forgejo/modules/setting/setting_test.go

// Copyright 2020 The Gitea Authors. All rights reserved.
// Copyright 2025 The Forgejo Authors. All rights reserved
// SPDX-License-Identifier: MIT

package setting

import (
	"testing"

	"code.gitea.io/gitea/modules/json"

	"github.com/stretchr/testify/assert"
	"github.com/stretchr/testify/require"
)

func TestMakeAbsoluteAssetURL(t *testing.T) {
	assert.Equal(t, "https://localhost:2345", MakeAbsoluteAssetURL("https://localhost:1234", "https://localhost:2345"))
	assert.Equal(t, "https://localhost:2345", MakeAbsoluteAssetURL("https://localhost:1234/", "https://localhost:2345"))
	assert.Equal(t, "https://localhost:2345", MakeAbsoluteAssetURL("https://localhost:1234/", "https://localhost:2345/"))
	assert.Equal(t, "https://localhost:1234/foo", MakeAbsoluteAssetURL("https://localhost:1234", "/foo"))
	assert.Equal(t, "https://localhost:1234/foo", MakeAbsoluteAssetURL("https://localhost:1234/", "/foo"))
	assert.Equal(t, "https://localhost:1234/foo", MakeAbsoluteAssetURL("https://localhost:1234/", "/foo/"))
	assert.Equal(t, "https://localhost:1234/foo", MakeAbsoluteAssetURL("https://localhost:1234/foo", "/foo"))
	assert.Equal(t, "https://localhost:1234/foo", MakeAbsoluteAssetURL("https://localhost:1234/foo/", "/foo"))
	assert.Equal(t, "https://localhost:1234/foo", MakeAbsoluteAssetURL("https://localhost:1234/foo/", "/foo/"))
	assert.Equal(t, "https://localhost:1234/bar", MakeAbsoluteAssetURL("https://localhost:1234/foo", "/bar"))
	assert.Equal(t, "https://localhost:1234/bar", MakeAbsoluteAssetURL("https://localhost:1234/foo/", "/bar"))
	assert.Equal(t, "https://localhost:1234/bar", MakeAbsoluteAssetURL("https://localhost:1234/foo/", "/bar/"))
}

func TestMakeManifestData(t *testing.T) {
	jsonBytes := MakeManifestData(`Example App '\"`, "https://example.com", "https://example.com/foo/bar")
	assert.True(t, json.Valid(jsonBytes))
}

func TestLoadServiceDomainListsForFederation(t *testing.T) {
	oldAppURL := AppURL
	oldFederation := Federation
	oldService := Service

	defer func() {
		AppURL = oldAppURL
		Federation = oldFederation
		Service = oldService
	}()

	cfg, err := NewConfigProviderFromData(`
[federation]
ENABLED = true
[service]
EMAIL_DOMAIN_ALLOWLIST = *.allow.random
EMAIL_DOMAIN_BLOCKLIST = *.block.random
`)

	require.NoError(t, err)
	loadServerFrom(cfg)
	loadFederationFrom(cfg)
	loadServiceFrom(cfg)

	assert.True(t, match(Service.EmailDomainAllowList, "d1.allow.random"))
	assert.True(t, match(Service.EmailDomainAllowList, "localhost"))
}

func TestLoadServiceDomainListsNoFederation(t *testing.T) {
	oldAppURL := AppURL
	oldFederation := Federation
	oldService := Service

	defer func() {
		AppURL = oldAppURL
		Federation = oldFederation
		Service = oldService
	}()

	cfg, err := NewConfigProviderFromData(`
[federation]
ENABLED = false
[service]
EMAIL_DOMAIN_ALLOWLIST = *.allow.random
EMAIL_DOMAIN_BLOCKLIST = *.block.random
`)

	require.NoError(t, err)
	loadServerFrom(cfg)
	loadFederationFrom(cfg)
	loadServiceFrom(cfg)

	assert.True(t, match(Service.EmailDomainAllowList, "d1.allow.random"))
}

func TestLoadServiceDomainListsFederationEmptyAllowList(t *testing.T) {
	oldAppURL := AppURL
	oldFederation := Federation
	oldService := Service

	defer func() {
		AppURL = oldAppURL
		Federation = oldFederation
		Service = oldService
	}()

	cfg, err := NewConfigProviderFromData(`
[federation]
ENABLED = true
[service]
EMAIL_DOMAIN_BLOCKLIST = *.block.random
`)

	require.NoError(t, err)
	loadServerFrom(cfg)
	loadFederationFrom(cfg)
	loadServiceFrom(cfg)

