From 54f8a65ae2b114cdd40044a120ca8ab22a60b3a9 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Thu, 21 Jan 2021 16:43:40 -0800
Subject: [PATCH 001/280] Adds block option to status menu

---
 bookwyrm/templates/snippets/status_body.html    |  2 --
 bookwyrm/templates/snippets/status_options.html | 12 ++++++++++++
 2 files changed, 12 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/templates/snippets/status_body.html b/bookwyrm/templates/snippets/status_body.html
index 59ab234d..c70f898a 100644
--- a/bookwyrm/templates/snippets/status_body.html
+++ b/bookwyrm/templates/snippets/status_body.html
@@ -54,11 +54,9 @@
 <div class="card-footer-item">
     <a href="{{ status.remote_id }}">{{ status.published_date | post_date }}</a>
 </div>
-{% if status.user == request.user %}
 <div class="card-footer-item">
     {% include 'snippets/status_options.html' with class="is-small" right=True %}
 </div>
-{% endif %}
 {% endblock %}
 
 
diff --git a/bookwyrm/templates/snippets/status_options.html b/bookwyrm/templates/snippets/status_options.html
index 6cd13dfd..9b312c7c 100644
--- a/bookwyrm/templates/snippets/status_options.html
+++ b/bookwyrm/templates/snippets/status_options.html
@@ -1,4 +1,5 @@
 {% extends 'snippets/components/dropdown.html' %}
+{% load bookwyrm_tags %}
 
 {% block dropdown-trigger %}
 <span class="icon icon-dots-three">
@@ -7,6 +8,7 @@
 {% endblock %}
 
 {% block dropdown-list %}
+{% if status.user == request.user %}
 <li role="menuitem">
     <form class="dropdown-item pt-0 pb-0" name="delete-{{status.id}}" action="/delete-status/{{ status.id }}" method="post">
         {% csrf_token %}
@@ -15,4 +17,14 @@
         </button>
     </form>
 </li>
+<li><hr class="navbar-divider"></li>
+{% endif %}
+<li role="menuitem">
+    <form class="dropdown-item pt-0 pb-0" name="delete-{{status.id}}" action="/delete-status/{{ status.id }}" method="post">
+        {% csrf_token %}
+        <button class="button is-danger is-light is-fullwidth is-small" type="submit">
+            Block @{{ status.user|username }}
+        </button>
+    </form>
+</li>
 {% endblock %}

From 0fe2e7a3561d7463b9cb496e54e43310ab1022a1 Mon Sep 17 00:00:00 2001
From: Chad Nelson <chadbnelson@gmail.com>
Date: Wed, 20 Jan 2021 17:15:15 -0500
Subject: [PATCH 002/280] First pass at basic RSS

---
 bookwyrm/templates/snippets/rss_content.html |  1 +
 bookwyrm/templates/snippets/rss_title.html   | 15 +++++++
 bookwyrm/tests/views/test_rss_feed.py        | 44 ++++++++++++++++++++
 bookwyrm/urls.py                             |  3 ++
 bookwyrm/views/rss_feed.py                   | 29 +++++++++++++
 5 files changed, 92 insertions(+)
 create mode 100644 bookwyrm/templates/snippets/rss_content.html
 create mode 100644 bookwyrm/templates/snippets/rss_title.html
 create mode 100644 bookwyrm/tests/views/test_rss_feed.py
 create mode 100644 bookwyrm/views/rss_feed.py

diff --git a/bookwyrm/templates/snippets/rss_content.html b/bookwyrm/templates/snippets/rss_content.html
new file mode 100644
index 00000000..a72752d0
--- /dev/null
+++ b/bookwyrm/templates/snippets/rss_content.html
@@ -0,0 +1 @@
+{{ obj.pure_content | safe }}
diff --git a/bookwyrm/templates/snippets/rss_title.html b/bookwyrm/templates/snippets/rss_title.html
new file mode 100644
index 00000000..91b6d7e6
--- /dev/null
+++ b/bookwyrm/templates/snippets/rss_title.html
@@ -0,0 +1,15 @@
+{{ obj.user.username }}{% if obj.status_type == 'GeneratedNote' %}
+    {{ obj.content | safe }}
+{% elif obj.status_type == 'Review' and not obj.name and not obj.content%}
+    rated
+{% elif obj.status_type == 'Review' %}
+    reviewed
+{% elif obj.status_type == 'Comment' %}
+    commented on
+{% elif obj.status_type == 'Quotation' %}
+    quoted
+{% endif %}
+{% if obj.book %}{{ obj.book.title | safe}}
+{% elif obj.mention_books %}
+{{ obj.mention_books.first.title }}
+{% endif %}
\ No newline at end of file
diff --git a/bookwyrm/tests/views/test_rss_feed.py b/bookwyrm/tests/views/test_rss_feed.py
new file mode 100644
index 00000000..2e71e96e
--- /dev/null
+++ b/bookwyrm/tests/views/test_rss_feed.py
@@ -0,0 +1,44 @@
+''' testing import '''
+
+from unittest.mock import patch
+
+from django.test import RequestFactory, TestCase
+import responses
+
+from bookwyrm import models
+from bookwyrm.views import rss_feed
+from bookwyrm.settings import DOMAIN
+
+class RssFeed(TestCase):
+    ''' rss feed behaves as expected '''
+    def setUp(self):
+        self.user = models.User.objects.create_user(
+            'rss_user', 'rss@test.rss', 'password', local=True)
+
+        work = models.Work.objects.create(title='Test Work')
+        self.book = models.Edition.objects.create(
+            title='Example Edition',
+            remote_id='https://example.com/book/1',
+            parent_work=work
+        )
+
+        self.review = models.Review.objects.create(
+            name='Review name', content='test content', rating=3,
+            user=self.user, book=self.book)
+
+        self.quote = models.Quotation.objects.create(
+            quote='a sickening sense', content='test content',
+            user=self.user, book=self.book)
+        
+        self.generatednote = models.GeneratedNote.objects.create(
+            content='test content', user=self.user)
+
+        self.factory = RequestFactory()
+        
+
+    def test_rss_feed(self):
+        request = self.factory.get('/user/rss_user/rss')
+        response = RssFeed(request)
+        self.assertEqual(response.status_code, 200)
+        self.assertEqual(False, True)
+
diff --git a/bookwyrm/urls.py b/bookwyrm/urls.py
index ab134b1c..ea1d6252 100644
--- a/bookwyrm/urls.py
+++ b/bookwyrm/urls.py
@@ -3,7 +3,9 @@ from django.conf.urls.static import static
 from django.contrib import admin
 from django.urls import path, re_path
 
+
 from bookwyrm import incoming, settings, views, wellknown
+from bookwyrm.views.rss_feed import RssFeed
 from bookwyrm.utils import regex
 
 user_path = r'^user/(?P<username>%s)' % regex.username
@@ -75,6 +77,7 @@ urlpatterns = [
     re_path(r'%s/followers(.json)?/?$' % user_path, views.Followers.as_view()),
     re_path(r'%s/following(.json)?/?$' % user_path, views.Following.as_view()),
     re_path(r'^edit-profile/?$', views.EditUser.as_view()),
+    re_path(r'%s/rss' % user_path, views.rss_feed.RssFeed()),
 
     # reading goals
     re_path(r'%s/goal/(?P<year>\d{4})/?$' % user_path, views.Goal.as_view()),
diff --git a/bookwyrm/views/rss_feed.py b/bookwyrm/views/rss_feed.py
new file mode 100644
index 00000000..d8de8fac
--- /dev/null
+++ b/bookwyrm/views/rss_feed.py
@@ -0,0 +1,29 @@
+''' '''
+
+from django.contrib.syndication.views import Feed
+from django.urls import reverse
+from bookwyrm.models.user import User
+from .helpers import get_activity_feed, get_user_from_username
+
+class RssFeed(Feed):
+
+    description_template = "snippets/rss_content.html"
+    title_template = "snippets/rss_title.html"
+
+    def get_object(self, request, username):
+        return get_user_from_username(username)
+
+    def link(self, obj):
+        return obj.local_path
+
+    def title(self, obj):
+        return f"Status updates from {obj.username}"
+
+
+    def items(self, obj):
+        return get_activity_feed(obj, ['public', 'unlisted', 'followers'])
+
+    
+    def item_link(self, item):
+        return item.local_path
+

From cc8888dea20bd520a0169549d2a1d0fd7469d4a1 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 23 Jan 2021 11:03:10 -0800
Subject: [PATCH 003/280] Adds incoming handler for blocking

---
 bookwyrm/activitypub/__init__.py |  2 +-
 bookwyrm/activitypub/verbs.py    |  4 ++++
 bookwyrm/incoming.py             | 18 ++++++++++++++++++
 bookwyrm/models/relationship.py  |  2 +-
 bookwyrm/tests/test_incoming.py  | 26 ++++++++++++++++++++++++++
 5 files changed, 50 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/activitypub/__init__.py b/bookwyrm/activitypub/__init__.py
index a4fef41e..a7439722 100644
--- a/bookwyrm/activitypub/__init__.py
+++ b/bookwyrm/activitypub/__init__.py
@@ -14,7 +14,7 @@ from .person import Person, PublicKey
 from .response import ActivitypubResponse
 from .book import Edition, Work, Author
 from .verbs import Create, Delete, Undo, Update
-from .verbs import Follow, Accept, Reject
+from .verbs import Follow, Accept, Reject, Block
 from .verbs import Add, AddBook, Remove
 
 # this creates a list of all the Activity types that we can serialize,
diff --git a/bookwyrm/activitypub/verbs.py b/bookwyrm/activitypub/verbs.py
index 7c627927..6977ee8e 100644
--- a/bookwyrm/activitypub/verbs.py
+++ b/bookwyrm/activitypub/verbs.py
@@ -48,6 +48,10 @@ class Follow(Verb):
     ''' Follow activity '''
     type: str = 'Follow'
 
+@dataclass(init=False)
+class Block(Verb):
+    ''' Block activity '''
+    type: str = 'Block'
 
 @dataclass(init=False)
 class Accept(Verb):
diff --git a/bookwyrm/incoming.py b/bookwyrm/incoming.py
index 9653c5d2..5d93756f 100644
--- a/bookwyrm/incoming.py
+++ b/bookwyrm/incoming.py
@@ -3,6 +3,7 @@ import json
 from urllib.parse import urldefrag
 
 import django.db.utils
+from django.db.models import Q
 from django.http import HttpResponse
 from django.http import HttpResponseBadRequest, HttpResponseNotFound
 from django.views.decorators.csrf import csrf_exempt
@@ -51,6 +52,7 @@ def shared_inbox(request):
         'Follow': handle_follow,
         'Accept': handle_follow_accept,
         'Reject': handle_follow_reject,
+        'Block': handle_block,
         'Create': handle_create,
         'Delete': handle_delete_status,
         'Like': handle_favorite,
@@ -179,6 +181,22 @@ def handle_follow_reject(activity):
     request.delete()
     #raises models.UserFollowRequest.DoesNotExist
 
+@app.task
+def handle_block(activity):
+    ''' blocking a user '''
+    # create "block" databse entry
+    block = activitypub.Block(**activity).to_model(models.UserBlocks)
+
+    # remove follow relationships
+    models.UserFollows.objects.filter(
+        Q(user_subject=block.user_subject, user_object=block.user_object) | \
+            Q(user_subject=block.user_object, user_object=block.user_subject)
+    ).delete()
+    models.UserFollowRequest.objects.filter(
+        Q(user_subject=block.user_subject, user_object=block.user_object) | \
+            Q(user_subject=block.user_object, user_object=block.user_subject)
+    ).delete()
+
 
 @app.task
 def handle_create(activity):
diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index 0f3c1dab..9ea75a8f 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -94,5 +94,5 @@ class UserFollowRequest(UserRelationship):
 
 class UserBlocks(UserRelationship):
     ''' prevent another user from following you and seeing your posts '''
-    # TODO: not implemented
     status = 'blocks'
+    activity_serializer = activitypub.Block
diff --git a/bookwyrm/tests/test_incoming.py b/bookwyrm/tests/test_incoming.py
index 2cd4869e..024c8e25 100644
--- a/bookwyrm/tests/test_incoming.py
+++ b/bookwyrm/tests/test_incoming.py
@@ -540,3 +540,29 @@ class Incoming(TestCase):
             incoming.handle_update_work({'object': bookdata})
         book = models.Work.objects.get(id=book.id)
         self.assertEqual(book.title, 'Piranesi')
+
+
+    def test_handle_blocks(self):
+        ''' create a "block" database entry from an activity '''
+        self.local_user.followers.add(self.remote_user)
+        models.UserFollowRequest.objects.create(
+            user_subject=self.local_user,
+            user_object=self.remote_user)
+        self.assertTrue(models.UserFollows.objects.exists())
+        self.assertTrue(models.UserFollowRequest.objects.exists())
+
+        activity = {
+            "@context": "https://www.w3.org/ns/activitystreams",
+            "id": "https://example.com/9e1f41ac-9ddd-4159-aede-9f43c6b9314f",
+            "type": "Block",
+            "actor": "https://example.com/users/rat",
+            "object": "https://example.com/user/mouse"
+        }
+
+        incoming.handle_block(activity)
+        block = models.UserBlocks.objects.get()
+        self.assertEqual(block.user_subject, self.remote_user)
+        self.assertEqual(block.user_object, self.local_user)
+
+        self.assertFalse(models.UserFollows.objects.exists())
+        self.assertFalse(models.UserFollowRequest.objects.exists())

From 6cc29a6cf8f57c3fcd9312955276743d7a354a44 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 23 Jan 2021 11:40:41 -0800
Subject: [PATCH 004/280] Hide content from blocked users

---
 bookwyrm/tests/views/test_helpers.py | 60 ++++++++++++++++++++++++++++
 bookwyrm/views/helpers.py            | 10 +++++
 2 files changed, 70 insertions(+)

diff --git a/bookwyrm/tests/views/test_helpers.py b/bookwyrm/tests/views/test_helpers.py
index bd892896..5e42b378 100644
--- a/bookwyrm/tests/views/test_helpers.py
+++ b/bookwyrm/tests/views/test_helpers.py
@@ -248,3 +248,63 @@ class ViewsHelpers(TestCase):
             views.helpers.handle_reading_status(
                 self.local_user, self.shelf, self.book, 'public')
         self.assertFalse(models.GeneratedNote.objects.exists())
+
+    def test_object_visible_to_user(self):
+        ''' does a user have permission to view an object '''
+        obj = models.Status.objects.create(
+            content='hi', user=self.remote_user, privacy='public')
+        self.assertTrue(
+            views.helpers.object_visible_to_user(self.local_user, obj))
+
+        obj = models.Shelf.objects.create(
+            name='test', user=self.remote_user, privacy='unlisted')
+        self.assertTrue(
+            views.helpers.object_visible_to_user(self.local_user, obj))
+
+        obj = models.Status.objects.create(
+            content='hi', user=self.remote_user, privacy='followers')
+        self.assertFalse(
+            views.helpers.object_visible_to_user(self.local_user, obj))
+
+        obj = models.Status.objects.create(
+            content='hi', user=self.remote_user, privacy='direct')
+        self.assertFalse(
+            views.helpers.object_visible_to_user(self.local_user, obj))
+
+        obj = models.Status.objects.create(
+            content='hi', user=self.remote_user, privacy='direct')
+        obj.mention_users.add(self.local_user)
+        self.assertTrue(
+            views.helpers.object_visible_to_user(self.local_user, obj))
+
+    def test_object_visible_to_user_follower(self):
+        ''' what you can see if you follow a user '''
+        self.remote_user.followers.add(self.local_user)
+        obj = models.Status.objects.create(
+            content='hi', user=self.remote_user, privacy='followers')
+        self.assertTrue(
+            views.helpers.object_visible_to_user(self.local_user, obj))
+
+        obj = models.Status.objects.create(
+            content='hi', user=self.remote_user, privacy='direct')
+        self.assertFalse(
+            views.helpers.object_visible_to_user(self.local_user, obj))
+
+        obj = models.Status.objects.create(
+            content='hi', user=self.remote_user, privacy='direct')
+        obj.mention_users.add(self.local_user)
+        self.assertTrue(
+            views.helpers.object_visible_to_user(self.local_user, obj))
+
+    def test_object_visible_to_user_blocked(self):
+        ''' you can't see it if they block you '''
+        self.remote_user.blocks.add(self.local_user)
+        obj = models.Status.objects.create(
+            content='hi', user=self.remote_user, privacy='public')
+        self.assertFalse(
+            views.helpers.object_visible_to_user(self.local_user, obj))
+
+        obj = models.Shelf.objects.create(
+            name='test', user=self.remote_user, privacy='unlisted')
+        self.assertFalse(
+            views.helpers.object_visible_to_user(self.local_user, obj))
diff --git a/bookwyrm/views/helpers.py b/bookwyrm/views/helpers.py
index 60159324..f899680f 100644
--- a/bookwyrm/views/helpers.py
+++ b/bookwyrm/views/helpers.py
@@ -38,11 +38,21 @@ def object_visible_to_user(viewer, obj):
     ''' is a user authorized to view an object? '''
     if not obj:
         return False
+
+    # viewer can't see it if the object's owner blocked them
+    if viewer in obj.user.blocks.all():
+        return False
+
+    # you can see your own posts and any public or unlisted posts
     if viewer == obj.user or obj.privacy in ['public', 'unlisted']:
         return True
+
+    # you can see the followers only posts of people you follow
     if obj.privacy == 'followers' and \
             obj.user.followers.filter(id=viewer.id).first():
         return True
+
+    # you can see dms you are tagged in
     if isinstance(obj, models.Status):
         if obj.privacy == 'direct' and \
                 obj.mention_users.filter(id=viewer.id).first():

From ad2baf3be514f9e9daac3a0849086327cd15a88e Mon Sep 17 00:00:00 2001
From: Chad Nelson <chadbnelson@gmail.com>
Date: Sat, 23 Jan 2021 18:39:55 -0500
Subject: [PATCH 005/280] Use display_name instead of username

---
 bookwyrm/templates/snippets/rss_title.html | 2 +-
 bookwyrm/views/rss_feed.py                 | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/templates/snippets/rss_title.html b/bookwyrm/templates/snippets/rss_title.html
index 91b6d7e6..dadb5961 100644
--- a/bookwyrm/templates/snippets/rss_title.html
+++ b/bookwyrm/templates/snippets/rss_title.html
@@ -1,4 +1,4 @@
-{{ obj.user.username }}{% if obj.status_type == 'GeneratedNote' %}
+{{ obj.user.display_name }}{% if obj.status_type == 'GeneratedNote' %}
     {{ obj.content | safe }}
 {% elif obj.status_type == 'Review' and not obj.name and not obj.content%}
     rated
diff --git a/bookwyrm/views/rss_feed.py b/bookwyrm/views/rss_feed.py
index d8de8fac..ee8063a6 100644
--- a/bookwyrm/views/rss_feed.py
+++ b/bookwyrm/views/rss_feed.py
@@ -17,11 +17,11 @@ class RssFeed(Feed):
         return obj.local_path
 
     def title(self, obj):
-        return f"Status updates from {obj.username}"
+        return f"Status updates from {obj.display_name}"
 
 
     def items(self, obj):
-        return get_activity_feed(obj, ['public', 'unlisted', 'followers'])
+        return get_activity_feed(obj, ['public', 'unlisted'])
 
     
     def item_link(self, item):

From 4e0ec12052f26d289c3e0bb112492e5efcf617f0 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 24 Jan 2021 16:13:26 -0800
Subject: [PATCH 006/280] hide blocked content from feed

---
 bookwyrm/templates/user.html         |  3 ++-
 bookwyrm/tests/views/test_helpers.py | 28 ++++++++++++++++++++++++++++
 bookwyrm/views/helpers.py            |  5 +++++
 3 files changed, 35 insertions(+), 1 deletion(-)

diff --git a/bookwyrm/templates/user.html b/bookwyrm/templates/user.html
index a41623a8..69b762b0 100644
--- a/bookwyrm/templates/user.html
+++ b/bookwyrm/templates/user.html
@@ -17,7 +17,7 @@
 </div>
 
 {% include 'snippets/user_header.html' with user=user %}
-
+{% if user.bookwyrm_user %}
 <div class="block">
     <h2 class="title">Shelves</h2>
     <div class="columns">
@@ -39,6 +39,7 @@
     </div>
     <small><a href="{{ user.local_path }}/shelves">See all {{ shelf_count }} shelves</a></small>
 </div>
+{% endif %}
 
 {% if goal %}
 <div class="block">
diff --git a/bookwyrm/tests/views/test_helpers.py b/bookwyrm/tests/views/test_helpers.py
index 5e42b378..50c3cfc5 100644
--- a/bookwyrm/tests/views/test_helpers.py
+++ b/bookwyrm/tests/views/test_helpers.py
@@ -154,6 +154,34 @@ class ViewsHelpers(TestCase):
         self.assertEqual(statuses[0], rat_mention)
 
 
+    def test_get_activity_feed_blocks(self):
+        ''' feed generation with blocked users '''
+        rat = models.User.objects.create_user(
+            'rat', 'rat@rat.rat', 'password', local=True)
+
+        public_status = models.Comment.objects.create(
+            content='public status', book=self.book, user=self.local_user)
+        rat_public = models.Status.objects.create(
+            content='blah blah', user=rat)
+
+        statuses = views.helpers.get_activity_feed(
+            self.local_user, ['public'])
+        self.assertEqual(len(statuses), 2)
+
+        # block relationship
+        rat.blocks.add(self.local_user)
+        statuses = views.helpers.get_activity_feed(
+            self.local_user, ['public'])
+        self.assertEqual(len(statuses), 1)
+        self.assertEqual(statuses[0], public_status)
+
+        statuses = views.helpers.get_activity_feed(
+            rat, ['public'])
+        self.assertEqual(len(statuses), 1)
+        self.assertEqual(statuses[0], rat_public)
+
+
+
     def test_is_bookwyrm_request(self):
         ''' checks if a request came from a bookwyrm instance '''
         request = self.factory.get('', {'q': 'Test Book'})
diff --git a/bookwyrm/views/helpers.py b/bookwyrm/views/helpers.py
index f899680f..b0f867b7 100644
--- a/bookwyrm/views/helpers.py
+++ b/bookwyrm/views/helpers.py
@@ -71,6 +71,11 @@ def get_activity_feed(
     # exclude deleted
     queryset = queryset.exclude(deleted=True).order_by('-published_date')
 
+    # exclude blocks from both directions
+    blocked = models.User.objects.filter(id__in=user.blocks.all()).all()
+    queryset = queryset.exclude(
+        Q(user__in=blocked) | Q(user__blocks=user))
+
     # you can't see followers only or direct messages if you're not logged in
     if user.is_anonymous:
         privacy = [p for p in privacy if not p in ['followers', 'direct']]

From ed830323304a961397a47ef5fe648e15af540509 Mon Sep 17 00:00:00 2001
From: Joel Bradshaw <cincodenada@gmail.com>
Date: Sun, 24 Jan 2021 16:39:26 -0800
Subject: [PATCH 007/280] Fix migration for if db has multiple empty emails

If the database has multiple users with an empty email column, this
migration will fail because multiple empty strings break the unique
constraint.

A fresh database won't have this problem because it won't have any
legacy users with empty strings instead of NULL, but for existing
databases we need to convert the empty strings to NULL so they don't run
awry of the unique constraint.
---
 bookwyrm/migrations/0037_auto_20210118_1954.py | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

diff --git a/bookwyrm/migrations/0037_auto_20210118_1954.py b/bookwyrm/migrations/0037_auto_20210118_1954.py
index 9da0265d..97ba8808 100644
--- a/bookwyrm/migrations/0037_auto_20210118_1954.py
+++ b/bookwyrm/migrations/0037_auto_20210118_1954.py
@@ -2,6 +2,15 @@
 
 from django.db import migrations, models
 
+def empty_to_null(apps, schema_editor):
+    User = apps.get_model("bookwyrm", "User")
+    db_alias = schema_editor.connection.alias
+    User.objects.using(db_alias).filter(email="").update(email=None)
+
+def null_to_empty(apps, schema_editor):
+    User = apps.get_model("bookwyrm", "User")
+    db_alias = schema_editor.connection.alias
+    User.objects.using(db_alias).filter(email=None).update(email="")
 
 class Migration(migrations.Migration):
 
@@ -14,6 +23,12 @@ class Migration(migrations.Migration):
             name='shelfbook',
             options={'ordering': ('-created_date',)},
         ),
+        migrations.AlterField(
+            model_name='user',
+            name='email',
+            field=models.EmailField(max_length=254, null=True),
+        ),
+        migrations.RunPython(empty_to_null, null_to_empty),
         migrations.AlterField(
             model_name='user',
             name='email',

From d994d8d3c82f7d019a4714bdb2a8591b55f30529 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 24 Jan 2021 17:07:19 -0800
Subject: [PATCH 008/280] Moves blocking side effects to model

---
 bookwyrm/incoming.py                         | 11 +----------
 bookwyrm/models/relationship.py              | 20 ++++++++++++++++++++
 bookwyrm/templates/snippets/user_header.html |  4 ++++
 bookwyrm/urls.py                             |  2 ++
 bookwyrm/views/__init__.py                   |  1 +
 5 files changed, 28 insertions(+), 10 deletions(-)

diff --git a/bookwyrm/incoming.py b/bookwyrm/incoming.py
index 5d93756f..3581ed87 100644
--- a/bookwyrm/incoming.py
+++ b/bookwyrm/incoming.py
@@ -186,16 +186,7 @@ def handle_block(activity):
     ''' blocking a user '''
     # create "block" databse entry
     block = activitypub.Block(**activity).to_model(models.UserBlocks)
-
-    # remove follow relationships
-    models.UserFollows.objects.filter(
-        Q(user_subject=block.user_subject, user_object=block.user_object) | \
-            Q(user_subject=block.user_object, user_object=block.user_subject)
-    ).delete()
-    models.UserFollowRequest.objects.filter(
-        Q(user_subject=block.user_subject, user_object=block.user_object) | \
-            Q(user_subject=block.user_object, user_object=block.user_subject)
-    ).delete()
+    # the removing relationships is handled in post-save hook in model
 
 
 @app.task
diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index 9ea75a8f..ec84d44f 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -1,5 +1,7 @@
 ''' defines relationships between users '''
 from django.db import models
+from django.db.models import Q
+from django.dispatch import receiver
 
 from bookwyrm import activitypub
 from .base_model import ActivitypubMixin, BookWyrmModel
@@ -96,3 +98,21 @@ class UserBlocks(UserRelationship):
     ''' prevent another user from following you and seeing your posts '''
     status = 'blocks'
     activity_serializer = activitypub.Block
+
+
+@receiver(models.signals.post_save, sender=UserBlocks)
+#pylint: disable=unused-argument
+def execute_after_save(sender, instance, created, *args, **kwargs):
+    ''' remove follow or follow request rels after a block is created '''
+    UserFollows.objects.filter(
+        Q(user_subject=instance.user_subject,
+          user_object=instance.user_object) | \
+        Q(user_subject=instance.user_object,
+          user_object=instance.user_subject)
+    ).delete()
+    UserFollowRequest.objects.filter(
+        Q(user_subject=instance.user_subject,
+          user_object=instance.user_object) | \
+        Q(user_subject=instance.user_object,
+          user_object=instance.user_subject)
+    ).delete()
diff --git a/bookwyrm/templates/snippets/user_header.html b/bookwyrm/templates/snippets/user_header.html
index a528bb1c..14216d4b 100644
--- a/bookwyrm/templates/snippets/user_header.html
+++ b/bookwyrm/templates/snippets/user_header.html
@@ -36,6 +36,10 @@
     </div>
     {% if not is_self %}
     {% include 'snippets/follow_button.html' with user=user %}
+    <form name="blocks" method="post" action="/block/{{ user.id }}">
+        {% csrf_token %}
+        <button type="submit">Block</button>
+    </form>
     {% endif %}
 
     {% if is_self and user.follower_requests.all %}
diff --git a/bookwyrm/urls.py b/bookwyrm/urls.py
index 4da0c0c1..bfd57d0a 100644
--- a/bookwyrm/urls.py
+++ b/bookwyrm/urls.py
@@ -136,4 +136,6 @@ urlpatterns = [
     re_path(r'^unfollow/?$', views.unfollow),
     re_path(r'^accept-follow-request/?$', views.accept_follow_request),
     re_path(r'^delete-follow-request/?$', views.delete_follow_request),
+
+    re_path(r'^block/(?P<user_id>\d+)/?$', views.Block.as_view()),
 ] + static(settings.MEDIA_URL, document_root=settings.MEDIA_ROOT)
diff --git a/bookwyrm/views/__init__.py b/bookwyrm/views/__init__.py
index b9c26388..1521b268 100644
--- a/bookwyrm/views/__init__.py
+++ b/bookwyrm/views/__init__.py
@@ -1,6 +1,7 @@
 ''' make sure all our nice views are available '''
 from .authentication import Login, Register, Logout
 from .author import Author, EditAuthor
+from .block import Block
 from .books import Book, EditBook, Editions
 from .books import upload_cover, add_description, switch_edition, resolve_book
 from .direct_message import DirectMessage

From ac2ab2981f15955d8d3a2d07a5e33ef6eb25d01c Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 25 Jan 2021 14:03:18 -0800
Subject: [PATCH 009/280] ui path to iniate blocks

---
 bookwyrm/templates/snippets/block_button.html | 11 +++++++
 .../templates/snippets/status_options.html    | 11 ++-----
 bookwyrm/templates/snippets/user_header.html  | 13 +++++----
 bookwyrm/templates/snippets/user_options.html | 14 +++++++++
 bookwyrm/views/block.py                       | 29 +++++++++++++++++++
 bookwyrm/views/helpers.py                     |  7 +++--
 6 files changed, 69 insertions(+), 16 deletions(-)
 create mode 100644 bookwyrm/templates/snippets/block_button.html
 create mode 100644 bookwyrm/templates/snippets/user_options.html
 create mode 100644 bookwyrm/views/block.py

diff --git a/bookwyrm/templates/snippets/block_button.html b/bookwyrm/templates/snippets/block_button.html
new file mode 100644
index 00000000..ed9bb551
--- /dev/null
+++ b/bookwyrm/templates/snippets/block_button.html
@@ -0,0 +1,11 @@
+{% if not user in request.user.blocks.all %}
+<form name="blocks" method="post" action="/block/{{ user.id }}">
+    {% csrf_token %}
+    <button class="button is-danger is-light is-small is-fullwidth" type="submit">Block</button>
+</form>
+{% else %}
+<form name="unblocks" method="post" action="/unblock/{{ user.id }}">
+    {% csrf_token %}
+    <button class="button is-small is-fullwidth" type="submit">Un-block</button>
+</form>
+{% endif %}
diff --git a/bookwyrm/templates/snippets/status_options.html b/bookwyrm/templates/snippets/status_options.html
index 9b312c7c..2e2e5d35 100644
--- a/bookwyrm/templates/snippets/status_options.html
+++ b/bookwyrm/templates/snippets/status_options.html
@@ -17,14 +17,9 @@
         </button>
     </form>
 </li>
-<li><hr class="navbar-divider"></li>
-{% endif %}
+{% else %}
 <li role="menuitem">
-    <form class="dropdown-item pt-0 pb-0" name="delete-{{status.id}}" action="/delete-status/{{ status.id }}" method="post">
-        {% csrf_token %}
-        <button class="button is-danger is-light is-fullwidth is-small" type="submit">
-            Block @{{ status.user|username }}
-        </button>
-    </form>
+    {% include 'snippets/block_button.html' with user=status.user %}
 </li>
+{% endif %}
 {% endblock %}
diff --git a/bookwyrm/templates/snippets/user_header.html b/bookwyrm/templates/snippets/user_header.html
index 14216d4b..8f5e264a 100644
--- a/bookwyrm/templates/snippets/user_header.html
+++ b/bookwyrm/templates/snippets/user_header.html
@@ -35,11 +35,14 @@
         </div>
     </div>
     {% if not is_self %}
-    {% include 'snippets/follow_button.html' with user=user %}
-    <form name="blocks" method="post" action="/block/{{ user.id }}">
-        {% csrf_token %}
-        <button type="submit">Block</button>
-    </form>
+    <div class="field has-addons">
+        <div class="control">
+            {% include 'snippets/follow_button.html' with user=user %}
+        </div>
+        <div class="control">
+            {% include 'snippets/user_options.html' with user=user class="is-small" %}
+        </div>
+    </div>
     {% endif %}
 
     {% if is_self and user.follower_requests.all %}
diff --git a/bookwyrm/templates/snippets/user_options.html b/bookwyrm/templates/snippets/user_options.html
new file mode 100644
index 00000000..9515d912
--- /dev/null
+++ b/bookwyrm/templates/snippets/user_options.html
@@ -0,0 +1,14 @@
+{% extends 'snippets/components/dropdown.html' %}
+{% load bookwyrm_tags %}
+
+{% block dropdown-trigger %}
+<span class="icon icon-dots-three">
+    <span class="is-sr-only">More options</span>
+</span>
+{% endblock %}
+
+{% block dropdown-list %}
+<li role="menuitem">
+    {% include 'snippets/block_button.html' with user=user %}
+</li>
+{% endblock %}
diff --git a/bookwyrm/views/block.py b/bookwyrm/views/block.py
new file mode 100644
index 00000000..36f64f73
--- /dev/null
+++ b/bookwyrm/views/block.py
@@ -0,0 +1,29 @@
+''' views for actions you can take in the application '''
+from django.contrib.auth.decorators import login_required
+from django.shortcuts import get_object_or_404, redirect
+from django.utils.decorators import method_decorator
+from django.views import View
+
+from bookwyrm import models
+from bookwyrm.broadcast import broadcast
+
+# pylint: disable= no-self-use
+@method_decorator(login_required, name='dispatch')
+class Block(View):
+    ''' blocking users '''
+    def get(self, request):
+        ''' list of blocked users? '''
+
+    def post(self, request, user_id):
+        ''' block a user '''
+        to_block = get_object_or_404(models.User, id=user_id)
+        block = models.UserBlocks.objects.create(
+            user_subject=request.user, user_object=to_block)
+        if not to_block.local:
+            broadcast(
+                request.user,
+                block.to_activity(),
+                privacy='direct',
+                direct_recipients=[to_block]
+            )
+        return redirect('/blocks')
diff --git a/bookwyrm/views/helpers.py b/bookwyrm/views/helpers.py
index b0f867b7..5872b2de 100644
--- a/bookwyrm/views/helpers.py
+++ b/bookwyrm/views/helpers.py
@@ -72,9 +72,10 @@ def get_activity_feed(
     queryset = queryset.exclude(deleted=True).order_by('-published_date')
 
     # exclude blocks from both directions
-    blocked = models.User.objects.filter(id__in=user.blocks.all()).all()
-    queryset = queryset.exclude(
-        Q(user__in=blocked) | Q(user__blocks=user))
+    if not user.is_anonymous:
+        blocked = models.User.objects.filter(id__in=user.blocks.all()).all()
+        queryset = queryset.exclude(
+            Q(user__in=blocked) | Q(user__blocks=user))
 
     # you can't see followers only or direct messages if you're not logged in
     if user.is_anonymous:

From 2a6a000e0524af701404e9eaa2be232c55389ddf Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 26 Jan 2021 08:03:16 -0800
Subject: [PATCH 010/280] Moves avatar crop into function and adds test

---
 bookwyrm/static/images/med.jpg     | Bin 10937 -> 0 bytes
 bookwyrm/static/images/profile.jpg | Bin 34916 -> 0 bytes
 bookwyrm/static/images/small.jpg   | Bin 1122 -> 0 bytes
 bookwyrm/tests/views/test_user.py  |  16 +++++++++++
 bookwyrm/views/user.py             |  43 ++++++++++++++++-------------
 5 files changed, 40 insertions(+), 19 deletions(-)
 delete mode 100644 bookwyrm/static/images/med.jpg
 delete mode 100644 bookwyrm/static/images/profile.jpg
 delete mode 100644 bookwyrm/static/images/small.jpg

diff --git a/bookwyrm/static/images/med.jpg b/bookwyrm/static/images/med.jpg
deleted file mode 100644
index c275cd1c85dce6988f39a34f6fb2ad1a4aba7662..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 10937
zcmbVy2Q*yY+wP3fYxFh*GkS?`)F{Cqh&oyljFKT_5Iv#<2^qqOUW4ccQASImm(ij`
z8$=g`Bx;1j_4|L{ckf#FuK#WOtmmw=&fe>+{j7KIcR%m@p3B+GWxzE<Jp(-e5C{MO
zuP(qP5ugL0BqygJC!?gGprE3nq^4z|qotvt<z!-JVBz7q&db9E2J=Csg!u#{AYibF
zlBk5VjJ&-3bzx<7n5>$VoV@Hm9|2NPQPI-Sa?sIn$nt~vW&fYsWe0$f5-0>{009L6
zB#b~1Bk-~ZaQ$kYWWawlz<)L%35b-8oPv^yn&xUi<23*Y5CkG21(A`Fl3tAtyXps!
zGLkXz%V?1^n>kSk_^`-ECcmMCXxDYJnveg0$~pT+QBkw8b8vDA3JHsdipeV|D#4Uh
zbZ+VD>B9{SEiA395jM7VNEcT(_Xj8szsLRofkD9`&!S^upTCHU$ELhaO-s+n%qlD@
zep^ynR$lS0zM-)R-`vvL)!ozE*FP{wn3$aUJUufzH@~vFw!X2s^>usa=fUC8@yY40
zv)}*l0s=t)LF?-NAH@DAUW`|~NJvRRq!j<~0+Iw?0mMj3#xFz8q-93o<iji=8%fEc
zo&2V*lL{hd{)5%ocbu9HD!(H5^B-#eV)lPWEb9M@*?%YYKX}apXhFa$<AE3fHv#>@
z@%-kDtfmH(x{FcGYDp>w6sI9>1#CaI%bUin7zit$Z4}`Hs&U_=0+u7*hkP!&v2R$!
z;dVBd%bD(NS?5g20ZbQ!|CM-Vn`J3Cr+EpOH>WxjI^;Eyjdf5ok@l@VHK6#3Q{4{l
zZW)C?e7Nu6a675Jshb*b11}XM#^Bs(Wk7++6Rp3l;1VD3LYpuiDZZlNC^wZ7nLyN1
zJKDW-zqfqB!y3Vc?-PHZ>HJO=hS}!>gVPrAk%RqP*88sFDER=X>G~HrRMt9;nrG>1
z^cv1Z5Z^rI;_v>|mjEqB!3GthU^Zzos}ycDG5d{JPZP%;A0r;b2g-_jOcX6KI)S^j
zywIm^x}6E@5VVSrLi?nx=ow2Td#P6!5_fPZaGs=yEgABDTAxFwRD*e9I_Gi4VSk13
zDvjq@lXI^bRbqg!_r@S5g366A&u21EWO`5d@cW-|1gCtL_}8rYjj3)v#)R(|s;Q9<
zxx;#t4lWn7!X(X6ign;0J|lrD&vWJ-K5b(SynHq)){T;SWJ_dWL!u7SoiIL3{0ds1
zqHOg&xDCZQ^_9g;H$+d%uwt~+%1GubU{F4_afS90(1j}W8hyIRV0zjs^bIGE`{qLF
zs@&s^Mx#rgZ5w{N-Mq;1OpW#p>#Qy7-<}zbQK{6AjSo+Q6Y`!6s#Dzm+h{+fHmAXV
z_l3osGyfhrxew07&7XZRWeD$F)t{24y3+bj%Z9SG=2cW*DK}FnV4Y)c16%vH`SEPp
z_8EN*dukJYl2yF}i~tn~Lk92Gr+9p6dmyj;gu>S-nriKEAsZIjeidxJ;!+2Oaer$f
zy>a4%!M%L*R}t&yATNoPl%da1M*T|mMkMt1FhrPpYAp&%yaYVqG7@+^WR$>gKW3uK
zs6Q5Qa4=n85dpRM!nqM1XF5@tlc$r;mss$sTF^5njjGzew5d7M4a?!ABcO5Y2ytLl
z?*zvWR+{XrH@Z6(#*4lXDU1gkl_o&q_M0DQ_`XqWng1x=)uiJy#jC}+ZY8N?!3&`;
zD^X@`@=87RX-Enie8|=@wk)<J#k>7ksXj4KER$QjMadCh&*_w364a}Yc8+J}sU?ye
z;>8=Jx#Q0CmmFNPl?OYP5u^7@?+<K?-Sw<R&HR{c9WGo$Vc~=os~4QsX6aB8xhZ;b
zdXLYe^5=T*^U2KAx|}H2ugwlnU><kVt~HOq1?DY>m|rH%;t6EV!#%l}ZmiLIEvZ<d
za+!dw6qk0zeggKk4?7eFX!=AU!4Alw-%2+8*_7>nNFu56D=2Clcg<_w{_!JWss_<J
z3?)j~+4CM|GXtE~qbi}qCsVT0htRG9QcUE5Ki$Fp!vl)9_Q_a*sBts?MB`5}b9I#B
z*bE*Zx<&GkDfG(Z^!*R+slK&}7a0HMs@crP?y&5b=J+AP+*@T4H4Y?OOW++|S`go-
zPE@PKbY>u1&gcW3A|O1{p3%a>u>QutasDhN>zJ&$*lDZi<c8EF46xBJMr|2jz~dSD
zo%o~1Na`H%MMou<BwnQE_JCNI?cHqlk8r4B-GBh<^^=Nq7m`pWV8!udP{7VSkA|oC
z*@P;Oo?cXdWD4V4#s+bQdfD%oRn|+qun;#~8Ft;OHF3!(RQ0)0iGM`RMWgFR)8VM<
zIB!bD@IamY2*2a-8?a&krf&I!;-=v@`7piVk1>n;UTg8w2Z!R&iVqHM3Y0d?ec!H^
z3%!%)SdBg5bTy(;V4E>>bcni(kpL<q6X9mN`PJ^D$2XF}N7ge~JJV1mL&uocMq+s^
z`E4oR=kw`e-w1y%h;qJVjK0etAdSASk-4T&UJx9BAR(INaa1+JvnG)3%F$?RYe0@y
zSZN-b&iL&@$En@^9K<FzMY4f=R_dD<HF-!%l+Sm|^<$=ZX<YSp$$Nrr21qw8sI#_T
zV+*bND?9t<8`b+7LqYY$b95U7lVC9Tx>@|fPr>XZ2iqY~hx04LCPcWhG^aB#9p{%P
zGov8<Qlj|%PoBl88zB1^P8yE6(ml80HMdgoWVEvaD45B&jHV<>OExDSv=_1&??yc@
zpqMD1v0wc<5r(vHj-8*?^M2CXW}md=eAL06=nGe)|2$}=?Lb%`w4J@$TZP*3A_WY3
z&3U5L^HhdsE^?fJ`_itI&};B7%~I6)*)WKL1$>ercEt&rAf8E@?Q*9~rgJ{fMUjeh
z85g8b(1~Ok;|$1Q?*X(w%3-%6MWTqwU$uYu*|th9%n#EEt_yq$E)-00qWmIib;p#`
znr}IW$u#8bW9=m%y?nC#-j)tm>|3ugUA1Hyufkh+jEl4z<PpE+9`y*8Wa~#|`ro^M
zUN>c%(LjnHaXB6Iuu{tgOW3fIMk#Yt;ODD*o2p%rJkRdhFL+5d=0?X~7qqfh)fDq(
zC{?pMFFN6-!a4i-i}h__m4X%tIg0SDH>BmA;N{iWjUfC1r@c`f7hT1?@s0d+$KKU5
zZ9HM={>Z>GSazkZ-=kPQFx}y$P2$QLJT<VN+IxP5e8VB>4LRC3XjECjQ?EJ2rrtg~
zV|pHS_aqIoml<*Qtv;HBm6&s2cz9>1V&oD)MayMVkF`fwg-gpBUu`1)f%ABKSijkr
ze2o;!KFnL)pb=(aUF*ql(d_DCgOrJ)xwc00?9gl0K+J%M$BD=BkOe9oTmsy-WgR+n
z=VU|$MDOa~gs}C0x!au=?M~;Q5Mt}zE&dRRC@|Ay-OeOqG1L4nkW&;Cfj&L8G}F9#
zDvTEa{3k%;q^`m)k_~h}ah%BWx2a8O0~S#x419`uDA(rrKey8!fy?}^$*?_4y*pgM
z{0SH#lh&yKF_IumXA7nYnbV46Z4FszazL1Ge6?rj;9jeDb<ex&TIX8=ow0K14DIfi
zG6%BrS=DE}g&#Z*zdpuR_qMV$%5}N5iY0+y{O^`t__9k3`)VQkSt&btAHIryyr4E{
zEw^!WQ;wHns9_C?<UOWadif~akGDK@GdPJ4+MZ2Xz#J=~1-o;{g(2gIy2r>^b~$m(
zNo)xEu&U}ky~zX>A3!mwrw)|JprG>j4D&EuG=OfTs`HJn1H7t-RXg*cJ2miO1O<T{
zWgWy)ot}}8LUSUSK^dPzDTzrW7nN-i{X#{Pdjg*X&LtZX3Gcj<Uq+2JBVokzCgMQ1
zdx;*M<~&%kLI@8_^=9Gc`}n#>2ym!uj<)9me3an?n@?IzmgYNswK2Hm2|cB6Q>?<>
zvvMd0b~>9FrZiv+(jZ_2+1<V4^64s<clpCIA{^)f%7KU9VP|^mXmt=zGbfJv{cSwz
zei*HXz0s8c@4ZPf(`5nt8vwU03e}{XEkjGCx|CDz2|07l2q)?3M09M`Q@<(9-hF94
zzuMq3U|2g3u9O;1qPNoLwjm)`7uPe=;Tn=BbdfDo?c)&Mrc0uuoM_)Gxe#B&O7JwC
zm?uYmL^6m#ys45*OI8(eCIA3p_)q$y?7c%3%x-yO&~ckwDY0w%R#iPSmwt0)?h*=2
z%L?0D@UO&=zj(Y&_S#c&*h~h#UuaEQLLWS)YQsxq-4`-3RAxK3*k5YOXMp1&zeoP(
z(<sn!japN(0iX%R8q*g}e8%Bk>revoM-m7m3?c!Ea7PV`hz0OkyzyS?1!K~Ku9Gkg
zrOy-a{mgu%Q=p9VTO)=QXA2OzlY#<l<)3YN35bpt@v27tCAcu9Cy*jNg}*@az~syB
ziBUE7V{Ek_J?qWCep`>cwj_<<J9X!)2j}@jPGtFW^M}Z%NO%Q|w9`c&uw1kxYtn04
zfxKDJ%7y#iO)dd^oD~$$O#&xZZE?s116xPV+t)CbygHy~4eNAs<jsahR4#WFrxq8Q
z<M~*p-f3{Gi8laa`BDz*xZ#5o@rS>UWf$L`WqkgZ`g7CLWw`_VH=vj$u=9|M-?X3h
zI+Bz%YAHJ8KqpHn!NbVznzr5ZDbEgP`*q+YW#jD<+Zm9KiJ=b7U5pK9jz8<c1uA)A
zhQ`=~rnfOoc2A@^2AQB0ipzf%NN!epqh>-zda?F9=OvjLt2UpUUi>9LI>J>NecC%3
zG8K`>Vzy+PR@LhfJrCN+IOMZiL^Y~5yc%x`?bru9tFdy-!$@=TyICvV>7PUt5e`j<
z*@q|~yYcUR+#m6|$&{RMNaC{y_0-rQ?w$`1-GPIHPP<vjI|<Q@w`G6w^BquwMxLbH
zym(^t_dHzgzU5r+`i`vZK8e*?dH@2_T$Ac{3AitOzIU-ZF@#SaAT$lQ{<H8$ucR{I
z-ytmed82P0>%3PZ&8GsR;4pd2uk{F`Wf*|<Gv6Ad#^a!xeN`&5a9d#dw?XvJp&J?H
zj1V7RGy_h2%lr|tWj`ePQSzb1sb8=2_C3hNakbc8eZ%}cbZ<8qsWfbqQk~9MzyE{K
zlyK%_Q|iWH8O2HQx;v%K>atH$)o>>?MW2eFYK~}+m;70aRfppOyH$=)nuNGw;^$3i
zyj=Cv!zlR}?buKEykL0gHW{*{nxDYI;v<^EO`o!!r%qEYkJS)_l<=CAKPP|vkMdG+
zJo=XLH|uLjy$5%40*`;sjQm&U*A3#(x|6+&Y@^hLdYSE4>yW89Zq#Ywc(1%K`B}e}
z(-bemeZ!#|y&prk>Nmt++AAH#c76Kw5@@D<<zkUAJiziV>(@~el}z3HI*E-x_TL5<
z-1AKCd0A=)OSCOcx-se#11eWb%xfrL8TwvtH-<iG@(gIJj#=2{Hf-rzX3!n`2?p)n
z^)uqSQ2D7FeM`M5UofFr#FyuyUsn2e9qfdp{(~rMdfzL5Af1yx%KPN@NB_cuRL%Qu
zXk~WIONe#eqT(4%A6TcQj_s=@z0$;qHuDB=@~kiwWrN-(l%PCSzdLuoB2KK)_Xx=f
zulJFOo1$s(m-L2d=4j0=3NWI)XIyuUhEj^9aiiwhlIjM9C&jgthP+{x$UTR*9Zes8
z!6#8>21pdDg1;p;SZ&e=BE*_@o1s+&r+#Q&q1d;KRnEQN{X6k_;G-*L0rqv!tJi&J
zg&z3gA8D>fXZ>-qbW(vz!W(0xX56HSt*ppfu3by~n>zQPwRB#C_lv1NwQ=yuoU@l=
zfLf1`^IOw0bEUFxJ`T)vj^BE)TF?}%F^X;J4<+ic3ROEhPA8BjGiq^vJ;5b$Nwqmk
z-<s3BvP~FL0RF6gvwJ?R^yGVeS7a3g<(-DI7K#IQLS-lbKRiQMsf}*Dl;FoBLZ6k`
zRG~PA(hg#!DU?V2TN~;OR>Qf!xp=<*(KpnjO{oMTF#Otjwoj+ukos~Rp++ETe{88e
ze>zZ5FNL&!nVAL+;L%RIDZ}$KC$Q2dNYx?hueit_#52xoWXeMd+1(?TZoL=<Q{P4Q
zcksw{$=M^%VPC%{z56pRg4}#{ibu*{0%Cm!mLww_GP#!2RetEny-FE!)=t?sT{9*)
zw0D^y>InVC_l!#%JVcVSRf9>*4c#=Al9K?!67Vg|XRh4~gcJC;Mt;?Uhhr<XFKN-2
z0M^&D+*k*HH?{A7rPKj9ZJgB3y1{=4PSe`eWlYFS^6bUU+Ua92n+1mvo~p^QjbcZV
zr+%?xbz?l|Gq_s};J_NuPwiT4sjGAW+<31fV^Lj@FmUiHOcR>!_f!cd`{g{-b)u3Q
zlT$wgY$FURDk(B*ZGZJc9ABqKskFA<BR0hG@h2G)T3|ztVDGgWyH&O8Kbdwd(u{AM
zi|NQ2iR;KI&SpcKIBU^QGe<(82n%kTw`o9d^pl^J&nd%{=!=%(?y3iJ(Wnaynd%zB
zZy8oFmqQ~zG5MN^w&q5&KPb_o-aU9T#wky%hW8XX$Bun8jHUW8r;^Th?QN1jC(k7y
zRfkTISwB(OE%Z($HT-AVyb_!sZIfU9r0vG<?VC$CM?W;wH`zaUL0WtEN_}uWe|Tol
z_YzPYe){UL##CzQK7@<NpXzOF{@1e6_J*))0|%aaZ2#lp(S_Js*6rCXDV>TPw)rR1
z*OrWVa<*hUs-yk(Rj1Oj_A8MjT3+F5K6<@Hnsbz<<}K%?+wo(CsY&}oCn`(jB?}{d
zuHinUha`fj*Ei82>&MF9ca1+xD@Yo`R^NZf3o6`%E&jFCcoRbHk4y7Twz+Sk+xE+~
znYw#N#y)_TEbmH_j(F;Ew}n+gpQcK7dJqh6cQ;KdaH~>%ldKVppIH0zSWItDU5Wk}
z&QwLYL$B+9dI@0guDapnm2EpdyKoJpFmT(K0&uVxYF2uo-ah5+UGNGq0mMU@@cid%
zNgCfxj{LgO>&eMCUOv&1V@t7VlR~)t_~rE>`#J2wBR8?843)efn7WW8N#NL|dbK3F
zQ@x{J8FC5eKx73C?aa%ab}dGP3y4#18DXbo_xzoIaS~Z4+Ma4hUxkn(Q(=kkD^Sxl
zo}NLw5BJ^|xY|M_|Lj#!QY_F;RzK0Hocr?r`2EHBq6)`w5$D{W@#KyZ)=XW5*f&!-
z`ETu772DJ4)@kVptc_nTp4?(I96Bboc4e_J;A_5;Y?SBpatAX}zp~&Bmw>petkeW^
z+aG=U^CYsE<v?iGscL0$-Q;GgzeF9sS5f&%O-8%1Q%z95UH+X1S+-I%Fw&Satv+^*
z+?$~LH;siBM>hkr*yA@kqxy|nvzAyyT;dm6p+zyIi3Mvl5A(#|z3ef&TUZ#JHi_rw
zVYs)P__;I4o7?jSjXVMoj}=Rkaz}1{wCLE{06*nBDL?k2?(Sj3wJN@Wvd3{5)1TSY
zQEbll<nUesOg&;#2lZ{M8+$+38JT}w+jM{NTY79|heF{^iJl!n@Q{<ohK1NUZx24V
zQVq2Xdi+yBY(a%A)rK(%vAOQA7M}2kPDzGx#U)WnDM<tQEbnGtJ(u1b#1mOU_vD%I
z@0m+L&?P|ScSv_HTl)M-Q6X}uy?(IM@z%@8fur4t4^DpR$o=r#kWAm{`w+2n{sxO=
z9hFLrUMR_zMczjI<5p6<`5;T;i(&1;C=$#vW4~+Xsd9}$8;77Db^Kz}^X|XChNl)W
z+BoNAU$DOz{QC2c3bfPnioY;{6FlGJq?;+}gTcNqaOlM5b<t#lh>(bI>S_Edg9n9j
z4k|L{JOSSGCZTINK4)1Gz0UafTW|N`**YI(^M~+Wc@K+C8WyxV8OKR=GO|deNkP%%
zP2i0;YI(3x;B~tjUPo?U<k_Q{)~=N;OKC2zm67ImOl)c)+5d^Z8mno!3{y52bD%v8
z=>bQifN)+D^$MlN$q$oF;+gjtndRV`9F8XAlW#gM0Uu((ok+#_iKrRlP^;h?J7xHg
zkX)iEkGix6(zS>u+CzdR)uJDgoYtpKwMKle;pCffWc@z1Bx4%eIC3CSoodx7DD9W;
ztGyiFE-rfV-7CAvePeNk_edD+(fyz>-dQ8^*YlbYy56+7M>k&2P@E<PfuMk!cI#gE
zLfu>5Ww{!?k{dL@Ntd`m5?XiwgA_b}Dn7<FTFzYPqKybAU+uj+fC&+6DQA~}-<6Ma
zjfmOeGH9J|)_%~sLvA#hYTX67ogZ>GU6nZbs`dHUPm&%96GoB&Y-`MOpH6;wXWvBd
zg?QU1ug{NGw9wu(eLmtj7nPA6{fk@qK6?%)$tCtXA)klB(loIqF7fWZD<z<hHGZ$`
zwi|A>wuGMXTHB`LD_)D(T$76==9}tl8+!ky{n8wzn@0t4bHyYPf=5lkzb^rX_|@wT
z;azeeC(QDGFN})#w@T0q9`?u&0`JHOw*xAgR73LGuTPgY;}gSVS2&5tQVz%lsN|+t
zGzH;z0KV*Np3p0ccysSJuebc%1DzSl)HYuqm`<1Nw5V)sE*D&RAd~!{qsqp;6}E)m
z95esud;gpj#L<A4kY{AD*sWOUvTr6<FK_VCH*>$Qh+$FiDRNW4X+$yncifhwzopQT
zB_%Scln=}lirHJM*65SuGS(n(5lc6$7k~3Ql3%1x=|rrX<9q69m5NyKeV;D_3o6#x
zyzJ*DqEHuS4cFOH5FqDw%9v?dq0wDg@oXXrXVs<mP7BSk=f)wC6CT7=aKaZdt;^#3
zVI>^myJbAd-$*?9mE}9!ncPj!tP0a8hzNrhsteyfOtm*R*P*Y9bU+GIsJZxzN(WV`
zh-`#)?ba1l&fD28deyfu_w{D5I9f_Qy+iMpgZ4|zJI>W*HPVv4N+(>q@^-)(+nrY3
z>FiJ_jtyb$1b{)nQ4D^G(kL$tKGAmn;J5ILdamJxfyx{#<!(RVx|ZFmw>Az%n(|*~
zz4#~#xz8*bNC4}K6C9D9%4J^d$|WdjXDlUdblD}?irbetk)2Zuvr>=M^NBy3vF5QZ
z^%^(&%N%O2X+Hh!MP{Htv6i8X`r&ST3&X4S8kU8-y(fVQ)3D^{Vv#CMROiiO?{$Qu
zkG8!bAFvDhV0a-s7LsTUN*e?N51vK%_LG$4Yfj!M#LhkBx8)3wNY-Xd#f#FSrKOej
z)kpx}jpir6sTLKzT2;*UD;awN4dNalko*FXVwUs#5}y?a;5@D~HQ30Tswi6r@4xPI
z*0lH5r`0cEfYd1TYpwhdH^!gKG$aNCyW0tv_2f>D4F+wXFa#%Od=;=-7~9vEDYP8e
z12h$jLu-LfAAcEn&o?Xgzcp1?jo->NB%DeNU6|&n?^?Hceq=!5rw<D4bV(z~Z3|y|
zPqe+1;UU?hNzU=!o^H-7QrLC$5H07J4y?UO11&lJyYT6s_aV7Gj&_7k1zB56jI`U`
zcqv)GulC7FooKX2-iw);CTC+iQNF;`C^&@JUTbBpugg~kNRFZcyH#aabF8O1=mKat
z22(YGeB~mgV8`S>9dyW)&q8OFcUyf=_F}py2NP38@zw_u6LwhFvfq928p)5$RmC%0
z*k7>|;zlgk-mcpt;LyOx#W-P<MGoyUSL4&z8KdN?PYw&Z^lB}Id>e+9U>83^okfzt
zfc#phOS;*%xiPT0`EiGs0|3TJUjRyEg)d`GjJc;L=Dhc91)>E8;{r+hDIQS=I>l1E
znpnEWOYL7By-~92$~fH7tozg|mTJ)f)155N+^)#Lok2pK<IT~@YAt%K^pkr|-!+>-
zqBf1x89ko#E*6?Q>l8DFfA3(+H^shZ9TZf$uwLle6x+EN*^=Sz=MPh(7p)0HN<6=P
z$e;DqJEQ+^Jxm)-BXW0Ltc?4q)%J*__tEzQM&5dHA__Z%<T5$8%8->lh!ivcL12#E
zv@I5U_k!;w_(|A>wbw5gmH`&3))USsoXqg2&o*IavGjfu?dxc=khA;UH--r{nuYP=
zQ!>;dg%SS_>e>j|z8}W5JyuD@@4QSbqo|Nw&tm%w$bxo_qej2z4YN@lJR<wxz9<yj
zy|tliaq4prMek=}#K(qxDa7bNxloiw`wY-53@QBr$dSzfC0ofqz^&j96rLk82D%?*
zsSR{HKKb*zBIj9ZUkHNm@%a$mugYnnYTw(!EESTq!<s0QF4=xWOL#6Ax1y)T$K-*U
zR@YwK!x10L;<_e=x)KP1E;+f)jtmlk$h<~tWMyu^^p5I_NfSz}bY`mdJ~+06JLB-#
zRHDb{U$0SEp|lZJLYHE?tJ6WM2|XpPRXTn1s4^#u{66jyunb7<<V^<FH<*e^+j3BZ
zXRJ{KtFduX_(nEh{LI2#=U%Q=2AegmN#ApMxIeG)P=B0A+n?Ov8(fNd`q<7_s8V3i
zpG$UAH2txQj6Z!y?5N(pKFp&6`8j-rFS#TSSj;i(bQdewUAhRu7{m_3e*e_Nhg_UT
zDjXS9*bdUI$@NC)$R!LQd}wdB_psih7{TPFZXpY5Zq3jQXFcw|Es@S)A%bqJC8l=e
z@KhOMHDP?~h}@a#)C<`Qj7QA>F|oIkQaZc0-qzx9i)ElkBz+%$UDT;LY=QxzuB(F#
z`}6VPVb?n^J;!nQFRF-Qzsb$B!H51GFqW@r`cjny#iuTq<{?q-fWiYfMJ;KBsbO+a
z{P_68wOjCf84)X>iDk|;rR(h#1`nBhFbKkjMU!{gp4LsR4IxGi<r28IVoS<9c|Ebt
zMzkayKVYna#9V=yJ$&TaER)GKWqN&08oKJX04iG5L=Pu-He^PZ#w1gfbiHn@6^LW_
zCFWQHt({0AlnF+uP|iyb;cD+HxvyEK`c?osgh7C1x}J&FZM<1RV~%G4D%ATOM~fg;
z$BWp$&K!}hWz3q-sEJ3b=N-l3d3nKJ!dV8tTJ40F@X+Y$LX#3xa374-4bH?<tHmT1
zG2Z`95QHKmHFLTOLpGsxoU6I(_L!xNqI09D1pesjixsD`^bw*9L|=oBw<UODX%cIr
zL5f~I7IhklO@8`aFf$#)^9AB~m^!e<<2kB|cxy^x>?MzoabxBrm#qqV6%6o+j9N4}
z(_U?#dd&LGHJrAlCFWkFE(@Z}<$vo~W2WMKT%lm?zYdXZm}^6ANr16{fq5#506j5v
zq0R;)EmR<1zSIg{FF*`WAX2S72PEmy!<1Roh+dM=Hk~b5NS)1fB(^jM?Q@WPby~ny
zD^Tp=MC-p#;=s&uvJo9g=T-rG`<m3<50uZ|$$D<&o?So4&4qIt=7oiPv5MchmB_03
zsjr$}k0wo*^SpUCr4JokX%`K-QyVHmO(guR5*f!TC3T2_546mKl*MZg<7*V_Hg=Ox
zk|=1}1gY=FMTZvm>#`0qV5gePT3)K#!J}{QW%g(O2u2%T0-Dn~#|S-1^a%8N6a!3N
zBed^)+v$O97pMdkheAJ{y7ll)aYDrU{+*Wd9S(Gm+D1^t_FEG*9mVpKnY6jjNxhA4
z2j)Q#<S&*Scl8iIYY8a}M7{kcW2d<IkO17LIab-JFJO<41W3e}h!uGX9=AMp$0suh
zI%98lMm6g+W&qe7NA)N^%1eb3h`Z=d*>-V_k{WQwM?(4{!;GWCV%)xUe<eui+BnzA
zYgBjS?!Cl0B#4`2*%Zmfp({5A6l2ivFMaS`LK8Rmv__={A^s6sU6*jT>#BZvXW*Y2
z^S{Hfpu{&LRh|LUFF=BCanxQv0CQmZl;xd6)$W%4=tuWKf7bw+h!_J$6%q4p4$kG2
zTjz~5sH$AvTS?Nh6-rDUUS9zNPPwyScLlaw6mLY{E!nn&^L1a#{V`4eZHc~4UMPm^
z4DqGr(eCd*s#N1^ue_SW@VASG%tS0UB1hGlBpZNv1@+gpZpWPkyDHzNf-Vp=bQ=FU
z+egeg)Kb78IFHv^5~k(-)rKwx5ULidXpad15Di}m^y#?ziKr4$OXoaN<+g|iTBQPJ
zbwJH)5hVMI7s4QL*1f%%wRI5g`iQPeW)}Hba+bN?gq?KvO)>W*nFt`@xKyF5i-)v^
zbwU)Y`Hs{z0RiFX$SnehrS02Hu_cEi=V-(Od<Uwc2kWx^XpgS@<(8rbAUHaNG5yjP
zM3}3ctE>zShgdunx53%($|pnwIC9%?{Ihy%aHLw9_5AlytNF+YP3joZM_qVjkd!^}
zsk0ueMxKW(M5vPD<b9l;svRpmR=`oJH>~Hk6bUVJH*@@9-NbuL%}VO2bmgZjiyhNO
zU6n6M{tXx`+Dyd=79>>rtl$^!x4j{oTgju7c{{{Vu9~98jg2US@_wise4p{6JvgRm
z56TN9kZ~?Y>9fiSbki7V2s}qEZf@KGz{L#9k2Zn^)X=E91>Fj_gRxB}IajPScyHch
ze<RTdnD;Vr<Vij8Se06P%Z!&lYH5DtUT3P?4JO7^@$U7M2HZZo8dtvAp`<)Mtxuu3
zIZ;6n`Xb>iTn`3ydG@R>vhyJ(K55C8J7!`D&b6t{Aw+ZJ0F1r!rk12)4U;nX_OPff
z#(SSfAWnOLa|obM>PU9>Bm6mJ^Ii~3?!UAS=%HQk(ZD}aXWoxlk@nVezI4e%a$6%;
zU#bqipO&lH7U?}oY&V^pTweT2V{s?8NJB}nHc391qh)7YO-fMI<|l}jv@BB`7U6ee
zB*ON^a-A|H9K_Q9p+0lI`-z1^4{zY@v*L>un4qQ<TIB|z2$W@b8WP??BI)ht<$O4=
zmr^b^9Dv_9>-Hr_&+@<azB`l{ipWJ2?J(&(x%-|nm8sf@1}OXLkclZ?oYBHnYp)zT
z>lRPt4B;=;Q#XacD}nP~=h{_N0VsU+)_*?jRRMRd-lSpX(gPOCJo{qC7SuIbnLhN}
zLt;c2O4$bGu>Js7bIzb0YwwzUN0N5BPuV@u^`=`3Lqq)y>lf?1%AHW=c-PI;BKrp~
z0}{3t;!11<5`Q>~4K>0C1_w?CNB5txs(r=j`5qzc{R$qu^9adpY+R0oIf*~`?u!%3
zxsf^8(UnU3@jEi_s$8yTfc<>6&`S9JHNkih(3D%ahN$E|bw(~HW!i1N0T5~3C`-cZ
zARmUlA&J;o4Dxb|zEu;;={4a_`h1LFGNHnd4#}C^=Xj|cgUQqF>N$64cHuaCeRRqP
zCZPw8SdXu^M2$Os&M|<w-(kC-$JguAp6JVIxel&*5`TvHaTcHoK&7QP;7Yc^_y<gC
z^=S)4O<Ha6cPQ9bntaXtcJhvoLiP3{ZMJ1Sfy%6nKT@p@BqoCm^qZ&{Xf2;{YB@KQ
z%G@Y-$&8BNk-Zb4?3Y&%`ng)m`?@JsU35wHqvX>=Q3+qjnTa$<LbEHMQh~guf6WDe
z5yItKSKmm&F(n_Q?<*HY1wD40Jxk}{OGLdau@yYr8SjbOM?5<7n6toONgg}Pj*PM}
zE=*Q&zL~t^AuEA5yQTF&$f4YP6cnN)B}d3v{%l5H)_UC8)*OL~xyNGd|KghdqSjoW
zmKt(84S$ut>m)HYAb;Z|c2|{=>$|=iFg5jll4|{vX8^}N=xX~`V~Aq=4Ab@`k6Nm;
zRwjqkUKO~tyw7rjBb9<<-M>b;=DzqZC=!AGUxYI)gW>-qqtz8{*BXiPJy8RbBxTTZ
zj24HpG6yMhzE3YyX{Z9V8^WfGsd{(z@DlJ?&w?*tkhUMTp7)^egZ<dp#c1cJouuqv
zN3+9i>pC|x${>H4&}gG4vz*FbrD4Ts`#kDg!8B=!&}JZ#7VgT?DNMbPoCEe}F*79W
zj@%eV=B;>3LOwXJLbyioxLy<|z$^#Qd=EAT&6#AkNWghN{u&sIkJ)syI{5r+bg6hv
z*k|zU)jg5I=oGJjOF)Exq}{5d%GjMj=TGd<fU*Wo5jt#VzLaAG(>wIyqgOlWVWo}1
XS;q9@zlzB({!JnIp8_-Ra_+wYDD(on

