType: "bearer", + userId: user.id, + applicationId: null, + code: randomString(32, "hex"), + scope: "read write follow push", + }) + : null; + + const client = new VersiaClient( + new URL(config.http.base_url), + token?.data.accessToken, + ); + + // biome-ignore lint/complexity/useLiteralKeys: Overriding private properties + client["fetch"] = ( + input: RequestInfo | string | URL | Request, + init?: RequestInit, + ): Promise => { + return Promise.resolve(app.fetch(new Request(input, init))); + }; + + // @ts-expect-error This is REAL monkeypatching done by REAL programmers, BITCH! + client[Symbol.asyncDispose] = async (): Promise => { + await token?.delete(); + }; + + return client as VersiaClient & { + [Symbol.asyncDispose](): Promise; + }; +}; export const deleteOldTestUsers = async (): Promise => { // Deletes all users that match the test username (test-<32 random characters>) await db.delete(Users).where(like(Users.username, "test-%")); diff --git a/utils/bull-board.ts b/utils/bull-board.ts index f860d2c3..8cbc3b07 100644 --- a/utils/bull-board.ts +++ b/utils/bull-board.ts @@ -40,5 +40,6 @@ export const applyToHono = (app: OpenAPIHono): void => { }); serverAdapter.setBasePath("/admin/queues"); + // @ts-ignore Causes infinite instantiation for some reason app.route("/admin/queues", serverAdapter.registerPlugin()); };