	assert.Empty(t, Service.EmailDomainAllowList)
}
Fix manifest encoding (#14114) The previous URL encoding would encode spaces to '+' for the app name which is incorrect. Use base64 encoding instead which does not have such issues. 2020-12-23 20:09:54 +01:00			`// Copyright 2020 The Gitea Authors. All rights reserved.`
federation with allow lists (#5393) ## Description This addresses Issue #5379. The email validation was extended. Additionally to checking whether the email domain is in the block list or in the allow list now we also check if the email domain is the servers own FQDN. Tests have been written for the correct function of the allow list and if the local FQDN is admitted as email domain. Edit: Clarifications, Typos ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. ### Documentation - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I want the title to show in the release notes with a link to this pull request. Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-authored-by: patdyn <erik.seiert@meissa-gmbh.de> Co-authored-by: Mirco <mirco.zachmann@meissa.de> Co-authored-by: jerger <jerger@noreply.codeberg.org> Co-authored-by: zam <mirco.zachmann@meissa.de> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/5393 Reviewed-by: jerger <jerger@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: patdyn <patdyn@noreply.codeberg.org> Co-committed-by: patdyn <patdyn@noreply.codeberg.org> 2025-02-23 09:02:10 +01:00			`// Copyright 2025 The Forgejo Authors. All rights reserved`
Implement FSFE REUSE for golang files (#21840) Change all license headers to comply with REUSE specification. Fix #16132 Co-authored-by: flynnnnnnnnnn <flynnnnnnnnnn@github> Co-authored-by: John Olheiser <john.olheiser@gmail.com> 2022-11-27 19:20:29 +01:00			`// SPDX-License-Identifier: MIT`
Fix manifest encoding (#14114) The previous URL encoding would encode spaces to '+' for the app name which is incorrect. Use base64 encoding instead which does not have such issues. 2020-12-23 20:09:54 +01:00
			`package setting`

			`import (`
			`"testing"`

Add an abstract json layout to make it's easier to change json library (#16528) * Add an abstract json layout to make it's easier to change json library * Fix import * Fix import sequence * Fix blank lines * Fix blank lines 2021-07-24 18:03:58 +02:00			`"code.gitea.io/gitea/modules/json"`

Fix manifest encoding (#14114) The previous URL encoding would encode spaces to '+' for the app name which is incorrect. Use base64 encoding instead which does not have such issues. 2020-12-23 20:09:54 +01:00			`"github.com/stretchr/testify/assert"`
federation with allow lists (#5393) ## Description This addresses Issue #5379. The email validation was extended. Additionally to checking whether the email domain is in the block list or in the allow list now we also check if the email domain is the servers own FQDN. Tests have been written for the correct function of the allow list and if the local FQDN is admitted as email domain. Edit: Clarifications, Typos ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. ### Documentation - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I want the title to show in the release notes with a link to this pull request. Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-authored-by: patdyn <erik.seiert@meissa-gmbh.de> Co-authored-by: Mirco <mirco.zachmann@meissa.de> Co-authored-by: jerger <jerger@noreply.codeberg.org> Co-authored-by: zam <mirco.zachmann@meissa.de> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/5393 Reviewed-by: jerger <jerger@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: patdyn <patdyn@noreply.codeberg.org> Co-committed-by: patdyn <patdyn@noreply.codeberg.org> 2025-02-23 09:02:10 +01:00			`"github.com/stretchr/testify/require"`
Fix manifest encoding (#14114) The previous URL encoding would encode spaces to '+' for the app name which is incorrect. Use base64 encoding instead which does not have such issues. 2020-12-23 20:09:54 +01:00			`)`

			`func TestMakeAbsoluteAssetURL(t *testing.T) {`
			`assert.Equal(t, "https://localhost:2345", MakeAbsoluteAssetURL("https://localhost:1234", "https://localhost:2345"))`
			`assert.Equal(t, "https://localhost:2345", MakeAbsoluteAssetURL("https://localhost:1234/", "https://localhost:2345"))`
			`assert.Equal(t, "https://localhost:2345", MakeAbsoluteAssetURL("https://localhost:1234/", "https://localhost:2345/"))`
			`assert.Equal(t, "https://localhost:1234/foo", MakeAbsoluteAssetURL("https://localhost:1234", "/foo"))`
			`assert.Equal(t, "https://localhost:1234/foo", MakeAbsoluteAssetURL("https://localhost:1234/", "/foo"))`
			`assert.Equal(t, "https://localhost:1234/foo", MakeAbsoluteAssetURL("https://localhost:1234/", "/foo/"))`
Prevent use of double sub-path and incorrect asset path in manifest (#14827) MakeAbsoluteAssetURL should just url join the static url prefix on to appurl if it is not an absolute path - this is because StaticURLPrefix is an absolute prefix not a relative prefix to the app sub url. Fix #14422 Signed-off-by: Andrew Thornton <art27@cantab.net> 2021-02-28 13:29:22 +01:00			`assert.Equal(t, "https://localhost:1234/foo", MakeAbsoluteAssetURL("https://localhost:1234/foo", "/foo"))`
			`assert.Equal(t, "https://localhost:1234/foo", MakeAbsoluteAssetURL("https://localhost:1234/foo/", "/foo"))`
			`assert.Equal(t, "https://localhost:1234/foo", MakeAbsoluteAssetURL("https://localhost:1234/foo/", "/foo/"))`
			`assert.Equal(t, "https://localhost:1234/bar", MakeAbsoluteAssetURL("https://localhost:1234/foo", "/bar"))`
			`assert.Equal(t, "https://localhost:1234/bar", MakeAbsoluteAssetURL("https://localhost:1234/foo/", "/bar"))`
			`assert.Equal(t, "https://localhost:1234/bar", MakeAbsoluteAssetURL("https://localhost:1234/foo/", "/bar/"))`
Fix manifest encoding (#14114) The previous URL encoding would encode spaces to '+' for the app name which is incorrect. Use base64 encoding instead which does not have such issues. 2020-12-23 20:09:54 +01:00			`}`