diff --git a/bookwyrm/static/images/profile.jpg b/bookwyrm/static/images/profile.jpg
deleted file mode 100644
index f150ceabebf5e183818405f854f6de336d063068..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 34916
zcmbrlWpEua(=K?-%*@Qp%*@Qp_Az5(j+vR6nHge;nPbKr$IR^5j@j$H@9zDow(kA0
zwLNvDr_|~msi&q#YW4Y8``8Ac%1g^h1Hixl0I<&s@UaVCC?_FdqN=VUEvG2;9|m}$
zgN36zBr5>m=;Yz1E+bB=tEW#2vj;!`zyQDj_yArr3wIYWRaHg6|B)V6{%HpQ7McF(
z`agF2-!l*_t=ug>2MGJg=CyEf^Z3M~pIG^ehs!^l_=zzsY|Sh`ap@;!bo(6OC!YJ)
zZvJ1q{}0>z7eD^PZkp;60021RCnmM|FJ}CQ&Hs!4&4tv$*3I#=kHaUXbae3i9K(O;
z-%Jp#oU}APYr_Bh+yUwU8Gtx|6krbU1lR!_03HCQ&)VtJX8(IR_W#H!1Dro)EIvyY
zfH%PHQ^E#d`zg!#+3E>!2Uva9)}QTGpO?dDk5Bq%`+qe6@IN+nx90e#?{mtC@&EwT
z-p9uudH?_>2LO1B`1p7!{`hz+0RSM@0DvE<|0D05`f1L~&-TRsX`{>o08l~zfcC!s
zX)`Ya06IQxjQiWg%+2gS_ks8<!L6+UfZGZH07(x3!1%N^yutrp{(tTLsr#RPK*=fq
zpy>+$D9!)?S=j&p_2>Oi3_pGWBmhtlkdTlNP@e@96cjWJA}q`&p&%f@A)=w6qobjq
zp<!SX;$UFnW1*qplHuYL5s{FPVBnBbk`q%B5|a@BQv&uW3Ih#;3=4})jEROx{QsFg
z1_5ZWV2NOf5Mbm0a5OLoG_a3h0Kw-|fcp17{V#$91BZZu2EhDde!gV?FDBqWT$qmy
z03rk!02~zp^;1EK{p0-Fz6HaZN)E<1lTzj{VxzV~SOdx#T)i=tfgCE5rN_e)WZPFr
zY+Pq*E9lFp#No+jXw+Z=9S6=$v`t+_tqZVz35D|}B0@a{97Pq!;O6CX_><vpi}6|=
zfJ97v##MBfLbM|ttSw&!C!ciOK<Ri-?<)sD8s1$ayjF4TNh$8N%p8y}G(5U8d2Q7b
zeRJc<HFu&f5)^g`ht25T;uIdD7{-$&ar{`n$KKT3;$Vk>5wt`vyFazw*)yz=W_;Fs
zaFFmNyuEydr5o3?mM>|tWO7-%Fud~{!`JzrV{zlZ2I&TR`DQT7RnrQ;7iKGXYvi)b
z>Pq@+TiVa$7)D==F+1m!<;jRs#`)JGm1}Ir6jTmS`wQo-3+dn#H=+#~M3mm02ioPy
zVV2xUVBg^f$B4nsuIAB~#puGOE!syMR(zpW4bAkCJHFi3_&p~2Q>Iz2NjV)FU!i{C
zN5jHoCrumWrDFIE^)D%CXWMnX!wZm_XQA5F&2!IL?C|9(VgZ}i5ZT5zUjSVP2^doK
zHY_!Gv-8#KJv-U)6KD<ZZ@B3Bu^pwE@u@v8BK`rm8e<3rb@#Y1PO~eiOtFH!th@B%
zGlAJGl||fyd*pgfGEo5wwSsR(UQ2o89~i1}9mkY{eG~pIDJkXLeYrYgPtrwxrQo`|
z^D(P}oXmhNw@oN%>ycKzGdp-sKMHzlT$^<`8PkR63^~TV!dRVE0kE8fP~@NmGtk3N
z<ZxFFUH!vaV26xF!HSl3`&a4%XDzu~O!~WMyKTYl1{&0U(UF-yIy3x|#<C+u0&<~*
zclaxOd^B!<xP&?8+=;00<j?&6N}==3c+^^YEm1|5v}EXOx<v{)u!p)eP3#*V_gFzo
zbWl3W(VSSpg2q~=N~ej5e)owwOvKfVU>6v&Nwh@rEpU$`OTG*DTCa7%cVD2WH|h9w
z_qLUKg6oD^8@J)zH6g$@Z7U{O*|yxRzXcI#-u#tpCXXLgZ0b$64P}Owy^)poF72=1
zNWPOAxt(*6h;1^puc2I$(2a7W?v=6TW=-223ZZA|!j73s<??}lVISC$i;hClan_q4
zLNEfIWL>c2i!8{k?@ch}`V*@&3bc<LF}q04e;2Tt|JIpTk9RSyB~M*CtQG#ufPkB|
zk}hYZwG3waO}=mX%-V$$xiPkY^YUvn+uX=$RjaA=w2|>D5AQd&#9xZ=@u}2V$>Ihm
zYCkXP(e+HZH@<q0!H;TUqhOVRLTs?Ia2#__rmB3Hn-GnqXh@8xl&TvClA?u6W?MVi
z#Y5#Ne&bX3(g5TvuP|(4D`y~DqVh8CyzES}jGQj$d-cTNVr>8hY}uOk_=)<uNt|Nk
z<-zO8^+ZtVE0Y|3Mf>?#{EozHSh55RPe?S;v=nxz0vP(63`z*O(7`#b*}wRk8mxDW
zKvAnn=n-@+qqP(GW2hMF0biqtYT<;Pbli+EZ>+I@dAT|6vMpvyIu!;J?&@pr@G)gB
zWhD6|HiU;3#m}$IX>Yqtg4ZWF%OX8cEU~b9+_Mf@$2^*~*0G~?uRr@TIQ(g>F`rvJ
zN{S$m%KNnf<Qn}2%1y#!LXs4#B=uI9PK=bbu`q7HGfUHG4Z7Hk>)+dy;n?#K5*P|C
z#9z_T8(@Z#%OEd+{<;eGlaFZAxP0d>D479ic|K_5^j=-6*mozK2%*%RDV<MU@|SI?
z4MKsBw9j74Z0*o9GN}-Mcvts^aug^-drkD-y3}&jLWu*`E6!Rc@>Wiuz86Mxayw(P
zoXRs#QA-2|)3{!N-I)Nq-9`Er107|(jTnt`w^CsCDMO8g;lNW&dgM39g`HF*-%@4I
zcCHH#y+7iI;qw@sW@z5k3Q}LdG{%~BeKGi=lT&;%3;5+PY!a#b_p8(rs_{2CXp}Vu
zIJLT=vnpfNBPqx&85HnDxl>OhxpleKpzU&u;**6{FdMu$JL%|e72@Jyd=7=Fs8784
zIDU_D8V|e0ud{hQ;&p5qn5Bw;p~8m9UG0$mn)$$m|Dfi+JKrtP?T=VRYtTrI&mVoy
z7D9rwMCUo90^GQlJ%CcD3L%$tS)62%%c6~4i>M#6#BD96l-tyd@f6E+hw!sB>{*?3
z^7AXa2U5*i{0489<K{aeX7nb4nooVuo3+g{5cG81Twj*c31oi!?IWEZ8eD&TRl~*L
zn9MNTM6RbP=*GAE+lSqmhF{8Au$)wGe>A$J*E1Z+Na-1ISkcD65}FnhqX_Y4L74oA
zg`xS@U0QCYzsKjhRcP+H3^_WPKVlXUbAic0hGmdV{L&#EZ7(<T9%Rg!zUTDp9AvoX
z)A}xdrMm-|Xte6Oc51O@T(atZpupgI7p;#D<%%$8?gPV!X}WZp1=CZSEI;8rPOC%^
z?#?DiDPEgz_YFlq8HJr~d?*V)At}MWnCA1LrELHq18l^9`_eM0Rpw}0^Izp*&kym!
zQ#SDTty?nHICMV;chj}cnSp1}^3_YxNJl2$a#444S<VZfp85awX3t+B{DWa%V;PEp
z$$)>1fiPb>@sK9KAVcXb#Zdsf?W5u2;}R07IBe_|OjaO~C6Ob*pTZ7RHj#d)R@Z09
z%(6@<UW9Mt<ZXPO<ep1{!*it7`Hnf-BsT-3lOLbYmJFMSj+#72kVCpi%#JFZ#nx^1
zC@`|nW6-S{u3_SZ#!JKCb2>l+B|u4PJNDv1{W0QJpg9(gu_@p_Olbf!T<W8mgbZ@P
zn%Qn!j*gv?X<P4UuszHFyA{h?K0+&=BzpXgcj`8JX*rT~o?Y)|TPUo@rEw`HAEuv0
zpuW7eYDBGoX2t!(E@JNBdv-(go&Cb4eR5lXOM%FFgA8PLY8KMhFbN1evu9-fYHpz3
zup<<4h*ClGLvL#a9=K=Gvm{jlE2%>bEh1H9m8P_ohENfoxyDIZ2^#|!(&f>F{)9Bh
zHBY=acKg;VReYywps}9yphAj7At7l-ds@qx-Hp6^8d3b{uNl7=PX1Z}8lcU)Lv7lJ
zGTvU@&0Sww&KTh1+%b7hDN-y(DPcn6CTIqGOjI4zgHQj>zPt6loeHFk_b`!@JkM;m
zGT+$yXY((wB9}hB;G3@Q!-+BNA-rMRy%T{!Ug!DS-8J#y9fPr?0*@ep!~1Ou-#MSS
z`}J=61}B(Y#L~c}a-+u=w#BSz%MAhe(8#$XWWof)^z?o9+?AU0(Z-2%=pih8-iQR;
zkyOElM%tM2la%&m^wX45lFGQO)$5I?5k`vp;-mXhf#@>&Xq}BYM|U5-+g?-tqLx`J
zXWF{qORi^Udd{9H!}k;+HASK~gdjTz`#;ek?emdvxQQiQcp%Zs@|nX1m<GgOlm}Me
z)pFu&uGDr!6a#B<Drw5#)x6u~-)D2=tlDvYX0_s77WsHeYbZ>g4lGJAg{E_+Ops6|
zfg@PwWGVjgxowF(y!QPWPaBDw$zVz<z*ar?ZHj0?pHo_gYgb2+&<YV4e-(AD!=ya)
zlY1wtgheC}ZVX|}V>u+BiqVuxDYCbsxifFlh4w*+O|UN2oRgZS*`?m5nLSx7>N}0l
zP)2cdv~*gmY5R>8kPcj5{`DL_zp^zC%(aCYoWN4PqZW-;9v0gd*gT*zd+8-xFkQp>
z6h?fdzWDWT<$_oco^FbjS?tx!@#}<OYY4h*7^4%V*9>G;fwQE%)C#ftXxT7Dk%=Jl
zf;^|ggTIMsa%a#wPxk%?;B$@4hzbDzFa2k!{J9kX0|!7rqM?(avO!^xi?Ksvl2V9s
zV6k#ad@h<{KbP8IP~f&SC(7|G<NVo9_4CifZjIILCJ~;h2{40tmAE9Z=gqO3@|QXg
z{a78)^yvsUGK4+6UdT8Tza(pT@Q)ue*D)ye>O_~NjX9R2t$4R6&^Ok6Gj`@JJN6vV
zZZ0L(vV+ke@AtL}RDJ4KrAME@z#vg573idK{Cv>7xZ1=?ui;Sjghs42l<gUd?;7Ex
zevEpgpXGaTkA=36r1^yn)V9Z#SV>vvpcrFCw~0`gPyTV;pkRpK(~e^rD4lZQG{H;7
zT3XdwdT0w#eRkgWw;#APJ6P8oohe_#Wq+h_SFJS5y7@6hZ)x`&Ijl4@LaFGt(ENS5
zf{dG@argZdX=v$p4|{lQnawF|X%&u9QPS6fO-q$amhdt5Tze->Q|%^uc#;nQ2S_-f
zlcwd^Nhirlx*?^_TG&eGX*D+2qnEuYKVvR?iQ-y%$z*D>g;BAy%dX}&gzS?0h#HM?
z?e_;@xG)Sh0z|xhuPl^7=m)8b3D%DUd!8_i)G@ZVnw<4@CVp(?;q-eb?vTd($P+?!
zW|yZ4Or=$2eb<_j=2GAe+W>MyKk3)GMSZmpH%d?Ixw_`^t+dr-9wZBg?r%=!ro%>X
zRSl3p*ddGin+JbAZ1Rn)wK3ws&kdWam5=6VZOBN4@6Z!98j+Fb&gj_q?wiyzmDjK3
zfZ(1ZWa;hBD(p)eHsDV+u-nblH9h-))0S3KNz_NS_`)NL9kV)7q`)xG^celxe*7Bk
zR|5M8dm)wI6mO|U>PE)a6nkAXwjlBjT15)in!G5bhh?@tbsclv{)Vhh9SIz}*h2!`
zw)z`{Otca(BKX0dG|ZhU8bF;OC<O3yPX(3vQ`j-}XvW^g8|<XBS9)V5z*cT7e_i^k
ze^GzSILzJ&&^8nrPlUi=s@f+Lozzq&JeLLoGf~-E*1CDrsa=<mCy4uk{`m~-2lh>F
zbPOi{t!2b@{1@RtoUGl9P6l9-#6!Xs%UJ5jsPFIS^y<U@A;JJshck&Ew}C_C*;k6w
z0(4(-uQJWa;!I`Rix|HnPEAB#Y~nrYd^ac@#_Fivvglm|O|YrZr`#GHH@H;nH8BL7
zw8IpTi1lqOk$(Wv*<OJkfEyG@CmT~Bsy0~XSZqI8l=&}lI*E))t^!jOULv8ggWqW1
zi|#-N*a2UfMXhYU%j`#J_{N*xZrZ4!>|L|8Ngv?aYD=)-Rr*o50;hk!MqT;_+rPHB
zEG)U+P4S_520_!GuYCaQ_4N6RZ;A#`5`d|luu~1hg&fj!ueDb{-r>FMbwx7kWJRNA
zC)F$;JNCS2nK>d>Wkx&bhe`3QR3FtfR|6jxWi}Y=syY6?<H5wqki4`{k|;P3Fpy2H
zj%aN-t98`t6Fz<O#QOr9YXbqE$Bx09gjI24={%m)%>VosyM_10L1OSKD&SrGUG5qP
zjjC4M$E<RF_(fV`m9EV}&ww4X&C#H8Z*MEu6NkL`13+VH==&~%-JQQvV^GV08KYGs
zgh5m!RC`KesWVB<y}LVmQKDAms9FWJJE?8oG-_arF#h8MkjFQr1pjbg6wdqP`h?af
zlZ$AP_#}b~(DvCPU=)1wN&Sth8)>123$!8gseM(JXgeZx0KsNd;E7p@nC8Yv8x3hX
zDgkLhRdAViQq}Ng)j~!FitSlG$J$K<H($<MS9a^8f$DrDu_N*+*v-flT{fK`fT>aF
zz=z3x3WfDs-kKC5;_|UcpEB*TZ}Rn?k;jv2a^FcBQZKHk996t2WEkR7StQwLlxqC~
z+)nFiQ=zG(b;Qy%Xl1LwPqD(jFezWvTT;4Wo{$7UYIIigN9|Ss_Mi+-gNDR9U#Pm(
z&2F9rHubm{;?fxnGzH3H>k`uOAr_L6^n`NeSf(vmcpOo;^7TL;fJdOVfEHRHR!5_b
zbt-!IUxo%XZ1OvqV2a4IE`PGJHdilo3Zxk+qWWolP{-XbO<O;GhbZ~l*Ang?<Coi&
z>Zuc;N@ZY103?y3?<Nu+*E;6ZFN=Mq7dIxt3e&FqvsGIGvB!o3CX)D8)xU8iIF-dL
z!A+r7Aj@>hi3+!+r8%f2=Lio~hY*}I5(w*ty26M`tCdIJZ|Qt?U5>VU3}}hI1toKD
zVm#<C=|)+Twc#HCTLPA@XVm!Btt!>HW9He*I>xamm~_<0-{TqDuoKGfjaCy?L-yCW
zr|TAICM@JNtQ<|aLZ*>3U5-haV2+?74tJLqp=pr6@=@#Gy@yS)ix=@<uCMw~ui^v7
zKU?<}@an5`x$OzF!=gC>$M-zAGxtnHJT)naaGPJxfCoE-zyRd%JzcOq8#Kp;y~`HV
zvdZ0G-U^J{jBaK(Q>v}q5xO*8IbwCw)IMrw?_~@#Yk`d&`d22A1kqgJQpVq6hw1Mb
z2zc*?ji4}8r!K)Q4}pY7kbYswu~YcS%b|3eB(bhG6P6nB^rfDRf*I7`%rpN2h$aLs
zG8wHw!ein&9n7UIXv1s$=9Z*o9{?qx#+=M)^t1juwWpA#XXUiR4*-iA4;V<SD^B^q
zz7iW~Y1|gW;zfu+H=<`v%JISlT@6UP1oCF-umzq3NQr32vrq9dba^M4qDAGzKj+*E
zP20a%zCg8g6Fz%W0-XI@-vXMy9S*fcbjqNWV19W)gVC*OFR!E3rK%7c|CN{6jX^`l
zkY>mvkcKp1qTE}j#o(uY(otoB%)Fmdzm0Iow)AB~>}&~R$*B-M0=XiAF#ECHsoJ$J
z>wNaN$<4#E*!(x=A4Fiwa*sO|p0#_hSEQq_33ANeV|0R2l7tOl_kKkKqI<%?bxtyF
z+jFo%)cRE{jEzm!yTm^a;`Z(V_~1~W`yHahWuNZ-=4QXl4}fzygsRV5$Rmh5;z{d7
zG#j*Q{oN6^#0*oBDw03lg9#%R^Oke*Ud*~;;;q9ZNNSl^wYr$G3n}ezK1Ev@n!C2?
zNoi^;#W$Up<H64dAN0F|??qT>Kv;=e#pWR}>i3#!!cu48cjE8NW;cBB;W_jS+CvTd
zI&MYF=4LG7Y)j4TKiNV}|7eT%+N*+#>I%^<wWoD2pE?=;$^1nm?kj{>Npnt=FlKbM
z^hV-#_X4!Cx|XgeE|GC(6ZsW!@2Ac30no5{>2CN&sv&B=c41iG8O1i5mUDA3pB>J*
zgn(Ru>+=DC&ygA}X-^+z%{=Oz-O8H<t<8sw_E;{o%M>lJrv(%L9F{^#$}YQgZCX8R
zK}bp4q5o?hE`K%$fNemy<T!Q934L@H2Y$hKP*z2OdqT_?A5G_xn12v@6xos1YE65>
zOgmJ)I9GWJb&He7ONzpS?<Z#X0LZ;BRov82(3~lXpFd8GpAwgF9`OBiPdz|Tc6nD*
zL@SG{3~^zeEow_^4#~$#*Z11UDJb;h7Z!S~<%<zXlswJwDL!)2Nzn@N6&fT94^{_x
zT1^%uzS;+Ntnd+T0{7T7AwlgV*Pw$nfol}gA3kl}Z7)Tk&39sfQ;Xg1>4yq!#4|%n
zptn<dapYGmg|+4FZ(3TC5>?|f$!s_0y<2-M@Qi(*o)tt~E|m96*31#9VvNqBIrZ7Z
zPX#}`q%SZ2@H@Eu&z|^g4%g9xyPuA_oy_uDL0Z7vuUa}-j%a4DLP|6DeeII-95^`V
zTKLd77*+9Kgz{#iEzy)~o+dSytKxjM#WZ*}d0-+o@2cQAmzRh4^-SZ^MkF{S1#|_0
zXxot`0dPyiupr<-f%vErA}}@2m3<E;3C10V;Otr-Lui0!&Hqtjr14#R@?bs6&EWM7
z5y4|<1P5+u%Ba{Xdt+#F$^o@`(!f;gNW)n1FC?{-Z+3z45DR?h9Qi^|MBJ<md_rB|
zL5@a%&{uLVSnn;S`VWB13ry5#r+&-d@j;)-S_AFhHDCWUXort|8-NtqwtnS1J3r?|
z-Cv@x9>})X|6^itoACjlMcmTG@{c2Gg9-4B<Az*Ys_hJ%zv)Ff)-sc+A@2ZNajuI>
z^C@g~b53Ag<~^=8q5RvA=!X}`Qg`bXq8Ff?l$)Y4t?$siDyAiHw$>P6B*E2^pj+R5
z8ldV;q}YQkyBMAI49;MC)$i`|C?s}u(c$Qyt2=asdeakWKEgUPv=_j`vk@0jh41h4
z8JNXXU+4iYSdl!?p&lcM+^xFrouYVkTlDj1XJ;(g^K}XyM2=5;a@$<sej_kdI#+_L
zpDlkkARtaXZm<&)wLW}J;o*VQ;2{<sKHOz$$1vOXpl&003ivC`C%(rMznzVWu``(E
zhUGV{+3Q$yW)3||1jbX@(6#h--)zR_iAd2#02I01!}UCM3#*_--nkWom864`95cqu
zi<*b9Qt2#A#*u%24u<IJYT99O#igpTa=_mJHd^m+1@5-bM7?Yoi=3&KJgsns<7)F~
zHIuTEfCt=j?Px=NQ{1Tz6!T43wC@p{A|+n?`{Zn_cnJZ?JmM3fvES5J^<vk44X2^E
zR?zRh4k|?HjGP<5m681b#G-7hk+(ua>?=hzu@Ih`+DMFSVq8Id0M?1$W{rJr3n&x)
z!Ud$J$86hI-kE^1lTrq9t8tH{Bi5)yL%XB9{fJ8a<a3WpwzuoH1@@6$;8cT5#V{DT
z2g2jTZlG}^UD74b{TA3Wsw3-wH?g9lPLH`@GFAr($M7#G)FHoYiDuocodV41paX85
z4!0I8(%rwRE!p0z@JncVfID24^~5l?XLc0_dVPOCSG2KTmqAO-O#y-S#lAl|YnYwk
z_<NHM>~&p!LHWi*<Snf(=*H?pBs%09Vjl3kb<mRoD^^dkK*T|E%^IoAK8Bx8XCVcU
zlzS6>#XVQLgG)8OGm?sNbUS@q{{S!@*Du`#2oDV%)CjtADE=PnDuKIcqOG2)bB>sJ
z?!3w0V}ON#wJ{c9xwc?*a{d62EVlc5-5zXbbuPMOj`D&uqnq0bM4Z=eaof*%mmXmH
z<EGv>mu~T3ji4(!%?OL3)$yEb$otDD*=q}9uWkM=sl11=y^AV21uEZQz4uw5oJ)vk
z!~OoAoi{V+fjH@WKlA}87~?L$o_XZ(4d<lBfN_B>HUiG8a5(123+2wQN~&n=vA=g+
zT4{=HnZ&NogU-Au*Wy;c*);k)z)7tvEc;b`c}Y!3AI8$FRE~=ocXA%x>(qM^Fb3rZ
z{$%{oOn3cT7gkeBw+2PxIfFrqrsXtZ_l3Z9OQVUEV-nNKbE0;|i+c1;30u{t3D}5_
z$hk%!?a`9D70uFKoOQgsKFsNOGE5Wug6(dudx|nz03xp9fGSgJ(>1%6+*><^^Up4z
zaNbPr{i<7$%;4Y_Go_xJQ^|R>Y})meXlBN?{Vz%YNo-TiP47(9C0gOnBBf&rV?=I&
zWLf$-v>N1*O^6+Ty4^LI?u0!J=OJHe62K@w30=~oF{h^Ij&6-`7b^(a3s>-<=>x!J
z0EC<fzK?NBT-6c2L){;39>Q($KE(7d=jzo9IAT@{FZ_1u>>3I=T%+VF;<OWN^cuiH
z3ax#H*JjEVYk{Dwra09S-GBH*@=P0d24asBB&}h;@0%|SpgGsY4`c!BEO57coS!oa
zEq<X&MfCPEud-nh8gY~+{kgpkkrktS1b?D`8?gQ&GPM;W68rf2UKKdmzR?x`Csh~5
zgvRv1e@e?%LGpNDHOz^*i1(KStq^YSAkBq>^F_`9@6{Ojkngwi1HZBroce`rRX7LL
zEibwPCpM@Pz`9&udv9*ER)4P+q)?p6p6EO2SE3A(gjmI~YCr!8PaWy#CLHy@SgUy%
zldI-Rfy2Je7E_Kjit%^t(E4j!f+`DNG0k`?6=le&qOCh%&3N`c!z=V?pWziSNH9q7
z&+y8B&M5zdSI{6)(aG4LNXf-8*v&9mImFe}{}Wt+00R>N6VR$=IHZcPiK|_#8Cz()
zflo`d|J|41)}UJV>{Oyo&=wopq8jmlq2T`Z6Ry(u=nhI`)T}J$wb<xn*smt&cMJBl
z-(cnSNyHLRS5XnKP7B+!yGsR)tKd1trz4U=n`HXCvW6pZOT@^wi^Y5aMhKkv4biAu
z%Wdr`&_m%%;O9wL+fWi;RyunxoAU+}edEy;@YKNm-GWRbgfm-e3DKtOONEh6{4VJJ
zZlOl&Rh)xm(V{JkN=HbT9GDjRUMjtWQuU_3*JbfHiSs$3gdKS!`gGJ7Kcs(XxJDV<
zT<ElU5^L{7&pOFS-$=9>vpIY`+gVjX2ImjcV%g9E<J}oXYm8&0%XL2)D>dm2@_JaI
zozff#e1D9o%6XSc%&V)j_RHv=IT-o{9SK#ozhhfIHIe$RP=CrarGroKL;;XfgcqR3
z7d6Gcyx;so45ZsN)>LhH<S;#b5%qg$Esl6`m*X!w=xbU(8F6VK+dUV9i|z7Tl$F?a
zSIx<;e%-E)eq;KpqE}EiNR*mJwbZP0+6@~6U5$-tUdQZ!PQmW+39b5&onkdVTR1D@
zK8-8pkSi;$S-jCPlQfnCHgjX~_c#^YurlT3#m@r?>BSGgge}8-tWeg2wKW7A8~%@S
zL*d;hDH3Zc-9K$k1jA+T2`xG=&I#v-0_Fm4?0ut%B`T4Hj0jnyT-N=`@(oA~P7?m+
z{x8zo;$PT504thVsTzP`Nf4YTl(M#M=G&Fqt*%S}$T7>ArAqtjUr1L%H}vQxw6DWP
z6Pw70KgXJoOa!HC&{7<HLx+va<o?3gY-Fc8vl;TlrA-bvAW{`zWTjK{Px~tW@N7!s
zR%dC<k}^qpob*UrWdv$&XFbNVQ<HU;n9fe(nGd1#ApYc-7={~bu*%pQ?$^Y5V9((d
zq0^{|jjEaFAXeZsT;}a*0>evRB1XN>jFmsM=IOyTw$q{ExUyjGI98JGNEoqba{9S!
zxSShRwp2Idpuj+G4mI7yEB<>2v`vj|mw}MU-TN3-x8zDF$vRfZx}O+KrOoA-#JN${
z87Q!=s4%Kc;*wi5@sh@ZHB4a7yq7}s#H~C^3QTaDgvyINR^9#~E2P9y8CaLdN>P<p
za36PMcG=K@Dit@E{~2T;n%?hsm48!6<R6;fh%;EGU1s_YblSU#ctLoPI=8VG(K{tE
z$nwf^{6nw^3MkjDk3c$yj2~`TiX<U}Dxcyb`9e2-GajMFd5N$30Z@(XjcO<vXG^Sq
z&Oy?;#ZWqh>|@M0Svkl!*+?IFm_PD!FiYDUoSu=+X&BEZ=Yhyl>iLc)YnBz|55B{N
zZ(X}nRA#fQD@p-vQmC<^MCZcW(_Pl&vZ$uAYnMrFC3DbjZSCbuV0Uj_6vE_TkrrjA
zf}v7p_!kUjbXLD#iTUoiudG{2<sr_ECG+`tMWm|Zd30I#U6C>`eCm+F*YVB&+mD4_
zt+w}anrdCaq0{!j@#kMTm)JDZUJy@Ne<P8}xg~$D|48p(v1U7;M(X$%5Jm(1$6x((
zTc0TspY)k0@fi??`t(?+q!{GvVrtM7tm2pw>OueUS>XSCmLzx^5;Oye?IZmrUiEi$
zsD+X`6@#-it^P{0l!#c`a?27%di}aUdVLy_$)>WVv9rPa+{TAiUq-xW<LEv-wSjAr
zcY3dP>q{WE$X#gXs|Hg*ZhJ%tKC+9rCb6KEHjT5ebx;bA{b1W0=c+rJwudiQm&=Yv
z^=5iY^I+?yxqyUyr!b?=)|5upGyQ1h*zMAru-db}m5t<rJOVL!-n3%#Dyf(*LKsuJ
zB)e9fe@QrEd7{tF7uEEz{tiZZxGWBc^@V(QoD=pbN?iKG7~{FAuk@FBTry@mYzGl!
zw$HOuZ&kixuQY7Ux1|Yo1{(V9nBeYyqen-fBtZ}Q;jQDHHdMObnL_^3_vKN7?y!W6
zM>OIGYwA}s{o`@&AsZE7nZ7V6FI$!drdRu<`Of@MUtv6`O70fUm?bRvoK}%e&IJy9
zd*ZPb$Y^165F{#@TOJBNI7r4z9XE!+7}Uj}v0_BCz?`lH8=&`%zK5V!kD|ouu#UqR
zJ<us&DT!^5%+at7a0Rf!9ULT1Fh_^&8v*LaocG(FIDEN|mjR}J01yk))TO&}$rl9q
zO9w?V2z~5)Le^%QNviE&%Hp-L1+82!%!OtK8!Fi9LEeg$E_JFFqr_O%m-TOD+P$14
zQPPn~Jz?$&9wycvRj26M&ktKWA`0PW0s3R`BX~6hotl+nW?9S!+Kc$}5!9TJGQu#y
z+S;l<FjFbG!7Yz<RwcGy!j%uJxaB6h%9>4Dd`-4WU*oZqobbZeA8A)>DBfjJ=((?R
zcE<TIP8Y%jv2bs!#bTM%XQ!y==M>{+Pt=!wu`ItmB~#0?9tcOHu%(qRddQsTybIPA
z4j!Pr(Ul{@zZV+@@TNJ6h}dC}Bb}&d>mOZWX9Na5Y;Bb~K@A6{z!h;i!h2``7VmXa
zKz`iQqKgbyv1=;AuksS8ePm?lwoF5Q@TgpS+M7-1KzF(ok`pD7jab*uWb4$f?OS}{
zDAR9@s%on5;Y=FW_o^T~f84*2CO{hF7EVZv2s#o5D5^+t$*~N#5tLgrRmVBUI?;1~
z6;3^PEJIduaT)*f9n4wu1qBMKX2m^Xa#^`=ud{N!fMz5Qe%R^R4Rg6H;*S%mRvR4I
z-d)i$MIaOm=ber{80QNL%owC;g*dqvc&x=76vaaa{g>AvWR(SqL`x{)EK0wyh46wY
z)a0%MF}n+|iEwzqLZL|p+H3Zf&Z2`Po7NRTsrBKGP*@KZ=C+IGBMljlbHI6gS^4a=
zpQ4N~(J+CY4ua^01OgP+rpvn{vz58`Rv^<T(#9w)0%>Vl<AFew?$P+*QTRl76Na}}
z;OE_V-X*manUnnOkBW|;%A=!K_V!L<{*RsDve3pSCXzu1M`u~G)pqTJPC8|iG?V~x
zCz!Gj=n`U!*EAw^d78b9GUI74g09HeD*J$qNQ(Jh-*2Tm6~nY%5k-r2tk=to+9Kyr
zcI{<#%mxb<e|cPPD4BecaX5zX@&kXsw~<;>R&I55De}@q6zCo>icg{JW8lx;6Ng&y
zm#e^?Z-9KwU{_x~>zcLqJ^=Ko{m0pwPHIFmlHO4{n_)~2h;34Iv6cJi$U-(}YmgRG
zE+rXnhP9&W>rIo(Hj8Oeq=}ZKn%D~P@zS!q2H<O`l(e;bx9Z^!n9huR@N_(33GDG`
ze-aQcpeP9z@edzrm#xAt+)@<sYdSd6%X1$sro4ex>zLa4AAki1t4-=9Z>9424F^W&
z6R_jEoim*Mh;NNC8mFW0gI;-f63TJhr4n}`qM~0XCufT!X?Tc5C!;#=CTIV7V*byg
zIWTZYC@?5!C<v(kE*{aq$xzYR)F3{Wj%KbHtn5Ka6yoYdO#_e|qUQ5E*Eg7M$;Hk8
z_dy-B2>8HRxG{@5D4$4UDrcw0LpaNz-XMEtQA5&IxU?cRPu5WYuhT@rg2~?_z&v}I
zp_d8B-RT_W%PDWXP(YYmJKf_c0*YPI&c~@>*d(!0uOc$!PiIKlJ0e`tLe#vu*jF<4
z_Ni3NCyK9j?58ff&Nd{{VZ5Hw%DN#tnDbn$e!bDNuM%zXq^Pspb&8)6ioqGQbL6O_
zPe@>?;#?{y8LE!f<0<vFx4Jnl>+$jC@M5|?XP%vKGC~9~2!&_cJ?-BlC<HU?2V@R7
zDcp+L5QlZP`75~EKNrkYzB@`NmwPNa{_HCk59R4fRVXNLkFVB})Bv{ob(xHZ*RAik
zvOmMKP3ICR90SLcsKfIQ)dGy84J2>)t6v*CD3f)hv^W=YkRv?q%xf%76gio7PrXmp
z^SGo;!fvgq<T*5!Wln+zdLyRXh%y|k^H>u+s`nTI&^Zm8K%NNjz#QApPCR8Np|wob
z1`=XIh&{e_(@T81LtWWv3&XMF@mJ8cLhAE)1{oyc2Wj)lT15!zc;H{3aHuuwM>I|w
z?gVdD9EgEVJaxiIf+Xx4aOeE?+B_vK!nzY~zsw#yIc4w*vZ<p}2Dz%T{%k(*_mw5V
zfnuVpL-h-?9Qc#$ql%trkOHKhd~|Afd~Y8Qx+A(4vCxu|j2mEqYJxmT7i&{Stk=J?
ze<D_wuO_|7WOab-O6bz;x1&ADj4qY5X@v4I<ghle?`4AL<ZUzxa1CR%RJK8y3$<N2
zf3xhR(t!ekJhE*~%lL9s6O&4^sgY$FUpe*Gs+bz9^I8f2;yL0m?S{!7?UaG!DcbpO
zMc)qQ9&=G%r89dKvTP{=_B(0Vipf$}tI6|Vb*Ba#m<roN2+<?7RP7TEU4;~fqgldk
zlC_@dE(soiAn&vXmKrREU7-q$gZ=APg4hN(<B}96eKfXX{j)R^@zlIzLDNWbLiG6?
zjD{j8Lw=7MF)I$>el=m~j+uJ}0S?!`t0tQI{v!5db&dwmFHLphGZmPa^;8h2KSe6G
zp@KOq(x-qeu1>k)c2IMakiWyqV~M}bBlU|<i=w+5`A?lBuF!=`E8zZOAYt-m<j=@V
zhX+6I(-{3BVTQ!j%91KCvdaA?KMzjMeci3DW5G`Kc6z7!?nzsXFLwsH!bC*<pqJ3R
zs>_KT9sdH?GX+J>RhxMIcZ$jvA%wLl*+1%wMsZdeec?c-4z2(c#2MwvwjLZ#>gr^s
zuqm?&p*zZ8?1+>mH(sCA!v-$r%L-~6o5?p<4=riS-{o3btiDc&HXndv%~b`(=<X!W
z?`FMJ)zZm=4V4waOFUj<18U~kCLWY8@Lam$m3^pJ&-h%Ibz!ahO>T!ikJ?^ZLa2FI
ziyF_^b;8n5s0&M)^IEYzKq};V{3+>~W9zag9r#)*FY>ZGVV26r0`D4}UPUe8HR>)*
zVCb*W4c`P@iTyvpbUXZXGt%i)*C!?v6&3qlqu7~VBwjN9vrsWO18<OR1{^jK!Ou)E
zSad_;I1YYE?f5v2U5-<3cy4P}`qRh}?PYM1ZHRruE>p_bUG-@CDg37<MHT~%CAj(p
z(}9hP<z%ueOAW4Pp<)>*!nfwbt>^T`lcn3cYDV04MS=EM8gqXyB0`uL(+w0^#?N+6
zHqnGFeMz!*62%~lVR)619tQac{(22;AIHge*H(clxRf(AUJG~Hj&1Zy)>g`x5H}+$
z6sh+1U~qK1Gj6x`g+h~lsrx3^(mplU?aGIKm8n7y%gXQ6RjUy(q)8j7swYxO)=P<a
zErV;)*hCm2;_fQwrjR`s|4!9sq)^|mbh6rc0Z~@NHm{M<JopxF7hH9Ms@;=8i~vhQ
z*{Ae-bmUj?TD@Y6MU+C@AGENm&@Z4Z*h>?nSzLNT7La$UH_Pqkr@2%N96g7)lRLo>
z(@l_Rrl@Gy(qr+S`8Xi9gF<Gow5qPLODG2Wl6~!Q0Hw**`0ZzZXnSmZ*ydWtYs~m5
zOVPeVy7JM!!oY6NpFs_^jL-stm?sLJ8$w%?@RZ`LoxdC!e<=G9XBE4BAJLtwKp92b
z4t>}|*4|80bOY5=*)<5V1t~*a0nf3%Kdx0UMcg;Z>ExkrmkRTVv@C%{i~$Src_a81
zn9FIG8iNlY?dmI<)|%L}GAHpxB*(CPVwbKPoZz)r-bHO20;0JdB&M+@*eK$`o$C|F
z-k5HG%CmCB=>WLD+Oa$%>4Wj?UrO3p6DVx^xJM7eZbFtk-k__O0%R}sN7lZRZ%(??
z?X7h8d=*JkOZzp%7_r}%6SGPHG}$sxG)m2Ty3iPKchufhoj>KO-7c_*;6GG~S3)wK
z;<#d(<rST4qv?YUcMjX4WG-vrue6_woj<j|8$Aqd)zU%!4eN2~3H14kgW)eN*b1ty
z&O0UPF+R{z?)(yqIYwPt5h`td-t5{;Bf;*q=8v8bwYU?L!l^4)w3OnJ=3=mVzh7N{
z@zOT^LRM|vAdcB!h;A`daSSy2$)6-e!fs#f4_oGsq@+Z8&$#4dUEF5W8i_xn9zSTP
zpyHX(@=Pp4uiDuoVC5z;|Cc(xL4rx1<c@Vr%2V8CS162=E~{e6Q>(2Y>jRK0LSe`p
zcfF?N>ai9U))2Bf@Wt$L9*?u(o{&W>5H(e+<PJl_d{x|?GK<ifDx*zeN9&efwuL;K
zrE9sNtDigcKq_%la{}+wqbl~NsSegGVV0+Pb$`MgO^O3eGgXT6_oR_Clgty3<#cAv
zHu;6nDxn;E+y<jrH4Yl=u~t7D^$Ue_{n*(Rif10x85CacF%b-%Csa_P0#lJa4p%M~
z<ITpHmy)t?j-d`FP;V3Xm2?$4zt-c>kqJtR-Kk5b>pK@CkpBzixow>5EVlHpnDrt{
zgzeDZSWFVk3H!Xp_(vs?TZxVkwH*YbD4&GzH}9+IJ#!HJ@U14*=4H$cbea*ZW=*r{
zod0Ud!2Tt@`P=pPT#=tdV_GOe&=G;+m)K~(P;kF+--JbKi3{`B^I7jc`<^Y>QJoBq
zFG@O6jp5^)<+Sm1dFVd^y@tAKi&lr)jOGrsXwSU~+^s<B`Umr{jqBS@e%N+6l?8q6
z_^1j)X3smWyuG?WV3#mio!a*M+hk>x6;l=Rk(+WkFHb->4rT^69O`$3eE&uNsU7?u
zSHXYG(dYWGNt~2BZQHJ=^c6kTxYVA}s;We)>c*{-Tob<tLGxl>yrIm(4UH0V?Z-c!
ztGKNh8)K6le-*Ld!n_lif^)Go1TDNPfNsBp^q7fXf&wMyi#Da<3Yw%l&%(p5S5#Vy
z8fYI2=HAWbjacTlk9T!svaIEafnPBFhV?A`m>sNX4fy_I59uDPrmQ@6n-vvDfi}^z
z`~=dOo_Bn+C%L+K?xh|R23Z2dsm4MaC`=Ru{2Fyay#<lHWbpdGt9(D<#Az+68q!d!
z_BG3~PhUle9(A0thSCR?UJ7IRX!*zrP)t<4WGA_|5=9DdR0l|<J_+RDSKWlJX9QpE
zD^y0Uj{oJo`uevA-rs<8#MN$9x&zB&Q&R#zQooit0V;RkJWt_Ajpi%2c}a}Uw02s=
zWen&%V6Y@i*{6Li7sUMmKw^w-^s;UFY8YFV+Pu$Lveuk5T`D`7zWX<Ap>?NB?tE(s
z>IK_czG8j(iCt@!c7-Hm;(h;7!3c@#Yk1^$qZpmVM}ww^T<)F{{n`FIe%j~sxxD~7
z6Y&{}UoL%IbqrVDG<0rDvsIsIFuZgk14X{5)mi(-mwikoNc8e&HTpSLF?m#_mm`C_
zic0w-5k{Q9?l=XqQ>wB&T9|Y;%GMUrj=h-V?1iG{PF$v6>6@23Gj8y-M55pc>&8Zl
zmwNr!w~ESUl%~#t6Uy;?**Cln3?D}Gp+tPH7BOG2nIfLy<LSM9g`$)=Cp7Qabrw-5
zJKX*T-#x6UM3_v(=hlz>;;)*tonbu*q$LuxJk8U@vRqucXRK8Y?@}NzGg8s9dV|t>
zn0FIjwmX(mTv7fV_A`5L7>{>~!v6)IIzNuUG~1ELu3w@Df1+Y~nW_uBs_(Ee%4#O2
zKgnygSY)X+`^Vv<GUj~qXS~a|LW%!7oEvo;mc4w`;KQvm_+<yby~~Si)vn93ipSL2
z#i^fc=+RuWC(ES(MUBxENmp%eR1;$u)phVjzJh7>?ynw{kuEK)*T&Vn<fq=0tBPRy
zCt?Lu<5XLqQHe@n9n~pk0(tc6Ba<JKk|V~e40^Um8&JezFsxU{vO_SNSS2V%NIq)L
zIci?{O1+xS#5(!00pvW(zH?JhCT?FqFVdBK?^jhPzfkU!`=xKB!S2=s)-OqGz8r^K
z#C+ot_%2cLs857&BP64P|NZorjh5YI>C6SDBf9+upz`Erb^s^NFPEeDP33$pIuWAb
zw{E4cL<-ScHu4LI{X^G%o_L+h-B}v?({I>}5~K9pSemU*22L=k=^8Ui9_=+d8`>ix
z_nI9f{#ZJn$ytbA9DV8UCpUOG?T;qJWr*z+u>z%mpF1+@|CKEH8L9uzh716PM#d(l
zX671%n)JC1o4?+<`G3+RMaZT|k}zr7=CxU?iBXO&B|QtsDu0faOeiYKaqK{3u=B{p
zwRrItJhH-CAuWPkW1@~p3Zr~e*gtPXS`>E`l|>$ud?-Ws7AD}>nJgR5h_d;YrFeV@
zFZr4YPV;GQ;{!mJOqd@=AjdrSJK1EWDueJ^)EkdNGX_=>2TYuh^tX~ulA|&7fjLPK
zs#<=kKRrCJXiq%x2&$AZO!#aZ0=tW8^mbYLGJz$9k!tax<hKr)^HK$LH`X!MG}gRy
zGr!Xy8yRWwWXOhT20kW|rf8+BY)L*bBJf)Z=Ju$t#}%dw8kh?`6p8y|m4;HqpyP}Q
zkm<0k(g&az_Rc7oIyu)(FEI=<kx@K<dioiYX)|H4$duN6z_38nWggN@@dMCKiav>Y
zNLfY4Om3;35;*s5<SyhvHr_G?v3afL0P&h_H&khxVlG+SO0^j3PDcjeGyJBnM{VIn
zC#;e}@aF+8a}`|?Z#@{R<yD*<V~|LHFls)+Vu37b9oY{3nK&-SgLyP_P%<r766%o0
z+Aa&pF?kh_iMTRcUf?`M)h$Tejtn}5ifTKrsX3V;#PYoeRX~lh5&LA{!Ey~5!OIvC
zUcNOe1N9wOx-4UKVqi;pV71W<?VVSW90!t3oM4Lb?3y3F(7c)%rdv;4G%~0KYSJYi
zTwSc}jvb4gOfR-tHzz6EeS8vv)p{;1HmYjwAqIXvsNFQB)Nq27mKu@04-b8QiQ^f9
z`A52L_-&=$wuRcfla~{z33wy}IPC-iE|FwJKj3|Yj+p~9w&m$j($)rT*MhP}+*uYU
zm1R5L>5t>o2LSq*K#qRu1h1W`mNo*6OL{$3)6YH$PG=X6IMkFt8YO@wxCLT7+2W9S
z*usijWX&&y9>W?PLMOd67Zlqwg-T`^K4YsahTU|{u!vrcyKjOknl=+1S_`X7E=%bN
zQ@ktz=o@!2j9kr&B>~$pH%x(>lC=yX?8c!4@u9Rvx5kH3QQ2WBEuBzmS->64MHLUN
zR?id$oF!W*GUkWayN-k7%%jrwjqNg68*K$ySNTC|_71z<5iJ)(xW8b9pcCG^k$g)o
zq8CJ6>vWT;RNln%_{BhGW`bsAs_0{>Rul(e3|pIw5+Q-zJ#W#u=A*x@DrV6|6&sJJ
zXiU%Xgw&OZNtp`USTVk=hg=TF%C(5=$a5MhhTcf0YIhJtmZ%3~hi}^6!U}gd8tx#e
zF(100c{lzf&rYWO)$&K>9*ls<0J@4BC43e<wZJLq!62C(5BZJD3oJG<@`(4NOlH$u
zAapVpt`x3Z7elfx7fd({E4RX4G3O!puouk_1X%RcUyL>t_~@D8aR>t?JF$t_xyEsf
z%3{cuCggi=r7jtfJd1uM5Fl##=yN>AOt?foVu?`67`DvVh9*32u7l~LVn{McMbl*J
zVWC%T$SDu<^a7Zoj2db!)YAlu+<n^><WWdUy5i!CFj-G4aLr)#6=$$DH$2)Y|L9cW
zDHfuAUk%=4yC7&i8R^RGmT4?1o&K;gU@}t=^!H$DLtQp>Z+OXKglz=;W+Jp>tJ198
zZKmNR(42z{>F2*Bj-49OEBi>@e&UGACVPVCKBH~BC0Uii5u^LZ@KSyNbXVd*k$gT>
z<8~-Bt5T2gJlVH+4IxdaReoU%%YQxq;jBd!?4dqIRl=Ha+`5)!chvfpitUn;nQ@^&
zUkeopn`Wd+0bCfyh+xEpb9NGL7IJVt604@WP%hizr6@AWwfrzYJgOPO$PqbR3>sI7
zHgo}7(|g&;T%;4)2OSE5r@A|ltLY;f#t1$ZO9ou#Sl=Q>Y|=2BADdJNB*$dMYC#Ec
zc;VrM1&A?&a5?PyWY{CLjXgQ2^AQqr7?2lmY*$6`IgtVk@XCV3062#YnO7)t0`z3u
z48=rpY}3|)M{cD`#L?ku>B=BDy8}1bR5GOrbT&7JKOuvBvYS=7zY@{ll=>tq>>!7z
zQPpP)$W2PwY82M;O%G6~o*&ssElkH@(NVmESdUfPN3`jGvC0$3wKaBf7dW7c>vcQm
z+xa4;l*24*i@5j4N3Q5K1gVXW)W!Lc9!(<hp0X$T1aW+Q!2#p3>?g0aPfU(}PVrSS
z>+}zOmy4I934+!iPJ@F(%a>$t`plbR!x_Hiz2X^+PW+qtQ|l{cDr7mlb&3?FIb0QL
zE|lZ|n(Kg-&H&uJ#aD!!*s2#Q71U6|IfvxmYDiqx@WCo?)R`KQPMj<^dAK2?u!A94
z^Xl|F$l`(p=$sC3;6P`aBNTBat)wU=b|Ujh3-@ctpYSTMiqWb~I7w_F_+^Q*8Mpa(
zrHOM?)N|*vy>RI$dP+k>7WTW1yCcz--otV|5lg1wn1l%98!Fq{U%BS;ph1k25oQoU
zrL`H9$%)etw4vtTC|q+K=YE{3u9Q8}md3_B<8NEW7LUqD!J4H)-WMHwrQ1?q*UT7+
z5G+@tBs-UQkTurl#wy&?%y$Ov!I;8G-88R^PX=I9Xey1yLI})9je(!2<`(heZ-;E#
zle6;~X4Ug!AX=a$r^9>zz+Dl8L+GeTikMI<D2p~*WKA=%d8jr0mQ%HdVTS~;e;*CS
zPQxC}@rp!{*$4etB9kvnevPxG+@4l~^Lz{@V(6m1)i1G|5ByGfh<jdA^t}Q++}w`j
z*%A--hd3ZDA&4`Xj&uaIc>LK#PxLYJiBJ)rJZzduoE0<eyb^AR8IDYwkDgf%i9U6m
zpp@pgn07Q5wb4GEoU*s6V+I{~)7q~F44@{*Fw79+-RL65-kumN+>rw%7|L!s97Rq0
z!f9G&NUB?-bQbI@V6I5!2oG8f%hr&C6JgCAV3|=PnloalHP!!^62O@&F-j<CmXd(_
zA!qg@4~5mS@P>Yf^RYyH$vpdN!uq$d4&^PUW-umu)C<aMxnd@6HngH@UvLAAXs3n&
z3HCCOz3QBhjSt@J5eFM5f4}QJ!5V^jQubJS&P}&hju$h0DNZkGKLmc<2ladz9%R`z
zuMDMd(+!iFpUkMiJ!}X)$E#?IKyt0E@;ZTx%d$pItBzjugVX<>sWP;SN)AdxD(-NC
zZh{8`!kf-`=(JUyT*Q_*g`F|9QS|pIX2P+g8fJ-QvuaqOya7ELi|KE$Aq;{lJjmpY
zC@L(rByd<UIC?p`CoxQuNak$aU~o#MV|M9g;bKWjFVrZD($XMHZUwfctmcAbbC@N}
ztidpSxYk6P8cC~Szytbqy?=I+99JmH#kwUe;<Y!vI!yY(HTUfS3ZpzUo2o{bhNcCj
z+T6E!)BE5wScOh9dL!sR#JmLby3d3aCs{_5JyDpn#bAUODSfb{ZwYF6micOu;VYI*
zh$Zgh$1t$ADUiGx!MC~`-?~Znq0<FqxPl@>^;{&j)xF5{f?zKW;8NyHc%T5y5n^|u
zA%io&uVqSFWtp>`d?*d1CGG4mEol)P3T=va>i<mRrQypJ>!FLUFe>PIh!O6aPX!Hn
z$wOZMUjWZQFuy<|SZ=-*WayRFh|wb-G+>CMq=pPYwI$m>q6kZLSYMIgVAHkd_$msd
zZH6&C6Z9}4W;vb04CKeR@LUu~+Y_Ia=w<{lQS)Uti`0;Ve#*3tQlOPXB?5B6YHZtr
z^|-<$EU(eXsF5r}A!G2&4Synb;j!iml?q!a!X`pfLxw*F3uZ1c8b9d43qiq>Y(`MH
z)gr%#0ESePfg!djkKkz1S(bGnDZ(z|l#s;q_z=wsPUOB{XCWK12Q@Vb)JBL~U!n7X
z%ZZaqO<6GIZ-MRDhSSYY?7|n&$&LvaP&kw2j$Vv!h%;xr7<OG5Q=}<lyH-e_rHu_J
zAK<Z)N82Dy>|_#M94Mq{PSBomRTv#*<YZeSa2kmHB?&cxJ%b+ui`<OAkk-W9gHRDT
z)bd3n+l11fluI&ra>(p)!UK_pLe)Hm!-Tjt(=0C$i6!iZp?sGj3A+T=Uc}x*?IUjm
zrL-3<R1kU{!w3?A1}>H*s@aVxHk)G-3(c~rAk@`?pj&JxT_&{f?11zn!$MYA(GA8i
z@sXjFMY2rrE!sapCXgt~6`<3}4xN~cLTPbShMyr8#D?Z*k&{#q101sW3|KZ~`eIM|
z4WL6b!?QDiR*NoIESK;OQg>o8eqE5U@*E|}G;%&#IM9N_#9*oro$O-vg+pMGUzf3|
z6rO?-6i90cE-Pr{F9b7ziJ>A*S|rIb0!b9&2|5uOG#A&AQ&RFK+L$_@0}%k8;WTz6
zLxYpp_Zf!-JM7}sXsik~CuzeX>SeAE5t392Qfb)ZESbECGs#NZ!D8GPfx9n~*{>r}
za&}1#wFp!RtUDN~{Df-U)#t#azo0@&McBcmG(aty-vT@dq=@D5NFh-wWaKFp+2cm@
zf)8RvNRnidQRJ4G$SuQgbOhq#Wtq*-Cn2dr=4iYQ@Iwxchlp3&CwoUUOdjBNJ+ept
z02={Bib;<a(aYJc*%gpvM8h<|mPu-f36Rp%n=MM$AgLey3y2!Tnhmt_53s1Bg5zYI
z$z)PiU|>QoQ=qju5&1<_2`-au*uY6-8Y)GB!BB0&X;_4>VM~@nA@b-$M5)6@s}qg8
z8@2<`<<lsQ;Dl~>@Qe$92C9;pr^^kx7jRe@3WTV(&PGO*lLB}U!b$LB1ZR(c6HZ5&
zDVUeWJ}(G0lPDx#Vx9{mbO^MQV*%5FD-Vpi8?J}tax!uEp)eh!gov9ZvDo$|iA=RJ
zX$a&>(}0`m#ZK^S%npMW@W-en2vJBw&(K0SN*z-I!DTOlY-ngLNgn<5IpR;E0zfi@
zJ7q@S0l}}#tbHipL^(SFpwLQ0^0OLtBRHg)8w3)65pppQz7+%!+Zf}Tz@02&1~f?|
zK&iC;4S%>GG_Mb%kwdXio&$?-$eLn)0(OSGLSZyK3uXqfJ{t&9QcFalaD<hgp;%4X
zC6a@39!OK@No5KVu$qgK?+%DeJT@y0O^oO^;1og|pj%O)H9nxhFW8IvD5s?0PBtdw
zSX5-vNSZdnBFiHZN5KYfvPXf|NFp$d0>!Ne77!$|*q8w)lX6g3$bBLzksP5H)EpD=
zf)Z__BGMZ$$vR6kA}^qQG9@XQV{>r>PiC2sT%Xbx7IZ@Fh!<Hd4GC_SEY6FeJa9@I
zSwOx4ks3Q?>NlgYl`rxOXpNkUnfJ0(PxdC8q9g>VY~S4MdeK8CKa;e15RoIeBa@Ov
zc6N$_ULO{p0bPQWhm=%LLxXHoCBU15WG*U)LFBTSW1u9qkr*(&25-R7u^ft)EWUgK
zgeJ^UD#g7Zw(UP52{aiC?jS87Pio*-L>gxUB!tDlYLQs9?70<)Nf?n&g1Li>9B^6W
zqLOZ)m530sBU${Gz_v0Iz?BH}=!T3R?3|)~lA$}M(uQX=Mpxktoi4qJB~UH|EMgW?
z%~X?@sG3lpkw|dc3zGGgT2i5-K2?LVSS5@(X6<_+2gv^b9i2J27o)g(-b_l|+#?0#
zWMsW0Ws%VJ2nfsyC(O7z8<^P=vG7BZh?T142PByLjh!SZ4X!|eG?4(n_FDsT_DQOH
zmn3jNr92u5GRpn}ZUiV&XO}>N#jj(Pbc;~?XkJoY21&q`X|Amd=Dy=WOa5Zi6Vxj!
zco|33Nc6^qHkkd0OilDcW<J8INT884hQf(tRwT1$EHK$@21lY2%&f?u@hR~z^!Q=O
z#K|6hDgyNqHHjdgl4+2_e<5j00wgO0amUFj0uoz_B61@o{ebXM!6GOnMc1OS`Vho>
z61!xkeZC}DGPB@JLSqdW3HCHP&}~U}L&YS_CPJX_KOmn&q?S$C=ioUeUy+oc`z0=g
zr4)>o4|`~NY8v0eZ2TZg5P{Nu9mJuRm1tvPa!fH|VquJt5y2;EFYIbIA?Ykhgp_3r
zmOV;=UXnv)o`zAAvnLr=(C+E{l8WYRj!XT>urgsMkqR4X@G5=<6ilYzNc@G?ALN&U
z38m-+*$f?{;G)g=B*FM43B++MfyFK)*nEU>^lTtD!mdQqf(Z~U@#w#ToJlCihO$3D
z1lXX}SeD#JCFd1#MZuH73Do{XKOogaX$0JndO}TbVJ-B=L6Xr*f_H=557JIn%aJy^
zBF*?ZlX@oC<p(y2vLQIfo(od}jFTx|;M4b^#Su{{Ey&aT*yh)X$}0n7$<?|U@It;s
zG$81iVnixLp*j-abwtSEmCT968em4;FiYDRk&C~9Px3*xZV|xA5q(BFp93YhlcLcK
zN)@w#-a{_YI5(i+f*F#5p_ABp1Zony$70?XTN7msTWt{k0O;inh}FxniytQ81{h6m
zB5#BnL@ka<oG`UeCd@D*k#9nH5w#mkV`3PFD3s_?BP`Fy+#?er4q9;NQ8gU`B}}g*
z<df``CWZrQ)QXYXcar&0S%!r<gIt<LF3|YDCM_?RvufL*K@{>Tp<J(w5_06nF+ggM
z+*v9G3c`qzhxsoyzRqgdMJ1li?f(D*Xsl+iP4NS1CoEl@kAtaSE?DA(a9~4&m|(=A
zjhugDTRCJ5LWNJpr=n=4o)@G1NVk!WpUEU|aXd-Li#YQ1L$-$9*i|_vv%4-s^7;~n
zfh8ZfGND&vZ!p#Uk}aVxAts0R44|PlAa@kl@tX^7IUs9r+G2N7OX13)Dp4=Ul-V%?
zdQb7Cl+l@S@R`a*V;{!sweXQbOpv0HmEgqk$)qo!&{rWTLf}l*1S>Fvu40D4P$R&j
zVr@Lm(AQx52%!G};E2gbqIiK^OeO^>h&{qKxMDc{64D(GbAUynzd~qEcFn(Y8+ky;
z-9AQ&^~oUoHVrw?(1_XKarlVOWl(Pf>w+|QrvzC@WwvBOd4p*Zck-9OyuhR&N|9*=
z$v~EGKwBcy*qNoW9B8;i@C1%w60&;uCAo(Krz9vH6I5b<>;u?t49exn(Zni~6Ex5k
z7#yj@Fl5X-ALNM>mcwwhVW*Q1tIdAK_S31eM*^H^oRNMSqbmmy3H-)TjB>vKhU};}
z{oErlB3tBZ9e5kN;v8f(n<OPM13a&S4xfR%Rv?2y+^C<=?6^jp{R+}T6#S6OPFJpB
z2#2yEX>lQ~^@D271a{hgP=j($qPc_A5=0>HCOJe}=O8Y#58mKO+aq;*gOMr)K}o?`
zDJ<$bfl4#(ayID>iW6TZ)NwS8K^UhYLC*Y@f>uP1g)UBpg)tHRfLT38&4GEoB<&3{
zGL$&qj_eN0K7+^$4dJ-5(AoyvyfW5N(J$Cfuw}FV08TBF@<>x*=zR)`nk&JSTCCIX
zHyh4bbGX>De59cz6qCadj9BccAN2%Q%)W~rSW)Dv=0#%?A-^JRPK0w}qj+!iLq%D3
z5XBE7*+ivF{RvI&!X0IjgcP_NLRJc7At^d8hj5x2Jd99Fk$>buA`Z3jluW>Ytg(<W
zi$6&7d|zab<QF3qkXF|APFf7A)p8P$FR~4uf?P>{1_DpM2}w>A_E7^Use=QL2OIJz
z<Q6cH0Lq0TT{<t`8aED3MwF6I1nQudE8r)wCS;ZDDpz?N6R^hM+w6Ko2CM#=c_K75
zW3*@g0IofUU76i32tSdk7DolqE(C&!utQ=LNWeld{QJ^iYvPtN<3C`}P#2TH&kPp~
z66brSVVY&`Kf+-2B2Q+AN^LrWC^HPAmy;O5E0Sx(sG5BZfD(4}1E{&7N%o+I+LtBS
zHl1Wc8&~XpM1nTi(Q!&XM`W9!_5jGTBZI-PnHJqUSqL>I!79*L6s%sx2!8{L27Hpu
z17&nIGWgOWPoa)5J180^&wL7^nLtcPFj{*g%nBqRYLQ9<!6>|=Dov9T6a1E1^Fx(8
z65M5zWs#_A{GwKr_zxKR1M(Pwm>o)i?JF+HbN>JWnXQ<}&Pt70V`vkW$&9W?DDIvY
z@DbW0;a4X{2AAeFMDv10Cdd)Uj8DM_9w);Xl6Wd=CHx9-Vl2doq)mQDEP^i~;2fe-
zL>@QnhyF^leHV&(XtYDl3GldCE-#=cvVNdRHiu<|L}m{`cSuyJQ<R_-P}*B|O0<$}
zLg{uPp;HcpWlA=vyu_!^NtW;-BJDXL{h9N|!K^eux3b2dm7-S*LvsUWS;Vpsl(U#(
zLkxjp6Ezwxfka@D4h~8nz)XP>QNgE?9BGlp6>xb$6HqCjlvm`=5TP`XCTY)#DJeq&
zHNf2n21w`BJ`RK=0t1(>(PD(4C0c6up=ifV#1YK>1LL(Iux|J>Obh`d??@s*8)O`z
zwSSC?${|CVI8IHLNi6w{bNF2=Xl}_xY4O%E)}9FwEK3t4r_mYE&nEdz3R98Yxbqkj
z0|u3q`5RjV)-7995Z9Z*LLA^>uSndT5@D7p$3+q(At0ik;6i6z6U*zP|Jncy0|5X6
z00RI301)&sBaV5zZHi*9T_X6Zl?4`3OQ94kWygwDppLyWv@=%`b}pfGK#t~lCmgf2
z6a|AFTkKBz!UnGi@J?Z7_PUffM8Yint4d;uN)Cz=WMrdNl?z6xYQ<I%!jcS(DT_4S
zRZC#lQl={WWl@16$k??EYit+h3}B0-8EciEDEU$1W=O1%j=L8@>a}qMw4k?$u%=;V
z8)*oQQG%)j$Iw;v3-UoGUV-oy+D0%0#3}(#zC<7kApPK8F-uN3FvOQO@Gcc;WRmeG
z2zRr#C03iWxvs(y+`;(csMmU6!5xPr2o1YY7bK9&qIlP0d~HT4s#N0YkihCBXMyl$
zgGxfXS-_oBF!1hERU~bKRZ38#fmb!4z<yP6`G}M#;OBM&DIuug)W}1dF)_jXUlc(~
zast+ugdF!Xrd1@E66@m#&QpzjVF?px-3*kn9I=1`sTnZ5006qB)fGXA#g5n>LV+ec
z;mHp4s9F&Dl7S^z2&lCInD)^XM-gFA0ICF(FP>@1iJ&G65f$R{QA9`+Ffco7AW<?V
zhM}mFem9VU#ARv+QALo0SKUIBnWGb?b5187G%*12@3KsZOURp{>N~0k%_upeVOl8a
z4H#3^rc@*U!~i4_00RI50s{a800RL400000009vYAu&N9QDJeBv4Nq%(f`^22mu2D
z0Y4BH8a>dWzBYU_l~L4aLBRSnm;7LkRUb;QdIc`6MzL?|<X1|+*&zP_N2X((<%Mpv
z#O)%hzFAf@#5HVeE{JW`);adN_;5Q+R^|1_HR(^n3d`u%BzmW@xJs{ubAmmbROz+}
zG_o~~A>F~#LVpJ}BjEo4`Uz_s1}sQ!c0^yHcOdJ*J>(|AN2*m4Laa3CL?!-05>csJ
zXC}6B%8V6gN4`X@bF+<~(K>@#-{}+_YCXiaMS;e~Y=@_zsYZ0@u6hdM!&ufLSu{mF
zDxtA`7Nj$P>YVU5LBp}(=%g5&9|Xc02o;hyjIqCXm||;VZ4W`MG#<uKk0yjbWre3h
zwqbWTfplzoT<F?x{f{Og*rRV{Xy9Q<!%W=wl7yI3;ENg>#kB0RIS%VsJ@9PWKj<TX
zV)aLtbZd*BX2PgN%fzV-<a{?mgjQJ>M|r(`v1p+hzC<BZXzXFwb`20-1%kzPGa|&e
zot0x;NB9x2vq(p=P+8&|qEvXVB*&=6y&D38OIEfd`a5<)83w)So6%!JLySKI#-t}k
zhJ$V~=^x0w5!mqF4v!6_D2pp0;RwP;VIN@UX+DYFt&n{?8Nk@b#t|jpo&y^O^caMN
ziy9t#8zI^k19)s*v}Yu^(+li)T`t9`Afp$C3!KzAki?4&c%js%U0J5aKEsj~D$*4i
zt&2QaHZ3$t<kZ5^AqL1JK#GLFK`pfmZ@&bL+WrzwL=p3yh@Z53_)?vb9x3iDk6~-&
z_CKw7zfVJcve+&Uql}Q&rIZu!a8V9k1x47q#)Woo{k)xJ7(prfM=hR%L>sw7MaCI7
zg!0ghF)-Q$5Tin9;SP6pQhX0);l<G7{ondf24xi{@E5_cCVs@h=*p^HzXPLMhzZBY
zx}G&_YtWloeu`F?m*HLzw2*m=7`3ON8vVQq{k@x;9l`K>U6Ax+us4Rp#>U+arCG^N
zkIR-;Y8ydea@lB2XSzg}eneXrgdUn9-miawFPg*R7K@mh4tOPApR#1YO2)3XWWTl8
z%uSW3YBj=PJCWe=*xtsZRp^1DeGceTs7rVdK?;YTL!TR#hYhjbFz11$$xU$biY&1s
zQ1Hg!TQnRQG3BKH0A{s^wTD`CH+~ZgZI39$<ZEU$F_PezOmZQN|HJ?&5dZ=K0|NsD
z0|5a5000000003I5Fs%^QDGo)(Sebn!Li}+F!BG|00;pB0RcY{EDVtPx9Q-pCpte;
zLIlr&{V}w!njrPA2Jo{mb`MVH!F)>+?Pw>77oARJB2w6TjCM&CbH@VPz%-<C#TRgB
znj4Oazf4Sc;qd&5oXyJQv1Z;hXQqdK)aOQ)F?QJRP>f<kno()cw>t<<A{23KBsG20
zN`iXr9BsURYCWl8(sv^UdyY%ySoKB#G;0h+d^9!<;P?HEyFyWhM=~ZPa7Ig#3yO+C
z#&6000H|Hb?3`#PPjhnea6he#*z@FDhK|tZxd&G=ylgN&`lpfhL^!y3*7v$D1pUyW
zvs(t%BEmgkyFnEa*$W>4Y`sD2bZUF{;B3TVO6-#_3bRFK!&;&~#)qTtv5vxK;Cd`^
z+=$7j7$%I2QY4U)u#t&t^WVX85Jo^w6^12FptqN)G?*DZLqS~NDane`@mNKPQaUCw
zYjF-G_!^ufXG3#4wqso_i$!R3?);GES2Ec2*p3-xZ2pKXo%Ht}AZ!<1Fyyun&X5|X
zHaDd@CD9W!kg$ZAkLvJ9k}@{YlU9BVSBr1&awGC+{0k|h(K`=UmJDYQi$mE23~C5R
z6Ge$swnZWH`3I1)BUU~vLquhiNWkHb@rGESl14>ZAZUmYPAHM;Sma|9CA_~LOAla0
z3kbW!Wqcm=XoFEI1fZA`rYRMH(w9VN-HlBQYWMvaXd1;MT)I8~0DqF{Uj4iIAYI*A
z_o^70ug6J=7$+VaqC|@V`gcF;cPvC&nvRJW0_$OId_V1nl%ktyT!!i!8YE<kb`-cv
zS-|?+YtQK1)@nY2CI`I6y{Q689nh7Nswy-|DlO<wWW}1}b7zq-#kvjA?Pu6w4DO*0
zu=fdd2n|^-jgn76nFvYjLnbm9=@cY`7^M$F$z6nQ;`t(1Ce<cW+)C#H7;Yy$35kq5
zMfspNot6<s+%UwDX8^rY;so7ilQLT?avX-Xd0qzBU1OD?*CO=EB!$D(A$4k?sJak+
z#Xxja{sL-djH@HstjLb33Q(DD*v(9hL`Qf{eEBp1L!5f7C}RME#x#WbBtZqTOCgi0
zX9|w?eTYulX{zikzEObB99SRulZiWuHQE+Y2^|x*K2`q!21S<X{fdZfvbYqi4vR05
zrSVA3@GtOQy_l6QrS!3VFYSWD52;r|QW&Wk1xDy-LYSt~ZX{gB{{YPM^jK}^XcDN@
zT8FBs3@FL!!7S+|3XDpEjP&)!bXk$tjUM6+Chx&JX{3$hp|)O3md>3KI-%N=6&FEe
zOhsQX#1VMjnH;?fKHdf-iHziiCa-bi91zLa%4EY(ObyGTN+B0T)gM99Tmu6rQ!SVf
zwh|rK$3d3GM6o#_fsZJ0I!qVSVhAFi|HJ?$5CH%J0s;a71pxs80RR910096IAu&Nw
zVR3<xp|Qcy@Zs?g|Jncu0RaF3KM=Cjmg)rBw+5P-=2&jB%Eg=C#^5)z)BDHdhML*#
z6eYJ$Qjdn>XWto_p`9(!E_xu_<bhEbCH$ul!szo<;JKavX~uClRtM%Q>)asDIKE{Z
zpBjs=Iox6aoHY-~Iv<i8MR&NWM#+M!aPF-q61QC#xjjIPBJJ9R8-1+9>!_;WbBd-v
zL5s`hnub(qFY%mK;w>(rtmM-Q1@s-)&hUm>@Q)E>W493GGkm~<jvkwaDO#gH8J>kn
zntL`y#J?OfYPbA4mW$PfJaBLXx%PsQvE*i%rfT|w5Vf?~D7slyj=PjJ<C}@GO?!v%
zKe1ew0<DX6FgiZ99qW^u!QvwCV|J`CTB{+x$kheFab8YkX`zdU%5e{+WnG=cZH1Gb
zoWOiN#}7B$e%Xage7lBS<!SDqZ|mYz*>P74a?8M0@4*nm@ZRP02BnNDeEWjQIdFg=
zF{$|_{@AiuVHWX@26V~8iFSCfzXDMro&sA;VOX)cFL;ebt!$(6OPdq{p1l3c;n1u9
z0FkT*sQz*H4sX2GAl{SYhMo=I@8%y@Ays_p1qk#XwAUA|;hT-w%oM42o+4IusWINp
zbus2#+BY0Ir#=y&*3iV%Pyu?x^Fi~AO0x0Ch_FGd-Rd>y!pBbrhMdgr(+86EGd%^j
z>rW6sEA7G*Rye0{Q$~&@+Oo$mRunZElAj5cYuL=)7MdQtO%>Nvb;`d{ra`LrDHCHn
z#pj<gjE(}t=26ma5;L%BXX`az<Q7g$ux2(ow7HEYuf!vBD|0%k8rO3mg_*gVD(<7j
z;ZRo%GfXj8!(`_LZ>exGbE-@m9HT5~Oi?3tMWTembjH*yM=6~hRvSgQxv1h{ZQdho
zo4U8eXn0Juu4W-UCX6)WM^f*gDf9mTu-j|4{pNg7755!Gjcx)_%{-cJ6KavFue4JD
z29v=9sNVJ5Yr6nZGu$uPPY`OuZXc{`Ed|-;yMRw}1T<!JE~VONH{98#W6PYz)NnuF
z6E?6f-~PZ;ZlU7Vek=a~VWA<%GNcvEn6_PNtC-xxTGVD64AsWO4+@X1k2jB6+<5v<
zLZ)%HQtr{0)-j>S-eNHEE^DVU=qv;?(21sE)@wBjK7ouJv&TOX!R*vMi^GbElG{vs
zCkYApn#*fa`Ic_Y6yFl+#vk8}cCN4NH9;6U^%S$ELR|{>y6|xb$kR_#5vyJ8vf~cL
z<k4Fp%O&lVzpSWiAW>fb0FYw@2kQH<K#iziokYOibV>$`WluVfa@HO@mCWuX6Xpl5
zWL*3^ff%iVpZf?4>O}tlxPe@pnt@pJf2dVx?z8RvnVUSkK>6Cs)OAADmpAb=B(8O)
zqCnhL@b@2k;Nk_j{LBif!Oq~=p{yw}vioidMR^!~J-~}K&zYXM2WNj!io<g-5@0ZP
zO2v9gj%-X~JzKS<>NM`{nK%g^K8j2-kB<9>T3!#H<HMHl1*_D?sLSvD>Q$O(loM1a
z?iS{Q!1Do-8n3?;ahb)nZuz|NEq0aQ%j5YEUDa`$TJY)r0NRJ0ElH`FpYQWMOPY0N
z;BwIq;%c`1WSK%X-thp^qWs)JuKCYVka7p4u4QXVg5$<}nc~ZKOogt#B|jZ_i*p56
zV{**M*DgG>fV=!lNL0+^o%IaZa7v+xcNp8vdVqyA&LxCpSgS2x++>>7mxIrok$z5^
z?i;;*FyondC-l#g{!O^`>qg~Z>sPcGG|Sa$;EHYYEen*q#=(2pEnqw~Q(;Pgq^x*Y
zv~OOfsz!n`c2SVJ>{Q3313wO>`+g#S2|*Q}FSZr6?>TyFM-1;zUnh!-G>f-`zjEwZ
zY-u~F^3jyV`DQYxzna|Ho{o{>8HofC41Dy>OX9;-210GBzr5!Q&zXrz#rb9hJi+OO
zQKifg$>qZXymYvJIf)L$Z$3!SBc18-7Q+L+YGWsW$8Z|gPd?&P9Z(9#F|}2yxcWeq
zt<7)|q1?6wnYB!#wfXTZ2{bA8!4mG>+}>vKMHd7zyPP;k+KVj?ZeqQgrwNThrKqpJ
zUL_$Y?F&hQyKntWE4S%C$fZYBcP|&i1p)BmhzgcCXHb3fJqNOXy+*ZXY5pgO9-X<U
z7thvZi!iCYyJP?>jS{BG_>5g$yd!b5yfvLqjYz*p_LeU!Y^i(cxwqUagD2j)j2Jie
zjP|59F+3IIyjKufdefxv@<vLH=KAUxu$sA@BEY)K>Q;bgZ+{ZeajVC;Z8wuKFB#$<
zV&bK566~O`@}3%LiL&7#l;eEEYuI$&;RZXx>*hN}8`O9H=2|o={^Er4WAw@}n%!OW
z^%_NcU6l=^a|PEC7ZqJ?J<FvLN!bW+t$5~8ti6tLpr;FNA5+9PZ9ZY-yN2-f2LiaJ
zUv?|1m3tL8E4GSZA!T&mL>Qve{>v`fzntbfNMKwgCL+cqe9V4{?VcbsYUj9HRWZT2
zm!lWV1&G<)3qN#tTHpbpcq6Je#0t-e%&D+Ez)8(%^<xA|iS}l?ft|h73u{A5s_Ga6
zR-y!g?&cLOt8Id<z?<SNN-~C}h_J%q{{XRp2vK|WE*+YsZzNr7Oe-p({NAosoJ@wk
zSZa?pH<<5Lhn;W|x-Wl<j?_-yB(G%L^_+cdiuNCUIN#b~+Kk?1AJrA?)NkFkH`%G8
zi!^l1fdSP_AyF#tF!I+Je=seUEcKnByOk3I*{n|)RhS`ja=M>;%}i9!%nOSe^PVag
zIy_uMHs8Y$u&7IOlqz^TfRGn%s|0A3qdJE68erRjU8E=yzYvYyqguv$l<275xsTfL
zj+wq;d*3JWI&ns)H!z%}r!c-=$LeR8oTI2QY?+Z(KL7z`uNu6u!=yCo1=1W6-t1B;
z#k!}6fGe};ZlZwi!>@7St$D5fM`?CP8<3w^0>Ui;tm3|x3m1EvZYE$Qpk;Ttv7>^y
z%6}&UJS|1E#@~&?XDqMg7Zh{knASVyrR5w2Q5hAL6_Ny2^X@sNYL|BixfZ?(nI)l7
z4~v3v@!|gfzqsRtrZ|qFcc7RRJ<dBbBRBKRa$0FTLr_<f6NVyDO`)S%q~H(QI&s@=
zI`<2tV7Y@W{@B*`c$JfWiC4Q*6F9zNWes@lSR@x$#0*dgj6NoR3whogGsV&1!&vc}
zC%-Y@hB2(>j)pl8F%2!-1$B=ktsu8u)<0}!Wj0J=bky6kF*ebvFrH$2x;V!zGb-A#
zm=c4Bag}MFX+9;>MYq8nA_A@QutI{Zr!W}hh3jZ1qM<D;WoinEZY7!>EB^o?QDx+~
zh;z$yRACnxo(_J}s4m;8#r-1{&~1!k^#IdI;&%?EJ>;wWthbxYW*>4nX0Cb5osJn@
zrfHluF-T9Dk_t52=c$hwJAr9~LT98L)UGs9XAr2XW094N+bbJQdCaPFlEDde{-9jC
zF{-ty)pHl30QR*hLo+mm`0mS>`82)$E;$y8DWbde4d+vSE90exImNU(zE6_jb!FM7
z{{TqmRjeOZli|#*uZjV$a`vzzMdP2i?qVGGM>6V^@}?<TH(8eCv1M8t$jkA~_?DH`
zG2kL51%SF{->a^$^vZlOj_{;8RaD@;N9bycA2rbkZ`!&gC)5wxBq$=DFa3k8q+TG@
zJLXg7XXk%0!oaNi=Z~bYsVj2cPr6Hn-oJJ(r1dd#goM@ueq+?nf*Z3^#M#SmcD$_?
z)#Ff{ipTjgryAs*pNO=at>J|_H2U)xXN0!yNQW<`BC@yKOWR}#crXrLp<t-czIup}
z*?kUwTbTmJP_?`FAD7)@G2cJ(CN|9*$7eBEY`F1w9(_vyM;%3JT-mGjmReQSN*Y@C
z(*mo>mzf8^jgN>rPZO)<1_%nw#Z*tE&3iGJw$@*R8qW~VdNI>&#I(xjsJ_Twu`e{X
zT+91qm^KX5SsD{fw@gjdMDvUO;P0T$KGPR*Z*{ygV1~$bMpumMnMC=^#5-nGxV*wg
zkkm!BicHni=N!vf%o=!wFIzq6c=?yULX5=YFrWmaIF>mKn3bB^s=rwK+QqQ@^DxqA
zj-FN$mMn(P%uH7bvAC_<RCvVxtrbi!*Dm(I@(42Mt2NjfA$W{Oa>lU5_mcAvobRpT
z8MmCPK5}?vu;wsR_u~q;<A_b`M%EI|$x7vakgCJfN@RBmpdHFc+r3Nvo{EJktC?3s
zEy=2#aX8$o2w#cHvmd-3Z_C^(7i>|*&1iJ>n!qcKtmA>%lKntPuN>YWw1RGJ{{YFK
z{7Zj!H<suTdAMn4GXo140@tJaDl6}k1kghl2p4%W$^-C9(V<ZGyg&=YE;wPLKbQ<g
zRMkB<sYH`yfqU=s38Qu$ot?_-#Z2?+z=cikk8?jc*&bcnKVlz6?d<VTo~y!sqqOKI
zE5}gb89|BQ_Qz3L)Sv<j<hy)-<;;)5uR3w@r~s1Xf8J&=)(yu4`~GpZb+wJr9Q+>=
zx<;!b`j*`#vK3dqNc!6C=$_)@Q5si#Oh#<v%$MgH+jXwt1$yA95qI$b0DL%!N@q}}
z5y!Y<`EFX9UgmWsO3s)o$osMtW9)~>3yxz@%=rxh?biJ2VZ$zUlzO5K%r=&u7_=rj
z=k5JOs6W9h_;n!4!DaU!ohy~NS8F_GDsfMFi&ff{MnH@&YkYf;Pd*asx`hH5vv>LH
z+)ihda4l~aE8Yxrp1FmgMgvI*t0N1WU^=qXDQV&U!a6X{2X`~^MpVK9*+suIILzN`
zrFprXb8fU({{3d;x`F0oMXuh(5+cJMC02IjJC9cOPCAU^oW}{sK_HFOiy+hw#JIB7
zVIU21yw@I~MyhHy{{RSO$vHZl#?Rsa!MMiHQsai>wp5|e$|4OjtAu&6>SOqRiPO=n
z#SQoxfeNPCBG}iWJ1NR*&Ddvf3LRn@=C(|p@L-=@!jSV^mn;%$vTbbNP%dEQ+cRyI
zd@+F`%QC#d!MSo^)N|cIZgHQ+V<;B4-#>`x&7y{1xaHK2?bnEgk%qlTgi1sI06fgQ
z_i3y(YV9%gUCIsLRpwod2YgpC?6aWsD1A#P$j;wpQ(0qe{l*6E?Y*7M?7<HM3jMKV
zR;H@AiD{MH_<+?$h537e?QXqp4|}MT5cbJ1j6==*Kbd%~TV=psFk0+}*6MQ_w9e*m
zHOw^yj(eI_`!jP>oJ%IV#I}+K4$1gpqq{BNQ69^_<Lg=0uaEODOXyfXzsw^rrX}8o
z!Y9cE1y-8-EV$9`s{~iNv9y*p%I$zxbn84yt&aB`!#TVWDiQd~-NbiSh(vbIav#)I
zH!)Op_?I<5MJ_PKWv17eXa}~-eRx<cY_5I!g%P2fSy*-<yW+Mzc#V?4s@)7Km<?AC
z`4+#GH1Ac#(J9NvO*!w?#3oISURWY`viO{gak}4#$(TCt{i#!j^)TDW56r7g64~cp
zs7j)iz|;;84(1B0s^&Z(hGYGLgujRFDPxx`XanU4ZTiA%Xlc@*JJTZ}H={{pdDzDF
zg#@9^O3i_d)5{4l@PKJ7zW%b5+N-0$uXfDbeAhCK@hj~F5Rs`}XW58(8*a9)YacLQ
z6LabXjCI-I&H9hpN2uJfn&tNgU5euo(6TzmZDW&|I1g(GtMxN}{uQd{)ZuHZh3|-P
zNhori!?3RozMQdFduiKqF_1Ej`t=q!NOvFoj?q<W+yvXgJ(R}R^?yqJLN5T;DhgA#
z7vKDsBX!TqI_BS=;@+iKijEr#%yg3Vb<ls=bAh?ZFn;kRG8#RX`73rjS0`{p7BD1m
zhm$UEw6NJu;Py(;4(8jHEquzVk|Nq_5vJ-;h~x;CE2f(u^un)A@g36Txm~KK2d&Jo
znXEyF+X*=|cuLQ=FvK=1F3!K+C6t1T*RLn6^&QsL?jL#Z!#R&=RzY&dAxvuZ8YUOS
zrf$6Wjis!2sBY5-Of**t;R#IEc=##-sGL*#92S*3biz^tsqK`u1;T0$Hw<7EZ~RAM
zR^O*fG3rfvzY%XmBAr=?5Ccm*MquAvH<@tWsQF@+GCt0x5p(zv@0+YYw-n%>z^SbJ
z{Sy2wbMMTs>|IHmGzhfVa{mB-vl~}Fc<MEv5QzBHdni$|87Orw<hT;VV-V04Xs%O#
z5o)sH?-KWKlzNgrDwGG3$?X_RY2(amr!#L7=4R$O@5krjYszlE3eSo$tVCE2i^f0L
z^gy-UL-9Jsto7^1(qpmYH4oW6Qo0G9n`c<WGOfn6H@HTDdy&H$^JAK?^)QvMKFC)!
zU~eA?$Eau_;agd){{UfTO0CUx^K#EnNQQHm$ZevW)1qXX0;X}t-fvA;6+R;5&t>C`
zsx&p<GMJ&2M>Xc9%bOl5@&5A>iGf3|)-*ae{0HV4Gkob%cND1!U&KtnS$E$AX|k*<
zmRR=M)VaT3n3dso=Jhq843e=!5V+TveJ=LK%_+g(&r!K3oXkLN346cQ%euZH)vhlJ
zjh)Qdp~2BA@?$Aii>XKb=WXi~8=|buMEy%EEjXGPb-6R9Q#EjQ#xD~=#0z*-98F~{
zuRk%nojlpNTJ^PckBH`_F7Fb{<5=IsE(KAre{qFnQ&ijnj}@K3)C8rln|zqX7c0L9
zQQj`8vcFK6=+=HGQKdlE_v84uW@wRJ)NNhn?5(`|fTDTmY#GNkRk|u&UdR{j!`m?~
za&Pr5MK=1KVdh4H-xHeK^_C5kTj!W0W#6B0vUalB@iVWiK&2?3E@jeME%M9Wh9&a%
z3z_`J3{p~yb8@Ull;>|d6f%5soMm9Umt8f#^|J}hOV7j@htEfkEK&%nR@~)9oI*1V
zG5rU3I2G<h@?Jl2p}VXUPi=GJF)2*^VJh){Pl-jB5v}~p5Kzu)JSb?DR$D>ghT~G9
z=`m*GnG`&85lD5A(nXxUe8-VPmO@ceO1X%SDcv03>SG--Yi;T=%S)Kg5s0w0C%@J%
zX}zhZq8r<7x6i=?XroT(B?3bVvl~ye(ep8=w*l02K&>4{xuQ~`?@T<gXxt5U<5$a%
zU+qd3&>S9k{?0Qd--x=ErKwCjk1@pR)yj@0Wk4|b!AtZ*fS?l5y?L^y#_MO7N2$)K
zw!d#M`wwTn+l@++hXQ}dHqOz&<rb2r{$9$2M>aFx%7exwyACCMgTyC>^}c0hT~~HB
ztQ&20EikL@3v?yC<Gazx$KnvAr5@U0Wz5!_3{azuGTnEMwo6=iH23L+wl~yfJk<fe
zyedv!4>8X%oBWJZP(ty0^)5K<+-r3zotS0yz37)_sBUy{AGu6a72&z21w{isFlozu
zK?j%5t1wIe!(Muc2})Uf#_!jxUoehF{nVko^2^K4_uCG(zuSoJwn02g-YO5b=6!Q!
zIY&`19HT&QHkmU0$!Lsw9sd9uos?Hp-=5%B@|rIFc#jYg3HLsd@L5H#7?zxjMnskX
zRBqzFJ{?2mQh?Y7oAD6cXtrLmyL^YtEUEX|LoO$HiOb<Xa9bs&4Aiem=o}FdqO94V
z4<hXD;c=?2&CC!D;WPG?AO)*8^AxDAlGZw}tYe>OMF*!D%pN-KSXoYF&$^GNUOw`^
zpH=N<vnq`7+)O6RYls;ug8lRJFYk48ULspa3%tLo#w+fz&x)H2S3S%Ez$<UIYeu?R
z`sy=yZqp0mZ-I?ewxU?KY0JATf4s_7!Lw0QH?I-g>40Z^%6aFBT*lY&EIF<hiDGpW
z%6{JS5tqP2aK<$;418w7)5lOaii}#~qqW}{FFwd<T=R^<D>#I=_ndAdK&CI4-3lu6
zxXazSN^c(U&Fx%nvr(LmxXi6Kjz>&8tY%VcyjeRl!Qq#XQQ)AI0!lA3kU!n=D-P1A
zulq4uB8#@@BUB4Y@!gnAmaEKb?}NKeAy+DGUVF^p0^z!@Swm24T)e8wW@o-#zqs0p
zffbmrz)H5+2ZQr3L3-3K{1&>zrUO`rm9=l2OMbh7u83{eDfgl|p+dUq;NVv=cNi`U
z0y0Hy<+$)&!4&E-$+?hy=AO@(D@+6nFQj8MXDM)?zEOJ59L?$Nl*lt;utTA@5qS+j
zumA&SY|5IZ6PcFtFMcO{t{H-`yZpvlt?Pyjjay<ukhRV8a4#5)FA|%%93Wmu;1>>^
z%WcINYAS=LOB=lsW)kb1)znLl*Pdmqb7oJ7`Ve5#f1cRN@j~u)Tk{RtfR3`q>`KRr
zehqFk&9Pg({{Xv)4GcWvkM~l>j~6rf9mYOacexPPCA)mXbC=Srkqx5GUI|!fq2dgq
z!ekVJTZGW5m2Tz{xU0dw;{=DxQnJ&_+{r9?L=GO3*J(|I675wG8j0UiS42dk(vI=T
z9XUgqIE5e@YyRRk_f1(;x$%1?c59|7A8-Pz9qTZ*jnvOLixhaK5kCjYd4*9U)45nz
z-PymAXTi;+Jl_Ei!cf3`;u~5uHE}!PRax;aiXLtPT2L4+@f;Ca?Leq&oBTwS+NQC-
zW{p!8E0e{;NUc3Z2A>q?5Tq~5(&3oJpa+g{-rAUdCtkb0tkq9`Q<=NYBi+P&9Eedy
zS&o^H*I`PLzSUC$k%YRWL7~^?AlpNa6TJs=g)cm2Up;qAh#JH`%+JY*a*7Okv*HjX
zYu%8QB2rXx(wR9f0aS#mGYYp3IJ<**igUS^x@YDE`%UGr?pIvrJl~nVty6rwdu2Nz
zp>_1Z>;t=~2o#d2%)R|)D#n^^9=*z{m)$}5i5srQ-!E}B;)^Q$98I&P6E?z%tKV=7
z6$e)?(K-*iE}D#PqZ}c0Z~p+0=?qUEZ``KsRSyF{Z^UA>nH+PM5Ty**OnTiFI90{-
z8;ul7wVH9<s<fFOq5&{OB<|D?tN<5BQ}-rd5no(Km8hU(S0v5#Qwnw)=hk;86u+HH
z8(76nUfhPJvx3p<xTSYELG&A-?LUhIjBQJJz~7FnKuxobROWYtqLj!z&TN#NA1f{!
z;cwi!Ok@UYxmXNMYFinK<7q~&rpdOt;<&Ej162hRT?bGpxK~5xwi%;>lxyA}P}7*J
zgT8euNi1mjKagRj+y>Z|n2ga{mgKmOQ1G<xh;iy3f&gnh$}h;*d(D03za4HCA7d-+
z^DV}&oVt{_k8$Wpy^{6#CRLb^15g_7Ib%1eTn0Ibg0&19)VkLVEJlr*nEwDX22^t#
z4H{}^Lrc_u=v>Hw)CEC*$O-+**kMK9j6W0TnN<Tf9ZYWOe(^sQ)4$AZK~s#!6*QSH
z>G2E>mG|t17aC>VEHdxnrLc0yub*C_<=PGjme98>z4x3|R9omKMNZ){-eVD%bbWr~
zF#2I-e{tbfx7F+4a|e*ItDV#p<$31k<YVxdUDbIA0k%@JZ%5V_Zfo1>6G7VJDlBPq
z(0Q*i;;KTeg=6Q;#%drQJ4s#C+W!C(Hnn+#1bDj$%KWQtH%zWyRdoVQwaYTpaOvU$
ziy&z5fZ?PnopD63;Z83vGN;U?wg@jVEU@g{E%*qG!yAMs8zW`bbQ{*_@f@7*0)82r
z*?xIy1!nL2&NPM7v)75QH)oiAzE1ul$poXf)IQMUx*t1bZNB%-7u;$*V{z>=4r!Xl
zyuq5eX6pX{@^RaAtFO<wTc!?o%M)5HO!IH3PbOP)>*g&>+pW*Z_=U2hbkF|)cPT>%
zs$t%HiC~{z*=UPtvwq+J-Eor*L`_c#YyGcKm9UD>QWnVNubv1=p;Wq+JXsIXMc2E6
zxHdnf)A7f+_A%s#Un`e^nw3~MhW_T6htc&aTkq=zf`SzlXX>NmE^Os5##V3P3lFK}
zGMqFpm0-6`oOdr}rw&=}5gH?1-%!|Qb4g5NK`D~V{UTdsWZp9z3%6g0zlA&d2JAxv
zZpn;7yyeU*&;}L5b3f#^OhVB6nLE6Wh>amfKB38&TZ|qq7jSu7_ZKadsHQs)+Y!i^
zt})v29LN@$lgzN?t((h8i`aA|Nk+?0URd1{s3;y~z-KUilF-#%tk;MDk>p+iKP41G
z@iB?Bte#?`!!^c<TK#yM!{dB}Y7QO4EV_9nFNiGeGW6!1!Wwdj7Q2OCDu}(ryKT6D
zVM&Hlwpm%DaP<%)&>sdAs_|0_FU+NiDfyL!T;z3_kXa4t&rk$_vp#ADq2(#Bq_M3{
z@{#N%r<L(3Ip*sB0OlA9o*PH&FD)#)HBb^^u{fM#3?on|zX6t0&bnk_N{4rB`bWh4
zt7wu94c9Ku;X?AgvhHXapNR^u35%}fH$}C7f+1zq=H>1<)l_G7^A&1gpgDK;COihc
z$45}!K8tX^`HZ3p!x=nE+6B4us9q|$)H}U>9kC3;w1%t4+Ev64?IK)K>}pl`i9oDe
z#`;Ums}VP_(Ni|bQspkP$+gV1L*nEOxYT9E=J<nI=WLnf_6;1}n3XIR(xKUAea}#c
za&MZ;HcQ;M?JkARDVAeoq%7myGrYLPxB^;?Cawk!QjSInn!=na_ZvrgF#N%KK9iAl
zLgs_Iz<y>2D}VDG-L<N`L0!Fb^~oQfXRIKhx?p}~GR2@dd|WD5g;TF_^1+N~JDK`x
zC-ICZ_2&|scpTTB2-68oe{6OXwP#SJ9434971-;_;3#3PcK2ON{DG=Aeux~w=J$QE
zY*@ndXDag**5=+biABlLi|eUd;#y&yxT_=_E^{lrOqTT;BP=+U5cxvnC3eSTMxNJP
zlIrsC&vz$DU7tqpn3}-N#W!5mr65bBt}nPwL13(j2f-%mQwI}U-k=g2v&LMh{Ik-5
zZkcZa@*2yrN|?hY4g++4<N~$%H7vR4jE}f_ifQKhs9HhEzu&mQ6%9>CI0oEp^h_XJ
z+c)%t7I=`kR}EWSd9Goi<~qmLAW_@y_OYLm@Em!^c;8)mjBZ@Rx7@Ro<-YxTg0tqE
zn`Ho(7khg3EDNPpu)n_Hw7|71E^e>s8ugV!uA;8vX8utSy?^inxPgqt_{4R+{{ZkE
zgcW8~-1(T^2~*-4optJ81K-SZx@jQ_y}7|GbX;E;g`(7D@!oowlVL|k+{T0}=lK@^
z3FnVe=IvrM4@m_o>8Bbdd26>R^C)s_7h8#}k@tu}t{kV@B9@1p^W13TUi{aoo`Iff
zau#LxY;~S&z2>L|)f3@*fl95xA5Sxi+g>o{a_c|KDJLfP-FM<vdt}`Nsz*~-j`-tA
zcjb(92Y^LIHz2N}rHxqs0Ch0&cjs)YVJ?HVrR5}2w{r&5IK&qLs!uE<F2lc5Yi9EZ
zv64M}PILgU-Z3a|5b1<t&L!a!1*^Ce&wR_sS60&=(-Q47>SSvkrqP9cSgDiM(D{`L
zI%A=L32eL6^D|zvFtOu&L4akHg-8X;YPeRe9C|%9sfUE;^}{SzvkV1DV)x&e%?R@M
zUB;ZZ#Wp|5lg`b57_IH`yM+~O<LlJMxs*Aa;}^${;{hj3`Hynm15LDd$;@QKO5F$c
zIHXVf{lILRYy9SEn0uovD2@vA%*DDc>Lz9vn>qeW7W%miuTZ#c7W@R#P|~*l00=g$
zK**r=+Z$3`fW9FW3L;+)A<hah@c>pnWo610uBEq0dT2_!AjUI_mu1^JV(K_T$t;b-
z!z@-EONAt=`6m$+yvvkQtB?8Aqgzh;!-`OwUVb7;cu=nWTx^BxvaUG2)ppi$Mr=vX
za08vy<fa11+sTL21$J0Cm2(}cyrdl0T&=r<Y|n)aJ<4vmk^cah)u(!j>AyRs2wF3&
zHrkm$nSM;1iGIys{5?cH+<N2omS!CHRq6+Iz41sLIdpF^*26Wgp#oC76<6*Kb#M^;
zLWg>2x|dB9XJvA`hCC1Y<;%9y(bxT$#-JT!n3j`I)rf3X-OmXK=@Kg)7846I$r3Zf
z+oaY)dWGn&xQD|CCh(Cnv~9TeTAiBQ-PC-xJ$+0XwYt;pH>X<WBzD+xPvU0WO^#BU
zrc`-)Dc<H51kR^D!DA|_pT)p*Z<%&J$jOr&cjhRuZZG}J@BY7VF%?vs#zquHN%H{Z
zIiMr7&kC-X6;f`6g+!(%ZW@Wtxm-ux`2N5hwW+sS@hWBF43b&lRY{=kEn24uzpSt_
z@y!A}7V5W;SYBK2fPoZb3}AmIzD=&rP}g68#jd5vsCldl1qDK0Y6cTi-0J@T`Hrd?
ziCv3~D?<vdlL@9Hg8lK<v-2((!BI65V}9jfX2EE1OS4MuV*&<<^Ugl;jjtEY^YIl?
z3f&j7SjhZe2{l5or45p|LV`MTi;N@9j%njDjXQ42s(*5d3aH!r@h#Tvuy^Vxr5B5B
zdLy8-Zf`Bz$4BNPtX%&9!~x7U?!C(fXB2+&=naZFJd9`n8M_Cb$a8%(vcEB<xOo@m
z<|qka1rw|D4BcmR`Hlr`tG{&(QCqjq0R`i0;-^={X+_7DAzI0!bo>&eL8)c-`<0cy
zb<d9DBhzYKt2T$tZ{j$t55nvF9aE&P;%qc{nT<k<1y-XhubF9aofgMk0ugCYz2C$Z
zN5a(IK|M7Am{kG2$Ch}N@BzD_@e8iE-Nm&t?_HA9fo!?5t7i;)jnt;zJX8{OrJXFN
z$aO&v{{UeV9Wq|C^SBYazn#C4`pPN|V~Oz?L+ESYsBNp`+#fOH0AG8uUTtc~vGQ{S
zy1#r!%m%Zbxb?ve_Es3I#@t(~34W$((}xB>QkYo#&lL=pP6}D^69Ai9V!LT|eEj;B
zTCn$8^1&x7T8`CYis!($^zuNtyxlC`NLoHU+*~Gw4BdUDYF%LH)$S92iMPI@q{sN`
zcFm4~l@YOvMCK3aiCA`&MqaX}V3r}u%C(YHFF9FoC42FKbSMwzV}ooZOiA>|UxXUj
z>Rj!bE80KoMPw^=r;+mqD^tYO0M5bb;`Ij*vC)gnI{yHl492Z9&&J79SQciJ$(~5~
zi?;BKb>b!FP}LjbrnBZ(XAs^}sJHhUy~3EYv&<?K_{|s6!eXr^iDyLCw4P-x)gH0A
zP|tR8ecZ+=%Z}CHJj-g?Ovk{$SkscyaK3u;6E@KX+xjuFTc8}CJwfi+8(O%szPf(h
zMF$UKy!w?E%oV@5-Q4K_e(*jMRaYVIaNE_6APu5&-i*;J2A6R6#5BO*m;-`V+A)cK
zG)UfB=2Z*96I?JmsQHAxPN8Fe{N#?)Qwa|45XB;m<#D>bBqo0OxV=MXHgyR+rI*a}
z9yJ3tcg`a(CF%U*5wg`0b+P=^%axJvk-!_>SK=i|qet|vA%+8<KCq>X@&3|SSw_TS
zJ?0)Zl8gJrX4EY|4?ZKIlF~N%YyHe?TDKzg)qFy|x{P$e?a1oxekQ%{4Iiv<rMhds
zi9#yTU#LXAGTPAx>v6fY4Lss(H>Sz%-Jf`iQ;Mnl<4{z=O-lFU>9`|J;nX~x$_LGu
zSJH1a*wRue>?nUbgsVAi{AwmKT4lt`tY+Dqsqu2Txni%lMeK|50e5B*Td5YqIEgtR
z+*xegd6yiC%p%#D-42^aCK6bIg&(j}y{N(SFC3$JTZ3^UjPnIh11>4-gsfKAs49UU
zPu>ku_7=+4rngnj3%7iA8Io!ogEyX6@;I|b6N&M-U0j^sRPi!`$8C(f59@EMKXJ_u
z6b(PP6kzu|u184<ErU(h?3%4JPKU#(nuT^n`{m(Zom=tT7^XDRXW;!tqU#qZeOv~F
z?8B{8;^-n?`OjFG>rMUW17vVFgfo4w$I^2Jcirk$Tw=4M@iv=xogShnskjD@zTlr3
zrKx*eyG^fwgWa|mcKMr)tSwde2&k?|xUN=k*Utw;O`JnmMXwMRFdpV@ipolg*&&rc
zqR)sZ+AzAa+<NH8R{>ZBr~2-9C}Mn1IGNQGg03GA)%-#T=~35ecP=Ap^@A$~l=%xd
zxW!&-6pGhAFWtaJX{2mKY|69#>G+mLh}DPO*g^*Y^$Qsgw9KN-Zn3x1Qq5kgDuPy-
zevHIP#qvu|T{*6csAV?*uiG%R(RAcH5^r0E-+y^Yuwtus{FdCN84C2af9jW7Bz9%>
z2by%TUHFPoy*9PbAHE?<-5aajVP<F+n+9J#rVTd*bNJ>oJfeo<TjOf#BV@5|ipMcr
zKwt`lwze)9%JDdVbDt64m;F%TZZgiHYL{B&7`<}+Lj%Nl#JCmONDA9ntjy+z!!5R9
z#6hDKU6*nJ&r$lWGsavjUHzvT!hYs)Ynh1=pfkBXH!t<0C8U%HT*cDvEp3}J{{ZF+
zaAqDUg;xWlKAcO&#A$8f&HL&LJ-`R6AwexpJ>TwZ$Wt8OaNr^GC)QDR8RiWw%MFFg
z7JKl+t*qLun)x+xXQt)_0g)%vjCO-+eSF2*Ys*)nU6u^E{*eQ8aa{ckvAZsF&GRsL
z?uss1P+XWkk23OsiMg(({h6otoWbVr6EzdO^5KoTZ}SqWwX3f)dBFhOqt=g2nQ{4k
zW-VoG>xkg3@iu7Xx`>;UvuSHz5{=%aV0%mftATRt6Gej(@9&wwrA$><xTiqW;PR`3
zm}2N61A`w>+w#IOx;Bu&lViZbTn|#3IsI^gtw|AT*^9bi;?-C&Pp+X&5TVz^DHzP;
z9(_x!dQF8nrxM$#gRj?T#4@X6yRR`juFW^oFGg!7XXlx?4Tjm+_XI}(l@^>|aeboY
zQl|-1%kt8%m^We57XA_ptzBo&Y%UhJPCdRRCT!Afy2nts8q2TskIsq*h!Gxp%^swG
zU}Udbk1Fc0u#-S=oXWbZCSY+IZ|9a7EWcl<^c^*3x%#<RF6o<fSbp~l%<gl1_Z>>A
zpS&%MFN3K^S4*eE4-bgJcQN$_vrS7D$O5s2Tnwq&^i7H0$*Y&Bu5gq^%{;E9#6i@p
zmh+LBN>FNGts*2&jLo-6`yef*(A}QkE6VGrq0E`Pmx;aLHE<Hi!YTON8A@HTOnzV^
zE{ZsSO^0-*{vdZDv=_|N3|CG`bIr{dZ&#ns8>v|e&KI=h>Q)pBlJ)e{8afMUKXZ0H
z+|N0cisK*o?6ogjU;g?_XKvTyN8Ud~=1?atYf~!FU#wdcTgNxq8^Wu%h!T0V8Jru%
z>LpQK+j_*TF%P+RO<gQSX9Tj9ZO%q~A#DEu-lH7}lBH+pMy3nKNpZHuEaDVwnG_gL
z!~KBYMIi?y)MHP?qiXo-JFMI(m|R`Wh&Wj4lm7r_#qDub<}5s#ie2`iW{+8p+o776
zcC(I5)j$Wh>^!_T{{UlwBBd!h_fo4Z>#|l0df$n;guHX+Qnu5zj<K5!Ldsq0vl38j
zy`GqO>n8nqhfaK6S3D;HY5JP?Ic1Ng<u(0!SxOPN<*mW~k0|hHh?j;yy*%6kC}f-b
z5|T=^NOiZ?<L&w_!#gt!f~vjzCp`ZEu`KHF>r{CD;g66U0gtD+CO1l_J!J1t`pyGo
zynj24lnV?|Zr>b6U^_ut!5f1n)UiI~hppIBpJFpGTSxoE)dJ4tu$E#l=DFt+O9Jvn
zLz=yl6=Nvr^B57X=6s5ou8CVo^9q0qEre37b&l5CSz2L6<t;+RO!0+6b}nZZXL^pC
zIQzwNj)LBP?1Irw!`FFpS#V!%pRSoli}P1&`GL$^b+eWw@lLOPrbvZxxA=ukblwAB
lg_n1Sdmo6XsvMYpU_1cE<$_i@lLfb}JdwRz3^%`N|JiMww0r;n

diff --git a/bookwyrm/static/images/small.jpg b/bookwyrm/static/images/small.jpg
deleted file mode 100644
index 158163b612fe56638215bd51ac849401333946d1..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 1122
zcmex=<NpH&0WUXCHwH#V1_nkTWcYuZ!I^=Bjg6g+m4ls~os*M;i${c)hnt&6Qb?Fz
zL{>^(PF6}rMnOeST|r4lSw=>~TvNxu(8R<<Uft5x!pKI?*u)5A2qPyaCl5D|1TU|I
zk)n*E5y{~H0R}-11}g?-W=16jCP7AKLB{__803NOWMu>c1}I=;VrF4wW9Q)H;sz?%
zD!{<R$jr>d!pzFb!U9xX3zTPI5o8roG<0MW4oqZMDikqloVbuf*=gfJ(V&YTRE(2~
znmD<{#3dx9RMpfqG__1j&CD$<t(;w4-P}Dqy@EqR!@?sXqmoln)6z3Cvx-Yf%gQS%
ztD0L{+uA!iyCzMZGIiSY88c@sTD)ZGvgIpQuG+MD%hqk%ckJAC=<t!F$Bv&kdFs;T
zD_5^wzj5={!$*&wJbm{3#miS8KYjl4_1pI!KYxMz#mK-6@fMJTcnr;7f<S*Uv9K_+
zu!H=?$W#u*%z`YeiiT`Lj)Clng~CckjT|CQ6Blkg$f;}`^g%SK=pvVxipfLOk07ss
zeMX$en#l4Q++zrT-D2QjW&}navmk>#!?UM3Cr{YcufP1~-`11a_doud|Mg`3`VIdX
z?518nnQ!(laq|26g8vNFfBrMf)1LH^%P32*Er@^89>M;o9`3#Q6HlAIn|OQcqR3_c
z88(^Bd17Vv@T+oH*XK9SY>wo9l3wDt$=z;$YtW*--4b^+7Ih`rEzxE9we<GM<#+GI
z=se;#S$M0n&uo&zEvreE=c7K}?`qVuNza<>aY6mY)$$X@J;vW;H^<JM`uEzxM|<5K
z-E#BxzILZY-z9#!<X083^Ag|JTm9%=?Y{EIv5Z@s%D<WZc5XVX7ud=B<DE=+e^dOv
zpR%EK!d%h3w#sF(QRa#rp@MTZ94o$ly-V1CLutp{FjYN=#Le#t=gg~=eB76%q24D@
zv%6D?$1>*0{QTWMJEvLBJ~OF&YQJ3j&+xS?&o2z=F_b*VD<YHf*y8Ohtxj9+H)1c%
zzI3c+p5Sco{@?eXf3+um<S{(Fs-|<xo~(D3rwz|}o>VuzWAO7ogZ$swFaOpb+p%9b
z`FEh<e+HZ2U%&Z3zr3`^X7BdsxZ|$=EyoshY2UFt)TOb2-_O4O<9~*m`}RM-ytOb+
z?LWhWRrS|J{_T7I=hxSDFBmt>;d%TkT=>xewoMEYe=q%KFpd+8|5HElV)#SDMIQ6*
lQtriB)wFK@8RW5Ieaqx3VB}@WpPT7gz1$+uRfO^XO#mVx(K-MC

diff --git a/bookwyrm/tests/views/test_user.py b/bookwyrm/tests/views/test_user.py
index 0e2ad904..6a51aeda 100644
--- a/bookwyrm/tests/views/test_user.py
+++ b/bookwyrm/tests/views/test_user.py
@@ -1,5 +1,9 @@
 ''' test for app action functionality '''
+import pathlib
 from unittest.mock import patch
+from PIL import Image
+
+from django.core.files.base import ContentFile
 from django.template.response import TemplateResponse
 from django.test import TestCase
 from django.test.client import RequestFactory
@@ -97,3 +101,15 @@ class UserViews(TestCase):
         with patch('bookwyrm.broadcast.broadcast_task.delay'):
             view(request)
         self.assertEqual(self.local_user.name, 'New Name')
+
+
+    def test_crop_avatar(self):
+        ''' reduce that image size '''
+        image_file = pathlib.Path(__file__).parent.joinpath(
+            '../../static/images/no_cover.jpg')
+        image = Image.open(image_file)
+
+        result = views.user.crop_avatar(image)
+        self.assertIsInstance(result, ContentFile)
+        image_result = Image.open(result)
+        self.assertEqual(image_result.size, (120, 120))
diff --git a/bookwyrm/views/user.py b/bookwyrm/views/user.py
index 6f7873d5..b65fb48f 100644
--- a/bookwyrm/views/user.py
+++ b/bookwyrm/views/user.py
@@ -159,30 +159,35 @@ class EditUser(View):
         if 'avatar' in form.files:
             # crop and resize avatar upload
             image = Image.open(form.files['avatar'])
-            target_size = 120
-            width, height = image.size
-            thumbnail_scale = height / (width / target_size) if height > width \
-                else width / (height / target_size)
-            image.thumbnail([thumbnail_scale, thumbnail_scale])
-            width, height = image.size
-
-            width_diff = width - target_size
-            height_diff = height - target_size
-            cropped = image.crop((
-                int(width_diff / 2),
-                int(height_diff / 2),
-                int(width - (width_diff / 2)),
-                int(height - (height_diff / 2))
-            ))
-            output = BytesIO()
-            cropped.save(output, format=image.format)
-            ContentFile(output.getvalue())
+            image = crop_avatar(image)
 
             # set the name to a hash
             extension = form.files['avatar'].name.split('.')[-1]
             filename = '%s.%s' % (uuid4(), extension)
-            user.avatar.save(filename, ContentFile(output.getvalue()))
+            user.avatar.save(filename, image)
         user.save()
 
         broadcast(user, user.to_update_activity(user))
         return redirect(user.local_path)
+
+
+def crop_avatar(image):
+    ''' reduce the size and make an avatar square '''
+    target_size = 120
+    width, height = image.size
+    thumbnail_scale = height / (width / target_size) if height > width \
+        else width / (height / target_size)
+    image.thumbnail([thumbnail_scale, thumbnail_scale])
+    width, height = image.size
+
+    width_diff = width - target_size
+    height_diff = height - target_size
+    cropped = image.crop((
+        int(width_diff / 2),
+        int(height_diff / 2),
+        int(width - (width_diff / 2)),
+        int(height - (height_diff / 2))
+    ))
+    output = BytesIO()
+    cropped.save(output, format=image.format)
+    return ContentFile(output.getvalue())

From 681f5482fdf50dbb1d05b8a37b4f9649fd4e4ccc Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 26 Jan 2021 08:07:38 -0800
Subject: [PATCH 011/280] Don't allow blocked users to access user page

---
 bookwyrm/views/user.py | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/bookwyrm/views/user.py b/bookwyrm/views/user.py
index 6f7873d5..2a4211b8 100644
--- a/bookwyrm/views/user.py
+++ b/bookwyrm/views/user.py
@@ -31,6 +31,11 @@ class User(View):
         except models.User.DoesNotExist:
             return HttpResponseNotFound()
 
+        # make sure we're not blocked
+        if request.user.is_authenticated:
+            if request.user in user.blocks.all():
+                return HttpResponseNotFound()
+
         if is_api_request(request):
             # we have a json request
             return ActivitypubResponse(user.to_activity())

From 3f011445e29b63dd1aaf40c1455096caf80b99e1 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 26 Jan 2021 08:31:55 -0800
Subject: [PATCH 012/280] Hide user pages to blocked users

---
 bookwyrm/tests/views/test_user.py | 39 +++++++++++++++++++++++++++++++
 bookwyrm/views/helpers.py         |  6 +++++
 bookwyrm/views/user.py            | 15 ++++++++----
 3 files changed, 56 insertions(+), 4 deletions(-)

diff --git a/bookwyrm/tests/views/test_user.py b/bookwyrm/tests/views/test_user.py
index 0e2ad904..95c4db0a 100644
--- a/bookwyrm/tests/views/test_user.py
+++ b/bookwyrm/tests/views/test_user.py
@@ -16,6 +16,9 @@ class UserViews(TestCase):
         self.local_user = models.User.objects.create_user(
             'mouse@local.com', 'mouse@mouse.mouse', 'password',
             local=True, localname='mouse')
+        self.rat = models.User.objects.create_user(
+            'rat@local.com', 'rat@rat.rat', 'password',
+            local=True, localname='rat')
 
 
     def test_user_page(self):
@@ -37,6 +40,18 @@ class UserViews(TestCase):
         self.assertEqual(result.status_code, 200)
 
 
+    def test_user_page_blocked(self):
+        ''' there are so many views, this just makes sure it LOADS '''
+        view = views.User.as_view()
+        request = self.factory.get('')
+        request.user = self.local_user
+        self.rat.blocks.add(self.local_user)
+        with patch('bookwyrm.views.user.is_api_request') as is_api:
+            is_api.return_value = False
+            result = view(request, 'rat')
+        self.assertEqual(result.status_code, 404)
+
+
     def test_followers_page(self):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.Followers.as_view()
@@ -56,6 +71,18 @@ class UserViews(TestCase):
         self.assertEqual(result.status_code, 200)
 
