[CORE] Add ActivityPub plugin

This is not the same as the one in https://notabug.org/diogo/gnu-social-activitypub-plugin
Differences to the first "release"
-> Doesn't use guzzle nor has any composer dependencies
-> Supports HTTP Signatures
-> Has basic l10n/i18n
-> Some minor bug fixes

plugins/ActivityPub/tests/Unit/HTTPSignatureTest.php

@@ -0,0 +1,165 @@
+<?php
+// This file is part of GNU social - https://www.gnu.org/software/social
+//
+// GNU social is free software: you can redistribute it and/or modify
+// it under the terms of the GNU Affero General Public License as published by
+// the Free Software Foundation, either version 3 of the License, or
+// (at your option) any later version.
+//
+// GNU social is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU Affero General Public License for more details.
+//
+// You should have received a copy of the GNU Affero General Public License
+// along with GNU social.  If not, see <http://www.gnu.org/licenses/>.
+
+/**
+ * ActivityPub implementation for GNU social
+ *
+ * @package   GNUsocial
+ * @author    Diogo Cordeiro <diogo@fc.up.pt>
+ * @copyright 2018-2019 Free Software Foundation, Inc http://www.fsf.org
+ * @license   https://www.gnu.org/licenses/agpl.html GNU AGPL v3 or later
+ * @link      http://www.gnu.org/software/social/
+ */
+
+namespace Tests\Unit;
+
+use Tests\TestCase;
+use GuzzleHttp\Client;
+use GuzzleHttp\Handler\CurlHandler;
+use GuzzleHttp\Handler\MockHandler;
+use GuzzleHttp\HandlerStack;
+use GuzzleHttp\Middleware;
+use GuzzleHttp\Psr7\Request;
+use GuzzleHttp\Psr7\Response;
+use HttpSignatures\Context;
+use HttpSignatures\GuzzleHttpSignatures;
+
+class HTTPSignatureTest extends TestCase
+{
+    /**
+     * @var Context
+     */
+    private $context;
+    /**
+     * @var Client
+     */
+    private $client;
+    /**
+     * @var
+     */
+    private $history = [];
+
+    public function testLibraryInstalled()
+    {
+        $this->assertTrue(class_exists('\GuzzleHttp\Client'));
+        $this->assertTrue(class_exists('\HttpSignatures\Context'));
+        $this->assertTrue(class_exists('\HttpSignatures\GuzzleHttpSignatures'));
+    }
+
+    public function setUp()
+    {
+        $this->context = new Context([
+            'keys' => ['pda' => 'secret'],
+            'algorithm' => 'hmac-sha256',
+            'headers' => ['(request-target)', 'date'],
+        ]);
+        $stack = new HandlerStack();
+        $stack->setHandler(new MockHandler([
+            new Response(200, ['Content-Length' => 0]),
+        ]));
+        $stack->push(GuzzleHttpSignatures::middlewareFromContext($this->context));
+        $stack->push(Middleware::history($this->history));
+        $this->client = new Client(['handler' => $stack]);
+    }
+    /**
+     * test signing a message
+     */
+    public function testGuzzleRequestHasExpectedHeaders()
+    {
+        $this->client->get('/path?query=123', [
+            'headers' => ['date' => 'today', 'accept' => 'llamas']
+        ]);
+        // get last request
+        $message = end($this->history);
+        /** @var Request $request */
+        $request = $message['request'];
+        /** @var Response $response */
+        $response = $message['request'];
+        $expectedString = implode(
+            ',',
+            [
+                'keyId="pda"',
+                'algorithm="hmac-sha256"',
+                'headers="(request-target) date"',
+                'signature="SFlytCGpsqb/9qYaKCQklGDvwgmrwfIERFnwt+yqPJw="',
+            ]
+        );
+        $this->assertEquals(
+            [$expectedString],
+            $request->getHeader('Signature')
+        );
+        $this->assertEquals(
+            ['Signature ' . $expectedString],
+            $request->getHeader('Authorization')
+        );
+    }
+    /**
+     * test signing a message with a URL that doesn't contain a ?query
+     */
+    public function testGuzzleRequestHasExpectedHeaders2()
+    {
+        $this->client->get('/path', [
+            'headers' => ['date' => 'today', 'accept' => 'llamas']
+        ]);
+        // get last request
+        $message = end($this->history);
+        /** @var Request $request */
+        $request = $message['request'];
+        /** @var Response $response */
+        $response = $message['request'];
+        $expectedString = implode(
+            ',',
+            [
+                'keyId="pda"',
+                'algorithm="hmac-sha256"',
+                'headers="(request-target) date"',
+                'signature="DAtF133khP05pS5Gh8f+zF/UF7mVUojMj7iJZO3Xk4o="',
+            ]
+        );
+        $this->assertEquals(
+            [$expectedString],
+            $request->getHeader('Signature')
+        );
+        $this->assertEquals(
+            ['Signature ' . $expectedString],
+            $request->getHeader('Authorization')
+        );
+    }
+    public function getVerifyGuzzleRequestVectors()
+    {
+        return [
+            /* path, headers */
+            ['/path?query=123', ['date' => 'today', 'accept' => 'llamas']],
+            ['/path?z=zebra&a=antelope', ['date' => 'today']],
+        ];
+    }
+    /**
+     * @dataProvider getVerifyGuzzleRequestVectors
+     * @param string $path
+     * @param array $headers
+     */
+    public function testVerifyGuzzleRequest($path, $headers)
+    {
+        $this->client->get($path, ['headers' => $headers]);
+        // get last request
+        $message = end($this->history);
+        /** @var Request $request */
+        $request = $message['request'];
+        /** @var Response $response */
+        $response = $message['request'];
+        $this->assertTrue($this->context->verifier()->isValid($request));
+    }
+}