			`func TestMakeManifestData(t *testing.T) {`
			jsonBytes := MakeManifestData(`Example App '\"`, "https://example.com", "https://example.com/foo/bar")
			`assert.True(t, json.Valid(jsonBytes))`
			`}`
federation with allow lists (#5393) ## Description This addresses Issue #5379. The email validation was extended. Additionally to checking whether the email domain is in the block list or in the allow list now we also check if the email domain is the servers own FQDN. Tests have been written for the correct function of the allow list and if the local FQDN is admitted as email domain. Edit: Clarifications, Typos ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. ### Documentation - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I want the title to show in the release notes with a link to this pull request. Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-authored-by: patdyn <erik.seiert@meissa-gmbh.de> Co-authored-by: Mirco <mirco.zachmann@meissa.de> Co-authored-by: jerger <jerger@noreply.codeberg.org> Co-authored-by: zam <mirco.zachmann@meissa.de> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/5393 Reviewed-by: jerger <jerger@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: patdyn <patdyn@noreply.codeberg.org> Co-committed-by: patdyn <patdyn@noreply.codeberg.org> 2025-02-23 09:02:10 +01:00
			`func TestLoadServiceDomainListsForFederation(t *testing.T) {`
			`oldAppURL := AppURL`
			`oldFederation := Federation`
			`oldService := Service`

			`defer func() {`
			`AppURL = oldAppURL`
			`Federation = oldFederation`
			`Service = oldService`
			`}()`

			cfg, err := NewConfigProviderFromData(`
			`[federation]`
			`ENABLED = true`
			`[service]`
			`EMAIL_DOMAIN_ALLOWLIST = *.allow.random`
			`EMAIL_DOMAIN_BLOCKLIST = *.block.random`
			`)

			`require.NoError(t, err)`
			`loadServerFrom(cfg)`
			`loadFederationFrom(cfg)`
			`loadServiceFrom(cfg)`

			`assert.True(t, match(Service.EmailDomainAllowList, "d1.allow.random"))`
			`assert.True(t, match(Service.EmailDomainAllowList, "localhost"))`
			`}`

			`func TestLoadServiceDomainListsNoFederation(t *testing.T) {`
			`oldAppURL := AppURL`
			`oldFederation := Federation`
			`oldService := Service`

			`defer func() {`
			`AppURL = oldAppURL`
			`Federation = oldFederation`
			`Service = oldService`
			`}()`

			cfg, err := NewConfigProviderFromData(`
			`[federation]`
			`ENABLED = false`
			`[service]`
			`EMAIL_DOMAIN_ALLOWLIST = *.allow.random`
			`EMAIL_DOMAIN_BLOCKLIST = *.block.random`
			`)

			`require.NoError(t, err)`
			`loadServerFrom(cfg)`
			`loadFederationFrom(cfg)`
			`loadServiceFrom(cfg)`

			`assert.True(t, match(Service.EmailDomainAllowList, "d1.allow.random"))`
			`}`

			`func TestLoadServiceDomainListsFederationEmptyAllowList(t *testing.T) {`
			`oldAppURL := AppURL`
			`oldFederation := Federation`
			`oldService := Service`

			`defer func() {`
			`AppURL = oldAppURL`
			`Federation = oldFederation`
			`Service = oldService`
			`}()`

			cfg, err := NewConfigProviderFromData(`
			`[federation]`
			`ENABLED = true`
			`[service]`
			`EMAIL_DOMAIN_BLOCKLIST = *.block.random`
			`)

			`require.NoError(t, err)`
			`loadServerFrom(cfg)`
			`loadFederationFrom(cfg)`
			`loadServiceFrom(cfg)`

			`assert.Empty(t, Service.EmailDomainAllowList)`
			`}`