 
+    def test_followers_page_blocked(self):
+        ''' there are so many views, this just makes sure it LOADS '''
+        view = views.Followers.as_view()
+        request = self.factory.get('')
+        request.user = self.local_user
+        self.rat.blocks.add(self.local_user)
+        with patch('bookwyrm.views.user.is_api_request') as is_api:
+            is_api.return_value = False
+            result = view(request, 'rat')
+        self.assertEqual(result.status_code, 404)
+
+
     def test_following_page(self):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.Following.as_view()
@@ -75,6 +102,18 @@ class UserViews(TestCase):
         self.assertEqual(result.status_code, 200)
 
 
+    def test_following_page_blocked(self):
+        ''' there are so many views, this just makes sure it LOADS '''
+        view = views.Following.as_view()
+        request = self.factory.get('')
+        request.user = self.local_user
+        self.rat.blocks.add(self.local_user)
+        with patch('bookwyrm.views.user.is_api_request') as is_api:
+            is_api.return_value = False
+            result = view(request, 'rat')
+        self.assertEqual(result.status_code, 404)
+
+
     def test_edit_profile_page(self):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.EditUser.as_view()
diff --git a/bookwyrm/views/helpers.py b/bookwyrm/views/helpers.py
index 5872b2de..6bda81c8 100644
--- a/bookwyrm/views/helpers.py
+++ b/bookwyrm/views/helpers.py
@@ -190,3 +190,9 @@ def handle_reading_status(user, shelf, book, privacy):
     status.save()
 
     broadcast(user, status.to_create_activity(user))
+
+def is_blocked(viewer, user):
+    ''' is this viewer blocked by the user? '''
+    if viewer.is_authenticated and viewer in user.blocks.all():
+        return True
+    return False
diff --git a/bookwyrm/views/user.py b/bookwyrm/views/user.py
index 2a4211b8..acf19c44 100644
--- a/bookwyrm/views/user.py
+++ b/bookwyrm/views/user.py
@@ -18,7 +18,7 @@ from bookwyrm.activitypub import ActivitypubResponse
 from bookwyrm.broadcast import broadcast
 from bookwyrm.settings import PAGE_LENGTH
 from .helpers import get_activity_feed, get_user_from_username, is_api_request
-from .helpers import object_visible_to_user
+from .helpers import is_blocked, object_visible_to_user
 
 
 # pylint: disable= no-self-use
@@ -32,9 +32,8 @@ class User(View):
             return HttpResponseNotFound()
 
         # make sure we're not blocked
-        if request.user.is_authenticated:
-            if request.user in user.blocks.all():
-                return HttpResponseNotFound()
+        if is_blocked(request.user, user):
+            return HttpResponseNotFound()
 
         if is_api_request(request):
             # we have a json request
@@ -102,6 +101,10 @@ class Followers(View):
         except models.User.DoesNotExist:
             return HttpResponseNotFound()
 
+        # make sure we're not blocked
+        if is_blocked(request.user, user):
+            return HttpResponseNotFound()
+
         if is_api_request(request):
             return ActivitypubResponse(
                 user.to_followers_activity(**request.GET))
@@ -123,6 +126,10 @@ class Following(View):
         except models.User.DoesNotExist:
             return HttpResponseNotFound()
 
+        # make sure we're not blocked
+        if is_blocked(request.user, user):
+            return HttpResponseNotFound()
+
         if is_api_request(request):
             return ActivitypubResponse(
                 user.to_following_activity(**request.GET))

From acfc865d4ef1b7d65e5bb2f8b36f7c1056e22055 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 26 Jan 2021 09:56:01 -0800
Subject: [PATCH 013/280] Adds blocked users view

also refactors the setting view
---
 bookwyrm/templates/blocks.html                |  21 +++
 bookwyrm/templates/change_password.html       |  19 +++
 bookwyrm/templates/edit_user.html             | 112 ++++++---------
 bookwyrm/templates/preferences_layout.html    |  31 ++++
 bookwyrm/templates/snippets/block_button.html |   4 +-
 bookwyrm/tests/views/test_authentication.py   | 103 -------------
 bookwyrm/tests/views/test_password.py         | 136 ++++++++++++++++++
 bookwyrm/urls.py                              |   3 +-
 bookwyrm/views/block.py                       |   5 +-
 bookwyrm/views/password.py                    |   8 ++
 bookwyrm/views/user.py                        |   9 +-
 11 files changed, 273 insertions(+), 178 deletions(-)
 create mode 100644 bookwyrm/templates/blocks.html
 create mode 100644 bookwyrm/templates/change_password.html
 create mode 100644 bookwyrm/templates/preferences_layout.html
 create mode 100644 bookwyrm/tests/views/test_password.py

diff --git a/bookwyrm/templates/blocks.html b/bookwyrm/templates/blocks.html
new file mode 100644
index 00000000..0e725e4b
--- /dev/null
+++ b/bookwyrm/templates/blocks.html
@@ -0,0 +1,21 @@
+{% extends 'preferences_layout.html' %}
+
+{% block header %}
+Blocked Users
+{% endblock %}
+
+{% block panel %}
+<ul>
+{% for user in request.user.blocks.all %}
+    <li class="is-flex">
+        <p>
+            {% include 'snippets/avatar.html' with user=user %} {% include 'snippets/username.html' with user=user %}
+        </p>
+        <p class="mr-2">
+            {% include 'snippets/block_button.html' with user=user %}
+        </p>
+    </li>
+{% endfor %}    
+</ul>
+{% endblock %}
+
diff --git a/bookwyrm/templates/change_password.html b/bookwyrm/templates/change_password.html
new file mode 100644
index 00000000..c373dfc8
--- /dev/null
+++ b/bookwyrm/templates/change_password.html
@@ -0,0 +1,19 @@
+{% extends 'preferences_layout.html' %}
+{% block header %}
+Change Password
+{% endblock %}
+
+{% block panel %}
+<form name="edit-profile" action="/change-password/" method="post" enctype="multipart/form-data">
+    {% csrf_token %}
+    <div class="block">
+        <label class="label" for="id_password">New password:</label>
+        <input type="password" name="password" maxlength="128" class="input" required="" id="id_password">
+    </div>
+    <div class="block">
+        <label class="label" for="id_confirm_password">Confirm password:</label>
+        <input type="password" name="confirm-password" maxlength="128" class="input" required="" id="id_confirm_password">
+    </div>
+    <button class="button is-primary" type="submit">Change password</button>
+</form>
+{% endblock %}
diff --git a/bookwyrm/templates/edit_user.html b/bookwyrm/templates/edit_user.html
index 413f2cae..ee9ddb22 100644
--- a/bookwyrm/templates/edit_user.html
+++ b/bookwyrm/templates/edit_user.html
@@ -1,66 +1,48 @@
-{% extends 'layout.html' %}
-{% block content %}
-<div class="block columns">
-    <div class="column is-half">
-        <h1 class="title">Profile</h1>
-        {% if form.non_field_errors %}
-        <p class="notification is-danger">{{ form.non_field_errors }}</p>
-        {% endif %}
-        <form name="edit-profile" action="/edit-profile/" method="post" enctype="multipart/form-data">
-            {% csrf_token %}
-            <div class="block">
-                <label class="label" for="id_avatar">Avatar:</label>
-                {{ form.avatar }}
-                {% for error in form.avatar.errors %}
-                <p class="help is-danger">{{ error | escape }}</p>
-                {% endfor %}
-            </div>
-            <div class="block">
-                <label class="label" for="id_name">Display name:</label>
-                {{ form.name }}
-                {% for error in form.name.errors %}
-                <p class="help is-danger">{{ error | escape }}</p>
-                {% endfor %}
-            </div>
-            <div class="block">
-                <label class="label" for="id_summary">Summary:</label>
-                {{ form.summary }}
-                {% for error in form.summary.errors %}
-                <p class="help is-danger">{{ error | escape }}</p>
-                {% endfor %}
-            </div>
-            <div class="block">
-                <label class="label" for="id_email">Email address:</label>
-                {{ form.email }}
-                {% for error in form.email.errors %}
-                <p class="help is-danger">{{ error | escape }}</p>
-                {% endfor %}
-            </div>
-            <div class="block">
-                <label class="checkbox label" for="id_manually_approves_followers">
-                    Manually approve followers:
-                    {{ form.manually_approves_followers }}
-                </label>
-            </div>
-            <button class="button is-primary" type="submit">Save</button>
-        </form>
-    </div>
-    <div class="column is-half">
-        <div class="block">
-            <h2 class="title">Change password</h2>
-            <form name="edit-profile" action="/change-password/" method="post" enctype="multipart/form-data">
-                {% csrf_token %}
-                <div class="block">
-                    <label class="label" for="id_password">New password:</label>
-                    <input type="password" name="password" maxlength="128" class="input" required="" id="id_password">
-                </div>
-                <div class="block">
-                    <label class="label" for="id_confirm_password">Confirm password:</label>
-                    <input type="password" name="confirm-password" maxlength="128" class="input" required="" id="id_confirm_password">
-                </div>
-                <button class="button is-primary" type="submit">Change password</button>
-            </form>
-        </div>
-    </div>
-</div>
+{% extends 'preferences_layout.html' %}
+{% block header %}
+Edit Profile
+{% endblock %}
+
+{% block panel %}
+{% if form.non_field_errors %}
+<p class="notification is-danger">{{ form.non_field_errors }}</p>
+{% endif %}
+<form name="edit-profile" action="/edit-profile/" method="post" enctype="multipart/form-data">
+    {% csrf_token %}
+    <div class="block">
+        <label class="label" for="id_avatar">Avatar:</label>
+        {{ form.avatar }}
+        {% for error in form.avatar.errors %}
+        <p class="help is-danger">{{ error | escape }}</p>
+        {% endfor %}
+    </div>
+    <div class="block">
+        <label class="label" for="id_name">Display name:</label>
+        {{ form.name }}
+        {% for error in form.name.errors %}
+        <p class="help is-danger">{{ error | escape }}</p>
+        {% endfor %}
+    </div>
+    <div class="block">
+        <label class="label" for="id_summary">Summary:</label>
+        {{ form.summary }}
+        {% for error in form.summary.errors %}
+        <p class="help is-danger">{{ error | escape }}</p>
+        {% endfor %}
+    </div>
+    <div class="block">
+        <label class="label" for="id_email">Email address:</label>
+        {{ form.email }}
+        {% for error in form.email.errors %}
+        <p class="help is-danger">{{ error | escape }}</p>
+        {% endfor %}
+    </div>
+    <div class="block">
+        <label class="checkbox label" for="id_manually_approves_followers">
+            Manually approve followers:
+            {{ form.manually_approves_followers }}
+        </label>
+    </div>
+    <button class="button is-primary" type="submit">Save</button>
+</form>
 {% endblock %}
diff --git a/bookwyrm/templates/preferences_layout.html b/bookwyrm/templates/preferences_layout.html
new file mode 100644
index 00000000..de2fe0df
--- /dev/null
+++ b/bookwyrm/templates/preferences_layout.html
@@ -0,0 +1,31 @@
+{% extends 'layout.html' %}
+{% block content %}
+
+<header class="block column is-offset-one-quarter pl-1">
+    <h1 class="title">{% block header %}{% endblock %}</h1>
+</header>
+
+<div class="block columns">
+    <nav class="menu column is-one-quarter">
+        <h2 class="menu-label">Account</h2>
+        <ul class="menu-list">
+            <li>
+                <a href="/edit-profile"{% if '/edit-profile' in request.path %} class="is-active" aria-selected="true"{% endif %}>Profile</a>
+            </li>
+            <li>
+                <a href="/change-password"{% if '/change-password' in request.path %} class="is-active" aria-selected="true"{% endif %}>Change password</a>
+            </li>
+        </ul>
+        <h2 class="menu-label">Relationships</h2>
+        <ul class="menu-list">
+            <li>
+                <a href="/block"{% if '/block' in request.path %} class="is-active" aria-selected="true"{% endif %}>Blocked users</a>
+            </li>
+        </ul>
+    </nav>
+    <div class="column content">
+        {% block panel %}{% endblock %}
+    </div>
+</div>
+
+{% endblock %}
diff --git a/bookwyrm/templates/snippets/block_button.html b/bookwyrm/templates/snippets/block_button.html
index ed9bb551..9e49254d 100644
--- a/bookwyrm/templates/snippets/block_button.html
+++ b/bookwyrm/templates/snippets/block_button.html
@@ -1,11 +1,11 @@
 {% if not user in request.user.blocks.all %}
 <form name="blocks" method="post" action="/block/{{ user.id }}">
     {% csrf_token %}
-    <button class="button is-danger is-light is-small is-fullwidth" type="submit">Block</button>
+    <button class="button is-danger is-light is-small {{ class }}" type="submit">Block</button>
 </form>
 {% else %}
 <form name="unblocks" method="post" action="/unblock/{{ user.id }}">
     {% csrf_token %}
-    <button class="button is-small is-fullwidth" type="submit">Un-block</button>
+    <button class="button is-small {{ class }}" type="submit">Un-block</button>
 </form>
 {% endif %}
diff --git a/bookwyrm/tests/views/test_authentication.py b/bookwyrm/tests/views/test_authentication.py
index b0d09983..65577208 100644
--- a/bookwyrm/tests/views/test_authentication.py
+++ b/bookwyrm/tests/views/test_authentication.py
@@ -42,83 +42,6 @@ class AuthenticationViews(TestCase):
         self.assertEqual(result.status_code, 302)
 
 
-    def test_password_reset_request(self):
-        ''' there are so many views, this just makes sure it LOADS '''
-        view = views.PasswordResetRequest.as_view()
-        request = self.factory.get('')
-        request.user = self.local_user
-
-        result = view(request)
-        self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'password_reset_request.html')
-        self.assertEqual(result.status_code, 200)
-
-
-    def test_password_reset_request_post(self):
-        ''' send 'em an email '''
-        request = self.factory.post('', {'email': 'aa@bb.ccc'})
-        view = views.PasswordResetRequest.as_view()
-        resp = view(request)
-        self.assertEqual(resp.status_code, 302)
-
-        request = self.factory.post('', {'email': 'mouse@mouse.com'})
-        with patch('bookwyrm.emailing.send_email.delay'):
-            resp = view(request)
-        self.assertEqual(resp.template_name, 'password_reset_request.html')
-
-        self.assertEqual(
-            models.PasswordReset.objects.get().user, self.local_user)
-
-    def test_password_reset(self):
-        ''' there are so many views, this just makes sure it LOADS '''
-        view = views.PasswordReset.as_view()
-        code = models.PasswordReset.objects.create(user=self.local_user)
-        request = self.factory.get('')
-        request.user = self.anonymous_user
-        result = view(request, code.code)
-        self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'password_reset.html')
-        self.assertEqual(result.status_code, 200)
-
-
-    def test_password_reset_post(self):
-        ''' reset from code '''
-        view = views.PasswordReset.as_view()
-        code = models.PasswordReset.objects.create(user=self.local_user)
-        request = self.factory.post('', {
-            'password': 'hi',
-            'confirm-password': 'hi'
-        })
-        with patch('bookwyrm.views.password.login'):
-            resp = view(request, code.code)
-        self.assertEqual(resp.status_code, 302)
-        self.assertFalse(models.PasswordReset.objects.exists())
-
-    def test_password_reset_wrong_code(self):
-        ''' reset from code '''
-        view = views.PasswordReset.as_view()
-        models.PasswordReset.objects.create(user=self.local_user)
-        request = self.factory.post('', {
-            'password': 'hi',
-            'confirm-password': 'hi'
-        })
-        resp = view(request, 'jhgdkfjgdf')
-        self.assertEqual(resp.template_name, 'password_reset.html')
-        self.assertTrue(models.PasswordReset.objects.exists())
-
-    def test_password_reset_mismatch(self):
-        ''' reset from code '''
-        view = views.PasswordReset.as_view()
-        code = models.PasswordReset.objects.create(user=self.local_user)
-        request = self.factory.post('', {
-            'password': 'hi',
-            'confirm-password': 'hihi'
-        })
-        resp = view(request, code.code)
-        self.assertEqual(resp.template_name, 'password_reset.html')
-        self.assertTrue(models.PasswordReset.objects.exists())
-
-
     def test_register(self):
         ''' create a user '''
         view = views.Register.as_view()
@@ -274,29 +197,3 @@ class AuthenticationViews(TestCase):
         with self.assertRaises(Http404):
             response = view(request)
         self.assertEqual(models.User.objects.count(), 2)
-
-
-    def test_password_change(self):
-        ''' change password '''
-        view = views.ChangePassword.as_view()
-        password_hash = self.local_user.password
-        request = self.factory.post('', {
-            'password': 'hi',
-            'confirm-password': 'hi'
-        })
-        request.user = self.local_user
-        with patch('bookwyrm.views.password.login'):
-            view(request)
-        self.assertNotEqual(self.local_user.password, password_hash)
-
-    def test_password_change_mismatch(self):
-        ''' change password '''
-        view = views.ChangePassword.as_view()
-        password_hash = self.local_user.password
-        request = self.factory.post('', {
-            'password': 'hi',
-            'confirm-password': 'hihi'
-        })
-        request.user = self.local_user
-        view(request)
-        self.assertEqual(self.local_user.password, password_hash)
diff --git a/bookwyrm/tests/views/test_password.py b/bookwyrm/tests/views/test_password.py
new file mode 100644
index 00000000..0f9c8988
--- /dev/null
+++ b/bookwyrm/tests/views/test_password.py
@@ -0,0 +1,136 @@
+''' test for app action functionality '''
+from unittest.mock import patch
+
+from django.contrib.auth.models import AnonymousUser
+from django.template.response import TemplateResponse
+from django.test import TestCase
+from django.test.client import RequestFactory
+
+from bookwyrm import models, views
+
+
+class PasswordViews(TestCase):
+    ''' view user and edit profile '''
+    def setUp(self):
+        ''' we need basic test data and mocks '''
+        self.factory = RequestFactory()
+        self.local_user = models.User.objects.create_user(
+            'mouse@local.com', 'mouse@mouse.com', 'password',
+            local=True, localname='mouse')
+        self.anonymous_user = AnonymousUser
+        self.anonymous_user.is_authenticated = False
+
+
+    def test_password_reset_request(self):
+        ''' there are so many views, this just makes sure it LOADS '''
+        view = views.PasswordResetRequest.as_view()
+        request = self.factory.get('')
+        request.user = self.local_user
+
+        result = view(request)
+        self.assertIsInstance(result, TemplateResponse)
+        self.assertEqual(result.template_name, 'password_reset_request.html')
+        self.assertEqual(result.status_code, 200)
+
+
+    def test_password_reset_request_post(self):
+        ''' send 'em an email '''
+        request = self.factory.post('', {'email': 'aa@bb.ccc'})
+        view = views.PasswordResetRequest.as_view()
+        resp = view(request)
+        self.assertEqual(resp.status_code, 302)
+
+        request = self.factory.post('', {'email': 'mouse@mouse.com'})
+        with patch('bookwyrm.emailing.send_email.delay'):
+            resp = view(request)
+        self.assertEqual(resp.template_name, 'password_reset_request.html')
+
+        self.assertEqual(
+            models.PasswordReset.objects.get().user, self.local_user)
+
+    def test_password_reset(self):
+        ''' there are so many views, this just makes sure it LOADS '''
+        view = views.PasswordReset.as_view()
+        code = models.PasswordReset.objects.create(user=self.local_user)
+        request = self.factory.get('')
+        request.user = self.anonymous_user
+        result = view(request, code.code)
+        self.assertIsInstance(result, TemplateResponse)
+        self.assertEqual(result.template_name, 'password_reset.html')
+        self.assertEqual(result.status_code, 200)
+
+
+    def test_password_reset_post(self):
+        ''' reset from code '''
+        view = views.PasswordReset.as_view()
+        code = models.PasswordReset.objects.create(user=self.local_user)
+        request = self.factory.post('', {
+            'password': 'hi',
+            'confirm-password': 'hi'
+        })
+        with patch('bookwyrm.views.password.login'):
+            resp = view(request, code.code)
+        self.assertEqual(resp.status_code, 302)
+        self.assertFalse(models.PasswordReset.objects.exists())
+
+    def test_password_reset_wrong_code(self):
+        ''' reset from code '''
+        view = views.PasswordReset.as_view()
+        models.PasswordReset.objects.create(user=self.local_user)
+        request = self.factory.post('', {
+            'password': 'hi',
+            'confirm-password': 'hi'
+        })
+        resp = view(request, 'jhgdkfjgdf')
+        self.assertEqual(resp.template_name, 'password_reset.html')
+        self.assertTrue(models.PasswordReset.objects.exists())
+
+    def test_password_reset_mismatch(self):
+        ''' reset from code '''
+        view = views.PasswordReset.as_view()
+        code = models.PasswordReset.objects.create(user=self.local_user)
+        request = self.factory.post('', {
+            'password': 'hi',
+            'confirm-password': 'hihi'
+        })
+        resp = view(request, code.code)
+        self.assertEqual(resp.template_name, 'password_reset.html')
+        self.assertTrue(models.PasswordReset.objects.exists())
+
+
+    def test_password_change_get(self):
+        ''' there are so many views, this just makes sure it LOADS '''
+        view = views.ChangePassword.as_view()
+        request = self.factory.get('')
+        request.user = self.local_user
+
+        result = view(request)
+        self.assertIsInstance(result, TemplateResponse)
+        self.assertEqual(result.template_name, 'change_password.html')
+        self.assertEqual(result.status_code, 200)
+
+
+    def test_password_change(self):
+        ''' change password '''
+        view = views.ChangePassword.as_view()
+        password_hash = self.local_user.password
+        request = self.factory.post('', {
+            'password': 'hi',
+            'confirm-password': 'hi'
+        })
+        request.user = self.local_user
+        with patch('bookwyrm.views.password.login'):
+            view(request)
+        self.assertNotEqual(self.local_user.password, password_hash)
+
+    def test_password_change_mismatch(self):
+        ''' change password '''
+        view = views.ChangePassword.as_view()
+        password_hash = self.local_user.password
+        request = self.factory.post('', {
+            'password': 'hi',
+            'confirm-password': 'hihi'
+        })
+        request.user = self.local_user
+        view(request)
+        self.assertEqual(self.local_user.password, password_hash)
diff --git a/bookwyrm/urls.py b/bookwyrm/urls.py
index bfd57d0a..0569fd9c 100644
--- a/bookwyrm/urls.py
+++ b/bookwyrm/urls.py
@@ -47,7 +47,7 @@ urlpatterns = [
     re_path(r'^password-reset/?$', views.PasswordResetRequest.as_view()),
     re_path(r'^password-reset/(?P<code>[A-Za-z0-9]+)/?$',
             views.PasswordReset.as_view()),
-    re_path(r'^change-password/?$', views.ChangePassword),
+    re_path(r'^change-password/?$', views.ChangePassword.as_view()),
 
     # invites
     re_path(r'^invite/?$', views.ManageInvites.as_view()),
@@ -137,5 +137,6 @@ urlpatterns = [
     re_path(r'^accept-follow-request/?$', views.accept_follow_request),
     re_path(r'^delete-follow-request/?$', views.delete_follow_request),
 
+    re_path(r'^block/?$', views.Block.as_view()),
     re_path(r'^block/(?P<user_id>\d+)/?$', views.Block.as_view()),
 ] + static(settings.MEDIA_URL, document_root=settings.MEDIA_ROOT)
diff --git a/bookwyrm/views/block.py b/bookwyrm/views/block.py
index 36f64f73..6158f373 100644
--- a/bookwyrm/views/block.py
+++ b/bookwyrm/views/block.py
@@ -1,6 +1,7 @@
 ''' views for actions you can take in the application '''
 from django.contrib.auth.decorators import login_required
 from django.shortcuts import get_object_or_404, redirect
+from django.template.response import TemplateResponse
 from django.utils.decorators import method_decorator
 from django.views import View
 
@@ -13,6 +14,8 @@ class Block(View):
     ''' blocking users '''
     def get(self, request):
         ''' list of blocked users? '''
+        return TemplateResponse(
+            request, 'blocks.html', {'title': 'Blocked Users'})
 
     def post(self, request, user_id):
         ''' block a user '''
@@ -26,4 +29,4 @@ class Block(View):
                 privacy='direct',
                 direct_recipients=[to_block]
             )
-        return redirect('/blocks')
+        return redirect('/block')
diff --git a/bookwyrm/views/password.py b/bookwyrm/views/password.py
index 915659e3..06ddc1da 100644
--- a/bookwyrm/views/password.py
+++ b/bookwyrm/views/password.py
@@ -88,6 +88,14 @@ class PasswordReset(View):
 @method_decorator(login_required, name='dispatch')
 class ChangePassword(View):
     ''' change password as logged in user '''
+    def get(self, request):
+        ''' change password page '''
+        data = {
+            'title': 'Change Password',
+            'user': request.user,
+        }
+        return TemplateResponse(request, 'change_password.html', data)
+
     def post(self, request):
         ''' allow a user to change their password '''
         new_password = request.POST.get('password')
diff --git a/bookwyrm/views/user.py b/bookwyrm/views/user.py
index acf19c44..25515bb1 100644
--- a/bookwyrm/views/user.py
+++ b/bookwyrm/views/user.py
@@ -147,14 +147,11 @@ class Following(View):
 class EditUser(View):
     ''' edit user view '''
     def get(self, request):
-        ''' profile page for a user '''
-        user = request.user
-
-        form = forms.EditUserForm(instance=request.user)
+        ''' edit profile page for a user '''
         data = {
             'title': 'Edit profile',
-            'form': form,
-            'user': user,
+            'form': forms.EditUserForm(instance=request.user),
+            'user': request.user,
         }
         return TemplateResponse(request, 'edit_user.html', data)
 

From 22e4138555317bbcd16126c13795f6cd45a15a12 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 26 Jan 2021 13:00:36 -0800
Subject: [PATCH 014/280] unblock

---
 bookwyrm/incoming.py                          | 18 +++++++++++--
 .../templates/snippets/status_options.html    |  2 +-
 bookwyrm/templates/snippets/user_options.html |  2 +-
 bookwyrm/tests/test_incoming.py               | 17 ++++++++++++
 bookwyrm/urls.py                              |  1 +
 bookwyrm/views/__init__.py                    |  2 +-
 bookwyrm/views/block.py                       | 26 +++++++++++++++++++
 7 files changed, 63 insertions(+), 5 deletions(-)

diff --git a/bookwyrm/incoming.py b/bookwyrm/incoming.py
index 3581ed87..1e42d32a 100644
--- a/bookwyrm/incoming.py
+++ b/bookwyrm/incoming.py
@@ -3,7 +3,6 @@ import json
 from urllib.parse import urldefrag
 
 import django.db.utils
-from django.db.models import Q
 from django.http import HttpResponse
 from django.http import HttpResponseBadRequest, HttpResponseNotFound
 from django.views.decorators.csrf import csrf_exempt
@@ -64,6 +63,7 @@ def shared_inbox(request):
             'Follow': handle_unfollow,
             'Like': handle_unfavorite,
             'Announce': handle_unboost,
+            'Block': handle_unblock,
         },
         'Update': {
             'Person': handle_update_user,
@@ -185,10 +185,24 @@ def handle_follow_reject(activity):
 def handle_block(activity):
     ''' blocking a user '''
     # create "block" databse entry
-    block = activitypub.Block(**activity).to_model(models.UserBlocks)
+    activitypub.Block(**activity).to_model(models.UserBlocks)
     # the removing relationships is handled in post-save hook in model
 
 
+@app.task
+def handle_unblock(activity):
+    ''' undoing a block '''
+    try:
+        block_id = activity['object']['id']
+    except KeyError:
+        return
+    try:
+        block = models.UserBlocks.objects.get(remote_id=block_id)
+    except models.UserBlocks.DoesNotExist:
+        return
+    block.delete()
+
+
 @app.task
 def handle_create(activity):
     ''' someone did something, good on them '''
diff --git a/bookwyrm/templates/snippets/status_options.html b/bookwyrm/templates/snippets/status_options.html
index 2e2e5d35..b5887b1d 100644
--- a/bookwyrm/templates/snippets/status_options.html
+++ b/bookwyrm/templates/snippets/status_options.html
@@ -19,7 +19,7 @@
 </li>
 {% else %}
 <li role="menuitem">
-    {% include 'snippets/block_button.html' with user=status.user %}
+    {% include 'snippets/block_button.html' with user=status.user class="is-fullwidth" %}
 </li>
 {% endif %}
 {% endblock %}
diff --git a/bookwyrm/templates/snippets/user_options.html b/bookwyrm/templates/snippets/user_options.html
index 9515d912..2c163034 100644
--- a/bookwyrm/templates/snippets/user_options.html
+++ b/bookwyrm/templates/snippets/user_options.html
@@ -9,6 +9,6 @@
 
 {% block dropdown-list %}
 <li role="menuitem">
-    {% include 'snippets/block_button.html' with user=user %}
+    {% include 'snippets/block_button.html' with user=user class="is-fullwidth" %}
 </li>
 {% endblock %}
diff --git a/bookwyrm/tests/test_incoming.py b/bookwyrm/tests/test_incoming.py
index 024c8e25..1ee7c59e 100644
--- a/bookwyrm/tests/test_incoming.py
+++ b/bookwyrm/tests/test_incoming.py
@@ -566,3 +566,20 @@ class Incoming(TestCase):
 
         self.assertFalse(models.UserFollows.objects.exists())
         self.assertFalse(models.UserFollowRequest.objects.exists())
+
+    def test_handle_unblock(self):
+        ''' undoing a block '''
+        activity = {
+            "@context": "https://www.w3.org/ns/activitystreams",
+            "id": "https://friend.camp/users/tripofmice#blocks/1155/undo",
+            "type": "Undo",
+            "actor": "https://friend.camp/users/tripofmice",
+            "object": {
+                "id": "https://friend.camp/0a7d85f7-6359-4c03-8ab6-74e61a8fb678",
+                "type": "Block",
+                "actor": "https://friend.camp/users/tripofmice",
+            "object": "https://1b1a78582461.ngrok.io/user/mouse"
+            }
+        }
+
+        self.remote_user.blocks.add(self.local_user)
diff --git a/bookwyrm/urls.py b/bookwyrm/urls.py
index 0569fd9c..4f9a43ea 100644
--- a/bookwyrm/urls.py
+++ b/bookwyrm/urls.py
@@ -139,4 +139,5 @@ urlpatterns = [
 
     re_path(r'^block/?$', views.Block.as_view()),
     re_path(r'^block/(?P<user_id>\d+)/?$', views.Block.as_view()),
+    re_path(r'^unblock/(?P<user_id>\d+)/?$', views.unblock),
 ] + static(settings.MEDIA_URL, document_root=settings.MEDIA_ROOT)
diff --git a/bookwyrm/views/__init__.py b/bookwyrm/views/__init__.py
index 1521b268..e3ac29c8 100644
--- a/bookwyrm/views/__init__.py
+++ b/bookwyrm/views/__init__.py
@@ -1,7 +1,7 @@
 ''' make sure all our nice views are available '''
 from .authentication import Login, Register, Logout
 from .author import Author, EditAuthor
-from .block import Block
+from .block import Block, unblock
 from .books import Book, EditBook, Editions
 from .books import upload_cover, add_description, switch_edition, resolve_book
 from .direct_message import DirectMessage
diff --git a/bookwyrm/views/block.py b/bookwyrm/views/block.py
index 6158f373..fb95479a 100644
--- a/bookwyrm/views/block.py
+++ b/bookwyrm/views/block.py
@@ -1,9 +1,11 @@
 ''' views for actions you can take in the application '''
 from django.contrib.auth.decorators import login_required
+from django.http import HttpResponseNotFound
 from django.shortcuts import get_object_or_404, redirect
 from django.template.response import TemplateResponse
 from django.utils.decorators import method_decorator
 from django.views import View
+from django.views.decorators.http import require_POST
 
 from bookwyrm import models
 from bookwyrm.broadcast import broadcast
@@ -30,3 +32,27 @@ class Block(View):
                 direct_recipients=[to_block]
             )
         return redirect('/block')
+
+
+@require_POST
+@login_required
+def unblock(request, user_id):
+    ''' undo a block '''
+    to_unblock = get_object_or_404(models.User, id=user_id)
+    try:
+        block = models.UserBlocks.objects.get(
+            user_subject=request.user,
+            user_object=to_unblock,
+        )
+    except models.UserBlocks.DoesNotExist:
+        return HttpResponseNotFound()
+
+    if not to_unblock.local:
+        broadcast(
+            request.user,
+            block.to_undo_activity(request.user),
+            privacy='direct',
+            direct_recipients=[to_unblock]
+        )
+    block.delete()
+    return redirect('/block')

From 369b24f9ec8da77c8c7c1e0c7f211093c5f564b8 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 26 Jan 2021 13:02:04 -0800
Subject: [PATCH 015/280] null state for block page

---
 bookwyrm/templates/blocks.html | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/templates/blocks.html b/bookwyrm/templates/blocks.html
index 0e725e4b..1df49816 100644
--- a/bookwyrm/templates/blocks.html
+++ b/bookwyrm/templates/blocks.html
@@ -5,6 +5,9 @@ Blocked Users
 {% endblock %}
 
 {% block panel %}
+{% if not request.user.blocks.exists %}
+<p>No users currently blocked.</p>
+{% else %}
 <ul>
 {% for user in request.user.blocks.all %}
     <li class="is-flex">
@@ -15,7 +18,7 @@ Blocked Users
             {% include 'snippets/block_button.html' with user=user %}
         </p>
     </li>
-{% endfor %}    
+{% endfor %}
 </ul>
+{% endif %}
 {% endblock %}
-

From 36486ca731f938ac6de68c804a49e6d4a0090946 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 26 Jan 2021 13:02:14 -0800
Subject: [PATCH 016/280] block/unblock view tests

---
 bookwyrm/tests/views/test_block.py | 68 ++++++++++++++++++++++++++++++
 1 file changed, 68 insertions(+)
 create mode 100644 bookwyrm/tests/views/test_block.py

diff --git a/bookwyrm/tests/views/test_block.py b/bookwyrm/tests/views/test_block.py
new file mode 100644
index 00000000..fa5254d1
--- /dev/null
+++ b/bookwyrm/tests/views/test_block.py
@@ -0,0 +1,68 @@
+''' test for app action functionality '''
+from unittest.mock import patch
+from django.template.response import TemplateResponse
+from django.test import TestCase
+from django.test.client import RequestFactory
+
+from bookwyrm import models, views
+
+
+class BlockViews(TestCase):
+    ''' view user and edit profile '''
+    def setUp(self):
+        ''' we need basic test data and mocks '''
+        self.factory = RequestFactory()
+        self.local_user = models.User.objects.create_user(
+            'mouse@local.com', 'mouse@mouse.mouse', 'password',
+            local=True, localname='mouse')
+        with patch('bookwyrm.models.user.set_remote_server.delay'):
+            self.remote_user = models.User.objects.create_user(
+                'rat', 'rat@rat.com', 'ratword',
+                local=False,
+                remote_id='https://example.com/users/rat',
+                inbox='https://example.com/users/rat/inbox',
+                outbox='https://example.com/users/rat/outbox',
+            )
+
+
+    def test_block_get(self):
+        ''' there are so many views, this just makes sure it LOADS '''
+        view = views.Block.as_view()
+        request = self.factory.get('')
+        request.user = self.local_user
+        result = view(request)
+        self.assertIsInstance(result, TemplateResponse)
+        self.assertEqual(result.template_name, 'blocks.html')
+        self.assertEqual(result.status_code, 200)
+
+    def test_block_post(self):
+        ''' create a "block" database entry from an activity '''
+        view = views.Block.as_view()
+        self.local_user.followers.add(self.remote_user)
+        models.UserFollowRequest.objects.create(
+            user_subject=self.local_user,
+            user_object=self.remote_user)
+        self.assertTrue(models.UserFollows.objects.exists())
+        self.assertTrue(models.UserFollowRequest.objects.exists())
+
+        request = self.factory.post('')
+        request.user = self.local_user
+        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+            view(request, self.remote_user.id)
+        block = models.UserBlocks.objects.get()
+        self.assertEqual(block.user_subject, self.local_user)
+        self.assertEqual(block.user_object, self.remote_user)
+
+        self.assertFalse(models.UserFollows.objects.exists())
+        self.assertFalse(models.UserFollowRequest.objects.exists())
+
+    def test_unblock(self):
+        ''' undo a block '''
+        self.local_user.blocks.add(self.remote_user)
+        request = self.factory.post('')
+        request.user = self.local_user
+
+        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+            views.block.unblock(request, self.remote_user.id)
+
+        self.assertFalse(models.UserBlocks.objects.exists())

From e2935b6364ff8359d1fc25f7fd2df1602f30109f Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 27 Jan 2021 09:27:29 -0800
Subject: [PATCH 017/280] Fixes shelve tests

---
 bookwyrm/tests/views/test_shelf.py | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/tests/views/test_shelf.py b/bookwyrm/tests/views/test_shelf.py
index 64966a77..35e07953 100644
--- a/bookwyrm/tests/views/test_shelf.py
+++ b/bookwyrm/tests/views/test_shelf.py
@@ -74,7 +74,7 @@ class ShelfViews(TestCase):
                 'name': 'To Read',
             })
         request.user = self.local_user
-        view(request, self.local_user.username, shelf.id)
+        view(request, self.local_user.username, shelf.identifier)
         shelf.refresh_from_db()
 
         self.assertEqual(shelf.privacy, 'unlisted')
@@ -94,7 +94,7 @@ class ShelfViews(TestCase):
                 'name': 'cool name'
             })
         request.user = self.local_user
-        view(request, request.user.username, shelf.id)
+        view(request, request.user.username, shelf.identifier)
         shelf.refresh_from_db()
 
         self.assertEqual(shelf.name, 'cool name')
@@ -114,7 +114,7 @@ class ShelfViews(TestCase):
                 'name': 'cool name'
             })
         request.user = self.local_user
-        view(request, request.user.username, shelf.id)
+        view(request, request.user.username, shelf.identifier)
 
         self.assertEqual(shelf.name, 'To Read')
 

From 5377a8f1878b22490d8f0cd8e6aed6f6ad4d9a66 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 27 Jan 2021 09:29:34 -0800
Subject: [PATCH 018/280] Fixes reading view

---
 bookwyrm/views/reading.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/views/reading.py b/bookwyrm/views/reading.py
index 565fc179..c2c72509 100644
--- a/bookwyrm/views/reading.py
+++ b/bookwyrm/views/reading.py
@@ -30,8 +30,8 @@ def start_reading(request, book_id):
     if readthrough:
         readthrough.save()
 
-    # create a progress update if we have a page
-    readthrough.create_update()
+        # create a progress update if we have a page
+        readthrough.create_update()
 
     # shelve the book
     if request.POST.get('reshelve', True):

From 1a54ed875baa5043f288bbe40d09cab69171a972 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 27 Jan 2021 09:30:03 -0800
Subject: [PATCH 019/280] easier way to get user statuses queryset

---
 bookwyrm/views/user.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/views/user.py b/bookwyrm/views/user.py
index 668ef205..4afda01b 100644
--- a/bookwyrm/views/user.py
+++ b/bookwyrm/views/user.py
@@ -73,7 +73,7 @@ class User(View):
         activities = get_activity_feed(
             request.user,
             ['public', 'unlisted', 'followers'],
-            queryset=models.Status.objects.filter(user=user)
+            queryset=user.status_set
         )
         paginated = Paginator(activities, PAGE_LENGTH)
         goal = models.AnnualGoal.objects.filter(

From b52aa5bee9bfea772277aa3bc3012ca10abe1562 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 27 Jan 2021 09:31:01 -0800
Subject: [PATCH 020/280] Fixes status tests

---
 bookwyrm/tests/views/test_status.py | 3 ++-
 bookwyrm/views/shelf.py             | 1 +
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/bookwyrm/tests/views/test_status.py b/bookwyrm/tests/views/test_status.py
index 6e0c73df..50c458ac 100644
--- a/bookwyrm/tests/views/test_status.py
+++ b/bookwyrm/tests/views/test_status.py
@@ -176,7 +176,8 @@ class StatusViews(TestCase):
         reply = models.Status.replies(status).first()
         self.assertEqual(reply.content, '<p>right</p>')
         self.assertEqual(reply.user, user)
-        self.assertTrue(self.remote_user in reply.mention_users.all())
+        # the mentioned user in the parent post is only included if @'ed
+        self.assertFalse(self.remote_user in reply.mention_users.all())
         self.assertTrue(self.local_user in reply.mention_users.all())
 
     def test_find_mentions(self):
diff --git a/bookwyrm/views/shelf.py b/bookwyrm/views/shelf.py
index 15b2bd28..ae8a494b 100644
--- a/bookwyrm/views/shelf.py
+++ b/bookwyrm/views/shelf.py
@@ -65,6 +65,7 @@ class Shelf(View):
         return TemplateResponse(request, 'shelf.html', data)
 
     @method_decorator(login_required, name='dispatch')
+    # pylint: disable=unused-argument
     def post(self, request, username, shelf_identifier):
         ''' edit a shelf '''
         try:

From c2d0c4b0221fe0c3d3cf1da36bd7e1145c2255e8 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 27 Jan 2021 09:31:11 -0800
Subject: [PATCH 021/280] Adds missing init file for views tests

this is important!!
---
 bookwyrm/tests/views/__init__.py | 1 +
 1 file changed, 1 insertion(+)
 create mode 100644 bookwyrm/tests/views/__init__.py

diff --git a/bookwyrm/tests/views/__init__.py b/bookwyrm/tests/views/__init__.py
new file mode 100644
index 00000000..b6e690fd
--- /dev/null
+++ b/bookwyrm/tests/views/__init__.py
@@ -0,0 +1 @@
+from . import *

From 7d1c5fb0f2b97376a97052f0e706637a59fe7c89 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 27 Jan 2021 10:48:59 -0800
Subject: [PATCH 022/280] Patches broadcast call in reading test

---
 bookwyrm/tests/views/test_reading.py | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/tests/views/test_reading.py b/bookwyrm/tests/views/test_reading.py
index 436dbf68..89716a48 100644
--- a/bookwyrm/tests/views/test_reading.py
+++ b/bookwyrm/tests/views/test_reading.py
@@ -45,7 +45,8 @@ class ReadingViews(TestCase):
             'start_date': '2020-01-05',
         })
         request.user = self.local_user
-        views.start_reading(request, self.book.id)
+        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+            views.start_reading(request, self.book.id)
 
         self.assertEqual(shelf.books.get(), self.book)
 
@@ -73,7 +74,8 @@ class ReadingViews(TestCase):
 
         request = self.factory.post('')
         request.user = self.local_user
-        views.start_reading(request, self.book.id)
+        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+            views.start_reading(request, self.book.id)
 
         self.assertFalse(to_read_shelf.books.exists())
         self.assertEqual(shelf.books.get(), self.book)
@@ -95,7 +97,9 @@ class ReadingViews(TestCase):
             'id': readthrough.id,
         })
         request.user = self.local_user
-        views.finish_reading(request, self.book.id)
+
+        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+            views.finish_reading(request, self.book.id)
 
         self.assertEqual(shelf.books.get(), self.book)
 

From 9c2813545c2efe5304aab7a910e9be905017342e Mon Sep 17 00:00:00 2001
From: Chad Nelson <chadbnelson@gmail.com>
Date: Wed, 27 Jan 2021 21:23:20 -0500
Subject: [PATCH 023/280] Closer to some passing tests

---
 bookwyrm/tests/views/test_rss_feed.py | 7 ++++---
 bookwyrm/views/rss_feed.py            | 2 +-
 2 files changed, 5 insertions(+), 4 deletions(-)

diff --git a/bookwyrm/tests/views/test_rss_feed.py b/bookwyrm/tests/views/test_rss_feed.py
index 2e71e96e..bf0fb9a3 100644
--- a/bookwyrm/tests/views/test_rss_feed.py
+++ b/bookwyrm/tests/views/test_rss_feed.py
@@ -9,7 +9,7 @@ from bookwyrm import models
 from bookwyrm.views import rss_feed
 from bookwyrm.settings import DOMAIN
 
-class RssFeed(TestCase):
+class RssFeedView(TestCase):
     ''' rss feed behaves as expected '''
     def setUp(self):
         self.user = models.User.objects.create_user(
@@ -37,8 +37,9 @@ class RssFeed(TestCase):
         
 
     def test_rss_feed(self):
+        view = rss_feed.RssFeed()
         request = self.factory.get('/user/rss_user/rss')
-        response = RssFeed(request)
-        self.assertEqual(response.status_code, 200)
+        result = view(request, username=self.user.username)
+        self.assertEqual(result.status_code, 200)
         self.assertEqual(False, True)
 
diff --git a/bookwyrm/views/rss_feed.py b/bookwyrm/views/rss_feed.py
index ee8063a6..d6bcd174 100644
--- a/bookwyrm/views/rss_feed.py
+++ b/bookwyrm/views/rss_feed.py
@@ -21,7 +21,7 @@ class RssFeed(Feed):
 
 
     def items(self, obj):
-        return get_activity_feed(obj, ['public', 'unlisted'])
+        return get_activity_feed(obj, ['public', 'unlisted'], queryset=obj.status_set)
 
     
     def item_link(self, item):

From 4274bf0508dcb6cba6464ed6ace9bc3459797d96 Mon Sep 17 00:00:00 2001
From: Chad Nelson <chadbnelson@gmail.com>
Date: Wed, 27 Jan 2021 22:13:35 -0500
Subject: [PATCH 024/280] Patch site settings so this can pass

---
 bookwyrm/tests/views/test_rss_feed.py | 13 ++++++++++---
 1 file changed, 10 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/tests/views/test_rss_feed.py b/bookwyrm/tests/views/test_rss_feed.py
index bf0fb9a3..cbc97af7 100644
--- a/bookwyrm/tests/views/test_rss_feed.py
+++ b/bookwyrm/tests/views/test_rss_feed.py
@@ -1,7 +1,6 @@
 ''' testing import '''
 
 from unittest.mock import patch
-
 from django.test import RequestFactory, TestCase
 import responses
 
@@ -12,6 +11,9 @@ from bookwyrm.settings import DOMAIN
 class RssFeedView(TestCase):
     ''' rss feed behaves as expected '''
     def setUp(self):
+
+        self.site = models.SiteSettings.objects.create()
+
         self.user = models.User.objects.create_user(
             'rss_user', 'rss@test.rss', 'password', local=True)
 
@@ -39,7 +41,12 @@ class RssFeedView(TestCase):
     def test_rss_feed(self):
         view = rss_feed.RssFeed()
         request = self.factory.get('/user/rss_user/rss')
-        result = view(request, username=self.user.username)
+        with patch("bookwyrm.models.SiteSettings.objects.get") as site:
+            site.return_value = self.site
+            result = view(request, username=self.user.username)
         self.assertEqual(result.status_code, 200)
-        self.assertEqual(False, True)
+
+        self.assertIn(b"Status updates from rss_user", result.content)
+        self.assertIn( b"a sickening sense", result.content)
+        self.assertIn(b"Example Edition", result.content)
 

From 68d00d590ccd06c32a48d6d0a20ff71ee078121d Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 29 Jan 2021 08:00:19 -0800
Subject: [PATCH 025/280] Allows blockquote markdown

---
 bookwyrm/sanitize_html.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/sanitize_html.py b/bookwyrm/sanitize_html.py
index de13ede8..be7fb56f 100644
--- a/bookwyrm/sanitize_html.py
+++ b/bookwyrm/sanitize_html.py
@@ -7,7 +7,7 @@ class InputHtmlParser(HTMLParser):#pylint: disable=abstract-method
     def __init__(self):
         HTMLParser.__init__(self)
         self.allowed_tags = [
-            'p', 'br',
+            'p', 'blockquote', 'br',
             'b', 'i', 'strong', 'em', 'pre',
             'a', 'span', 'ul', 'ol', 'li'
         ]

From 6ccf7841e1b3afb1aeac5ea232cb5c78fd856493 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 29 Jan 2021 08:51:36 -0800
Subject: [PATCH 026/280] Moves components out of snippets

---
 bookwyrm/templates/{snippets => }/components/card.html     | 0
 bookwyrm/templates/{snippets => }/components/dropdown.html | 0
 bookwyrm/templates/{snippets => }/components/modal.html    | 0
 bookwyrm/templates/snippets/delete_readthrough_modal.html  | 2 +-
 bookwyrm/templates/snippets/finish_reading_modal.html      | 2 +-
 bookwyrm/templates/snippets/goal_card.html                 | 2 +-
 bookwyrm/templates/snippets/shelf_selector.html            | 2 +-
 bookwyrm/templates/snippets/shelve_button_dropdown.html    | 2 +-
 bookwyrm/templates/snippets/start_reading_modal.html       | 2 +-
 bookwyrm/templates/snippets/status_body.html               | 2 +-
 bookwyrm/templates/snippets/status_options.html            | 2 +-
 bookwyrm/templates/snippets/user_options.html              | 2 +-
 12 files changed, 9 insertions(+), 9 deletions(-)
 rename bookwyrm/templates/{snippets => }/components/card.html (100%)
 rename bookwyrm/templates/{snippets => }/components/dropdown.html (100%)
 rename bookwyrm/templates/{snippets => }/components/modal.html (100%)

diff --git a/bookwyrm/templates/snippets/components/card.html b/bookwyrm/templates/components/card.html
similarity index 100%
rename from bookwyrm/templates/snippets/components/card.html
rename to bookwyrm/templates/components/card.html
diff --git a/bookwyrm/templates/snippets/components/dropdown.html b/bookwyrm/templates/components/dropdown.html
similarity index 100%
rename from bookwyrm/templates/snippets/components/dropdown.html
rename to bookwyrm/templates/components/dropdown.html
diff --git a/bookwyrm/templates/snippets/components/modal.html b/bookwyrm/templates/components/modal.html
similarity index 100%
rename from bookwyrm/templates/snippets/components/modal.html
rename to bookwyrm/templates/components/modal.html
diff --git a/bookwyrm/templates/snippets/delete_readthrough_modal.html b/bookwyrm/templates/snippets/delete_readthrough_modal.html
index c04a1d90..19c4b4f0 100644
--- a/bookwyrm/templates/snippets/delete_readthrough_modal.html
+++ b/bookwyrm/templates/snippets/delete_readthrough_modal.html
@@ -1,4 +1,4 @@
-{% extends 'snippets/components/modal.html' %}
+{% extends 'components/modal.html' %}
 {% block modal-title %}Delete these read dates?{% endblock %}
 {% block modal-body %}
 {% if readthrough.progress_updates|length > 0 %}
diff --git a/bookwyrm/templates/snippets/finish_reading_modal.html b/bookwyrm/templates/snippets/finish_reading_modal.html
index 10af1162..c3407631 100644
--- a/bookwyrm/templates/snippets/finish_reading_modal.html
+++ b/bookwyrm/templates/snippets/finish_reading_modal.html
@@ -1,4 +1,4 @@
-{% extends 'snippets/components/modal.html' %}
+{% extends 'components/modal.html' %}
 
 {% block modal-title %}
 Finish "<em>{{ book.title }}</em>"
diff --git a/bookwyrm/templates/snippets/goal_card.html b/bookwyrm/templates/snippets/goal_card.html
index b453d6e4..e26cd5a3 100644
--- a/bookwyrm/templates/snippets/goal_card.html
+++ b/bookwyrm/templates/snippets/goal_card.html
@@ -1,4 +1,4 @@
-{% extends 'snippets/components/card.html' %}
+{% extends 'components/card.html' %}
 
 {% block card-header %}
 <h3 class="card-header-title has-background-primary has-text-white">
diff --git a/bookwyrm/templates/snippets/shelf_selector.html b/bookwyrm/templates/snippets/shelf_selector.html
index f6d5607f..50d7e750 100644
--- a/bookwyrm/templates/snippets/shelf_selector.html
+++ b/bookwyrm/templates/snippets/shelf_selector.html
@@ -1,4 +1,4 @@
-{% extends 'snippets/components/dropdown.html' %}
+{% extends 'components/dropdown.html' %}
 {% block dropdown-trigger %}
 <span>Change shelf</span>
 <span class="icon icon-arrow-down" aria-hidden="true"></span>
diff --git a/bookwyrm/templates/snippets/shelve_button_dropdown.html b/bookwyrm/templates/snippets/shelve_button_dropdown.html
index 80c76d41..50140e3f 100644
--- a/bookwyrm/templates/snippets/shelve_button_dropdown.html
+++ b/bookwyrm/templates/snippets/shelve_button_dropdown.html
@@ -1,4 +1,4 @@
-{% extends 'snippets/components/dropdown.html' %}
+{% extends 'components/dropdown.html' %}
 {% block dropdown-trigger %}
 <span class="icon icon-arrow-down">
     <span class="is-sr-only">More shelves</span>
diff --git a/bookwyrm/templates/snippets/start_reading_modal.html b/bookwyrm/templates/snippets/start_reading_modal.html
index 50724e11..239a2be1 100644
--- a/bookwyrm/templates/snippets/start_reading_modal.html
+++ b/bookwyrm/templates/snippets/start_reading_modal.html
@@ -1,4 +1,4 @@
-{% extends 'snippets/components/modal.html' %}
+{% extends 'components/modal.html' %}
 
 {% block modal-title %}
 Start "<em>{{ book.title }}</em>"
diff --git a/bookwyrm/templates/snippets/status_body.html b/bookwyrm/templates/snippets/status_body.html
index c70f898a..69fa0bc2 100644
--- a/bookwyrm/templates/snippets/status_body.html
+++ b/bookwyrm/templates/snippets/status_body.html
@@ -1,4 +1,4 @@
-{% extends 'snippets/components/card.html' %}
+{% extends 'components/card.html' %}
 
 {% load bookwyrm_tags %}
 {% load humanize %}
diff --git a/bookwyrm/templates/snippets/status_options.html b/bookwyrm/templates/snippets/status_options.html
index b5887b1d..a6609cb3 100644
--- a/bookwyrm/templates/snippets/status_options.html
+++ b/bookwyrm/templates/snippets/status_options.html
@@ -1,4 +1,4 @@
-{% extends 'snippets/components/dropdown.html' %}
+{% extends 'components/dropdown.html' %}
 {% load bookwyrm_tags %}
 
 {% block dropdown-trigger %}
diff --git a/bookwyrm/templates/snippets/user_options.html b/bookwyrm/templates/snippets/user_options.html
index 2c163034..ab68c2e3 100644
--- a/bookwyrm/templates/snippets/user_options.html
+++ b/bookwyrm/templates/snippets/user_options.html
@@ -1,4 +1,4 @@
-{% extends 'snippets/components/dropdown.html' %}
+{% extends 'components/dropdown.html' %}
 {% load bookwyrm_tags %}
 
 {% block dropdown-trigger %}

From 24af288c52115fdff3ae24904a307d34e4e5ce8e Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 29 Jan 2021 09:05:53 -0800
Subject: [PATCH 027/280] Refactors user pages

---
 bookwyrm/templates/{ => user}/followers.html  | 24 +++++++++----------
 bookwyrm/templates/{ => user}/following.html  | 24 +++++++++----------
 bookwyrm/templates/{ => user}/user.html       |  7 +++---
 .../user_layout.html}                         | 10 ++++++++
 bookwyrm/views/user.py                        | 10 ++++----
 5 files changed, 41 insertions(+), 34 deletions(-)
 rename bookwyrm/templates/{ => user}/followers.html (69%)
 rename bookwyrm/templates/{ => user}/following.html (70%)
 rename bookwyrm/templates/{ => user}/user.html (95%)
 rename bookwyrm/templates/{snippets/user_header.html => user/user_layout.html} (92%)

diff --git a/bookwyrm/templates/followers.html b/bookwyrm/templates/user/followers.html
similarity index 69%
rename from bookwyrm/templates/followers.html
rename to bookwyrm/templates/user/followers.html
index 00cb13ca..42b8cfb0 100644
--- a/bookwyrm/templates/followers.html
+++ b/bookwyrm/templates/user/followers.html
@@ -1,18 +1,17 @@
-{% extends 'layout.html' %}
+{% extends 'user/user_layout.html' %}
 {% load bookwyrm_tags %}
-{% block content %}
-<div class="block">
-    <h1 class="title">
-        {% if is_self %}Your
-        {% else %}
-        {% include 'snippets/username.html' with user=user possessive=True %}
-        {% endif %}
-        followers
-    </h1>
-</div>
 
-{% include 'snippets/user_header.html' with user=user %}
+{% block header %}
+<h1 class="title">
+    {% if is_self %}Your
+    {% else %}
+    {% include 'snippets/username.html' with user=user possessive=True %}
+    {% endif %}
+    followers
+</h1>
+{% endblock %}
 
+{% block panel %}
 <div class="block">
     <h2 class="title">Followers</h2>
     {% for followers in followers %}
@@ -34,5 +33,4 @@
     <div>{{ user|username }} has no followers</div>
     {% endif %}
 </div>
-
 {% endblock %}
diff --git a/bookwyrm/templates/following.html b/bookwyrm/templates/user/following.html
similarity index 70%
rename from bookwyrm/templates/following.html
rename to bookwyrm/templates/user/following.html
index bdf02c74..9e42b783 100644
--- a/bookwyrm/templates/following.html
+++ b/bookwyrm/templates/user/following.html
@@ -1,18 +1,17 @@
-{% extends 'layout.html' %}
+{% extends 'user/user_layout.html' %}
 {% load bookwyrm_tags %}
-{% block content %}
-<div class="block">
-    <h1 class="title">
-        Users following
-        {% if is_self %}you
-        {% else %}
-        {% include 'snippets/username.html' with user=user %}
-        {% endif %}
-    </h1>
-</div>
 
-{% include 'snippets/user_header.html' with user=user %}
+{% block header %}
+<h1 class="title">
+    Users following
+    {% if is_self %}you
+    {% else %}
+    {% include 'snippets/username.html' with user=user %}
+    {% endif %}
+</h1>
+{% endblock %}
 
+{% block panel %}
 <div class="block">
     <h2 class="title">Following</h2>
     {% for follower in user.following.all %}
@@ -34,5 +33,4 @@
     <div>{{ user|username }} isn't following any users</div>
     {% endif %}
 </div>
-
 {% endblock %}
diff --git a/bookwyrm/templates/user.html b/bookwyrm/templates/user/user.html
similarity index 95%
rename from bookwyrm/templates/user.html
rename to bookwyrm/templates/user/user.html
index 69b762b0..dc3169c2 100644
--- a/bookwyrm/templates/user.html
+++ b/bookwyrm/templates/user/user.html
@@ -1,6 +1,6 @@
-{% extends 'layout.html' %}
-{% block content %}
+{% extends 'user/user_layout.html' %}
 
+{% block header %}
 <div class="columns">
     <div class="column">
         <h1 class="title">User profile</h1>
@@ -15,8 +15,9 @@
     </div>
     {% endif %}
 </div>
+{% endblock %}
 
-{% include 'snippets/user_header.html' with user=user %}
+{% block panel %}
 {% if user.bookwyrm_user %}
 <div class="block">
     <h2 class="title">Shelves</h2>
diff --git a/bookwyrm/templates/snippets/user_header.html b/bookwyrm/templates/user/user_layout.html
similarity index 92%
rename from bookwyrm/templates/snippets/user_header.html
rename to bookwyrm/templates/user/user_layout.html
index 8f5e264a..8cf71d9e 100644
--- a/bookwyrm/templates/snippets/user_header.html
+++ b/bookwyrm/templates/user/user_layout.html
@@ -1,5 +1,12 @@
+{% extends 'layout.html' %}
 {% load humanize %}
 {% load bookwyrm_tags %}
+<header class="block">
+    {% block header %}{% endblock %}
+</header>
+
+{% block content %}
+{# user bio #}
 <div class="block">
     <div class="columns">
         <div class="column is-narrow">
@@ -60,3 +67,6 @@
     {% endif %}
 </div>
 
+{% block panel %}{% endblock %}
+
+{% endblock %}
diff --git a/bookwyrm/views/user.py b/bookwyrm/views/user.py
index 4afda01b..4bbd8e29 100644
--- a/bookwyrm/views/user.py
+++ b/bookwyrm/views/user.py
@@ -90,7 +90,7 @@ class User(View):
             'goal': goal,
         }
 
-        return TemplateResponse(request, 'user.html', data)
+        return TemplateResponse(request, 'user/user.html', data)
 
 class Followers(View):
     ''' list of followers view '''
@@ -115,7 +115,7 @@ class Followers(View):
             'is_self': request.user.id == user.id,
             'followers': user.followers.all(),
         }
-        return TemplateResponse(request, 'followers.html', data)
+        return TemplateResponse(request, 'user/followers.html', data)
 
 class Following(View):
     ''' list of following view '''
@@ -140,7 +140,7 @@ class Following(View):
             'is_self': request.user.id == user.id,
             'following': user.following.all(),
         }
-        return TemplateResponse(request, 'following.html', data)
+        return TemplateResponse(request, 'user/following.html', data)
 
 
 @method_decorator(login_required, name='dispatch')
@@ -153,7 +153,7 @@ class EditUser(View):
             'form': forms.EditUserForm(instance=request.user),
             'user': request.user,
         }
-        return TemplateResponse(request, 'edit_user.html', data)
+        return TemplateResponse(request, 'settings/edit_user.html', data)
 
     def post(self, request):
         ''' les get fancy with images '''
@@ -161,7 +161,7 @@ class EditUser(View):
             request.POST, request.FILES, instance=request.user)
         if not form.is_valid():
             data = {'form': form, 'user': request.user}
-            return TemplateResponse(request, 'edit_user.html', data)
+            return TemplateResponse(request, 'settings/edit_user.html', data)
 
         user = form.save(commit=False)
 

From 9fa8ee3940b7e7560ff93ba865710067105e8153 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 29 Jan 2021 09:28:00 -0800
Subject: [PATCH 028/280] Groups profile settings templates

---
 bookwyrm/templates/layout.html                |  2 +-
 .../templates/{ => preferences}/blocks.html   |  2 +-
 .../{ => preferences}/change_password.html    |  2 +-
 .../{ => preferences}/edit_user.html          |  2 +-
 .../{ => preferences}/preferences_layout.html |  6 ++---
 bookwyrm/templates/user/user.html             |  2 +-
 bookwyrm/urls.py                              | 13 +++++-----
 bookwyrm/views/__init__.py                    |  1 +
 bookwyrm/views/block.py                       |  6 ++---
 bookwyrm/views/password.py                    |  7 ++---
 bookwyrm/views/rss_feed.py                    | 26 ++++++++++++-------
 bookwyrm/views/user.py                        |  4 +--
 12 files changed, 41 insertions(+), 32 deletions(-)
 rename bookwyrm/templates/{ => preferences}/blocks.html (91%)
 rename bookwyrm/templates/{ => preferences}/change_password.html (93%)
 rename bookwyrm/templates/{ => preferences}/edit_user.html (96%)
 rename bookwyrm/templates/{ => preferences}/preferences_layout.html (57%)

diff --git a/bookwyrm/templates/layout.html b/bookwyrm/templates/layout.html
index ddbafbb4..a696e287 100644
--- a/bookwyrm/templates/layout.html
+++ b/bookwyrm/templates/layout.html
@@ -81,7 +81,7 @@
                         </a>
                     </li>
                     <li>
-                        <a href="/edit-profile" class="navbar-item">
+                        <a href="/preferences/profile" class="navbar-item">
                             Settings
                         </a>
                     </li>
diff --git a/bookwyrm/templates/blocks.html b/bookwyrm/templates/preferences/blocks.html
similarity index 91%
rename from bookwyrm/templates/blocks.html
rename to bookwyrm/templates/preferences/blocks.html
index 1df49816..5fd29d25 100644
--- a/bookwyrm/templates/blocks.html
+++ b/bookwyrm/templates/preferences/blocks.html
@@ -1,4 +1,4 @@
-{% extends 'preferences_layout.html' %}
+{% extends 'preferences/preferences_layout.html' %}
 
 {% block header %}
 Blocked Users
diff --git a/bookwyrm/templates/change_password.html b/bookwyrm/templates/preferences/change_password.html
similarity index 93%
rename from bookwyrm/templates/change_password.html
rename to bookwyrm/templates/preferences/change_password.html
index c373dfc8..b1b2a049 100644
--- a/bookwyrm/templates/change_password.html
+++ b/bookwyrm/templates/preferences/change_password.html
@@ -1,4 +1,4 @@
-{% extends 'preferences_layout.html' %}
+{% extends 'preferences/preferences_layout.html' %}
 {% block header %}
 Change Password
 {% endblock %}
diff --git a/bookwyrm/templates/edit_user.html b/bookwyrm/templates/preferences/edit_user.html
similarity index 96%
rename from bookwyrm/templates/edit_user.html
rename to bookwyrm/templates/preferences/edit_user.html
index ee9ddb22..8b384276 100644
--- a/bookwyrm/templates/edit_user.html
+++ b/bookwyrm/templates/preferences/edit_user.html
@@ -1,4 +1,4 @@
-{% extends 'preferences_layout.html' %}
+{% extends 'preferences/preferences_layout.html' %}
 {% block header %}
 Edit Profile
 {% endblock %}
diff --git a/bookwyrm/templates/preferences_layout.html b/bookwyrm/templates/preferences/preferences_layout.html
similarity index 57%
rename from bookwyrm/templates/preferences_layout.html
rename to bookwyrm/templates/preferences/preferences_layout.html
index de2fe0df..b0e7b31a 100644
--- a/bookwyrm/templates/preferences_layout.html
+++ b/bookwyrm/templates/preferences/preferences_layout.html
@@ -10,16 +10,16 @@
         <h2 class="menu-label">Account</h2>
         <ul class="menu-list">
             <li>
-                <a href="/edit-profile"{% if '/edit-profile' in request.path %} class="is-active" aria-selected="true"{% endif %}>Profile</a>
+                <a href="/preferences/profile"{% if '/preferences/profile' in request.path %} class="is-active" aria-selected="true"{% endif %}>Profile</a>
             </li>
             <li>
-                <a href="/change-password"{% if '/change-password' in request.path %} class="is-active" aria-selected="true"{% endif %}>Change password</a>
+                <a href="/preferences/password"{% if '/preferences/password' in request.path %} class="is-active" aria-selected="true"{% endif %}>Change password</a>
             </li>
         </ul>
         <h2 class="menu-label">Relationships</h2>
         <ul class="menu-list">
             <li>
-                <a href="/block"{% if '/block' in request.path %} class="is-active" aria-selected="true"{% endif %}>Blocked users</a>
+                <a href="/preferences/block"{% if '/preferences/block' in request.path %} class="is-active" aria-selected="true"{% endif %}>Blocked users</a>
             </li>
         </ul>
     </nav>
diff --git a/bookwyrm/templates/user/user.html b/bookwyrm/templates/user/user.html
index dc3169c2..48f15398 100644
--- a/bookwyrm/templates/user/user.html
+++ b/bookwyrm/templates/user/user.html
@@ -7,7 +7,7 @@
     </div>
     {% if is_self %}
     <div class="column is-narrow">
-        <a href="/edit-profile">
+        <a href="/preferences/profile">
             <span class="icon icon-pencil" title="Edit profile">
                 <span class="is-sr-only">Edit profile</span>
             </span>
diff --git a/bookwyrm/urls.py b/bookwyrm/urls.py
index f03bcda9..e3b792ff 100644
--- a/bookwyrm/urls.py
+++ b/bookwyrm/urls.py
@@ -5,7 +5,6 @@ from django.urls import path, re_path
 
 
 from bookwyrm import incoming, settings, views, wellknown
-from bookwyrm.views.rss_feed import RssFeed
 from bookwyrm.utils import regex
 
 user_path = r'^user/(?P<username>%s)' % regex.username
@@ -49,7 +48,6 @@ urlpatterns = [
     re_path(r'^password-reset/?$', views.PasswordResetRequest.as_view()),
     re_path(r'^password-reset/(?P<code>[A-Za-z0-9]+)/?$',
             views.PasswordReset.as_view()),
-    re_path(r'^change-password/?$', views.ChangePassword.as_view()),
 
     # invites
     re_path(r'^invite/?$', views.ManageInvites.as_view()),
@@ -76,9 +74,15 @@ urlpatterns = [
     re_path(r'%s/shelves/?$' % user_path, views.user_shelves_page),
     re_path(r'%s/followers(.json)?/?$' % user_path, views.Followers.as_view()),
     re_path(r'%s/following(.json)?/?$' % user_path, views.Following.as_view()),
-    re_path(r'^edit-profile/?$', views.EditUser.as_view()),
     re_path(r'%s/rss' % user_path, views.rss_feed.RssFeed()),
 
+    # preferences
+    re_path(r'^preferences/profile/?$', views.EditUser.as_view()),
+    re_path(r'^preferences/password/?$', views.ChangePassword.as_view()),
+    re_path(r'^preferences/block/?$', views.Block.as_view()),
+    re_path(r'^block/(?P<user_id>\d+)/?$', views.Block.as_view()),
+    re_path(r'^unblock/(?P<user_id>\d+)/?$', views.unblock),
+
     # reading goals
     re_path(r'%s/goal/(?P<year>\d{4})/?$' % user_path, views.Goal.as_view()),
 
@@ -140,7 +144,4 @@ urlpatterns = [
     re_path(r'^accept-follow-request/?$', views.accept_follow_request),
     re_path(r'^delete-follow-request/?$', views.delete_follow_request),
 
-    re_path(r'^block/?$', views.Block.as_view()),
-    re_path(r'^block/(?P<user_id>\d+)/?$', views.Block.as_view()),
-    re_path(r'^unblock/(?P<user_id>\d+)/?$', views.unblock),
 ] + static(settings.MEDIA_URL, document_root=settings.MEDIA_ROOT)
diff --git a/bookwyrm/views/__init__.py b/bookwyrm/views/__init__.py
index e3ac29c8..36a4bed9 100644
--- a/bookwyrm/views/__init__.py
+++ b/bookwyrm/views/__init__.py
@@ -17,6 +17,7 @@ from .notifications import Notifications
 from .outbox import Outbox
 from .reading import edit_readthrough, create_readthrough, delete_readthrough
 from .reading import start_reading, finish_reading, delete_progressupdate
+from .rss_feed import RssFeed
 from .password import PasswordResetRequest, PasswordReset, ChangePassword
 from .tag import Tag, AddTag, RemoveTag
 from .search import Search
diff --git a/bookwyrm/views/block.py b/bookwyrm/views/block.py
index fb95479a..ebcced2a 100644
--- a/bookwyrm/views/block.py
+++ b/bookwyrm/views/block.py
@@ -17,7 +17,7 @@ class Block(View):
     def get(self, request):
         ''' list of blocked users? '''
         return TemplateResponse(
-            request, 'blocks.html', {'title': 'Blocked Users'})
+            request, 'preferences/blocks.html', {'title': 'Blocked Users'})
 
     def post(self, request, user_id):
         ''' block a user '''
@@ -31,7 +31,7 @@ class Block(View):
                 privacy='direct',
                 direct_recipients=[to_block]
             )
-        return redirect('/block')
+        return redirect('/preferences/block')
 
 
 @require_POST
@@ -55,4 +55,4 @@ def unblock(request, user_id):
             direct_recipients=[to_unblock]
         )
     block.delete()
-    return redirect('/block')
+    return redirect('/preferences/block')
diff --git a/bookwyrm/views/password.py b/bookwyrm/views/password.py
index 06ddc1da..2adeebf5 100644
--- a/bookwyrm/views/password.py
+++ b/bookwyrm/views/password.py
@@ -94,7 +94,8 @@ class ChangePassword(View):
             'title': 'Change Password',
             'user': request.user,
         }
-        return TemplateResponse(request, 'change_password.html', data)
+        return TemplateResponse(
+            request, 'preferences/change_password.html', data)
 
     def post(self, request):
         ''' allow a user to change their password '''
@@ -102,9 +103,9 @@ class ChangePassword(View):
         confirm_password = request.POST.get('confirm-password')
 
         if new_password != confirm_password:
-            return redirect('/edit-profile')
+            return redirect('preferences/password')
 
         request.user.set_password(new_password)
         request.user.save()
         login(request, request.user)
-        return redirect('/user/%s' % request.user.localname)
+        return redirect(request.user.local_path)
diff --git a/bookwyrm/views/rss_feed.py b/bookwyrm/views/rss_feed.py
index d6bcd174..496689ff 100644
--- a/bookwyrm/views/rss_feed.py
+++ b/bookwyrm/views/rss_feed.py
@@ -1,29 +1,35 @@
-''' '''
+''' serialize user's posts in rss feed '''
 
 from django.contrib.syndication.views import Feed
-from django.urls import reverse
-from bookwyrm.models.user import User
 from .helpers import get_activity_feed, get_user_from_username
 
+# pylint: disable=no-self-use, unused-argument
 class RssFeed(Feed):
-
-    description_template = "snippets/rss_content.html"
-    title_template = "snippets/rss_title.html"
+    ''' serialize user's posts in rss feed '''
+    description_template = 'snippets/rss_content.html'
+    title_template = 'snippets/rss_title.html'
 
     def get_object(self, request, username):
+        ''' the user who's posts get serialized '''
         return get_user_from_username(username)
 
+
     def link(self, obj):
+        ''' link to the user's profile '''
         return obj.local_path
 
+
     def title(self, obj):
-        return f"Status updates from {obj.display_name}"
+        ''' title of the rss feed entry '''
+        return f'Status updates from {obj.display_name}'
 
 
     def items(self, obj):
-        return get_activity_feed(obj, ['public', 'unlisted'], queryset=obj.status_set)
+        ''' the user's activity feed '''
+        return get_activity_feed(
+            obj, ['public', 'unlisted'], queryset=obj.status_set)
+
 
-    
     def item_link(self, item):
+        ''' link to the status '''
         return item.local_path
-
diff --git a/bookwyrm/views/user.py b/bookwyrm/views/user.py
index 4bbd8e29..a06face2 100644
--- a/bookwyrm/views/user.py
+++ b/bookwyrm/views/user.py
@@ -153,7 +153,7 @@ class EditUser(View):
             'form': forms.EditUserForm(instance=request.user),
             'user': request.user,
         }
-        return TemplateResponse(request, 'settings/edit_user.html', data)
+        return TemplateResponse(request, 'preferences/edit_user.html', data)
 
     def post(self, request):
         ''' les get fancy with images '''
@@ -161,7 +161,7 @@ class EditUser(View):
             request.POST, request.FILES, instance=request.user)
         if not form.is_valid():
             data = {'form': form, 'user': request.user}
-            return TemplateResponse(request, 'settings/edit_user.html', data)
+            return TemplateResponse(request, 'preferences/edit_user.html', data)
 
         user = form.save(commit=False)
 

From 60721fd41ea6aafe21717321c21b77baf59e9dce Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 29 Jan 2021 09:29:59 -0800
Subject: [PATCH 029/280] Fixes user layout

---
 bookwyrm/templates/user/user_layout.html | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/bookwyrm/templates/user/user_layout.html b/bookwyrm/templates/user/user_layout.html
index 8cf71d9e..3fcbf1e2 100644
--- a/bookwyrm/templates/user/user_layout.html
+++ b/bookwyrm/templates/user/user_layout.html
@@ -1,11 +1,12 @@
 {% extends 'layout.html' %}
 {% load humanize %}
 {% load bookwyrm_tags %}
+
+{% block content %}
 <header class="block">
     {% block header %}{% endblock %}
 </header>
 
-{% block content %}
 {# user bio #}
 <div class="block">
     <div class="columns">

From 932acc961f2b2ef901d827bf8d38da2037625b8b Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 29 Jan 2021 09:41:32 -0800
Subject: [PATCH 030/280] Fixes template paths in tests

---
 bookwyrm/tests/views/test_user.py | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/bookwyrm/tests/views/test_user.py b/bookwyrm/tests/views/test_user.py
index 07acc4c4..61fcdb64 100644
--- a/bookwyrm/tests/views/test_user.py
+++ b/bookwyrm/tests/views/test_user.py
@@ -34,7 +34,7 @@ class UserViews(TestCase):
             is_api.return_value = False
             result = view(request, 'mouse')
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'user.html')
+        self.assertEqual(result.template_name, 'user/user.html')
         self.assertEqual(result.status_code, 200)
 
         with patch('bookwyrm.views.user.is_api_request') as is_api:
@@ -65,7 +65,7 @@ class UserViews(TestCase):
             is_api.return_value = False
             result = view(request, 'mouse')
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'followers.html')
+        self.assertEqual(result.template_name, 'user/followers.html')
         self.assertEqual(result.status_code, 200)
 
         with patch('bookwyrm.views.user.is_api_request') as is_api:
@@ -96,7 +96,7 @@ class UserViews(TestCase):
             is_api.return_value = False
             result = view(request, 'mouse')
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'following.html')
+        self.assertEqual(result.template_name, 'user/following.html')
         self.assertEqual(result.status_code, 200)
 
         with patch('bookwyrm.views.user.is_api_request') as is_api:
@@ -125,7 +125,7 @@ class UserViews(TestCase):
         request.user = self.local_user
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'edit_user.html')
+        self.assertEqual(result.template_name, 'preferences/edit_user.html')
         self.assertEqual(result.status_code, 200)
 
 

From b53ef73fafcce2ea5abd65d1441f6428c1ffed19 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 29 Jan 2021 10:25:31 -0800
Subject: [PATCH 031/280] Feed templates

---
 bookwyrm/static/js/shared.js                  |   9 +
 .../templates/{ => feed}/direct_messages.html |   4 +-
 bookwyrm/templates/feed/feed.html             |  39 +++++
 .../{feed.html => feed/feed_layout.html}      |  39 +----
 bookwyrm/templates/feed/status.html           |  13 ++
 .../templates/{snippets => feed}/thread.html  |   0
 bookwyrm/templates/status.html                |   9 -
 bookwyrm/urls.py                              |   4 +-
 bookwyrm/views/__init__.py                    |   6 +-
 bookwyrm/views/direct_message.py              |  26 ---
 bookwyrm/views/feed.py                        | 156 ++++++++++++++++++
 bookwyrm/views/landing.py                     |  71 +-------
 bookwyrm/views/status.py                      |  54 +-----
 13 files changed, 234 insertions(+), 196 deletions(-)
 rename bookwyrm/templates/{ => feed}/direct_messages.html (88%)
 create mode 100644 bookwyrm/templates/feed/feed.html
 rename bookwyrm/templates/{feed.html => feed/feed_layout.html} (73%)
 create mode 100644 bookwyrm/templates/feed/status.html
 rename bookwyrm/templates/{snippets => feed}/thread.html (100%)
 delete mode 100644 bookwyrm/templates/status.html
 delete mode 100644 bookwyrm/views/direct_message.py
 create mode 100644 bookwyrm/views/feed.py

diff --git a/bookwyrm/static/js/shared.js b/bookwyrm/static/js/shared.js
index a0c21bec..c2fa8b54 100644
--- a/bookwyrm/static/js/shared.js
+++ b/bookwyrm/static/js/shared.js
@@ -35,8 +35,17 @@ window.onload = function() {
     // polling
     document.querySelectorAll('[data-poll]')
         .forEach(el => polling(el));
+
+    // browser back behavior
+    document.querySelectorAll('[data-back]')
+        .forEach(t => t.onclick = back);
 };
 
+function back(e) {
+    e.preventDefault();
+    history.back();
+}
+
 function polling(el) {
     let delay = 10000 + (Math.random() * 1000);
     setTimeout(function() {
diff --git a/bookwyrm/templates/direct_messages.html b/bookwyrm/templates/feed/direct_messages.html
similarity index 88%
rename from bookwyrm/templates/direct_messages.html
rename to bookwyrm/templates/feed/direct_messages.html
index 666f5290..44a0cded 100644
--- a/bookwyrm/templates/direct_messages.html
+++ b/bookwyrm/templates/feed/direct_messages.html
@@ -1,5 +1,5 @@
-{% extends 'layout.html' %}
-{% block content %}
+{% extends 'feed/feed_layout.html' %}
+{% block panel %}
 
 <div class="block">
     <h1 class="title">Direct Messages</h1>
diff --git a/bookwyrm/templates/feed/feed.html b/bookwyrm/templates/feed/feed.html
new file mode 100644
index 00000000..8d6152e2
--- /dev/null
+++ b/bookwyrm/templates/feed/feed.html
@@ -0,0 +1,39 @@
+{% extends 'feed/feed_layout.html' %}
+{% load bookwyrm_tags %}
+{% block panel %}
+
+<h1 class="title">{{ tab | title }} Timeline</h1>
+<div class="tabs">
+    <ul>
+        <li class="{% if tab == 'home' %}is-active{% endif %}">
+            <a href="/#feed">Home</a>
+        </li>
+        <li class="{% if tab == 'local' %}is-active{% endif %}">
+            <a href="/local#feed">Local</a>
+        </li>
+        <li class="{% if tab == 'federated' %}is-active{% endif %}">
+            <a href="/federated#feed">Federated</a>
+        </li>
+    </ul>
+</div>
+
+{# announcements and system messages #}
+{% if not goal and tab == 'home' %}
+{% now 'Y' as year %}
+<section class="block hidden" aria-title="Announcements" data-hide="hide-{{ year }}-reading-goal">
+    {% include 'snippets/goal_card.html' with year=year %}
+    <hr>
+</section>
+{% endif %}
+
+{# activity feed #}
+{% if not activities %}
+<p>There aren't any activities right now! Try following a user to get started</p>
+{% endif %}
+{% for activity in activities %}
+<div class="block">
+{% include 'snippets/status.html' with status=activity %}
+</div>
+{% endfor %}
+
+{% endblock %}
diff --git a/bookwyrm/templates/feed.html b/bookwyrm/templates/feed/feed_layout.html
similarity index 73%
rename from bookwyrm/templates/feed.html
rename to bookwyrm/templates/feed/feed_layout.html
index 1368660b..33123ca8 100644
--- a/bookwyrm/templates/feed.html
+++ b/bookwyrm/templates/feed/feed_layout.html
@@ -3,6 +3,7 @@
 {% block content %}
 
 <div class="columns">
+    {% if user.is_authenticated %}
     <div class="column is-one-third">
         <h2 class="title is-5">Your books</h2>
         {% if not suggested_books %}
@@ -69,43 +70,15 @@
         </section>
         {% endif %}
     </div>
+    {% endif %}
 
     <div class="column is-two-thirds" id="feed">
-        <h1 class="title">{{ tab | title }} Timeline</h1>
-        <div class="tabs">
-            <ul>
-                <li class="{% if tab == 'home' %}is-active{% endif %}">
-                    <a href="/#feed">Home</a>
-                </li>
-                <li class="{% if tab == 'local' %}is-active{% endif %}">
-                    <a href="/local#feed">Local</a>
-                </li>
-                <li class="{% if tab == 'federated' %}is-active{% endif %}">
-                    <a href="/federated#feed">Federated</a>
-                </li>
-            </ul>
-        </div>
-
-        {# announcements and system messages #}
-        {% if not goal and tab == 'home' %}
-        {% now 'Y' as year %}
-        <section class="block hidden" aria-title="Announcements" data-hide="hide-{{ year }}-reading-goal">
-            {% include 'snippets/goal_card.html' with year=year %}
-            <hr>
-        </section>
-        {% endif %}
-
-        {# activity feed #}
-        {% if not activities %}
-        <p>There aren't any activities right now! Try following a user to get started</p>
-        {% endif %}
-        {% for activity in activities %}
-        <div class="block">
-        {% include 'snippets/status.html' with status=activity %}
-        </div>
-        {% endfor %}
+        {% block panel %}{% endblock %}
 
+        {% if activities %}
         {% include 'snippets/pagination.html' with page=activities path='/'|add:tab anchor="#feed" %}
+        {% endif %}
     </div>
 </div>
 {% endblock %}
+
diff --git a/bookwyrm/templates/feed/status.html b/bookwyrm/templates/feed/status.html
new file mode 100644
index 00000000..eb848993
--- /dev/null
+++ b/bookwyrm/templates/feed/status.html
@@ -0,0 +1,13 @@
+{% extends 'feed/feed_layout.html' %}
+{% block panel %}
+<header class="block">
+    <a href="/#feed" class="button" data-back>
+        <span class="icon icon-arrow-left" aira-hidden="true"></span>
+        <span>Back</span>
+    </a>
+</header>
+
+{% include 'feed/thread.html' with status=status depth=0 max_depth=6 is_root=True direction=0 %}
+
+{% endblock %}
+
diff --git a/bookwyrm/templates/snippets/thread.html b/bookwyrm/templates/feed/thread.html
similarity index 100%
rename from bookwyrm/templates/snippets/thread.html
rename to bookwyrm/templates/feed/thread.html
diff --git a/bookwyrm/templates/status.html b/bookwyrm/templates/status.html
deleted file mode 100644
index d38ed89e..00000000
--- a/bookwyrm/templates/status.html
+++ /dev/null
@@ -1,9 +0,0 @@
-{% extends 'layout.html' %}
-{% block content %}
-
-<div class="block">
-    {% include 'snippets/thread.html' with status=status depth=0 max_depth=6 is_root=True direction=0 %}
-</div>
-
-{% endblock %}
-
diff --git a/bookwyrm/urls.py b/bookwyrm/urls.py
index e3b792ff..d232747f 100644
--- a/bookwyrm/urls.py
+++ b/bookwyrm/urls.py
@@ -56,9 +56,11 @@ urlpatterns = [
     # landing pages
     re_path(r'^about/?$', views.About.as_view()),
     path('', views.Home.as_view()),
-    re_path(r'^(?P<tab>home|local|federated)/?$', views.Feed.as_view()),
     re_path(r'^discover/?$', views.Discover.as_view()),
     re_path(r'^notifications/?$', views.Notifications.as_view()),
+
+    # feeds
+    re_path(r'^(?P<tab>home|local|federated)/?$', views.Feed.as_view()),
     re_path(r'^direct-messages/?$', views.DirectMessage.as_view()),
 
     # search
diff --git a/bookwyrm/views/__init__.py b/bookwyrm/views/__init__.py
index 36a4bed9..80520eb3 100644
--- a/bookwyrm/views/__init__.py
+++ b/bookwyrm/views/__init__.py
@@ -4,15 +4,15 @@ from .author import Author, EditAuthor
 from .block import Block, unblock
 from .books import Book, EditBook, Editions
 from .books import upload_cover, add_description, switch_edition, resolve_book
-from .direct_message import DirectMessage
 from .error import not_found_page, server_error_page
+from .feed import DirectMessage, Feed, Replies, Status
 from .follow import follow, unfollow
 from .follow import accept_follow_request, delete_follow_request, handle_accept
 from .goal import Goal
 from .import_data import Import, ImportStatus
 from .interaction import Favorite, Unfavorite, Boost, Unboost
 from .invite import ManageInvites, Invite
-from .landing import About, Home, Feed, Discover
+from .landing import About, Home, Discover
 from .notifications import Notifications
 from .outbox import Outbox
 from .reading import edit_readthrough, create_readthrough, delete_readthrough
@@ -24,6 +24,6 @@ from .search import Search
 from .shelf import Shelf
 from .shelf import user_shelves_page, create_shelf, delete_shelf
 from .shelf import shelve, unshelve
-from .status import Status, Replies, CreateStatus, DeleteStatus
+from .status import CreateStatus, DeleteStatus
 from .updates import Updates
 from .user import User, EditUser, Followers, Following
diff --git a/bookwyrm/views/direct_message.py b/bookwyrm/views/direct_message.py
deleted file mode 100644
index 1f6c4f19..00000000
--- a/bookwyrm/views/direct_message.py
+++ /dev/null
@@ -1,26 +0,0 @@
-''' non-interactive pages '''
-from django.contrib.auth.decorators import login_required
-from django.core.paginator import Paginator
-from django.template.response import TemplateResponse
-from django.utils.decorators import method_decorator
-from django.views import View
-
-from bookwyrm.settings import PAGE_LENGTH
-from .helpers import get_activity_feed
-
-
-# pylint: disable= no-self-use
-@method_decorator(login_required, name='dispatch')
-class DirectMessage(View):
-    ''' dm view '''
-    def get(self, request, page=1):
-        ''' like a feed but for dms only '''
-        activities = get_activity_feed(request.user, 'direct')
-        paginated = Paginator(activities, PAGE_LENGTH)
-        activity_page = paginated.page(page)
-        data = {
-            'title': 'Direct Messages',
-            'user': request.user,
-            'activities': activity_page,
-        }
-        return TemplateResponse(request, 'direct_messages.html', data)
diff --git a/bookwyrm/views/feed.py b/bookwyrm/views/feed.py
new file mode 100644
index 00000000..931cf355
--- /dev/null
+++ b/bookwyrm/views/feed.py
@@ -0,0 +1,156 @@
+''' non-interactive pages '''
+from django.contrib.auth.decorators import login_required
+from django.core.paginator import Paginator
+from django.http import HttpResponseNotFound
+from django.template.response import TemplateResponse
+from django.utils import timezone
+from django.utils.decorators import method_decorator
+from django.views import View
+
+from bookwyrm import forms, models
+from bookwyrm.activitypub import ActivitypubResponse
+from bookwyrm.settings import PAGE_LENGTH
+from .helpers import get_activity_feed
+from .helpers import get_user_from_username
+from .helpers import is_api_request, is_bookworm_request, object_visible_to_user
+
+
+# pylint: disable= no-self-use
+@method_decorator(login_required, name='dispatch')
+class Feed(View):
+    ''' activity stream '''
+    def get(self, request, tab):
+        ''' user's homepage with activity feed '''
+        try:
+            page = int(request.GET.get('page', 1))
+        except ValueError:
+            page = 1
+
+        if tab == 'home':
+            activities = get_activity_feed(
+                request.user, ['public', 'unlisted', 'followers'],
+                following_only=True)
+        elif tab == 'local':
+            activities = get_activity_feed(
+                request.user, ['public', 'followers'], local_only=True)
+        else:
+            activities = get_activity_feed(
+                request.user, ['public', 'followers'])
+        paginated = Paginator(activities, PAGE_LENGTH)
+
+        data = {**feed_page_data(request.user), **{
+            'title': 'Updates Feed',
+            'user': request.user,
+            'activities': paginated.page(page),
+            'tab': tab,
+            'goal_form': forms.GoalForm(),
+        }}
+        return TemplateResponse(request, 'feed/feed.html', data)
+
+
+@method_decorator(login_required, name='dispatch')
+class DirectMessage(View):
+    ''' dm view '''
+    def get(self, request):
+        ''' like a feed but for dms only '''
+        try:
+            page = int(request.GET.get('page', 1))
+        except ValueError:
+            page = 1
+
+        activities = get_activity_feed(request.user, 'direct')
+        paginated = Paginator(activities, PAGE_LENGTH)
+        activity_page = paginated.page(page)
+        data = {**feed_page_data(request.user), **{
+            'title': 'Direct Messages',
+            'user': request.user,
+            'activities': activity_page,
+        }}
+        return TemplateResponse(request, 'feed/direct_messages.html', data)
+
+
+class Status(View):
+    ''' get posting '''
+    def get(self, request, username, status_id):
+        ''' display a particular status (and replies, etc) '''
+        try:
+            user = get_user_from_username(username)
+            status = models.Status.objects.select_subclasses().get(
+                id=status_id, deleted=False)
+        except ValueError:
+            return HttpResponseNotFound()
+
+        # the url should have the poster's username in it
+        if user != status.user:
+            return HttpResponseNotFound()
+
+        # make sure the user is authorized to see the status
+        if not object_visible_to_user(request.user, status):
+            return HttpResponseNotFound()
+
+        if is_api_request(request):
+            return ActivitypubResponse(
+                status.to_activity(pure=not is_bookworm_request(request)))
+
+        data = {**feed_page_data(request.user), **{
+            'title': 'Status by %s' % user.username,
+            'status': status,
+        }}
+        return TemplateResponse(request, 'feed/status.html', data)
+
+
+class Replies(View):
+    ''' replies page (a json view of status) '''
+    def get(self, request, username, status_id):
+        ''' ordered collection of replies to a status '''
+        # the html view is the same as Status
+        if not is_api_request(request):
+            status_view = Status.as_view()
+            return status_view(request, username, status_id)
+
+        # the json view is different than Status
+        status = models.Status.objects.get(id=status_id)
+        if status.user.localname != username:
+            return HttpResponseNotFound()
+
+        return ActivitypubResponse(status.to_replies(**request.GET))
+
+
+def feed_page_data(user):
+    ''' info we need for every feed page '''
+    if not user.is_authenticated:
+        return {}
+
+    goal = models.AnnualGoal.objects.filter(
+        user=user, year=timezone.now().year
+    ).first()
+    return {
+        'suggested_books': get_suggested_books(user),
+        'goal': goal,
+        'goal_form': forms.GoalForm(),
+    }
+
+def get_suggested_books(user, max_books=5):
+    ''' helper to get a user's recent books '''
+    book_count = 0
+    preset_shelves = [
+        ('reading', max_books), ('read', 2), ('to-read', max_books)
+    ]
+    suggested_books = []
+    for (preset, shelf_max) in preset_shelves:
+        limit = shelf_max if shelf_max < (max_books - book_count) \
+                else max_books - book_count
+        shelf = user.shelf_set.get(identifier=preset)
+
+        shelf_books = shelf.shelfbook_set.order_by(
+            '-updated_date'
+        ).all()[:limit]
+        if not shelf_books:
+            continue
+        shelf_preview = {
+            'name': shelf.name,
+            'books': [s.book for s in shelf_books]
+        }
+        suggested_books.append(shelf_preview)
+        book_count += len(shelf_preview['books'])
+    return suggested_books
diff --git a/bookwyrm/views/landing.py b/bookwyrm/views/landing.py
index ec6cb3a9..0d841ef0 100644
--- a/bookwyrm/views/landing.py
+++ b/bookwyrm/views/landing.py
@@ -1,14 +1,10 @@
 ''' non-interactive pages '''
-from django.contrib.auth.decorators import login_required
-from django.core.paginator import Paginator
 from django.db.models import Avg, Max
 from django.template.response import TemplateResponse
-from django.utils import timezone
-from django.utils.decorators import method_decorator
 from django.views import View
 
 from bookwyrm import forms, models
-from bookwyrm.settings import PAGE_LENGTH
+from .feed import Feed
 from .helpers import get_activity_feed
 
 
@@ -61,68 +57,3 @@ class Discover(View):
             'ratings': ratings
         }
         return TemplateResponse(request, 'discover.html', data)
-
-
-@method_decorator(login_required, name='dispatch')
-class Feed(View):
-    ''' activity stream '''
-    def get(self, request, tab):
-        ''' user's homepage with activity feed '''
-        try:
-            page = int(request.GET.get('page', 1))
-        except ValueError:
-            page = 1
-
-        suggested_books = get_suggested_books(request.user)
-
-        if tab == 'home':
-            activities = get_activity_feed(
-                request.user, ['public', 'unlisted', 'followers'],
-                following_only=True)
-        elif tab == 'local':
-            activities = get_activity_feed(
-                request.user, ['public', 'followers'], local_only=True)
-        else:
-            activities = get_activity_feed(
-                request.user, ['public', 'followers'])
-        paginated = Paginator(activities, PAGE_LENGTH)
-
-        goal = models.AnnualGoal.objects.filter(
-            user=request.user, year=timezone.now().year
-        ).first()
-        data = {
-            'title': 'Updates Feed',
-            'user': request.user,
-            'suggested_books': suggested_books,
-            'activities': paginated.page(page),
-            'tab': tab,
-            'goal': goal,
-            'goal_form': forms.GoalForm(),
-        }
-        return TemplateResponse(request, 'feed.html', data)
-
-
-def get_suggested_books(user, max_books=5):
-    ''' helper to get a user's recent books '''
-    book_count = 0
-    preset_shelves = [
-        ('reading', max_books), ('read', 2), ('to-read', max_books)
-    ]
-    suggested_books = []
-    for (preset, shelf_max) in preset_shelves:
-        limit = shelf_max if shelf_max < (max_books - book_count) \
-                else max_books - book_count
-        shelf = user.shelf_set.get(identifier=preset)
-
-        shelf_books = shelf.shelfbook_set.order_by(
-            '-updated_date'
-        ).all()[:limit]
-        if not shelf_books:
-            continue
-        shelf_preview = {
-            'name': shelf.name,
-            'books': [s.book for s in shelf_books]
-        }
-        suggested_books.append(shelf_preview)
-        book_count += len(shelf_preview['books'])
-    return suggested_books
diff --git a/bookwyrm/views/status.py b/bookwyrm/views/status.py
index 834cf583..4d342bfb 100644
--- a/bookwyrm/views/status.py
+++ b/bookwyrm/views/status.py
@@ -1,55 +1,22 @@
 ''' what are we here for if not for posting '''
 import re
 from django.contrib.auth.decorators import login_required
-from django.http import HttpResponseBadRequest, HttpResponseNotFound
+from django.http import HttpResponseBadRequest
 from django.shortcuts import get_object_or_404, redirect
-from django.template.response import TemplateResponse
 from django.utils.decorators import method_decorator
 from django.views import View
 from markdown import markdown
 
 from bookwyrm import forms, models
-from bookwyrm.activitypub import ActivitypubResponse
 from bookwyrm.broadcast import broadcast
 from bookwyrm.sanitize_html import InputHtmlParser
 from bookwyrm.settings import DOMAIN
 from bookwyrm.status import create_notification, delete_status
 from bookwyrm.utils import regex
-from .helpers import get_user_from_username, handle_remote_webfinger
-from .helpers import is_api_request, is_bookworm_request, object_visible_to_user
+from .helpers import handle_remote_webfinger
 
 
 # pylint: disable= no-self-use
-class Status(View):
-    ''' get posting '''
-    def get(self, request, username, status_id):
-        ''' display a particular status (and replies, etc) '''
-        try:
-            user = get_user_from_username(username)
-            status = models.Status.objects.select_subclasses().get(
-                id=status_id, deleted=False)
-        except ValueError:
-            return HttpResponseNotFound()
-
-        # the url should have the poster's username in it
-        if user != status.user:
-            return HttpResponseNotFound()
-
-        # make sure the user is authorized to see the status
-        if not object_visible_to_user(request.user, status):
-            return HttpResponseNotFound()
-
-        if is_api_request(request):
-            return ActivitypubResponse(
-                status.to_activity(pure=not is_bookworm_request(request)))
-
-        data = {
-            'title': 'Status by %s' % user.username,
-            'status': status,
-        }
-        return TemplateResponse(request, 'status.html', data)
-
-
 @method_decorator(login_required, name='dispatch')
 class CreateStatus(View):
     ''' the view for *posting* '''
@@ -144,23 +111,6 @@ class DeleteStatus(View):
         broadcast(request.user, status.to_delete_activity(request.user))
         return redirect(request.headers.get('Referer', '/'))
 
-
-class Replies(View):
-    ''' replies page (a json view of status) '''
-    def get(self, request, username, status_id):
-        ''' ordered collection of replies to a status '''
-        # the html view is the same as Status
-        if not is_api_request(request):
-            status_view = Status.as_view()
-            return status_view(request, username, status_id)
-
-        # the json view is different than Status
-        status = models.Status.objects.get(id=status_id)
-        if status.user.localname != username:
-            return HttpResponseNotFound()
-
-        return ActivitypubResponse(status.to_replies(**request.GET))
-
 def find_mentions(content):
     ''' detect @mentions in raw status content '''
     for match in re.finditer(regex.strict_username, content):

From cc5fedb1d104aa32d929b2c32beb42cec3d88e58 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 29 Jan 2021 10:29:21 -0800
Subject: [PATCH 032/280] Fixes template paths in views

---
 bookwyrm/tests/views/test_block.py          | 2 +-
 bookwyrm/tests/views/test_direct_message.py | 2 +-
 bookwyrm/tests/views/test_landing.py        | 4 ++--
 bookwyrm/tests/views/test_status.py         | 4 ++--
 4 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/bookwyrm/tests/views/test_block.py b/bookwyrm/tests/views/test_block.py
index fa5254d1..f3a0c2f8 100644
--- a/bookwyrm/tests/views/test_block.py
+++ b/bookwyrm/tests/views/test_block.py
@@ -32,7 +32,7 @@ class BlockViews(TestCase):
         request.user = self.local_user
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'blocks.html')
+        self.assertEqual(result.template_name, 'preferences/blocks.html')
         self.assertEqual(result.status_code, 200)
 
     def test_block_post(self):
diff --git a/bookwyrm/tests/views/test_direct_message.py b/bookwyrm/tests/views/test_direct_message.py
index 48820c75..0207ece0 100644
--- a/bookwyrm/tests/views/test_direct_message.py
+++ b/bookwyrm/tests/views/test_direct_message.py
@@ -24,5 +24,5 @@ class DirectMessageViews(TestCase):
         request.user = self.local_user
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'direct_messages.html')
+        self.assertEqual(result.template_name, 'feed/direct_messages.html')
         self.assertEqual(result.status_code, 200)
diff --git a/bookwyrm/tests/views/test_landing.py b/bookwyrm/tests/views/test_landing.py
index 5596b4f3..f1429e5a 100644
--- a/bookwyrm/tests/views/test_landing.py
+++ b/bookwyrm/tests/views/test_landing.py
@@ -31,7 +31,7 @@ class LandingViews(TestCase):
         request.user = self.local_user
         result = view(request)
         self.assertEqual(result.status_code, 200)
-        self.assertEqual(result.template_name, 'feed.html')
+        self.assertEqual(result.template_name, 'feed/feed.html')
 
         request.user = self.anonymous_user
         result = view(request)
@@ -58,7 +58,7 @@ class LandingViews(TestCase):
         request.user = self.local_user
         result = view(request, 'local')
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'feed.html')
+        self.assertEqual(result.template_name, 'feed/feed.html')
         self.assertEqual(result.status_code, 200)
 
 
diff --git a/bookwyrm/tests/views/test_status.py b/bookwyrm/tests/views/test_status.py
index 50c458ac..b60feaa8 100644
--- a/bookwyrm/tests/views/test_status.py
+++ b/bookwyrm/tests/views/test_status.py
@@ -47,7 +47,7 @@ class StatusViews(TestCase):
             is_api.return_value = False
             result = view(request, 'mouse', status.id)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'status.html')
+        self.assertEqual(result.template_name, 'feed/status.html')
         self.assertEqual(result.status_code, 200)
 
         with patch('bookwyrm.views.status.is_api_request') as is_api:
@@ -68,7 +68,7 @@ class StatusViews(TestCase):
             is_api.return_value = False
             result = view(request, 'mouse', status.id)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'status.html')
+        self.assertEqual(result.template_name, 'feed/status.html')
         self.assertEqual(result.status_code, 200)
 
         with patch('bookwyrm.views.status.is_api_request') as is_api:

From bae54b6847d67e8972c052a960b72d962f07a5c0 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 29 Jan 2021 10:31:55 -0800
Subject: [PATCH 033/280] Shuffles tests around for feed views

---
 bookwyrm/tests/views/test_direct_message.py | 28 ---------------------
 bookwyrm/tests/views/test_landing.py        | 27 --------------------
 2 files changed, 55 deletions(-)
 delete mode 100644 bookwyrm/tests/views/test_direct_message.py

diff --git a/bookwyrm/tests/views/test_direct_message.py b/bookwyrm/tests/views/test_direct_message.py
deleted file mode 100644
index 0207ece0..00000000
--- a/bookwyrm/tests/views/test_direct_message.py
+++ /dev/null
@@ -1,28 +0,0 @@
-''' test for app action functionality '''
-from django.template.response import TemplateResponse
-from django.test import TestCase
-from django.test.client import RequestFactory
-
-from bookwyrm import models
-from bookwyrm import views
-
-
-class DirectMessageViews(TestCase):
-    ''' dms '''
-    def setUp(self):
-        ''' we need basic test data and mocks '''
-        self.factory = RequestFactory()
-        self.local_user = models.User.objects.create_user(
-            'mouse@local.com', 'mouse@mouse.mouse', 'password',
-            local=True, localname='mouse')
-
-
-    def test_direct_messages_page(self):
-        ''' there are so many views, this just makes sure it LOADS '''
-        view = views.DirectMessage.as_view()
-        request = self.factory.get('')
-        request.user = self.local_user
-        result = view(request)
-        self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'feed/direct_messages.html')
-        self.assertEqual(result.status_code, 200)
diff --git a/bookwyrm/tests/views/test_landing.py b/bookwyrm/tests/views/test_landing.py
index f1429e5a..8576af49 100644
--- a/bookwyrm/tests/views/test_landing.py
+++ b/bookwyrm/tests/views/test_landing.py
@@ -18,10 +18,6 @@ class LandingViews(TestCase):
             local=True, localname='mouse')
         self.anonymous_user = AnonymousUser
         self.anonymous_user.is_authenticated = False
-        self.book = models.Edition.objects.create(
-            title='Example Edition',
-            remote_id='https://example.com/book/1',
-        )
 
 
     def test_home_page(self):
@@ -51,17 +47,6 @@ class LandingViews(TestCase):
         self.assertEqual(result.status_code, 200)
 
 
-    def test_feed(self):
-        ''' there are so many views, this just makes sure it LOADS '''
-        view = views.Feed.as_view()
-        request = self.factory.get('')
-        request.user = self.local_user
-        result = view(request, 'local')
-        self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'feed/feed.html')
-        self.assertEqual(result.status_code, 200)
-
-
     def test_discover(self):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.Discover.as_view()
@@ -70,15 +55,3 @@ class LandingViews(TestCase):
         self.assertIsInstance(result, TemplateResponse)
         self.assertEqual(result.template_name, 'discover.html')
         self.assertEqual(result.status_code, 200)
-
-
-    def test_get_suggested_book(self):
-        ''' gets books the ~*~ algorithm ~*~ thinks you want to post about '''
-        models.ShelfBook.objects.create(
-            book=self.book,
-            added_by=self.local_user,
-            shelf=self.local_user.shelf_set.get(identifier='reading')
-        )
-        suggestions = views.landing.get_suggested_books(self.local_user)
-        self.assertEqual(suggestions[0]['name'], 'Currently Reading')
-        self.assertEqual(suggestions[0]['books'][0], self.book)

From 640db7e9e31857280c74ddee6834d6fe95b15c9e Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 29 Jan 2021 10:44:21 -0800
Subject: [PATCH 034/280] Fixes more tests for moved-around views

---
 bookwyrm/tests/views/test_feed.py     | 99 +++++++++++++++++++++++++++
 bookwyrm/tests/views/test_password.py |  2 +-
 bookwyrm/tests/views/test_status.py   | 42 ------------
 3 files changed, 100 insertions(+), 43 deletions(-)
 create mode 100644 bookwyrm/tests/views/test_feed.py

diff --git a/bookwyrm/tests/views/test_feed.py b/bookwyrm/tests/views/test_feed.py
new file mode 100644
index 00000000..da597a7c
--- /dev/null
+++ b/bookwyrm/tests/views/test_feed.py
@@ -0,0 +1,99 @@
+''' test for app action functionality '''
+from unittest.mock import patch
+from django.template.response import TemplateResponse
+from django.test import TestCase
+from django.test.client import RequestFactory
+
+from bookwyrm import models
+from bookwyrm import views
+from bookwyrm.activitypub import ActivitypubResponse
+
+
+class FeedMessageViews(TestCase):
+    ''' dms '''
+    def setUp(self):
+        ''' we need basic test data and mocks '''
+        self.factory = RequestFactory()
+        self.local_user = models.User.objects.create_user(
+            'mouse@local.com', 'mouse@mouse.mouse', 'password',
+            local=True, localname='mouse')
+        self.book = models.Edition.objects.create(
+            title='Example Edition',
+            remote_id='https://example.com/book/1',
+        )
+
+
+    def test_feed(self):
+        ''' there are so many views, this just makes sure it LOADS '''
+        view = views.Feed.as_view()
+        request = self.factory.get('')
+        request.user = self.local_user
+        result = view(request, 'local')
+        self.assertIsInstance(result, TemplateResponse)
+        self.assertEqual(result.template_name, 'feed/feed.html')
+        self.assertEqual(result.status_code, 200)
+
+
+    def test_status_page(self):
+        ''' there are so many views, this just makes sure it LOADS '''
+        view = views.Status.as_view()
+        status = models.Status.objects.create(
+            content='hi', user=self.local_user)
+        request = self.factory.get('')
+        request.user = self.local_user
+        with patch('bookwyrm.views.feed.is_api_request') as is_api:
+            is_api.return_value = False
+            result = view(request, 'mouse', status.id)
+        self.assertIsInstance(result, TemplateResponse)
+        self.assertEqual(result.template_name, 'feed/status.html')
+        self.assertEqual(result.status_code, 200)
+
+        with patch('bookwyrm.views.feed.is_api_request') as is_api:
+            is_api.return_value = True
+            result = view(request, 'mouse', status.id)
+        self.assertIsInstance(result, ActivitypubResponse)
+        self.assertEqual(result.status_code, 200)
+
+
+    def test_replies_page(self):
+        ''' there are so many views, this just makes sure it LOADS '''
+        view = views.Replies.as_view()
+        status = models.Status.objects.create(
+            content='hi', user=self.local_user)
+        request = self.factory.get('')
+        request.user = self.local_user
+        with patch('bookwyrm.views.feed.is_api_request') as is_api:
+            is_api.return_value = False
+            result = view(request, 'mouse', status.id)
+        self.assertIsInstance(result, TemplateResponse)
+        self.assertEqual(result.template_name, 'feed/status.html')
+        self.assertEqual(result.status_code, 200)
+
+        with patch('bookwyrm.views.feed.is_api_request') as is_api:
+            is_api.return_value = True
+            result = view(request, 'mouse', status.id)
+        self.assertIsInstance(result, ActivitypubResponse)
+        self.assertEqual(result.status_code, 200)
+
+
+    def test_direct_messages_page(self):
+        ''' there are so many views, this just makes sure it LOADS '''
+        view = views.DirectMessage.as_view()
+        request = self.factory.get('')
+        request.user = self.local_user
+        result = view(request)
+        self.assertIsInstance(result, TemplateResponse)
+        self.assertEqual(result.template_name, 'feed/direct_messages.html')
+        self.assertEqual(result.status_code, 200)
+
+
+    def test_get_suggested_book(self):
+        ''' gets books the ~*~ algorithm ~*~ thinks you want to post about '''
+        models.ShelfBook.objects.create(
+            book=self.book,
+            added_by=self.local_user,
+            shelf=self.local_user.shelf_set.get(identifier='reading')
+        )
+        suggestions = views.feed.get_suggested_books(self.local_user)
+        self.assertEqual(suggestions[0]['name'], 'Currently Reading')
+        self.assertEqual(suggestions[0]['books'][0], self.book)
diff --git a/bookwyrm/tests/views/test_password.py b/bookwyrm/tests/views/test_password.py
index 0f9c8988..8cac2b13 100644
--- a/bookwyrm/tests/views/test_password.py
+++ b/bookwyrm/tests/views/test_password.py
@@ -106,7 +106,7 @@ class PasswordViews(TestCase):
 
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'change_password.html')
+        self.assertEqual(result.template_name, 'preferences/change_password.html')
         self.assertEqual(result.status_code, 200)
 
 
diff --git a/bookwyrm/tests/views/test_status.py b/bookwyrm/tests/views/test_status.py
index b60feaa8..3be81c48 100644
--- a/bookwyrm/tests/views/test_status.py
+++ b/bookwyrm/tests/views/test_status.py
@@ -36,48 +36,6 @@ class StatusViews(TestCase):
         )
 
 
-    def test_status_page(self):
-        ''' there are so many views, this just makes sure it LOADS '''
-        view = views.Status.as_view()
-        status = models.Status.objects.create(
-            content='hi', user=self.local_user)
-        request = self.factory.get('')
-        request.user = self.local_user
-        with patch('bookwyrm.views.status.is_api_request') as is_api:
-            is_api.return_value = False
-            result = view(request, 'mouse', status.id)
-        self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'feed/status.html')
-        self.assertEqual(result.status_code, 200)
-
-        with patch('bookwyrm.views.status.is_api_request') as is_api:
-            is_api.return_value = True
-            result = view(request, 'mouse', status.id)
-        self.assertIsInstance(result, ActivitypubResponse)
-        self.assertEqual(result.status_code, 200)
-
-
-    def test_replies_page(self):
-        ''' there are so many views, this just makes sure it LOADS '''
-        view = views.Replies.as_view()
-        status = models.Status.objects.create(
-            content='hi', user=self.local_user)
-        request = self.factory.get('')
-        request.user = self.local_user
-        with patch('bookwyrm.views.status.is_api_request') as is_api:
-            is_api.return_value = False
-            result = view(request, 'mouse', status.id)
-        self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'feed/status.html')
-        self.assertEqual(result.status_code, 200)
-
-        with patch('bookwyrm.views.status.is_api_request') as is_api:
-            is_api.return_value = True
-            result = view(request, 'mouse', status.id)
-        self.assertIsInstance(result, ActivitypubResponse)
-        self.assertEqual(result.status_code, 200)
-
-
     def test_handle_status(self):
         ''' create a status '''
         view = views.CreateStatus.as_view()

From 779a5e0cbf09d568a33da27f05d7bd9e7d599295 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 29 Jan 2021 11:14:18 -0800
Subject: [PATCH 035/280] Compose window for dms

---
 bookwyrm/forms.py                             |  6 +++++
 bookwyrm/templates/feed/direct_messages.html  | 22 ++++++++++++-------
 bookwyrm/templates/feed/feed_layout.html      |  2 +-
 .../snippets/create_status_form.html          | 11 +++++++---
 bookwyrm/views/feed.py                        |  2 ++
 5 files changed, 31 insertions(+), 12 deletions(-)

diff --git a/bookwyrm/forms.py b/bookwyrm/forms.py
index 0e3ac9c1..e92bc180 100644
--- a/bookwyrm/forms.py
+++ b/bookwyrm/forms.py
@@ -92,6 +92,12 @@ class ReplyForm(CustomForm):
             'user', 'content', 'content_warning', 'sensitive',
             'reply_parent', 'privacy']
 
+class StatusForm(CustomForm):
+    class Meta:
+        model = models.Status
+        fields = [
+            'user', 'content', 'content_warning', 'sensitive', 'privacy']
+
 
 class EditUserForm(CustomForm):
     class Meta:
diff --git a/bookwyrm/templates/feed/direct_messages.html b/bookwyrm/templates/feed/direct_messages.html
index 44a0cded..1f41808f 100644
--- a/bookwyrm/templates/feed/direct_messages.html
+++ b/bookwyrm/templates/feed/direct_messages.html
@@ -4,16 +4,22 @@
 <div class="block">
     <h1 class="title">Direct Messages</h1>
 
-    {% if not activities %}
-    <p>You have no messages right now.</p>
-    {% endif %}
-    {% for activity in activities %}
-    <div class="block">
-    {% include 'snippets/status.html' with status=activity %}
+    <div class="box">
+        {% include 'snippets/create_status_form.html' with type="direct" uuid=1 %}
     </div>
-    {% endfor %}
 
-    {% include 'snippets/pagination.html' with page=activities path="direct-messages" %}
+    <section class="block">
+        {% if not activities %}
+        <p>You have no messages right now.</p>
+        {% endif %}
+        {% for activity in activities %}
+        <div class="block">
+        {% include 'snippets/status.html' with status=activity %}
+        </div>
+        {% endfor %}
+
+        {% include 'snippets/pagination.html' with page=activities path="direct-messages" %}
+    </section>
 </div>
 
 {% endblock %}
diff --git a/bookwyrm/templates/feed/feed_layout.html b/bookwyrm/templates/feed/feed_layout.html
index 33123ca8..f0c7b057 100644
--- a/bookwyrm/templates/feed/feed_layout.html
+++ b/bookwyrm/templates/feed/feed_layout.html
@@ -76,7 +76,7 @@
         {% block panel %}{% endblock %}
 
         {% if activities %}
-        {% include 'snippets/pagination.html' with page=activities path='/'|add:tab anchor="#feed" %}
+        {% include 'snippets/pagination.html' with page=activities path=path anchor="#feed" %}
         {% endif %}
     </div>
 </div>
diff --git a/bookwyrm/templates/snippets/create_status_form.html b/bookwyrm/templates/snippets/create_status_form.html
index 0c2ebbee..534ace29 100644
--- a/bookwyrm/templates/snippets/create_status_form.html
+++ b/bookwyrm/templates/snippets/create_status_form.html
@@ -1,5 +1,5 @@
 {% load bookwyrm_tags %}
-<form class="is-flex-grow-1" name="{{ type }}" action="/post/{{ type }}" method="post" id="tab-{{ type }}-{{ book.id }}{{ reply_parent.id }}">
+<form class="is-flex-grow-1" name="{{ type }}" action="/post/{% if type == 'direct' %}status{% else %}{{ type }}{% endif %}" method="post" id="tab-{{ type }}-{{ book.id }}{{ reply_parent.id }}">
     {% csrf_token %}
     <input type="hidden" name="book" value="{{ book.id }}">
     <input type="hidden" name="user" value="{{ request.user.id }}">
@@ -11,7 +11,7 @@
     </div>
     {% endif %}
     <div class="control">
-        {% if not type == 'reply' %}
+        {% if type != 'reply' and type != 'direct'  %}
         <label class="label" for="id_{% if type == 'quotation' %}quote{% else %}content{% endif %}_{{ book.id }}_{{ type }}">{{ type|title }}:</label>
         {% endif %}
 
@@ -53,7 +53,12 @@
                 {% include 'snippets/toggle/toggle_button.html' with text="Include spoiler alert" icon="warning is-size-4" controls_text="spoilers" controls_uid=uuid focus="id_content_warning" checkbox="id_show_spoilers" class="toggle-button" pressed=status.content_warning %}
             </div>
             <div class="control">
-                {% include 'snippets/privacy_select.html' with current=reply_parent.privacy%}
+            {% if type == 'direct' %}
+                <input type="hidden" name="privacy" value="direct">
+                <button type="button" class="button" aria-label="Privacy" disabled>Private</button>
+            {% else %}
+                {% include 'snippets/privacy_select.html' with current=reply_parent.privacy %}
+            {% endif %}
             </div>
         </div>
         <div class="column is-narrow">
diff --git a/bookwyrm/views/feed.py b/bookwyrm/views/feed.py
index 931cf355..08a5e057 100644
--- a/bookwyrm/views/feed.py
+++ b/bookwyrm/views/feed.py
@@ -44,6 +44,7 @@ class Feed(View):
             'activities': paginated.page(page),
             'tab': tab,
             'goal_form': forms.GoalForm(),
+            'path': '/%s' % tab,
         }}
         return TemplateResponse(request, 'feed/feed.html', data)
 
@@ -65,6 +66,7 @@ class DirectMessage(View):
             'title': 'Direct Messages',
             'user': request.user,
             'activities': activity_page,
+            'path': '/direct-messages',
         }}
         return TemplateResponse(request, 'feed/direct_messages.html', data)
 

From 93ef9e31adb6bf2e8dbaf031b68255583c9664cb Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 29 Jan 2021 11:44:04 -0800
Subject: [PATCH 036/280] Send message to a particular user

---
 bookwyrm/templates/feed/direct_messages.html  | 37 ++++++++++---------
 .../snippets/create_status_form.html          |  2 +-
 .../templates/snippets/status_options.html    |  3 ++
 bookwyrm/templates/snippets/user_options.html |  3 ++
 bookwyrm/templates/user/user_layout.html      |  2 +-
 bookwyrm/urls.py                              |  2 +
 bookwyrm/views/feed.py                        | 19 +++++++++-
 7 files changed, 46 insertions(+), 22 deletions(-)

diff --git a/bookwyrm/templates/feed/direct_messages.html b/bookwyrm/templates/feed/direct_messages.html
index 1f41808f..8c53cbeb 100644
--- a/bookwyrm/templates/feed/direct_messages.html
+++ b/bookwyrm/templates/feed/direct_messages.html
@@ -1,25 +1,26 @@
 {% extends 'feed/feed_layout.html' %}
 {% block panel %}
 
-<div class="block">
-    <h1 class="title">Direct Messages</h1>
+<header class="block">
+    <h1 class="title">Direct Messages{% if partner %} with {% include 'snippets/username.html' with user=partner %}{% endif %}</h1>
+    {% if partner %}<p class="subtitle"><a href="/direct-messages"><span class="icon icon-arrow-left" aria-hidden="true"></span> All messages</a></p>{% endif %}
+</header>
 
-    <div class="box">
-        {% include 'snippets/create_status_form.html' with type="direct" uuid=1 %}
-    </div>
-
-    <section class="block">
-        {% if not activities %}
-        <p>You have no messages right now.</p>
-        {% endif %}
-        {% for activity in activities %}
-        <div class="block">
-        {% include 'snippets/status.html' with status=activity %}
-        </div>
-        {% endfor %}
-
-        {% include 'snippets/pagination.html' with page=activities path="direct-messages" %}
-    </section>
+<div class="box">
+    {% include 'snippets/create_status_form.html' with type="direct" uuid=1 mentions=partner %}
 </div>
 
+<section class="block">
+    {% if not activities %}
+    <p>You have no messages right now.</p>
+    {% endif %}
+    {% for activity in activities %}
+    <div class="block">
+    {% include 'snippets/status.html' with status=activity %}
+    </div>
+    {% endfor %}
+
+    {% include 'snippets/pagination.html' with page=activities path="direct-messages" %}
+</section>
+
 {% endblock %}
diff --git a/bookwyrm/templates/snippets/create_status_form.html b/bookwyrm/templates/snippets/create_status_form.html
index 534ace29..c6d7be3f 100644
--- a/bookwyrm/templates/snippets/create_status_form.html
+++ b/bookwyrm/templates/snippets/create_status_form.html
@@ -35,7 +35,7 @@
         <textarea name="quote" class="textarea" id="id_quote_{{ book.id }}_{{ type }}" placeholder="{{ placeholder }}" required></textarea>
         {% else %}
         {% include 'snippets/content_warning_field.html' with parent_status=status %}
-        <textarea name="content" class="textarea" id="id_content_{{ type }}-{{ book.id }}{{reply_parent.id}}" placeholder="{{ placeholder }}" {% if type == 'reply' %} aria-label="Reply"{% endif %} required>{% if reply_parent %}{{ reply_parent|mentions:request.user }}{% endif %}</textarea>
+        <textarea name="content" class="textarea" id="id_content_{{ type }}-{{ book.id }}{{reply_parent.id}}" placeholder="{{ placeholder }}" {% if type == 'reply' %} aria-label="Reply"{% endif %} required>{% if reply_parent %}{{ reply_parent|mentions:request.user }}{% endif %}{% if mentions %}@{{ mentions|username }} {% endif %}</textarea>
         {% endif %}
     </div>
     {% if type == 'quotation' %}
diff --git a/bookwyrm/templates/snippets/status_options.html b/bookwyrm/templates/snippets/status_options.html
index a6609cb3..3bf8251f 100644
--- a/bookwyrm/templates/snippets/status_options.html
+++ b/bookwyrm/templates/snippets/status_options.html
@@ -18,6 +18,9 @@
     </form>
 </li>
 {% else %}
+<li role="menuitem">
+    <a href="/direct-messages/{{ status.user|username }}" class="button is-fullwidth is-small">Send direct message</a>
+</li>
 <li role="menuitem">
     {% include 'snippets/block_button.html' with user=status.user class="is-fullwidth" %}
 </li>
diff --git a/bookwyrm/templates/snippets/user_options.html b/bookwyrm/templates/snippets/user_options.html
index ab68c2e3..bc54ca1c 100644
--- a/bookwyrm/templates/snippets/user_options.html
+++ b/bookwyrm/templates/snippets/user_options.html
@@ -8,6 +8,9 @@
 {% endblock %}
 
 {% block dropdown-list %}
+<li role="menuitem">
+    <a href="/direct-messages/{{ user|username }}" class="button is-fullwidth is-small">Send direct message</a>
+</li>
 <li role="menuitem">
     {% include 'snippets/block_button.html' with user=user class="is-fullwidth" %}
 </li>
diff --git a/bookwyrm/templates/user/user_layout.html b/bookwyrm/templates/user/user_layout.html
index 3fcbf1e2..1ab51ce3 100644
--- a/bookwyrm/templates/user/user_layout.html
+++ b/bookwyrm/templates/user/user_layout.html
@@ -42,7 +42,7 @@
             {% endif %}
         </div>
     </div>
-    {% if not is_self %}
+    {% if not is_self and request.user.is_authenticated %}
     <div class="field has-addons">
         <div class="control">
             {% include 'snippets/follow_button.html' with user=user %}
diff --git a/bookwyrm/urls.py b/bookwyrm/urls.py
index d232747f..6d759ac2 100644
--- a/bookwyrm/urls.py
+++ b/bookwyrm/urls.py
@@ -62,6 +62,8 @@ urlpatterns = [
     # feeds
     re_path(r'^(?P<tab>home|local|federated)/?$', views.Feed.as_view()),
     re_path(r'^direct-messages/?$', views.DirectMessage.as_view()),
+    re_path(r'^direct-messages/(?P<username>%s)?$' % regex.username,
+            views.DirectMessage.as_view()),
 
     # search
     re_path(r'^search/?$', views.Search.as_view()),
diff --git a/bookwyrm/views/feed.py b/bookwyrm/views/feed.py
index 08a5e057..0e550f0c 100644
--- a/bookwyrm/views/feed.py
+++ b/bookwyrm/views/feed.py
@@ -1,6 +1,7 @@
 ''' non-interactive pages '''
 from django.contrib.auth.decorators import login_required
 from django.core.paginator import Paginator
+from django.db.models import Q
 from django.http import HttpResponseNotFound
 from django.template.response import TemplateResponse
 from django.utils import timezone
@@ -52,19 +53,33 @@ class Feed(View):
 @method_decorator(login_required, name='dispatch')
 class DirectMessage(View):
     ''' dm view '''
-    def get(self, request):
+    def get(self, request, username=None):
         ''' like a feed but for dms only '''
         try:
             page = int(request.GET.get('page', 1))
         except ValueError:
             page = 1
 
-        activities = get_activity_feed(request.user, 'direct')
+        queryset = models.Status.objects
+
+        user = None
+        if username:
+            try:
+                user = get_user_from_username(username)
+            except models.User.DoesNotExist:
+                pass
+        if user:
+            queryset = queryset.filter(Q(user=user) | Q(mention_users=user))
+
+        activities = get_activity_feed(
+            request.user, 'direct', queryset=queryset)
+
         paginated = Paginator(activities, PAGE_LENGTH)
         activity_page = paginated.page(page)
         data = {**feed_page_data(request.user), **{
             'title': 'Direct Messages',
             'user': request.user,
+            'partner': user,
             'activities': activity_page,
             'path': '/direct-messages',
         }}

From 21aadf2920af349c672b796b70a71148cfb3a5e9 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 29 Jan 2021 15:38:42 -0800
Subject: [PATCH 037/280] Adds site settings view

---
 bookwyrm/forms.py                             |  7 ++
 bookwyrm/templates/layout.html                |  2 +-
 bookwyrm/templates/settings/admin_layout.html | 42 ++++++++++
 .../{ => settings}/manage_invites.html        | 16 ++--
 bookwyrm/templates/settings/site.html         | 84 +++++++++++++++++++
 bookwyrm/tests/views/test_invite.py           |  2 +-
 bookwyrm/urls.py                              |  6 +-
 bookwyrm/views/__init__.py                    |  1 +
 bookwyrm/views/invite.py                      |  4 +-
 bookwyrm/views/site.py                        | 31 +++++++
 10 files changed, 182 insertions(+), 13 deletions(-)
 create mode 100644 bookwyrm/templates/settings/admin_layout.html
 rename bookwyrm/templates/{ => settings}/manage_invites.html (83%)
 create mode 100644 bookwyrm/templates/settings/site.html
 create mode 100644 bookwyrm/views/site.py

diff --git a/bookwyrm/forms.py b/bookwyrm/forms.py
index e92bc180..c8212794 100644
--- a/bookwyrm/forms.py
+++ b/bookwyrm/forms.py
@@ -195,7 +195,14 @@ class ShelfForm(CustomForm):
         model = models.Shelf
         fields = ['user', 'name', 'privacy']
 
+
 class GoalForm(CustomForm):
     class Meta:
         model = models.AnnualGoal
         fields = ['user', 'year', 'goal', 'privacy']
+
+
+class SiteForm(CustomForm):
+    class Meta:
+        model = models.SiteSettings
+        exclude = []
diff --git a/bookwyrm/templates/layout.html b/bookwyrm/templates/layout.html
index a696e287..3a33196c 100644
--- a/bookwyrm/templates/layout.html
+++ b/bookwyrm/templates/layout.html
@@ -92,7 +92,7 @@
                     </li>
                     {% if perms.bookwyrm.create_invites %}
                     <li>
-                        <a href="/invite" class="navbar-item">
+                        <a href="{% url 'settings-invites' %}" class="navbar-item">
                             Invites
                         </a>
                     </li>
diff --git a/bookwyrm/templates/settings/admin_layout.html b/bookwyrm/templates/settings/admin_layout.html
new file mode 100644
index 00000000..f66da658
--- /dev/null
+++ b/bookwyrm/templates/settings/admin_layout.html
@@ -0,0 +1,42 @@
+{% extends 'layout.html' %}
+{% block content %}
+
+<header class="block column is-offset-one-quarter pl-1">
+    <h1 class="title">{% block header %}{% endblock %}</h1>
+</header>
+
+<div class="block columns">
+    <nav class="menu column is-one-quarter">
+        {% if perms.bookwyrm.create_invites %}
+        <h2 class="menu-label">Manage Users</h2>
+        <ul class="menu-list">
+            <li>
+                {% url 'settings-invites' as url %}
+                <a href="{{ url }}"{% if url in request.path %} class="is-active" aria-selected="true"{% endif %}>Invites</a>
+            </li>
+        </ul>
+        {% endif %}
+        {% if perms.bookwyrm.edit_instance_settings %}
+        <h2 class="menu-label">Instance Settings</h2>
+        <ul class="menu-list">
+            <li>
+                {% url 'settings-site' as url %}
+                <a href="{{ url }}"{% if url in request.path %} class="is-active" aria-selected="true"{% endif %}>Site Configuration</a>
+                {% if url in request.path %}
+                <ul class="emnu-list">
+                    <li><a href="{{ url }}#instance-info">Instance Info</a></li>
+                    <li><a href="{{ url }}#images">Images</a></li>
+                    <li><a href="{{ url }}#footer">Footer Content</a></li>
+                    <li><a href="{{ url }}#registration">Registration</a></li>
+                </ul>
+                {% endif %}
+            </li>
+        </ul>
+        {% endif %}
+    </nav>
+    <div class="column content">
+        {% block panel %}{% endblock %}
+    </div>
+</div>
+
+{% endblock %}
diff --git a/bookwyrm/templates/manage_invites.html b/bookwyrm/templates/settings/manage_invites.html
similarity index 83%
rename from bookwyrm/templates/manage_invites.html
rename to bookwyrm/templates/settings/manage_invites.html
index a29ee5e4..03b68b20 100644
--- a/bookwyrm/templates/manage_invites.html
+++ b/bookwyrm/templates/settings/manage_invites.html
@@ -1,8 +1,8 @@
-{% extends 'layout.html' %}
+{% extends 'settings/admin_layout.html' %}
+{% block header %}Invites{% endblock %}
 {% load humanize %}
-{% block content %}
-<div class="block">
-    <h1 class="title">Invites</h1>
+{% block panel %}
+<section class="block">
     <table class="table is-striped">
         <tr>
             <th>Link</th>
@@ -22,12 +22,12 @@
         </tr>
         {% endfor %}
     </table>
-</div>
+</section>
 
-<div class="block">
+<section class="block">
     <h2 class="title is-4">Generate New Invite</h2>
 
-    <form name="invite" action="/invite/" method="post">
+    <form name="invite" action="{% url 'settings-invites' %}" method="post">
         {% csrf_token %}
         <div class="field is-grouped">
             <div class="control">
@@ -46,5 +46,5 @@
 
         <button class="button is-primary" type="submit">Create Invite</button>
     </form>
-</div>
+</section>
 {% endblock %}
diff --git a/bookwyrm/templates/settings/site.html b/bookwyrm/templates/settings/site.html
new file mode 100644
index 00000000..830a7dc5
--- /dev/null
+++ b/bookwyrm/templates/settings/site.html
@@ -0,0 +1,84 @@
+{% extends 'settings/admin_layout.html' %}
+{% block header %}Site Configuration{% endblock %}
+
+{% block panel %}
+
+<form action="{% url 'settings-site' %}" method="POST" class="content">
+    {% csrf_token %}
+    <section class="block" id="instance-info">
+        <h2 class="title is-4">Instance Info</h2>
+        <div class="control">
+            <label class="label" for="id_name">Instance Name:</label>
+            {{ site_form.name }}
+        </div>
+        <div class="control">
+            <label class="label" for="id_instance_tagline">Tagline:</label>
+            {{ site_form.instance_tagline }}
+        </div>
+        <div class="control">
+            <label class="label" for="id_instance_description">Instance description:</label>
+            {{ site_form.instance_description }}
+        </div>
+        <div class="control">
+            <label class="label" for="id_code_of_conduct">Code of conduct:</label>
+            {{ site_form.code_of_conduct }}
+        </div>
+    </section>
+
+    <hr aria-hidden="true">
+
+    <section class="block" id="images">
+        <h2 class="title is-4">Images</h2>
+        <div class="field is-grouped">
+            <div class="control">
+                <label class="label" for="id_logo">Logo:</label>
+                {{ site_form.logo }}
+            </div>
+            <div class="control">
+                <label class="label" for="id_logo_small">Logo small:</label>
+                {{ site_form.logo_small }}
+            </div>
+            <div class="control">
+                <label class="label" for="id_favicon">Favicon:</label>
+                {{ site_form.favicon }}
+            </div>
+        </div>
+    </section>
+
+    <hr aria-hidden="true">
+
+    <section class="block" id="footer">
+        <h2 class="title is-4">Footer Content</h2>
+        <div class="control">
+            <label class="label" for="id_support_link">Support link:</label>
+            <input type="text" name="support_link" maxlength="255" class="input" id="id_support_link" placeholder="https://www.patreon.com/bookwyrm" value="{{ site.support_link }}">
+        </div>
+        <div class="control">
+            <label class="label" for="id_support_title">Support title:</label>
+            <input type="text" name="support_title" maxlength="100" class="input" id="id_support_title" placeholder="Patreon" value="{{ site.support_title }}">
+        </div>
+        <div class="control">
+            <label class="label" for="id_admin_email">Admin email:</label>
+            {{ site_form.admin_email }}
+        </div>
+    </section>
+
+    <hr aria-hidden="true">
+
+    <section class="block" id="registration">
+        <h2 class="title is-4">Registration</h2>
+        <div class="control">
+            <label class="label" for="id_allow_registration">Allow registration:
+            {{ site_form.allow_registration }}
+        </div>
+        <div class="control">
+            <label class="label" for="id_registration_closed_text">Registration closed text:</label>
+            {{ site_form.registration_closed_text }}
+        </div>
+    </section>
+
+    <footer class="block">
+        <button class="button is-primary" type="submit">Save Changes</button>
+    </footer>
+</form>
+{% endblock %}
diff --git a/bookwyrm/tests/views/test_invite.py b/bookwyrm/tests/views/test_invite.py
index 57b7a34a..eaffba72 100644
--- a/bookwyrm/tests/views/test_invite.py
+++ b/bookwyrm/tests/views/test_invite.py
@@ -44,5 +44,5 @@ class InviteViews(TestCase):
         request.user.is_superuser = True
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'manage_invites.html')
+        self.assertEqual(result.template_name, 'admin/manage_invites.html')
         self.assertEqual(result.status_code, 200)
diff --git a/bookwyrm/urls.py b/bookwyrm/urls.py
index 6d759ac2..e79324a3 100644
--- a/bookwyrm/urls.py
+++ b/bookwyrm/urls.py
@@ -49,8 +49,12 @@ urlpatterns = [
     re_path(r'^password-reset/(?P<code>[A-Za-z0-9]+)/?$',
             views.PasswordReset.as_view()),
 
+    # admin
+    re_path(r'^settings/site-settings',
+            views.Site.as_view(), name='settings-site'),
     # invites
-    re_path(r'^invite/?$', views.ManageInvites.as_view()),
+    re_path(r'^settings/invites/?$',
+            views.ManageInvites.as_view(), name='settings-invites'),
     re_path(r'^invite/(?P<code>[A-Za-z0-9]+)/?$', views.Invite.as_view()),
 
     # landing pages
diff --git a/bookwyrm/views/__init__.py b/bookwyrm/views/__init__.py
index 80520eb3..62c4110f 100644
--- a/bookwyrm/views/__init__.py
+++ b/bookwyrm/views/__init__.py
@@ -24,6 +24,7 @@ from .search import Search
 from .shelf import Shelf
 from .shelf import user_shelves_page, create_shelf, delete_shelf
 from .shelf import shelve, unshelve
+from .site import Site
 from .status import CreateStatus, DeleteStatus
 from .updates import Updates
 from .user import User, EditUser, Followers, Following
diff --git a/bookwyrm/views/invite.py b/bookwyrm/views/invite.py
index 56485861..bd0715a0 100644
--- a/bookwyrm/views/invite.py
+++ b/bookwyrm/views/invite.py
@@ -24,7 +24,7 @@ class ManageInvites(View):
                 user=request.user).order_by('-created_date'),
             'form': forms.CreateInviteForm(),
         }
-        return TemplateResponse(request, 'manage_invites.html', data)
+        return TemplateResponse(request, 'settings/manage_invites.html', data)
 
     def post(self, request):
         ''' creates an invite database entry '''
@@ -36,7 +36,7 @@ class ManageInvites(View):
         invite.user = request.user
         invite.save()
 
-        return redirect('/invite')
+        return redirect('/settings/invites')
 
 
 class Invite(View):
diff --git a/bookwyrm/views/site.py b/bookwyrm/views/site.py
new file mode 100644
index 00000000..85c1751d
--- /dev/null
+++ b/bookwyrm/views/site.py
@@ -0,0 +1,31 @@
+''' manage site settings '''
+from django.contrib.auth.decorators import login_required, permission_required
+from django.shortcuts import redirect
+from django.template.response import TemplateResponse
+from django.utils.decorators import method_decorator
+from django.views import View
+
+from bookwyrm import forms, models
+
+
+# pylint: disable= no-self-use
+@method_decorator(login_required, name='dispatch')
+@method_decorator(
+    permission_required(
+        'bookwyrm.edit_instance_settings', raise_exception=True),
+    name='dispatch')
+class Site(View):
+    ''' manage things like the instance name '''
+    def get(self, request):
+        ''' edit form '''
+        site = models.SiteSettings.objects.get()
+        data = {
+            'title': 'Site Settings',
+            'site_form': forms.SiteForm(instance=site)
+        }
+        return TemplateResponse(request, 'settings/site.html', data)
+
+    def post(self, request):
+        ''' edit the site settings '''
+
+        return redirect('/settings/site-settings')

From 9db327a69efb8734f22d5f4e22c50ed3702a40aa Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 29 Jan 2021 15:50:46 -0800
Subject: [PATCH 038/280] Edit view for site settings

---
 bookwyrm/templates/layout.html        | 10 ++++++++++
 bookwyrm/templates/settings/site.html |  4 ++--
 bookwyrm/views/site.py                | 11 ++++++++++-
 3 files changed, 22 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/templates/layout.html b/bookwyrm/templates/layout.html
index 3a33196c..81782970 100644
--- a/bookwyrm/templates/layout.html
+++ b/bookwyrm/templates/layout.html
@@ -90,6 +90,9 @@
                             Import books
                         </a>
                     </li>
+                    {% if perms.bookwyrm.create_invites or perms.bookwyrm.edit_instance_settings%}
+                    <hr class="navbar-divider">
+                    {% endif %}
                     {% if perms.bookwyrm.create_invites %}
                     <li>
                         <a href="{% url 'settings-invites' %}" class="navbar-item">
@@ -97,6 +100,13 @@
                         </a>
                     </li>
                     {% endif %}
+                    {% if perms.bookwyrm.edit_instance_settings %}
+                    <li>
+                        <a href="{% url 'settings-site' %}" class="navbar-item">
+                            Site Configuration
+                        </a>
+                    </li>
+                    {% endif %}
                     <hr class="navbar-divider">
                     <li>
                         <a href="/logout" class="navbar-item">
diff --git a/bookwyrm/templates/settings/site.html b/bookwyrm/templates/settings/site.html
index 830a7dc5..d071facf 100644
--- a/bookwyrm/templates/settings/site.html
+++ b/bookwyrm/templates/settings/site.html
@@ -51,11 +51,11 @@
         <h2 class="title is-4">Footer Content</h2>
         <div class="control">
             <label class="label" for="id_support_link">Support link:</label>
-            <input type="text" name="support_link" maxlength="255" class="input" id="id_support_link" placeholder="https://www.patreon.com/bookwyrm" value="{{ site.support_link }}">
+            <input type="text" name="support_link" maxlength="255" class="input" id="id_support_link" placeholder="https://www.patreon.com/bookwyrm"{% if site.support_link %} value="{{ site.support_link  }}"{% endif %}>
         </div>
         <div class="control">
             <label class="label" for="id_support_title">Support title:</label>
-            <input type="text" name="support_title" maxlength="100" class="input" id="id_support_title" placeholder="Patreon" value="{{ site.support_title }}">
+            <input type="text" name="support_title" maxlength="100" class="input" id="id_support_title" placeholder="Patreon"{% if site.support_title %} value="{{ site.support_title }}"{% endif %}>
         </div>
         <div class="control">
             <label class="label" for="id_admin_email">Admin email:</label>
diff --git a/bookwyrm/views/site.py b/bookwyrm/views/site.py
index 85c1751d..0a5e270b 100644
--- a/bookwyrm/views/site.py
+++ b/bookwyrm/views/site.py
@@ -27,5 +27,14 @@ class Site(View):
 
     def post(self, request):
         ''' edit the site settings '''
+        site = models.SiteSettings.objects.get()
+        form = forms.SiteForm(request.POST, instance=site)
+        if not form.is_valid():
+            data = {
+                'title': 'Site Settings',
+                'site_form': form
+            }
+            return TemplateResponse(request, 'settings/site.html', data)
+        form.save()
 
-        return redirect('/settings/site-settings')
+        return redirect('settings-site')

From d1ee26e282381b0ffe7d4e17c23f1f1212065c6a Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 29 Jan 2021 16:02:59 -0800
Subject: [PATCH 039/280] list of federated servers for admin panel

---
 bookwyrm/templates/settings/admin_layout.html |  4 ++++
 bookwyrm/templates/settings/federation.html   | 21 ++++++++++++++++
 bookwyrm/urls.py                              |  3 ++-
 bookwyrm/views/__init__.py                    |  1 +
 bookwyrm/views/federation.py                  | 24 +++++++++++++++++++
 5 files changed, 52 insertions(+), 1 deletion(-)
 create mode 100644 bookwyrm/templates/settings/federation.html
 create mode 100644 bookwyrm/views/federation.py

diff --git a/bookwyrm/templates/settings/admin_layout.html b/bookwyrm/templates/settings/admin_layout.html
index f66da658..59cfd1d4 100644
--- a/bookwyrm/templates/settings/admin_layout.html
+++ b/bookwyrm/templates/settings/admin_layout.html
@@ -14,6 +14,10 @@
                 {% url 'settings-invites' as url %}
                 <a href="{{ url }}"{% if url in request.path %} class="is-active" aria-selected="true"{% endif %}>Invites</a>
             </li>
+            <li>
+                {% url 'settings-federation' as url %}
+                <a href="{{ url }}"{% if url in request.path %} class="is-active" aria-selected="true"{% endif %}>Federated Servers</a>
+            </li>
         </ul>
         {% endif %}
         {% if perms.bookwyrm.edit_instance_settings %}
diff --git a/bookwyrm/templates/settings/federation.html b/bookwyrm/templates/settings/federation.html
new file mode 100644
index 00000000..e3bf23ce
--- /dev/null
+++ b/bookwyrm/templates/settings/federation.html
@@ -0,0 +1,21 @@
+{% extends 'settings/admin_layout.html' %}
+{% block header %}Federated Servers{% endblock %}
+
+{% block panel %}
+
+<table class="table is-striped">
+    <tr>
+        <th>Server name</th>
+        <th>Software</th>
+        <th>Status</th>
+    </tr>
+    {% for server in servers %}
+    <tr>
+        <td>{{ server.server_name }}</td>
+        <td>{{ server.application_type }} ({{ server.application_version }})</td>
+        <td>{{ server.status }}</td>
+    </tr>
+    {% endfor %}
+</table>
+
+{% endblock %}
diff --git a/bookwyrm/urls.py b/bookwyrm/urls.py
index e79324a3..6387a4cd 100644
--- a/bookwyrm/urls.py
+++ b/bookwyrm/urls.py
@@ -52,7 +52,8 @@ urlpatterns = [
     # admin
     re_path(r'^settings/site-settings',
             views.Site.as_view(), name='settings-site'),
-    # invites
+    re_path(r'^settings/federation',
+            views.Federation.as_view(), name='settings-federation'),
     re_path(r'^settings/invites/?$',
             views.ManageInvites.as_view(), name='settings-invites'),
     re_path(r'^invite/(?P<code>[A-Za-z0-9]+)/?$', views.Invite.as_view()),
diff --git a/bookwyrm/views/__init__.py b/bookwyrm/views/__init__.py
index 62c4110f..0b93f164 100644
--- a/bookwyrm/views/__init__.py
+++ b/bookwyrm/views/__init__.py
@@ -5,6 +5,7 @@ from .block import Block, unblock
 from .books import Book, EditBook, Editions
 from .books import upload_cover, add_description, switch_edition, resolve_book
 from .error import not_found_page, server_error_page
+from .federation import Federation
 from .feed import DirectMessage, Feed, Replies, Status
 from .follow import follow, unfollow
 from .follow import accept_follow_request, delete_follow_request, handle_accept
diff --git a/bookwyrm/views/federation.py b/bookwyrm/views/federation.py
new file mode 100644
index 00000000..0bd14dab
--- /dev/null
+++ b/bookwyrm/views/federation.py
@@ -0,0 +1,24 @@
+''' manage federated servers '''
+from django.contrib.auth.decorators import login_required, permission_required
+from django.template.response import TemplateResponse
+from django.utils.decorators import method_decorator
+from django.views import View
+
+from bookwyrm import models
+
+
+# pylint: disable= no-self-use
+@method_decorator(login_required, name='dispatch')
+@method_decorator(
+    permission_required('bookwyrm.control_federation', raise_exception=True),
+    name='dispatch')
+class Federation(View):
+    ''' what servers do we federate with '''
+    def get(self, request):
+        ''' edit form '''
+        servers = models.FederatedServer.objects.all()
+        data = {
+            'title': 'Federated Servers',
+            'servers': servers
+        }
+        return TemplateResponse(request, 'settings/federation.html', data)

From 9d3f48a1a9a3bd25fc7a4da2f7d83ff728893181 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 29 Jan 2021 16:30:47 -0800
Subject: [PATCH 040/280] Settings views tests

---
 bookwyrm/tests/views/test_federation.py | 29 +++++++++++++++++++++++++
 bookwyrm/tests/views/test_invite.py     |  2 +-
 2 files changed, 30 insertions(+), 1 deletion(-)
 create mode 100644 bookwyrm/tests/views/test_federation.py

diff --git a/bookwyrm/tests/views/test_federation.py b/bookwyrm/tests/views/test_federation.py
new file mode 100644
index 00000000..2a182a21
--- /dev/null
+++ b/bookwyrm/tests/views/test_federation.py
@@ -0,0 +1,29 @@
+''' test for app action functionality '''
+from django.template.response import TemplateResponse
+from django.test import TestCase
+from django.test.client import RequestFactory
+
+from bookwyrm import models
+from bookwyrm import views
+
+
+class FederationViews(TestCase):
+    ''' every response to a get request, html or json '''
+    def setUp(self):
+        ''' we need basic test data and mocks '''
+        self.factory = RequestFactory()
+        self.local_user = models.User.objects.create_user(
+            'mouse@local.com', 'mouse@mouse.mouse', 'password',
+            local=True, localname='mouse')
+
+
+    def test_federation_page(self):
+        ''' there are so many views, this just makes sure it LOADS '''
+        view = views.Federation.as_view()
+        request = self.factory.get('')
+        request.user = self.local_user
+        request.user.is_superuser = True
+        result = view(request)
+        self.assertIsInstance(result, TemplateResponse)
+        self.assertEqual(result.template_name, 'settings/federation.html')
+        self.assertEqual(result.status_code, 200)
diff --git a/bookwyrm/tests/views/test_invite.py b/bookwyrm/tests/views/test_invite.py
index eaffba72..85741688 100644
--- a/bookwyrm/tests/views/test_invite.py
+++ b/bookwyrm/tests/views/test_invite.py
@@ -44,5 +44,5 @@ class InviteViews(TestCase):
         request.user.is_superuser = True
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'admin/manage_invites.html')
+        self.assertEqual(result.template_name, 'settings/manage_invites.html')
         self.assertEqual(result.status_code, 200)

From 8add05d7fd4a00b9e02b1535c22cb8756da5ef72 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 29 Jan 2021 18:06:17 -0800
Subject: [PATCH 041/280] Fixes incorrect display of reading progress

---
 bookwyrm/templates/snippets/readthrough.html | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/templates/snippets/readthrough.html b/bookwyrm/templates/snippets/readthrough.html
index e0b25d8b..7e51ce97 100644
--- a/bookwyrm/templates/snippets/readthrough.html
+++ b/bookwyrm/templates/snippets/readthrough.html
@@ -6,10 +6,11 @@
                 Progress Updates:
                 </dl>
                 <ul>
-                    {% if readthrough.progress %}
+                    {% if readthrough.finish_date or readthrough.progress %}
                     <li>{% if readthrough.finish_date %} {{ readthrough.finish_date | naturalday }}: finished {% else %}{% if readthrough.progress_mode == 'PG' %}on page {{ readthrough.progress }}{% if book.pages %} of {{ book.pages }}{% endif %}
                         {% else %}{{ readthrough.progress }}%{% endif %}{% endif %}
-                    {% include 'snippets/toggle/toggle_button.html' with text="Show all updates" controls_text="updates" controls_uid=readthrough.id class="is-small" %}
+                        {% if readthrough.progress %}
+                        {% include 'snippets/toggle/toggle_button.html' with text="Show all updates" controls_text="updates" controls_uid=readthrough.id class="is-small" %}
                         <ul id="updates-{{ readthrough.id }}" class="hidden">
                             {% for progress_update in readthrough.progress_updates %}
                             <li>
@@ -31,6 +32,7 @@
                             </li>
                             {% endfor %}
                         </ul>
+                        {% endif %}
                     </li>
                     {% endif %}
                     <li>{{ readthrough.start_date | naturalday }}: started</li>

From e5746d611783c2410c6e33dadd157798a9e322ad Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 11:43:40 -0800
Subject: [PATCH 042/280] Menu list for shelf button options

---
 bookwyrm/static/css/format.css                |  7 +++++++
 .../templates/snippets/shelve_button.html     | 17 +---------------
 .../snippets/shelve_button_dropdown.html      | 20 +------------------
 .../snippets/toggle/toggle_button.html        |  3 ++-
 bookwyrm/templatetags/bookwyrm_tags.py        | 13 ++++++++++++
 5 files changed, 24 insertions(+), 36 deletions(-)

diff --git a/bookwyrm/static/css/format.css b/bookwyrm/static/css/format.css
index f10549ed..50ce101e 100644
--- a/bookwyrm/static/css/format.css
+++ b/bookwyrm/static/css/format.css
@@ -13,6 +13,13 @@
     overflow: hidden;
 }
 
+/* --- SHELVING --- */
+.shelf-option:disabled > *::after {
+    font-family: "icomoon";
+    content: "\e918";
+    margin-left: 0.5em;
+}
+
 /* --- TOGGLES --- */
 .toggle-button[aria-pressed=true], .toggle-button[aria-pressed=true]:hover {
     background-color: hsl(171, 100%, 41%);
diff --git a/bookwyrm/templates/snippets/shelve_button.html b/bookwyrm/templates/snippets/shelve_button.html
index f69ab525..946368c2 100644
--- a/bookwyrm/templates/snippets/shelve_button.html
+++ b/bookwyrm/templates/snippets/shelve_button.html
@@ -10,22 +10,7 @@
     </div>
     {% else %}
     <div class="control">
-        {% if active_shelf.shelf.identifier == 'read' %}
-        <button class="button is-small" disabled>
-            <span>Read</span> <span class="icon icon-check"></span>
-        </button>
-        {% elif active_shelf.shelf.identifier == 'reading' %}
-        {% include 'snippets/toggle/toggle_button.html' with class="is-small" text="I'm done!" controls_text="finish-reading" controls_uid=uuid focus="modal-title-finish-reading" %}
-        {% elif active_shelf.shelf.identifier == 'to-read' %}
-        {% include 'snippets/toggle/toggle_button.html' with class="is-small" text="Start reading" controls_text="start-reading" controls_uid=uuid focus="modal-title-start-reading" %}
-        {% else %}
-        <form name="shelve" action="/shelve/" method="post">
-            {% csrf_token %}
-            <input type="hidden" name="book" value="{{ active_shelf.book.id }}">
-            <input type="hidden" name="shelf" value="to-read">
-            <button class="button is-small" type="submit">Want to read</button>
-        </form>
-        {% endif %}
+        {% include 'snippets/shelve_button_options.html' with class="shelf-option is-small" shelves=request.user.shelf_set.all active_shelf=active_shelf %}
     </div>
     {% include 'snippets/shelve_button_dropdown.html' with class="is-small" button_uuid=uuid%}
     {% endif %}
diff --git a/bookwyrm/templates/snippets/shelve_button_dropdown.html b/bookwyrm/templates/snippets/shelve_button_dropdown.html
index 50140e3f..d70765a3 100644
--- a/bookwyrm/templates/snippets/shelve_button_dropdown.html
+++ b/bookwyrm/templates/snippets/shelve_button_dropdown.html
@@ -6,23 +6,5 @@
 {% endblock %}
 
 {% block dropdown-list %}
-{% for shelf in request.user.shelf_set.all %}
-<li role="menuitem">
-    {% if active_shelf.shelf.identifier != 'reading' and shelf.identifier == 'reading' %}
-    <div class="dropdown-item pt-0 pb-0">
-        {% include 'snippets/toggle/toggle_button.html' with class="is-fullwidth is-small" text="Start reading" controls_text="start-reading" controls_uid=button_uuid focus="modal-title-start-reading" %}
-    </div>
-    {% else %}
-    <form class="dropdown-item pt-0 pb-0" name="shelve" action="/shelve/" method="post">
-        {% csrf_token %}
-        <input type="hidden" name="book" value="{{ active_shelf.book.id }}">
-        <button class="button is-fullwidth is-small" name="shelf" type="submit" value="{{ shelf.identifier }}" {% if shelf in book.shelf_set.all %} disabled {% endif %}>
-            <span>{{ shelf.name }}</span>
-            {% if shelf in book.shelf_set.all %}<span class="icon icon-check"></span>{% endif %}
-        </button>
-    </form>
-    {% endif %}
-</li>
-{% endfor %}
+{% include 'snippets/shelve_button_options.html' with active_shelf=active_shelf shelves=request.user.shelf_set.all dropdown=True class="shelf-option is-fullwidth is-small" %}
 {% endblock %}
-
diff --git a/bookwyrm/templates/snippets/toggle/toggle_button.html b/bookwyrm/templates/snippets/toggle/toggle_button.html
index d6fd0a36..fe1823f1 100644
--- a/bookwyrm/templates/snippets/toggle/toggle_button.html
+++ b/bookwyrm/templates/snippets/toggle/toggle_button.html
@@ -6,6 +6,7 @@
     {% if checkbox %}data-controls-checkbox="{{ checkbox }}{% if controls_uid %}-{{ controls_uid }}{% endif %}"{% endif %}
     {% if label %}aria-label="{{ label }}"{% endif %}
     aria-pressed="{% if pressed %}true{% else %}false{% endif %}"
+    {% if disabled %}disabled{% endif %}
     >
 
     {% if icon %}
@@ -13,6 +14,6 @@
         <span class="is-sr-only">{{ text }}</span>
     </span>
     {% else %}
-    {{ text }}
+    <span>{{ text }}</span>
     {% endif %}
 </button>
diff --git a/bookwyrm/templatetags/bookwyrm_tags.py b/bookwyrm/templatetags/bookwyrm_tags.py
index 08bbcafe..c1a2d14e 100644
--- a/bookwyrm/templatetags/bookwyrm_tags.py
+++ b/bookwyrm/templatetags/bookwyrm_tags.py
@@ -159,6 +159,14 @@ def get_status_preview_name(obj):
         return '%s from <em>%s</em>' % (name, obj.book.title)
     return name
 
+@register.filter(name='next_shelf')
+def get_next_shelf(current_shelf):
+    if current_shelf == 'to-read':
+        return 'reading'
+    if current_shelf == 'reading':
+        return 'read'
+    return 'to-read'
+
 @register.simple_tag(takes_context=False)
 def related_status(notification):
     ''' for notifications '''
@@ -199,3 +207,8 @@ def active_read_through(book, user):
         book=book,
         finish_date__isnull=True
     ).order_by('-start_date').first()
+
+
+@register.simple_tag(takes_context=False)
+def comparison_bool(str1, str2):
+    return str1 == str2

From cd65ac72902470ca0bdddfe7c2cdc9228c044488 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 11:46:15 -0800
Subject: [PATCH 043/280] Fixes incorrect tempalte path in threaded status page

---
 bookwyrm/templates/feed/thread.html | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/templates/feed/thread.html b/bookwyrm/templates/feed/thread.html
index 589702ce..aa67d5bb 100644
--- a/bookwyrm/templates/feed/thread.html
+++ b/bookwyrm/templates/feed/thread.html
@@ -4,7 +4,7 @@
 {% with depth=depth|add:1 %}
     {% if depth <= max_depth and status.reply_parent and direction <= 0 %}
         {% with direction=-1 %}
-        {% include 'snippets/thread.html' with status=status|parent is_root=False %}
+        {% include 'feed/thread.html' with status=status|parent is_root=False %}
         {% endwith %}
     {% endif %}
 
@@ -13,7 +13,7 @@
 {% if depth <= max_depth and direction >= 0 %}
     {% for reply in status|replies  %}
         {% with direction=1 %}
-            {% include 'snippets/thread.html' with status=reply is_root=False %}
+            {% include 'feed/thread.html' with status=reply is_root=False %}
         {% endwith %}
     {% endfor %}
 {% endif %}

From 37710144fa9919cdbb30224090d543afdba61eba Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 11:52:31 -0800
Subject: [PATCH 044/280] Adds options tempalte

---
 .../snippets/shelve_button_options.html       | 23 +++++++++++++++++++
 1 file changed, 23 insertions(+)
 create mode 100644 bookwyrm/templates/snippets/shelve_button_options.html

diff --git a/bookwyrm/templates/snippets/shelve_button_options.html b/bookwyrm/templates/snippets/shelve_button_options.html
new file mode 100644
index 00000000..84133400
--- /dev/null
+++ b/bookwyrm/templates/snippets/shelve_button_options.html
@@ -0,0 +1,23 @@
+{% load bookwyrm_tags %}
+{% for shelf in shelves %}
+{% comparison_bool shelf.identifier active_shelf.shelf.identifier as is_current %}
+{% if dropdown %}<li role="menuitem">{% endif %}
+    <div class="{% if dropdown %}dropdown-item pt-0 pb-0{% elif active_shelf.shelf.identifier|next_shelf != shelf.identifier %}hidden{% endif %}">
+    {% if shelf.identifier == 'reading' %}
+        {% include 'snippets/toggle/toggle_button.html' with class=class text="Start reading" controls_text="start-reading" controls_uid=button_uuid focus="modal-title-start-reading" disabled=is_current %}
+    {% elif shelf.identifier == 'read' %}
+        {% include 'snippets/toggle/toggle_button.html' with class=class text="Finish reading" controls_text="finish-reading" controls_uid=button_uuid focus="modal-title-finish-reading" disabled=is_current %}
+    {% elif shelf.identifier == 'to-read' %}
+        {% include 'snippets/toggle/toggle_button.html' with class=class text="Want to read" controls_text="finish-reading" controls_uid=button_uuid focus="modal-title-finish-reading" disabled=is_current %}
+    {% else %}
+        <form name="shelve" action="/shelve/" method="post">
+            {% csrf_token %}
+            <input type="hidden" name="book" value="{{ active_shelf.book.id }}">
+            <button class="button {{ class }}" name="shelf" type="submit" value="{{ shelf.identifier }}" {% if shelf in book.shelf_set.all %} disabled {% endif %}>
+                <span>{{ shelf.name }}</span>
+            </button>
+        </form>
+    {% endif %}
+    </div>
+{% if dropdown %}</li>{% endif %}
+{% endfor %}

From ac4a178e8319e45388b9e1e0afefb67f5c8b749f Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 12:03:50 -0800
Subject: [PATCH 045/280] Fixes shelf page template path bug

---
 bookwyrm/templates/{ => user}/shelf.html | 28 +++++++++++-------------
 bookwyrm/tests/views/test_shelf.py       |  2 +-
 bookwyrm/views/shelf.py                  |  2 +-
 3 files changed, 15 insertions(+), 17 deletions(-)
 rename bookwyrm/templates/{ => user}/shelf.html (89%)

diff --git a/bookwyrm/templates/shelf.html b/bookwyrm/templates/user/shelf.html
similarity index 89%
rename from bookwyrm/templates/shelf.html
rename to bookwyrm/templates/user/shelf.html
index da599c7d..c0083e17 100644
--- a/bookwyrm/templates/shelf.html
+++ b/bookwyrm/templates/user/shelf.html
@@ -1,21 +1,19 @@
-{% extends 'layout.html' %}
+{% extends 'user/user_layout.html' %}
 {% load bookwyrm_tags %}
-{% block content %}
 
-<div class="columns">
-    <div class="column">
-        <h1 class="title">
-            {% if is_self %}Your
-            {% else %}
-            {% include 'snippets/username.html' with user=user possessive=True %}
-            {% endif %}
-            shelves
-        </h1>
-    </div>
-</div>
-
-{% include 'snippets/user_header.html' with user=user %}
+{% block header %}
+<header class="columns">
+    <h1 class="title">
+        {% if is_self %}Your
+        {% else %}
+        {% include 'snippets/username.html' with user=user possessive=True %}
+        {% endif %}
+        shelves
+    </h1>
+</header>
+{% endblock %}
 
+{% block panel %}
 <div class="block columns">
     <div class="column">
         <div class="tabs" role="tablist">
diff --git a/bookwyrm/tests/views/test_shelf.py b/bookwyrm/tests/views/test_shelf.py
index 35e07953..95150fe9 100644
--- a/bookwyrm/tests/views/test_shelf.py
+++ b/bookwyrm/tests/views/test_shelf.py
@@ -41,7 +41,7 @@ class ShelfViews(TestCase):
             is_api.return_value = False
             result = view(request, self.local_user.username, shelf.identifier)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'shelf.html')
+        self.assertEqual(result.template_name, 'user/shelf.html')
         self.assertEqual(result.status_code, 200)
 
         with patch('bookwyrm.views.shelf.is_api_request') as is_api:
diff --git a/bookwyrm/views/shelf.py b/bookwyrm/views/shelf.py
index ae8a494b..e4c49261 100644
--- a/bookwyrm/views/shelf.py
+++ b/bookwyrm/views/shelf.py
@@ -62,7 +62,7 @@ class Shelf(View):
             'books': [b.book for b in books],
         }
 
-        return TemplateResponse(request, 'shelf.html', data)
+        return TemplateResponse(request, 'user/shelf.html', data)
 
     @method_decorator(login_required, name='dispatch')
     # pylint: disable=unused-argument

From b3bd6822b20423ed018a1d3b9d675d348e08132d Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 12:16:57 -0800
Subject: [PATCH 046/280] Make sure templates render rather than checking
 template paths

---
 bookwyrm/tests/views/test_authentication.py | 10 +++++-----
 bookwyrm/tests/views/test_author.py         | 10 +++++++---
 bookwyrm/tests/views/test_block.py          |  3 ++-
 bookwyrm/tests/views/test_book.py           |  7 ++++---
 bookwyrm/tests/views/test_federation.py     |  3 ++-
 bookwyrm/tests/views/test_feed.py           |  9 +++++----
 bookwyrm/tests/views/test_import.py         |  5 +++--
 bookwyrm/tests/views/test_invite.py         |  5 +++--
 bookwyrm/tests/views/test_landing.py        |  9 ++++-----
 bookwyrm/tests/views/test_notifications.py  |  3 ++-
 bookwyrm/tests/views/test_password.py       | 13 +++++++------
 bookwyrm/tests/views/test_search.py         |  5 +++--
 bookwyrm/tests/views/test_shelf.py          |  3 ++-
 bookwyrm/tests/views/test_tag.py            |  3 ++-
 bookwyrm/tests/views/test_user.py           |  9 +++++----
 15 files changed, 56 insertions(+), 41 deletions(-)

diff --git a/bookwyrm/tests/views/test_authentication.py b/bookwyrm/tests/views/test_authentication.py
index 65577208..dc52719c 100644
--- a/bookwyrm/tests/views/test_authentication.py
+++ b/bookwyrm/tests/views/test_authentication.py
@@ -33,7 +33,7 @@ class AuthenticationViews(TestCase):
 
         result = login(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'login.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
         request.user = self.local_user
@@ -94,7 +94,7 @@ class AuthenticationViews(TestCase):
             })
         response = view(request)
         self.assertEqual(models.User.objects.count(), 1)
-        self.assertEqual(response.template_name, 'login.html')
+        response.render()
 
     def test_register_invalid_username(self):
         ''' gotta have an email '''
@@ -109,7 +109,7 @@ class AuthenticationViews(TestCase):
             })
         response = view(request)
         self.assertEqual(models.User.objects.count(), 1)
-        self.assertEqual(response.template_name, 'login.html')
+        response.render()
 
         request = self.factory.post(
             'register/',
@@ -120,7 +120,7 @@ class AuthenticationViews(TestCase):
             })
         response = view(request)
         self.assertEqual(models.User.objects.count(), 1)
-        self.assertEqual(response.template_name, 'login.html')
+        response.render()
 
         request = self.factory.post(
             'register/',
@@ -131,7 +131,7 @@ class AuthenticationViews(TestCase):
             })
         response = view(request)
         self.assertEqual(models.User.objects.count(), 1)
-        self.assertEqual(response.template_name, 'login.html')
+        response.render()
 
 
     def test_register_closed_instance(self):
diff --git a/bookwyrm/tests/views/test_author.py b/bookwyrm/tests/views/test_author.py
index c00972f3..c92c4750 100644
--- a/bookwyrm/tests/views/test_author.py
+++ b/bookwyrm/tests/views/test_author.py
@@ -34,6 +34,7 @@ class AuthorViews(TestCase):
             remote_id='https://example.com/book/1',
             parent_work=self.work
         )
+        models.SiteSettings.objects.create()
 
 
     def test_author_page(self):
@@ -45,7 +46,8 @@ class AuthorViews(TestCase):
             is_api.return_value = False
             result = view(request, author.id)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'author.html')
+        result.render()
+        self.assertEqual(result.status_code, 200)
         self.assertEqual(result.status_code, 200)
 
         request = self.factory.get('')
@@ -66,7 +68,8 @@ class AuthorViews(TestCase):
 
         result = view(request, author.id)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'edit_author.html')
+        result.render()
+        self.assertEqual(result.status_code, 200)
         self.assertEqual(result.status_code, 200)
 
 
@@ -116,4 +119,5 @@ class AuthorViews(TestCase):
         resp = view(request, author.id)
         author.refresh_from_db()
         self.assertEqual(author.name, 'Test Author')
-        self.assertEqual(resp.template_name, 'edit_author.html')
+        resp.render()
+        self.assertEqual(resp.status_code, 200)
diff --git a/bookwyrm/tests/views/test_block.py b/bookwyrm/tests/views/test_block.py
index f3a0c2f8..6f85f282 100644
--- a/bookwyrm/tests/views/test_block.py
+++ b/bookwyrm/tests/views/test_block.py
@@ -23,6 +23,7 @@ class BlockViews(TestCase):
                 inbox='https://example.com/users/rat/inbox',
                 outbox='https://example.com/users/rat/outbox',
             )
+        models.SiteSettings.objects.create()
 
 
     def test_block_get(self):
@@ -32,7 +33,7 @@ class BlockViews(TestCase):
         request.user = self.local_user
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'preferences/blocks.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
     def test_block_post(self):
diff --git a/bookwyrm/tests/views/test_book.py b/bookwyrm/tests/views/test_book.py
index 8306b803..32a407d6 100644
--- a/bookwyrm/tests/views/test_book.py
+++ b/bookwyrm/tests/views/test_book.py
@@ -33,6 +33,7 @@ class BookViews(TestCase):
             remote_id='https://example.com/book/1',
             parent_work=self.work
         )
+        models.SiteSettings.objects.create()
 
 
     def test_book_page(self):
@@ -44,7 +45,7 @@ class BookViews(TestCase):
             is_api.return_value = False
             result = view(request, self.book.id)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'book.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
         request = self.factory.get('')
@@ -63,7 +64,7 @@ class BookViews(TestCase):
         request.user.is_superuser = True
         result = view(request, self.book.id)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'edit_book.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
 
@@ -116,7 +117,7 @@ class BookViews(TestCase):
             is_api.return_value = False
             result = view(request, self.work.id)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'editions.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
         request = self.factory.get('')
diff --git a/bookwyrm/tests/views/test_federation.py b/bookwyrm/tests/views/test_federation.py
index 2a182a21..70cf41f6 100644
--- a/bookwyrm/tests/views/test_federation.py
+++ b/bookwyrm/tests/views/test_federation.py
@@ -15,6 +15,7 @@ class FederationViews(TestCase):
         self.local_user = models.User.objects.create_user(
             'mouse@local.com', 'mouse@mouse.mouse', 'password',
             local=True, localname='mouse')
+        models.SiteSettings.objects.create()
 
 
     def test_federation_page(self):
@@ -25,5 +26,5 @@ class FederationViews(TestCase):
         request.user.is_superuser = True
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'settings/federation.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
diff --git a/bookwyrm/tests/views/test_feed.py b/bookwyrm/tests/views/test_feed.py
index da597a7c..879dd2b6 100644
--- a/bookwyrm/tests/views/test_feed.py
+++ b/bookwyrm/tests/views/test_feed.py
@@ -21,6 +21,7 @@ class FeedMessageViews(TestCase):
             title='Example Edition',
             remote_id='https://example.com/book/1',
         )
+        models.SiteSettings.objects.create()
 
 
     def test_feed(self):
@@ -30,7 +31,7 @@ class FeedMessageViews(TestCase):
         request.user = self.local_user
         result = view(request, 'local')
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'feed/feed.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
 
@@ -45,7 +46,7 @@ class FeedMessageViews(TestCase):
             is_api.return_value = False
             result = view(request, 'mouse', status.id)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'feed/status.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
         with patch('bookwyrm.views.feed.is_api_request') as is_api:
@@ -66,7 +67,7 @@ class FeedMessageViews(TestCase):
             is_api.return_value = False
             result = view(request, 'mouse', status.id)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'feed/status.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
         with patch('bookwyrm.views.feed.is_api_request') as is_api:
@@ -83,7 +84,7 @@ class FeedMessageViews(TestCase):
         request.user = self.local_user
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'feed/direct_messages.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
 
diff --git a/bookwyrm/tests/views/test_import.py b/bookwyrm/tests/views/test_import.py
index 14209f24..ba8f2457 100644
--- a/bookwyrm/tests/views/test_import.py
+++ b/bookwyrm/tests/views/test_import.py
@@ -16,6 +16,7 @@ class ImportViews(TestCase):
         self.local_user = models.User.objects.create_user(
             'mouse@local.com', 'mouse@mouse.mouse', 'password',
             local=True, localname='mouse')
+        models.SiteSettings.objects.create()
 
 
     def test_import_page(self):
@@ -25,7 +26,7 @@ class ImportViews(TestCase):
         request.user = self.local_user
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'import.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
 
@@ -39,5 +40,5 @@ class ImportViews(TestCase):
             async_result.return_value = []
             result = view(request, import_job.id)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'import_status.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
diff --git a/bookwyrm/tests/views/test_invite.py b/bookwyrm/tests/views/test_invite.py
index 85741688..e93e7209 100644
--- a/bookwyrm/tests/views/test_invite.py
+++ b/bookwyrm/tests/views/test_invite.py
@@ -18,6 +18,7 @@ class InviteViews(TestCase):
         self.local_user = models.User.objects.create_user(
             'mouse@local.com', 'mouse@mouse.mouse', 'password',
             local=True, localname='mouse')
+        models.SiteSettings.objects.create()
 
 
     def test_invite_page(self):
@@ -32,7 +33,7 @@ class InviteViews(TestCase):
             invite.return_value = True
             result = view(request, 'hi')
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'invite.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
 
@@ -44,5 +45,5 @@ class InviteViews(TestCase):
         request.user.is_superuser = True
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'settings/manage_invites.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
diff --git a/bookwyrm/tests/views/test_landing.py b/bookwyrm/tests/views/test_landing.py
index 8576af49..5e0e50cf 100644
--- a/bookwyrm/tests/views/test_landing.py
+++ b/bookwyrm/tests/views/test_landing.py
@@ -18,6 +18,7 @@ class LandingViews(TestCase):
             local=True, localname='mouse')
         self.anonymous_user = AnonymousUser
         self.anonymous_user.is_authenticated = False
+        models.SiteSettings.objects.create()
 
 
     def test_home_page(self):
@@ -27,13 +28,13 @@ class LandingViews(TestCase):
         request.user = self.local_user
         result = view(request)
         self.assertEqual(result.status_code, 200)
-        self.assertEqual(result.template_name, 'feed/feed.html')
+        result.render()
 
         request.user = self.anonymous_user
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
         self.assertEqual(result.status_code, 200)
-        self.assertEqual(result.template_name, 'discover.html')
+        result.render()
 
 
     def test_about_page(self):
@@ -43,7 +44,7 @@ class LandingViews(TestCase):
         request.user = self.local_user
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'about.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
 
@@ -53,5 +54,3 @@ class LandingViews(TestCase):
         request = self.factory.get('')
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'discover.html')
-        self.assertEqual(result.status_code, 200)
diff --git a/bookwyrm/tests/views/test_notifications.py b/bookwyrm/tests/views/test_notifications.py
index 683424d5..24fbde1e 100644
--- a/bookwyrm/tests/views/test_notifications.py
+++ b/bookwyrm/tests/views/test_notifications.py
@@ -15,6 +15,7 @@ class NotificationViews(TestCase):
         self.local_user = models.User.objects.create_user(
             'mouse@local.com', 'mouse@mouse.mouse', 'password',
             local=True, localname='mouse')
+        models.SiteSettings.objects.create()
 
     def test_notifications_page(self):
         ''' there are so many views, this just makes sure it LOADS '''
@@ -23,7 +24,7 @@ class NotificationViews(TestCase):
         request.user = self.local_user
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'notifications.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
     def test_clear_notifications(self):
diff --git a/bookwyrm/tests/views/test_password.py b/bookwyrm/tests/views/test_password.py
index 8cac2b13..9fc37fdb 100644
--- a/bookwyrm/tests/views/test_password.py
+++ b/bookwyrm/tests/views/test_password.py
@@ -19,6 +19,7 @@ class PasswordViews(TestCase):
             local=True, localname='mouse')
         self.anonymous_user = AnonymousUser
         self.anonymous_user.is_authenticated = False
+        models.SiteSettings.objects.create(id=1)
 
 
     def test_password_reset_request(self):
@@ -29,7 +30,7 @@ class PasswordViews(TestCase):
 
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'password_reset_request.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
 
@@ -43,7 +44,7 @@ class PasswordViews(TestCase):
         request = self.factory.post('', {'email': 'mouse@mouse.com'})
         with patch('bookwyrm.emailing.send_email.delay'):
             resp = view(request)
-        self.assertEqual(resp.template_name, 'password_reset_request.html')
+        resp.render()
 
         self.assertEqual(
             models.PasswordReset.objects.get().user, self.local_user)
@@ -56,7 +57,7 @@ class PasswordViews(TestCase):
         request.user = self.anonymous_user
         result = view(request, code.code)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'password_reset.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
 
@@ -82,7 +83,7 @@ class PasswordViews(TestCase):
             'confirm-password': 'hi'
         })
         resp = view(request, 'jhgdkfjgdf')
-        self.assertEqual(resp.template_name, 'password_reset.html')
+        resp.render()
         self.assertTrue(models.PasswordReset.objects.exists())
 
     def test_password_reset_mismatch(self):
@@ -94,7 +95,7 @@ class PasswordViews(TestCase):
             'confirm-password': 'hihi'
         })
         resp = view(request, code.code)
-        self.assertEqual(resp.template_name, 'password_reset.html')
+        resp.render()
         self.assertTrue(models.PasswordReset.objects.exists())
 
 
@@ -106,7 +107,7 @@ class PasswordViews(TestCase):
 
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'preferences/change_password.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
 
diff --git a/bookwyrm/tests/views/test_search.py b/bookwyrm/tests/views/test_search.py
index 3f1d7850..e5cba99c 100644
--- a/bookwyrm/tests/views/test_search.py
+++ b/bookwyrm/tests/views/test_search.py
@@ -33,6 +33,7 @@ class ShelfViews(TestCase):
             connector_file='self_connector',
             local=True
         )
+        models.SiteSettings.objects.create()
 
 
     def test_search_json_response(self):
@@ -89,7 +90,7 @@ class ShelfViews(TestCase):
                 manager.return_value = [search_result]
                 response = view(request)
         self.assertIsInstance(response, TemplateResponse)
-        self.assertEqual(response.template_name, 'search_results.html')
+        response.render()
         self.assertEqual(
             response.context_data['book_results'][0].title, 'Gideon the Ninth')
 
@@ -103,6 +104,6 @@ class ShelfViews(TestCase):
             with patch('bookwyrm.connectors.connector_manager.search'):
                 response = view(request)
         self.assertIsInstance(response, TemplateResponse)
-        self.assertEqual(response.template_name, 'search_results.html')
+        response.render()
         self.assertEqual(
             response.context_data['user_results'][0], self.local_user)
diff --git a/bookwyrm/tests/views/test_shelf.py b/bookwyrm/tests/views/test_shelf.py
index 95150fe9..f67bbc56 100644
--- a/bookwyrm/tests/views/test_shelf.py
+++ b/bookwyrm/tests/views/test_shelf.py
@@ -29,6 +29,7 @@ class ShelfViews(TestCase):
             identifier='test-shelf',
             user=self.local_user
         )
+        models.SiteSettings.objects.create()
 
 
     def test_shelf_page(self):
@@ -41,7 +42,7 @@ class ShelfViews(TestCase):
             is_api.return_value = False
             result = view(request, self.local_user.username, shelf.identifier)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'user/shelf.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
         with patch('bookwyrm.views.shelf.is_api_request') as is_api:
diff --git a/bookwyrm/tests/views/test_tag.py b/bookwyrm/tests/views/test_tag.py
index 1556139c..3dfef9a1 100644
--- a/bookwyrm/tests/views/test_tag.py
+++ b/bookwyrm/tests/views/test_tag.py
@@ -33,6 +33,7 @@ class TagViews(TestCase):
             remote_id='https://example.com/book/1',
             parent_work=self.work
         )
+        models.SiteSettings.objects.create()
 
 
     def test_tag_page(self):
@@ -46,7 +47,7 @@ class TagViews(TestCase):
             is_api.return_value = False
             result = view(request, tag.identifier)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'tag.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
         request = self.factory.get('')
diff --git a/bookwyrm/tests/views/test_user.py b/bookwyrm/tests/views/test_user.py
index 61fcdb64..616a6575 100644
--- a/bookwyrm/tests/views/test_user.py
+++ b/bookwyrm/tests/views/test_user.py
@@ -23,6 +23,7 @@ class UserViews(TestCase):
         self.rat = models.User.objects.create_user(
             'rat@local.com', 'rat@rat.rat', 'password',
             local=True, localname='rat')
+        models.SiteSettings.objects.create()
 
 
     def test_user_page(self):
@@ -34,7 +35,7 @@ class UserViews(TestCase):
             is_api.return_value = False
             result = view(request, 'mouse')
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'user/user.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
         with patch('bookwyrm.views.user.is_api_request') as is_api:
@@ -65,7 +66,7 @@ class UserViews(TestCase):
             is_api.return_value = False
             result = view(request, 'mouse')
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'user/followers.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
         with patch('bookwyrm.views.user.is_api_request') as is_api:
@@ -96,7 +97,7 @@ class UserViews(TestCase):
             is_api.return_value = False
             result = view(request, 'mouse')
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'user/following.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
         with patch('bookwyrm.views.user.is_api_request') as is_api:
@@ -125,7 +126,7 @@ class UserViews(TestCase):
         request.user = self.local_user
         result = view(request)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'preferences/edit_user.html')
+        result.render()
         self.assertEqual(result.status_code, 200)
 
 

From e5fd14b2067b54a095bd374cdccbbb215ca8b52e Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 13:11:43 -0800
Subject: [PATCH 047/280] Confirmation modal for to-read shelve action

---
 bookwyrm/templates/components/modal.html      |  4 ++-
 .../templates/snippets/shelve_button.html     |  4 ++-
 .../snippets/shelve_button_options.html       |  4 ++-
 .../snippets/want_to_read_modal.html          | 30 +++++++++++++++++++
 bookwyrm/templatetags/bookwyrm_tags.py        |  4 +++
 5 files changed, 43 insertions(+), 3 deletions(-)
 create mode 100644 bookwyrm/templates/snippets/want_to_read_modal.html

diff --git a/bookwyrm/templates/components/modal.html b/bookwyrm/templates/components/modal.html
index 72402914..554f9ccd 100644
--- a/bookwyrm/templates/components/modal.html
+++ b/bookwyrm/templates/components/modal.html
@@ -8,15 +8,17 @@
             {% include 'snippets/toggle/toggle_button.html' with label="close" class="delete" nonbutton=True %}
         </header>
         {% block modal-form-open %}{% endblock %}
+        {% if not no_body %}
         <section class="modal-card-body">
             {% block modal-body %}{% endblock %}
         </section>
+        {% endif %}
         <footer class="modal-card-foot">
             {% block modal-footer %}{% endblock %}
         </footer>
         {% block modal-form-close %}{% endblock %}
     </div>
-    <label class="modal-close is-large" for="{{ controls_text }}-{{ readthrough.id }}" aria-label="close"></label>
+    <label class="modal-close is-large" for="{{ controls_text }}-{{ controls_uid }}" aria-label="close"></label>
     {% include 'snippets/toggle/toggle_button.html' with label="close" class="modal-close is-large" nonbutton=True %}
 </div>
 
diff --git a/bookwyrm/templates/snippets/shelve_button.html b/bookwyrm/templates/snippets/shelve_button.html
index 946368c2..769da50f 100644
--- a/bookwyrm/templates/snippets/shelve_button.html
+++ b/bookwyrm/templates/snippets/shelve_button.html
@@ -10,12 +10,14 @@
     </div>
     {% else %}
     <div class="control">
-        {% include 'snippets/shelve_button_options.html' with class="shelf-option is-small" shelves=request.user.shelf_set.all active_shelf=active_shelf %}
+        {% include 'snippets/shelve_button_options.html' with class="shelf-option is-small" shelves=request.user.shelf_set.all active_shelf=active_shelf button_uuid=uuid %}
     </div>
     {% include 'snippets/shelve_button_dropdown.html' with class="is-small" button_uuid=uuid%}
     {% endif %}
 </div>
 
+{% include 'snippets/want_to_read_modal.html' with book=active_shelf.book controls_text="want-to-read" controls_uid=uuid no_body=True %}
+
 {% include 'snippets/start_reading_modal.html' with book=active_shelf.book controls_text="start-reading" controls_uid=uuid %}
 
 {% latest_read_through book request.user as readthrough %}
diff --git a/bookwyrm/templates/snippets/shelve_button_options.html b/bookwyrm/templates/snippets/shelve_button_options.html
index 84133400..af47ee23 100644
--- a/bookwyrm/templates/snippets/shelve_button_options.html
+++ b/bookwyrm/templates/snippets/shelve_button_options.html
@@ -5,10 +5,12 @@
     <div class="{% if dropdown %}dropdown-item pt-0 pb-0{% elif active_shelf.shelf.identifier|next_shelf != shelf.identifier %}hidden{% endif %}">
     {% if shelf.identifier == 'reading' %}
         {% include 'snippets/toggle/toggle_button.html' with class=class text="Start reading" controls_text="start-reading" controls_uid=button_uuid focus="modal-title-start-reading" disabled=is_current %}
+    {% elif shelf.identifier == 'read' and active_shelf.shelf.identifier == 'read' %}
+    <button type="button" class="button {{ class }}" disabled><span>Read</span>
     {% elif shelf.identifier == 'read' %}
         {% include 'snippets/toggle/toggle_button.html' with class=class text="Finish reading" controls_text="finish-reading" controls_uid=button_uuid focus="modal-title-finish-reading" disabled=is_current %}
     {% elif shelf.identifier == 'to-read' %}
-        {% include 'snippets/toggle/toggle_button.html' with class=class text="Want to read" controls_text="finish-reading" controls_uid=button_uuid focus="modal-title-finish-reading" disabled=is_current %}
+        {% include 'snippets/toggle/toggle_button.html' with class=class text="Want to read" controls_text="want-to-read" controls_uid=button_uuid focus="modal-title-want-to-read" disabled=is_current %}
     {% else %}
         <form name="shelve" action="/shelve/" method="post">
             {% csrf_token %}
diff --git a/bookwyrm/templates/snippets/want_to_read_modal.html b/bookwyrm/templates/snippets/want_to_read_modal.html
new file mode 100644
index 00000000..37a4c39a
--- /dev/null
+++ b/bookwyrm/templates/snippets/want_to_read_modal.html
@@ -0,0 +1,30 @@
+{% extends 'components/modal.html' %}
+
+{% block modal-title %}
+Want to Read "<em>{{ book.title }}</em>"
+{% endblock %}
+
+{% block modal-form-open %}
+<form name="shelve" action="/shelve/" method="post">
+    {% csrf_token %}
+    <input type="hidden" name="book" value="{{ active_shelf.book.id }}">
+{% endblock %}
+
+{% block modal-footer %}
+<div class="columns">
+    <div class="column field">
+        <label for="post_status_want-{{ uuid }}">
+            <input type="checkbox" name="post-status" class="checkbox" id="post_status_want-{{ uuid }}" checked>
+            Post to feed
+        </label>
+        {% include 'snippets/privacy_select.html' %}
+    </div>
+    <div class="column">
+        <button class="button is-success" name="shelf" type="submit" value="{{ shelf.identifier }}" {% if shelf in book.shelf_set.all %} disabled {% endif %}>
+            <span>Want to read</span>
+        </button>
+        {% include 'snippets/toggle/toggle_button.html' with text="Cancel" controls_text="want-to-read" controls_uid=uuid %}
+    </div>
+</div>
+{% endblock %}
+{% block modal-form-close %}</form>{% endblock %}
diff --git a/bookwyrm/templatetags/bookwyrm_tags.py b/bookwyrm/templatetags/bookwyrm_tags.py
index c1a2d14e..0a699129 100644
--- a/bookwyrm/templatetags/bookwyrm_tags.py
+++ b/bookwyrm/templatetags/bookwyrm_tags.py
@@ -161,10 +161,13 @@ def get_status_preview_name(obj):
 
 @register.filter(name='next_shelf')
 def get_next_shelf(current_shelf):
+    ''' shelf you'd use to update reading progress '''
     if current_shelf == 'to-read':
         return 'reading'
     if current_shelf == 'reading':
         return 'read'
+    if current_shelf == 'read':
+        return 'read'
     return 'to-read'
 
 @register.simple_tag(takes_context=False)
@@ -211,4 +214,5 @@ def active_read_through(book, user):
 
 @register.simple_tag(takes_context=False)
 def comparison_bool(str1, str2):
+    ''' idk why I need to write a tag for this, it reutrns a bool '''
     return str1 == str2

From 9b326f732158333f9dcb713e2b759ddc2babe7d7 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 15:18:38 -0800
Subject: [PATCH 048/280] Give user control over "want to read" posts

---
 bookwyrm/templates/snippets/want_to_read_modal.html | 3 ++-
 bookwyrm/views/shelf.py                             | 8 ++++++--
 2 files changed, 8 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/templates/snippets/want_to_read_modal.html b/bookwyrm/templates/snippets/want_to_read_modal.html
index 37a4c39a..9b7e2bde 100644
--- a/bookwyrm/templates/snippets/want_to_read_modal.html
+++ b/bookwyrm/templates/snippets/want_to_read_modal.html
@@ -8,6 +8,7 @@ Want to Read "<em>{{ book.title }}</em>"
 <form name="shelve" action="/shelve/" method="post">
     {% csrf_token %}
     <input type="hidden" name="book" value="{{ active_shelf.book.id }}">
+    <input type="hidden" name="shelf" value="to-read">
 {% endblock %}
 
 {% block modal-footer %}
@@ -20,7 +21,7 @@ Want to Read "<em>{{ book.title }}</em>"
         {% include 'snippets/privacy_select.html' %}
     </div>
     <div class="column">
-        <button class="button is-success" name="shelf" type="submit" value="{{ shelf.identifier }}" {% if shelf in book.shelf_set.all %} disabled {% endif %}>
+        <button class="button is-success" type="submit">
             <span>Want to read</span>
         </button>
         {% include 'snippets/toggle/toggle_button.html' with text="Cancel" controls_text="want-to-read" controls_uid=uuid %}
diff --git a/bookwyrm/views/shelf.py b/bookwyrm/views/shelf.py
index ae8a494b..25275d67 100644
--- a/bookwyrm/views/shelf.py
+++ b/bookwyrm/views/shelf.py
@@ -125,6 +125,8 @@ def shelve(request):
         identifier=request.POST.get('shelf'),
         user=request.user
     ).first()
+    #if not desired_shelf:
+    #    return HttpResponseNotFound()
 
     if request.POST.get('reshelve', True):
         try:
@@ -141,12 +143,14 @@ def shelve(request):
     broadcast(request.user, shelfbook.to_add_activity(request.user))
 
     # post about "want to read" shelves
-    if desired_shelf.identifier == 'to-read':
+    if desired_shelf.identifier == 'to-read' and \
+            request.POST.get('post-status'):
+        privacy = request.POST.get('privacy') or desired_shelf.privacy
         handle_reading_status(
             request.user,
             desired_shelf,
             book,
-            privacy=desired_shelf.privacy
+            privacy=privacy
         )
 
     return redirect('/')

From 7afab352b1585ceaa55258ebf5c8cb5f41dcf5a1 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 11:46:15 -0800
Subject: [PATCH 049/280] Fixes incorrect tempalte path in threaded status page

---
 bookwyrm/templates/feed/thread.html | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/templates/feed/thread.html b/bookwyrm/templates/feed/thread.html
index 589702ce..aa67d5bb 100644
--- a/bookwyrm/templates/feed/thread.html
+++ b/bookwyrm/templates/feed/thread.html
@@ -4,7 +4,7 @@
 {% with depth=depth|add:1 %}
     {% if depth <= max_depth and status.reply_parent and direction <= 0 %}
         {% with direction=-1 %}
-        {% include 'snippets/thread.html' with status=status|parent is_root=False %}
+        {% include 'feed/thread.html' with status=status|parent is_root=False %}
         {% endwith %}
     {% endif %}
 
@@ -13,7 +13,7 @@
 {% if depth <= max_depth and direction >= 0 %}
     {% for reply in status|replies  %}
         {% with direction=1 %}
-            {% include 'snippets/thread.html' with status=reply is_root=False %}
+            {% include 'feed/thread.html' with status=reply is_root=False %}
         {% endwith %}
     {% endfor %}
 {% endif %}

From 0c723eb550ea4c97f261ed9272e6b8852aa39bc5 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 12:03:50 -0800
Subject: [PATCH 050/280] Fixes shelf page template path bug

---
 bookwyrm/templates/{ => user}/shelf.html | 28 +++++++++++-------------
 bookwyrm/tests/views/test_shelf.py       |  2 +-
 bookwyrm/views/shelf.py                  |  2 +-
 3 files changed, 15 insertions(+), 17 deletions(-)
 rename bookwyrm/templates/{ => user}/shelf.html (89%)

diff --git a/bookwyrm/templates/shelf.html b/bookwyrm/templates/user/shelf.html
similarity index 89%
rename from bookwyrm/templates/shelf.html
rename to bookwyrm/templates/user/shelf.html
index da599c7d..c0083e17 100644
--- a/bookwyrm/templates/shelf.html
+++ b/bookwyrm/templates/user/shelf.html
@@ -1,21 +1,19 @@
-{% extends 'layout.html' %}
+{% extends 'user/user_layout.html' %}
 {% load bookwyrm_tags %}
-{% block content %}
 
-<div class="columns">
-    <div class="column">
-        <h1 class="title">
-            {% if is_self %}Your
-            {% else %}
-            {% include 'snippets/username.html' with user=user possessive=True %}
-            {% endif %}
-            shelves
-        </h1>
-    </div>
-</div>
-
-{% include 'snippets/user_header.html' with user=user %}
+{% block header %}
+<header class="columns">
+    <h1 class="title">
+        {% if is_self %}Your
+        {% else %}
+        {% include 'snippets/username.html' with user=user possessive=True %}
+        {% endif %}
+        shelves
+    </h1>
+</header>
+{% endblock %}
 
+{% block panel %}
 <div class="block columns">
     <div class="column">
         <div class="tabs" role="tablist">
diff --git a/bookwyrm/tests/views/test_shelf.py b/bookwyrm/tests/views/test_shelf.py
index 35e07953..95150fe9 100644
--- a/bookwyrm/tests/views/test_shelf.py
+++ b/bookwyrm/tests/views/test_shelf.py
@@ -41,7 +41,7 @@ class ShelfViews(TestCase):
             is_api.return_value = False
             result = view(request, self.local_user.username, shelf.identifier)
         self.assertIsInstance(result, TemplateResponse)
-        self.assertEqual(result.template_name, 'shelf.html')
+        self.assertEqual(result.template_name, 'user/shelf.html')
         self.assertEqual(result.status_code, 200)
 
         with patch('bookwyrm.views.shelf.is_api_request') as is_api:
diff --git a/bookwyrm/views/shelf.py b/bookwyrm/views/shelf.py
index 25275d67..05049109 100644
--- a/bookwyrm/views/shelf.py
+++ b/bookwyrm/views/shelf.py
@@ -62,7 +62,7 @@ class Shelf(View):
             'books': [b.book for b in books],
         }
 
-        return TemplateResponse(request, 'shelf.html', data)
+        return TemplateResponse(request, 'user/shelf.html', data)
 
     @method_decorator(login_required, name='dispatch')
     # pylint: disable=unused-argument

From 74d37c84be5c48fa0a146dcfc54c803091dcc722 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 15:46:20 -0800
Subject: [PATCH 051/280] Don't show the main button in the dropdown

---
 bookwyrm/templates/snippets/shelve_button_options.html | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/bookwyrm/templates/snippets/shelve_button_options.html b/bookwyrm/templates/snippets/shelve_button_options.html
index af47ee23..2d7d9609 100644
--- a/bookwyrm/templates/snippets/shelve_button_options.html
+++ b/bookwyrm/templates/snippets/shelve_button_options.html
@@ -3,15 +3,15 @@
 {% comparison_bool shelf.identifier active_shelf.shelf.identifier as is_current %}
 {% if dropdown %}<li role="menuitem">{% endif %}
     <div class="{% if dropdown %}dropdown-item pt-0 pb-0{% elif active_shelf.shelf.identifier|next_shelf != shelf.identifier %}hidden{% endif %}">
-    {% if shelf.identifier == 'reading' %}
+    {% if shelf.identifier == 'reading' %}{% if not dropdown or active_shelf.shelf.identifier|next_shelf != shelf.identifier %}
         {% include 'snippets/toggle/toggle_button.html' with class=class text="Start reading" controls_text="start-reading" controls_uid=button_uuid focus="modal-title-start-reading" disabled=is_current %}
-    {% elif shelf.identifier == 'read' and active_shelf.shelf.identifier == 'read' %}
+    {% endif %}{% elif shelf.identifier == 'read' and active_shelf.shelf.identifier == 'read' %}{% if not dropdown or active_shelf.shelf.identifier|next_shelf != shelf.identifier %}
     <button type="button" class="button {{ class }}" disabled><span>Read</span>
-    {% elif shelf.identifier == 'read' %}
+    {% endif %}{% elif shelf.identifier == 'read' %}{% if not dropdown or active_shelf.shelf.identifier|next_shelf != shelf.identifier %}
         {% include 'snippets/toggle/toggle_button.html' with class=class text="Finish reading" controls_text="finish-reading" controls_uid=button_uuid focus="modal-title-finish-reading" disabled=is_current %}
-    {% elif shelf.identifier == 'to-read' %}
+    {% endif %}{% elif shelf.identifier == 'to-read' %}{% if not dropdown or active_shelf.shelf.identifier|next_shelf != shelf.identifier %}
         {% include 'snippets/toggle/toggle_button.html' with class=class text="Want to read" controls_text="want-to-read" controls_uid=button_uuid focus="modal-title-want-to-read" disabled=is_current %}
-    {% else %}
+    {% endif %}{% elif shelf.editable %}
         <form name="shelve" action="/shelve/" method="post">
             {% csrf_token %}
             <input type="hidden" name="book" value="{{ active_shelf.book.id }}">

From 765a6a18786074c5bfbb018a85a1c1d0e11136eb Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 15:56:22 -0800
Subject: [PATCH 052/280] uncomment error handling for bad shelf id

---
 bookwyrm/views/shelf.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/views/shelf.py b/bookwyrm/views/shelf.py
index 05049109..82f98db6 100644
--- a/bookwyrm/views/shelf.py
+++ b/bookwyrm/views/shelf.py
@@ -125,8 +125,8 @@ def shelve(request):
         identifier=request.POST.get('shelf'),
         user=request.user
     ).first()
-    #if not desired_shelf:
-    #    return HttpResponseNotFound()
+    if not desired_shelf:
+        return HttpResponseNotFound()
 
     if request.POST.get('reshelve', True):
         try:

From 6ff70d0d2ceed226fb2ab909262fd73926bc13cb Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 15:59:50 -0800
Subject: [PATCH 053/280] directory for shelve button templates

---
 bookwyrm/templates/book.html                                    | 2 +-
 bookwyrm/templates/feed/feed_layout.html                        | 2 +-
 bookwyrm/templates/snippets/book_preview.html                   | 2 +-
 bookwyrm/templates/snippets/book_tiles.html                     | 2 +-
 .../templates/snippets/{ => shelve_button}/shelve_button.html   | 0
 .../snippets/{ => shelve_button}/shelve_button_dropdown.html    | 0
 .../snippets/{ => shelve_button}/shelve_button_options.html     | 0
 7 files changed, 4 insertions(+), 4 deletions(-)
 rename bookwyrm/templates/snippets/{ => shelve_button}/shelve_button.html (100%)
 rename bookwyrm/templates/snippets/{ => shelve_button}/shelve_button_dropdown.html (100%)
 rename bookwyrm/templates/snippets/{ => shelve_button}/shelve_button_options.html (100%)

diff --git a/bookwyrm/templates/book.html b/bookwyrm/templates/book.html
index 4a95237c..f24f8f2c 100644
--- a/bookwyrm/templates/book.html
+++ b/bookwyrm/templates/book.html
@@ -35,7 +35,7 @@
         <div class="column is-narrow">
             {% include 'snippets/book_cover.html' with book=book size=large %}
             {% include 'snippets/rate_action.html' with user=request.user book=book %}
-            {% include 'snippets/shelve_button.html' %}
+            {% include 'snippets/shelve_button/shelve_button.html' %}
 
             {% if request.user.is_authenticated and not book.cover %}
             <div class="box p-2">
diff --git a/bookwyrm/templates/feed/feed_layout.html b/bookwyrm/templates/feed/feed_layout.html
index f0c7b057..00ac4ab8 100644
--- a/bookwyrm/templates/feed/feed_layout.html
+++ b/bookwyrm/templates/feed/feed_layout.html
@@ -48,7 +48,7 @@
                 </div>
             </div>
             <div class="card-content">
-                {% include 'snippets/shelve_button.html' with book=book %}
+                {% include 'snippets/shelve_button/shelve_button.html' with book=book %}
                 {% active_shelf book as active_shelf %}
                 {% if active_shelf.shelf.identifier == 'reading' and book.latest_readthrough %}
                 {% include 'snippets/progress_update.html' with readthrough=book.latest_readthrough %}
diff --git a/bookwyrm/templates/snippets/book_preview.html b/bookwyrm/templates/snippets/book_preview.html
index e7eca455..178aa64d 100644
--- a/bookwyrm/templates/snippets/book_preview.html
+++ b/bookwyrm/templates/snippets/book_preview.html
@@ -3,7 +3,7 @@
     <div class="column is-narrow">
         <div>
         <a href="/book/{{ book.id }}">{% include 'snippets/book_cover.html' with book=book %}</a>
-        {% include 'snippets/shelve_button.html' with book=book %}
+        {% include 'snippets/shelve_button/shelve_button.html' with book=book %}
         </div>
     </div>
     <div class="column">
diff --git a/bookwyrm/templates/snippets/book_tiles.html b/bookwyrm/templates/snippets/book_tiles.html
index 85f685a8..1867a8a8 100644
--- a/bookwyrm/templates/snippets/book_tiles.html
+++ b/bookwyrm/templates/snippets/book_tiles.html
@@ -5,7 +5,7 @@
             <a href="/book/{{ book.id }}">
                 {% include 'snippets/book_cover.html' with book=book %}
             </a>
-            {% include 'snippets/shelve_button.html' with book=book switch_mode=True %}
+            {% include 'snippets/shelve_button/shelve_button.html' with book=book switch_mode=True %}
         </div>
     </div>
     {% endfor %}
diff --git a/bookwyrm/templates/snippets/shelve_button.html b/bookwyrm/templates/snippets/shelve_button/shelve_button.html
similarity index 100%
rename from bookwyrm/templates/snippets/shelve_button.html
rename to bookwyrm/templates/snippets/shelve_button/shelve_button.html
diff --git a/bookwyrm/templates/snippets/shelve_button_dropdown.html b/bookwyrm/templates/snippets/shelve_button/shelve_button_dropdown.html
similarity index 100%
rename from bookwyrm/templates/snippets/shelve_button_dropdown.html
rename to bookwyrm/templates/snippets/shelve_button/shelve_button_dropdown.html
diff --git a/bookwyrm/templates/snippets/shelve_button_options.html b/bookwyrm/templates/snippets/shelve_button/shelve_button_options.html
similarity index 100%
rename from bookwyrm/templates/snippets/shelve_button_options.html
rename to bookwyrm/templates/snippets/shelve_button/shelve_button_options.html

From 645e85050cb77c2710314af33312839daeaed3a4 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 16:01:36 -0800
Subject: [PATCH 054/280] Group modals with shelve button

---
 .../{ => shelve_button}/finish_reading_modal.html      |  0
 .../snippets/shelve_button/shelve_button.html          | 10 +++++-----
 .../snippets/shelve_button/shelve_button_dropdown.html |  2 +-
 .../{ => shelve_button}/start_reading_modal.html       |  0
 .../{ => shelve_button}/want_to_read_modal.html        |  0
 5 files changed, 6 insertions(+), 6 deletions(-)
 rename bookwyrm/templates/snippets/{ => shelve_button}/finish_reading_modal.html (100%)
 rename bookwyrm/templates/snippets/{ => shelve_button}/start_reading_modal.html (100%)
 rename bookwyrm/templates/snippets/{ => shelve_button}/want_to_read_modal.html (100%)

diff --git a/bookwyrm/templates/snippets/finish_reading_modal.html b/bookwyrm/templates/snippets/shelve_button/finish_reading_modal.html
similarity index 100%
rename from bookwyrm/templates/snippets/finish_reading_modal.html
rename to bookwyrm/templates/snippets/shelve_button/finish_reading_modal.html
diff --git a/bookwyrm/templates/snippets/shelve_button/shelve_button.html b/bookwyrm/templates/snippets/shelve_button/shelve_button.html
index 769da50f..5f6ed8d2 100644
--- a/bookwyrm/templates/snippets/shelve_button/shelve_button.html
+++ b/bookwyrm/templates/snippets/shelve_button/shelve_button.html
@@ -10,18 +10,18 @@
     </div>
     {% else %}
     <div class="control">
-        {% include 'snippets/shelve_button_options.html' with class="shelf-option is-small" shelves=request.user.shelf_set.all active_shelf=active_shelf button_uuid=uuid %}
+        {% include 'snippets/shelve_button/shelve_button_options.html' with class="shelf-option is-small" shelves=request.user.shelf_set.all active_shelf=active_shelf button_uuid=uuid %}
     </div>
-    {% include 'snippets/shelve_button_dropdown.html' with class="is-small" button_uuid=uuid%}
+    {% include 'snippets/shelve_button/shelve_button_dropdown.html' with class="is-small" button_uuid=uuid%}
     {% endif %}
 </div>
 
-{% include 'snippets/want_to_read_modal.html' with book=active_shelf.book controls_text="want-to-read" controls_uid=uuid no_body=True %}
+{% include 'snippets/shelve_button/want_to_read_modal.html' with book=active_shelf.book controls_text="want-to-read" controls_uid=uuid no_body=True %}
 
-{% include 'snippets/start_reading_modal.html' with book=active_shelf.book controls_text="start-reading" controls_uid=uuid %}
+{% include 'snippets/shelve_button/start_reading_modal.html' with book=active_shelf.book controls_text="start-reading" controls_uid=uuid %}
 
 {% latest_read_through book request.user as readthrough %}
-{% include 'snippets/finish_reading_modal.html' with book=active_shelf.book controls_text="finish-reading" controls_uid=uuid readthrough=readthrough %}
+{% include 'snippets/shelve_button/finish_reading_modal.html' with book=active_shelf.book controls_text="finish-reading" controls_uid=uuid readthrough=readthrough %}
 
 {% endwith %}
 {% endif %}
diff --git a/bookwyrm/templates/snippets/shelve_button/shelve_button_dropdown.html b/bookwyrm/templates/snippets/shelve_button/shelve_button_dropdown.html
index d70765a3..47cf3505 100644
--- a/bookwyrm/templates/snippets/shelve_button/shelve_button_dropdown.html
+++ b/bookwyrm/templates/snippets/shelve_button/shelve_button_dropdown.html
@@ -6,5 +6,5 @@
 {% endblock %}
 
 {% block dropdown-list %}
-{% include 'snippets/shelve_button_options.html' with active_shelf=active_shelf shelves=request.user.shelf_set.all dropdown=True class="shelf-option is-fullwidth is-small" %}
+{% include 'snippets/shelve_button/shelve_button_options.html' with active_shelf=active_shelf shelves=request.user.shelf_set.all dropdown=True class="shelf-option is-fullwidth is-small" %}
 {% endblock %}
diff --git a/bookwyrm/templates/snippets/start_reading_modal.html b/bookwyrm/templates/snippets/shelve_button/start_reading_modal.html
similarity index 100%
rename from bookwyrm/templates/snippets/start_reading_modal.html
rename to bookwyrm/templates/snippets/shelve_button/start_reading_modal.html
diff --git a/bookwyrm/templates/snippets/want_to_read_modal.html b/bookwyrm/templates/snippets/shelve_button/want_to_read_modal.html
similarity index 100%
rename from bookwyrm/templates/snippets/want_to_read_modal.html
rename to bookwyrm/templates/snippets/shelve_button/want_to_read_modal.html

From 661d49d9cc69915003ed14d3f4f4d4b797d5d4a6 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 17:19:01 -0800
Subject: [PATCH 055/280] Ignore openlibrary editions with little to no
 metadata

Also fixes the isbn problem
---
 bookwyrm/connectors/openlibrary.py | 31 +++++++++++++++++++++++++++---
 1 file changed, 28 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/connectors/openlibrary.py b/bookwyrm/connectors/openlibrary.py
index 55355131..cd196d27 100644
--- a/bookwyrm/connectors/openlibrary.py
+++ b/bookwyrm/connectors/openlibrary.py
@@ -27,9 +27,9 @@ class Connector(AbstractConnector):
             Mapping('series', formatter=get_first),
             Mapping('seriesNumber', remote_field='series_number'),
             Mapping('subjects'),
-            Mapping('subjectPlaces'),
-            Mapping('isbn13', formatter=get_first),
-            Mapping('isbn10', formatter=get_first),
+            Mapping('subjectPlaces', remote_field='subject_places'),
+            Mapping('isbn13', remote_field='isbn_13', formatter=get_first),
+            Mapping('isbn10', remote_field='isbn_10', formatter=get_first),
             Mapping('lccn', formatter=get_first),
             Mapping(
                 'oclcNumber', remote_field='oclc_numbers',
@@ -144,9 +144,34 @@ class Connector(AbstractConnector):
         # we can mass download edition data from OL to avoid repeatedly querying
         edition_options = self.load_edition_data(work.openlibrary_key)
         for edition_data in edition_options.get('entries'):
+            # does this edition have ANY interesting data?
+            if ignore_edition(edition_data):
+                continue
             self.create_edition_from_data(work, edition_data)
 
 
+def ignore_edition(edition_data):
+    ''' don't load a million editions that have no metadata '''
+    # an isbn, we love to see it
+    if edition_data.get('isbn_13') or edition_data.get('isbn_10'):
+        print(edition_data.get('isbn_10'))
+        return False
+    # grudgingly, oclc can stay
+    if edition_data.get('oclc_numbers'):
+        print(edition_data.get('oclc_numbers'))
+        return False
+    # if it has a cover it can stay
+    if edition_data.get('covers'):
+        print(edition_data.get('covers'))
+        return False
+    # keep non-english editions
+    if edition_data.get('languages') and \
+            'languages/eng' not in str(edition_data.get('languages')):
+        print(edition_data.get('languages'))
+        return False
+    return True
+
+
 def get_description(description_blob):
     ''' descriptions can be a string or a dict '''
     if isinstance(description_blob, dict):

From 9833f5a03da6ae2b4a8d298c99506316ccac0fb5 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 17:36:24 -0800
Subject: [PATCH 056/280] Tests creating editions

---
 .../connectors/test_openlibrary_connector.py     | 16 ++++++++++++++++
 bookwyrm/tests/data/ol_edition.json              |  1 +
 2 files changed, 17 insertions(+)

diff --git a/bookwyrm/tests/connectors/test_openlibrary_connector.py b/bookwyrm/tests/connectors/test_openlibrary_connector.py
index dc4c5f5b..c277ba04 100644
--- a/bookwyrm/tests/connectors/test_openlibrary_connector.py
+++ b/bookwyrm/tests/connectors/test_openlibrary_connector.py
@@ -190,3 +190,19 @@ class Openlibrary(TestCase):
         ''' detect if the loaded json is an edition '''
         edition = pick_default_edition(self.edition_list_data['entries'])
         self.assertEqual(edition['key'], '/books/OL9788823M')
+
+
+    def test_create_edition_from_data(self):
+        ''' okay but can it actually create an edition with proper metadata '''
+        work = models.Work.objects.create(title='Hello')
+        result = self.connector.create_edition_from_data(
+            work, self.edition_data)
+        self.assertEqual(result.parent_work, work)
+        self.assertEqual(result.title, 'Sabriel')
+        self.assertEqual(result.isbn_10, '0060273224')
+        self.assertIsNotNone(result.description)
+        self.assertEqual(result.languages[0], 'English')
+        self.assertEqual(result.publishers[0], 'Harper Trophy')
+        self.assertEqual(result.pages, 491)
+        self.assertEqual(result.subjects[0], 'Fantasy.')
+        self.assertEqual(result.physical_format, 'Hardcover')
diff --git a/bookwyrm/tests/data/ol_edition.json b/bookwyrm/tests/data/ol_edition.json
index 459e9dff..2423364b 100644
--- a/bookwyrm/tests/data/ol_edition.json
+++ b/bookwyrm/tests/data/ol_edition.json
@@ -9,6 +9,7 @@
             "518848"
         ]
     },
+    "physical_format": "Hardcover",
     "lc_classifications": [
         "PZ7.N647 Sab 1995"
     ],

From 45ac13a7fffe00337127b5b82d6a569cc2703ed3 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 18:30:07 -0800
Subject: [PATCH 057/280] Clear unused editions with poor metadata

---
 .../management/commands/remove_editions.py    | 34 +++++++++++++++++++
 1 file changed, 34 insertions(+)
 create mode 100644 bookwyrm/management/commands/remove_editions.py

diff --git a/bookwyrm/management/commands/remove_editions.py b/bookwyrm/management/commands/remove_editions.py
new file mode 100644
index 00000000..c5153f44
--- /dev/null
+++ b/bookwyrm/management/commands/remove_editions.py
@@ -0,0 +1,34 @@
+''' PROCEED WITH CAUTION: this permanently deletes book data '''
+from django.core.management.base import BaseCommand
+from django.db.models import Count, Q
+from bookwyrm import models
+
+
+def remove_editions():
+    ''' combine duplicate editions and update related models '''
+    # not in use
+    filters = {'%s__isnull' % r.name: True \
+        for r in models.Edition._meta.related_objects}
+    # no cover, no identifying fields
+    filters['cover'] = ''
+    null_fields = {'%s__isnull' % f: True for f in \
+        ['isbn_10', 'isbn_13', 'oclc_number']}
+
+    editions = models.Edition.objects.filter(
+        Q(languages=[]) | Q(languages__contains=['English']),
+        **filters, **null_fields
+    ).annotate(Count('parent_work__editions')).filter(
+        # mustn't be the only edition for the work
+        parent_work__editions__count__gt=1
+    )
+    print(editions.count())
+    editions.delete()
+
+
+class Command(BaseCommand):
+    ''' dedplucate allllll the book data models '''
+    help = 'merges duplicate book data'
+    # pylint: disable=no-self-use,unused-argument
+    def handle(self, *args, **options):
+        ''' run deudplications '''
+        remove_editions()

From fe088f21fb495b27beee8b1ca178ddc7176f9830 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 21:00:36 -0800
Subject: [PATCH 058/280] Model and migration for lists

---
 .../migrations/0041_auto_20210131_0500.py     | 65 +++++++++++++++
 bookwyrm/models/__init__.py                   |  1 +
 bookwyrm/models/list.py                       | 83 +++++++++++++++++++
 3 files changed, 149 insertions(+)
 create mode 100644 bookwyrm/migrations/0041_auto_20210131_0500.py
 create mode 100644 bookwyrm/models/list.py

diff --git a/bookwyrm/migrations/0041_auto_20210131_0500.py b/bookwyrm/migrations/0041_auto_20210131_0500.py
new file mode 100644
index 00000000..eb00e3f3
--- /dev/null
+++ b/bookwyrm/migrations/0041_auto_20210131_0500.py
@@ -0,0 +1,65 @@
+# Generated by Django 3.0.7 on 2021-01-31 05:00
+
+import bookwyrm.models.base_model
+import bookwyrm.models.fields
+from django.conf import settings
+from django.db import migrations, models
+import django.db.models.deletion
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('bookwyrm', '0040_auto_20210122_0057'),
+    ]
+
+    operations = [
+        migrations.CreateModel(
+            name='List',
+            fields=[
+                ('id', models.AutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('created_date', models.DateTimeField(auto_now_add=True)),
+                ('updated_date', models.DateTimeField(auto_now=True)),
+                ('remote_id', bookwyrm.models.fields.RemoteIdField(max_length=255, null=True, validators=[bookwyrm.models.fields.validate_remote_id])),
+                ('name', bookwyrm.models.fields.CharField(max_length=100)),
+                ('description', bookwyrm.models.fields.TextField(blank=True, null=True)),
+                ('privacy', bookwyrm.models.fields.CharField(choices=[('public', 'Public'), ('unlisted', 'Unlisted'), ('followers', 'Followers'), ('direct', 'Direct')], default='public', max_length=255)),
+                ('curation', bookwyrm.models.fields.CharField(choices=[('closed', 'Closed'), ('open', 'Open'), ('moderated', 'Moderated')], default='closed', max_length=255)),
+            ],
+            options={
+                'abstract': False,
+            },
+            bases=(bookwyrm.models.base_model.OrderedCollectionMixin, models.Model),
+        ),
+        migrations.CreateModel(
+            name='ListItem',
+            fields=[
+                ('id', models.AutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
+                ('created_date', models.DateTimeField(auto_now_add=True)),
+                ('updated_date', models.DateTimeField(auto_now=True)),
+                ('remote_id', bookwyrm.models.fields.RemoteIdField(max_length=255, null=True, validators=[bookwyrm.models.fields.validate_remote_id])),
+                ('notes', bookwyrm.models.fields.TextField(blank=True, null=True)),
+                ('approved', models.BooleanField(default=True)),
+                ('order', bookwyrm.models.fields.IntegerField(blank=True, null=True)),
+                ('added_by', bookwyrm.models.fields.ForeignKey(on_delete=django.db.models.deletion.PROTECT, to=settings.AUTH_USER_MODEL)),
+                ('book', bookwyrm.models.fields.ForeignKey(on_delete=django.db.models.deletion.PROTECT, to='bookwyrm.Edition')),
+                ('book_list', bookwyrm.models.fields.ForeignKey(on_delete=django.db.models.deletion.CASCADE, to='bookwyrm.List')),
+                ('endorsement', models.ManyToManyField(related_name='endorsers', to=settings.AUTH_USER_MODEL)),
+            ],
+            options={
+                'ordering': ('-created_date',),
+                'unique_together': {('book', 'book_list')},
+            },
+            bases=(bookwyrm.models.base_model.ActivitypubMixin, models.Model),
+        ),
+        migrations.AddField(
+            model_name='list',
+            name='books',
+            field=models.ManyToManyField(through='bookwyrm.ListItem', to='bookwyrm.Edition'),
+        ),
+        migrations.AddField(
+            model_name='list',
+            name='user',
+            field=bookwyrm.models.fields.ForeignKey(on_delete=django.db.models.deletion.PROTECT, to=settings.AUTH_USER_MODEL),
+        ),
+    ]
diff --git a/bookwyrm/models/__init__.py b/bookwyrm/models/__init__.py
index b232e98f..0aef6385 100644
--- a/bookwyrm/models/__init__.py
+++ b/bookwyrm/models/__init__.py
@@ -7,6 +7,7 @@ from .author import Author
 from .connector import Connector
 
 from .shelf import Shelf, ShelfBook
+from .list import List, ListItem
 
 from .status import Status, GeneratedNote, Review, Comment, Quotation
 from .status import Boost
diff --git a/bookwyrm/models/list.py b/bookwyrm/models/list.py
new file mode 100644
index 00000000..2bc49261
--- /dev/null
+++ b/bookwyrm/models/list.py
@@ -0,0 +1,83 @@
+''' make a list of books!! '''
+from django.db import models
+
+from bookwyrm import activitypub
+from .base_model import ActivitypubMixin, BookWyrmModel
+from .base_model import OrderedCollectionMixin
+from . import fields
+
+
+CurationType = models.TextChoices('Curation', [
+    'closed',
+    'open',
+    'moderated',
+])
+
+class List(OrderedCollectionMixin, BookWyrmModel):
+    ''' a list of books '''
+    name = fields.CharField(max_length=100)
+    user = fields.ForeignKey(
+        'User', on_delete=models.PROTECT, activitypub_field='owner')
+    description = fields.TextField(blank=True, null=True)
+    privacy = fields.CharField(
+        max_length=255,
+        default='public',
+        choices=fields.PrivacyLevels.choices
+    )
+    curation = fields.CharField(
+        max_length=255,
+        default='closed',
+        choices=CurationType.choices
+    )
+    books = models.ManyToManyField(
+        'Edition',
+        symmetrical=False,
+        through='ListItem',
+        through_fields=('book_list', 'book'),
+    )
+    @property
+    def collection_queryset(self):
+        ''' list of books for this shelf, overrides OrderedCollectionMixin  '''
+        return self.books.all().order_by('listitem')
+
+
+class ListItem(ActivitypubMixin, BookWyrmModel):
+    ''' ok '''
+    book = fields.ForeignKey(
+        'Edition', on_delete=models.PROTECT, activitypub_field='object')
+    book_list = fields.ForeignKey(
+        'List', on_delete=models.CASCADE, activitypub_field='target')
+    added_by = fields.ForeignKey(
+        'User',
+        on_delete=models.PROTECT,
+        activitypub_field='actor'
+    )
+    notes = fields.TextField(blank=True, null=True)
+    approved = models.BooleanField(default=True)
+    order = fields.IntegerField(blank=True, null=True)
+    endorsement = models.ManyToManyField('User', related_name='endorsers')
+
+    activity_serializer = activitypub.AddBook
+
+    def to_add_activity(self, user):
+        ''' AP for shelving a book'''
+        return activitypub.Add(
+            id='%s#add' % self.remote_id,
+            actor=user.remote_id,
+            object=self.book.to_activity(),
+            target=self.book_list.remote_id,
+        ).serialize()
+
+    def to_remove_activity(self, user):
+        ''' AP for un-shelving a book'''
+        return activitypub.Remove(
+            id='%s#remove' % self.remote_id,
+            actor=user.remote_id,
+            object=self.book.to_activity(),
+            target=self.book_list.to_activity()
+        ).serialize()
+
+    class Meta:
+        ''' an opinionated constraint! you can't put a book on a list twice '''
+        unique_together = ('book', 'book_list')
+        ordering = ('-created_date',)

From af65509527dfa4d46b63267bfb49e6d642f4efbd Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 21:03:50 -0800
Subject: [PATCH 059/280] stub test for list model

---
 bookwyrm/tests/models/test_list.py | 32 ++++++++++++++++++++++++++++++
 1 file changed, 32 insertions(+)
 create mode 100644 bookwyrm/tests/models/test_list.py

diff --git a/bookwyrm/tests/models/test_list.py b/bookwyrm/tests/models/test_list.py
new file mode 100644
index 00000000..bca63e16
--- /dev/null
+++ b/bookwyrm/tests/models/test_list.py
@@ -0,0 +1,32 @@
+''' testing models '''
+from django.test import TestCase
+
+from bookwyrm import models, settings
+
+
+class List(TestCase):
+    ''' some activitypub oddness ahead '''
+    def setUp(self):
+        ''' look, a list '''
+        self.user = models.User.objects.create_user(
+            'mouse', 'mouse@mouse.mouse', 'mouseword',
+            local=True, localname='mouse')
+        self.list = models.List.objects.create(
+            name='Test List', user=self.user)
+
+    def test_remote_id(self):
+        ''' shelves use custom remote ids '''
+        expected_id = 'https://%s/user/mouse/list/%d' % \
+            (settings.DOMAIN, self.list.id)
+        self.assertEqual(self.list.get_remote_id(), expected_id)
+
+
+    def test_to_activity(self):
+        ''' jsonify it '''
+        activity_json = self.list.to_activity()
+        self.assertIsInstance(activity_json, dict)
+        self.assertEqual(activity_json['id'], self.list.remote_id)
+        self.assertEqual(activity_json['totalItems'], 0)
+        self.assertEqual(activity_json['type'], 'OrderedCollection')
+        self.assertEqual(activity_json['name'], 'Test List')
+        self.assertEqual(activity_json['owner'], self.user.remote_id)

From 0815b36ec9af2b44f0c4eeab19dcfa188f4603c3 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 30 Jan 2021 21:33:41 -0800
Subject: [PATCH 060/280] Adds basic view and template files

---
 bookwyrm/templates/layout.html      |  5 ++-
 bookwyrm/templates/lists/list.html  |  7 ++++
 bookwyrm/templates/lists/lists.html | 16 +++++++++
 bookwyrm/urls.py                    |  9 +++--
 bookwyrm/views/__init__.py          |  1 +
 bookwyrm/views/list.py              | 53 +++++++++++++++++++++++++++++
 6 files changed, 88 insertions(+), 3 deletions(-)
 create mode 100644 bookwyrm/templates/lists/list.html
 create mode 100644 bookwyrm/templates/lists/lists.html
 create mode 100644 bookwyrm/views/list.py

diff --git a/bookwyrm/templates/layout.html b/bookwyrm/templates/layout.html
index 81782970..1a6c065e 100644
--- a/bookwyrm/templates/layout.html
+++ b/bookwyrm/templates/layout.html
@@ -53,13 +53,16 @@
     <div class="navbar-menu" id="main-nav">
         <div class="navbar-start">
             {% if request.user.is_authenticated %}
-            <a href="/user/{{ request.user.localname }}/shelves" class="navbar-item">
+            <a href="{% url 'user-shelves' request.user.localname %}" class="navbar-item">
                 Your shelves
             </a>
             <a href="/#feed" class="navbar-item">
                 Feed
             </a>
             {% endif %}
+            <a href="{% url 'lists' %}" class="navbar-item">
+                Lists
+            </a>
         </div>
 
         <div class="navbar-end">
diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
new file mode 100644
index 00000000..c17f3d9e
--- /dev/null
+++ b/bookwyrm/templates/lists/list.html
@@ -0,0 +1,7 @@
+{% extends 'layout.html' %}
+{% block content %}
+<h1>{{ list.name }}</h1>
+
+{{ list }}
+
+{% endblock %}
diff --git a/bookwyrm/templates/lists/lists.html b/bookwyrm/templates/lists/lists.html
new file mode 100644
index 00000000..deb6efa7
--- /dev/null
+++ b/bookwyrm/templates/lists/lists.html
@@ -0,0 +1,16 @@
+{% extends 'layout.html' %}
+{% block content %}
+
+<h1>lists</h1>
+{% if request.user.is_authenticated %}
+<h2>Your lists</h2>
+{% for list in request.user.list_set.all %}
+{{ list }}
+{% endfor %}
+{% endif %}
+
+{% for list in lists %}
+{{ list }}
+{% endfor %}
+
+{% endblock %}
diff --git a/bookwyrm/urls.py b/bookwyrm/urls.py
index 6387a4cd..91bbfa8e 100644
--- a/bookwyrm/urls.py
+++ b/bookwyrm/urls.py
@@ -80,10 +80,15 @@ urlpatterns = [
     # users
     re_path(r'%s/?$' % user_path, views.User.as_view()),
     re_path(r'%s\.json$' % user_path, views.User.as_view()),
-    re_path(r'%s/shelves/?$' % user_path, views.user_shelves_page),
+    re_path(r'%s/rss' % user_path, views.rss_feed.RssFeed()),
     re_path(r'%s/followers(.json)?/?$' % user_path, views.Followers.as_view()),
     re_path(r'%s/following(.json)?/?$' % user_path, views.Following.as_view()),
-    re_path(r'%s/rss' % user_path, views.rss_feed.RssFeed()),
+    re_path(r'%s/shelves/?$' % user_path,
+            views.user_shelves_page, name='user-shelves'),
+
+    # lists
+    re_path(r'^list/?$', views.Lists.as_view(), name='lists'),
+    re_path(r'^list/(?P<list_id>\d+)(.json)?/?$', views.List.as_view(), name='list'),
 
     # preferences
     re_path(r'^preferences/profile/?$', views.EditUser.as_view()),
diff --git a/bookwyrm/views/__init__.py b/bookwyrm/views/__init__.py
index 0b93f164..5302d6c7 100644
--- a/bookwyrm/views/__init__.py
+++ b/bookwyrm/views/__init__.py
@@ -14,6 +14,7 @@ from .import_data import Import, ImportStatus
 from .interaction import Favorite, Unfavorite, Boost, Unboost
 from .invite import ManageInvites, Invite
 from .landing import About, Home, Discover
+from .list import Lists, List
 from .notifications import Notifications
 from .outbox import Outbox
 from .reading import edit_readthrough, create_readthrough, delete_readthrough
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
new file mode 100644
index 00000000..c4284065
--- /dev/null
+++ b/bookwyrm/views/list.py
@@ -0,0 +1,53 @@
+''' book list views'''
+from django.contrib.auth.decorators import login_required
+from django.db.models import Q
+from django.http import HttpResponseNotFound
+from django.shortcuts import get_object_or_404, redirect
+from django.template.response import TemplateResponse
+from django.utils.decorators import method_decorator
+from django.views import View
+
+from bookwyrm import models
+from bookwyrm.activitypub import ActivitypubResponse
+from .helpers import is_api_request
+
+
+# pylint: disable=no-self-use
+class Lists(View):
+    ''' book list page '''
+    def get(self, request):
+        ''' display a book list '''
+        user = request.user if request.user.is_authenticated else None
+        lists = models.List.objects.filter(~Q(user=user)).all()
+        return TemplateResponse(request, 'lists/lists.html', {'lists': lists})
+
+    @method_decorator(login_required, name='dispatch')
+    # pylint: disable=unused-argument
+    def post(self, request):
+        ''' create a book_list '''
+        book_list = None
+        return redirect(book_list.local_path)
+
+
+class List(View):
+    ''' book list page '''
+    def get(self, request, list_id):
+        ''' display a book list '''
+        book_list = get_object_or_404(models.List, id=list_id)
+        if not object_visible_to_user(request.user, book_list):
+            return HttpResponseNotFound()
+
+        if is_api_request(request):
+            return ActivitypubResponse(book_list.to_activity())
+        data = {
+            'list': book_list
+        }
+        return TemplateResponse(request, 'lists/list.html', data)
+
+
+    @method_decorator(login_required, name='dispatch')
+    # pylint: disable=unused-argument
+    def post(self, request, list_id):
+        ''' create a book_list '''
+        book_list = get_object_or_404(models.List, id=list_id)
+        return redirect(book_list.local_path)

From 8ef959ba73e531468d15108da358a2b367c7ca5a Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 06:52:18 -0800
Subject: [PATCH 061/280] Adds little icons, so cute

---
 bookwyrm/templates/discover.html | 26 ++++++++++++++++++++++++--
 1 file changed, 24 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/templates/discover.html b/bookwyrm/templates/discover.html
index 2ff091f0..67bc374e 100644
--- a/bookwyrm/templates/discover.html
+++ b/bookwyrm/templates/discover.html
@@ -2,9 +2,30 @@
 {% block content %}
 
 {% if not request.user.is_authenticated %}
-<div class="block">
+<header class="block">
     <h1 class="title has-text-centered">{{ site.name }}: {{ site.instance_tagline }}</h1>
-</div>
+</header>
+
+<section class="level is-mobile">
+    <div class="level-item has-text-centered">
+        <div>
+            <p class="heading">Ad-Free</p>
+            <p class="title"><span class="icon icon-book"></span></p>
+        </div>
+    </div>
+    <div class="level-item has-text-centered">
+        <div>
+            <p class="heading">Anti-Corporate</p>
+            <p class="title"><span class="icon icon-book"></span></p>
+        </div>
+    </div>
+    <div class="level-item has-text-centered">
+        <div>
+            <p class="heading">Decentralized</p>
+            <p class="title"><span class="icon icon-book"></span></p>
+        </div>
+    </div>
+</section>
 
 <section class="tile is-ancestor">
     <div class="tile is-7 is-parent">
@@ -26,6 +47,7 @@
         </div>
     </div>
 </section>
+
 {% else %}
 <div class="block">
     <h1 class="title has-text-centered">Discover</h1>

From 91483b56f54796d76f11463445adfe8b3f181617 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 07:09:03 -0800
Subject: [PATCH 062/280] Adds views tests

---
 bookwyrm/tests/views/test_list.py | 84 +++++++++++++++++++++++++++++++
 bookwyrm/views/list.py            |  2 +-
 2 files changed, 85 insertions(+), 1 deletion(-)
 create mode 100644 bookwyrm/tests/views/test_list.py

diff --git a/bookwyrm/tests/views/test_list.py b/bookwyrm/tests/views/test_list.py
new file mode 100644
index 00000000..676195f6
--- /dev/null
+++ b/bookwyrm/tests/views/test_list.py
@@ -0,0 +1,84 @@
+''' test for app action functionality '''
+from unittest.mock import patch
+
+from django.contrib.auth.models import AnonymousUser
+from django.template.response import TemplateResponse
+from django.test import TestCase
+from django.test.client import RequestFactory
+
+from bookwyrm import models, views
+from bookwyrm.activitypub import ActivitypubResponse
+
+
+class ListViews(TestCase):
+    ''' tag views'''
+    def setUp(self):
+        ''' we need basic test data and mocks '''
+        self.factory = RequestFactory()
+        self.local_user = models.User.objects.create_user(
+            'mouse@local.com', 'mouse@mouse.com', 'mouseword',
+            local=True, localname='mouse',
+            remote_id='https://example.com/users/mouse',
+        )
+        self.work = models.Work.objects.create(title='Test Work')
+        self.book = models.Edition.objects.create(
+            title='Example Edition',
+            remote_id='https://example.com/book/1',
+            parent_work=self.work
+        )
+        self.list = models.List.objects.create(
+            name='Test List', user=self.local_user)
+        self.anonymous_user = AnonymousUser
+        self.anonymous_user.is_authenticated = False
+        models.SiteSettings.objects.create()
+
+
+    def test_lists_page(self):
+        ''' there are so many views, this just makes sure it LOADS '''
+        view = views.Lists.as_view()
+        models.List.objects.create(name='Public list', user=self.local_user)
+        models.List.objects.create(
+            name='Private list', privacy='private', user=self.local_user)
+        request = self.factory.get('')
+        request.user = self.local_user
+
+        result = view(request)
+        self.assertIsInstance(result, TemplateResponse)
+        result.render()
+        self.assertEqual(result.status_code, 200)
+
+        request.user = self.anonymous_user
+
+        result = view(request)
+        self.assertIsInstance(result, TemplateResponse)
+        result.render()
+        self.assertEqual(result.status_code, 200)
+
+
+
+    def test_list_page(self):
+        ''' there are so many views, this just makes sure it LOADS '''
+        view = views.List.as_view()
+        request = self.factory.get('')
+        request.user = self.local_user
+
+        with patch('bookwyrm.views.list.is_api_request') as is_api:
+            is_api.return_value = False
+            result = view(request, self.list.id)
+        self.assertIsInstance(result, TemplateResponse)
+        result.render()
+        self.assertEqual(result.status_code, 200)
+
+        with patch('bookwyrm.views.list.is_api_request') as is_api:
+            is_api.return_value = True
+            result = view(request, self.list.id)
+        self.assertIsInstance(result, ActivitypubResponse)
+        self.assertEqual(result.status_code, 200)
+
+        request = self.factory.get('/?page=1')
+        request.user = self.local_user
+        with patch('bookwyrm.views.list.is_api_request') as is_api:
+            is_api.return_value = True
+            result = view(request, self.list.id)
+        self.assertIsInstance(result, ActivitypubResponse)
+        self.assertEqual(result.status_code, 200)
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index c4284065..26785ed3 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -9,7 +9,7 @@ from django.views import View
 
 from bookwyrm import models
 from bookwyrm.activitypub import ActivitypubResponse
-from .helpers import is_api_request
+from .helpers import is_api_request, object_visible_to_user
 
 
 # pylint: disable=no-self-use

From 69c2b192a4486a68d62bfc992e63391cb04e2a0d Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 08:08:52 -0800
Subject: [PATCH 063/280] Adds list creation form

---
 bookwyrm/forms.py                            |  6 ++
 bookwyrm/models/list.py                      |  6 ++
 bookwyrm/templates/lists/lists.html          | 92 ++++++++++++++++++--
 bookwyrm/templates/snippets/status_body.html |  2 +-
 bookwyrm/tests/views/test_list.py            |  1 -
 bookwyrm/views/list.py                       |  9 +-
 6 files changed, 104 insertions(+), 12 deletions(-)

diff --git a/bookwyrm/forms.py b/bookwyrm/forms.py
index c8212794..ba2fcc8c 100644
--- a/bookwyrm/forms.py
+++ b/bookwyrm/forms.py
@@ -206,3 +206,9 @@ class SiteForm(CustomForm):
     class Meta:
         model = models.SiteSettings
         exclude = []
+
+
+class ListForm(CustomForm):
+    class Meta:
+        model = models.List
+        fields = ['user', 'name', 'description', 'curation', 'privacy']
diff --git a/bookwyrm/models/list.py b/bookwyrm/models/list.py
index 2bc49261..dd50f209 100644
--- a/bookwyrm/models/list.py
+++ b/bookwyrm/models/list.py
@@ -2,6 +2,7 @@
 from django.db import models
 
 from bookwyrm import activitypub
+from bookwyrm.settings import DOMAIN
 from .base_model import ActivitypubMixin, BookWyrmModel
 from .base_model import OrderedCollectionMixin
 from . import fields
@@ -35,6 +36,11 @@ class List(OrderedCollectionMixin, BookWyrmModel):
         through='ListItem',
         through_fields=('book_list', 'book'),
     )
+
+    def get_remote_id(self):
+        ''' don't want the user to be in there in this case '''
+        return 'https://%s/list/%d' % (DOMAIN, self.id)
+
     @property
     def collection_queryset(self):
         ''' list of books for this shelf, overrides OrderedCollectionMixin  '''
diff --git a/bookwyrm/templates/lists/lists.html b/bookwyrm/templates/lists/lists.html
index deb6efa7..31221aaa 100644
--- a/bookwyrm/templates/lists/lists.html
+++ b/bookwyrm/templates/lists/lists.html
@@ -1,16 +1,92 @@
 {% extends 'layout.html' %}
 {% block content %}
 
-<h1>lists</h1>
+<header class="block">
+    <h1 class="title">Lists</h1>
+</header>
+
 {% if request.user.is_authenticated %}
-<h2>Your lists</h2>
-{% for list in request.user.list_set.all %}
-{{ list }}
-{% endfor %}
+<section class="block">
+    <header class="columns">
+        <div class="column">
+            <h2 class="title is-3">Your lists</h2>
+        </div>
+        <div class="column is-narrow">
+            {% include 'snippets/toggle/open_button.html' with controls_text="create-list" icon="plus" text="Create new list" %}
+        </div>
+    </header>
+
+    <form name="create-list" method="post" action="{% url 'lists' %}" class="box hiddenx" id="create-list">
+        <h3 class="title is-4">Create list</h3>
+        {% csrf_token %}
+        <input type="hidden" name="user" value="{{ request.user.id }}">
+
+        <div class="columns">
+            <div class="column">
+                <div class="field">
+                    <label class="label" for="id_name">Name:</label>
+                    {{ list_form.name }}
+                </div>
+                <div class="field">
+                    <label class="label" for="id_description">Description:</label>
+                    {{ list_form.description }}
+                </div>
+            </div>
+            <div class="column">
+                <fieldset class="field">
+                    <legend class="label">List curation:</legend>
+
+                    <label class="field">
+                        <input type="radio" name="curation" value="closed" checked> Closed
+                        <p class="help mb-2">Only you can add and remove books to this list</p>
+                    </label>
+
+                    <label class="field">
+                        <input type="radio" name="curation" value="curated"> Curated
+                        <p class="help mb-2">Anyone can suggest books, subject to your approval</p>
+                    </label>
+
+                    <label class="field">
+                        <input type="radio" name="curation" value="open"> Open
+                        <p class="help mb-2">Anyone can add books to this list, but only you can remove them</p>
+                    </label>
+                </fieldset>
+            </div>
+        </div>
+        <div class="field has-addons">
+            <div class="control">
+                {% include 'snippets/privacy_select.html' %}
+            </div>
+            <div class="control">
+                <button type="submit" class="button is-primary">Save</button>
+                {% include 'snippets/toggle/close_button.html' with controls_text='create-list' text="Cancel" %}
+            </div>
+        </div>
+    </form>
+
+    {% if request.user.list_set.exists %}
+    <ul>
+    {% for list in request.user.list_set.all %}
+        <li>
+            <a href="{{ list.local_path }}">{{ list.name }}</a>
+        </li>
+    {% endfor %}
+    </ul>
+    {% endif %}
+</section>
 {% endif %}
 
-{% for list in lists %}
-{{ list }}
-{% endfor %}
+{% if lists.exists %}
+<section class="block">
+    <h2 class="title is-2">Recent Lists</h2>
+    <ul>
+    {% for list in lists %}
+        <li>
+            <a href="{{ list.local_path }}">{{ list.name }}</a>
+        </li>
+    {% endfor %}
+    </ul>
+</section>
+{% endif %}
 
 {% endblock %}
diff --git a/bookwyrm/templates/snippets/status_body.html b/bookwyrm/templates/snippets/status_body.html
index 69fa0bc2..00ae5460 100644
--- a/bookwyrm/templates/snippets/status_body.html
+++ b/bookwyrm/templates/snippets/status_body.html
@@ -20,7 +20,7 @@
     {% if request.user.is_authenticated %}
     <div class="field has-addons">
         <div class="control">
-            {% include 'snippets/toggle/toggle_button.html' with controls_text="show-comment" controls_uid=status.id text="Reply" icon="comment" class="is-small" focus="id_content_reply" %}
+            {% include 'snippets/toggle/toggle_button.html' with controls_text="show-comment" controls_uid=status.id text="Reply" icon="comment" class="is-small toggle-button" focus="id_content_reply" %}
         </div>
         <div class="control">
             {% include 'snippets/boost_button.html' with status=status %}
diff --git a/bookwyrm/tests/views/test_list.py b/bookwyrm/tests/views/test_list.py
index 676195f6..76c7f74c 100644
--- a/bookwyrm/tests/views/test_list.py
+++ b/bookwyrm/tests/views/test_list.py
@@ -55,7 +55,6 @@ class ListViews(TestCase):
         self.assertEqual(result.status_code, 200)
 
 
-
     def test_list_page(self):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.List.as_view()
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index 26785ed3..bc022c2e 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -7,7 +7,7 @@ from django.template.response import TemplateResponse
 from django.utils.decorators import method_decorator
 from django.views import View
 
-from bookwyrm import models
+from bookwyrm import forms, models
 from bookwyrm.activitypub import ActivitypubResponse
 from .helpers import is_api_request, object_visible_to_user
 
@@ -19,7 +19,12 @@ class Lists(View):
         ''' display a book list '''
         user = request.user if request.user.is_authenticated else None
         lists = models.List.objects.filter(~Q(user=user)).all()
-        return TemplateResponse(request, 'lists/lists.html', {'lists': lists})
+        data = {
+            'title': 'Lists',
+            'lists': lists,
+            'list_form': forms.ListForm()
+        }
+        return TemplateResponse(request, 'lists/lists.html', data)
 
     @method_decorator(login_required, name='dispatch')
     # pylint: disable=unused-argument

From d73a1b4ec1606bb86af5b50b844cdf9afd146cab Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 08:41:11 -0800
Subject: [PATCH 064/280] handles list privacy in display

---
 ...131_0500.py => 0041_auto_20210131_1614.py} |  4 +-
 bookwyrm/models/list.py                       |  2 +-
 bookwyrm/templates/lists/list-item.html       |  2 +
 bookwyrm/templates/lists/lists.html           | 16 ++--
 bookwyrm/templates/snippets/trimmed_text.html | 12 +--
 bookwyrm/views/helpers.py                     | 88 +++++++++++--------
 bookwyrm/views/list.py                        | 13 ++-
 7 files changed, 79 insertions(+), 58 deletions(-)
 rename bookwyrm/migrations/{0041_auto_20210131_0500.py => 0041_auto_20210131_1614.py} (95%)
 create mode 100644 bookwyrm/templates/lists/list-item.html

diff --git a/bookwyrm/migrations/0041_auto_20210131_0500.py b/bookwyrm/migrations/0041_auto_20210131_1614.py
similarity index 95%
rename from bookwyrm/migrations/0041_auto_20210131_0500.py
rename to bookwyrm/migrations/0041_auto_20210131_1614.py
index eb00e3f3..8deb69a8 100644
--- a/bookwyrm/migrations/0041_auto_20210131_0500.py
+++ b/bookwyrm/migrations/0041_auto_20210131_1614.py
@@ -1,4 +1,4 @@
-# Generated by Django 3.0.7 on 2021-01-31 05:00
+# Generated by Django 3.0.7 on 2021-01-31 16:14
 
 import bookwyrm.models.base_model
 import bookwyrm.models.fields
@@ -24,7 +24,7 @@ class Migration(migrations.Migration):
                 ('name', bookwyrm.models.fields.CharField(max_length=100)),
                 ('description', bookwyrm.models.fields.TextField(blank=True, null=True)),
                 ('privacy', bookwyrm.models.fields.CharField(choices=[('public', 'Public'), ('unlisted', 'Unlisted'), ('followers', 'Followers'), ('direct', 'Direct')], default='public', max_length=255)),
-                ('curation', bookwyrm.models.fields.CharField(choices=[('closed', 'Closed'), ('open', 'Open'), ('moderated', 'Moderated')], default='closed', max_length=255)),
+                ('curation', bookwyrm.models.fields.CharField(choices=[('closed', 'Closed'), ('open', 'Open'), ('curated', 'Curated')], default='closed', max_length=255)),
             ],
             options={
                 'abstract': False,
diff --git a/bookwyrm/models/list.py b/bookwyrm/models/list.py
index dd50f209..28ee7a2a 100644
--- a/bookwyrm/models/list.py
+++ b/bookwyrm/models/list.py
@@ -11,7 +11,7 @@ from . import fields
 CurationType = models.TextChoices('Curation', [
     'closed',
     'open',
-    'moderated',
+    'curated',
 ])
 
 class List(OrderedCollectionMixin, BookWyrmModel):
diff --git a/bookwyrm/templates/lists/list-item.html b/bookwyrm/templates/lists/list-item.html
new file mode 100644
index 00000000..0f0cb8a6
--- /dev/null
+++ b/bookwyrm/templates/lists/list-item.html
@@ -0,0 +1,2 @@
+<h4><a href="{{ list.local_path }}">{{ list.name }}</a> {% include 'snippets/privacy-icons.html' with item=list %}</h4>
+{% include 'snippets/trimmed_text.html' with full=list.description %}
diff --git a/bookwyrm/templates/lists/lists.html b/bookwyrm/templates/lists/lists.html
index 31221aaa..73f98e77 100644
--- a/bookwyrm/templates/lists/lists.html
+++ b/bookwyrm/templates/lists/lists.html
@@ -6,18 +6,18 @@
 </header>
 
 {% if request.user.is_authenticated %}
-<section class="block">
+<section class="block content">
     <header class="columns">
         <div class="column">
-            <h2 class="title is-3">Your lists</h2>
+            <h2 class="title">Your lists</h2>
         </div>
         <div class="column is-narrow">
             {% include 'snippets/toggle/open_button.html' with controls_text="create-list" icon="plus" text="Create new list" %}
         </div>
     </header>
 
-    <form name="create-list" method="post" action="{% url 'lists' %}" class="box hiddenx" id="create-list">
-        <h3 class="title is-4">Create list</h3>
+    <form name="create-list" method="post" action="{% url 'lists' %}" class="box hidden" id="create-list">
+        <h3 class="title">Create list</h3>
         {% csrf_token %}
         <input type="hidden" name="user" value="{{ request.user.id }}">
 
@@ -68,7 +68,7 @@
     <ul>
     {% for list in request.user.list_set.all %}
         <li>
-            <a href="{{ list.local_path }}">{{ list.name }}</a>
+            {% include 'lists/list-item.html' with list=list %}
         </li>
     {% endfor %}
     </ul>
@@ -77,12 +77,12 @@
 {% endif %}
 
 {% if lists.exists %}
-<section class="block">
-    <h2 class="title is-2">Recent Lists</h2>
+<section class="block content">
+    <h2 class="title">Recent Lists</h2>
     <ul>
     {% for list in lists %}
         <li>
-            <a href="{{ list.local_path }}">{{ list.name }}</a>
+            {% include 'lists/list-item.html' with list=list %}
         </li>
     {% endfor %}
     </ul>
diff --git a/bookwyrm/templates/snippets/trimmed_text.html b/bookwyrm/templates/snippets/trimmed_text.html
index 5d287ab3..b349a4fc 100644
--- a/bookwyrm/templates/snippets/trimmed_text.html
+++ b/bookwyrm/templates/snippets/trimmed_text.html
@@ -1,24 +1,26 @@
 {% load bookwyrm_tags %}
 {% with 0|uuid as uuid %}
 {% if full %}
+{% with full|to_markdown|safe as full %}
 
 {% with full|to_markdown|safe|truncatewords_html:60 as trimmed %}
 {% if trimmed != full %}
 <div id="hide-full-{{ uuid }}">
-    <blockquote class="content" id="trimmed-{{ uuid }}"><span dir="auto">{{ trimmed }}</span>
+    <div class="content" id="trimmed-{{ uuid }}"><span dir="auto">{{ trimmed }}</span>
         {% include 'snippets/toggle/open_button.html' with text="show more" controls_text="full" controls_uid=uuid class="is-small" %}
-    </blockquote>
+    </div>
 </div>
 <div id="full-{{ uuid }}" class="hidden">
-    <blockquote class="content"><span dir="auto">{{ full | to_markdown | safe }}</span>
+    <div class="content"><span dir="auto">{{ full }}</span>
         {% include 'snippets/toggle/close_button.html' with text="show less" controls_text="full" controls_uid=uuid class="is-small" %}
-    </blockquote>
+    </div>
 </div>
 {% else %}
-<blockquote class="content"><span dir="auto">{{ full | to_markdown | safe }}</span></blockquote>
+<div class="content"><span dir="auto">{{ full }}</span></div>
 {% endif %}
 {% endwith %}
 
+{% endwith %}
 {% endif %}
 {% endwith %}
 
diff --git a/bookwyrm/views/helpers.py b/bookwyrm/views/helpers.py
index 6bda81c8..8742884f 100644
--- a/bookwyrm/views/helpers.py
+++ b/bookwyrm/views/helpers.py
@@ -59,11 +59,55 @@ def object_visible_to_user(viewer, obj):
             return True
     return False
 
+
+def privacy_filter(viewer, queryset, privacy_levels, following_only=False):
+    ''' filter objects that have "user" and "privacy" fields '''
+    # exclude blocks from both directions
+    if not viewer.is_anonymous:
+        blocked = models.User.objects.filter(id__in=viewer.blocks.all()).all()
+        queryset = queryset.exclude(
+            Q(user__in=blocked) | Q(user__blocks=viewer))
+
+    # you can't see followers only or direct messages if you're not logged in
+    if viewer.is_anonymous:
+        privacy_levels = [p for p in privacy_levels if \
+            not p in ['followers', 'direct']]
+
+    # filter to only privided privacy levels
+    queryset = queryset.filter(privacy__in=privacy_levels)
+
+    # only include statuses the user follows
+    if following_only:
+        queryset = queryset.exclude(
+            ~Q(# remove everythign except
+                Q(user__in=viewer.following.all()) | # user following
+                Q(user=viewer) |# is self
+                Q(mention_users=viewer)# mentions user
+            ),
+        )
+    # exclude followers-only statuses the user doesn't follow
+    elif 'followers' in privacy_levels:
+        queryset = queryset.exclude(
+            ~Q(# user isn't following and it isn't their own status
+                Q(user__in=viewer.following.all()) | Q(user=viewer)
+            ),
+            privacy='followers' # and the status is followers only
+        )
+
+    # exclude direct messages not intended for the user
+    if 'direct' in privacy_levels:
+        queryset = queryset.exclude(
+            ~Q(
+                Q(user=viewer) | Q(mention_users=viewer)
+            ), privacy='direct'
+        )
+    return queryset
+
+
 def get_activity_feed(
         user, privacy, local_only=False, following_only=False,
         queryset=models.Status.objects):
     ''' get a filtered queryset of statuses '''
-    privacy = privacy if isinstance(privacy, list) else [privacy]
     # if we're looking at Status, we need this. We don't if it's Comment
     if hasattr(queryset, 'select_subclasses'):
         queryset = queryset.select_subclasses()
@@ -71,44 +115,10 @@ def get_activity_feed(
     # exclude deleted
     queryset = queryset.exclude(deleted=True).order_by('-published_date')
 
-    # exclude blocks from both directions
-    if not user.is_anonymous:
-        blocked = models.User.objects.filter(id__in=user.blocks.all()).all()
-        queryset = queryset.exclude(
-            Q(user__in=blocked) | Q(user__blocks=user))
-
-    # you can't see followers only or direct messages if you're not logged in
-    if user.is_anonymous:
-        privacy = [p for p in privacy if not p in ['followers', 'direct']]
-
-    # filter to only privided privacy levels
-    queryset = queryset.filter(privacy__in=privacy)
-
-    # only include statuses the user follows
-    if following_only:
-        queryset = queryset.exclude(
-            ~Q(# remove everythign except
-                Q(user__in=user.following.all()) | # user follwoing
-                Q(user=user) |# is self
-                Q(mention_users=user)# mentions user
-            ),
-        )
-    # exclude followers-only statuses the user doesn't follow
-    elif 'followers' in privacy:
-        queryset = queryset.exclude(
-            ~Q(# user isn't following and it isn't their own status
-                Q(user__in=user.following.all()) | Q(user=user)
-            ),
-            privacy='followers' # and the status is followers only
-        )
-
-    # exclude direct messages not intended for the user
-    if 'direct' in privacy:
-        queryset = queryset.exclude(
-            ~Q(
-                Q(user=user) | Q(mention_users=user)
-            ), privacy='direct'
-        )
+    # apply privacy filters
+    privacy = privacy if isinstance(privacy, list) else [privacy]
+    queryset = privacy_filter(
+        user, queryset, privacy, following_only=following_only)
 
     # filter for only local status
     if local_only:
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index bc022c2e..ccc6c8c8 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -9,7 +9,7 @@ from django.views import View
 
 from bookwyrm import forms, models
 from bookwyrm.activitypub import ActivitypubResponse
-from .helpers import is_api_request, object_visible_to_user
+from .helpers import is_api_request, object_visible_to_user, privacy_filter
 
 
 # pylint: disable=no-self-use
@@ -18,7 +18,10 @@ class Lists(View):
     def get(self, request):
         ''' display a book list '''
         user = request.user if request.user.is_authenticated else None
-        lists = models.List.objects.filter(~Q(user=user)).all()
+        lists = models.List.objects.filter(
+            ~Q(user=user),
+        ).all()
+        lists = privacy_filter(request.user, lists, ['public', 'followers'])
         data = {
             'title': 'Lists',
             'lists': lists,
@@ -30,7 +33,11 @@ class Lists(View):
     # pylint: disable=unused-argument
     def post(self, request):
         ''' create a book_list '''
-        book_list = None
+        form = forms.ListForm(request.POST)
+        if not form.is_valid():
+            print(form.errors)
+            return redirect('lists')
+        book_list = form.save()
         return redirect(book_list.local_path)
 
 

From 48832313479aa3c03368ddf9ca1bdd6c6461d334 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 09:08:06 -0800
Subject: [PATCH 065/280] Fixes model test

---
 bookwyrm/templates/lists/list-item.html       |  2 +-
 bookwyrm/templates/lists/list.html            | 41 ++++++++++++++++++-
 bookwyrm/templates/lists/lists.html           |  4 +-
 bookwyrm/templates/snippets/book_preview.html |  4 +-
 bookwyrm/tests/models/test_list.py            |  2 +-
 bookwyrm/urls.py                              |  5 ++-
 bookwyrm/views/list.py                        | 11 ++++-
 7 files changed, 58 insertions(+), 11 deletions(-)

diff --git a/bookwyrm/templates/lists/list-item.html b/bookwyrm/templates/lists/list-item.html
index 0f0cb8a6..9018c0ef 100644
--- a/bookwyrm/templates/lists/list-item.html
+++ b/bookwyrm/templates/lists/list-item.html
@@ -1,2 +1,2 @@
-<h4><a href="{{ list.local_path }}">{{ list.name }}</a> {% include 'snippets/privacy-icons.html' with item=list %}</h4>
+<h4><a href="{{ list.local_path }}">{{ list.name }}</a> <span class="subtitle">{% include 'snippets/privacy-icons.html' with item=list %}</span></h4>
 {% include 'snippets/trimmed_text.html' with full=list.description %}
diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index c17f3d9e..854ee4c5 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -1,7 +1,44 @@
 {% extends 'layout.html' %}
 {% block content %}
-<h1>{{ list.name }}</h1>
 
-{{ list }}
+<header class="columns content">
+    <div class="column">
+        <h1 class="title">{{ list.name }} <span class="subtitle">{% include 'snippets/privacy-icons.html' with item=list %}</span></h1>
+        {% include 'snippets/trimmed_text.html' with full=list.description %}
+    </div>
+    <div class="column is-narrow">
+        {% include 'snippets/toggle/open_button.html' with text="Edit list" icon="pencil" controls_text="edit-list" %}
+    </div>
+</header>
 
+<div class="columns content">
+    <section class="column">
+        <h2>Books</h2>
+        {% if not list.books.exists %}
+        <p>This list is currently empty</p>
+        {% else %}
+        {% for book in list.books.all %}
+        {{ book }}
+        {% endfor %}
+        {% endif %}
+    </section>
+
+    <section class="column is-one-quarter">
+        <h2>Add Books</h2>
+        {% for book in suggested_books %}
+        <div class="block columns">
+            <div class="column is-narrow">
+                <a href="{{ book.local_path }}">{% include 'snippets/book_cover.html' with book=book size="small" %}</a>
+            </div>
+            <div class="column">
+                <p>{% include 'snippets/book_titleby.html' with book=book %}</p>
+                <form name="add-book" method="post" action="{% url 'list-add-book' list.id %}">
+                    {% csrf_token %}
+                    <button type="submit" class="button is-small is-link">Add</button>
+                </form>
+            </div>
+        </div>
+        {% endfor %}
+    </section>
+</div>
 {% endblock %}
diff --git a/bookwyrm/templates/lists/lists.html b/bookwyrm/templates/lists/lists.html
index 73f98e77..8f8f7e19 100644
--- a/bookwyrm/templates/lists/lists.html
+++ b/bookwyrm/templates/lists/lists.html
@@ -67,7 +67,7 @@
     {% if request.user.list_set.exists %}
     <ul>
     {% for list in request.user.list_set.all %}
-        <li>
+        <li class="block">
             {% include 'lists/list-item.html' with list=list %}
         </li>
     {% endfor %}
@@ -81,7 +81,7 @@
     <h2 class="title">Recent Lists</h2>
     <ul>
     {% for list in lists %}
-        <li>
+        <li class="block">
             {% include 'lists/list-item.html' with list=list %}
         </li>
     {% endfor %}
diff --git a/bookwyrm/templates/snippets/book_preview.html b/bookwyrm/templates/snippets/book_preview.html
index e7eca455..6f8ff53a 100644
--- a/bookwyrm/templates/snippets/book_preview.html
+++ b/bookwyrm/templates/snippets/book_preview.html
@@ -2,8 +2,8 @@
 <div class="columns">
     <div class="column is-narrow">
         <div>
-        <a href="/book/{{ book.id }}">{% include 'snippets/book_cover.html' with book=book %}</a>
-        {% include 'snippets/shelve_button.html' with book=book %}
+            <a href="{{ book.local_path }}">{% include 'snippets/book_cover.html' with book=book %}</a>
+            {% include 'snippets/shelve_button.html' with book=book %}
         </div>
     </div>
     <div class="column">
diff --git a/bookwyrm/tests/models/test_list.py b/bookwyrm/tests/models/test_list.py
index bca63e16..ba90d961 100644
--- a/bookwyrm/tests/models/test_list.py
+++ b/bookwyrm/tests/models/test_list.py
@@ -16,7 +16,7 @@ class List(TestCase):
 
     def test_remote_id(self):
         ''' shelves use custom remote ids '''
-        expected_id = 'https://%s/user/mouse/list/%d' % \
+        expected_id = 'https://%s/list/%d' % \
             (settings.DOMAIN, self.list.id)
         self.assertEqual(self.list.get_remote_id(), expected_id)
 
diff --git a/bookwyrm/urls.py b/bookwyrm/urls.py
index 91bbfa8e..3d6a37da 100644
--- a/bookwyrm/urls.py
+++ b/bookwyrm/urls.py
@@ -88,7 +88,10 @@ urlpatterns = [
 
     # lists
     re_path(r'^list/?$', views.Lists.as_view(), name='lists'),
-    re_path(r'^list/(?P<list_id>\d+)(.json)?/?$', views.List.as_view(), name='list'),
+    re_path(r'^list/(?P<list_id>\d+)(.json)?/?$',
+            views.List.as_view(), name='list'),
+    re_path(r'^list/(?P<list_id>\d+)/add/?$',
+            views.List.as_view(), name='list-add-book'),
 
     # preferences
     re_path(r'^preferences/profile/?$', views.EditUser.as_view()),
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index ccc6c8c8..b4da1a87 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -51,8 +51,15 @@ class List(View):
 
         if is_api_request(request):
             return ActivitypubResponse(book_list.to_activity())
+
+        suggestions = request.user.shelfbook_set.all().filter(
+            ~Q(book__in=book_list.books)
+        )
+
         data = {
-            'list': book_list
+            'title': '%s | Lists' % book_list.name,
+            'list': book_list,
+            'suggested_books': [s.book for s in suggestions[:5]],
         }
         return TemplateResponse(request, 'lists/list.html', data)
 
@@ -60,6 +67,6 @@ class List(View):
     @method_decorator(login_required, name='dispatch')
     # pylint: disable=unused-argument
     def post(self, request, list_id):
-        ''' create a book_list '''
+        ''' edit a book_list '''
         book_list = get_object_or_404(models.List, id=list_id)
         return redirect(book_list.local_path)

From acd922970a3e4109dc9d20fa41493f8982ab7d66 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 10:34:25 -0800
Subject: [PATCH 066/280] Add to and edit lists

---
 bookwyrm/templates/lists/form.html           | 45 ++++++++++++++++++
 bookwyrm/templates/lists/list.html           | 50 ++++++++++++++++++--
 bookwyrm/templates/lists/lists.html          | 45 +-----------------
 bookwyrm/templates/snippets/rate_action.html |  2 +-
 bookwyrm/templates/snippets/stars.html       |  7 ++-
 bookwyrm/templatetags/bookwyrm_tags.py       | 14 +++++-
 bookwyrm/urls.py                             |  2 +-
 bookwyrm/views/list.py                       | 44 +++++++++++++++--
 8 files changed, 149 insertions(+), 60 deletions(-)
 create mode 100644 bookwyrm/templates/lists/form.html

diff --git a/bookwyrm/templates/lists/form.html b/bookwyrm/templates/lists/form.html
new file mode 100644
index 00000000..af0b8abf
--- /dev/null
+++ b/bookwyrm/templates/lists/form.html
@@ -0,0 +1,45 @@
+{% csrf_token %}
+<input type="hidden" name="user" value="{{ request.user.id }}">
+
+<div class="columns">
+    <div class="column">
+        <div class="field">
+            <label class="label" for="id_name">Name:</label>
+            {{ list_form.name }}
+        </div>
+        <div class="field">
+            <label class="label" for="id_description">Description:</label>
+            {{ list_form.description }}
+        </div>
+    </div>
+    <div class="column">
+        <fieldset class="field">
+            <legend class="label">List curation:</legend>
+
+            <label class="field">
+                <input type="radio" name="curation" value="closed"{% if not list or list.curation == 'closed' %} checked{% endif %}> Closed
+                <p class="help mb-2">Only you can add and remove books to this list</p>
+            </label>
+
+            <label class="field">
+                <input type="radio" name="curation" value="curated"{% if list.curation == 'curated' %} checked{% endif %}> Curated
+                <p class="help mb-2">Anyone can suggest books, subject to your approval</p>
+            </label>
+
+            <label class="field">
+                <input type="radio" name="curation" value="open"{% if list.curation == 'open' %} checked{% endif %}> Open
+                <p class="help mb-2">Anyone can add books to this list, but only you can remove them</p>
+            </label>
+        </fieldset>
+    </div>
+</div>
+<div class="field has-addons">
+    <div class="control">
+        {% include 'snippets/privacy_select.html' with current=list.privacy %}
+    </div>
+    <div class="control">
+        <button type="submit" class="button is-primary">Save</button>
+        {% include 'snippets/toggle/close_button.html' with controls_text='create-list' text="Cancel" %}
+    </div>
+</div>
+
diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index 854ee4c5..2260acb5 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -1,28 +1,66 @@
 {% extends 'layout.html' %}
+{% load bookwyrm_tags %}
 {% block content %}
 
 <header class="columns content">
     <div class="column">
         <h1 class="title">{{ list.name }} <span class="subtitle">{% include 'snippets/privacy-icons.html' with item=list %}</span></h1>
+        <p class="subtitle help">Created by {% include 'snippets/username.html' with user=list.user %}</p>
         {% include 'snippets/trimmed_text.html' with full=list.description %}
     </div>
+    {% if request.user == list.user %}
     <div class="column is-narrow">
-        {% include 'snippets/toggle/open_button.html' with text="Edit list" icon="pencil" controls_text="edit-list" %}
+        {% include 'snippets/toggle/open_button.html' with text="Edit list" icon="pencil" controls_text="create-list" %}
     </div>
+    {% endif %}
 </header>
 
+<form name="create-list" method="post" action="{% url 'list' list.id %}" class="box hidden" id="create-list">
+    <h3 class="title">Edit list</h3>
+    {% include 'lists/form.html' %}
+</form>
+
+
 <div class="columns content">
-    <section class="column">
-        <h2>Books</h2>
+    <section class="column is-three-quarters">
         {% if not list.books.exists %}
         <p>This list is currently empty</p>
         {% else %}
-        {% for book in list.books.all %}
-        {{ book }}
+        <ol>
+        {% for item in list.listitem_set.all %}
+            <li class="block">
+                <div class="card">
+                    <header class="card-header">
+                        <a href="{{ book.local_path }}">{% include 'snippets/book_cover.html' with book=item.book size="medium" %}</a>
+                        <div class="card-header-title is-flex-direction-column is-align-items-self-start">
+                            <span>{% include 'snippets/book_titleby.html' with book=item.book %}</span>
+                            {% include 'snippets/stars.html' with rating=item.book|rating:request.user %}
+                            {% include 'snippets/shelve_button.html' with book=item.book %}
+                        </div>
+                    </header>
+                    {% if item.note %}
+                    <div class="card-content">
+                        {% include 'snippets/trimmed_text.html' with full=item.note %}
+                    </div>
+                    {% endif %}
+                    <div class="card-footer has-background-white-bis">
+                        <div class="card-footer-item">
+                            <p>Added by {% include 'snippets/username.html' with user=item.added_by %}</p>
+                        </div>
+                        <form name="add-book" method="post" action="{% url 'list-add-book' list.id %}" class="card-footer-item">
+                            {% csrf_token %}
+                            <input type="hidden" name="book" value="{{ book.id }}">
+                            <button type="submit" class="button is-small is-danger">Remove</button>
+                        </form>
+                    </div>
+                </div>
+            </li>
         {% endfor %}
+        </ol>
         {% endif %}
     </section>
 
+    {% if not list.curation == 'closed' or request.user == list.user %}
     <section class="column is-one-quarter">
         <h2>Add Books</h2>
         {% for book in suggested_books %}
@@ -34,11 +72,13 @@
                 <p>{% include 'snippets/book_titleby.html' with book=book %}</p>
                 <form name="add-book" method="post" action="{% url 'list-add-book' list.id %}">
                     {% csrf_token %}
+                    <input type="hidden" name="book" value="{{ book.id }}">
                     <button type="submit" class="button is-small is-link">Add</button>
                 </form>
             </div>
         </div>
         {% endfor %}
     </section>
+    {% endif %}
 </div>
 {% endblock %}
diff --git a/bookwyrm/templates/lists/lists.html b/bookwyrm/templates/lists/lists.html
index 8f8f7e19..1f230b78 100644
--- a/bookwyrm/templates/lists/lists.html
+++ b/bookwyrm/templates/lists/lists.html
@@ -18,50 +18,7 @@
 
     <form name="create-list" method="post" action="{% url 'lists' %}" class="box hidden" id="create-list">
         <h3 class="title">Create list</h3>
-        {% csrf_token %}
-        <input type="hidden" name="user" value="{{ request.user.id }}">
-
-        <div class="columns">
-            <div class="column">
-                <div class="field">
-                    <label class="label" for="id_name">Name:</label>
-                    {{ list_form.name }}
-                </div>
-                <div class="field">
-                    <label class="label" for="id_description">Description:</label>
-                    {{ list_form.description }}
-                </div>
-            </div>
-            <div class="column">
-                <fieldset class="field">
-                    <legend class="label">List curation:</legend>
-
-                    <label class="field">
-                        <input type="radio" name="curation" value="closed" checked> Closed
-                        <p class="help mb-2">Only you can add and remove books to this list</p>
-                    </label>
-
-                    <label class="field">
-                        <input type="radio" name="curation" value="curated"> Curated
-                        <p class="help mb-2">Anyone can suggest books, subject to your approval</p>
-                    </label>
-
-                    <label class="field">
-                        <input type="radio" name="curation" value="open"> Open
-                        <p class="help mb-2">Anyone can add books to this list, but only you can remove them</p>
-                    </label>
-                </fieldset>
-            </div>
-        </div>
-        <div class="field has-addons">
-            <div class="control">
-                {% include 'snippets/privacy_select.html' %}
-            </div>
-            <div class="control">
-                <button type="submit" class="button is-primary">Save</button>
-                {% include 'snippets/toggle/close_button.html' with controls_text='create-list' text="Cancel" %}
-            </div>
-        </div>
+        {% include 'lists/form.html' %}
     </form>
 
     {% if request.user.list_set.exists %}
diff --git a/bookwyrm/templates/snippets/rate_action.html b/bookwyrm/templates/snippets/rate_action.html
index 7a82501a..833f2b88 100644
--- a/bookwyrm/templates/snippets/rate_action.html
+++ b/bookwyrm/templates/snippets/rate_action.html
@@ -13,7 +13,7 @@
             <label class="is-sr-only" for="rating-no-rating-{{ book.id }}">No rating</label>
             <input class="is-sr-only" type="radio" name="rating" value="" id="rating-no-rating-{{ book.id }}" checked>
             {% for i in '12345'|make_list %}
-            <input class="is-sr-only" id="rating-book{{book.id}}-star-{{ forloop.counter }}" type="radio" name="rating" value="{{ forloop.counter }}" {% if book|rating:user == forloop.counter %}checked{% endif %}>
+            <input class="is-sr-only" id="rating-book{{book.id}}-star-{{ forloop.counter }}" type="radio" name="rating" value="{{ forloop.counter }}" {% if book|user_rating:user == forloop.counter %}checked{% endif %}>
             <label class="icon icon-star-empty" for="rating-book{{book.id}}-star-{{ forloop.counter }}">
                 <span class="is-sr-only">{{ forloop.counter }} star{{ forloop.counter | pluralize }}</span>
             </label>
diff --git a/bookwyrm/templates/snippets/stars.html b/bookwyrm/templates/snippets/stars.html
index b73a9b2b..7d5b63d7 100644
--- a/bookwyrm/templates/snippets/stars.html
+++ b/bookwyrm/templates/snippets/stars.html
@@ -1,8 +1,7 @@
-<div class="stars">
+<p class="stars">
     <span class="is-sr-only">{% if rating %}{{ rating|floatformat }} star{{ rating|floatformat | pluralize }}{% else %}No rating{% endif %}</span>
     {% for i in '12345'|make_list %}
-    <span class="icon icon-star-{% if rating >= forloop.counter %}full{% elif rating|floatformat:0 >= forloop.counter|floatformat:0 %}half{% else %}empty{% endif %}">
+    <span class="icon icon-star-{% if rating >= forloop.counter %}full{% elif rating|floatformat:0 >= forloop.counter|floatformat:0 %}half{% else %}empty{% endif %}" aria-hidden="true">
     </span>
     {% endfor %}
-</div>
-
+</p>
diff --git a/bookwyrm/templatetags/bookwyrm_tags.py b/bookwyrm/templatetags/bookwyrm_tags.py
index 08bbcafe..6dea32e9 100644
--- a/bookwyrm/templatetags/bookwyrm_tags.py
+++ b/bookwyrm/templatetags/bookwyrm_tags.py
@@ -4,9 +4,10 @@ from datetime import datetime
 
 from dateutil.relativedelta import relativedelta
 from django import template
+from django.db.models import Avg
 from django.utils import timezone
 
-from bookwyrm import models
+from bookwyrm import models, views
 from bookwyrm.views.status import to_markdown
 
 
@@ -20,6 +21,17 @@ def dict_key(d, k):
 
 @register.filter(name='rating')
 def get_rating(book, user):
+    ''' get the overall rating of a book '''
+    queryset = views.helpers.get_activity_feed(
+        user,
+        ['public', 'followers', 'unlisted', 'direct'],
+        queryset=models.Review.objects.filter(book=book),
+    )
+    return queryset.aggregate(Avg('rating'))['rating__avg']
+
+
+@register.filter(name='user_rating')
+def get_user_rating(book, user):
     ''' get a user's rating of a book '''
     rating = models.Review.objects.filter(
         user=user,
diff --git a/bookwyrm/urls.py b/bookwyrm/urls.py
index 3d6a37da..7b0975c0 100644
--- a/bookwyrm/urls.py
+++ b/bookwyrm/urls.py
@@ -91,7 +91,7 @@ urlpatterns = [
     re_path(r'^list/(?P<list_id>\d+)(.json)?/?$',
             views.List.as_view(), name='list'),
     re_path(r'^list/(?P<list_id>\d+)/add/?$',
-            views.List.as_view(), name='list-add-book'),
+            views.list.add_book, name='list-add-book'),
 
     # preferences
     re_path(r'^preferences/profile/?$', views.EditUser.as_view()),
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index b4da1a87..63f99c4a 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -1,11 +1,12 @@
 ''' book list views'''
 from django.contrib.auth.decorators import login_required
 from django.db.models import Q
-from django.http import HttpResponseNotFound
+from django.http import HttpResponseNotFound, HttpResponseBadRequest
 from django.shortcuts import get_object_or_404, redirect
 from django.template.response import TemplateResponse
 from django.utils.decorators import method_decorator
 from django.views import View
+from django.views.decorators.http import require_POST
 
 from bookwyrm import forms, models
 from bookwyrm.activitypub import ActivitypubResponse
@@ -35,7 +36,6 @@ class Lists(View):
         ''' create a book_list '''
         form = forms.ListForm(request.POST)
         if not form.is_valid():
-            print(form.errors)
             return redirect('lists')
         book_list = form.save()
         return redirect(book_list.local_path)
@@ -52,14 +52,15 @@ class List(View):
         if is_api_request(request):
             return ActivitypubResponse(book_list.to_activity())
 
-        suggestions = request.user.shelfbook_set.all().filter(
-            ~Q(book__in=book_list.books)
+        suggestions = request.user.shelfbook_set.filter(
+            ~Q(book__in=book_list.books.all())
         )
 
         data = {
             'title': '%s | Lists' % book_list.name,
             'list': book_list,
             'suggested_books': [s.book for s in suggestions[:5]],
+            'list_form': forms.ListForm(instance=book_list),
         }
         return TemplateResponse(request, 'lists/list.html', data)
 
@@ -69,4 +70,39 @@ class List(View):
     def post(self, request, list_id):
         ''' edit a book_list '''
         book_list = get_object_or_404(models.List, id=list_id)
+        form = forms.ListForm(request.POST, instance=book_list)
+        if not form.is_valid():
+            return redirect('list', book_list.id)
+        book_list = form.save()
         return redirect(book_list.local_path)
+
+
+@require_POST
+def add_book(request, list_id):
+    ''' put a book on a list '''
+    book_list = get_object_or_404(models.List, id=list_id)
+    if not object_visible_to_user(request.user, book_list):
+        return HttpResponseNotFound()
+
+    book = get_object_or_404(models.Edition, id=request.POST.get('book'))
+    # do you have permission to add to the list?
+    if request.user == book_list.user or book_list.curation == 'open':
+        # go ahead and add it
+        models.ListItem.objects.create(
+            book=book,
+            book_list=book_list,
+            added_by=request.user,
+        )
+    elif book_list.curation == 'curated':
+        # make a pending entry
+        models.ListItem.objects.create(
+            approved=False,
+            book=book,
+            book_list=book_list,
+            added_by=request.user,
+        )
+    else:
+        # you can't add to this list, what were you THINKING
+        return HttpResponseBadRequest()
+
+    return redirect('list', list_id)

From 1a4c53da2c65567695261e8c85f32c25a1903be3 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 10:44:46 -0800
Subject: [PATCH 067/280] Only show delete button to appropriate users

---
 bookwyrm/templates/lists/list.html | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index 2260acb5..8f171bb4 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -47,11 +47,13 @@
                         <div class="card-footer-item">
                             <p>Added by {% include 'snippets/username.html' with user=item.added_by %}</p>
                         </div>
+                        {% if list.user == request.user or list.curation == 'open' and item.added_by == request.user %}
                         <form name="add-book" method="post" action="{% url 'list-add-book' list.id %}" class="card-footer-item">
                             {% csrf_token %}
                             <input type="hidden" name="book" value="{{ book.id }}">
                             <button type="submit" class="button is-small is-danger">Remove</button>
                         </form>
+                        {% endif %}
                     </div>
                 </div>
             </li>

From 1e9189d43c952d4529d274268f84a33d92922664 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 10:56:40 -0800
Subject: [PATCH 068/280] Suggest recently edited books if we're out of user
 books

---
 bookwyrm/templates/lists/list.html             |  6 +++---
 bookwyrm/templates/snippets/privacy-icons.html | 16 ++++++++--------
 bookwyrm/views/list.py                         | 10 +++++++++-
 3 files changed, 20 insertions(+), 12 deletions(-)

diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index 8f171bb4..38be3edf 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -5,7 +5,7 @@
 <header class="columns content">
     <div class="column">
         <h1 class="title">{{ list.name }} <span class="subtitle">{% include 'snippets/privacy-icons.html' with item=list %}</span></h1>
-        <p class="subtitle help">Created by {% include 'snippets/username.html' with user=list.user %}</p>
+        <p class="subtitle help">Created {% if list.curation != 'open' %} and curated{% endif %} by {% include 'snippets/username.html' with user=list.user %}</p>
         {% include 'snippets/trimmed_text.html' with full=list.description %}
     </div>
     {% if request.user == list.user %}
@@ -64,7 +64,7 @@
 
     {% if not list.curation == 'closed' or request.user == list.user %}
     <section class="column is-one-quarter">
-        <h2>Add Books</h2>
+        <h2>{% if list.curation == 'open' or request.user == list.user %}Add{% else %}Suggest{% endif %} Books</h2>
         {% for book in suggested_books %}
         <div class="block columns">
             <div class="column is-narrow">
@@ -75,7 +75,7 @@
                 <form name="add-book" method="post" action="{% url 'list-add-book' list.id %}">
                     {% csrf_token %}
                     <input type="hidden" name="book" value="{{ book.id }}">
-                    <button type="submit" class="button is-small is-link">Add</button>
+                    <button type="submit" class="button is-small is-link">{% if list.curation == 'open' or request.user == list.user %}Add{% else %}Submit{% endif %}</button>
                 </form>
             </div>
         </div>
diff --git a/bookwyrm/templates/snippets/privacy-icons.html b/bookwyrm/templates/snippets/privacy-icons.html
index 793fbc8b..c917f553 100644
--- a/bookwyrm/templates/snippets/privacy-icons.html
+++ b/bookwyrm/templates/snippets/privacy-icons.html
@@ -1,18 +1,18 @@
 {% if item.privacy == 'public' %}
-<span class="icon icon-globe" title="Public post">
-    <span class="is-sr-only">Public post</span>
+<span class="icon icon-globe" title="Public">
+    <span class="is-sr-only">Public</span>
 </span>
 {% elif item.privacy == 'unlisted' %}
-<span class="icon icon-unlock" title="Unlisted post">
-    <span class="is-sr-only">Unlisted post</span>
+<span class="icon icon-unlock" title="Unlisted">
+    <span class="is-sr-only">Unlisted</span>
 </span>
 {% elif item.privacy == 'followers' %}
-<span class="icon icon-lock" title="Followers-only post">
-    <span class="is-sr-only">Followers-only post</span>
+<span class="icon icon-lock" title="Followers-only">
+    <span class="is-sr-only">Followers-only</span>
 </span>
 {% else %}
-<span class="icon icon-envelope" title="Private post">
-    <span class="is-sr-only">Private post</span>
+<span class="icon icon-envelope" title="Private">
+    <span class="is-sr-only">Private</span>
 </span>
 {% endif %}
 
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index 63f99c4a..c126102d 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -55,11 +55,19 @@ class List(View):
         suggestions = request.user.shelfbook_set.filter(
             ~Q(book__in=book_list.books.all())
         )
+        suggestions = [s.book for s in suggestions[:5]]
+        if len(suggestions) < 5:
+            suggestions += [s.default_edition for s in \
+                models.Work.objects.filter(
+                    ~Q(editions__in=book_list.books.all()),
+                ).order_by('-updated_date')
+            ][:5 - len(suggestions)]
+
 
         data = {
             'title': '%s | Lists' % book_list.name,
             'list': book_list,
-            'suggested_books': [s.book for s in suggestions[:5]],
+            'suggested_books': suggestions,
             'list_form': forms.ListForm(instance=book_list),
         }
         return TemplateResponse(request, 'lists/list.html', data)

From 6a68fe9475cf2eb9fdaecc4683e7096a2d9efbd6 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 11:11:26 -0800
Subject: [PATCH 069/280] Search for books to add to lists

---
 bookwyrm/connectors/connector_manager.py |  4 ++--
 bookwyrm/connectors/self_connector.py    | 11 +++++++---
 bookwyrm/templates/layout.html           |  2 +-
 bookwyrm/templates/lists/list.html       | 17 ++++++++++++++
 bookwyrm/views/list.py                   | 28 +++++++++++++++---------
 5 files changed, 46 insertions(+), 16 deletions(-)

diff --git a/bookwyrm/connectors/connector_manager.py b/bookwyrm/connectors/connector_manager.py
index d3b01f7a..a63a788e 100644
--- a/bookwyrm/connectors/connector_manager.py
+++ b/bookwyrm/connectors/connector_manager.py
@@ -35,10 +35,10 @@ def search(query, min_confidence=0.1):
     return results
 
 
-def local_search(query, min_confidence=0.1):
+def local_search(query, min_confidence=0.1, raw=False):
     ''' only look at local search results '''
     connector = load_connector(models.Connector.objects.get(local=True))
-    return connector.search(query, min_confidence=min_confidence)
+    return connector.search(query, min_confidence=min_confidence, raw=raw)
 
 
 def first_search_result(query, min_confidence=0.1):
diff --git a/bookwyrm/connectors/self_connector.py b/bookwyrm/connectors/self_connector.py
index c5d58a59..f57fbc1c 100644
--- a/bookwyrm/connectors/self_connector.py
+++ b/bookwyrm/connectors/self_connector.py
@@ -11,7 +11,8 @@ from .abstract_connector import AbstractConnector, SearchResult
 
 class Connector(AbstractConnector):
     ''' instantiate a connector  '''
-    def search(self, query, min_confidence=0.1):
+    # pylint: disable=arguments-differ
+    def search(self, query, min_confidence=0.1, raw=False):
         ''' search your local database '''
         if not query:
             return []
@@ -22,10 +23,14 @@ class Connector(AbstractConnector):
             results = search_title_author(query, min_confidence)
         search_results = []
         for result in results:
-            search_results.append(self.format_search_result(result))
+            if raw:
+                search_results.append(result)
+            else:
+                search_results.append(self.format_search_result(result))
             if len(search_results) >= 10:
                 break
-        search_results.sort(key=lambda r: r.confidence, reverse=True)
+        if not raw:
+            search_results.sort(key=lambda r: r.confidence, reverse=True)
         return search_results
 
 
diff --git a/bookwyrm/templates/layout.html b/bookwyrm/templates/layout.html
index 1a6c065e..fe8a7509 100644
--- a/bookwyrm/templates/layout.html
+++ b/bookwyrm/templates/layout.html
@@ -59,10 +59,10 @@
             <a href="/#feed" class="navbar-item">
                 Feed
             </a>
-            {% endif %}
             <a href="{% url 'lists' %}" class="navbar-item">
                 Lists
             </a>
+            {% endif %}
         </div>
 
         <div class="navbar-end">
diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index 38be3edf..04fd5e11 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -65,6 +65,23 @@
     {% if not list.curation == 'closed' or request.user == list.user %}
     <section class="column is-one-quarter">
         <h2>{% if list.curation == 'open' or request.user == list.user %}Add{% else %}Suggest{% endif %} Books</h2>
+        <form name="search" action="{% url 'list' list.id %}" method="GET" class="block">
+            <div class="field has-addons">
+                <div class="control">
+                    <input aria-label="Search for a book" class="input" type="text" name="q" placeholder="Search for a book" value="{{ query }}">
+                </div>
+                <div class="control">
+                    <button class="button" type="submit">
+                        <span class="icon icon-search" title="Search">
+                            <span class="is-sr-only">search</span>
+                        </span>
+                    </button>
+                </div>
+            </div>
+            {% if query %}
+            <p class="help"><a href="{% url 'list' list.id %}">Clear search</a></p>
+            {% endif %}
+        </form>
         {% for book in suggested_books %}
         <div class="block columns">
             <div class="column is-narrow">
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index c126102d..ff2a2f21 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -10,6 +10,7 @@ from django.views.decorators.http import require_POST
 
 from bookwyrm import forms, models
 from bookwyrm.activitypub import ActivitypubResponse
+from bookwyrm.connectors import connector_manager
 from .helpers import is_api_request, object_visible_to_user, privacy_filter
 
 
@@ -52,16 +53,22 @@ class List(View):
         if is_api_request(request):
             return ActivitypubResponse(book_list.to_activity())
 
-        suggestions = request.user.shelfbook_set.filter(
-            ~Q(book__in=book_list.books.all())
-        )
-        suggestions = [s.book for s in suggestions[:5]]
-        if len(suggestions) < 5:
-            suggestions += [s.default_edition for s in \
-                models.Work.objects.filter(
-                    ~Q(editions__in=book_list.books.all()),
-                ).order_by('-updated_date')
-            ][:5 - len(suggestions)]
+        query = request.GET.get('q')
+        if query:
+            # search for books
+            suggestions = connector_manager.local_search(query, raw=True)
+        else:
+            # just suggest whatever books are nearby
+            suggestions = request.user.shelfbook_set.filter(
+                ~Q(book__in=book_list.books.all())
+            )
+            suggestions = [s.book for s in suggestions[:5]]
+            if len(suggestions) < 5:
+                suggestions += [s.default_edition for s in \
+                    models.Work.objects.filter(
+                        ~Q(editions__in=book_list.books.all()),
+                    ).order_by('-updated_date')
+                ][:5 - len(suggestions)]
 
 
         data = {
@@ -69,6 +76,7 @@ class List(View):
             'list': book_list,
             'suggested_books': suggestions,
             'list_form': forms.ListForm(instance=book_list),
+            'query': query or ''
         }
         return TemplateResponse(request, 'lists/list.html', data)
 

From f15626b2cbc50057dc64b8096406bdb34b955b58 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 11:13:05 -0800
Subject: [PATCH 070/280] Null state for search results

---
 bookwyrm/templates/lists/list.html | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index 04fd5e11..ee9d5f99 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -82,6 +82,9 @@
             <p class="help"><a href="{% url 'list' list.id %}">Clear search</a></p>
             {% endif %}
         </form>
+        {% if not suggested_books %}
+        <p>No books found{% if query %} matching the query "{{ query }}"{% endif %}</p>
+        {% endif %}
         {% for book in suggested_books %}
         <div class="block columns">
             <div class="column is-narrow">

From a2e69d783def5e440ee5d161904b0e341248af5e Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 11:13:50 -0800
Subject: [PATCH 071/280] suggest button wording

---
 bookwyrm/templates/lists/list.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index ee9d5f99..200f5770 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -95,7 +95,7 @@
                 <form name="add-book" method="post" action="{% url 'list-add-book' list.id %}">
                     {% csrf_token %}
                     <input type="hidden" name="book" value="{{ book.id }}">
-                    <button type="submit" class="button is-small is-link">{% if list.curation == 'open' or request.user == list.user %}Add{% else %}Submit{% endif %}</button>
+                    <button type="submit" class="button is-small is-link">{% if list.curation == 'open' or request.user == list.user %}Add{% else %}Suggest{% endif %}</button>
                 </form>
             </div>
         </div>

From 846489e88e22f837ae48a2a4e19608626e9629b2 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 11:21:50 -0800
Subject: [PATCH 072/280] Only show approved list items

---
 bookwyrm/templates/lists/list.html |  4 ++--
 bookwyrm/views/list.py             | 10 ++++++----
 2 files changed, 8 insertions(+), 6 deletions(-)

diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index 200f5770..b9b9ce86 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -23,11 +23,11 @@
 
 <div class="columns content">
     <section class="column is-three-quarters">
-        {% if not list.books.exists %}
+        {% if not items.exists %}
         <p>This list is currently empty</p>
         {% else %}
         <ol>
-        {% for item in list.listitem_set.all %}
+        {% for item in items %}
             <li class="block">
                 <div class="card">
                     <header class="card-header">
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index ff2a2f21..8d3e50ee 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -64,16 +64,18 @@ class List(View):
             )
             suggestions = [s.book for s in suggestions[:5]]
             if len(suggestions) < 5:
-                suggestions += [s.default_edition for s in \
-                    models.Work.objects.filter(
-                        ~Q(editions__in=book_list.books.all()),
-                    ).order_by('-updated_date')
+                suggestions += [
+                    s.default_edition for s in \
+                        models.Work.objects.filter(
+                            ~Q(editions__in=book_list.books.all()),
+                        ).order_by('-updated_date')
                 ][:5 - len(suggestions)]
 
 
         data = {
             'title': '%s | Lists' % book_list.name,
             'list': book_list,
+            'items': book_list.listitem_set.filter(approved=True),
             'suggested_books': suggestions,
             'list_form': forms.ListForm(instance=book_list),
             'query': query or ''

From a6c5341ad115039abbbc46c130f77b527f66ed6e Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 11:45:16 -0800
Subject: [PATCH 073/280] curation ui

---
 bookwyrm/templates/lists/list.html | 45 ++++++++++++++++++++++++++++++
 bookwyrm/views/list.py             |  1 +
 2 files changed, 46 insertions(+)

diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index b9b9ce86..6210c2bc 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -20,6 +20,51 @@
     {% include 'lists/form.html' %}
 </form>
 
+{% if pending.exists %}
+<div class="block">
+    <div>
+        <p>{{ pending.count }} book{{pending.count | pluralize }} awaiting your approval</p>
+        {% include 'snippets/toggle/open_button.html' with text="Curate suggestions" controls_text="pending-books" class="is-small" %}
+    </div>
+    <div class="box content hidden" id="pending-books">
+        <header class="columns is-mobile">
+            <h2 class="column">Pending Books</h2>
+            <div class="column is-narrow">
+                {% include 'snippets/toggle/toggle_button.html' with label="close" class="delete" nonbutton=True controls_text="pending-books" %}
+            </div>
+        </header>
+        <table class="table is-striped">
+            <tr>
+                <th></th>
+                <th>Book</th>
+                <th>Suggested by</th>
+                <th></th>
+            </tr>
+            {% for item in pending %}
+            <tr>
+                <td>
+                    <a href="{{ book.local_path }}">{% include 'snippets/book_cover.html' with book=item.book size="small" %}</a>
+                </td>
+                <td>
+                    {% include 'snippets/book_titleby.html' with book=item.book %}
+                </td>
+                <td>
+                    {% include 'snippets/username.html' with user=item.added_by %}
+                </td>
+                <td class="field has-addons">
+                    <div class="control">
+                        <button class="button">Approve</button>
+                    </div>
+                    <div class="control">
+                        <button class="button is-danger is-light">Reject</button>
+                    </div>
+                </td>
+            </tr>
+            {% endfor %}
+        </table>
+    </div>
+</div>
+{% endif %}
 
 <div class="columns content">
     <section class="column is-three-quarters">
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index 8d3e50ee..a885c553 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -76,6 +76,7 @@ class List(View):
             'title': '%s | Lists' % book_list.name,
             'list': book_list,
             'items': book_list.listitem_set.filter(approved=True),
+            'pending': book_list.listitem_set.filter(approved=False),
             'suggested_books': suggestions,
             'list_form': forms.ListForm(instance=book_list),
             'query': query or ''

From 13b38d40bb2b91b6c1799b323f970c555b21785f Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 12:07:54 -0800
Subject: [PATCH 074/280] Curation view

---
 bookwyrm/templates/lists/curate.html      | 49 ++++++++++++++++
 bookwyrm/templates/lists/list.html        | 68 ++---------------------
 bookwyrm/templates/lists/list_layout.html | 25 +++++++++
 bookwyrm/urls.py                          |  2 +
 bookwyrm/views/__init__.py                |  2 +-
 bookwyrm/views/list.py                    | 38 ++++++++++++-
 6 files changed, 120 insertions(+), 64 deletions(-)
 create mode 100644 bookwyrm/templates/lists/curate.html
 create mode 100644 bookwyrm/templates/lists/list_layout.html

diff --git a/bookwyrm/templates/lists/curate.html b/bookwyrm/templates/lists/curate.html
new file mode 100644
index 00000000..20c8175d
--- /dev/null
+++ b/bookwyrm/templates/lists/curate.html
@@ -0,0 +1,49 @@
+{% extends 'lists/list_layout.html' %}
+{% block panel %}
+
+<section class="content block">
+    <h2>Pending Books</h2>
+    <p><a href="{% url 'list' list.id %}">Go to list</a></p>
+    {% if not pending.exists %}
+    <p>You're all set!</p>
+    {% else %}
+    <table class="table is-striped">
+        <tr>
+            <th></th>
+            <th>Book</th>
+            <th>Suggested by</th>
+            <th></th>
+        </tr>
+        {% for item in pending %}
+        <tr>
+            <td>
+                <a href="{{ book.local_path }}">{% include 'snippets/book_cover.html' with book=item.book size="small" %}</a>
+            </td>
+            <td>
+                {% include 'snippets/book_titleby.html' with book=item.book %}
+            </td>
+            <td>
+                {% include 'snippets/username.html' with user=item.added_by %}
+            </td>
+            <td>
+                <div class="field has-addons">
+                    <form class="control" method="POST" action="{% url 'list-curate' list.id %}">
+                        {% csrf_token %}
+                        <input type="hidden" name="item" value="{{ item.id }}">
+                        <input type="hidden" name="approved" value="true">
+                        <button class="button">Approve</button>
+                    </form>
+                    <form class="control" method="POST" action="{% url 'list-curate' list.id %}">
+                        {% csrf_token %}
+                        <input type="hidden" name="item" value="{{ item.id }}">
+                        <input type="hidden" name="approved" value="false">
+                        <button class="button is-danger is-light">Discard</button>
+                    </div>
+                </form>
+            </td>
+        </tr>
+        {% endfor %}
+    </table>
+    {% endif %}
+</section>
+{% endblock %}
diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index 6210c2bc..76c12aca 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -1,68 +1,12 @@
-{% extends 'layout.html' %}
+{% extends 'lists/list_layout.html' %}
 {% load bookwyrm_tags %}
-{% block content %}
+{% block panel %}
 
-<header class="columns content">
-    <div class="column">
-        <h1 class="title">{{ list.name }} <span class="subtitle">{% include 'snippets/privacy-icons.html' with item=list %}</span></h1>
-        <p class="subtitle help">Created {% if list.curation != 'open' %} and curated{% endif %} by {% include 'snippets/username.html' with user=list.user %}</p>
-        {% include 'snippets/trimmed_text.html' with full=list.description %}
-    </div>
-    {% if request.user == list.user %}
-    <div class="column is-narrow">
-        {% include 'snippets/toggle/open_button.html' with text="Edit list" icon="pencil" controls_text="create-list" %}
-    </div>
-    {% endif %}
-</header>
-
-<form name="create-list" method="post" action="{% url 'list' list.id %}" class="box hidden" id="create-list">
-    <h3 class="title">Edit list</h3>
-    {% include 'lists/form.html' %}
-</form>
-
-{% if pending.exists %}
+{% if request.user == list.user and pending_count %}
 <div class="block">
-    <div>
-        <p>{{ pending.count }} book{{pending.count | pluralize }} awaiting your approval</p>
-        {% include 'snippets/toggle/open_button.html' with text="Curate suggestions" controls_text="pending-books" class="is-small" %}
-    </div>
-    <div class="box content hidden" id="pending-books">
-        <header class="columns is-mobile">
-            <h2 class="column">Pending Books</h2>
-            <div class="column is-narrow">
-                {% include 'snippets/toggle/toggle_button.html' with label="close" class="delete" nonbutton=True controls_text="pending-books" %}
-            </div>
-        </header>
-        <table class="table is-striped">
-            <tr>
-                <th></th>
-                <th>Book</th>
-                <th>Suggested by</th>
-                <th></th>
-            </tr>
-            {% for item in pending %}
-            <tr>
-                <td>
-                    <a href="{{ book.local_path }}">{% include 'snippets/book_cover.html' with book=item.book size="small" %}</a>
-                </td>
-                <td>
-                    {% include 'snippets/book_titleby.html' with book=item.book %}
-                </td>
-                <td>
-                    {% include 'snippets/username.html' with user=item.added_by %}
-                </td>
-                <td class="field has-addons">
-                    <div class="control">
-                        <button class="button">Approve</button>
-                    </div>
-                    <div class="control">
-                        <button class="button is-danger is-light">Reject</button>
-                    </div>
-                </td>
-            </tr>
-            {% endfor %}
-        </table>
-    </div>
+    <p>
+        <a href="{% url 'list-curate' list.id %}">{{ pending_count }} book{{ pending_count | pluralize }} awaiting your approval</a>
+    </p>
 </div>
 {% endif %}
 
diff --git a/bookwyrm/templates/lists/list_layout.html b/bookwyrm/templates/lists/list_layout.html
new file mode 100644
index 00000000..135655ee
--- /dev/null
+++ b/bookwyrm/templates/lists/list_layout.html
@@ -0,0 +1,25 @@
+{% extends 'layout.html' %}
+{% load bookwyrm_tags %}
+{% block content %}
+
+<header class="columns content">
+    <div class="column">
+        <h1 class="title">{{ list.name }} <span class="subtitle">{% include 'snippets/privacy-icons.html' with item=list %}</span></h1>
+        <p class="subtitle help">Created {% if list.curation != 'open' %} and curated{% endif %} by {% include 'snippets/username.html' with user=list.user %}</p>
+        {% include 'snippets/trimmed_text.html' with full=list.description %}
+    </div>
+    {% if request.user == list.user %}
+    <div class="column is-narrow">
+        {% include 'snippets/toggle/open_button.html' with text="Edit list" icon="pencil" controls_text="create-list" %}
+    </div>
+    {% endif %}
+</header>
+
+<form name="create-list" method="post" action="{% url 'list' list.id %}" class="box hidden" id="create-list">
+    <h3 class="title">Edit list</h3>
+    {% include 'lists/form.html' %}
+</form>
+
+{% block panel %}{% endblock %}
+
+{% endblock %}
diff --git a/bookwyrm/urls.py b/bookwyrm/urls.py
index 7b0975c0..89cc5c41 100644
--- a/bookwyrm/urls.py
+++ b/bookwyrm/urls.py
@@ -92,6 +92,8 @@ urlpatterns = [
             views.List.as_view(), name='list'),
     re_path(r'^list/(?P<list_id>\d+)/add/?$',
             views.list.add_book, name='list-add-book'),
+    re_path(r'^list/(?P<list_id>\d+)/curate/?$',
+            views.Curate.as_view(), name='list-curate'),
 
     # preferences
     re_path(r'^preferences/profile/?$', views.EditUser.as_view()),
diff --git a/bookwyrm/views/__init__.py b/bookwyrm/views/__init__.py
index 5302d6c7..422931e3 100644
--- a/bookwyrm/views/__init__.py
+++ b/bookwyrm/views/__init__.py
@@ -14,7 +14,7 @@ from .import_data import Import, ImportStatus
 from .interaction import Favorite, Unfavorite, Boost, Unboost
 from .invite import ManageInvites, Invite
 from .landing import About, Home, Discover
-from .list import Lists, List
+from .list import Lists, List, Curate
 from .notifications import Notifications
 from .outbox import Outbox
 from .reading import edit_readthrough, create_readthrough, delete_readthrough
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index a885c553..9e76e12c 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -76,7 +76,8 @@ class List(View):
             'title': '%s | Lists' % book_list.name,
             'list': book_list,
             'items': book_list.listitem_set.filter(approved=True),
-            'pending': book_list.listitem_set.filter(approved=False),
+            'pending_count': book_list.listitem_set.filter(
+                approved=False).count(),
             'suggested_books': suggestions,
             'list_form': forms.ListForm(instance=book_list),
             'query': query or ''
@@ -96,6 +97,41 @@ class List(View):
         return redirect(book_list.local_path)
 
 
+class Curate(View):
+    ''' approve or discard list suggestsions '''
+    @method_decorator(login_required, name='dispatch')
+    def get(self, request, list_id):
+        ''' display a pending list '''
+        book_list = get_object_or_404(models.List, id=list_id)
+        if not book_list.user == request.user:
+            # only the creater can curate the list
+            return HttpResponseNotFound()
+
+        data = {
+            'title': 'Curate "%s" | Lists' % book_list.name,
+            'list': book_list,
+            'pending': book_list.listitem_set.filter(approved=False),
+            'list_form': forms.ListForm(instance=book_list),
+        }
+        return TemplateResponse(request, 'lists/curate.html', data)
+
+
+    @method_decorator(login_required, name='dispatch')
+    # pylint: disable=unused-argument
+    def post(self, request, list_id):
+        ''' edit a book_list '''
+        book_list = get_object_or_404(models.List, id=list_id)
+        suggestion = get_object_or_404(
+            models.ListItem, id=request.POST.get('item'))
+        approved = request.POST.get('approved') == 'true'
+        if approved:
+            suggestion.approved = True
+            suggestion.save()
+        else:
+            suggestion.delete()
+        return redirect('list-curate', book_list.id)
+
+
 @require_POST
 def add_book(request, list_id):
     ''' put a book on a list '''

From 47097c6b32faf86c5881680f923a467180c6cd74 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 12:10:10 -0800
Subject: [PATCH 075/280] updates user rating tag

---
 bookwyrm/tests/test_templatetags.py | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/bookwyrm/tests/test_templatetags.py b/bookwyrm/tests/test_templatetags.py
index d315144f..98e401ee 100644
--- a/bookwyrm/tests/test_templatetags.py
+++ b/bookwyrm/tests/test_templatetags.py
@@ -33,18 +33,18 @@ class TemplateTags(TestCase):
             bookwyrm_tags.dict_key(test_dict, 'c'), 0)
 
 
-    def test_get_rating(self):
+    def test_get_user_rating(self):
         ''' get a user's most recent rating of a book '''
         models.Review.objects.create(
             user=self.user, book=self.book, rating=3)
         self.assertEqual(
-            bookwyrm_tags.get_rating(self.book, self.user), 3)
+            bookwyrm_tags.get_user_rating(self.book, self.user), 3)
 
 
-    def test_get_rating_doesnt_exist(self):
+    def test_get_user_rating_doesnt_exist(self):
         ''' there is no rating available '''
         self.assertEqual(
-            bookwyrm_tags.get_rating(self.book, self.user), 0)
+            bookwyrm_tags.get_user_rating(self.book, self.user), 0)
 
 
     def test_get_user_identifer_local(self):

From b17761cfc3062dc152e086a6a5aaeddb719b2e0b Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 12:15:38 -0800
Subject: [PATCH 076/280] remove items from list

---
 bookwyrm/templates/lists/list.html |  4 ++--
 bookwyrm/urls.py                   |  2 ++
 bookwyrm/views/list.py             | 13 +++++++++++++
 3 files changed, 17 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index 76c12aca..8764d61b 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -37,9 +37,9 @@
                             <p>Added by {% include 'snippets/username.html' with user=item.added_by %}</p>
                         </div>
                         {% if list.user == request.user or list.curation == 'open' and item.added_by == request.user %}
-                        <form name="add-book" method="post" action="{% url 'list-add-book' list.id %}" class="card-footer-item">
+                        <form name="add-book" method="post" action="{% url 'list-remove-book' list.id %}" class="card-footer-item">
                             {% csrf_token %}
-                            <input type="hidden" name="book" value="{{ book.id }}">
+                            <input type="hidden" name="item" value="{{ item.id }}">
                             <button type="submit" class="button is-small is-danger">Remove</button>
                         </form>
                         {% endif %}
diff --git a/bookwyrm/urls.py b/bookwyrm/urls.py
index 89cc5c41..ae0f25f3 100644
--- a/bookwyrm/urls.py
+++ b/bookwyrm/urls.py
@@ -92,6 +92,8 @@ urlpatterns = [
             views.List.as_view(), name='list'),
     re_path(r'^list/(?P<list_id>\d+)/add/?$',
             views.list.add_book, name='list-add-book'),
+    re_path(r'^list/(?P<list_id>\d+)/remove/?$',
+            views.list.remove_book, name='list-remove-book'),
     re_path(r'^list/(?P<list_id>\d+)/curate/?$',
             views.Curate.as_view(), name='list-curate'),
 
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index 9e76e12c..2e9afe33 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -161,3 +161,16 @@ def add_book(request, list_id):
         return HttpResponseBadRequest()
 
     return redirect('list', list_id)
+
+
+@require_POST
+def remove_book(request, list_id):
+    ''' put a book on a list '''
+    book_list = get_object_or_404(models.List, id=list_id)
+    item = get_object_or_404(models.ListItem, id=request.POST.get('item'))
+
+    if not book_list.user == request.user and not item.user == request.user:
+        return HttpResponseNotFound()
+
+    item.delete()
+    return redirect('list', list_id)

From 6824bdd5ed3bf67833a0b42fca0f5e556084541e Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 12:30:33 -0800
Subject: [PATCH 077/280] Fixes shelve menu display

---
 bookwyrm/templates/lists/list.html | 19 ++++++++-----------
 1 file changed, 8 insertions(+), 11 deletions(-)

diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index 8764d61b..569b1747 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -3,35 +3,32 @@
 {% block panel %}
 
 {% if request.user == list.user and pending_count %}
-<div class="block">
+<div class="block content">
     <p>
         <a href="{% url 'list-curate' list.id %}">{{ pending_count }} book{{ pending_count | pluralize }} awaiting your approval</a>
     </p>
 </div>
 {% endif %}
 
-<div class="columns content">
+<div class="columns mt-3">
     <section class="column is-three-quarters">
         {% if not items.exists %}
         <p>This list is currently empty</p>
         {% else %}
         <ol>
         {% for item in items %}
-            <li class="block">
+            <li class="block pb-3">
                 <div class="card">
-                    <header class="card-header">
-                        <a href="{{ book.local_path }}">{% include 'snippets/book_cover.html' with book=item.book size="medium" %}</a>
-                        <div class="card-header-title is-flex-direction-column is-align-items-self-start">
+                    <div class="card-content columns p-0 mb-0">
+                        <div class="column is-narrow pt-0 pb-0">
+                            <a href="{{ book.local_path }}">{% include 'snippets/book_cover.html' with book=item.book size="medium" %}</a>
+                        </div>
+                        <div class="column is-flex-direction-column is-align-items-self-start">
                             <span>{% include 'snippets/book_titleby.html' with book=item.book %}</span>
                             {% include 'snippets/stars.html' with rating=item.book|rating:request.user %}
                             {% include 'snippets/shelve_button.html' with book=item.book %}
                         </div>
-                    </header>
-                    {% if item.note %}
-                    <div class="card-content">
-                        {% include 'snippets/trimmed_text.html' with full=item.note %}
                     </div>
-                    {% endif %}
                     <div class="card-footer has-background-white-bis">
                         <div class="card-footer-item">
                             <p>Added by {% include 'snippets/username.html' with user=item.added_by %}</p>

From 697bcb0edb786dd78686dabb741150414b6ce817 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 12:31:39 -0800
Subject: [PATCH 078/280] sidebar css class

---
 bookwyrm/templates/lists/list.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index 569b1747..ab689b1d 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -49,7 +49,7 @@
     </section>
 
     {% if not list.curation == 'closed' or request.user == list.user %}
-    <section class="column is-one-quarter">
+    <section class="column is-one-quarter content">
         <h2>{% if list.curation == 'open' or request.user == list.user %}Add{% else %}Suggest{% endif %} Books</h2>
         <form name="search" action="{% url 'list' list.id %}" method="GET" class="block">
             <div class="field has-addons">

From 944503dde5f5ba252e48f247d60d26bebfa45633 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 12:36:53 -0800
Subject: [PATCH 079/280] Use close button instead of cancel button on edit
 form

---
 bookwyrm/templates/lists/form.html        |  3 +--
 bookwyrm/templates/lists/list_layout.html | 11 ++++++++---
 bookwyrm/templates/lists/lists.html       |  7 ++++++-
 3 files changed, 15 insertions(+), 6 deletions(-)

diff --git a/bookwyrm/templates/lists/form.html b/bookwyrm/templates/lists/form.html
index af0b8abf..ec265cc1 100644
--- a/bookwyrm/templates/lists/form.html
+++ b/bookwyrm/templates/lists/form.html
@@ -28,7 +28,7 @@
 
             <label class="field">
                 <input type="radio" name="curation" value="open"{% if list.curation == 'open' %} checked{% endif %}> Open
-                <p class="help mb-2">Anyone can add books to this list, but only you can remove them</p>
+                <p class="help mb-2">Anyone can add books to this list</p>
             </label>
         </fieldset>
     </div>
@@ -39,7 +39,6 @@
     </div>
     <div class="control">
         <button type="submit" class="button is-primary">Save</button>
-        {% include 'snippets/toggle/close_button.html' with controls_text='create-list' text="Cancel" %}
     </div>
 </div>
 
diff --git a/bookwyrm/templates/lists/list_layout.html b/bookwyrm/templates/lists/list_layout.html
index 135655ee..5e8d2c12 100644
--- a/bookwyrm/templates/lists/list_layout.html
+++ b/bookwyrm/templates/lists/list_layout.html
@@ -10,13 +10,18 @@
     </div>
     {% if request.user == list.user %}
     <div class="column is-narrow">
-        {% include 'snippets/toggle/open_button.html' with text="Edit list" icon="pencil" controls_text="create-list" %}
+        {% include 'snippets/toggle/open_button.html' with text="Edit list" icon="pencil" controls_text="edit-list" %}
     </div>
     {% endif %}
 </header>
 
-<form name="create-list" method="post" action="{% url 'list' list.id %}" class="box hidden" id="create-list">
-    <h3 class="title">Edit list</h3>
+<form name="edit-list" method="post" action="{% url 'list' list.id %}" class="box hidden" id="edit-list">
+    <header class="columns">
+        <h3 class="title column">Edit list</h3>
+        <div class="column is-narrow">
+            {% include 'snippets/toggle/toggle_button.html' with controls_text="edit-list" label="close" class="delete" nonbutton=True %}
+        </div>
+    </header>
     {% include 'lists/form.html' %}
 </form>
 
diff --git a/bookwyrm/templates/lists/lists.html b/bookwyrm/templates/lists/lists.html
index 1f230b78..97b15641 100644
--- a/bookwyrm/templates/lists/lists.html
+++ b/bookwyrm/templates/lists/lists.html
@@ -17,7 +17,12 @@
     </header>
 
     <form name="create-list" method="post" action="{% url 'lists' %}" class="box hidden" id="create-list">
-        <h3 class="title">Create list</h3>
+        <header class="columns">
+            <h3 class="title column">Create list</h3>
+            <div class="column is-narrow">
+                {% include 'snippets/toggle/toggle_button.html' with controls_text="create-list" label="close" class="delete" nonbutton=True %}
+            </div>
+        </header>
         {% include 'lists/form.html' %}
     </form>
 

From 19b56c26f79da4deeef8c8636812853ace4d657c Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 13:12:56 -0800
Subject: [PATCH 080/280] list views tests

---
 bookwyrm/tests/views/test_list.py | 209 +++++++++++++++++++++++++++++-
 1 file changed, 207 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/tests/views/test_list.py b/bookwyrm/tests/views/test_list.py
index 76c7f74c..790533d7 100644
--- a/bookwyrm/tests/views/test_list.py
+++ b/bookwyrm/tests/views/test_list.py
@@ -20,11 +20,14 @@ class ListViews(TestCase):
             local=True, localname='mouse',
             remote_id='https://example.com/users/mouse',
         )
-        self.work = models.Work.objects.create(title='Test Work')
+        self.rat = models.User.objects.create_user(
+            'rat@local.com', 'rat@rat.com', 'ratword',
+            local=True, localname='rat',
+            remote_id='https://example.com/users/rat',
+        )
         self.book = models.Edition.objects.create(
             title='Example Edition',
             remote_id='https://example.com/book/1',
-            parent_work=self.work
         )
         self.list = models.List.objects.create(
             name='Test List', user=self.local_user)
@@ -55,6 +58,25 @@ class ListViews(TestCase):
         self.assertEqual(result.status_code, 200)
 
 
+    def test_lists_create(self):
+        ''' create list view '''
+        view = views.Lists.as_view()
+        request = self.factory.post('', {
+            'name': 'A list',
+            'description': 'wow',
+            'privacy': 'unlisted',
+            'curation': 'open',
+            'user': self.local_user.id,
+        })
+        request.user = self.local_user
+        result = view(request)
+        self.assertEqual(result.status_code, 302)
+        new_list = models.List.objects.filter(name='A list').get()
+        self.assertEqual(new_list.description, 'wow')
+        self.assertEqual(new_list.privacy, 'unlisted')
+        self.assertEqual(new_list.curation, 'open')
+
+
     def test_list_page(self):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.List.as_view()
@@ -81,3 +103,186 @@ class ListViews(TestCase):
             result = view(request, self.list.id)
         self.assertIsInstance(result, ActivitypubResponse)
         self.assertEqual(result.status_code, 200)
+
+
+    def test_list_edit(self):
+        ''' edit a list '''
+        view = views.List.as_view()
+        request = self.factory.post('', {
+            'name': 'New Name',
+            'description': 'wow',
+            'privacy': 'direct',
+            'curation': 'curated',
+            'user': self.local_user.id,
+        })
+        request.user = self.local_user
+
+        result = view(request, self.list.id)
+        self.assertEqual(result.status_code, 302)
+
+        self.list.refresh_from_db()
+        self.assertEqual(self.list.name, 'New Name')
+        self.assertEqual(self.list.description, 'wow')
+        self.assertEqual(self.list.privacy, 'direct')
+        self.assertEqual(self.list.curation, 'curated')
+
+
+    def test_curate_page(self):
+        ''' there are so many views, this just makes sure it LOADS '''
+        view = views.Curate.as_view()
+        models.List.objects.create(name='Public list', user=self.local_user)
+        models.List.objects.create(
+            name='Private list', privacy='private', user=self.local_user)
+        request = self.factory.get('')
+        request.user = self.local_user
+
+        result = view(request, self.list.id)
+        self.assertIsInstance(result, TemplateResponse)
+        result.render()
+        self.assertEqual(result.status_code, 200)
+
+        request.user = self.anonymous_user
+        result = view(request, self.list.id)
+        self.assertEqual(result.status_code, 302)
+
+
+    def test_curate_approve(self):
+        ''' approve a pending item '''
+        view = views.Curate.as_view()
+        pending = models.ListItem.objects.create(
+            book_list=self.list,
+            added_by=self.local_user,
+            book=self.book,
+            approved=False
+        )
+
+        request = self.factory.post('', {
+            'item': pending.id,
+            'approved': 'true',
+        })
+        request.user = self.local_user
+
+        view(request, self.list.id)
+        pending.refresh_from_db()
+        self.assertEqual(self.list.books.count(), 1)
+        self.assertEqual(self.list.listitem_set.first(), pending)
+        self.assertTrue(pending.approved)
+
+
+    def test_curate_reject(self):
+        ''' approve a pending item '''
+        view = views.Curate.as_view()
+        pending = models.ListItem.objects.create(
+            book_list=self.list,
+            added_by=self.local_user,
+            book=self.book,
+            approved=False
+        )
+
+        request = self.factory.post('', {
+            'item': pending.id,
+            'approved': 'false',
+        })
+        request.user = self.local_user
+
+        view(request, self.list.id)
+        self.assertFalse(self.list.books.exists())
+        self.assertFalse(models.ListItem.objects.exists())
+
+
+    def test_add_book(self):
+        ''' put a book on a list '''
+        request = self.factory.post('', {
+            'book': self.book.id,
+        })
+        request.user = self.local_user
+
+        views.list.add_book(request, self.list.id)
+        item = self.list.listitem_set.get()
+        self.assertEqual(item.book, self.book)
+        self.assertEqual(item.added_by, self.local_user)
+        self.assertTrue(item.approved)
+
+
+    def test_add_book_outsider(self):
+        ''' put a book on a list '''
+        self.list.curation = 'open'
+        self.list.save()
+        request = self.factory.post('', {
+            'book': self.book.id,
+        })
+        request.user = self.rat
+
+        views.list.add_book(request, self.list.id)
+        item = self.list.listitem_set.get()
+        self.assertEqual(item.book, self.book)
+        self.assertEqual(item.added_by, self.rat)
+        self.assertTrue(item.approved)
+
+
+    def test_add_book_pending(self):
+        ''' put a book on a list '''
+        self.list.curation = 'curated'
+        self.list.save()
+        request = self.factory.post('', {
+            'book': self.book.id,
+        })
+        request.user = self.rat
+
+        views.list.add_book(request, self.list.id)
+        item = self.list.listitem_set.get()
+        self.assertEqual(item.book, self.book)
+        self.assertEqual(item.added_by, self.rat)
+        self.assertFalse(item.approved)
+
+
+    def test_add_book_self_curated(self):
+        ''' put a book on a list '''
+        self.list.curation = 'curated'
+        self.list.save()
+        request = self.factory.post('', {
+            'book': self.book.id,
+        })
+        request.user = self.local_user
+
+        views.list.add_book(request, self.list.id)
+        item = self.list.listitem_set.get()
+        self.assertEqual(item.book, self.book)
+        self.assertEqual(item.added_by, self.local_user)
+        self.assertTrue(item.approved)
+
+
+    def test_remove_book(self):
+        ''' take an item off a list '''
+        item = models.ListItem.objects.create(
+            book_list=self.list,
+            added_by=self.local_user,
+            book=self.book,
+        )
+        self.assertTrue(self.list.listitem_set.exists())
+        request = self.factory.post('', {
+            'item': item.id,
+        })
+        request.user = self.local_user
+
+        views.list.remove_book(request, self.list.id)
+
+        self.assertFalse(self.list.listitem_set.exists())
+
+
+    def test_remove_book_unauthorized(self):
+        ''' take an item off a list '''
+        item = models.ListItem.objects.create(
+            book_list=self.list,
+            added_by=self.local_user,
+            book=self.book,
+        )
+        self.assertTrue(self.list.listitem_set.exists())
+        request = self.factory.post('', {
+            'item': item.id,
+        })
+        request.user = self.rat
+
+        views.list.remove_book(request, self.list.id)
+
+        self.assertTrue(self.list.listitem_set.exists())

From b9b56941654de5101f78121934a9a17a35122b41 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 13:14:52 -0800
Subject: [PATCH 081/280] Fixes bug in removing list item

---
 bookwyrm/views/list.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index 2e9afe33..4b7a4de4 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -169,7 +169,7 @@ def remove_book(request, list_id):
     book_list = get_object_or_404(models.List, id=list_id)
     item = get_object_or_404(models.ListItem, id=request.POST.get('item'))
 
-    if not book_list.user == request.user and not item.user == request.user:
+    if not book_list.user == request.user and not item.added_by == request.user:
         return HttpResponseNotFound()
 
     item.delete()

From 5939a72c811aa0ab259903ba5844d3cbb7849fe6 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 13:31:49 -0800
Subject: [PATCH 082/280] More list models tests

---
 bookwyrm/models/list.py            |  2 +-
 bookwyrm/tests/models/test_list.py | 22 ++++++++++++++++++++++
 2 files changed, 23 insertions(+), 1 deletion(-)

diff --git a/bookwyrm/models/list.py b/bookwyrm/models/list.py
index 28ee7a2a..96bf0b7a 100644
--- a/bookwyrm/models/list.py
+++ b/bookwyrm/models/list.py
@@ -80,7 +80,7 @@ class ListItem(ActivitypubMixin, BookWyrmModel):
             id='%s#remove' % self.remote_id,
             actor=user.remote_id,
             object=self.book.to_activity(),
-            target=self.book_list.to_activity()
+            target=self.book_list.remote_id
         ).serialize()
 
     class Meta:
diff --git a/bookwyrm/tests/models/test_list.py b/bookwyrm/tests/models/test_list.py
index ba90d961..ce7b1867 100644
--- a/bookwyrm/tests/models/test_list.py
+++ b/bookwyrm/tests/models/test_list.py
@@ -30,3 +30,25 @@ class List(TestCase):
         self.assertEqual(activity_json['type'], 'OrderedCollection')
         self.assertEqual(activity_json['name'], 'Test List')
         self.assertEqual(activity_json['owner'], self.user.remote_id)
+
+    def test_list_item(self):
+        ''' a list entry '''
+        work = models.Work.objects.create(title='hello')
+        book = models.Edition.objects.create(title='hi', parent_work=work)
+        item = models.ListItem.objects.create(
+            book_list=self.list,
+            book=book,
+            added_by=self.user,
+        )
+
+        self.assertTrue(item.approved)
+
+        add_activity = item.to_add_activity(self.user)
+        self.assertEqual(add_activity['actor'], self.user.remote_id)
+        self.assertEqual(add_activity['object']['id'], book.remote_id)
+        self.assertEqual(add_activity['target'], self.list.remote_id)
+
+        remove_activity = item.to_remove_activity(self.user)
+        self.assertEqual(remove_activity['actor'], self.user.remote_id)
+        self.assertEqual(remove_activity['object']['id'], book.remote_id)
+        self.assertEqual(remove_activity['target'], self.list.remote_id)

From fd9b98d443f2ba5b52d4036ba0e01fadd38a0fe7 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 13:38:26 -0800
Subject: [PATCH 083/280] Fixes logged out list view

---
 bookwyrm/templates/lists/list.html | 2 +-
 bookwyrm/tests/views/test_list.py  | 8 ++++++++
 bookwyrm/views/list.py             | 5 +++--
 3 files changed, 12 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index ab689b1d..213f9dca 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -48,7 +48,7 @@
         {% endif %}
     </section>
 
-    {% if not list.curation == 'closed' or request.user == list.user %}
+    {% if request.user.is_authenticated and not list.curation == 'closed' or request.user == list.user %}
     <section class="column is-one-quarter content">
         <h2>{% if list.curation == 'open' or request.user == list.user %}Add{% else %}Suggest{% endif %} Books</h2>
         <form name="search" action="{% url 'list' list.id %}" method="GET" class="block">
diff --git a/bookwyrm/tests/views/test_list.py b/bookwyrm/tests/views/test_list.py
index 790533d7..c3e76745 100644
--- a/bookwyrm/tests/views/test_list.py
+++ b/bookwyrm/tests/views/test_list.py
@@ -90,6 +90,14 @@ class ListViews(TestCase):
         result.render()
         self.assertEqual(result.status_code, 200)
 
+        request.user = self.anonymous_user
+        with patch('bookwyrm.views.list.is_api_request') as is_api:
+            is_api.return_value = False
+            result = view(request, self.list.id)
+        self.assertIsInstance(result, TemplateResponse)
+        result.render()
+        self.assertEqual(result.status_code, 200)
+
         with patch('bookwyrm.views.list.is_api_request') as is_api:
             is_api.return_value = True
             result = view(request, self.list.id)
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index 4b7a4de4..9ef2ae3b 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -54,10 +54,11 @@ class List(View):
             return ActivitypubResponse(book_list.to_activity())
 
         query = request.GET.get('q')
-        if query:
+        suggestions = None
+        if query and request.user.is_authenticated:
             # search for books
             suggestions = connector_manager.local_search(query, raw=True)
-        else:
+        elif request.user.is_authenticated:
             # just suggest whatever books are nearby
             suggestions = request.user.shelfbook_set.filter(
                 ~Q(book__in=book_list.books.all())

From 6e0d258c97b2cd6a5ebdde029902d22987c179db Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 14:03:38 -0800
Subject: [PATCH 084/280] Cards on list page

---
 bookwyrm/templates/lists/list-item.html  |  2 --
 bookwyrm/templates/lists/list_items.html | 23 +++++++++++++++++++++++
 bookwyrm/templates/lists/lists.html      | 18 ++++--------------
 3 files changed, 27 insertions(+), 16 deletions(-)
 delete mode 100644 bookwyrm/templates/lists/list-item.html
 create mode 100644 bookwyrm/templates/lists/list_items.html

diff --git a/bookwyrm/templates/lists/list-item.html b/bookwyrm/templates/lists/list-item.html
deleted file mode 100644
index 9018c0ef..00000000
--- a/bookwyrm/templates/lists/list-item.html
+++ /dev/null
@@ -1,2 +0,0 @@
-<h4><a href="{{ list.local_path }}">{{ list.name }}</a> <span class="subtitle">{% include 'snippets/privacy-icons.html' with item=list %}</span></h4>
-{% include 'snippets/trimmed_text.html' with full=list.description %}
diff --git a/bookwyrm/templates/lists/list_items.html b/bookwyrm/templates/lists/list_items.html
new file mode 100644
index 00000000..4560147f
--- /dev/null
+++ b/bookwyrm/templates/lists/list_items.html
@@ -0,0 +1,23 @@
+{% load bookwyrm_tags %}
+<div class="columns is-multiline">
+    {% for list in lists %}
+    <div class="column is-one-quarter">
+        <div class="card">
+            <header class="card-header">
+                <h4 class="card-header-title">
+                    <a href="{{ list.local_path }}">{{ list.name }}</a> <span class="subtitle">{% include 'snippets/privacy-icons.html' with item=list %}</span>
+                </h4>
+            </header>
+            <div class="card-image is-flex">
+                {% for book in list.books.all|slice:5 %}
+                {% include 'snippets/book_cover.html' with book=book size="small" %}
+                {% endfor %}
+            </div>
+            <div class="card-content is-flex-grow-0">
+                {% if list.description %}{{ list.description | to_markdown | safe | truncatewords_html:20 }}{% endif %}
+                <p class="subtitle help">Created {% if list.curation != 'open' %} and curated{% endif %} by {% include 'snippets/username.html' with user=list.user %}</p>
+            </div>
+        </div>
+    </div>
+    {% endfor %}
+</div>
diff --git a/bookwyrm/templates/lists/lists.html b/bookwyrm/templates/lists/lists.html
index 97b15641..b016b9f1 100644
--- a/bookwyrm/templates/lists/lists.html
+++ b/bookwyrm/templates/lists/lists.html
@@ -27,13 +27,7 @@
     </form>
 
     {% if request.user.list_set.exists %}
-    <ul>
-    {% for list in request.user.list_set.all %}
-        <li class="block">
-            {% include 'lists/list-item.html' with list=list %}
-        </li>
-    {% endfor %}
-    </ul>
+    {% include 'lists/list_items.html' with lists=request.user.list_set.all %}
     {% endif %}
 </section>
 {% endif %}
@@ -41,13 +35,9 @@
 {% if lists.exists %}
 <section class="block content">
     <h2 class="title">Recent Lists</h2>
-    <ul>
-    {% for list in lists %}
-        <li class="block">
-            {% include 'lists/list-item.html' with list=list %}
-        </li>
-    {% endfor %}
-    </ul>
+    {% if request.user.list_set.exists %}
+    {% include 'lists/list_items.html' with lists=lists %}
+    {% endif %}
 </section>
 {% endif %}
 

From d7c32cc3143362cb8d3ff1d7e0ad190c55e0c9ca Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 31 Jan 2021 17:34:06 -0800
Subject: [PATCH 085/280] Paginates lists view

---
 bookwyrm/models/list.py             |  4 ++++
 bookwyrm/templates/lists/lists.html | 15 +++++++++++----
 bookwyrm/views/list.py              | 13 +++++++++++--
 3 files changed, 26 insertions(+), 6 deletions(-)

diff --git a/bookwyrm/models/list.py b/bookwyrm/models/list.py
index 96bf0b7a..6ade16de 100644
--- a/bookwyrm/models/list.py
+++ b/bookwyrm/models/list.py
@@ -46,6 +46,10 @@ class List(OrderedCollectionMixin, BookWyrmModel):
         ''' list of books for this shelf, overrides OrderedCollectionMixin  '''
         return self.books.all().order_by('listitem')
 
+    class Meta:
+        ''' default sorting '''
+        ordering = ('-updated_date',)
+
 
 class ListItem(ActivitypubMixin, BookWyrmModel):
     ''' ok '''
diff --git a/bookwyrm/templates/lists/lists.html b/bookwyrm/templates/lists/lists.html
index b016b9f1..36250331 100644
--- a/bookwyrm/templates/lists/lists.html
+++ b/bookwyrm/templates/lists/lists.html
@@ -4,8 +4,7 @@
 <header class="block">
     <h1 class="title">Lists</h1>
 </header>
-
-{% if request.user.is_authenticated %}
+{% if request.user.is_authenticated and not lists.has_previous %}
 <section class="block content">
     <header class="columns">
         <div class="column">
@@ -27,18 +26,26 @@
     </form>
 
     {% if request.user.list_set.exists %}
-    {% include 'lists/list_items.html' with lists=request.user.list_set.all %}
+    {% include 'lists/list_items.html' with lists=request.user.list_set.all|slice:4 %}
+    {% endif %}
+
+    {% if request.user.list_set.count > 4 %}
+    <a href="{{ request.user.local_path }}/lists">See all {{ request.user.list_set.count}} lists</a>
     {% endif %}
 </section>
 {% endif %}
 
-{% if lists.exists %}
+
+{% if lists %}
 <section class="block content">
     <h2 class="title">Recent Lists</h2>
     {% if request.user.list_set.exists %}
     {% include 'lists/list_items.html' with lists=lists %}
     {% endif %}
 </section>
+<div>
+    {% include 'snippets/pagination.html' with page=lists path=path %}
+</div>
 {% endif %}
 
 {% endblock %}
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index 9ef2ae3b..01af2d19 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -1,5 +1,6 @@
 ''' book list views'''
 from django.contrib.auth.decorators import login_required
+from django.core.paginator import Paginator
 from django.db.models import Q
 from django.http import HttpResponseNotFound, HttpResponseBadRequest
 from django.shortcuts import get_object_or_404, redirect
@@ -19,15 +20,23 @@ class Lists(View):
     ''' book list page '''
     def get(self, request):
         ''' display a book list '''
+        try:
+            page = int(request.GET.get('page', 1))
+        except ValueError:
+            page = 1
+
         user = request.user if request.user.is_authenticated else None
         lists = models.List.objects.filter(
             ~Q(user=user),
         ).all()
         lists = privacy_filter(request.user, lists, ['public', 'followers'])
+
+        paginated = Paginator(lists, 12)
         data = {
             'title': 'Lists',
-            'lists': lists,
-            'list_form': forms.ListForm()
+            'lists': paginated.page(page),
+            'list_form': forms.ListForm(),
+            'path': '/list',
         }
         return TemplateResponse(request, 'lists/lists.html', data)
 

From ec7a9f68c2df503071a7e7f0131075ad5f170670 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 1 Feb 2021 11:34:08 -0800
Subject: [PATCH 086/280] Adds tabs to user profile page

---
 bookwyrm/templates/goal.html                  | 25 ++++++++++++------
 bookwyrm/templates/lists/lists.html           |  2 +-
 bookwyrm/templates/preferences/edit_user.html |  2 +-
 bookwyrm/templates/user/shelf.html            |  6 ++---
 bookwyrm/templates/user/user_layout.html      | 25 ++++++++++++++++++
 bookwyrm/urls.py                              | 23 +++++++++-------
 bookwyrm/views/__init__.py                    |  2 +-
 bookwyrm/views/goal.py                        |  1 +
 bookwyrm/views/list.py                        | 26 ++++++++++++++++++-
 9 files changed, 88 insertions(+), 24 deletions(-)

diff --git a/bookwyrm/templates/goal.html b/bookwyrm/templates/goal.html
index ac6c65d2..dfdc02aa 100644
--- a/bookwyrm/templates/goal.html
+++ b/bookwyrm/templates/goal.html
@@ -1,13 +1,22 @@
-{% extends 'layout.html' %}
-{% block content %}
+{% extends 'user/user_layout.html' %}
 
+{% block header %}
+<div class="columns is-mobile">
+    <div class="column">
+        <h1 class="title">{{ year }} Reading Progress</h1>
+    </div>
+    {% if is_self and goal %}
+    <div class="column is-narrow">
+        {% include 'snippets/toggle/open_button.html' with text="Edit goal" icon="pencil" controls_text="show-edit-goal" focus="edit-form-header" %}
+    </div>
+    {% endif %}
+</div>
+{% endblock %}
+
+{% block panel %}
 <section class="block">
-    <h1 class="title">{{ year }} Reading Progress</h1>
     {% if user == request.user %}
     <div class="block">
-        {% if goal %}
-        {% include 'snippets/toggle/open_button.html' with text="Edit goal" controls_text="show-edit-goal" focus="edit-form-header" %}
-        {% endif %}
         {% now 'Y' as year %}
         <section class="card {% if goal %}hidden{% endif %}" id="show-edit-goal">
             <header class="card-header">
@@ -34,8 +43,8 @@
 </section>
 
 {% if goal.books %}
-<section>
-    <h2 class="title">{% if goal.user == request.user %}Your{% else %}{{ goal.user.display_name }}'s{% endif %} {{ year }} Books</h2>
+<section class="content">
+    <h2>{% if goal.user == request.user %}Your{% else %}{{ goal.user.display_name }}'s{% endif %} {{ year }} Books</h2>
     <div class="columns is-multiline">
         {% for book in goal.books %}
         <div class="column is-narrow">
diff --git a/bookwyrm/templates/lists/lists.html b/bookwyrm/templates/lists/lists.html
index 36250331..0e25bb23 100644
--- a/bookwyrm/templates/lists/lists.html
+++ b/bookwyrm/templates/lists/lists.html
@@ -30,7 +30,7 @@
     {% endif %}
 
     {% if request.user.list_set.count > 4 %}
-    <a href="{{ request.user.local_path }}/lists">See all {{ request.user.list_set.count}} lists</a>
+    <a href="{% url 'user-lists' request.user.localname %}">See all {{ request.user.list_set.count}} lists</a>
     {% endif %}
 </section>
 {% endif %}
diff --git a/bookwyrm/templates/preferences/edit_user.html b/bookwyrm/templates/preferences/edit_user.html
index 8b384276..798d2fcb 100644
--- a/bookwyrm/templates/preferences/edit_user.html
+++ b/bookwyrm/templates/preferences/edit_user.html
@@ -7,7 +7,7 @@ Edit Profile
 {% if form.non_field_errors %}
 <p class="notification is-danger">{{ form.non_field_errors }}</p>
 {% endif %}
-<form name="edit-profile" action="/edit-profile/" method="post" enctype="multipart/form-data">
+<form name="edit-profile" action="{% url 'prefs-profile' %}" method="post" enctype="multipart/form-data">
     {% csrf_token %}
     <div class="block">
         <label class="label" for="id_avatar">Avatar:</label>
diff --git a/bookwyrm/templates/user/shelf.html b/bookwyrm/templates/user/shelf.html
index c0083e17..add5e5db 100644
--- a/bookwyrm/templates/user/shelf.html
+++ b/bookwyrm/templates/user/shelf.html
@@ -18,11 +18,11 @@
     <div class="column">
         <div class="tabs" role="tablist">
             <ul>
-            {% for shelf_tab in shelves %}
-            <li class="{% if shelf_tab.identifier == shelf.identifier %}is-active{% endif %}">
+                {% for shelf_tab in shelves %}
+                <li class="{% if shelf_tab.identifier == shelf.identifier %}is-active{% endif %}">
                     <a href="/user/{{ user | username }}/shelf/{{ shelf_tab.identifier }}" role="tab" aria-selected="{% if shelf_tab.identifier == shelf.identifier %}true{% else %}false{% endif %}">{{ shelf_tab.name }}</a>
                 </li>
-            {% endfor %}
+                {% endfor %}
             </ul>
         </div>
     </div>
diff --git a/bookwyrm/templates/user/user_layout.html b/bookwyrm/templates/user/user_layout.html
index 1ab51ce3..ec8f7189 100644
--- a/bookwyrm/templates/user/user_layout.html
+++ b/bookwyrm/templates/user/user_layout.html
@@ -67,6 +67,31 @@
     </div>
     {% endif %}
 </div>
+{% with user|username as username %}
+{% if 'user/'|add:username|add:'/shelf' not in request.path  and 'user/'|add:username|add:'/shelves' not in request.path %}
+<nav class="tabs">
+    <ul>
+        {% url 'user-feed' request.user|username as url %}
+        <li{% if url == request.path or url == request.path|add:'/' %} class="is-active"{% endif %}>
+            <a href="{{ url }}">Activity</a>
+        </li>
+        {% now 'Y' as year %}
+        {% url 'user-goal' request.user|username year as url %}
+        <li{% if url in request.path %} class="is-active"{% endif %}>
+            <a href="{{ url }}">Reading Goal</a>
+        </li>
+        {% url 'user-lists' request.user|username as url %}
+        <li{% if url in request.path %} class="is-active"{% endif %}>
+            <a href="{{ url }}">Lists</a>
+        </li>
+        {% url 'user-shelves' request.user|username as url %}
+        <li{% if url in request.path %} class="is-active"{% endif %}>
+            <a href="{{ url }}">Shelves</a>
+        </li>
+    </ul>
+</nav>
+{% endif %}
+{% endwith %}
 
 {% block panel %}{% endblock %}
 
diff --git a/bookwyrm/urls.py b/bookwyrm/urls.py
index ae0f25f3..68aaedd7 100644
--- a/bookwyrm/urls.py
+++ b/bookwyrm/urls.py
@@ -78,13 +78,20 @@ urlpatterns = [
     re_path(r'^import/(\d+)/?$', views.ImportStatus.as_view()),
 
     # users
-    re_path(r'%s/?$' % user_path, views.User.as_view()),
+    re_path(r'%s/?$' % user_path, views.User.as_view(), name='user-feed'),
     re_path(r'%s\.json$' % user_path, views.User.as_view()),
-    re_path(r'%s/rss' % user_path, views.rss_feed.RssFeed()),
-    re_path(r'%s/followers(.json)?/?$' % user_path, views.Followers.as_view()),
-    re_path(r'%s/following(.json)?/?$' % user_path, views.Following.as_view()),
+    re_path(r'%s/rss' % user_path, views.rss_feed.RssFeed(), name='user-rss'),
+    re_path(r'%s/followers(.json)?/?$' % user_path,
+            views.Followers.as_view(), name='user-followers'),
+    re_path(r'%s/following(.json)?/?$' % user_path,
+            views.Following.as_view(), name='user-following'),
     re_path(r'%s/shelves/?$' % user_path,
             views.user_shelves_page, name='user-shelves'),
+    re_path(r'%s/lists/?$' % user_path,
+            views.UserLists.as_view(), name='user-lists'),
+    re_path(r'%s/goal/(?P<year>\d{4})/?$' % user_path,
+            views.Goal.as_view(), name='user-goal'),
+
 
     # lists
     re_path(r'^list/?$', views.Lists.as_view(), name='lists'),
@@ -98,15 +105,13 @@ urlpatterns = [
             views.Curate.as_view(), name='list-curate'),
 
     # preferences
-    re_path(r'^preferences/profile/?$', views.EditUser.as_view()),
+    re_path(r'^preferences/profile/?$',
+            views.EditUser.as_view(), name='prefs-profile'),
     re_path(r'^preferences/password/?$', views.ChangePassword.as_view()),
     re_path(r'^preferences/block/?$', views.Block.as_view()),
     re_path(r'^block/(?P<user_id>\d+)/?$', views.Block.as_view()),
     re_path(r'^unblock/(?P<user_id>\d+)/?$', views.unblock),
 
-    # reading goals
-    re_path(r'%s/goal/(?P<year>\d{4})/?$' % user_path, views.Goal.as_view()),
-
     # statuses
     re_path(r'%s(.json)?/?$' % status_path, views.Status.as_view()),
     re_path(r'%s/activity/?$' % status_path, views.Status.as_view()),
@@ -142,7 +147,7 @@ urlpatterns = [
 
     # shelf
     re_path(r'^%s/shelf/(?P<shelf_identifier>[\w-]+)(.json)?/?$' % \
-            user_path, views.Shelf.as_view()),
+            user_path, views.Shelf.as_view(), name='shelf'),
     re_path(r'^%s/shelf/(?P<shelf_identifier>[\w-]+)(.json)?/?$' % \
             local_user_path, views.Shelf.as_view()),
     re_path(r'^create-shelf/?$', views.create_shelf),
diff --git a/bookwyrm/views/__init__.py b/bookwyrm/views/__init__.py
index 422931e3..196e84c0 100644
--- a/bookwyrm/views/__init__.py
+++ b/bookwyrm/views/__init__.py
@@ -14,7 +14,7 @@ from .import_data import Import, ImportStatus
 from .interaction import Favorite, Unfavorite, Boost, Unboost
 from .invite import ManageInvites, Invite
 from .landing import About, Home, Discover
-from .list import Lists, List, Curate
+from .list import Lists, List, Curate, UserLists
 from .notifications import Notifications
 from .outbox import Outbox
 from .reading import edit_readthrough, create_readthrough, delete_readthrough
diff --git a/bookwyrm/views/goal.py b/bookwyrm/views/goal.py
index f1954672..ac7a1702 100644
--- a/bookwyrm/views/goal.py
+++ b/bookwyrm/views/goal.py
@@ -35,6 +35,7 @@ class Goal(View):
             'goal': goal,
             'user': user,
             'year': year,
+            'is_self': request.user == user,
         }
         return TemplateResponse(request, 'goal.html', data)
 
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index 01af2d19..50cab1fd 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -13,7 +13,7 @@ from bookwyrm import forms, models
 from bookwyrm.activitypub import ActivitypubResponse
 from bookwyrm.connectors import connector_manager
 from .helpers import is_api_request, object_visible_to_user, privacy_filter
-
+from .helpers import get_user_from_username
 
 # pylint: disable=no-self-use
 class Lists(View):
@@ -50,6 +50,30 @@ class Lists(View):
         book_list = form.save()
         return redirect(book_list.local_path)
 
+class UserLists(View):
+    ''' a user's book list page '''
+    def get(self, request, username):
+        ''' display a book list '''
+        try:
+            page = int(request.GET.get('page', 1))
+        except ValueError:
+            page = 1
+        user = get_user_from_username(username)
+        lists = models.List.objects.filter(user=user).all()
+        lists = privacy_filter(
+            request.user, lists, ['public', 'followers', 'unlisted'])
+        paginated = Paginator(lists, 12)
+
+        data = {
+            'title': '%s: Lists' % user.name,
+            'user': user,
+            'is_self': request.user.id == user.id,
+            'lists': paginated.page(page),
+            'list_form': forms.ListForm(),
+            'path': user.local_path + '/lists',
+        }
+        return TemplateResponse(request, 'user/lists.html', data)
+
 
 class List(View):
     ''' book list page '''

From e86553014271d54d48361c7fcd26f2eddcb46b28 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 1 Feb 2021 11:50:47 -0800
Subject: [PATCH 087/280] Search lists

---
 bookwyrm/templates/search_results.html | 41 +++++++++++++++++++-------
 bookwyrm/views/search.py               | 17 +++++++++--
 2 files changed, 45 insertions(+), 13 deletions(-)

diff --git a/bookwyrm/templates/search_results.html b/bookwyrm/templates/search_results.html
index a35504a1..be1da831 100644
--- a/bookwyrm/templates/search_results.html
+++ b/bookwyrm/templates/search_results.html
@@ -63,17 +63,36 @@
         </div>
     </div>
     <div class="column">
-        <h2 class="title">Matching Users</h2>
-        {% if not user_results %}
-        <p>No users found for "{{ query }}"</p>
-        {% endif %}
-        {% for result in user_results %}
-        <div class="block">
-            {% include 'snippets/avatar.html' with user=result %}</h2>
-            {% include 'snippets/username.html' with user=result show_full=True %}</h2>
-            {% include 'snippets/follow_button.html' with user=result %}
-        </div>
-        {% endfor %}
+        <section class="block">
+            <h2 class="title">Matching Users</h2>
+            {% if not user_results %}
+            <p>No users found for "{{ query }}"</p>
+            {% endif %}
+            <ul>
+            {% for result in user_results %}
+                <li class="block">
+                    {% include 'snippets/avatar.html' with user=result %}</h2>
+                    {% include 'snippets/username.html' with user=result show_full=True %}</h2>
+                    {% include 'snippets/follow_button.html' with user=result %}
+                </li>
+            {% endfor %}
+            </ul>
+        </section>
+        <section class="block">
+            <h2 class="title">Lists</h2>
+            {% if not list_results %}
+            <p>No lists found for "{{ query }}"</p>
+            {% endif %}
+            {% for result in list_results %}
+            <div class="block">
+                <ul>
+                    <li>
+                        <a href="{% url 'list' result.id %}">{{ result.name }}</a>
+                    </li>
+                </ul>
+            </div>
+            {% endfor %}
+        </section>
     </div>
 </div>
 {% endwith %}
diff --git a/bookwyrm/views/search.py b/bookwyrm/views/search.py
index 8066777a..a4cd7337 100644
--- a/bookwyrm/views/search.py
+++ b/bookwyrm/views/search.py
@@ -10,7 +10,7 @@ from django.views import View
 from bookwyrm import models
 from bookwyrm.connectors import connector_manager
 from bookwyrm.utils import regex
-from .helpers import is_api_request
+from .helpers import is_api_request, privacy_filter
 from .helpers import handle_remote_webfinger
 
 
@@ -32,7 +32,7 @@ class Search(View):
         if re.match(r'\B%s' % regex.full_username, query):
             handle_remote_webfinger(query)
 
-        # do a local user search
+        # do a  user search
         user_results = models.User.objects.annotate(
             similarity=Greatest(
                 TrigramSimilarity('username', query),
@@ -42,12 +42,25 @@ class Search(View):
             similarity__gt=0.5,
         ).order_by('-similarity')[:10]
 
+        # any relevent lists?
+        list_results = privacy_filter(
+            request.user, models.List.objects, ['public', 'followers']
+        ).annotate(
+            similarity=Greatest(
+                TrigramSimilarity('name', query),
+                TrigramSimilarity('description', query),
+            )
+        ).filter(
+            similarity__gt=0.1,
+        ).order_by('-similarity')[:10]
+
         book_results = connector_manager.search(
             query, min_confidence=min_confidence)
         data = {
             'title': 'Search Results',
             'book_results': book_results,
             'user_results': user_results,
+            'list_results': list_results,
             'query': query,
         }
         return TemplateResponse(request, 'search_results.html', data)

From 3e3b21c46aced1ba1a8fe3c0c696115eb85fae24 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 1 Feb 2021 12:03:11 -0800
Subject: [PATCH 088/280] Fixes ap serialization of list lists

---
 bookwyrm/views/list.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index 50cab1fd..b7a8dad0 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -84,7 +84,7 @@ class List(View):
             return HttpResponseNotFound()
 
         if is_api_request(request):
-            return ActivitypubResponse(book_list.to_activity())
+            return ActivitypubResponse(book_list.to_activity(**request.GET))
 
         query = request.GET.get('q')
         suggestions = None

From c7914d1394c1459b2a65dadc3d45476f7f49230a Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 1 Feb 2021 13:06:06 -0800
Subject: [PATCH 089/280] Fixes search tests

---
 bookwyrm/tests/views/test_search.py | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/bookwyrm/tests/views/test_search.py b/bookwyrm/tests/views/test_search.py
index e5cba99c..655b4563 100644
--- a/bookwyrm/tests/views/test_search.py
+++ b/bookwyrm/tests/views/test_search.py
@@ -83,6 +83,7 @@ class ShelfViews(TestCase):
         )
 
         request = self.factory.get('', {'q': 'Test Book'})
+        request.user = self.local_user
         with patch('bookwyrm.views.search.is_api_request') as is_api:
             is_api.return_value = False
             with patch(
@@ -99,6 +100,7 @@ class ShelfViews(TestCase):
         ''' searches remote connectors '''
         view = views.Search.as_view()
         request = self.factory.get('', {'q': 'mouse'})
+        request.user = self.local_user
         with patch('bookwyrm.views.search.is_api_request') as is_api:
             is_api.return_value = False
             with patch('bookwyrm.connectors.connector_manager.search'):

From e53b4e57fa65f8394a90a09485fd7a24c4255f0c Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 2 Feb 2021 09:37:46 -0800
Subject: [PATCH 090/280] Federating lists and shelves

---
 bookwyrm/activitypub/ordered_collection.py | 11 +++---
 bookwyrm/activitypub/verbs.py              |  2 +-
 bookwyrm/models/base_model.py              | 18 +++++-----
 bookwyrm/models/list.py                    |  9 ++---
 bookwyrm/models/shelf.py                   |  6 +---
 bookwyrm/views/goal.py                     |  7 +++-
 bookwyrm/views/list.py                     | 40 +++++++++++++++++++++-
 bookwyrm/views/shelf.py                    | 10 ++++--
 8 files changed, 74 insertions(+), 29 deletions(-)

diff --git a/bookwyrm/activitypub/ordered_collection.py b/bookwyrm/activitypub/ordered_collection.py
index 9aeaf664..335723f4 100644
--- a/bookwyrm/activitypub/ordered_collection.py
+++ b/bookwyrm/activitypub/ordered_collection.py
@@ -1,5 +1,5 @@
 ''' defines activitypub collections (lists) '''
-from dataclasses import dataclass
+from dataclasses import dataclass, field
 from typing import List
 
 from .base_activity import ActivityObject
@@ -10,9 +10,12 @@ class OrderedCollection(ActivityObject):
     ''' structure of an ordered collection activity '''
     totalItems: int
     first: str
-    last: str = ''
-    name: str = ''
-    owner: str = ''
+    last: str = None
+    name: str = None
+    summary: str = None
+    owner: str = None
+    to: List[str] = field(default_factory=lambda: [])
+    cc: List[str] = field(default_factory=lambda: [])
     type: str = 'OrderedCollection'
 
 
diff --git a/bookwyrm/activitypub/verbs.py b/bookwyrm/activitypub/verbs.py
index 6977ee8e..5502ced0 100644
--- a/bookwyrm/activitypub/verbs.py
+++ b/bookwyrm/activitypub/verbs.py
@@ -18,7 +18,7 @@ class Create(Verb):
     ''' Create activity '''
     to: List
     cc: List
-    signature: Signature
+    signature: Signature = None
     type: str = 'Create'
 
 
diff --git a/bookwyrm/models/base_model.py b/bookwyrm/models/base_model.py
index 3f1ed66d..889eb5f4 100644
--- a/bookwyrm/models/base_model.py
+++ b/bookwyrm/models/base_model.py
@@ -161,16 +161,18 @@ class ActivitypubMixin:
         ''' returns the object wrapped in a Create activity '''
         activity_object = self.to_activity(**kwargs)
 
-        signer = pkcs1_15.new(RSA.import_key(user.key_pair.private_key))
-        content = activity_object['content']
-        signed_message = signer.sign(SHA256.new(content.encode('utf8')))
+        signature = None
         create_id = self.remote_id + '/activity'
+        if 'content' in activity_object:
+            signer = pkcs1_15.new(RSA.import_key(user.key_pair.private_key))
+            content = activity_object['content']
+            signed_message = signer.sign(SHA256.new(content.encode('utf8')))
 
-        signature = activitypub.Signature(
-            creator='%s#main-key' % user.remote_id,
-            created=activity_object['published'],
-            signatureValue=b64encode(signed_message).decode('utf8')
-        )
+            signature = activitypub.Signature(
+                creator='%s#main-key' % user.remote_id,
+                created=activity_object['published'],
+                signatureValue=b64encode(signed_message).decode('utf8')
+            )
 
         return activitypub.Create(
             id=create_id,
diff --git a/bookwyrm/models/list.py b/bookwyrm/models/list.py
index 6ade16de..801a3f2a 100644
--- a/bookwyrm/models/list.py
+++ b/bookwyrm/models/list.py
@@ -19,12 +19,9 @@ class List(OrderedCollectionMixin, BookWyrmModel):
     name = fields.CharField(max_length=100)
     user = fields.ForeignKey(
         'User', on_delete=models.PROTECT, activitypub_field='owner')
-    description = fields.TextField(blank=True, null=True)
-    privacy = fields.CharField(
-        max_length=255,
-        default='public',
-        choices=fields.PrivacyLevels.choices
-    )
+    description = fields.TextField(
+        blank=True, null=True, activitypub_field='summary')
+    privacy = fields.PrivacyField()
     curation = fields.CharField(
         max_length=255,
         default='closed',
diff --git a/bookwyrm/models/shelf.py b/bookwyrm/models/shelf.py
index 84575137..87200f38 100644
--- a/bookwyrm/models/shelf.py
+++ b/bookwyrm/models/shelf.py
@@ -15,11 +15,7 @@ class Shelf(OrderedCollectionMixin, BookWyrmModel):
     user = fields.ForeignKey(
         'User', on_delete=models.PROTECT, activitypub_field='owner')
     editable = models.BooleanField(default=True)
-    privacy = fields.CharField(
-        max_length=255,
-        default='public',
-        choices=fields.PrivacyLevels.choices
-    )
+    privacy = fields.PrivacyField()
     books = models.ManyToManyField(
         'Edition',
         symmetrical=False,
diff --git a/bookwyrm/views/goal.py b/bookwyrm/views/goal.py
index ac7a1702..0496848f 100644
--- a/bookwyrm/views/goal.py
+++ b/bookwyrm/views/goal.py
@@ -71,10 +71,15 @@ class Goal(View):
             broadcast(
                 request.user,
                 status.to_create_activity(request.user),
+                privacy=status.privacy,
                 software='bookwyrm')
 
             # re-format the activity for non-bookwyrm servers
             remote_activity = status.to_create_activity(request.user, pure=True)
-            broadcast(request.user, remote_activity, software='other')
+            broadcast(
+                request.user,
+                remote_activity,
+                privacy=status.privacy,
+                software='other')
 
         return redirect(request.headers.get('Referer', '/'))
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index b7a8dad0..ce0cedb4 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -11,6 +11,7 @@ from django.views.decorators.http import require_POST
 
 from bookwyrm import forms, models
 from bookwyrm.activitypub import ActivitypubResponse
+from bookwyrm.broadcast import broadcast
 from bookwyrm.connectors import connector_manager
 from .helpers import is_api_request, object_visible_to_user, privacy_filter
 from .helpers import get_user_from_username
@@ -48,6 +49,14 @@ class Lists(View):
         if not form.is_valid():
             return redirect('lists')
         book_list = form.save()
+
+        # let the world know
+        broadcast(
+            request.user,
+            book_list.to_create_activity(request.user),
+            privacy=book_list.privacy,
+            software='bookwyrm'
+        )
         return redirect(book_list.local_path)
 
 class UserLists(View):
@@ -128,6 +137,13 @@ class List(View):
         if not form.is_valid():
             return redirect('list', book_list.id)
         book_list = form.save()
+        # let the world know
+        broadcast(
+            request.user,
+            book_list.to_update_activity(request.user),
+            privacy=book_list.privacy,
+            software='bookwyrm'
+        )
         return redirect(book_list.local_path)
 
 
@@ -161,6 +177,13 @@ class Curate(View):
         if approved:
             suggestion.approved = True
             suggestion.save()
+            # let the world know
+            broadcast(
+                request.user,
+                suggestion.to_add_activity(request.user),
+                privacy=book_list.privacy,
+                software='bookwyrm'
+            )
         else:
             suggestion.delete()
         return redirect('list-curate', book_list.id)
@@ -177,11 +200,18 @@ def add_book(request, list_id):
     # do you have permission to add to the list?
     if request.user == book_list.user or book_list.curation == 'open':
         # go ahead and add it
-        models.ListItem.objects.create(
+        item = models.ListItem.objects.create(
             book=book,
             book_list=book_list,
             added_by=request.user,
         )
+        # let the world know
+        broadcast(
+            request.user,
+            item.to_add_activity(request.user),
+            privacy=book_list.privacy,
+            software='bookwyrm'
+        )
     elif book_list.curation == 'curated':
         # make a pending entry
         models.ListItem.objects.create(
@@ -206,5 +236,13 @@ def remove_book(request, list_id):
     if not book_list.user == request.user and not item.added_by == request.user:
         return HttpResponseNotFound()
 
+    activity = item.to_remove_activity(request.user)
     item.delete()
+    # let the world know
+    broadcast(
+        request.user,
+        activity,
+        privacy=book_list.privacy,
+        software='bookwyrm'
+    )
     return redirect('list', list_id)
diff --git a/bookwyrm/views/shelf.py b/bookwyrm/views/shelf.py
index e4c49261..ebeb6b52 100644
--- a/bookwyrm/views/shelf.py
+++ b/bookwyrm/views/shelf.py
@@ -138,7 +138,12 @@ def shelve(request):
             pass
     shelfbook = models.ShelfBook.objects.create(
         book=book, shelf=desired_shelf, added_by=request.user)
-    broadcast(request.user, shelfbook.to_add_activity(request.user))
+    broadcast(
+        request.user,
+        shelfbook.to_add_activity(request.user),
+        privacy=shelfbook.shelf.privacy,
+        software='bookwyrm'
+    )
 
     # post about "want to read" shelves
     if desired_shelf.identifier == 'to-read':
@@ -146,7 +151,6 @@ def shelve(request):
             request.user,
             desired_shelf,
             book,
-            privacy=desired_shelf.privacy
         )
 
     return redirect('/')
@@ -169,4 +173,4 @@ def handle_unshelve(user, book, shelf):
     activity = row.to_remove_activity(user)
     row.delete()
 
-    broadcast(user, activity)
+    broadcast(user, activity, privacy=shelf.privacy, software='bookwyrm')

From 23ce639e5c54404c73852810613ebb5b8ac9a303 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 2 Feb 2021 09:41:24 -0800
Subject: [PATCH 091/280] migration to change privacy field type

---
 .../migrations/0042_auto_20210201_2108.py     | 28 +++++++++++++++++++
 1 file changed, 28 insertions(+)
 create mode 100644 bookwyrm/migrations/0042_auto_20210201_2108.py

diff --git a/bookwyrm/migrations/0042_auto_20210201_2108.py b/bookwyrm/migrations/0042_auto_20210201_2108.py
new file mode 100644
index 00000000..95a144de
--- /dev/null
+++ b/bookwyrm/migrations/0042_auto_20210201_2108.py
@@ -0,0 +1,28 @@
+# Generated by Django 3.0.7 on 2021-02-01 21:08
+
+import bookwyrm.models.fields
+from django.db import migrations
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('bookwyrm', '0041_auto_20210131_1614'),
+    ]
+
+    operations = [
+        migrations.AlterModelOptions(
+            name='list',
+            options={'ordering': ('-updated_date',)},
+        ),
+        migrations.AlterField(
+            model_name='list',
+            name='privacy',
+            field=bookwyrm.models.fields.PrivacyField(choices=[('public', 'Public'), ('unlisted', 'Unlisted'), ('followers', 'Followers'), ('direct', 'Direct')], default='public', max_length=255),
+        ),
+        migrations.AlterField(
+            model_name='shelf',
+            name='privacy',
+            field=bookwyrm.models.fields.PrivacyField(choices=[('public', 'Public'), ('unlisted', 'Unlisted'), ('followers', 'Followers'), ('direct', 'Direct')], default='public', max_length=255),
+        ),
+    ]

From d2fc3febb0b063e0bcac6f3585bcbaa1a09c014f Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 2 Feb 2021 09:44:29 -0800
Subject: [PATCH 092/280] Show reading activity panel when no readthroughs
 exist

---
 bookwyrm/templates/book.html | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/bookwyrm/templates/book.html b/bookwyrm/templates/book.html
index 4a95237c..51811d17 100644
--- a/bookwyrm/templates/book.html
+++ b/bookwyrm/templates/book.html
@@ -147,7 +147,7 @@
                 {% endfor %}
             </div>
 
-            {% if readthroughs.exists %}
+            {% if request.user.is_authenticated %}
             <section class="block">
                 <header class="columns">
                     <h2 class="column title is-5 mb-1">Your reading activity</h2>
@@ -155,6 +155,9 @@
                         {% include 'snippets/toggle/open_button.html' with text="Add read dates" icon="plus" class="is-small" controls_text="add-readthrough" %}
                     </div>
                 </header>
+                {% if not readthroughs.exists %}
+                <p>You don't have any reading activity for this book.</p>
+                {% endif %}
                 <section class="hidden box" id="add-readthrough">
                     <form name="add-readthrough" action="/create-readthrough" method="post">
                         {% include 'snippets/readthrough_form.html' with readthrough=None %}

From 05c00b9ecafa477519ac89ba1f762082e3324494 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 2 Feb 2021 10:13:35 -0800
Subject: [PATCH 093/280] Adds cute lil icons to discover page

---
 bookwyrm/static/css/fonts/icomoon.eot  | Bin 8240 -> 10112 bytes
 bookwyrm/static/css/fonts/icomoon.svg  |   4 ++++
 bookwyrm/static/css/fonts/icomoon.ttf  | Bin 8076 -> 9948 bytes
 bookwyrm/static/css/fonts/icomoon.woff | Bin 8152 -> 10024 bytes
 bookwyrm/static/css/icons.css          |  24 ++++++++++++++-----
 bookwyrm/templates/discover.html       |  31 +++++++++++++------------
 6 files changed, 38 insertions(+), 21 deletions(-)

diff --git a/bookwyrm/static/css/fonts/icomoon.eot b/bookwyrm/static/css/fonts/icomoon.eot
index 48bd3f629b72847172a29ef52649fe56b5a71d57..566fb13df682e828cf27f9ccbc1bc52e48e065e2 100644
GIT binary patch
delta 2151
zcmb7FO>7%Q6rMM~yY}vS?X1@&aop67?I`{MJISsCiIWzPD5yU~0#y|hB8n&ohl-Y8
zQEeqq1%d-52jEbOkjkOz0aOGB5UMH;91tAffJ9F~5kmY+NQl;fH|y{(4(!f)X5Rbe
z&AjiuH-2UD@D6#nO31m&Q5o=K4`shRy7)laB80q!->tXxmiK@7^GC^}@8+YkH{S3q
zA@DRI#qoW&FYg^W|K1!SrPmM_>_dT(<TE(`8t3EtdIujob}G@up^NiVci(f{^2w)P
z#r5Ob?ylbQgZs%e%@b1ga6Y!O+`IkxYt0KdpT<3o?7!#0LBdc&DjGjV7=w>j_rjAf
zw)#Dk#BqOzKX!Tp-L@gpsI9EbR!EWrWSNlAlci#1W;&Q^`@)mTff^Jm)k?Jq@y|R=
z2Vobk06$lNoR4qZ{SW9Ti;d>uVzaRbWf2MC7~33=%KXT#+1V}5kd(q!v{|n&Rmx+V
zhKDOwk|PkM#*&i-HPt@R>m71DDWt97x@)!`>CVs0)F$WB8U99Wck|{0h9jjMa<<IQ
z?#hoy>N(q$BZS~dt1>*iX{=mXs@EG7Ws#JgbEwxlG1XR(b(RbpcjB4!+~j01Gv7UO
z&DQHQjf~`o#lB)UlRDW!?m&(;A4)1DMq-Dr_Xig(za3tN6or9)r>hkPvRK6xmFZa2
zMcOvTT0a+Q0)0<OX!}`YzEzaj)*u2c3_%Cj%e64Lw-YuRVdvf;tTp^x&TrVWov1yP
z-#HqDkA)p*<a|H3d+mk9aANKFcqX0Bj2CN@yX*DwT5Y^u-(8z5m9(_~lrl|Kn>Up*
zcXrr@njiVp^Cl)dkNSSC(diuQbQ;!d=TN(y&j-PyVF&}^+NrgdOcVB$8ugp%^-?jD
zrfzCewYn+g(sZU+s-w68zBW8x)0=d562b}j^$aKM45^YPnI=~tZ%rr_r2+>qZ8p+E
z1n6U{9V~z-z*JjjRyY(?swQp1rI16N38IXt2aNr|4IxZ^aZwonN#mFMdCD|W{7MLz
zWZdA=pf7@9Ts%O(=%1&Yo&A*V>0f}y*S-@80VfW#Hz{MZe^|Jt>F~YpE7LHdl}7+5
z<(6V+%#7&Y4d3<OrVO^-NuRj*Nw!B(`&2(JB}Le;XIY=UO<H6-IZrM?4y#}fAtpM7
zW%AD^{TviPJM@nhRO0NxY6`*#bwRjZL%P^7m4?t=w1_m}6vtg8W`Kz4nI4p4aecoS
ztT{zWy%;t)3T}^uIXD0gwB@3%;lJRso*xZBxdHR>f<Y8!2GGILF(5cqGVYoX#y3D1
zTP<nJs2l(<*E{Owds&pLpskbpvSPLsA1Z}$&&J0HTLV_2ur<_$1%0Osu&s5sTDTe3
z%U~z=&Dt4j%r#RIW1Oty%X_ARUb7mcgki(te`xwgCMG6!;#XX{{`KpZihrN|Xt;)Q
zjR-r#HLYP=CWTB0k>K25j05MwQifv~j#795alnM4f&#u27?p?<I&+w*k|S6O87H4Y
z6PSivF@_COQgO!dNhq1po0u6x82nE=fU`*98f}Q7q0`C|n0xq8N(HkwSf;C<)uRyy
zjp?S%qg8}38VQRF0jUw&@)I6_a5x9%Cvvtknz|2VSqj|Yg0G8&jc|&1i}sK;lT%Yh
z!cnDezC2ghcy)7PS36y@km^|VFHQgWI)y6>-MhLAD}SHCXUfE514r+9Y83BL?MF;e
zT((ka>ZEo7ebi&5lSN1@r3%SOBSlKtB7w!7Fx|0~L|Oni7AK+^V}{_S5XfvC3(LSb
zX)6rlf)*7wGn!#DrKBygfSw8+2Sj1BhVlB}jFE9hU1ScAiIzDox>_@8@Kt2V5s=K;
zm<f4Q;(vw33r^m)FG<1&C>+H@=$sG*XT(9F04{8O!eq`Or}qxOL-Su|A3AnRYVIeJ
z#ETD~a|>5~{(HZA)o2K{)kj7jb6GjQ8FLzhAA6>7^Cc(ktL&4h*W7};-F?`7&OMjT
N5I}wH^h)6@{02K{GcEuC

delta 265
zcmZqh-{8PzpuoV;BR`SNj755ORnkO<azS1O28KOAoRFNGSaA8v<^K~;$kbad<FjL6
zV4T3fAoV6AH8Dkc#|bM22ALY5I<pL*00%dVA&|cX$XCh8Eve{h=TZUkZvgpoa`KZC
zTQj<p7#L(rfc${m#EJq2111?D{|Jz;ke8U7I@62uH<14XXh&N?esKu{Gf;*>J_jVv
zz|72eb8-q}H>1qt4~)vJv&Fo{WHw7M`ATe_t9Y16CaG$+bUeS!R|aktkS2yZ8V4W4
q=*cxI=8Wo-x2UvC_E3!#Y~tC(bC2f_uLExx10zt4`sRJAhZq5-Nl3E*

diff --git a/bookwyrm/static/css/fonts/icomoon.svg b/bookwyrm/static/css/fonts/icomoon.svg
index 00ee337f..6be97327 100644
--- a/bookwyrm/static/css/fonts/icomoon.svg
+++ b/bookwyrm/static/css/fonts/icomoon.svg
@@ -36,6 +36,10 @@
 <glyph unicode="&#xe91a;" glyph-name="stars" d="M726.857 664.381l-38.857 103.619-38.857-103.619-73.143-24.381 73.143-24.381 38.857-103.619 38.857 103.619 73.143 24.381-73.143 24.381zM662.857 280.381l-38.857 103.619-38.857-103.619-73.143-24.381 73.143-24.381 38.857-103.619 38.857 103.619 73.143 24.381-73.143 24.381zM430.703 528.432l-62.703 175.568-62.703-175.568-145.297-48.432 145.297-48.432 62.703-175.568 62.703 175.568 145.297 48.432-145.297 48.432z" />
 <glyph unicode="&#xe91b;" glyph-name="warning" d="M907.5 204.9l-345.1 558.4c-27.8 44.9-73 45-100.8 0v0l-345.1-558.4c-37.3-60.3-10.2-108.9 60.4-108.9h670.2c70.5 0 97.6 48.7 60.4 108.9zM512 192c-17.7 0-32 14.3-32 32s14.3 32 32 32 32-14.3 32-32-14.3-32-32-32zM544 351.9c0-17.4-14.3-31.9-32-31.9-17.8 0-32 14.3-32 31.9v192.2c0 17.4 14.3 31.9 32 31.9v0c17.8 0 32-14.3 32-31.9v-192.2z" />
 <glyph unicode="&#xe91c;" glyph-name="bookmark" d="M800 32h-512v704h224v-292l113.312 86.016 110.688-86.016v292h128v-640c0-35.328-28.672-64-64-64zM625.312 572l-81.312-64v260h160v-260l-78.688 64zM192 800v-32c0-17.664 14.336-32 32-32h32v-704h-32c-35.328 0-64 28.672-64 64v704c0 35.328 28.672 64 64 64h576c23.616 0 44.032-12.928 55.136-32h-631.136c-17.664 0-32-14.304-32-32z" />
+<glyph unicode="&#xe91d;" glyph-name="rss" horiz-adv-x="805" d="M219.429 182.857c0-60.571-49.143-109.714-109.714-109.714s-109.714 49.143-109.714 109.714 49.143 109.714 109.714 109.714 109.714-49.143 109.714-109.714zM512 112.571c0.571-10.286-2.857-20-9.714-27.429-6.857-8-16.571-12-26.857-12h-77.143c-18.857 0-34.286 14.286-36 33.143-16.571 174.286-154.857 312.571-329.143 329.143-18.857 1.714-33.143 17.143-33.143 36v77.143c0 10.286 4 20 12 26.857 6.286 6.286 15.429 9.714 24.571 9.714h2.857c121.714-9.714 236.571-62.857 322.857-149.714 86.857-86.286 140-201.143 149.714-322.857zM804.571 111.428c0.571-9.714-2.857-19.429-10.286-26.857-6.857-7.429-16-11.429-26.286-11.429h-81.714c-19.429 0-35.429 14.857-36.571 34.286-18.857 332-283.429 596.571-615.429 616-19.429 1.143-34.286 17.143-34.286 36v81.714c0 10.286 4 19.429 11.429 26.286 6.857 6.857 16 10.286 25.143 10.286h1.714c200-10.286 388-94.286 529.714-236.571 142.286-141.714 226.286-329.714 236.571-529.714z" />
+<glyph unicode="&#xe91e;" glyph-name="heart1" d="M934.176 791.52c-116.128 115.072-301.824 117.472-422.112 9.216-120.32 108.256-305.952 105.856-422.144-9.216-119.712-118.528-119.712-310.688 0-429.28 34.208-33.888 353.696-350.112 353.696-350.112 37.856-37.504 99.072-37.504 136.896 0 0 0 349.824 346.304 353.696 350.112 119.744 118.592 119.744 310.752-0.032 429.28zM888.576 407.424l-353.696-350.112c-12.576-12.512-33.088-12.512-45.6 0l-353.696 350.112c-94.4 93.44-94.4 245.472 0 338.912 91.008 90.080 237.312 93.248 333.088 7.104l43.392-39.040 43.36 39.040c95.808 86.144 242.112 83.008 333.12-7.104 94.4-93.408 94.4-245.44 0.032-338.912zM296.096 719.968c8.864 0 16-7.168 16-16s-7.168-16-16-16h-0.032c-57.408 0-103.968-46.56-103.968-103.968v-0.032c0-8.832-7.168-16-16-16s-16 7.168-16 16v0c0 75.072 60.832 135.904 135.872 135.968 0.064 0 0.064 0.032 0.128 0.032z" />
+<glyph unicode="&#xe91f;" glyph-name="paperplane" d="M1009.376 954.88c-5.312 3.424-11.36 5.12-17.376 5.12-6.176 0-12.384-1.76-17.76-5.376l-960-640c-9.888-6.56-15.328-18.112-14.048-29.952 1.216-11.808 8.896-22.016 19.936-26.368l250.368-100.192 117.728-206.016c5.632-9.888 16.096-16 27.424-16.128 0.128 0 0.224 0 0.352 0 11.232 0 21.664 5.952 27.424 15.552l66.464 110.816 310.24-124.064c3.808-1.536 7.808-2.272 11.872-2.272 5.44 0 10.816 1.376 15.68 4.128 8.448 4.736 14.24 13.056 15.872 22.624l160 960c2.080 12.576-3.488 25.184-14.176 32.128zM100.352 295.136l741.6 494.432-539.2-577.184c-2.848 1.696-5.376 3.936-8.512 5.184l-193.888 77.568zM326.048 189.888c-0.064 0.128-0.16 0.192-0.224 0.32l606.176 648.8-516.768-805.184-89.184 156.064zM806.944 12.512l-273.312 109.312c-6.496 2.56-13.248 3.424-19.936 3.808l420.864 652.416-127.616-765.536z" />
+<glyph unicode="&#xe920;" glyph-name="banknote" d="M1005.28 621.248l-320 320c-15.872 15.872-38.88 22.24-60.672 16.864-11.488-2.816-21.76-8.736-29.888-16.864-7.264-7.264-12.736-16.256-15.872-26.304-14.496-47.008-39.552-87.872-76.64-124.928-49.536-49.504-114.048-87.008-182.304-126.656-72.448-41.984-147.296-85.504-208.64-146.816-52.128-52.192-87.616-110.24-108.416-177.632-7.008-22.752-0.896-47.36 15.872-64.192l320-320c15.872-15.872 38.88-22.24 60.672-16.864 11.488 2.88 21.76 8.736 29.888 16.864 7.264 7.264 12.736 16.256 15.872 26.368 14.528 47.008 39.584 87.872 76.704 124.928 49.504 49.504 113.984 86.944 182.304 126.56 72.384 42.048 147.264 85.568 208.576 146.88 52.128 52.128 87.616 110.24 108.448 177.632 6.976 22.72 0.832 47.424-15.904 64.16zM384 0c-105.984 105.984-214.016 214.048-320 320 90.944 294.432 485.12 281.568 576 576 105.984-105.952 214.048-214.016 320.064-320-90.976-294.368-485.152-281.568-576.064-576zM625.984 483.2c-10.432 8.736-20.928 14.688-31.488 17.632-10.496 2.944-20.992 4.128-31.616 3.36-10.496-0.8-21.248-3.2-32-7.328-10.752-4.192-21.568-8.736-32.448-14.016-17.184 19.744-34.368 39.264-51.552 57.376 7.744 7.008 15.264 10.56 22.496 10.816 7.264 0.32 14.24-0.448 20.864-2.112 6.752-1.696 12.928-3.136 18.624-4.256 5.76-1.12 10.752 0.128 15.136 3.808 4.64 4 7.2 9.184 7.552 15.424 0.32 6.304-2.048 12.448-7.328 18.432-6.752 7.744-14.88 12.448-24.64 14.176-9.632 1.696-19.488 1.568-29.76-0.672-10.112-2.304-19.744-6.112-28.864-11.488s-16.448-10.88-21.888-16.256c-2.080 1.984-4.16 3.936-6.24 5.888-2.304 2.112-5.184 3.264-8.64 3.2-3.488 0-6.368-1.504-8.736-4.256-2.304-2.688-3.36-5.824-2.944-9.12 0.32-3.424 1.696-6.048 4.064-8.064 2.080-1.76 4.16-3.488 6.24-5.312-8.192-9.888-14.944-20.8-20.256-32.32-5.376-11.552-8.576-23.008-9.76-34.112-1.248-11.2-0.064-21.44 3.36-30.944 3.424-9.568 9.76-17.696 19.008-25.376 15.072-12.512 32.8-17.824 53.376-16.64 20.512 1.248 42.624 7.36 66.4 20.128 18.88-21.824 37.824-43.488 56.736-63.616-8-6.752-15.008-10.624-21.184-11.872-6.176-1.312-11.68-1.184-16.672 0.32-4.992 1.568-9.632 3.808-13.888 6.688-4.256 2.944-8.448 5.44-12.64 7.488-4.128 2.048-8.384 3.2-12.736 3.264s-8.992-2.048-14.112-6.432c-5.248-4.576-7.872-9.888-7.872-15.872 0-5.952 2.752-12 8.128-18.112 5.44-6.112 12.512-11.264 21.056-15.328s18.208-6.624 28.832-7.328c10.624-0.736 21.824 0.864 33.632 5.248 11.872 4.32 23.616 12.128 35.2 23.744 5.568-5.44 11.2-10.624 16.8-15.616 2.368-2.048 5.248-3.072 8.736-2.816 3.36 0.128 6.304 1.696 8.64 4.512 2.368 2.88 3.36 6.048 3.008 9.376-0.32 3.36-1.696 5.952-4 7.808-5.632 4.512-11.264 9.248-16.864 14.24 9.568 11.744 17.248 24.128 22.944 36.384 5.696 12.32 9.056 24.192 10.176 35.2 1.12 11.072-0.192 21.056-3.808 30.112-3.584 9.184-9.952 17.056-19.072 24.64zM447.072 461.504c-9.056-0.384-16.96 2.624-23.872 9.312-2.944 2.816-4.992 6.24-6.24 10.304-1.312 4.064-1.76 8.512-1.248 13.376 0.448 4.8 1.888 9.824 4.384 14.88 2.368 5.056 5.888 10.112 10.368 15.008 16.224-16.128 32.416-33.824 48.64-52.128-12.288-6.752-22.976-10.368-32.032-10.752zM598.016 397.44c-2.88-5.312-6.176-10.048-10.048-14.176-17.952 18.112-35.872 38.016-53.76 58.432 4.576 2.048 9.376 4.192 14.56 6.368s10.368 3.616 15.552 4.512c5.312 0.8 10.56 0.576 15.808-0.672 5.184-1.312 10.112-4.128 14.688-8.576 4.512-4.512 7.36-9.184 8.512-14.24 1.248-5.12 1.312-10.304 0.448-15.616-0.928-5.344-2.816-10.656-5.76-16.032zM470.944 250.24c6.304 5.088 15.584 4.832 21.376-1.056 6.272-6.24 6.272-16.448 0-22.688-0.512-0.512-1.056-0.864-1.632-1.312l0.064-0.064c-20.256-15.392-36.896-29.248-54.848-47.2-16.224-16.192-30.88-33.248-43.552-50.56l-20.448-28c-0.64-1.152-1.408-2.208-2.368-3.2-6.272-6.24-16.48-6.24-22.72 0-5.44 5.44-6.112 13.824-2.112 20.064l-0.064 0.064 21.888 29.888c13.664 18.688 29.376 36.992 46.752 54.368 18.080 18.144 37.6 34.336 57.6 49.696h0.064zM588.096 713.12c16.192 16.192 30.816 33.184 43.52 50.592l21.248 29.12c0.768 1.376 1.632 2.752 2.816 3.936 6.304 6.304 16.512 6.304 22.816 0 5.984-6.016 6.24-15.52 0.8-21.888l0.064-0.064-21.888-30.016c-13.696-18.688-29.376-36.928-46.752-54.304-18.080-18.080-37.568-34.336-57.568-49.696l-0.128 0.064c-6.368-5.856-16.256-5.728-22.368 0.448-6.304 6.304-6.304 16.576 0 22.88 1.12 1.184 2.432 2.016 3.744 2.752 18.816 14.368 36.96 29.44 53.696 46.176z" />
 <glyph unicode="&#xe986;" glyph-name="search" d="M992.262 88.604l-242.552 206.294c-25.074 22.566-51.89 32.926-73.552 31.926 57.256 67.068 91.842 154.078 91.842 249.176 0 212.078-171.922 384-384 384-212.076 0-384-171.922-384-384s171.922-384 384-384c95.098 0 182.108 34.586 249.176 91.844-1-21.662 9.36-48.478 31.926-73.552l206.294-242.552c35.322-39.246 93.022-42.554 128.22-7.356s31.892 92.898-7.354 128.22zM384 320c-141.384 0-256 114.616-256 256s114.616 256 256 256 256-114.616 256-256-114.614-256-256-256z" />
 <glyph unicode="&#xe9d7;" glyph-name="star-empty" d="M1024 562.95l-353.78 51.408-158.22 320.582-158.216-320.582-353.784-51.408 256-249.538-60.432-352.352 316.432 166.358 316.432-166.358-60.434 352.352 256.002 249.538zM512 206.502l-223.462-117.48 42.676 248.83-180.786 176.222 249.84 36.304 111.732 226.396 111.736-226.396 249.836-36.304-180.788-176.222 42.678-248.83-223.462 117.48z" />
 <glyph unicode="&#xe9d8;" glyph-name="star-half" d="M1024 562.95l-353.78 51.408-158.22 320.582-158.216-320.582-353.784-51.408 256-249.538-60.432-352.352 316.432 166.358 316.432-166.358-60.434 352.352 256.002 249.538zM512 206.502l-0.942-0.496 0.942 570.768 111.736-226.396 249.836-36.304-180.788-176.222 42.678-248.83-223.462 117.48z" />
diff --git a/bookwyrm/static/css/fonts/icomoon.ttf b/bookwyrm/static/css/fonts/icomoon.ttf
index 6abaa59132cb96969160328455ced38dc7167480..55df6418c496e1175501f1d825da253533fa970e 100644
GIT binary patch
delta 2180
zcmb7GTWlQV75>kEo!On+u4iWxd+j*8-d)RkA-lF`)?lw4C=!9@f~!_h)P`6|NI+R*
zC7}ux(L@48RLujG9|{j45mI=F@=^u04<KYkJXHuD=mQdYDx|8awy2dVRZZ4#{#m!&
z!~-+`_@8r`bNS9W|N7G6?Y%JpLP(liAdKwV|D*fbZdO^yc^jW2M|&%4AO7c$X+ofY
z^r;goXV!4{kbVhw<HV`wp1k#wAO8dCmkB9OoIJjAY~;>+^MsV%M0t1;8Ah7VBK<d{
zCr<Xxp1XV_)x}q|L2jIS=IHK~>o5Nn4NPc<2YV~$*2oM+XJsGh@zs^y@mC);?;<^e
zPA;xJbLK1tidRMJj}yi|`t`=IV0`_DP!d;y{lWOnv#@tttabLVGF!#eLb5_g<jYdA
zGCLDaw*%oz<v<OJm1?Ehgyhcx%!E-F9)KV}2KfN*WcwbfA1^hUOH0kh5|l+Ogk$V=
zd@2hg2j}J<bcUo9wxZ2?eYsK|-#I*7vC<qBk!vhFIZ)H>YrWoi$CpCd3Lbl8&&BS-
z>}+jnK9l9YPwejAea3L4lta#gb8`m^Ba-^gKII4@c-pEA5APf=SC;Gb21Q;hrSF{Y
z^{!2~737>{!$wa$o0*@Q3TGF(7a!U4m<ExNJh9kc+0RIw>?bD>VU3593W1Th;qCt)
zi&oH%b|FMjsPCC-g@G(q@r%k#!s;SyI}&M-k2QdSuOzgC93tN;%3Nzuffkma1MH1j
z6rS!xjYiZt9Y(cAkk1DVd#)3=rwa#0!|27R1C4wT<PUAWmKsiNUYW>dGTDh@ZR$|H
zK2fVp)a!?8Q>BvT_Ae>ZRJ8?DDf2*wZL0-wKz)C5()Vc))Eb@6*-ocn&2`SV+l4|H
zz7Rz)U~b;neBCtRaH&!MX}w-5W;4`tcUG%AU5{q6#Zn#F4G6U1g_?HKIY0;}<ns+q
z*aoSRCYd1*AZ|@46{P|Pux)nGu^2GNRy$k-F$U9Z-C5C4SgD${3HL!BWhRI+wjMC{
zPi_cd@_S3l07x7E{W*6{!{rY_$Ry(imj=BGhH>u<{d4~g<?Pm<=;8idcxm%9krHt2
z0(*-xM*A0pXPOQ__P#O=BVK(TfKqNLwqa&P{}g=Ie}^*I`xO1<y^nJ}iqcE{WRMhL
zpWkAA_6}*0edG?g3wfM^!-SZa6pqO^mkjbS20Ec{tgw=F4^C4U#V8A-tr^n8hOIP&
z>7qr12}ykKA}|Au1fH3}C>FQ;CCVC8gw#*e2BDyP9Lzxg_@XTr^$dSSKj#PWKq)^!
zKKWo!h1r4XAapDUl1e696Qbk<h!U$MZ5f3F#rw5Ky#hand=<8JbMGqVT1ikY);*Vm
z5w!-W#8GRg3yb<p8R)jQ(rTeIoR@(o_V>*VYuqzki8W4F3gyGoVXs*YU18X;^c|A^
z#mULZ1Nan|AOGFs%f+u#|1vy7c}9$z;hEO3Ez?4#gh+92Fvfv%VJX8g3`Z$EfH+`7
zQ9%K33XDqB6S{MlsnR1j3R$P%q6ut6t{B6GEvY!;c%_tdwG%UI2!nrV2at*texnUB
zG;~v00(%cHN~vJ>Hp}$XZ}i)UgU0mI=FuvuFd7Ss3jywkZ3QVGKscNO3sQO88FimU
zUXB8HxZqnXVWT=leT()GHIq|Q#==phZlOFsw&UUE<iU2PWFgdv=v$Khl`RNY7rRe)
z7gxVd!6(YZuz_Rt+#SVpROgXEl#H!Z8ak;{z#R2E!pUL;mQsb_WDp{yY>~p@PMO}g
zD-jj|j>C!Cj4?xSQwT&hsfA@=owOB(bwP`Yn^}#p=_+Z99AKtG*8#O~S;Khz@5ahF
zqaGrMVWMS@A3dxQHTXKB<OoRTZR~^s3h}qX;$u$1wzsF@17wb35V|MCm^0!aQvesX
zjxe3K$jy!I@6y6wa?f3U!kzy&N#ntX*X_lJKK<Xmezg!mZT+LdiykW{Cu3eK;ltLC
njQZ<qqkFbrw|`(?ci;5JynWs;yjQ&2nQZbuNA2bxMsL9vk54tP

delta 289
zcmccP+hbqPz{tSBz|GLWz|3IaAFOZ0FT~CZ6xjpB3CX#M1(&~E{?EX`C<El@q$d^^
z0BHdrzXM2fq~}zoSuW$V1M(*@Fi5@0NKH(U-f_Z;fkCDQC~uYl6yV@yF$D6r0Qo8z
zxg`~S?OZBA{tY01PELNZV`6JYml6YmYza^xAUCn1fWd$XXqoI0AYUObF*kLl7w2yv
z{|V5Nwu1cP5}-qYKt2Z~&%n%lbK-$+Mw!VzjLNLD#k|F2HkUB^N^JhAaF|IZscN=#
zJipCX25uIR7KS?-2Oq=e$v2eE8Pz8XsI*L8q7p0E#IuR#9?u_M2i`JpfT(YlQa!{7
E01)FzKmY&$

diff --git a/bookwyrm/static/css/fonts/icomoon.woff b/bookwyrm/static/css/fonts/icomoon.woff
index 2b8d333017a6a02e56657fcb9e01159daa011ae4..fa53e8cf907f2bb2da3fbf93124bd79a0d1639e8 100644
GIT binary patch
delta 2232
zcmb7GU5p#m6~5>G&e${Kv3ER^dcDrZUfZknPqBA*#tXaNO#+C3vI#2{MG>T30Zl;h
zf=FngBAQ5`hzcG+`v5%9R7gQ6$_omD2PCvaeXQW2d5A=w3aP4!f?BCk)x=BB9dCc2
z>H{<P`rdoax#!&TopY||+VVTA-p>!+eK!GuPkoxC^;o;U`SI@H)rJ>a4-eL#Bm_<%
z^`!2<`}@`O@%2-hb`{sgPIr%=eD<eEyG}@XO7|-d{OGF_kFGyL2rdZ;bsxX++r<+|
zL|PBmnlWXh`TU8&>1S~IAg(Xz{^q4r|Kt-7qugp$8#to-#aG__YOwwc8m|5X*ON(~
zqs5K&!J|k!i^k9C{>HuL%_pBYbsD|Vdq;8%XN+CjwBRL}+<YA>;=F&zpS-*U2Y1Dq
zd4N^f209-Sv>JJ`Qm)O<g|l5>cv3mgfO4%~tG6NfS%SGR>cbu22PFu6e3RjOh<>)x
zYOk!cTPsi%u@H`N(DA4&jvrZA*yoH%DQrdC&E{III=QD%s99-_f=D&ioII%6?uEhN
zjN?fmZ3Xw;bKqQmX@0&jvzX2C4-&n5_ntBwDdm{6Z(-p`aa>Z*Syhe@f~T!op|EGN
zT3c&2TNG)rl%8{DFt{+=Rgibq3>z)+Ty}A0CY)dDpS$P4eFzX?Bp??16MKj>$suwa
zq1JdPsSp^61HRtBvFP~S=r)8X3iUfzuQ8D2I_{{=C8R#WwmaeaL97AvJtd**=Mni%
zS>`*V2y`$6Jz#G)qVTC+)M`b&r^2Yw@`J!{*$ch6J6k+F5k@aWJ!l2K9~|BORjQEM
zK0lSqW^+^J#>~-XbE?spYBrBHW-1j;9loqgQ#F=MrOd-UwyWXCKJ~omY0sm+-)QxE
zr+dAYwa`1$?G}q+_<R(>h`4=e`z_OiW0h9(!Dh2k&Sj~a*;B9Y$+$F|D_5FGZh@~A
zFEzB0-eE#GA>V9q!nR1Aw8<Q~1959Zr7RUVfN8UvmSR93JKb;@L<wfQI<um&uvRx|
z8-54@@=Op_Og&)iFWeBq<hNFo0gyKS@iU$=jSSxpA(M<7TpIM(U>LVf(LW4tP|mLW
zo*o<CgcrBJ7AXN2&aw|FV{~{{xTfjwM?O)eVZ<BH0Z_^<#kS0x7@mZ$haXV}2Op!q
zy!BarK#}|MP!|bNgne^`4cSMeLsrQRauWiqf@6f3=oFU8cboJBD1mn9J1wjw*@M*-
zMltfjXs3pBv0*BWp}VLNVZtTO`v}ZPB7tXaREp&tdx@~d6e0BzvC&b`JQn8Y065W_
z%esdDOFr-U@kl5bA)jm*MPYs<IyyQA1eZ!CLmQ&x28a@^6|EVWBf;CXMcsTak8~Aw
zb#mWU&UcbSWiamf<QP$Bgi0KB#`>_V@05{jXUDA$8pC=SSz>?Q-m)fLGb1s^=~}UR
zY&IOU>tRM1Hmv*~&hXsy^z>ou<+c0YzkjX#?bTlm*HEqz<6yX^Rj_4R$dnK%&JD&m
za4sxmIELXUg%=P9OeiWS;7fr~iE=_`4l`AH97`eR6f>v-(~v91uwhCn&Nx0PB{SNH
znKOjJ|Dy+R6)W7M6){wFSy=*e4<AaYVD>J{bk%EmHtwJ@-L!htiXx20!s0?eX56;?
zlm{Rj&Vl)<z;-4wPa`c)fjeCA9g?t7oT9u%2Z)-<sVQUOs7k+BT`cXst37?Bo2^&~
zb;9}|&hY#Wgd5BK$NS40-(JDz%EV&>NAG!N0`F1nM*>k&wo+;6q;>&))N_QB#Rx2=
z3c<-DL`vBrg~gpR-N}qZSO7Q{CrUHM48cty5ZNRamVt57S{TL!H7aiAG{R;^Nn7Lr
zJrz0*D22@`;Pt;3BjZfCh#VdhHFMl_mqyg!n~0JlARXA42}NY$e}%<MPSLi1kcLl@
zIDv=IIU!2UxPwFiT-f@A>A)hFt-^0;@sIgu-~4fA@oyxJ7au;?m-m11uW|FsVg!xN
zsfia{R!wfkKnr1Ko9|3KRJmy1X<y8|=a$@6_ZRN#?)7Xg`6_A9Lh_kG2*t0GvCFfi
G3-C`Gx;Vc8

delta 345
zcmZ4Ccf($!+~3WOfsp|S<Zm!=gXx~hg6iTEwMFWAlXDXb7#J8cfWkQ-eEG}e|LKXv
zAh9bzJ_i&Fq~}zo0mbexFi5=tVasKFb{VOODGUrUCxB|qKv;Um39AgCAOnLekjtO~
z!W`Tzh8ejf6+kf%e+~%uwR5TD<R=5w`N<vt3Iu>~Yett+Zej({VmSdIUjd8_m}K%2
zb5nt020+W(KzODX=kJ32;u4^5cEHs!16j<>Hz)Hjb~DOMp24WhI$O+JOlI=|Mqi1|
zu8N15WRj|8OULuud}ZKf0jgzSxTA6KF^rz9qGHadJ~>9EW%37=Sm`F7O+5E_{_r~R
ZmVtv!ok<ED4h#%Tz+e;J+^o8k5dg-{P8<LL

diff --git a/bookwyrm/static/css/icons.css b/bookwyrm/static/css/icons.css
index 8f1f4e90..c84446af 100644
--- a/bookwyrm/static/css/icons.css
+++ b/bookwyrm/static/css/icons.css
@@ -1,10 +1,10 @@
 @font-face {
   font-family: 'icomoon';
-  src:  url('fonts/icomoon.eot?uh765c');
-  src:  url('fonts/icomoon.eot?uh765c#iefix') format('embedded-opentype'),
-    url('fonts/icomoon.ttf?uh765c') format('truetype'),
-    url('fonts/icomoon.woff?uh765c') format('woff'),
-    url('fonts/icomoon.svg?uh765c#icomoon') format('svg');
+  src:  url('fonts/icomoon.eot?n5x55');
+  src:  url('fonts/icomoon.eot?n5x55#iefix') format('embedded-opentype'),
+    url('fonts/icomoon.ttf?n5x55') format('truetype'),
+    url('fonts/icomoon.woff?n5x55') format('woff'),
+    url('fonts/icomoon.svg?n5x55#icomoon') format('svg');
   font-weight: normal;
   font-style: normal;
   font-display: block;
@@ -25,7 +25,16 @@
   -moz-osx-font-smoothing: grayscale;
 }
 
-.icon-sparkle:before {
+.icon-graphic-heart:before {
+  content: "\e91e";
+}
+.icon-graphic-paperplane:before {
+  content: "\e91f";
+}
+.icon-graphic-banknote:before {
+  content: "\e920";
+}
+.icon-stars:before {
   content: "\e91a";
 }
 .icon-warning:before {
@@ -37,6 +46,9 @@
 .icon-bookmark:before {
   content: "\e91c";
 }
+.icon-rss:before {
+  content: "\e91d";
+}
 .icon-envelope:before {
   content: "\e901";
 }
diff --git a/bookwyrm/templates/discover.html b/bookwyrm/templates/discover.html
index 67bc374e..27e26e53 100644
--- a/bookwyrm/templates/discover.html
+++ b/bookwyrm/templates/discover.html
@@ -2,27 +2,28 @@
 {% block content %}
 
 {% if not request.user.is_authenticated %}
-<header class="block">
-    <h1 class="title has-text-centered">{{ site.name }}: {{ site.instance_tagline }}</h1>
+<header class="block has-text-centered">
+    <h1 class="title">{{ site.name }}</h1>
+    <h2 class="subtitle">{{ site.instance_tagline }}</h2>
 </header>
 
 <section class="level is-mobile">
     <div class="level-item has-text-centered">
         <div>
-            <p class="heading">Ad-Free</p>
-            <p class="title"><span class="icon icon-book"></span></p>
-        </div>
-    </div>
-    <div class="level-item has-text-centered">
-        <div>
-            <p class="heading">Anti-Corporate</p>
-            <p class="title"><span class="icon icon-book"></span></p>
-        </div>
-    </div>
-    <div class="level-item has-text-centered">
-        <div>
+            <p class="title has-text-weight-normal"><span class="icon icon-graphic-paperplane"></span></p>
             <p class="heading">Decentralized</p>
-            <p class="title"><span class="icon icon-book"></span></p>
+        </div>
+    </div>
+    <div class="level-item has-text-centered">
+        <div>
+            <p class="title has-text-weight-normal"><span class="icon icon-graphic-heart"></span></p>
+            <p class="heading">Friendly</p>
+        </div>
+    </div>
+    <div class="level-item has-text-centered">
+        <div>
+            <p class="title has-text-weight-normal"><span class="icon icon-graphic-banknote"></span></p>
+            <p class="heading">Anti-Corporate</p>
         </div>
     </div>
 </section>

From d37f8f68d8ead91071506d753a5de1a876c78967 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 2 Feb 2021 10:13:59 -0800
Subject: [PATCH 094/280] Adds user lists template

---
 bookwyrm/templates/user/lists.html | 40 ++++++++++++++++++++++++++++++
 1 file changed, 40 insertions(+)
 create mode 100644 bookwyrm/templates/user/lists.html

diff --git a/bookwyrm/templates/user/lists.html b/bookwyrm/templates/user/lists.html
new file mode 100644
index 00000000..a006c92b
--- /dev/null
+++ b/bookwyrm/templates/user/lists.html
@@ -0,0 +1,40 @@
+{% extends 'user/user_layout.html' %}
+
+{% block header %}
+<div class="columns">
+    <div class="column">
+        <h1 class="title">
+            {% if is_self %}Your
+            {% else %}
+            {% include 'snippets/username.html' with user=user %}'s
+            {% endif %}
+            Lists
+        </h1>
+    </div>
+    {% if is_self %}
+    <div class="column is-narrow">
+        {% include 'snippets/toggle/open_button.html' with controls_text="create-list" icon="plus" text="Create new list" %}
+    </div>
+    {% endif %}
+</div>
+{% endblock %}
+
+
+{% block panel %}
+<section class="block content">
+    <form name="create-list" method="post" action="{% url 'lists' %}" class="box hidden" id="create-list">
+        <header class="columns">
+            <h3 class="title column">Create list</h3>
+            <div class="column is-narrow">
+                {% include 'snippets/toggle/toggle_button.html' with controls_text="create-list" label="close" class="delete" nonbutton=True %}
+            </div>
+        </header>
+        {% include 'lists/form.html' %}
+    </form>
+
+    {% include 'lists/list_items.html' with lists=lists %}
+</section>
+<div>
+    {% include 'snippets/pagination.html' with page=lists path=path %}
+</div>
+{% endblock %}

From e61d8b763850bf79c4918f562b8b156f17b70cb6 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 2 Feb 2021 11:05:47 -0800
Subject: [PATCH 095/280] Serialize lists as custom activitypub object

---
 bookwyrm/activitypub/__init__.py           |  1 +
 bookwyrm/activitypub/base_activity.py      |  1 +
 bookwyrm/activitypub/ordered_collection.py |  9 +++-
 bookwyrm/models/base_model.py              | 62 +++++++++++++---------
 bookwyrm/models/fields.py                  |  5 +-
 bookwyrm/models/list.py                    |  1 +
 bookwyrm/models/status.py                  |  1 +
 7 files changed, 53 insertions(+), 27 deletions(-)

diff --git a/bookwyrm/activitypub/__init__.py b/bookwyrm/activitypub/__init__.py
index a7439722..9f46e12a 100644
--- a/bookwyrm/activitypub/__init__.py
+++ b/bookwyrm/activitypub/__init__.py
@@ -10,6 +10,7 @@ from .note import Note, GeneratedNote, Article, Comment, Review, Quotation
 from .note import Tombstone
 from .interaction import Boost, Like
 from .ordered_collection import OrderedCollection, OrderedCollectionPage
+from .ordered_collection import BookList
 from .person import Person, PublicKey
 from .response import ActivitypubResponse
 from .book import Edition, Work, Author
diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index 7ef0920f..3ebf2fab 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -130,6 +130,7 @@ class ActivityObject:
     def serialize(self):
         ''' convert to dictionary with context attr '''
         data = self.__dict__
+        data = {k:v for (k, v) in data.items() if v is not None}
         data['@context'] = 'https://www.w3.org/ns/activitystreams'
         return data
 
diff --git a/bookwyrm/activitypub/ordered_collection.py b/bookwyrm/activitypub/ordered_collection.py
index 335723f4..94254644 100644
--- a/bookwyrm/activitypub/ordered_collection.py
+++ b/bookwyrm/activitypub/ordered_collection.py
@@ -12,13 +12,20 @@ class OrderedCollection(ActivityObject):
     first: str
     last: str = None
     name: str = None
-    summary: str = None
     owner: str = None
     to: List[str] = field(default_factory=lambda: [])
     cc: List[str] = field(default_factory=lambda: [])
     type: str = 'OrderedCollection'
 
 
+@dataclass(init=False)
+class BookList(OrderedCollection):
+    ''' structure of an ordered collection activity '''
+    summary: str = None
+    curation: str = 'closed'
+    type: str = 'List'
+
+
 @dataclass(init=False)
 class OrderedCollectionPage(ActivityObject):
     ''' structure of an ordered collection activity '''
diff --git a/bookwyrm/models/base_model.py b/bookwyrm/models/base_model.py
index 889eb5f4..b652ae9f 100644
--- a/bookwyrm/models/base_model.py
+++ b/bookwyrm/models/base_model.py
@@ -140,20 +140,7 @@ class ActivitypubMixin:
 
     def to_activity(self):
         ''' convert from a model to an activity '''
-        activity = {}
-        for field in self.activity_fields:
-            field.set_activity_from_field(activity, self)
-
-        if hasattr(self, 'serialize_reverse_fields'):
-            # for example, editions of a work
-            for model_field_name, activity_field_name, sort_field in \
-                    self.serialize_reverse_fields:
-                related_field = getattr(self, model_field_name)
-                activity[activity_field_name] = \
-                        unfurl_related_field(related_field, sort_field)
-
-        if not activity.get('id'):
-            activity['id'] = self.get_remote_id()
+        activity = generate_activity(self)
         return self.activity_serializer(**activity).serialize()
 
 
@@ -225,7 +212,7 @@ class OrderedCollectionPageMixin(ActivitypubMixin):
 
 
     def to_ordered_collection(self, queryset, \
-            remote_id=None, page=False, **kwargs):
+            remote_id=None, page=False, collection_only=False, **kwargs):
         ''' an ordered collection of whatevers '''
         if not queryset.ordered:
             raise RuntimeError('queryset must be ordered')
@@ -234,18 +221,24 @@ class OrderedCollectionPageMixin(ActivitypubMixin):
         if page:
             return to_ordered_collection_page(
                 queryset, remote_id, **kwargs)
-        name = self.name if hasattr(self, 'name') else None
-        owner = self.user.remote_id if hasattr(self, 'user') else ''
+
+        if collection_only or not hasattr(self, 'activity_serializer'):
+            serializer = activitypub.OrderedCollection
+            activity = {}
+        else:
+            serializer = self.activity_serializer
+            # a dict from the model fields
+            activity = generate_activity(self)
+        if remote_id:
+            activity['id'] = remote_id
 
         paginated = Paginator(queryset, PAGE_LENGTH)
-        return activitypub.OrderedCollection(
-            id=remote_id,
-            totalItems=paginated.count,
-            name=name,
-            owner=owner,
-            first='%s?page=1' % remote_id,
-            last='%s?page=%d' % (remote_id, paginated.num_pages)
-        ).serialize()
+        # add computed fields specific to orderd collections
+        activity['totalItems'] = paginated.count
+        activity['first'] = '%s?page=1' % remote_id
+        activity['last'] = '%s?page=%d' % (remote_id, paginated.num_pages)
+
+        return serializer(**activity).serialize()
 
 
 # pylint: disable=unused-argument
@@ -287,3 +280,22 @@ class OrderedCollectionMixin(OrderedCollectionPageMixin):
     def to_activity(self, **kwargs):
         ''' an ordered collection of the specified model queryset  '''
         return self.to_ordered_collection(self.collection_queryset, **kwargs)
+
+
+def generate_activity(obj):
+    ''' go through the fields on an object '''
+    activity = {}
+    for field in obj.activity_fields:
+        field.set_activity_from_field(activity, obj)
+
+    if hasattr(obj, 'serialize_reverse_fields'):
+        # for example, editions of a work
+        for model_field_name, activity_field_name, sort_field in \
+                obj.serialize_reverse_fields:
+            related_field = getattr(obj, model_field_name)
+            activity[activity_field_name] = \
+                    unfurl_related_field(related_field, sort_field)
+
+    if not activity.get('id'):
+        activity['id'] = obj.get_remote_id()
+    return activity
diff --git a/bookwyrm/models/fields.py b/bookwyrm/models/fields.py
index c6571ff4..bc10156b 100644
--- a/bookwyrm/models/fields.py
+++ b/bookwyrm/models/fields.py
@@ -213,7 +213,10 @@ class PrivacyField(ActivitypubFieldMixin, models.CharField):
             setattr(instance, self.name, 'followers')
 
     def set_activity_from_field(self, activity, instance):
-        mentions = [u.remote_id for u in instance.mention_users.all()]
+        # explicitly to anyone mentioned (statuses only)
+        mentions = []
+        if hasattr(instance, 'mention_users'):
+            mentions = [u.remote_id for u in instance.mention_users.all()]
         # this is a link to the followers list
         followers = instance.user.__class__._meta.get_field('followers')\
                 .field_to_activity(instance.user.followers)
diff --git a/bookwyrm/models/list.py b/bookwyrm/models/list.py
index 801a3f2a..b567929b 100644
--- a/bookwyrm/models/list.py
+++ b/bookwyrm/models/list.py
@@ -33,6 +33,7 @@ class List(OrderedCollectionMixin, BookWyrmModel):
         through='ListItem',
         through_fields=('book_list', 'book'),
     )
+    activity_serializer = activitypub.BookList
 
     def get_remote_id(self):
         ''' don't want the user to be in there in this case '''
diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index dad65974..093dd773 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -94,6 +94,7 @@ class Status(OrderedCollectionPageMixin, BookWyrmModel):
         return self.to_ordered_collection(
             self.replies(self),
             remote_id='%s/replies' % self.remote_id,
+            collection_only=True,
             **kwargs
         )
 

From f42a5444e5bcfbe9f04c5c377fdedf6fee18b543 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 2 Feb 2021 11:17:31 -0800
Subject: [PATCH 096/280] User ordered collection subtype for shelves

---
 bookwyrm/activitypub/__init__.py           |  2 +-
 bookwyrm/activitypub/ordered_collection.py | 13 ++++++++++---
 bookwyrm/models/base_model.py              |  1 +
 bookwyrm/models/shelf.py                   |  2 ++
 4 files changed, 14 insertions(+), 4 deletions(-)

diff --git a/bookwyrm/activitypub/__init__.py b/bookwyrm/activitypub/__init__.py
index 9f46e12a..201e8042 100644
--- a/bookwyrm/activitypub/__init__.py
+++ b/bookwyrm/activitypub/__init__.py
@@ -10,7 +10,7 @@ from .note import Note, GeneratedNote, Article, Comment, Review, Quotation
 from .note import Tombstone
 from .interaction import Boost, Like
 from .ordered_collection import OrderedCollection, OrderedCollectionPage
-from .ordered_collection import BookList
+from .ordered_collection import BookList, Shelf
 from .person import Person, PublicKey
 from .response import ActivitypubResponse
 from .book import Edition, Work, Author
diff --git a/bookwyrm/activitypub/ordered_collection.py b/bookwyrm/activitypub/ordered_collection.py
index 94254644..fea793cf 100644
--- a/bookwyrm/activitypub/ordered_collection.py
+++ b/bookwyrm/activitypub/ordered_collection.py
@@ -13,13 +13,20 @@ class OrderedCollection(ActivityObject):
     last: str = None
     name: str = None
     owner: str = None
-    to: List[str] = field(default_factory=lambda: [])
-    cc: List[str] = field(default_factory=lambda: [])
     type: str = 'OrderedCollection'
 
+@dataclass(init=False)
+class OrderedCollectionPrivate(OrderedCollection):
+    to: List[str] = field(default_factory=lambda: [])
+    cc: List[str] = field(default_factory=lambda: [])
 
 @dataclass(init=False)
-class BookList(OrderedCollection):
+class Shelf(OrderedCollectionPrivate):
+    ''' structure of an ordered collection activity '''
+    type: str = 'Shelf'
+
+@dataclass(init=False)
+class BookList(OrderedCollectionPrivate):
     ''' structure of an ordered collection activity '''
     summary: str = None
     curation: str = 'closed'
diff --git a/bookwyrm/models/base_model.py b/bookwyrm/models/base_model.py
index b652ae9f..ba0a54be 100644
--- a/bookwyrm/models/base_model.py
+++ b/bookwyrm/models/base_model.py
@@ -229,6 +229,7 @@ class OrderedCollectionPageMixin(ActivitypubMixin):
             serializer = self.activity_serializer
             # a dict from the model fields
             activity = generate_activity(self)
+
         if remote_id:
             activity['id'] = remote_id
 
diff --git a/bookwyrm/models/shelf.py b/bookwyrm/models/shelf.py
index 87200f38..ff5660dd 100644
--- a/bookwyrm/models/shelf.py
+++ b/bookwyrm/models/shelf.py
@@ -23,6 +23,8 @@ class Shelf(OrderedCollectionMixin, BookWyrmModel):
         through_fields=('shelf', 'book')
     )
 
+    activity_serializer = activitypub.Shelf
+
     def save(self, *args, **kwargs):
         ''' set the identifier '''
         saved = super().save(*args, **kwargs)

From 6b07911a013fcb3e574fba9b8b3e056160920ea4 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 2 Feb 2021 12:17:21 -0800
Subject: [PATCH 097/280] Patches broadcasts in list and shelf tests

---
 bookwyrm/tests/views/test_list.py  |  1 +
 bookwyrm/tests/views/test_shelf.py | 10 ++++------
 2 files changed, 5 insertions(+), 6 deletions(-)

diff --git a/bookwyrm/tests/views/test_list.py b/bookwyrm/tests/views/test_list.py
index c3e76745..513fa1d5 100644
--- a/bookwyrm/tests/views/test_list.py
+++ b/bookwyrm/tests/views/test_list.py
@@ -10,6 +10,7 @@ from bookwyrm import models, views
 from bookwyrm.activitypub import ActivitypubResponse
 
 
+@patch('bookwyrm.broadcast.broadcast_task.delay')
 class ListViews(TestCase):
     ''' tag views'''
     def setUp(self):
diff --git a/bookwyrm/tests/views/test_shelf.py b/bookwyrm/tests/views/test_shelf.py
index f67bbc56..eae27c8a 100644
--- a/bookwyrm/tests/views/test_shelf.py
+++ b/bookwyrm/tests/views/test_shelf.py
@@ -8,6 +8,7 @@ from bookwyrm import models, views
 from bookwyrm.activitypub import ActivitypubResponse
 
 
+@patch('bookwyrm.broadcast.broadcast_task.delay')
 class ShelfViews(TestCase):
     ''' tag views'''
     def setUp(self):
@@ -127,8 +128,7 @@ class ShelfViews(TestCase):
             'shelf': self.shelf.identifier
         })
         request.user = self.local_user
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
-            views.shelve(request)
+        views.shelve(request)
         # make sure the book is on the shelf
         self.assertEqual(self.shelf.books.get(), self.book)
 
@@ -142,8 +142,7 @@ class ShelfViews(TestCase):
         })
         request.user = self.local_user
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
-            views.shelve(request)
+        views.shelve(request)
         # make sure the book is on the shelf
         self.assertEqual(shelf.books.get(), self.book)
 
@@ -157,8 +156,7 @@ class ShelfViews(TestCase):
         })
         request.user = self.local_user
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
-            views.shelve(request)
+        views.shelve(request)
         # make sure the book is on the shelf
         self.assertEqual(shelf.books.get(), self.book)
 

From bbc05578fbf666283849fb78d0ddf8d03e446952 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 2 Feb 2021 14:59:40 -0800
Subject: [PATCH 098/280] Fixes tests

---
 bookwyrm/activitypub/ordered_collection.py | 2 +-
 bookwyrm/models/user.py                    | 3 ++-
 bookwyrm/tests/models/test_list.py         | 2 +-
 bookwyrm/tests/models/test_shelf_model.py  | 2 +-
 bookwyrm/tests/models/test_user_model.py   | 2 +-
 5 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/bookwyrm/activitypub/ordered_collection.py b/bookwyrm/activitypub/ordered_collection.py
index fea793cf..cf642994 100644
--- a/bookwyrm/activitypub/ordered_collection.py
+++ b/bookwyrm/activitypub/ordered_collection.py
@@ -30,7 +30,7 @@ class BookList(OrderedCollectionPrivate):
     ''' structure of an ordered collection activity '''
     summary: str = None
     curation: str = 'closed'
-    type: str = 'List'
+    type: str = 'BookList'
 
 
 @dataclass(init=False)
diff --git a/bookwyrm/models/user.py b/bookwyrm/models/user.py
index 79d11206..3fd0eaf7 100644
--- a/bookwyrm/models/user.py
+++ b/bookwyrm/models/user.py
@@ -131,7 +131,7 @@ class User(OrderedCollectionPageMixin, AbstractUser):
             privacy__in=['public', 'unlisted'],
         ).select_subclasses().order_by('-published_date')
         return self.to_ordered_collection(queryset, \
-                remote_id=self.outbox, **kwargs)
+            collection_only=True, remote_id=self.outbox, **kwargs)
 
     def to_following_activity(self, **kwargs):
         ''' activitypub following list '''
@@ -266,6 +266,7 @@ class AnnualGoal(BookWyrmModel):
 
     @property
     def progress_percent(self):
+        ''' how close to your goal, in percent form '''
         return int(float(self.book_count / self.goal) * 100)
 
 
diff --git a/bookwyrm/tests/models/test_list.py b/bookwyrm/tests/models/test_list.py
index ce7b1867..ee60a029 100644
--- a/bookwyrm/tests/models/test_list.py
+++ b/bookwyrm/tests/models/test_list.py
@@ -27,7 +27,7 @@ class List(TestCase):
         self.assertIsInstance(activity_json, dict)
         self.assertEqual(activity_json['id'], self.list.remote_id)
         self.assertEqual(activity_json['totalItems'], 0)
-        self.assertEqual(activity_json['type'], 'OrderedCollection')
+        self.assertEqual(activity_json['type'], 'BookList')
         self.assertEqual(activity_json['name'], 'Test List')
         self.assertEqual(activity_json['owner'], self.user.remote_id)
 
diff --git a/bookwyrm/tests/models/test_shelf_model.py b/bookwyrm/tests/models/test_shelf_model.py
index 2bce0a9c..70394a12 100644
--- a/bookwyrm/tests/models/test_shelf_model.py
+++ b/bookwyrm/tests/models/test_shelf_model.py
@@ -26,6 +26,6 @@ class Shelf(TestCase):
         self.assertIsInstance(activity_json, dict)
         self.assertEqual(activity_json['id'], self.shelf.remote_id)
         self.assertEqual(activity_json['totalItems'], 0)
-        self.assertEqual(activity_json['type'], 'OrderedCollection')
+        self.assertEqual(activity_json['type'], 'Shelf')
         self.assertEqual(activity_json['name'], 'Test Shelf')
         self.assertEqual(activity_json['owner'], self.user.remote_id)
diff --git a/bookwyrm/tests/models/test_user_model.py b/bookwyrm/tests/models/test_user_model.py
index b7a41eab..a10c89b8 100644
--- a/bookwyrm/tests/models/test_user_model.py
+++ b/bookwyrm/tests/models/test_user_model.py
@@ -10,7 +10,7 @@ class User(TestCase):
     def setUp(self):
         self.user = models.User.objects.create_user(
             'mouse@%s' % DOMAIN, 'mouse@mouse.mouse', 'mouseword',
-            local=True, localname='mouse')
+            local=True, localname='mouse', name='hi')
 
     def test_computed_fields(self):
         ''' username instead of id here '''

From b8dc307a6bba91f6e32c6e2954c98d048f8fcdbb Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 2 Feb 2021 15:14:33 -0800
Subject: [PATCH 099/280] Fixes mocking broadcast task in lists tests

---
 bookwyrm/tests/views/test_list.py | 28 +++++++++++++++-------------
 1 file changed, 15 insertions(+), 13 deletions(-)

diff --git a/bookwyrm/tests/views/test_list.py b/bookwyrm/tests/views/test_list.py
index 513fa1d5..454f63e0 100644
--- a/bookwyrm/tests/views/test_list.py
+++ b/bookwyrm/tests/views/test_list.py
@@ -26,9 +26,11 @@ class ListViews(TestCase):
             local=True, localname='rat',
             remote_id='https://example.com/users/rat',
         )
+        work = models.Work.objects.create(title='Work')
         self.book = models.Edition.objects.create(
             title='Example Edition',
             remote_id='https://example.com/book/1',
+            parent_work=work,
         )
         self.list = models.List.objects.create(
             name='Test List', user=self.local_user)
@@ -37,7 +39,7 @@ class ListViews(TestCase):
         models.SiteSettings.objects.create()
 
 
-    def test_lists_page(self):
+    def test_lists_page(self, _):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.Lists.as_view()
         models.List.objects.create(name='Public list', user=self.local_user)
@@ -59,7 +61,7 @@ class ListViews(TestCase):
         self.assertEqual(result.status_code, 200)
 
 
-    def test_lists_create(self):
+    def test_lists_create(self, _):
         ''' create list view '''
         view = views.Lists.as_view()
         request = self.factory.post('', {
@@ -78,7 +80,7 @@ class ListViews(TestCase):
         self.assertEqual(new_list.curation, 'open')
 
 
-    def test_list_page(self):
+    def test_list_page(self, _):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.List.as_view()
         request = self.factory.get('')
@@ -114,7 +116,7 @@ class ListViews(TestCase):
         self.assertEqual(result.status_code, 200)
 
 
-    def test_list_edit(self):
+    def test_list_edit(self, _):
         ''' edit a list '''
         view = views.List.as_view()
         request = self.factory.post('', {
@@ -136,7 +138,7 @@ class ListViews(TestCase):
         self.assertEqual(self.list.curation, 'curated')
 
 
-    def test_curate_page(self):
+    def test_curate_page(self, _):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.Curate.as_view()
         models.List.objects.create(name='Public list', user=self.local_user)
@@ -155,7 +157,7 @@ class ListViews(TestCase):
         self.assertEqual(result.status_code, 302)
 
 
-    def test_curate_approve(self):
+    def test_curate_approve(self, _):
         ''' approve a pending item '''
         view = views.Curate.as_view()
         pending = models.ListItem.objects.create(
@@ -178,7 +180,7 @@ class ListViews(TestCase):
         self.assertTrue(pending.approved)
 
 
-    def test_curate_reject(self):
+    def test_curate_reject(self, _):
         ''' approve a pending item '''
         view = views.Curate.as_view()
         pending = models.ListItem.objects.create(
@@ -199,7 +201,7 @@ class ListViews(TestCase):
         self.assertFalse(models.ListItem.objects.exists())
 
 
-    def test_add_book(self):
+    def test_add_book(self, _):
         ''' put a book on a list '''
         request = self.factory.post('', {
             'book': self.book.id,
@@ -213,7 +215,7 @@ class ListViews(TestCase):
         self.assertTrue(item.approved)
 
 
-    def test_add_book_outsider(self):
+    def test_add_book_outsider(self, _):
         ''' put a book on a list '''
         self.list.curation = 'open'
         self.list.save()
@@ -229,7 +231,7 @@ class ListViews(TestCase):
         self.assertTrue(item.approved)
 
 
-    def test_add_book_pending(self):
+    def test_add_book_pending(self, _):
         ''' put a book on a list '''
         self.list.curation = 'curated'
         self.list.save()
@@ -245,7 +247,7 @@ class ListViews(TestCase):
         self.assertFalse(item.approved)
 
 
-    def test_add_book_self_curated(self):
+    def test_add_book_self_curated(self, _):
         ''' put a book on a list '''
         self.list.curation = 'curated'
         self.list.save()
@@ -261,7 +263,7 @@ class ListViews(TestCase):
         self.assertTrue(item.approved)
 
 
-    def test_remove_book(self):
+    def test_remove_book(self, _):
         ''' take an item off a list '''
         item = models.ListItem.objects.create(
             book_list=self.list,
@@ -279,7 +281,7 @@ class ListViews(TestCase):
         self.assertFalse(self.list.listitem_set.exists())
 
 
-    def test_remove_book_unauthorized(self):
+    def test_remove_book_unauthorized(self, _):
         ''' take an item off a list '''
         item = models.ListItem.objects.create(
             book_list=self.list,

From 18ef041a25d13542a5893e66fb1e048f2f734589 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 2 Feb 2021 15:19:44 -0800
Subject: [PATCH 100/280] Fixes broadcast task patch on shelves tests

---
 bookwyrm/tests/views/test_shelf.py | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/bookwyrm/tests/views/test_shelf.py b/bookwyrm/tests/views/test_shelf.py
index eae27c8a..5f7e3119 100644
--- a/bookwyrm/tests/views/test_shelf.py
+++ b/bookwyrm/tests/views/test_shelf.py
@@ -33,7 +33,7 @@ class ShelfViews(TestCase):
         models.SiteSettings.objects.create()
 
 
-    def test_shelf_page(self):
+    def test_shelf_page(self, _):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.Shelf.as_view()
         shelf = self.local_user.shelf_set.first()
@@ -63,7 +63,7 @@ class ShelfViews(TestCase):
         self.assertEqual(result.status_code, 200)
 
 
-    def test_edit_shelf_privacy(self):
+    def test_edit_shelf_privacy(self, _):
         ''' set name or privacy on shelf '''
         view = views.Shelf.as_view()
         shelf = self.local_user.shelf_set.get(identifier='to-read')
@@ -82,7 +82,7 @@ class ShelfViews(TestCase):
         self.assertEqual(shelf.privacy, 'unlisted')
 
 
-    def test_edit_shelf_name(self):
+    def test_edit_shelf_name(self, _):
         ''' change the name of an editable shelf '''
         view = views.Shelf.as_view()
         shelf = models.Shelf.objects.create(
@@ -103,7 +103,7 @@ class ShelfViews(TestCase):
         self.assertEqual(shelf.identifier, 'testshelf-%d' % shelf.id)
 
 
-    def test_edit_shelf_name_not_editable(self):
+    def test_edit_shelf_name_not_editable(self, _):
         ''' can't change the name of an non-editable shelf '''
         view = views.Shelf.as_view()
         shelf = self.local_user.shelf_set.get(identifier='to-read')
@@ -121,7 +121,7 @@ class ShelfViews(TestCase):
         self.assertEqual(shelf.name, 'To Read')
 
 
-    def test_handle_shelve(self):
+    def test_handle_shelve(self, _):
         ''' shelve a book '''
         request = self.factory.post('', {
             'book': self.book.id,
@@ -133,7 +133,7 @@ class ShelfViews(TestCase):
         self.assertEqual(self.shelf.books.get(), self.book)
 
 
-    def test_handle_shelve_to_read(self):
+    def test_handle_shelve_to_read(self, _):
         ''' special behavior for the to-read shelf '''
         shelf = models.Shelf.objects.get(identifier='to-read')
         request = self.factory.post('', {
@@ -147,7 +147,7 @@ class ShelfViews(TestCase):
         self.assertEqual(shelf.books.get(), self.book)
 
 
-    def test_handle_shelve_reading(self):
+    def test_handle_shelve_reading(self, _):
         ''' special behavior for the reading shelf '''
         shelf = models.Shelf.objects.get(identifier='reading')
         request = self.factory.post('', {
@@ -161,7 +161,7 @@ class ShelfViews(TestCase):
         self.assertEqual(shelf.books.get(), self.book)
 
 
-    def test_handle_shelve_read(self):
+    def test_handle_shelve_read(self, _):
         ''' special behavior for the read shelf '''
         shelf = models.Shelf.objects.get(identifier='read')
         request = self.factory.post('', {
@@ -176,7 +176,7 @@ class ShelfViews(TestCase):
         self.assertEqual(shelf.books.get(), self.book)
 
 
-    def test_handle_unshelve(self):
+    def test_handle_unshelve(self, _):
         ''' remove a book from a shelf '''
         self.shelf.books.add(self.book)
         self.shelf.save()

From 7aa9204cd297e74c53937a2192731f677cba83c2 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 2 Feb 2021 15:25:34 -0800
Subject: [PATCH 101/280] Fixes missing privacy field for to-read statuses

---
 bookwyrm/views/shelf.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/bookwyrm/views/shelf.py b/bookwyrm/views/shelf.py
index ebeb6b52..508d5ea5 100644
--- a/bookwyrm/views/shelf.py
+++ b/bookwyrm/views/shelf.py
@@ -151,6 +151,7 @@ def shelve(request):
             request.user,
             desired_shelf,
             book,
+            privacy=desired_shelf.privacy,
         )
 
     return redirect('/')

From 627b2ae90a71d8d753230099b8700072fd2b7a74 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 2 Feb 2021 15:46:58 -0800
Subject: [PATCH 102/280] Set header when opening forms

---
 bookwyrm/templates/lists/list_layout.html | 4 ++--
 bookwyrm/templates/lists/lists.html       | 6 +++---
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/bookwyrm/templates/lists/list_layout.html b/bookwyrm/templates/lists/list_layout.html
index 5e8d2c12..1887cd82 100644
--- a/bookwyrm/templates/lists/list_layout.html
+++ b/bookwyrm/templates/lists/list_layout.html
@@ -10,14 +10,14 @@
     </div>
     {% if request.user == list.user %}
     <div class="column is-narrow">
-        {% include 'snippets/toggle/open_button.html' with text="Edit list" icon="pencil" controls_text="edit-list" %}
+        {% include 'snippets/toggle/open_button.html' with text="Edit list" icon="pencil" controls_text="edit-list" focus="edit-list-header" %}
     </div>
     {% endif %}
 </header>
 
 <form name="edit-list" method="post" action="{% url 'list' list.id %}" class="box hidden" id="edit-list">
     <header class="columns">
-        <h3 class="title column">Edit list</h3>
+        <h3 class="title column" tabindex="0" id="edit-list-header">Edit list</h3>
         <div class="column is-narrow">
             {% include 'snippets/toggle/toggle_button.html' with controls_text="edit-list" label="close" class="delete" nonbutton=True %}
         </div>
diff --git a/bookwyrm/templates/lists/lists.html b/bookwyrm/templates/lists/lists.html
index 0e25bb23..a0e18933 100644
--- a/bookwyrm/templates/lists/lists.html
+++ b/bookwyrm/templates/lists/lists.html
@@ -11,15 +11,15 @@
             <h2 class="title">Your lists</h2>
         </div>
         <div class="column is-narrow">
-            {% include 'snippets/toggle/open_button.html' with controls_text="create-list" icon="plus" text="Create new list" %}
+            {% include 'snippets/toggle/open_button.html' with controls_text="create-list" icon="plus" text="Create new list" focus="create-list-header" %}
         </div>
     </header>
 
     <form name="create-list" method="post" action="{% url 'lists' %}" class="box hidden" id="create-list">
         <header class="columns">
-            <h3 class="title column">Create list</h3>
+            <h3 class="title column" tabindex="0" id="create-list-header">Create list</h3>
             <div class="column is-narrow">
-                {% include 'snippets/toggle/toggle_button.html' with controls_text="create-list" label="close" class="delete" nonbutton=True %}
+                {% include 'snippets/toggle/toggle_button.html' with controls_text="create-list" label="Close" class="delete" nonbutton=True %}
             </div>
         </header>
         {% include 'lists/form.html' %}

From 1b6dd666d95dea177f332575dc61683d1f8ab4a5 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 3 Feb 2021 10:16:38 -0800
Subject: [PATCH 103/280] Handling incoming list Creates and Updates

---
 bookwyrm/incoming.py            | 31 ++++++++++-
 bookwyrm/tests/test_incoming.py | 97 ++++++++++++++++++++++++---------
 2 files changed, 100 insertions(+), 28 deletions(-)

diff --git a/bookwyrm/incoming.py b/bookwyrm/incoming.py
index 1e42d32a..103b24fc 100644
--- a/bookwyrm/incoming.py
+++ b/bookwyrm/incoming.py
@@ -47,12 +47,20 @@ def shared_inbox(request):
             return HttpResponse()
         return HttpResponse(status=401)
 
+    # if this isn't a file ripe for refactor, I don't know what is.
     handlers = {
         'Follow': handle_follow,
         'Accept': handle_follow_accept,
         'Reject': handle_follow_reject,
         'Block': handle_block,
-        'Create': handle_create,
+        'Create': {
+            'BookList': handle_create_list,
+            'Note': handle_create_status,
+            'Article': handle_create_status,
+            'Review': handle_create_status,
+            'Comment': handle_create_status,
+            'Quotation': handle_create_status,
+        },
         'Delete': handle_delete_status,
         'Like': handle_favorite,
         'Announce': handle_boost,
@@ -69,6 +77,7 @@ def shared_inbox(request):
             'Person': handle_update_user,
             'Edition': handle_update_edition,
             'Work': handle_update_work,
+            'BookList': handle_update_list,
         },
     }
     activity_type = activity['type']
@@ -204,7 +213,25 @@ def handle_unblock(activity):
 
 
 @app.task
-def handle_create(activity):
+def handle_create_list(activity):
+    ''' a new list '''
+    activity = activity['object']
+    activitypub.BookList(**activity).to_model(models.List)
+
+
+@app.task
+def handle_update_list(activity):
+    ''' update a list '''
+    try:
+        book_list = models.List.objects.get(id=activity['object']['id'])
+    except models.List.DoesNotExist:
+        return
+    activitypub.BookList(
+        **activity['object']).to_model(models.List, instance=book_list)
+
+
+@app.task
+def handle_create_status(activity):
     ''' someone did something, good on them '''
     # deduplicate incoming activities
     activity = activity['object']
diff --git a/bookwyrm/tests/test_incoming.py b/bookwyrm/tests/test_incoming.py
index 1ee7c59e..8e07281c 100644
--- a/bookwyrm/tests/test_incoming.py
+++ b/bookwyrm/tests/test_incoming.py
@@ -248,7 +248,69 @@ class Incoming(TestCase):
         self.assertEqual(follows.count(), 0)
 
 
-    def test_handle_create(self):
+    def test_handle_create_list(self):
+        ''' a new list '''
+        activity = {
+            'object': {
+                "id": "https://example.com/list/22",
+                "type": "BookList",
+                "totalItems": 1,
+                "first": "https://example.com/list/22?page=1",
+                "last": "https://example.com/list/22?page=1",
+                "name": "Test List",
+                "owner": "https://example.com/user/mouse",
+                "to": [
+                    "https://www.w3.org/ns/activitystreams#Public"
+                ],
+                "cc": [
+                    "https://example.com/user/mouse/followers"
+                ],
+                "summary": "summary text",
+                "curation": "curated",
+                "@context": "https://www.w3.org/ns/activitystreams"
+            }
+        }
+        incoming.handle_create_list(activity)
+        book_list = models.List.objects.get()
+        self.assertEqual(book_list.name, 'Test List')
+        self.assertEqual(book_list.curation, 'curated')
+        self.assertEqual(book_list.description, 'summary text')
+        self.assertEqual(book_list.remote_id, 'https://example.com/list/22')
+
+
+    def test_handle_update_list(self):
+        ''' a new list '''
+        book_list = models.List.objects.create(
+            name='hi', remote_id='https://example.com/list/22', user=self.local_user)
+        activity = {
+            'object': {
+                "id": "https://example.com/list/22",
+                "type": "BookList",
+                "totalItems": 1,
+                "first": "https://example.com/list/22?page=1",
+                "last": "https://example.com/list/22?page=1",
+                "name": "Test List",
+                "owner": "https://example.com/user/mouse",
+                "to": [
+                    "https://www.w3.org/ns/activitystreams#Public"
+                ],
+                "cc": [
+                    "https://example.com/user/mouse/followers"
+                ],
+                "summary": "summary text",
+                "curation": "curated",
+                "@context": "https://www.w3.org/ns/activitystreams"
+            }
+        }
+        incoming.handle_create_list(activity)
+        book_list.refresh_from_db()
+        self.assertEqual(book_list.name, 'Test List')
+        self.assertEqual(book_list.curation, 'curated')
+        self.assertEqual(book_list.description, 'summary text')
+        self.assertEqual(book_list.remote_id, 'https://example.com/list/22')
+
+
+    def test_handle_create_status(self):
         ''' the "it justs works" mode '''
         self.assertEqual(models.Status.objects.count(), 1)
 
@@ -259,7 +321,7 @@ class Incoming(TestCase):
             title='Test Book', remote_id='https://example.com/book/1')
         activity = {'object': status_data, 'type': 'Create'}
 
-        incoming.handle_create(activity)
+        incoming.handle_create_status(activity)
 
         status = models.Quotation.objects.get()
         self.assertEqual(
@@ -270,16 +332,16 @@ class Incoming(TestCase):
         self.assertEqual(models.Status.objects.count(), 2)
 
         # while we're here, lets ensure we avoid dupes
-        incoming.handle_create(activity)
+        incoming.handle_create_status(activity)
         self.assertEqual(models.Status.objects.count(), 2)
 
-    def test_handle_create_unknown_type(self):
+    def test_handle_create_status_unknown_type(self):
         ''' folks send you all kinds of things '''
         activity = {'object': {'id': 'hi'}, 'type': 'Fish'}
-        result = incoming.handle_create(activity)
+        result = incoming.handle_create_status(activity)
         self.assertIsNone(result)
 
-    def test_handle_create_remote_note_with_mention(self):
+    def test_handle_create_status_remote_note_with_mention(self):
         ''' should only create it under the right circumstances '''
         self.assertEqual(models.Status.objects.count(), 1)
         self.assertFalse(
@@ -290,7 +352,7 @@ class Incoming(TestCase):
         status_data = json.loads(datafile.read_bytes())
         activity = {'object': status_data, 'type': 'Create'}
 
-        incoming.handle_create(activity)
+        incoming.handle_create_status(activity)
         status = models.Status.objects.last()
         self.assertEqual(status.content, 'test content in note')
         self.assertEqual(status.mention_users.first(), self.local_user)
@@ -299,7 +361,7 @@ class Incoming(TestCase):
         self.assertEqual(
             models.Notification.objects.get().notification_type, 'MENTION')
 
-    def test_handle_create_remote_note_with_reply(self):
+    def test_handle_create_status_remote_note_with_reply(self):
         ''' should only create it under the right circumstances '''
         self.assertEqual(models.Status.objects.count(), 1)
         self.assertFalse(
@@ -312,7 +374,7 @@ class Incoming(TestCase):
         status_data['inReplyTo'] = self.status.remote_id
         activity = {'object': status_data, 'type': 'Create'}
 
-        incoming.handle_create(activity)
+        incoming.handle_create_status(activity)
         status = models.Status.objects.last()
         self.assertEqual(status.content, 'test content in note')
         self.assertEqual(status.reply_parent, self.status)
@@ -566,20 +628,3 @@ class Incoming(TestCase):
 
         self.assertFalse(models.UserFollows.objects.exists())
         self.assertFalse(models.UserFollowRequest.objects.exists())
-
-    def test_handle_unblock(self):
-        ''' undoing a block '''
-        activity = {
-            "@context": "https://www.w3.org/ns/activitystreams",
-            "id": "https://friend.camp/users/tripofmice#blocks/1155/undo",
-            "type": "Undo",
-            "actor": "https://friend.camp/users/tripofmice",
-            "object": {
-                "id": "https://friend.camp/0a7d85f7-6359-4c03-8ab6-74e61a8fb678",
-                "type": "Block",
-                "actor": "https://friend.camp/users/tripofmice",
-            "object": "https://1b1a78582461.ngrok.io/user/mouse"
-            }
-        }
-
-        self.remote_user.blocks.add(self.local_user)

From 65f3333edbd97107b3b5b812a3e64f3cbc4ac573 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 3 Feb 2021 10:42:02 -0800
Subject: [PATCH 104/280] line length fix

---
 bookwyrm/tests/test_incoming.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/bookwyrm/tests/test_incoming.py b/bookwyrm/tests/test_incoming.py
index 8e07281c..65679c29 100644
--- a/bookwyrm/tests/test_incoming.py
+++ b/bookwyrm/tests/test_incoming.py
@@ -281,7 +281,8 @@ class Incoming(TestCase):
     def test_handle_update_list(self):
         ''' a new list '''
         book_list = models.List.objects.create(
-            name='hi', remote_id='https://example.com/list/22', user=self.local_user)
+            name='hi', remote_id='https://example.com/list/22',
+            user=self.local_user)
         activity = {
             'object': {
                 "id": "https://example.com/list/22",

From 6ce4be74067f1d842d0588a19e561ad47884a282 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 3 Feb 2021 12:25:33 -0800
Subject: [PATCH 105/280] Adds inline form component

---
 .../templates/components/inline_form.html     | 13 ++++++++
 bookwyrm/templates/lists/create_form.html     | 11 +++++++
 bookwyrm/templates/lists/edit_form.html       | 11 +++++++
 bookwyrm/templates/lists/list_layout.html     | 12 ++------
 bookwyrm/templates/lists/lists.html           | 30 ++++++++-----------
 5 files changed, 50 insertions(+), 27 deletions(-)
 create mode 100644 bookwyrm/templates/components/inline_form.html
 create mode 100644 bookwyrm/templates/lists/create_form.html
 create mode 100644 bookwyrm/templates/lists/edit_form.html

diff --git a/bookwyrm/templates/components/inline_form.html b/bookwyrm/templates/components/inline_form.html
new file mode 100644
index 00000000..6a244ffd
--- /dev/null
+++ b/bookwyrm/templates/components/inline_form.html
@@ -0,0 +1,13 @@
+<section class="card hidden {{ class }}" id="{{ controls_text }}{% if controls_uid %}-{{ controls_uid }}{% endif %}">
+    <header class="card-header has-background-white-ter">
+        <h2 class="card-header-title" tabindex="0" id="{{ controls_text }}{% if controls_uid %}-{{ controls_uid }}{% endif %}-header">
+            {% block header %}{% endblock %}
+        </h2>
+        <span class="card-header-icon">
+        {% include 'snippets/toggle/toggle_button.html' with label="Close" class="delete" nonbutton=True controls_text=controls_text %}
+        </span>
+    </header>
+    <section class="card-content content">
+        {% block form %}{% endblock %}
+    </section>
+</section>
diff --git a/bookwyrm/templates/lists/create_form.html b/bookwyrm/templates/lists/create_form.html
new file mode 100644
index 00000000..706dff08
--- /dev/null
+++ b/bookwyrm/templates/lists/create_form.html
@@ -0,0 +1,11 @@
+{% extends 'components/inline_form.html' %}
+
+{% block header %}
+Create List
+{% endblock %}
+
+{% block form %}
+    <form name="create-list" method="post" action="{% url 'lists' %}">
+    {% include 'lists/form.html' %}
+</form>
+{% endblock %}
diff --git a/bookwyrm/templates/lists/edit_form.html b/bookwyrm/templates/lists/edit_form.html
new file mode 100644
index 00000000..55723b72
--- /dev/null
+++ b/bookwyrm/templates/lists/edit_form.html
@@ -0,0 +1,11 @@
+{% extends 'components/inline_form.html' %}
+
+{% block header %}
+Edit List
+{% endblock %}
+
+{% block form %}
+<form name="edit-list" method="post" action="{% url 'list' list.id %}">
+    {% include 'lists/form.html' %}
+</form>
+{% endblock %}
diff --git a/bookwyrm/templates/lists/list_layout.html b/bookwyrm/templates/lists/list_layout.html
index 1887cd82..d3ff2c48 100644
--- a/bookwyrm/templates/lists/list_layout.html
+++ b/bookwyrm/templates/lists/list_layout.html
@@ -15,15 +15,9 @@
     {% endif %}
 </header>
 
-<form name="edit-list" method="post" action="{% url 'list' list.id %}" class="box hidden" id="edit-list">
-    <header class="columns">
-        <h3 class="title column" tabindex="0" id="edit-list-header">Edit list</h3>
-        <div class="column is-narrow">
-            {% include 'snippets/toggle/toggle_button.html' with controls_text="edit-list" label="close" class="delete" nonbutton=True %}
-        </div>
-    </header>
-    {% include 'lists/form.html' %}
-</form>
+<div class="block">
+    {% include 'lists/edit_form.html' with controls_text="edit-list" %}
+</div>
 
 {% block panel %}{% endblock %}
 
diff --git a/bookwyrm/templates/lists/lists.html b/bookwyrm/templates/lists/lists.html
index a0e18933..ad2dfbaf 100644
--- a/bookwyrm/templates/lists/lists.html
+++ b/bookwyrm/templates/lists/lists.html
@@ -5,26 +5,20 @@
     <h1 class="title">Lists</h1>
 </header>
 {% if request.user.is_authenticated and not lists.has_previous %}
-<section class="block content">
-    <header class="columns">
-        <div class="column">
-            <h2 class="title">Your lists</h2>
-        </div>
-        <div class="column is-narrow">
-            {% include 'snippets/toggle/open_button.html' with controls_text="create-list" icon="plus" text="Create new list" focus="create-list-header" %}
-        </div>
-    </header>
+<header class="block columns">
+    <div class="column">
+        <h2 class="title">Your lists</h2>
+    </div>
+    <div class="column is-narrow">
+        {% include 'snippets/toggle/open_button.html' with controls_text="create-list" icon="plus" text="Create new list" focus="create-list-header" %}
+    </div>
+</header>
 
-    <form name="create-list" method="post" action="{% url 'lists' %}" class="box hidden" id="create-list">
-        <header class="columns">
-            <h3 class="title column" tabindex="0" id="create-list-header">Create list</h3>
-            <div class="column is-narrow">
-                {% include 'snippets/toggle/toggle_button.html' with controls_text="create-list" label="Close" class="delete" nonbutton=True %}
-            </div>
-        </header>
-        {% include 'lists/form.html' %}
-    </form>
+<div class="block">
+    {% include 'lists/create_form.html' with controls_text="create-list" %}
+</div>
 
+<div class="block content">
     {% if request.user.list_set.exists %}
     {% include 'lists/list_items.html' with lists=request.user.list_set.all|slice:4 %}
     {% endif %}

From bcbcdd5b3b070c35537b7aa4089c79cc724a8956 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 3 Feb 2021 12:36:20 -0800
Subject: [PATCH 106/280] Uses component for create shelf form

---
 .../templates/user/create_shelf_form.html     | 26 +++++++++++++++++++
 bookwyrm/templates/user/shelf.html            | 23 +++-------------
 bookwyrm/urls.py                              |  2 +-
 3 files changed, 30 insertions(+), 21 deletions(-)
 create mode 100644 bookwyrm/templates/user/create_shelf_form.html

diff --git a/bookwyrm/templates/user/create_shelf_form.html b/bookwyrm/templates/user/create_shelf_form.html
new file mode 100644
index 00000000..89f41fd8
--- /dev/null
+++ b/bookwyrm/templates/user/create_shelf_form.html
@@ -0,0 +1,26 @@
+{% extends 'components/inline_form.html' %}
+
+{% block header %}
+Create New Shelf
+{% endblock %}
+
+{% block form %}
+<form name="create-shelf" action="{% url 'shelf-create' %}" method="post">
+    {% csrf_token %}
+    <input type="hidden" name="user" value="{{ request.user.id }}">
+    <div class="field">
+        <label class="label" for="id_name_create">Name:</label>
+        <input type="text" name="name" maxlength="100" class="input" required="true" id="id_name_create">
+    </div>
+
+    <div class="field has-addons">
+        <div class="control">
+            {% include 'snippets/privacy_select.html' %}
+        </div>
+        <div class="control">
+            <button class="button is-primary" type="submit">Create shelf</button>
+        </div>
+    </div>
+</form>
+{% endblock %}
+
diff --git a/bookwyrm/templates/user/shelf.html b/bookwyrm/templates/user/shelf.html
index add5e5db..07b4f30b 100644
--- a/bookwyrm/templates/user/shelf.html
+++ b/bookwyrm/templates/user/shelf.html
@@ -29,30 +29,13 @@
 
     {% if is_self %}
     <div class="column is-narrow">
-        {% include 'snippets/toggle/open_button.html' with text="Create shelf" icon="plus" class="is-clickable" controls_text="create-shelf-form" %}
+        {% include 'snippets/toggle/open_button.html' with text="Create shelf" icon="plus" controls_text="create-shelf-form" focus="create-shelf-form-header" %}
     </div>
     {% endif %}
 </div>
 
-<div class="hidden box mb-5" id="create-shelf-form">
-    <h2 class="title is-4">Create new shelf</h2>
-    <form name="create-shelf" action="/create-shelf/" method="post">
-        {% csrf_token %}
-        <input type="hidden" name="user" value="{{ request.user.id }}">
-        <div class="field">
-            <label class="label" for="id_name_create">Name:</label>
-            <input type="text" name="name" maxlength="100" class="input" required="true" id="id_name_create">
-        </div>
-
-        <label class="label">
-            <p>Shelf privacy:</p>
-            {% include 'snippets/privacy_select.html' with no_label=True %}
-        </label>
-        <div class="field is-grouped">
-            <button class="button is-primary" type="submit">Create shelf</button>
-            {% include 'snippets/toggle/close_button.html' with text="Cancel" controls_text="create-shelf-form" %}
-        </div>
-    </form>
+<div class="block">
+    {% include 'user/create_shelf_form.html' with controls_text='create-shelf-form' %}
 </div>
 
 <div class="block columns">
diff --git a/bookwyrm/urls.py b/bookwyrm/urls.py
index 68aaedd7..3830adb9 100644
--- a/bookwyrm/urls.py
+++ b/bookwyrm/urls.py
@@ -150,7 +150,7 @@ urlpatterns = [
             user_path, views.Shelf.as_view(), name='shelf'),
     re_path(r'^%s/shelf/(?P<shelf_identifier>[\w-]+)(.json)?/?$' % \
             local_user_path, views.Shelf.as_view()),
-    re_path(r'^create-shelf/?$', views.create_shelf),
+    re_path(r'^create-shelf/?$', views.create_shelf, name='shelf-create'),
     re_path(r'^delete-shelf/(?P<shelf_id>\d+)?$', views.delete_shelf),
     re_path(r'^shelve/?$', views.shelve),
     re_path(r'^unshelve/?$', views.unshelve),

From 502e235e590b4d1dfb5a3f224ce554c5dce0db6a Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 3 Feb 2021 12:44:51 -0800
Subject: [PATCH 107/280] Edit shelf form using component

---
 bookwyrm/templates/user/edit_shelf_form.html | 31 ++++++++++++++++++++
 bookwyrm/templates/user/shelf.html           | 27 ++---------------
 2 files changed, 34 insertions(+), 24 deletions(-)
 create mode 100644 bookwyrm/templates/user/edit_shelf_form.html

diff --git a/bookwyrm/templates/user/edit_shelf_form.html b/bookwyrm/templates/user/edit_shelf_form.html
new file mode 100644
index 00000000..b179be9f
--- /dev/null
+++ b/bookwyrm/templates/user/edit_shelf_form.html
@@ -0,0 +1,31 @@
+{% extends 'components/inline_form.html' %}
+
+{% block header %}
+Edit Shelf
+{% endblock %}
+
+{% block form %}
+<form name="edit-shelf" action="{{ shelf.local_path }}" method="post">
+    {% csrf_token %}
+    <input type="hidden" name="user" value="{{ request.user.id }}">
+    {% if shelf.editable %}
+    <div class="field">
+        <label class="label" for="id_name">Name:</label>
+        <input type="text" name="name" maxlength="100" class="input" required="true" value="{{ shelf.name }}" id="id_name">
+    </div>
+    {% else %}
+    <input type="hidden" name="name" required="true" value="{{ shelf.name }}">
+    {% endif %}
+
+    <div class="field has-addons">
+        <div class="control">
+            {% include 'snippets/privacy_select.html' with current=shelf.privacy %}
+        </div>
+        <div class="control">
+            <button class="button is-primary" type="submit">Update shelf</button>
+        </div>
+    </div>
+</form>
+{% endblock %}
+
+
diff --git a/bookwyrm/templates/user/shelf.html b/bookwyrm/templates/user/shelf.html
index 07b4f30b..5e2f532f 100644
--- a/bookwyrm/templates/user/shelf.html
+++ b/bookwyrm/templates/user/shelf.html
@@ -49,34 +49,13 @@
     </div>
     {% if is_self %}
     <div class="column is-narrow">
-        {% include 'snippets/toggle/open_button.html' with text="Edit shelf" icon="pencil" class="is-clickable" controls_text="edit-shelf-form" %}
+        {% include 'snippets/toggle/open_button.html' with text="Edit shelf" icon="pencil" controls_text="edit-shelf-form" focus="edit-shelf-form-header" %}
     </div>
     {% endif %}
 </div>
 
-<div class="hidden box mb-5" id="edit-shelf-form">
-    <h2 class="title is-4">Edit shelf</h2>
-    <form name="create-shelf" action="{{ shelf.local_path }}" method="post">
-        {% csrf_token %}
-        <input type="hidden" name="user" value="{{ request.user.id }}">
-        {% if shelf.editable %}
-        <div class="field">
-            <label class="label" for="id_name">Name:</label>
-            <input type="text" name="name" maxlength="100" class="input" required="true" value="{{ shelf.name }}" id="id_name">
-        </div>
-        {% else %}
-        <input type="hidden" name="name" required="true" value="{{ shelf.name }}">
-        {% endif %}
-
-        <label class="label">
-            <p>Shelf privacy:</p>
-            {% include 'snippets/privacy_select.html' with no_label=True current=shelf.privacy %}
-        </label>
-        <div class="field is-grouped">
-            <button class="button is-primary" type="submit">Update shelf</button>
-            {% include 'snippets/toggle/close_button.html' with text="Cancel" controls_text="edit-shelf-form" %}
-        </div>
-    </form>
+<div class="block">
+    {% include 'user/edit_shelf_form.html' with controls_text="edit-shelf-form" %}
 </div>
 
 <div class="block">

From 7faf639758127ccbc48a990fe81714eb0dc59c08 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 3 Feb 2021 12:52:13 -0800
Subject: [PATCH 108/280] Fixes openlibrary connector test

---
 bookwyrm/tests/connectors/test_openlibrary_connector.py | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/bookwyrm/tests/connectors/test_openlibrary_connector.py b/bookwyrm/tests/connectors/test_openlibrary_connector.py
index c277ba04..8132a203 100644
--- a/bookwyrm/tests/connectors/test_openlibrary_connector.py
+++ b/bookwyrm/tests/connectors/test_openlibrary_connector.py
@@ -192,9 +192,15 @@ class Openlibrary(TestCase):
         self.assertEqual(edition['key'], '/books/OL9788823M')
 
 
+    @responses.activate
     def test_create_edition_from_data(self):
         ''' okay but can it actually create an edition with proper metadata '''
         work = models.Work.objects.create(title='Hello')
+        responses.add(
+            responses.GET,
+            'https://openlibrary.org/authors/OL382982A',
+            json={'hi': 'there'},
+            status=200)
         result = self.connector.create_edition_from_data(
             work, self.edition_data)
         self.assertEqual(result.parent_work, work)

From 476d65552ef16843352c478b5d924bbfceb91b1e Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 3 Feb 2021 16:01:49 -0800
Subject: [PATCH 109/280] Hide other people's empty lists from lists page

---
 bookwyrm/views/list.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index ce0cedb4..88938a67 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -29,6 +29,7 @@ class Lists(View):
         user = request.user if request.user.is_authenticated else None
         lists = models.List.objects.filter(
             ~Q(user=user),
+            books__isnull=False,
         ).all()
         lists = privacy_filter(request.user, lists, ['public', 'followers'])
 

From 39d31060e10e343b187b1b568ecabefc261d294c Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 3 Feb 2021 16:11:42 -0800
Subject: [PATCH 110/280] Sort list preview by most recently added

---
 bookwyrm/templates/lists/list_items.html | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/templates/lists/list_items.html b/bookwyrm/templates/lists/list_items.html
index 4560147f..942579ca 100644
--- a/bookwyrm/templates/lists/list_items.html
+++ b/bookwyrm/templates/lists/list_items.html
@@ -9,8 +9,8 @@
                 </h4>
             </header>
             <div class="card-image is-flex">
-                {% for book in list.books.all|slice:5 %}
-                {% include 'snippets/book_cover.html' with book=book size="small" %}
+                {% for book in list.listitem_set.all|slice:5 %}
+                {% include 'snippets/book_cover.html' with book=book.book size="small" %}
                 {% endfor %}
             </div>
             <div class="card-content is-flex-grow-0">

From 3f2f27bcaca32ec592cc8ab972bb73d93938a55f Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 3 Feb 2021 16:40:29 -0800
Subject: [PATCH 111/280] Fixes logged out list view

---
 bookwyrm/templates/lists/lists.html | 2 --
 1 file changed, 2 deletions(-)

diff --git a/bookwyrm/templates/lists/lists.html b/bookwyrm/templates/lists/lists.html
index ad2dfbaf..96ad8153 100644
--- a/bookwyrm/templates/lists/lists.html
+++ b/bookwyrm/templates/lists/lists.html
@@ -33,9 +33,7 @@
 {% if lists %}
 <section class="block content">
     <h2 class="title">Recent Lists</h2>
-    {% if request.user.list_set.exists %}
     {% include 'lists/list_items.html' with lists=lists %}
-    {% endif %}
 </section>
 <div>
     {% include 'snippets/pagination.html' with page=lists path=path %}

From c03dcaf8428b35e5e10f0abd761836e6542b9d9b Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 3 Feb 2021 16:49:42 -0800
Subject: [PATCH 112/280] Distinct lists

---
 bookwyrm/views/list.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index 88938a67..5128c2b0 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -30,7 +30,7 @@ class Lists(View):
         lists = models.List.objects.filter(
             ~Q(user=user),
             books__isnull=False,
-        ).all()
+        ).distinct().all()
         lists = privacy_filter(request.user, lists, ['public', 'followers'])
 
         paginated = Paginator(lists, 12)

From 736f28e254d2948bb2cf5a5c20bd706f3ae59665 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 3 Feb 2021 17:02:04 -0800
Subject: [PATCH 113/280] Fixes user tabs linking to logged in user

---
 bookwyrm/templates/user/user_layout.html | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/bookwyrm/templates/user/user_layout.html b/bookwyrm/templates/user/user_layout.html
index ec8f7189..2a086fcd 100644
--- a/bookwyrm/templates/user/user_layout.html
+++ b/bookwyrm/templates/user/user_layout.html
@@ -71,20 +71,20 @@
 {% if 'user/'|add:username|add:'/shelf' not in request.path  and 'user/'|add:username|add:'/shelves' not in request.path %}
 <nav class="tabs">
     <ul>
-        {% url 'user-feed' request.user|username as url %}
+        {% url 'user-feed' user|username as url %}
         <li{% if url == request.path or url == request.path|add:'/' %} class="is-active"{% endif %}>
             <a href="{{ url }}">Activity</a>
         </li>
         {% now 'Y' as year %}
-        {% url 'user-goal' request.user|username year as url %}
+        {% url 'user-goal' user|username year as url %}
         <li{% if url in request.path %} class="is-active"{% endif %}>
             <a href="{{ url }}">Reading Goal</a>
         </li>
-        {% url 'user-lists' request.user|username as url %}
+        {% url 'user-lists' user|username as url %}
         <li{% if url in request.path %} class="is-active"{% endif %}>
             <a href="{{ url }}">Lists</a>
         </li>
-        {% url 'user-shelves' request.user|username as url %}
+        {% url 'user-shelves' user|username as url %}
         <li{% if url in request.path %} class="is-active"{% endif %}>
             <a href="{{ url }}">Shelves</a>
         </li>

From ae0034e67844afebaf06d4c9af20de47ef2f6d24 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 3 Feb 2021 18:09:07 -0800
Subject: [PATCH 114/280] Fixes mismatched html tags

---
 bookwyrm/templates/lists/lists.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/templates/lists/lists.html b/bookwyrm/templates/lists/lists.html
index 96ad8153..71d37250 100644
--- a/bookwyrm/templates/lists/lists.html
+++ b/bookwyrm/templates/lists/lists.html
@@ -18,7 +18,7 @@
     {% include 'lists/create_form.html' with controls_text="create-list" %}
 </div>
 
-<div class="block content">
+<section class="block content">
     {% if request.user.list_set.exists %}
     {% include 'lists/list_items.html' with lists=request.user.list_set.all|slice:4 %}
     {% endif %}

From 582ebc0fe3ab61b650807747124f8de02e1e9644 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Thu, 4 Feb 2021 10:31:08 -0800
Subject: [PATCH 115/280] Fixes local paths with remote users

Fixes #590
---
 bookwyrm/models/base_model.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/models/base_model.py b/bookwyrm/models/base_model.py
index ba0a54be..82372128 100644
--- a/bookwyrm/models/base_model.py
+++ b/bookwyrm/models/base_model.py
@@ -27,7 +27,7 @@ class BookWyrmModel(models.Model):
         ''' generate a url that resolves to the local object '''
         base_path = 'https://%s' % DOMAIN
         if hasattr(self, 'user'):
-            base_path = self.user.remote_id
+            base_path = self.user.local_path
         model_name = type(self).__name__.lower()
         return '%s/%s/%d' % (base_path, model_name, self.id)
 

From dfb5c396b031986b5e88364b92346d560b56a427 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Thu, 4 Feb 2021 10:47:03 -0800
Subject: [PATCH 116/280] Moves activitypub mixin to its own file

---
 .../migrations/0017_auto_20201130_1819.py     |   4 +-
 .../migrations/0041_auto_20210131_1614.py     |   6 +-
 bookwyrm/models/activitypub_mixin.py          | 268 ++++++++++++++++++
 bookwyrm/models/attachment.py                 |   2 +-
 bookwyrm/models/base_model.py                 | 265 +----------------
 bookwyrm/models/book.py                       |   3 +-
 bookwyrm/models/favorite.py                   |   3 +-
 bookwyrm/models/list.py                       |   4 +-
 bookwyrm/models/relationship.py               |   3 +-
 bookwyrm/models/shelf.py                      |   4 +-
 bookwyrm/models/status.py                     |   2 +-
 bookwyrm/models/tag.py                        |   3 +-
 bookwyrm/models/user.py                       |   4 +-
 13 files changed, 291 insertions(+), 280 deletions(-)
 create mode 100644 bookwyrm/models/activitypub_mixin.py

diff --git a/bookwyrm/migrations/0017_auto_20201130_1819.py b/bookwyrm/migrations/0017_auto_20201130_1819.py
index ce9f1cc7..0775269b 100644
--- a/bookwyrm/migrations/0017_auto_20201130_1819.py
+++ b/bookwyrm/migrations/0017_auto_20201130_1819.py
@@ -1,6 +1,6 @@
 # Generated by Django 3.0.7 on 2020-11-30 18:19
 
-import bookwyrm.models.base_model
+import bookwyrm.models.activitypub_mixin
 import bookwyrm.models.fields
 from django.conf import settings
 from django.db import migrations, models
@@ -38,7 +38,7 @@ class Migration(migrations.Migration):
             options={
                 'abstract': False,
             },
-            bases=(bookwyrm.models.base_model.ActivitypubMixin, models.Model),
+            bases=(bookwyrm.models.activitypub_mixin.ActivitypubMixin, models.Model),
         ),
         migrations.AddField(
             model_name='user',
diff --git a/bookwyrm/migrations/0041_auto_20210131_1614.py b/bookwyrm/migrations/0041_auto_20210131_1614.py
index 8deb69a8..6fcf406b 100644
--- a/bookwyrm/migrations/0041_auto_20210131_1614.py
+++ b/bookwyrm/migrations/0041_auto_20210131_1614.py
@@ -1,6 +1,6 @@
 # Generated by Django 3.0.7 on 2021-01-31 16:14
 
-import bookwyrm.models.base_model
+import bookwyrm.models.activitypub_mixin
 import bookwyrm.models.fields
 from django.conf import settings
 from django.db import migrations, models
@@ -29,7 +29,7 @@ class Migration(migrations.Migration):
             options={
                 'abstract': False,
             },
-            bases=(bookwyrm.models.base_model.OrderedCollectionMixin, models.Model),
+            bases=(bookwyrm.models.activitypub_mixin.OrderedCollectionMixin, models.Model),
         ),
         migrations.CreateModel(
             name='ListItem',
@@ -50,7 +50,7 @@ class Migration(migrations.Migration):
                 'ordering': ('-created_date',),
                 'unique_together': {('book', 'book_list')},
             },
-            bases=(bookwyrm.models.base_model.ActivitypubMixin, models.Model),
+            bases=(bookwyrm.models.activitypub_mixin.ActivitypubMixin, models.Model),
         ),
         migrations.AddField(
             model_name='list',
diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
new file mode 100644
index 00000000..adea0355
--- /dev/null
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -0,0 +1,268 @@
+''' base model with default fields '''
+from base64 import b64encode
+from functools import reduce
+import operator
+from uuid import uuid4
+
+from Crypto.PublicKey import RSA
+from Crypto.Signature import pkcs1_15
+from Crypto.Hash import SHA256
+from django.core.paginator import Paginator
+from django.db.models import Q
+
+from bookwyrm import activitypub
+from bookwyrm.settings import PAGE_LENGTH
+from .fields import ImageField, ManyToManyField
+
+
+class ActivitypubMixin:
+    ''' add this mixin for models that are AP serializable '''
+    activity_serializer = lambda: {}
+    reverse_unfurl = False
+
+    def __init__(self, *args, **kwargs):
+        ''' collect some info on model fields '''
+        self.image_fields = []
+        self.many_to_many_fields = []
+        self.simple_fields = [] # "simple"
+        for field in self._meta.get_fields():
+            if not hasattr(field, 'field_to_activity'):
+                continue
+
+            if isinstance(field, ImageField):
+                self.image_fields.append(field)
+            elif isinstance(field, ManyToManyField):
+                self.many_to_many_fields.append(field)
+            else:
+                self.simple_fields.append(field)
+
+        self.activity_fields = self.image_fields + \
+                self.many_to_many_fields + self.simple_fields
+
+        self.deserialize_reverse_fields = self.deserialize_reverse_fields \
+                if hasattr(self, 'deserialize_reverse_fields') else []
+        self.serialize_reverse_fields = self.serialize_reverse_fields \
+                if hasattr(self, 'serialize_reverse_fields') else []
+
+        super().__init__(*args, **kwargs)
+
+
+    @classmethod
+    def find_existing_by_remote_id(cls, remote_id):
+        ''' look up a remote id in the db '''
+        return cls.find_existing({'id': remote_id})
+
+    @classmethod
+    def find_existing(cls, data):
+        ''' compare data to fields that can be used for deduplation.
+        This always includes remote_id, but can also be unique identifiers
+        like an isbn for an edition '''
+        filters = []
+        for field in cls._meta.get_fields():
+            if not hasattr(field, 'deduplication_field') or \
+                    not field.deduplication_field:
+                continue
+
+            value = data.get(field.get_activitypub_field())
+            if not value:
+                continue
+            filters.append({field.name: value})
+
+        if hasattr(cls, 'origin_id') and 'id' in data:
+            # kinda janky, but this handles special case for books
+            filters.append({'origin_id': data['id']})
+
+        if not filters:
+            # if there are no deduplication fields, it will match the first
+            # item no matter what. this shouldn't happen but just in case.
+            return None
+
+        objects = cls.objects
+        if hasattr(objects, 'select_subclasses'):
+            objects = objects.select_subclasses()
+
+        # an OR operation on all the match fields
+        match = objects.filter(
+            reduce(
+                operator.or_, (Q(**f) for f in filters)
+            )
+        )
+        # there OUGHT to be only one match
+        return match.first()
+
+
+    def broadcast(self):
+        ''' send out an activity '''
+
+    def to_activity(self):
+        ''' convert from a model to an activity '''
+        activity = generate_activity(self)
+        return self.activity_serializer(**activity).serialize()
+
+
+    def to_create_activity(self, user, **kwargs):
+        ''' returns the object wrapped in a Create activity '''
+        activity_object = self.to_activity(**kwargs)
+
+        signature = None
+        create_id = self.remote_id + '/activity'
+        if 'content' in activity_object:
+            signer = pkcs1_15.new(RSA.import_key(user.key_pair.private_key))
+            content = activity_object['content']
+            signed_message = signer.sign(SHA256.new(content.encode('utf8')))
+
+            signature = activitypub.Signature(
+                creator='%s#main-key' % user.remote_id,
+                created=activity_object['published'],
+                signatureValue=b64encode(signed_message).decode('utf8')
+            )
+
+        return activitypub.Create(
+            id=create_id,
+            actor=user.remote_id,
+            to=activity_object['to'],
+            cc=activity_object['cc'],
+            object=activity_object,
+            signature=signature,
+        ).serialize()
+
+
+    def to_delete_activity(self, user):
+        ''' notice of deletion '''
+        return activitypub.Delete(
+            id=self.remote_id + '/activity',
+            actor=user.remote_id,
+            to=['%s/followers' % user.remote_id],
+            cc=['https://www.w3.org/ns/activitystreams#Public'],
+            object=self.to_activity(),
+        ).serialize()
+
+
+    def to_update_activity(self, user):
+        ''' wrapper for Updates to an activity '''
+        activity_id = '%s#update/%s' % (self.remote_id, uuid4())
+        return activitypub.Update(
+            id=activity_id,
+            actor=user.remote_id,
+            to=['https://www.w3.org/ns/activitystreams#Public'],
+            object=self.to_activity()
+        ).serialize()
+
+
+    def to_undo_activity(self, user):
+        ''' undo an action '''
+        return activitypub.Undo(
+            id='%s#undo' % self.remote_id,
+            actor=user.remote_id,
+            object=self.to_activity()
+        ).serialize()
+
+
+class OrderedCollectionPageMixin(ActivitypubMixin):
+    ''' just the paginator utilities, so you don't HAVE to
+        override ActivitypubMixin's to_activity (ie, for outbox '''
+    @property
+    def collection_remote_id(self):
+        ''' this can be overriden if there's a special remote id, ie outbox '''
+        return self.remote_id
+
+
+    def to_ordered_collection(self, queryset, \
+            remote_id=None, page=False, collection_only=False, **kwargs):
+        ''' an ordered collection of whatevers '''
+        if not queryset.ordered:
+            raise RuntimeError('queryset must be ordered')
+
+        remote_id = remote_id or self.remote_id
+        if page:
+            return to_ordered_collection_page(
+                queryset, remote_id, **kwargs)
+
+        if collection_only or not hasattr(self, 'activity_serializer'):
+            serializer = activitypub.OrderedCollection
+            activity = {}
+        else:
+            serializer = self.activity_serializer
+            # a dict from the model fields
+            activity = generate_activity(self)
+
+        if remote_id:
+            activity['id'] = remote_id
+
+        paginated = Paginator(queryset, PAGE_LENGTH)
+        # add computed fields specific to orderd collections
+        activity['totalItems'] = paginated.count
+        activity['first'] = '%s?page=1' % remote_id
+        activity['last'] = '%s?page=%d' % (remote_id, paginated.num_pages)
+
+        return serializer(**activity).serialize()
+
+
+# pylint: disable=unused-argument
+def to_ordered_collection_page(
+        queryset, remote_id, id_only=False, page=1, **kwargs):
+    ''' serialize and pagiante a queryset '''
+    paginated = Paginator(queryset, PAGE_LENGTH)
+
+    activity_page = paginated.page(page)
+    if id_only:
+        items = [s.remote_id for s in activity_page.object_list]
+    else:
+        items = [s.to_activity() for s in activity_page.object_list]
+
+    prev_page = next_page = None
+    if activity_page.has_next():
+        next_page = '%s?page=%d' % (remote_id, activity_page.next_page_number())
+    if activity_page.has_previous():
+        prev_page = '%s?page=%d' % \
+                (remote_id, activity_page.previous_page_number())
+    return activitypub.OrderedCollectionPage(
+        id='%s?page=%s' % (remote_id, page),
+        partOf=remote_id,
+        orderedItems=items,
+        next=next_page,
+        prev=prev_page
+    ).serialize()
+
+
+class OrderedCollectionMixin(OrderedCollectionPageMixin):
+    ''' extends activitypub models to work as ordered collections '''
+    @property
+    def collection_queryset(self):
+        ''' usually an ordered collection model aggregates a different model '''
+        raise NotImplementedError('Model must define collection_queryset')
+
+    activity_serializer = activitypub.OrderedCollection
+
+    def to_activity(self, **kwargs):
+        ''' an ordered collection of the specified model queryset  '''
+        return self.to_ordered_collection(self.collection_queryset, **kwargs)
+
+
+def generate_activity(obj):
+    ''' go through the fields on an object '''
+    activity = {}
+    for field in obj.activity_fields:
+        field.set_activity_from_field(activity, obj)
+
+    if hasattr(obj, 'serialize_reverse_fields'):
+        # for example, editions of a work
+        for model_field_name, activity_field_name, sort_field in \
+                obj.serialize_reverse_fields:
+            related_field = getattr(obj, model_field_name)
+            activity[activity_field_name] = \
+                    unfurl_related_field(related_field, sort_field)
+
+    if not activity.get('id'):
+        activity['id'] = obj.get_remote_id()
+    return activity
+
+
+def unfurl_related_field(related_field, sort_field=None):
+    ''' load reverse lookups (like public key owner or Status attachment '''
+    if hasattr(related_field, 'all'):
+        return [unfurl_related_field(i) for i in related_field.order_by(
+            sort_field).all()]
+    if related_field.reverse_unfurl:
+        return related_field.field_to_activity()
+    return related_field.remote_id
diff --git a/bookwyrm/models/attachment.py b/bookwyrm/models/attachment.py
index b3337e15..e3450a5a 100644
--- a/bookwyrm/models/attachment.py
+++ b/bookwyrm/models/attachment.py
@@ -2,7 +2,7 @@
 from django.db import models
 
 from bookwyrm import activitypub
-from .base_model import ActivitypubMixin
+from .activitypub_mixin import ActivitypubMixin
 from .base_model import BookWyrmModel
 from . import fields
 
diff --git a/bookwyrm/models/base_model.py b/bookwyrm/models/base_model.py
index ba0a54be..003325a7 100644
--- a/bookwyrm/models/base_model.py
+++ b/bookwyrm/models/base_model.py
@@ -1,20 +1,9 @@
 ''' base model with default fields '''
-from base64 import b64encode
-from functools import reduce
-import operator
-from uuid import uuid4
-
-from Crypto.PublicKey import RSA
-from Crypto.Signature import pkcs1_15
-from Crypto.Hash import SHA256
-from django.core.paginator import Paginator
 from django.db import models
-from django.db.models import Q
 from django.dispatch import receiver
 
-from bookwyrm import activitypub
-from bookwyrm.settings import DOMAIN, PAGE_LENGTH
-from .fields import ImageField, ManyToManyField, RemoteIdField
+from bookwyrm.settings import DOMAIN
+from .fields import RemoteIdField
 
 
 class BookWyrmModel(models.Model):
@@ -50,253 +39,3 @@ def execute_after_save(sender, instance, created, *args, **kwargs):
     if not instance.remote_id:
         instance.remote_id = instance.get_remote_id()
         instance.save()
-
-
-def unfurl_related_field(related_field, sort_field=None):
-    ''' load reverse lookups (like public key owner or Status attachment '''
-    if hasattr(related_field, 'all'):
-        return [unfurl_related_field(i) for i in related_field.order_by(
-            sort_field).all()]
-    if related_field.reverse_unfurl:
-        return related_field.field_to_activity()
-    return related_field.remote_id
-
-
-class ActivitypubMixin:
-    ''' add this mixin for models that are AP serializable '''
-    activity_serializer = lambda: {}
-    reverse_unfurl = False
-
-    def __init__(self, *args, **kwargs):
-        ''' collect some info on model fields '''
-        self.image_fields = []
-        self.many_to_many_fields = []
-        self.simple_fields = [] # "simple"
-        for field in self._meta.get_fields():
-            if not hasattr(field, 'field_to_activity'):
-                continue
-
-            if isinstance(field, ImageField):
-                self.image_fields.append(field)
-            elif isinstance(field, ManyToManyField):
-                self.many_to_many_fields.append(field)
-            else:
-                self.simple_fields.append(field)
-
-        self.activity_fields = self.image_fields + \
-                self.many_to_many_fields + self.simple_fields
-
-        self.deserialize_reverse_fields = self.deserialize_reverse_fields \
-                if hasattr(self, 'deserialize_reverse_fields') else []
-        self.serialize_reverse_fields = self.serialize_reverse_fields \
-                if hasattr(self, 'serialize_reverse_fields') else []
-
-        super().__init__(*args, **kwargs)
-
-
-    @classmethod
-    def find_existing_by_remote_id(cls, remote_id):
-        ''' look up a remote id in the db '''
-        return cls.find_existing({'id': remote_id})
-
-    @classmethod
-    def find_existing(cls, data):
-        ''' compare data to fields that can be used for deduplation.
-        This always includes remote_id, but can also be unique identifiers
-        like an isbn for an edition '''
-        filters = []
-        for field in cls._meta.get_fields():
-            if not hasattr(field, 'deduplication_field') or \
-                    not field.deduplication_field:
-                continue
-
-            value = data.get(field.get_activitypub_field())
-            if not value:
-                continue
-            filters.append({field.name: value})
-
-        if hasattr(cls, 'origin_id') and 'id' in data:
-            # kinda janky, but this handles special case for books
-            filters.append({'origin_id': data['id']})
-
-        if not filters:
-            # if there are no deduplication fields, it will match the first
-            # item no matter what. this shouldn't happen but just in case.
-            return None
-
-        objects = cls.objects
-        if hasattr(objects, 'select_subclasses'):
-            objects = objects.select_subclasses()
-
-        # an OR operation on all the match fields
-        match = objects.filter(
-            reduce(
-                operator.or_, (Q(**f) for f in filters)
-            )
-        )
-        # there OUGHT to be only one match
-        return match.first()
-
-
-    def to_activity(self):
-        ''' convert from a model to an activity '''
-        activity = generate_activity(self)
-        return self.activity_serializer(**activity).serialize()
-
-
-    def to_create_activity(self, user, **kwargs):
-        ''' returns the object wrapped in a Create activity '''
-        activity_object = self.to_activity(**kwargs)
-
-        signature = None
-        create_id = self.remote_id + '/activity'
-        if 'content' in activity_object:
-            signer = pkcs1_15.new(RSA.import_key(user.key_pair.private_key))
-            content = activity_object['content']
-            signed_message = signer.sign(SHA256.new(content.encode('utf8')))
-
-            signature = activitypub.Signature(
-                creator='%s#main-key' % user.remote_id,
-                created=activity_object['published'],
-                signatureValue=b64encode(signed_message).decode('utf8')
-            )
-
-        return activitypub.Create(
-            id=create_id,
-            actor=user.remote_id,
-            to=activity_object['to'],
-            cc=activity_object['cc'],
-            object=activity_object,
-            signature=signature,
-        ).serialize()
-
-
-    def to_delete_activity(self, user):
-        ''' notice of deletion '''
-        return activitypub.Delete(
-            id=self.remote_id + '/activity',
-            actor=user.remote_id,
-            to=['%s/followers' % user.remote_id],
-            cc=['https://www.w3.org/ns/activitystreams#Public'],
-            object=self.to_activity(),
-        ).serialize()
-
-
-    def to_update_activity(self, user):
-        ''' wrapper for Updates to an activity '''
-        activity_id = '%s#update/%s' % (self.remote_id, uuid4())
-        return activitypub.Update(
-            id=activity_id,
-            actor=user.remote_id,
-            to=['https://www.w3.org/ns/activitystreams#Public'],
-            object=self.to_activity()
-        ).serialize()
-
-
-    def to_undo_activity(self, user):
-        ''' undo an action '''
-        return activitypub.Undo(
-            id='%s#undo' % self.remote_id,
-            actor=user.remote_id,
-            object=self.to_activity()
-        ).serialize()
-
-
-class OrderedCollectionPageMixin(ActivitypubMixin):
-    ''' just the paginator utilities, so you don't HAVE to
-        override ActivitypubMixin's to_activity (ie, for outbox '''
-    @property
-    def collection_remote_id(self):
-        ''' this can be overriden if there's a special remote id, ie outbox '''
-        return self.remote_id
-
-
-    def to_ordered_collection(self, queryset, \
-            remote_id=None, page=False, collection_only=False, **kwargs):
-        ''' an ordered collection of whatevers '''
-        if not queryset.ordered:
-            raise RuntimeError('queryset must be ordered')
-
-        remote_id = remote_id or self.remote_id
-        if page:
-            return to_ordered_collection_page(
-                queryset, remote_id, **kwargs)
-
-        if collection_only or not hasattr(self, 'activity_serializer'):
-            serializer = activitypub.OrderedCollection
-            activity = {}
-        else:
-            serializer = self.activity_serializer
-            # a dict from the model fields
-            activity = generate_activity(self)
-
-        if remote_id:
-            activity['id'] = remote_id
-
-        paginated = Paginator(queryset, PAGE_LENGTH)
-        # add computed fields specific to orderd collections
-        activity['totalItems'] = paginated.count
-        activity['first'] = '%s?page=1' % remote_id
-        activity['last'] = '%s?page=%d' % (remote_id, paginated.num_pages)
-
-        return serializer(**activity).serialize()
-
-
-# pylint: disable=unused-argument
-def to_ordered_collection_page(
-        queryset, remote_id, id_only=False, page=1, **kwargs):
-    ''' serialize and pagiante a queryset '''
-    paginated = Paginator(queryset, PAGE_LENGTH)
-
-    activity_page = paginated.page(page)
-    if id_only:
-        items = [s.remote_id for s in activity_page.object_list]
-    else:
-        items = [s.to_activity() for s in activity_page.object_list]
-
-    prev_page = next_page = None
-    if activity_page.has_next():
-        next_page = '%s?page=%d' % (remote_id, activity_page.next_page_number())
-    if activity_page.has_previous():
-        prev_page = '%s?page=%d' % \
-                (remote_id, activity_page.previous_page_number())
-    return activitypub.OrderedCollectionPage(
-        id='%s?page=%s' % (remote_id, page),
-        partOf=remote_id,
-        orderedItems=items,
-        next=next_page,
-        prev=prev_page
-    ).serialize()
-
-
-class OrderedCollectionMixin(OrderedCollectionPageMixin):
-    ''' extends activitypub models to work as ordered collections '''
-    @property
-    def collection_queryset(self):
-        ''' usually an ordered collection model aggregates a different model '''
-        raise NotImplementedError('Model must define collection_queryset')
-
-    activity_serializer = activitypub.OrderedCollection
-
-    def to_activity(self, **kwargs):
-        ''' an ordered collection of the specified model queryset  '''
-        return self.to_ordered_collection(self.collection_queryset, **kwargs)
-
-
-def generate_activity(obj):
-    ''' go through the fields on an object '''
-    activity = {}
-    for field in obj.activity_fields:
-        field.set_activity_from_field(activity, obj)
-
-    if hasattr(obj, 'serialize_reverse_fields'):
-        # for example, editions of a work
-        for model_field_name, activity_field_name, sort_field in \
-                obj.serialize_reverse_fields:
-            related_field = getattr(obj, model_field_name)
-            activity[activity_field_name] = \
-                    unfurl_related_field(related_field, sort_field)
-
-    if not activity.get('id'):
-        activity['id'] = obj.get_remote_id()
-    return activity
diff --git a/bookwyrm/models/book.py b/bookwyrm/models/book.py
index ea704977..383668e0 100644
--- a/bookwyrm/models/book.py
+++ b/bookwyrm/models/book.py
@@ -7,8 +7,8 @@ from model_utils.managers import InheritanceManager
 from bookwyrm import activitypub
 from bookwyrm.settings import DOMAIN
 
+from .activitypub_mixin import ActivitypubMixin, OrderedCollectionPageMixin
 from .base_model import BookWyrmModel
-from .base_model import ActivitypubMixin, OrderedCollectionPageMixin
 from . import fields
 
 class BookDataModel(ActivitypubMixin, BookWyrmModel):
@@ -74,6 +74,7 @@ class Book(BookDataModel):
 
     @property
     def latest_readthrough(self):
+        ''' most recent readthrough activity '''
         return self.readthrough_set.order_by('-updated_date').first()
 
     @property
diff --git a/bookwyrm/models/favorite.py b/bookwyrm/models/favorite.py
index 8373b016..9809efe7 100644
--- a/bookwyrm/models/favorite.py
+++ b/bookwyrm/models/favorite.py
@@ -3,7 +3,8 @@ from django.db import models
 from django.utils import timezone
 
 from bookwyrm import activitypub
-from .base_model import ActivitypubMixin, BookWyrmModel
+from .activitypub_mixin import ActivitypubMixin
+from .base_model import BookWyrmModel
 from . import fields
 
 class Favorite(ActivitypubMixin, BookWyrmModel):
diff --git a/bookwyrm/models/list.py b/bookwyrm/models/list.py
index b567929b..8a9eb519 100644
--- a/bookwyrm/models/list.py
+++ b/bookwyrm/models/list.py
@@ -3,8 +3,8 @@ from django.db import models
 
 from bookwyrm import activitypub
 from bookwyrm.settings import DOMAIN
-from .base_model import ActivitypubMixin, BookWyrmModel
-from .base_model import OrderedCollectionMixin
+from .activitypub_mixin import ActivitypubMixin, OrderedCollectionMixin
+from .base_model import BookWyrmModel
 from . import fields
 
 
diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index ec84d44f..44af41ff 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -4,7 +4,8 @@ from django.db.models import Q
 from django.dispatch import receiver
 
 from bookwyrm import activitypub
-from .base_model import ActivitypubMixin, BookWyrmModel
+from .activitypub_mixin import ActivitypubMixin
+from .base_model import BookWyrmModel
 from . import fields
 
 
diff --git a/bookwyrm/models/shelf.py b/bookwyrm/models/shelf.py
index ff5660dd..93e9b06e 100644
--- a/bookwyrm/models/shelf.py
+++ b/bookwyrm/models/shelf.py
@@ -3,8 +3,8 @@ import re
 from django.db import models
 
 from bookwyrm import activitypub
-from .base_model import ActivitypubMixin, BookWyrmModel
-from .base_model import OrderedCollectionMixin
+from .activitypub_mixin import ActivitypubMixin, OrderedCollectionMixin
+from .base_model import BookWyrmModel
 from . import fields
 
 
diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index 093dd773..dc170f3c 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -9,7 +9,7 @@ from django.utils import timezone
 from model_utils.managers import InheritanceManager
 
 from bookwyrm import activitypub
-from .base_model import ActivitypubMixin, OrderedCollectionPageMixin
+from .activitypub_mixin import ActivitypubMixin, OrderedCollectionPageMixin
 from .base_model import BookWyrmModel
 from . import fields
 from .fields import image_serializer
diff --git a/bookwyrm/models/tag.py b/bookwyrm/models/tag.py
index 6e0ba8ab..fce534e6 100644
--- a/bookwyrm/models/tag.py
+++ b/bookwyrm/models/tag.py
@@ -5,7 +5,8 @@ from django.db import models
 
 from bookwyrm import activitypub
 from bookwyrm.settings import DOMAIN
-from .base_model import OrderedCollectionMixin, BookWyrmModel
+from .activitypub_mixin import OrderedCollectionMixin
+from .base_model import BookWyrmModel
 from . import fields
 
 
diff --git a/bookwyrm/models/user.py b/bookwyrm/models/user.py
index 3fd0eaf7..133c0721 100644
--- a/bookwyrm/models/user.py
+++ b/bookwyrm/models/user.py
@@ -17,8 +17,8 @@ from bookwyrm.settings import DOMAIN
 from bookwyrm.signatures import create_key_pair
 from bookwyrm.tasks import app
 from bookwyrm.utils import regex
-from .base_model import OrderedCollectionPageMixin
-from .base_model import ActivitypubMixin, BookWyrmModel
+from .activitypub_mixin import OrderedCollectionPageMixin, ActivitypubMixin
+from .base_model import BookWyrmModel
 from .federated_server import FederatedServer
 from . import fields, Review
 

From d633826a209b0ef729ee7c19099942d0298782d4 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Thu, 4 Feb 2021 10:48:56 -0800
Subject: [PATCH 117/280] full path in user-based remote id

---
 bookwyrm/models/base_model.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/models/base_model.py b/bookwyrm/models/base_model.py
index 82372128..5c72d547 100644
--- a/bookwyrm/models/base_model.py
+++ b/bookwyrm/models/base_model.py
@@ -27,7 +27,7 @@ class BookWyrmModel(models.Model):
         ''' generate a url that resolves to the local object '''
         base_path = 'https://%s' % DOMAIN
         if hasattr(self, 'user'):
-            base_path = self.user.local_path
+            base_path = '%s/%s' % (base_path, self.user.local_path)
         model_name = type(self).__name__.lower()
         return '%s/%s/%d' % (base_path, model_name, self.id)
 

From 12e0e6a1f0be3112fbcbb422ff26b47470c78234 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Thu, 4 Feb 2021 11:44:31 -0800
Subject: [PATCH 118/280] Broadcast implicitly from model save

---
 bookwyrm/broadcast.py                |  87 -------------------
 bookwyrm/models/activitypub_mixin.py | 121 ++++++++++++++++++++++++++-
 2 files changed, 119 insertions(+), 89 deletions(-)
 delete mode 100644 bookwyrm/broadcast.py

diff --git a/bookwyrm/broadcast.py b/bookwyrm/broadcast.py
deleted file mode 100644
index f4186c4d..00000000
--- a/bookwyrm/broadcast.py
+++ /dev/null
@@ -1,87 +0,0 @@
-''' send out activitypub messages '''
-import json
-from django.utils.http import http_date
-import requests
-
-from bookwyrm import models, settings
-from bookwyrm.activitypub import ActivityEncoder
-from bookwyrm.tasks import app
-from bookwyrm.signatures import make_signature, make_digest
-
-
-def get_public_recipients(user, software=None):
-    ''' everybody and their public inboxes '''
-    followers = user.followers.filter(local=False)
-    if software:
-        followers = followers.filter(bookwyrm_user=(software == 'bookwyrm'))
-
-    # we want shared inboxes when available
-    shared = followers.filter(
-        shared_inbox__isnull=False
-    ).values_list('shared_inbox', flat=True).distinct()
-
-    # if a user doesn't have a shared inbox, we need their personal inbox
-    # iirc pixelfed doesn't have shared inboxes
-    inboxes = followers.filter(
-        shared_inbox__isnull=True
-    ).values_list('inbox', flat=True)
-
-    return list(shared) + list(inboxes)
-
-
-def broadcast(sender, activity, software=None, \
-              privacy='public', direct_recipients=None):
-    ''' send out an event '''
-    # start with parsing the direct recipients
-    recipients = [u.inbox for u in direct_recipients or []]
-    # and then add any other recipients
-    if privacy == 'public':
-        recipients += get_public_recipients(sender, software=software)
-    broadcast_task.delay(
-        sender.id,
-        json.dumps(activity, cls=ActivityEncoder),
-        recipients
-    )
-
-
-@app.task
-def broadcast_task(sender_id, activity, recipients):
-    ''' the celery task for broadcast '''
-    sender = models.User.objects.get(id=sender_id)
-    errors = []
-    for recipient in recipients:
-        try:
-            sign_and_send(sender, activity, recipient)
-        except requests.exceptions.HTTPError as e:
-            errors.append({
-                'error': str(e),
-                'recipient': recipient,
-                'activity': activity,
-            })
-    return errors
-
-
-def sign_and_send(sender, data, destination):
-    ''' crpyto whatever and http junk '''
-    now = http_date()
-
-    if not sender.key_pair.private_key:
-        # this shouldn't happen. it would be bad if it happened.
-        raise ValueError('No private key found for sender')
-
-    digest = make_digest(data)
-
-    response = requests.post(
-        destination,
-        data=data,
-        headers={
-            'Date': now,
-            'Digest': digest,
-            'Signature': make_signature(sender, destination, now, digest),
-            'Content-Type': 'application/activity+json; charset=utf-8',
-            'User-Agent': settings.USER_AGENT,
-        },
-    )
-    if not response.ok:
-        response.raise_for_status()
-    return response
diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index adea0355..29039f7d 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -1,17 +1,25 @@
 ''' base model with default fields '''
 from base64 import b64encode
 from functools import reduce
+import json
 import operator
 from uuid import uuid4
+import requests
 
 from Crypto.PublicKey import RSA
 from Crypto.Signature import pkcs1_15
 from Crypto.Hash import SHA256
+from django.apps import apps
 from django.core.paginator import Paginator
+from django.db import models
 from django.db.models import Q
+from django.dispatch import receiver
+from django.utils.http import http_date
 
 from bookwyrm import activitypub
-from bookwyrm.settings import PAGE_LENGTH
+from bookwyrm.settings import PAGE_LENGTH, USER_AGENT
+from bookwyrm.signatures import make_signature, make_digest
+from bookwyrm.tasks import app
 from .fields import ImageField, ManyToManyField
 
 
@@ -91,8 +99,54 @@ class ActivitypubMixin:
         return match.first()
 
 
-    def broadcast(self):
+    def broadcast(self, activity, sender, software=None):
         ''' send out an activity '''
+        broadcast_task.delay(
+            sender.id,
+            json.dumps(activity, cls=activitypub.ActivityEncoder),
+            self.get_recipients(software=software)
+        )
+
+
+    def get_recipients(self, software=None):
+        ''' figure out which inbox urls to post to '''
+        # first we have to figure out who should receive this activity
+        privacy = self.privacy if hasattr(self, 'privacy') else 'public'
+        # is this activity owned by a user (statuses, lists, shelves), or is it
+        # general to the instance (like books)
+        user = self.user if hasattr(self, 'user') else None
+        if not user and self.__model__ == 'user':
+            # or maybe the thing itself is a user
+            user = self
+        # find anyone who's tagged in a status, for example
+        mentions = self.mention_users if hasattr(self, 'mention_users') else []
+
+        # we always send activities to explicitly mentioned users' inboxes
+        recipients = [u.inbox for u in mentions or []]
+
+        # unless it's a dm, all the followers should receive the activity
+        if privacy != 'direct':
+            user_model = apps.get_model('bookwyrm.User', require_ready=True)
+            # filter users first by whether they're using the desired software
+            # this lets us send book updates only to other bw servers
+            queryset = user_model.objects.filter(
+                bookwyrm_user=(software == 'bookwyrm')
+            )
+            # if there's a user, we only want to send to the user's followers
+            if user:
+                queryset = queryset.filter(following=user)
+
+            # ideally, we will send to shared inboxes for efficiency
+            shared_inboxes = queryset.filter(
+                shared_inbox__isnull=False
+            ).values_list('shared_inbox', flat=True).distinct()
+            # but not everyone has a shared inbox
+            inboxes = queryset.filter(
+                shared_inboxes__isnull=True
+            ).values_list('inbox', flat=True)
+            recipients += list(shared_inboxes) + list(inboxes)
+        return recipients
+
 
     def to_activity(self):
         ''' convert from a model to an activity '''
@@ -266,3 +320,66 @@ def unfurl_related_field(related_field, sort_field=None):
     if related_field.reverse_unfurl:
         return related_field.field_to_activity()
     return related_field.remote_id
+
+
+@app.task
+def broadcast_task(sender_id, activity, recipients):
+    ''' the celery task for broadcast '''
+    user_model = apps.get_model('bookwyrm.User', require_ready=True)
+    sender = user_model.objects.get(id=sender_id)
+    errors = []
+    for recipient in recipients:
+        try:
+            sign_and_send(sender, activity, recipient)
+        except requests.exceptions.HTTPError as e:
+            errors.append({
+                'error': str(e),
+                'recipient': recipient,
+                'activity': activity,
+            })
+    return errors
+
+
+def sign_and_send(sender, data, destination):
+    ''' crpyto whatever and http junk '''
+    now = http_date()
+
+    if not sender.key_pair.private_key:
+        # this shouldn't happen. it would be bad if it happened.
+        raise ValueError('No private key found for sender')
+
+    digest = make_digest(data)
+
+    response = requests.post(
+        destination,
+        data=data,
+        headers={
+            'Date': now,
+            'Digest': digest,
+            'Signature': make_signature(sender, destination, now, digest),
+            'Content-Type': 'application/activity+json; charset=utf-8',
+            'User-Agent': USER_AGENT,
+        },
+    )
+    if not response.ok:
+        response.raise_for_status()
+    return response
+
+
+@receiver(models.signals.post_save)
+#pylint: disable=unused-argument
+def execute_after_save(sender, instance, created, *args, **kwargs):
+    ''' broadcast when a model instance is created or updated '''
+    # user content like statuses, lists, and shelves, have a "user" field
+    if created:
+        if not hasattr(instance, 'user'):
+            # book data and users don't need to broadcast on creation
+            return
+        # we don't want to broadcast when we save remote activities
+        if not instance.user.local:
+            return
+        activity = instance.to_create_activity(instance.user)
+        instance.broadcast(activity, instance.user)
+        return
+
+    # now, handle updates

From b015d6c9a122659a0adfa1511c32aacd9be53c08 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Thu, 4 Feb 2021 11:46:42 -0800
Subject: [PATCH 119/280] Fixes hiding import book option in search for
 anonymous users

---
 bookwyrm/templates/search_results.html | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/bookwyrm/templates/search_results.html b/bookwyrm/templates/search_results.html
index be1da831..34328bbd 100644
--- a/bookwyrm/templates/search_results.html
+++ b/bookwyrm/templates/search_results.html
@@ -22,7 +22,8 @@
             {% endif %}
         </section>
 
-        {% if book_results|slice:":1" and local_results.results and request.user.is_authenticated %}
+        {% if request.user.is_authenticated %}
+        {% if book_results|slice:":1" and local_results.results %}
         <div class="block">
             <p>
                 Didn't find what you were looking for?
@@ -61,6 +62,7 @@
             {% include 'snippets/toggle/close_button.html' with text="Hide results from other catalogues" small=True controls_text="more-results" %}
             {% endif %}
         </div>
+        {% endif %}
     </div>
     <div class="column">
         <section class="block">

From feb8190d8f45c13abd48d58cc344fc5e5148c05f Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Thu, 4 Feb 2021 12:25:07 -0800
Subject: [PATCH 120/280] Created mixin for ordered collection items

---
 bookwyrm/models/activitypub_mixin.py | 71 ++++++++++++++++++++++++----
 bookwyrm/models/list.py              | 26 ++--------
 bookwyrm/models/shelf.py             | 26 ++--------
 bookwyrm/models/tag.py               | 25 ++--------
 4 files changed, 76 insertions(+), 72 deletions(-)

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 29039f7d..135cf89e 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -16,6 +16,7 @@ from django.db.models import Q
 from django.dispatch import receiver
 from django.utils.http import http_date
 
+
 from bookwyrm import activitypub
 from bookwyrm.settings import PAGE_LENGTH, USER_AGENT
 from bookwyrm.signatures import make_signature, make_digest
@@ -55,6 +56,10 @@ class ActivitypubMixin:
         super().__init__(*args, **kwargs)
 
 
+    def delete(self, *args, **kwargs):
+        ''' broadcast suitable delete activities '''
+
+
     @classmethod
     def find_existing_by_remote_id(cls, remote_id):
         ''' look up a remote id in the db '''
@@ -293,6 +298,34 @@ class OrderedCollectionMixin(OrderedCollectionPageMixin):
         return self.to_ordered_collection(self.collection_queryset, **kwargs)
 
 
+class CollectionItemMixin(ActivitypubMixin):
+    ''' for items that are part of an (Ordered)Collection '''
+    activity_serializer = activitypub.Add
+    object_field = collection_field = None
+
+    def to_add_activity(self):
+        ''' AP for shelving a book'''
+        object_field = getattr(self, self.object_field)
+        collection_field = getattr(self, self.collection_field)
+        return activitypub.Add(
+            id='%s#add' % self.remote_id,
+            actor=self.user.remote_id,
+            object=object_field.to_activity(),
+            target=collection_field.remote_id
+        ).serialize()
+
+    def to_remove_activity(self):
+        ''' AP for un-shelving a book'''
+        object_field = getattr(self, self.object_field)
+        collection_field = getattr(self, self.collection_field)
+        return activitypub.Remove(
+            id='%s#remove' % self.remote_id,
+            actor=self.user.remote_id,
+            object=object_field.to_activity(),
+            target=collection_field.remote_id
+        ).serialize()
+
+
 def generate_activity(obj):
     ''' go through the fields on an object '''
     activity = {}
@@ -371,15 +404,35 @@ def sign_and_send(sender, data, destination):
 def execute_after_save(sender, instance, created, *args, **kwargs):
     ''' broadcast when a model instance is created or updated '''
     # user content like statuses, lists, and shelves, have a "user" field
-    if created:
-        if not hasattr(instance, 'user'):
-            # book data and users don't need to broadcast on creation
-            return
+    user = instance.user if hasattr(instance, 'user') else None
+    if user and not user.local:
         # we don't want to broadcast when we save remote activities
-        if not instance.user.local:
-            return
-        activity = instance.to_create_activity(instance.user)
-        instance.broadcast(activity, instance.user)
         return
 
-    # now, handle updates
+    if created:
+        if not user:
+            # book data and users don't need to broadcast on creation
+            return
+
+        # ordered collection items get "Add"ed
+        if hasattr(instance, 'to_add_activity'):
+            activity = instance.to_add_activity()
+        else:
+            # everything else gets "Create"d
+            activity = instance.to_create_activity(user)
+    else:
+        # now, handle updates
+        if not user:
+            # users don't have associated users, they ARE users
+            if sender.__class__ == 'User':
+                user = instance
+            # book data trakcs last editor
+            elif hasattr(instance, 'last_edited_by'):
+                user = instance.last_edited_by
+        # again, if we don't know the user or they're remote, don't bother
+        if not user or not user.local:
+            return
+        activity = instance.to_update_activity(user)
+
+    if activity and user and user.local:
+        instance.broadcast(activity, user)
diff --git a/bookwyrm/models/list.py b/bookwyrm/models/list.py
index 8a9eb519..fab5685f 100644
--- a/bookwyrm/models/list.py
+++ b/bookwyrm/models/list.py
@@ -3,7 +3,7 @@ from django.db import models
 
 from bookwyrm import activitypub
 from bookwyrm.settings import DOMAIN
-from .activitypub_mixin import ActivitypubMixin, OrderedCollectionMixin
+from .activitypub_mixin import CollectionItemMixin, OrderedCollectionMixin
 from .base_model import BookWyrmModel
 from . import fields
 
@@ -49,13 +49,13 @@ class List(OrderedCollectionMixin, BookWyrmModel):
         ordering = ('-updated_date',)
 
 
-class ListItem(ActivitypubMixin, BookWyrmModel):
+class ListItem(CollectionItemMixin, BookWyrmModel):
     ''' ok '''
     book = fields.ForeignKey(
         'Edition', on_delete=models.PROTECT, activitypub_field='object')
     book_list = fields.ForeignKey(
         'List', on_delete=models.CASCADE, activitypub_field='target')
-    added_by = fields.ForeignKey(
+    user = fields.ForeignKey(
         'User',
         on_delete=models.PROTECT,
         activitypub_field='actor'
@@ -66,24 +66,8 @@ class ListItem(ActivitypubMixin, BookWyrmModel):
     endorsement = models.ManyToManyField('User', related_name='endorsers')
 
     activity_serializer = activitypub.AddBook
-
-    def to_add_activity(self, user):
-        ''' AP for shelving a book'''
-        return activitypub.Add(
-            id='%s#add' % self.remote_id,
-            actor=user.remote_id,
-            object=self.book.to_activity(),
-            target=self.book_list.remote_id,
-        ).serialize()
-
-    def to_remove_activity(self, user):
-        ''' AP for un-shelving a book'''
-        return activitypub.Remove(
-            id='%s#remove' % self.remote_id,
-            actor=user.remote_id,
-            object=self.book.to_activity(),
-            target=self.book_list.remote_id
-        ).serialize()
+    object_field = 'book'
+    collection_field = 'book_list'
 
     class Meta:
         ''' an opinionated constraint! you can't put a book on a list twice '''
diff --git a/bookwyrm/models/shelf.py b/bookwyrm/models/shelf.py
index 93e9b06e..a1b1a48c 100644
--- a/bookwyrm/models/shelf.py
+++ b/bookwyrm/models/shelf.py
@@ -3,7 +3,7 @@ import re
 from django.db import models
 
 from bookwyrm import activitypub
-from .activitypub_mixin import ActivitypubMixin, OrderedCollectionMixin
+from .activitypub_mixin import CollectionItemMixin, OrderedCollectionMixin
 from .base_model import BookWyrmModel
 from . import fields
 
@@ -49,13 +49,13 @@ class Shelf(OrderedCollectionMixin, BookWyrmModel):
         unique_together = ('user', 'identifier')
 
 
-class ShelfBook(ActivitypubMixin, BookWyrmModel):
+class ShelfBook(CollectionItemMixin, BookWyrmModel):
     ''' many to many join table for books and shelves '''
     book = fields.ForeignKey(
         'Edition', on_delete=models.PROTECT, activitypub_field='object')
     shelf = fields.ForeignKey(
         'Shelf', on_delete=models.PROTECT, activitypub_field='target')
-    added_by = fields.ForeignKey(
+    user = fields.ForeignKey(
         'User',
         blank=True,
         null=True,
@@ -64,24 +64,8 @@ class ShelfBook(ActivitypubMixin, BookWyrmModel):
     )
 
     activity_serializer = activitypub.AddBook
-
-    def to_add_activity(self, user):
-        ''' AP for shelving a book'''
-        return activitypub.Add(
-            id='%s#add' % self.remote_id,
-            actor=user.remote_id,
-            object=self.book.to_activity(),
-            target=self.shelf.remote_id,
-        ).serialize()
-
-    def to_remove_activity(self, user):
-        ''' AP for un-shelving a book'''
-        return activitypub.Remove(
-            id='%s#remove' % self.remote_id,
-            actor=user.remote_id,
-            object=self.book.to_activity(),
-            target=self.shelf.to_activity()
-        ).serialize()
+    object_field = 'book'
+    collection_field = 'shelf'
 
 
     class Meta:
diff --git a/bookwyrm/models/tag.py b/bookwyrm/models/tag.py
index fce534e6..d75f6e05 100644
--- a/bookwyrm/models/tag.py
+++ b/bookwyrm/models/tag.py
@@ -5,7 +5,7 @@ from django.db import models
 
 from bookwyrm import activitypub
 from bookwyrm.settings import DOMAIN
-from .activitypub_mixin import OrderedCollectionMixin
+from .activitypub_mixin import CollectionItemMixin, OrderedCollectionMixin
 from .base_model import BookWyrmModel
 from . import fields
 
@@ -41,7 +41,7 @@ class Tag(OrderedCollectionMixin, BookWyrmModel):
         super().save(*args, **kwargs)
 
 
-class UserTag(BookWyrmModel):
+class UserTag(CollectionItemMixin, BookWyrmModel):
     ''' an instance of a tag on a book by a user '''
     user = fields.ForeignKey(
         'User', on_delete=models.PROTECT, activitypub_field='actor')
@@ -51,25 +51,8 @@ class UserTag(BookWyrmModel):
         'Tag', on_delete=models.PROTECT, activitypub_field='target')
 
     activity_serializer = activitypub.AddBook
-
-    def to_add_activity(self, user):
-        ''' AP for shelving a book'''
-        return activitypub.Add(
-            id='%s#add' % self.remote_id,
-            actor=user.remote_id,
-            object=self.book.to_activity(),
-            target=self.remote_id,
-        ).serialize()
-
-    def to_remove_activity(self, user):
-        ''' AP for un-shelving a book'''
-        return activitypub.Remove(
-            id='%s#remove' % self.remote_id,
-            actor=user.remote_id,
-            object=self.book.to_activity(),
-            target=self.remote_id,
-        ).serialize()
-
+    object_field = 'book'
+    collection_field = 'tag'
 
     class Meta:
         ''' unqiueness constraint '''

From 44996917c78f2919d31fd4e2fd001a9613347184 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Thu, 4 Feb 2021 12:36:39 -0800
Subject: [PATCH 121/280] Activitypub model code in more files

---
 bookwyrm/models/activitypub_mixin/__init__.py |   1 +
 .../activitypub_mixin/activitypub_mixin.py    | 330 ++++++++++++++++++
 .../activitypub_mixin/ordered_collection.py   | 115 ++++++
 3 files changed, 446 insertions(+)
 create mode 100644 bookwyrm/models/activitypub_mixin/__init__.py
 create mode 100644 bookwyrm/models/activitypub_mixin/activitypub_mixin.py
 create mode 100644 bookwyrm/models/activitypub_mixin/ordered_collection.py

diff --git a/bookwyrm/models/activitypub_mixin/__init__.py b/bookwyrm/models/activitypub_mixin/__init__.py
new file mode 100644
index 00000000..b6e690fd
--- /dev/null
+++ b/bookwyrm/models/activitypub_mixin/__init__.py
@@ -0,0 +1 @@
+from . import *
diff --git a/bookwyrm/models/activitypub_mixin/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin/activitypub_mixin.py
new file mode 100644
index 00000000..61f042ee
--- /dev/null
+++ b/bookwyrm/models/activitypub_mixin/activitypub_mixin.py
@@ -0,0 +1,330 @@
+''' base model with default fields '''
+from base64 import b64encode
+from functools import reduce
+import json
+import operator
+from uuid import uuid4
+import requests
+
+from Crypto.PublicKey import RSA
+from Crypto.Signature import pkcs1_15
+from Crypto.Hash import SHA256
+from django.apps import apps
+from django.db import models
+from django.db.models import Q
+from django.dispatch import receiver
+from django.utils.http import http_date
+
+
+from bookwyrm import activitypub
+from bookwyrm.settings import USER_AGENT
+from bookwyrm.signatures import make_signature, make_digest
+from bookwyrm.tasks import app
+from .fields import ImageField, ManyToManyField
+
+
+class ActivitypubMixin:
+    ''' add this mixin for models that are AP serializable '''
+    activity_serializer = lambda: {}
+    reverse_unfurl = False
+
+    def __init__(self, *args, **kwargs):
+        ''' collect some info on model fields '''
+        self.image_fields = []
+        self.many_to_many_fields = []
+        self.simple_fields = [] # "simple"
+        for field in self._meta.get_fields():
+            if not hasattr(field, 'field_to_activity'):
+                continue
+
+            if isinstance(field, ImageField):
+                self.image_fields.append(field)
+            elif isinstance(field, ManyToManyField):
+                self.many_to_many_fields.append(field)
+            else:
+                self.simple_fields.append(field)
+
+        self.activity_fields = self.image_fields + \
+                self.many_to_many_fields + self.simple_fields
+
+        self.deserialize_reverse_fields = self.deserialize_reverse_fields \
+                if hasattr(self, 'deserialize_reverse_fields') else []
+        self.serialize_reverse_fields = self.serialize_reverse_fields \
+                if hasattr(self, 'serialize_reverse_fields') else []
+
+        super().__init__(*args, **kwargs)
+
+
+    def delete(self, *args, **kwargs):
+        ''' broadcast suitable delete activities '''
+
+
+    @classmethod
+    def find_existing_by_remote_id(cls, remote_id):
+        ''' look up a remote id in the db '''
+        return cls.find_existing({'id': remote_id})
+
+    @classmethod
+    def find_existing(cls, data):
+        ''' compare data to fields that can be used for deduplation.
+        This always includes remote_id, but can also be unique identifiers
+        like an isbn for an edition '''
+        filters = []
+        for field in cls._meta.get_fields():
+            if not hasattr(field, 'deduplication_field') or \
+                    not field.deduplication_field:
+                continue
+
+            value = data.get(field.get_activitypub_field())
+            if not value:
+                continue
+            filters.append({field.name: value})
+
+        if hasattr(cls, 'origin_id') and 'id' in data:
+            # kinda janky, but this handles special case for books
+            filters.append({'origin_id': data['id']})
+
+        if not filters:
+            # if there are no deduplication fields, it will match the first
+            # item no matter what. this shouldn't happen but just in case.
+            return None
+
+        objects = cls.objects
+        if hasattr(objects, 'select_subclasses'):
+            objects = objects.select_subclasses()
+
+        # an OR operation on all the match fields
+        match = objects.filter(
+            reduce(
+                operator.or_, (Q(**f) for f in filters)
+            )
+        )
+        # there OUGHT to be only one match
+        return match.first()
+
+
+    def broadcast(self, activity, sender, software=None):
+        ''' send out an activity '''
+        broadcast_task.delay(
+            sender.id,
+            json.dumps(activity, cls=activitypub.ActivityEncoder),
+            self.get_recipients(software=software)
+        )
+
+
+    def get_recipients(self, software=None):
+        ''' figure out which inbox urls to post to '''
+        # first we have to figure out who should receive this activity
+        privacy = self.privacy if hasattr(self, 'privacy') else 'public'
+        # is this activity owned by a user (statuses, lists, shelves), or is it
+        # general to the instance (like books)
+        user = self.user if hasattr(self, 'user') else None
+        if not user and self.__model__ == 'user':
+            # or maybe the thing itself is a user
+            user = self
+        # find anyone who's tagged in a status, for example
+        mentions = self.mention_users if hasattr(self, 'mention_users') else []
+
+        # we always send activities to explicitly mentioned users' inboxes
+        recipients = [u.inbox for u in mentions or []]
+
+        # unless it's a dm, all the followers should receive the activity
+        if privacy != 'direct':
+            user_model = apps.get_model('bookwyrm.User', require_ready=True)
+            # filter users first by whether they're using the desired software
+            # this lets us send book updates only to other bw servers
+            queryset = user_model.objects.filter(
+                bookwyrm_user=(software == 'bookwyrm')
+            )
+            # if there's a user, we only want to send to the user's followers
+            if user:
+                queryset = queryset.filter(following=user)
+
+            # ideally, we will send to shared inboxes for efficiency
+            shared_inboxes = queryset.filter(
+                shared_inbox__isnull=False
+            ).values_list('shared_inbox', flat=True).distinct()
+            # but not everyone has a shared inbox
+            inboxes = queryset.filter(
+                shared_inboxes__isnull=True
+            ).values_list('inbox', flat=True)
+            recipients += list(shared_inboxes) + list(inboxes)
+        return recipients
+
+
+    def to_activity(self):
+        ''' convert from a model to an activity '''
+        activity = generate_activity(self)
+        return self.activity_serializer(**activity).serialize()
+
+
+    def to_create_activity(self, user, **kwargs):
+        ''' returns the object wrapped in a Create activity '''
+        activity_object = self.to_activity(**kwargs)
+
+        signature = None
+        create_id = self.remote_id + '/activity'
+        if 'content' in activity_object:
+            signer = pkcs1_15.new(RSA.import_key(user.key_pair.private_key))
+            content = activity_object['content']
+            signed_message = signer.sign(SHA256.new(content.encode('utf8')))
+
+            signature = activitypub.Signature(
+                creator='%s#main-key' % user.remote_id,
+                created=activity_object['published'],
+                signatureValue=b64encode(signed_message).decode('utf8')
+            )
+
+        return activitypub.Create(
+            id=create_id,
+            actor=user.remote_id,
+            to=activity_object['to'],
+            cc=activity_object['cc'],
+            object=activity_object,
+            signature=signature,
+        ).serialize()
+
+
+    def to_delete_activity(self, user):
+        ''' notice of deletion '''
+        return activitypub.Delete(
+            id=self.remote_id + '/activity',
+            actor=user.remote_id,
+            to=['%s/followers' % user.remote_id],
+            cc=['https://www.w3.org/ns/activitystreams#Public'],
+            object=self.to_activity(),
+        ).serialize()
+
+
+    def to_update_activity(self, user):
+        ''' wrapper for Updates to an activity '''
+        activity_id = '%s#update/%s' % (self.remote_id, uuid4())
+        return activitypub.Update(
+            id=activity_id,
+            actor=user.remote_id,
+            to=['https://www.w3.org/ns/activitystreams#Public'],
+            object=self.to_activity()
+        ).serialize()
+
+
+    def to_undo_activity(self, user):
+        ''' undo an action '''
+        return activitypub.Undo(
+            id='%s#undo' % self.remote_id,
+            actor=user.remote_id,
+            object=self.to_activity()
+        ).serialize()
+
+
+
+
+def generate_activity(obj):
+    ''' go through the fields on an object '''
+    activity = {}
+    for field in obj.activity_fields:
+        field.set_activity_from_field(activity, obj)
+
+    if hasattr(obj, 'serialize_reverse_fields'):
+        # for example, editions of a work
+        for model_field_name, activity_field_name, sort_field in \
+                obj.serialize_reverse_fields:
+            related_field = getattr(obj, model_field_name)
+            activity[activity_field_name] = \
+                    unfurl_related_field(related_field, sort_field)
+
+    if not activity.get('id'):
+        activity['id'] = obj.get_remote_id()
+    return activity
+
+
+def unfurl_related_field(related_field, sort_field=None):
+    ''' load reverse lookups (like public key owner or Status attachment '''
+    if hasattr(related_field, 'all'):
+        return [unfurl_related_field(i) for i in related_field.order_by(
+            sort_field).all()]
+    if related_field.reverse_unfurl:
+        return related_field.field_to_activity()
+    return related_field.remote_id
+
+
+@app.task
+def broadcast_task(sender_id, activity, recipients):
+    ''' the celery task for broadcast '''
+    user_model = apps.get_model('bookwyrm.User', require_ready=True)
+    sender = user_model.objects.get(id=sender_id)
+    errors = []
+    for recipient in recipients:
+        try:
+            sign_and_send(sender, activity, recipient)
+        except requests.exceptions.HTTPError as e:
+            errors.append({
+                'error': str(e),
+                'recipient': recipient,
+                'activity': activity,
+            })
+    return errors
+
+
+def sign_and_send(sender, data, destination):
+    ''' crpyto whatever and http junk '''
+    now = http_date()
+
+    if not sender.key_pair.private_key:
+        # this shouldn't happen. it would be bad if it happened.
+        raise ValueError('No private key found for sender')
+
+    digest = make_digest(data)
+
+    response = requests.post(
+        destination,
+        data=data,
+        headers={
+            'Date': now,
+            'Digest': digest,
+            'Signature': make_signature(sender, destination, now, digest),
+            'Content-Type': 'application/activity+json; charset=utf-8',
+            'User-Agent': USER_AGENT,
+        },
+    )
+    if not response.ok:
+        response.raise_for_status()
+    return response
+
+
+@receiver(models.signals.post_save)
+#pylint: disable=unused-argument
+def execute_after_save(sender, instance, created, *args, **kwargs):
+    ''' broadcast when a model instance is created or updated '''
+    # user content like statuses, lists, and shelves, have a "user" field
+    user = instance.user if hasattr(instance, 'user') else None
+    if user and not user.local:
+        # we don't want to broadcast when we save remote activities
+        return
+
+    if created:
+        if not user:
+            # book data and users don't need to broadcast on creation
+            return
+
+        # ordered collection items get "Add"ed
+        if hasattr(instance, 'to_add_activity'):
+            activity = instance.to_add_activity()
+        else:
+            # everything else gets "Create"d
+            activity = instance.to_create_activity(user)
+    else:
+        # now, handle updates
+        if not user:
+            # users don't have associated users, they ARE users
+            if sender.__class__ == 'User':
+                user = instance
+            # book data trakcs last editor
+            elif hasattr(instance, 'last_edited_by'):
+                user = instance.last_edited_by
+        # again, if we don't know the user or they're remote, don't bother
+        if not user or not user.local:
+            return
+        activity = instance.to_update_activity(user)
+
+    if activity and user and user.local:
+        instance.broadcast(activity, user)
diff --git a/bookwyrm/models/activitypub_mixin/ordered_collection.py b/bookwyrm/models/activitypub_mixin/ordered_collection.py
new file mode 100644
index 00000000..e755e522
--- /dev/null
+++ b/bookwyrm/models/activitypub_mixin/ordered_collection.py
@@ -0,0 +1,115 @@
+''' lists of objects '''
+from django.core.paginator import Paginator
+
+from bookwyrm import activitypub
+from bookwyrm.settings import PAGE_LENGTH
+from . import ActivitypubMixin, generate_activity
+
+
+class OrderedCollectionPageMixin(ActivitypubMixin):
+    ''' just the paginator utilities, so you don't HAVE to
+        override ActivitypubMixin's to_activity (ie, for outbox '''
+    @property
+    def collection_remote_id(self):
+        ''' this can be overriden if there's a special remote id, ie outbox '''
+        return self.remote_id
+
+
+    def to_ordered_collection(self, queryset, \
+            remote_id=None, page=False, collection_only=False, **kwargs):
+        ''' an ordered collection of whatevers '''
+        if not queryset.ordered:
+            raise RuntimeError('queryset must be ordered')
+
+        remote_id = remote_id or self.remote_id
+        if page:
+            return to_ordered_collection_page(
+                queryset, remote_id, **kwargs)
+
+        if collection_only or not hasattr(self, 'activity_serializer'):
+            serializer = activitypub.OrderedCollection
+            activity = {}
+        else:
+            serializer = self.activity_serializer
+            # a dict from the model fields
+            activity = generate_activity(self)
+
+        if remote_id:
+            activity['id'] = remote_id
+
+        paginated = Paginator(queryset, PAGE_LENGTH)
+        # add computed fields specific to orderd collections
+        activity['totalItems'] = paginated.count
+        activity['first'] = '%s?page=1' % remote_id
+        activity['last'] = '%s?page=%d' % (remote_id, paginated.num_pages)
+
+        return serializer(**activity).serialize()
+
+
+# pylint: disable=unused-argument
+def to_ordered_collection_page(
+        queryset, remote_id, id_only=False, page=1, **kwargs):
+    ''' serialize and pagiante a queryset '''
+    paginated = Paginator(queryset, PAGE_LENGTH)
+
+    activity_page = paginated.page(page)
+    if id_only:
+        items = [s.remote_id for s in activity_page.object_list]
+    else:
+        items = [s.to_activity() for s in activity_page.object_list]
+
+    prev_page = next_page = None
+    if activity_page.has_next():
+        next_page = '%s?page=%d' % (remote_id, activity_page.next_page_number())
+    if activity_page.has_previous():
+        prev_page = '%s?page=%d' % \
+                (remote_id, activity_page.previous_page_number())
+    return activitypub.OrderedCollectionPage(
+        id='%s?page=%s' % (remote_id, page),
+        partOf=remote_id,
+        orderedItems=items,
+        next=next_page,
+        prev=prev_page
+    ).serialize()
+
+
+class OrderedCollectionMixin(OrderedCollectionPageMixin):
+    ''' extends activitypub models to work as ordered collections '''
+    @property
+    def collection_queryset(self):
+        ''' usually an ordered collection model aggregates a different model '''
+        raise NotImplementedError('Model must define collection_queryset')
+
+    activity_serializer = activitypub.OrderedCollection
+
+    def to_activity(self, **kwargs):
+        ''' an ordered collection of the specified model queryset  '''
+        return self.to_ordered_collection(self.collection_queryset, **kwargs)
+
+
+class CollectionItemMixin(ActivitypubMixin):
+    ''' for items that are part of an (Ordered)Collection '''
+    activity_serializer = activitypub.Add
+    object_field = collection_field = None
+
+    def to_add_activity(self):
+        ''' AP for shelving a book'''
+        object_field = getattr(self, self.object_field)
+        collection_field = getattr(self, self.collection_field)
+        return activitypub.Add(
+            id='%s#add' % self.remote_id,
+            actor=self.user.remote_id,
+            object=object_field.to_activity(),
+            target=collection_field.remote_id
+        ).serialize()
+
+    def to_remove_activity(self):
+        ''' AP for un-shelving a book'''
+        object_field = getattr(self, self.object_field)
+        collection_field = getattr(self, self.collection_field)
+        return activitypub.Remove(
+            id='%s#remove' % self.remote_id,
+            actor=self.user.remote_id,
+            object=object_field.to_activity(),
+            target=collection_field.remote_id
+        ).serialize()

From 42d80ce2385e3ef436900dbd6163445ca24cf76c Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Thu, 4 Feb 2021 13:21:55 -0800
Subject: [PATCH 122/280] Remove explicit broadcast calls

---
 bookwyrm/goodreads_import.py                  |   9 +-
 bookwyrm/models/activitypub_mixin.py          | 438 ------------------
 .../activitypub_mixin/activitypub_mixin.py    |  89 +---
 .../activitypub_mixin/ordered_collection.py   |   6 +-
 bookwyrm/models/book.py                       |   4 +-
 bookwyrm/views/author.py                      |   2 -
 bookwyrm/views/block.py                       |  18 +-
 bookwyrm/views/books.py                       |   9 +-
 bookwyrm/views/follow.py                      |  20 +-
 bookwyrm/views/goal.py                        |  16 +-
 bookwyrm/views/helpers.py                     |   2 -
 bookwyrm/views/interaction.py                 |  16 +-
 bookwyrm/views/list.py                        |  39 +-
 bookwyrm/views/reading.py                     |   7 +-
 bookwyrm/views/shelf.py                       |  13 +-
 bookwyrm/views/status.py                      |  11 -
 bookwyrm/views/tag.py                         |   9 +-
 bookwyrm/views/user.py                        |   2 -
 18 files changed, 25 insertions(+), 685 deletions(-)
 delete mode 100644 bookwyrm/models/activitypub_mixin.py

diff --git a/bookwyrm/goodreads_import.py b/bookwyrm/goodreads_import.py
index b19994ed..606705c8 100644
--- a/bookwyrm/goodreads_import.py
+++ b/bookwyrm/goodreads_import.py
@@ -3,7 +3,6 @@ import csv
 import logging
 
 from bookwyrm import models
-from bookwyrm.broadcast import broadcast
 from bookwyrm.models import ImportJob, ImportItem
 from bookwyrm.status import create_notification
 from bookwyrm.tasks import app
@@ -90,9 +89,8 @@ def handle_imported_book(user, item, include_reviews, privacy):
             identifier=item.shelf,
             user=user
         )
-        shelf_book = models.ShelfBook.objects.create(
+        models.ShelfBook.objects.create(
             book=item.book, shelf=desired_shelf, added_by=user)
-        broadcast(user, shelf_book.to_add_activity(user), privacy=privacy)
 
     for read in item.reads:
         # check for an existing readthrough with the same dates
@@ -114,7 +112,7 @@ def handle_imported_book(user, item, include_reviews, privacy):
         # we don't know the publication date of the review,
         # but "now" is a bad guess
         published_date_guess = item.date_read or item.date_added
-        review = models.Review.objects.create(
+        models.Review.objects.create(
             user=user,
             book=item.book,
             name=review_title,
@@ -123,6 +121,3 @@ def handle_imported_book(user, item, include_reviews, privacy):
             published_date=published_date_guess,
             privacy=privacy,
         )
-        # we don't need to send out pure activities because non-bookwyrm
-        # instances don't need this data
-        broadcast(user, review.to_create_activity(user), privacy=privacy)
diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
deleted file mode 100644
index 135cf89e..00000000
--- a/bookwyrm/models/activitypub_mixin.py
+++ /dev/null
@@ -1,438 +0,0 @@
-''' base model with default fields '''
-from base64 import b64encode
-from functools import reduce
-import json
-import operator
-from uuid import uuid4
-import requests
-
-from Crypto.PublicKey import RSA
-from Crypto.Signature import pkcs1_15
-from Crypto.Hash import SHA256
-from django.apps import apps
-from django.core.paginator import Paginator
-from django.db import models
-from django.db.models import Q
-from django.dispatch import receiver
-from django.utils.http import http_date
-
-
-from bookwyrm import activitypub
-from bookwyrm.settings import PAGE_LENGTH, USER_AGENT
-from bookwyrm.signatures import make_signature, make_digest
-from bookwyrm.tasks import app
-from .fields import ImageField, ManyToManyField
-
-
-class ActivitypubMixin:
-    ''' add this mixin for models that are AP serializable '''
-    activity_serializer = lambda: {}
-    reverse_unfurl = False
-
-    def __init__(self, *args, **kwargs):
-        ''' collect some info on model fields '''
-        self.image_fields = []
-        self.many_to_many_fields = []
-        self.simple_fields = [] # "simple"
-        for field in self._meta.get_fields():
-            if not hasattr(field, 'field_to_activity'):
-                continue
-
-            if isinstance(field, ImageField):
-                self.image_fields.append(field)
-            elif isinstance(field, ManyToManyField):
-                self.many_to_many_fields.append(field)
-            else:
-                self.simple_fields.append(field)
-
-        self.activity_fields = self.image_fields + \
-                self.many_to_many_fields + self.simple_fields
-
-        self.deserialize_reverse_fields = self.deserialize_reverse_fields \
-                if hasattr(self, 'deserialize_reverse_fields') else []
-        self.serialize_reverse_fields = self.serialize_reverse_fields \
-                if hasattr(self, 'serialize_reverse_fields') else []
-
-        super().__init__(*args, **kwargs)
-
-
-    def delete(self, *args, **kwargs):
-        ''' broadcast suitable delete activities '''
-
-
-    @classmethod
-    def find_existing_by_remote_id(cls, remote_id):
-        ''' look up a remote id in the db '''
-        return cls.find_existing({'id': remote_id})
-
-    @classmethod
-    def find_existing(cls, data):
-        ''' compare data to fields that can be used for deduplation.
-        This always includes remote_id, but can also be unique identifiers
-        like an isbn for an edition '''
-        filters = []
-        for field in cls._meta.get_fields():
-            if not hasattr(field, 'deduplication_field') or \
-                    not field.deduplication_field:
-                continue
-
-            value = data.get(field.get_activitypub_field())
-            if not value:
-                continue
-            filters.append({field.name: value})
-
-        if hasattr(cls, 'origin_id') and 'id' in data:
-            # kinda janky, but this handles special case for books
-            filters.append({'origin_id': data['id']})
-
-        if not filters:
-            # if there are no deduplication fields, it will match the first
-            # item no matter what. this shouldn't happen but just in case.
-            return None
-
-        objects = cls.objects
-        if hasattr(objects, 'select_subclasses'):
-            objects = objects.select_subclasses()
-
-        # an OR operation on all the match fields
-        match = objects.filter(
-            reduce(
-                operator.or_, (Q(**f) for f in filters)
-            )
-        )
-        # there OUGHT to be only one match
-        return match.first()
-
-
-    def broadcast(self, activity, sender, software=None):
-        ''' send out an activity '''
-        broadcast_task.delay(
-            sender.id,
-            json.dumps(activity, cls=activitypub.ActivityEncoder),
-            self.get_recipients(software=software)
-        )
-
-
-    def get_recipients(self, software=None):
-        ''' figure out which inbox urls to post to '''
-        # first we have to figure out who should receive this activity
-        privacy = self.privacy if hasattr(self, 'privacy') else 'public'
-        # is this activity owned by a user (statuses, lists, shelves), or is it
-        # general to the instance (like books)
-        user = self.user if hasattr(self, 'user') else None
-        if not user and self.__model__ == 'user':
-            # or maybe the thing itself is a user
-            user = self
-        # find anyone who's tagged in a status, for example
-        mentions = self.mention_users if hasattr(self, 'mention_users') else []
-
-        # we always send activities to explicitly mentioned users' inboxes
-        recipients = [u.inbox for u in mentions or []]
-
-        # unless it's a dm, all the followers should receive the activity
-        if privacy != 'direct':
-            user_model = apps.get_model('bookwyrm.User', require_ready=True)
-            # filter users first by whether they're using the desired software
-            # this lets us send book updates only to other bw servers
-            queryset = user_model.objects.filter(
-                bookwyrm_user=(software == 'bookwyrm')
-            )
-            # if there's a user, we only want to send to the user's followers
-            if user:
-                queryset = queryset.filter(following=user)
-
-            # ideally, we will send to shared inboxes for efficiency
-            shared_inboxes = queryset.filter(
-                shared_inbox__isnull=False
-            ).values_list('shared_inbox', flat=True).distinct()
-            # but not everyone has a shared inbox
-            inboxes = queryset.filter(
-                shared_inboxes__isnull=True
-            ).values_list('inbox', flat=True)
-            recipients += list(shared_inboxes) + list(inboxes)
-        return recipients
-
-
-    def to_activity(self):
-        ''' convert from a model to an activity '''
-        activity = generate_activity(self)
-        return self.activity_serializer(**activity).serialize()
-
-
-    def to_create_activity(self, user, **kwargs):
-        ''' returns the object wrapped in a Create activity '''
-        activity_object = self.to_activity(**kwargs)
-
-        signature = None
-        create_id = self.remote_id + '/activity'
-        if 'content' in activity_object:
-            signer = pkcs1_15.new(RSA.import_key(user.key_pair.private_key))
-            content = activity_object['content']
-            signed_message = signer.sign(SHA256.new(content.encode('utf8')))
-
-            signature = activitypub.Signature(
-                creator='%s#main-key' % user.remote_id,
-                created=activity_object['published'],
-                signatureValue=b64encode(signed_message).decode('utf8')
-            )
-
-        return activitypub.Create(
-            id=create_id,
-            actor=user.remote_id,
-            to=activity_object['to'],
-            cc=activity_object['cc'],
-            object=activity_object,
-            signature=signature,
-        ).serialize()
-
-
-    def to_delete_activity(self, user):
-        ''' notice of deletion '''
-        return activitypub.Delete(
-            id=self.remote_id + '/activity',
-            actor=user.remote_id,
-            to=['%s/followers' % user.remote_id],
-            cc=['https://www.w3.org/ns/activitystreams#Public'],
-            object=self.to_activity(),
-        ).serialize()
-
-
-    def to_update_activity(self, user):
-        ''' wrapper for Updates to an activity '''
-        activity_id = '%s#update/%s' % (self.remote_id, uuid4())
-        return activitypub.Update(
-            id=activity_id,
-            actor=user.remote_id,
-            to=['https://www.w3.org/ns/activitystreams#Public'],
-            object=self.to_activity()
-        ).serialize()
-
-
-    def to_undo_activity(self, user):
-        ''' undo an action '''
-        return activitypub.Undo(
-            id='%s#undo' % self.remote_id,
-            actor=user.remote_id,
-            object=self.to_activity()
-        ).serialize()
-
-
-class OrderedCollectionPageMixin(ActivitypubMixin):
-    ''' just the paginator utilities, so you don't HAVE to
-        override ActivitypubMixin's to_activity (ie, for outbox '''
-    @property
-    def collection_remote_id(self):
-        ''' this can be overriden if there's a special remote id, ie outbox '''
-        return self.remote_id
-
-
-    def to_ordered_collection(self, queryset, \
-            remote_id=None, page=False, collection_only=False, **kwargs):
-        ''' an ordered collection of whatevers '''
-        if not queryset.ordered:
-            raise RuntimeError('queryset must be ordered')
-
-        remote_id = remote_id or self.remote_id
-        if page:
-            return to_ordered_collection_page(
-                queryset, remote_id, **kwargs)
-
-        if collection_only or not hasattr(self, 'activity_serializer'):
-            serializer = activitypub.OrderedCollection
-            activity = {}
-        else:
-            serializer = self.activity_serializer
-            # a dict from the model fields
-            activity = generate_activity(self)
-
-        if remote_id:
-            activity['id'] = remote_id
-
-        paginated = Paginator(queryset, PAGE_LENGTH)
-        # add computed fields specific to orderd collections
-        activity['totalItems'] = paginated.count
-        activity['first'] = '%s?page=1' % remote_id
-        activity['last'] = '%s?page=%d' % (remote_id, paginated.num_pages)
-
-        return serializer(**activity).serialize()
-
-
-# pylint: disable=unused-argument
-def to_ordered_collection_page(
-        queryset, remote_id, id_only=False, page=1, **kwargs):
-    ''' serialize and pagiante a queryset '''
-    paginated = Paginator(queryset, PAGE_LENGTH)
-
-    activity_page = paginated.page(page)
-    if id_only:
-        items = [s.remote_id for s in activity_page.object_list]
-    else:
-        items = [s.to_activity() for s in activity_page.object_list]
-
-    prev_page = next_page = None
-    if activity_page.has_next():
-        next_page = '%s?page=%d' % (remote_id, activity_page.next_page_number())
-    if activity_page.has_previous():
-        prev_page = '%s?page=%d' % \
-                (remote_id, activity_page.previous_page_number())
-    return activitypub.OrderedCollectionPage(
-        id='%s?page=%s' % (remote_id, page),
-        partOf=remote_id,
-        orderedItems=items,
-        next=next_page,
-        prev=prev_page
-    ).serialize()
-
-
-class OrderedCollectionMixin(OrderedCollectionPageMixin):
-    ''' extends activitypub models to work as ordered collections '''
-    @property
-    def collection_queryset(self):
-        ''' usually an ordered collection model aggregates a different model '''
-        raise NotImplementedError('Model must define collection_queryset')
-
-    activity_serializer = activitypub.OrderedCollection
-
-    def to_activity(self, **kwargs):
-        ''' an ordered collection of the specified model queryset  '''
-        return self.to_ordered_collection(self.collection_queryset, **kwargs)
-
-
-class CollectionItemMixin(ActivitypubMixin):
-    ''' for items that are part of an (Ordered)Collection '''
-    activity_serializer = activitypub.Add
-    object_field = collection_field = None
-
-    def to_add_activity(self):
-        ''' AP for shelving a book'''
-        object_field = getattr(self, self.object_field)
-        collection_field = getattr(self, self.collection_field)
-        return activitypub.Add(
-            id='%s#add' % self.remote_id,
-            actor=self.user.remote_id,
-            object=object_field.to_activity(),
-            target=collection_field.remote_id
-        ).serialize()
-
-    def to_remove_activity(self):
-        ''' AP for un-shelving a book'''
-        object_field = getattr(self, self.object_field)
-        collection_field = getattr(self, self.collection_field)
-        return activitypub.Remove(
-            id='%s#remove' % self.remote_id,
-            actor=self.user.remote_id,
-            object=object_field.to_activity(),
-            target=collection_field.remote_id
-        ).serialize()
-
-
-def generate_activity(obj):
-    ''' go through the fields on an object '''
-    activity = {}
-    for field in obj.activity_fields:
-        field.set_activity_from_field(activity, obj)
-
-    if hasattr(obj, 'serialize_reverse_fields'):
-        # for example, editions of a work
-        for model_field_name, activity_field_name, sort_field in \
-                obj.serialize_reverse_fields:
-            related_field = getattr(obj, model_field_name)
-            activity[activity_field_name] = \
-                    unfurl_related_field(related_field, sort_field)
-
-    if not activity.get('id'):
-        activity['id'] = obj.get_remote_id()
-    return activity
-
-
-def unfurl_related_field(related_field, sort_field=None):
-    ''' load reverse lookups (like public key owner or Status attachment '''
-    if hasattr(related_field, 'all'):
-        return [unfurl_related_field(i) for i in related_field.order_by(
-            sort_field).all()]
-    if related_field.reverse_unfurl:
-        return related_field.field_to_activity()
-    return related_field.remote_id
-
-
-@app.task
-def broadcast_task(sender_id, activity, recipients):
-    ''' the celery task for broadcast '''
-    user_model = apps.get_model('bookwyrm.User', require_ready=True)
-    sender = user_model.objects.get(id=sender_id)
-    errors = []
-    for recipient in recipients:
-        try:
-            sign_and_send(sender, activity, recipient)
-        except requests.exceptions.HTTPError as e:
-            errors.append({
-                'error': str(e),
-                'recipient': recipient,
-                'activity': activity,
-            })
-    return errors
-
-
-def sign_and_send(sender, data, destination):
-    ''' crpyto whatever and http junk '''
-    now = http_date()
-
-    if not sender.key_pair.private_key:
-        # this shouldn't happen. it would be bad if it happened.
-        raise ValueError('No private key found for sender')
-
-    digest = make_digest(data)
-
-    response = requests.post(
-        destination,
-        data=data,
-        headers={
-            'Date': now,
-            'Digest': digest,
-            'Signature': make_signature(sender, destination, now, digest),
-            'Content-Type': 'application/activity+json; charset=utf-8',
-            'User-Agent': USER_AGENT,
-        },
-    )
-    if not response.ok:
-        response.raise_for_status()
-    return response
-
-
-@receiver(models.signals.post_save)
-#pylint: disable=unused-argument
-def execute_after_save(sender, instance, created, *args, **kwargs):
-    ''' broadcast when a model instance is created or updated '''
-    # user content like statuses, lists, and shelves, have a "user" field
-    user = instance.user if hasattr(instance, 'user') else None
-    if user and not user.local:
-        # we don't want to broadcast when we save remote activities
-        return
-
-    if created:
-        if not user:
-            # book data and users don't need to broadcast on creation
-            return
-
-        # ordered collection items get "Add"ed
-        if hasattr(instance, 'to_add_activity'):
-            activity = instance.to_add_activity()
-        else:
-            # everything else gets "Create"d
-            activity = instance.to_create_activity(user)
-    else:
-        # now, handle updates
-        if not user:
-            # users don't have associated users, they ARE users
-            if sender.__class__ == 'User':
-                user = instance
-            # book data trakcs last editor
-            elif hasattr(instance, 'last_edited_by'):
-                user = instance.last_edited_by
-        # again, if we don't know the user or they're remote, don't bother
-        if not user or not user.local:
-            return
-        activity = instance.to_update_activity(user)
-
-    if activity and user and user.local:
-        instance.broadcast(activity, user)
diff --git a/bookwyrm/models/activitypub_mixin/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin/activitypub_mixin.py
index 61f042ee..eef5ce2b 100644
--- a/bookwyrm/models/activitypub_mixin/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin/activitypub_mixin.py
@@ -1,14 +1,9 @@
-''' base model with default fields '''
-from base64 import b64encode
+''' activitypub model functionality '''
 from functools import reduce
 import json
 import operator
-from uuid import uuid4
 import requests
 
-from Crypto.PublicKey import RSA
-from Crypto.Signature import pkcs1_15
-from Crypto.Hash import SHA256
 from django.apps import apps
 from django.db import models
 from django.db.models import Q
@@ -55,10 +50,6 @@ class ActivitypubMixin:
         super().__init__(*args, **kwargs)
 
 
-    def delete(self, *args, **kwargs):
-        ''' broadcast suitable delete activities '''
-
-
     @classmethod
     def find_existing_by_remote_id(cls, remote_id):
         ''' look up a remote id in the db '''
@@ -158,66 +149,6 @@ class ActivitypubMixin:
         return self.activity_serializer(**activity).serialize()
 
 
-    def to_create_activity(self, user, **kwargs):
-        ''' returns the object wrapped in a Create activity '''
-        activity_object = self.to_activity(**kwargs)
-
-        signature = None
-        create_id = self.remote_id + '/activity'
-        if 'content' in activity_object:
-            signer = pkcs1_15.new(RSA.import_key(user.key_pair.private_key))
-            content = activity_object['content']
-            signed_message = signer.sign(SHA256.new(content.encode('utf8')))
-
-            signature = activitypub.Signature(
-                creator='%s#main-key' % user.remote_id,
-                created=activity_object['published'],
-                signatureValue=b64encode(signed_message).decode('utf8')
-            )
-
-        return activitypub.Create(
-            id=create_id,
-            actor=user.remote_id,
-            to=activity_object['to'],
-            cc=activity_object['cc'],
-            object=activity_object,
-            signature=signature,
-        ).serialize()
-
-
-    def to_delete_activity(self, user):
-        ''' notice of deletion '''
-        return activitypub.Delete(
-            id=self.remote_id + '/activity',
-            actor=user.remote_id,
-            to=['%s/followers' % user.remote_id],
-            cc=['https://www.w3.org/ns/activitystreams#Public'],
-            object=self.to_activity(),
-        ).serialize()
-
-
-    def to_update_activity(self, user):
-        ''' wrapper for Updates to an activity '''
-        activity_id = '%s#update/%s' % (self.remote_id, uuid4())
-        return activitypub.Update(
-            id=activity_id,
-            actor=user.remote_id,
-            to=['https://www.w3.org/ns/activitystreams#Public'],
-            object=self.to_activity()
-        ).serialize()
-
-
-    def to_undo_activity(self, user):
-        ''' undo an action '''
-        return activitypub.Undo(
-            id='%s#undo' % self.remote_id,
-            actor=user.remote_id,
-            object=self.to_activity()
-        ).serialize()
-
-
-
-
 def generate_activity(obj):
     ''' go through the fields on an object '''
     activity = {}
@@ -297,13 +228,14 @@ def execute_after_save(sender, instance, created, *args, **kwargs):
     ''' broadcast when a model instance is created or updated '''
     # user content like statuses, lists, and shelves, have a "user" field
     user = instance.user if hasattr(instance, 'user') else None
+
+    # we don't want to broadcast when we save remote activities
     if user and not user.local:
-        # we don't want to broadcast when we save remote activities
         return
 
     if created:
+        # book data and users don't need to broadcast on creation
         if not user:
-            # book data and users don't need to broadcast on creation
             return
 
         # ordered collection items get "Add"ed
@@ -312,19 +244,6 @@ def execute_after_save(sender, instance, created, *args, **kwargs):
         else:
             # everything else gets "Create"d
             activity = instance.to_create_activity(user)
-    else:
-        # now, handle updates
-        if not user:
-            # users don't have associated users, they ARE users
-            if sender.__class__ == 'User':
-                user = instance
-            # book data trakcs last editor
-            elif hasattr(instance, 'last_edited_by'):
-                user = instance.last_edited_by
-        # again, if we don't know the user or they're remote, don't bother
-        if not user or not user.local:
-            return
-        activity = instance.to_update_activity(user)
 
     if activity and user and user.local:
         instance.broadcast(activity, user)
diff --git a/bookwyrm/models/activitypub_mixin/ordered_collection.py b/bookwyrm/models/activitypub_mixin/ordered_collection.py
index e755e522..954e0364 100644
--- a/bookwyrm/models/activitypub_mixin/ordered_collection.py
+++ b/bookwyrm/models/activitypub_mixin/ordered_collection.py
@@ -3,12 +3,12 @@ from django.core.paginator import Paginator
 
 from bookwyrm import activitypub
 from bookwyrm.settings import PAGE_LENGTH
-from . import ActivitypubMixin, generate_activity
+from . import ActivitypubMixin, ObjectMixin, generate_activity
 
 
-class OrderedCollectionPageMixin(ActivitypubMixin):
+class OrderedCollectionPageMixin(ObjectMixin):
     ''' just the paginator utilities, so you don't HAVE to
-        override ActivitypubMixin's to_activity (ie, for outbox '''
+        override ActivitypubMixin's to_activity (ie, for outbox) '''
     @property
     def collection_remote_id(self):
         ''' this can be overriden if there's a special remote id, ie outbox '''
diff --git a/bookwyrm/models/book.py b/bookwyrm/models/book.py
index 383668e0..ef1dd96d 100644
--- a/bookwyrm/models/book.py
+++ b/bookwyrm/models/book.py
@@ -7,11 +7,11 @@ from model_utils.managers import InheritanceManager
 from bookwyrm import activitypub
 from bookwyrm.settings import DOMAIN
 
-from .activitypub_mixin import ActivitypubMixin, OrderedCollectionPageMixin
+from .activitypub_mixin import ObjectMixin, OrderedCollectionPageMixin
 from .base_model import BookWyrmModel
 from . import fields
 
-class BookDataModel(ActivitypubMixin, BookWyrmModel):
+class BookDataModel(ObjectMixin, BookWyrmModel):
     ''' fields shared between editable book data (books, works, authors) '''
     origin_id = models.CharField(max_length=255, null=True, blank=True)
     openlibrary_key = fields.CharField(
diff --git a/bookwyrm/views/author.py b/bookwyrm/views/author.py
index ad9d1873..a1a37cc5 100644
--- a/bookwyrm/views/author.py
+++ b/bookwyrm/views/author.py
@@ -8,7 +8,6 @@ from django.views import View
 
 from bookwyrm import forms, models
 from bookwyrm.activitypub import ActivitypubResponse
-from bookwyrm.broadcast import broadcast
 from .helpers import is_api_request
 
 
@@ -62,5 +61,4 @@ class EditAuthor(View):
             return TemplateResponse(request, 'edit_author.html', data)
         author = form.save()
 
-        broadcast(request.user, author.to_update_activity(request.user))
         return redirect('/author/%s' % author.id)
diff --git a/bookwyrm/views/block.py b/bookwyrm/views/block.py
index ebcced2a..cb14aae3 100644
--- a/bookwyrm/views/block.py
+++ b/bookwyrm/views/block.py
@@ -8,7 +8,6 @@ from django.views import View
 from django.views.decorators.http import require_POST
 
 from bookwyrm import models
-from bookwyrm.broadcast import broadcast
 
 # pylint: disable= no-self-use
 @method_decorator(login_required, name='dispatch')
@@ -22,15 +21,8 @@ class Block(View):
     def post(self, request, user_id):
         ''' block a user '''
         to_block = get_object_or_404(models.User, id=user_id)
-        block = models.UserBlocks.objects.create(
+        models.UserBlocks.objects.create(
             user_subject=request.user, user_object=to_block)
-        if not to_block.local:
-            broadcast(
-                request.user,
-                block.to_activity(),
-                privacy='direct',
-                direct_recipients=[to_block]
-            )
         return redirect('/preferences/block')
 
 
@@ -46,13 +38,5 @@ def unblock(request, user_id):
         )
     except models.UserBlocks.DoesNotExist:
         return HttpResponseNotFound()
-
-    if not to_unblock.local:
-        broadcast(
-            request.user,
-            block.to_undo_activity(request.user),
-            privacy='direct',
-            direct_recipients=[to_unblock]
-        )
     block.delete()
     return redirect('/preferences/block')
diff --git a/bookwyrm/views/books.py b/bookwyrm/views/books.py
index 52704560..02c7f7b4 100644
--- a/bookwyrm/views/books.py
+++ b/bookwyrm/views/books.py
@@ -12,7 +12,6 @@ from django.views.decorators.http import require_POST
 
 from bookwyrm import forms, models
 from bookwyrm.activitypub import ActivitypubResponse
-from bookwyrm.broadcast import broadcast
 from bookwyrm.connectors import connector_manager
 from bookwyrm.settings import PAGE_LENGTH
 from .helpers import is_api_request, get_activity_feed, get_edition
@@ -136,7 +135,6 @@ class EditBook(View):
             return TemplateResponse(request, 'edit_book.html', data)
         book = form.save()
 
-        broadcast(request.user, book.to_update_activity(request.user))
         return redirect('/book/%s' % book.id)
 
 
@@ -170,7 +168,6 @@ def upload_cover(request, book_id):
     book.cover = form.files['cover']
     book.save()
 
-    broadcast(request.user, book.to_update_activity(request.user))
     return redirect('/book/%s' % book.id)
 
 
@@ -189,7 +186,6 @@ def add_description(request, book_id):
     book.description = description
     book.save()
 
-    broadcast(request.user, book.to_update_activity(request.user))
     return redirect('/book/%s' % book.id)
 
 
@@ -215,13 +211,10 @@ def switch_edition(request):
         shelf__user=request.user
     )
     for shelfbook in shelfbooks.all():
-        broadcast(request.user, shelfbook.to_remove_activity(request.user))
-
+        # TODO: this needs to be a delete and re-create
         shelfbook.book = new_edition
         shelfbook.save()
 
-        broadcast(request.user, shelfbook.to_add_activity(request.user))
-
     readthroughs = models.ReadThrough.objects.filter(
         book__parent_work=new_edition.parent_work,
         user=request.user
diff --git a/bookwyrm/views/follow.py b/bookwyrm/views/follow.py
index 08b6cca3..992b0dc1 100644
--- a/bookwyrm/views/follow.py
+++ b/bookwyrm/views/follow.py
@@ -6,7 +6,6 @@ from django.shortcuts import redirect
 from django.views.decorators.http import require_POST
 
 from bookwyrm import models
-from bookwyrm.broadcast import broadcast
 from .helpers import get_user_from_username
 
 @login_required
@@ -19,13 +18,10 @@ def follow(request):
     except models.User.DoesNotExist:
         return HttpResponseBadRequest()
 
-    relationship, _ = models.UserFollowRequest.objects.get_or_create(
+    models.UserFollowRequest.objects.get_or_create(
         user_subject=request.user,
         user_object=to_follow,
     )
-    activity = relationship.to_activity()
-    broadcast(
-        request.user, activity, privacy='direct', direct_recipients=[to_follow])
     return redirect(to_follow.local_path)
 
 
@@ -39,14 +35,10 @@ def unfollow(request):
     except models.User.DoesNotExist:
         return HttpResponseBadRequest()
 
-    relationship = models.UserFollows.objects.get(
+    models.UserFollows.objects.get(
         user_subject=request.user,
         user_object=to_unfollow
     )
-    activity = relationship.to_undo_activity(request.user)
-    broadcast(
-        request.user, activity,
-        privacy='direct', direct_recipients=[to_unfollow])
 
     to_unfollow.followers.remove(request.user)
     return redirect(to_unfollow.local_path)
@@ -77,16 +69,11 @@ def accept_follow_request(request):
 
 def handle_accept(follow_request):
     ''' send an acceptance message to a follow request '''
-    user = follow_request.user_subject
-    to_follow = follow_request.user_object
     with transaction.atomic():
         relationship = models.UserFollows.from_request(follow_request)
         follow_request.delete()
         relationship.save()
 
-    activity = relationship.to_accept_activity()
-    broadcast(to_follow, activity, privacy='direct', direct_recipients=[user])
-
 
 @login_required
 @require_POST
@@ -106,8 +93,5 @@ def delete_follow_request(request):
     except models.UserFollowRequest.DoesNotExist:
         return HttpResponseBadRequest()
 
-    activity = follow_request.to_reject_activity()
     follow_request.delete()
-    broadcast(
-        request.user, activity, privacy='direct', direct_recipients=[requester])
     return redirect('/user/%s' % request.user.localname)
diff --git a/bookwyrm/views/goal.py b/bookwyrm/views/goal.py
index 0496848f..87404b10 100644
--- a/bookwyrm/views/goal.py
+++ b/bookwyrm/views/goal.py
@@ -7,7 +7,6 @@ from django.utils.decorators import method_decorator
 from django.views import View
 
 from bookwyrm import forms, models
-from bookwyrm.broadcast import broadcast
 from bookwyrm.status import create_generated_note
 from .helpers import get_user_from_username, object_visible_to_user
 
@@ -63,23 +62,10 @@ class Goal(View):
 
         if request.POST.get('post-status'):
             # create status, if appropraite
-            status = create_generated_note(
+            create_generated_note(
                 request.user,
                 'set a goal to read %d books in %d' % (goal.goal, goal.year),
                 privacy=goal.privacy
             )
-            broadcast(
-                request.user,
-                status.to_create_activity(request.user),
-                privacy=status.privacy,
-                software='bookwyrm')
-
-            # re-format the activity for non-bookwyrm servers
-            remote_activity = status.to_create_activity(request.user, pure=True)
-            broadcast(
-                request.user,
-                remote_activity,
-                privacy=status.privacy,
-                software='other')
 
         return redirect(request.headers.get('Referer', '/'))
diff --git a/bookwyrm/views/helpers.py b/bookwyrm/views/helpers.py
index 8742884f..842b8d1c 100644
--- a/bookwyrm/views/helpers.py
+++ b/bookwyrm/views/helpers.py
@@ -4,7 +4,6 @@ from requests import HTTPError
 from django.db.models import Q
 
 from bookwyrm import activitypub, models
-from bookwyrm.broadcast import broadcast
 from bookwyrm.connectors import ConnectorException, get_data
 from bookwyrm.status import create_generated_note
 from bookwyrm.utils import regex
@@ -199,7 +198,6 @@ def handle_reading_status(user, shelf, book, privacy):
     )
     status.save()
 
-    broadcast(user, status.to_create_activity(user))
 
 def is_blocked(viewer, user):
     ''' is this viewer blocked by the user? '''
diff --git a/bookwyrm/views/interaction.py b/bookwyrm/views/interaction.py
index a6732c52..ebee4719 100644
--- a/bookwyrm/views/interaction.py
+++ b/bookwyrm/views/interaction.py
@@ -7,7 +7,6 @@ from django.utils.decorators import method_decorator
 from django.views import View
 
 from bookwyrm import models
-from bookwyrm.broadcast import broadcast
 from bookwyrm.status import create_notification
 
 
@@ -19,7 +18,7 @@ class Favorite(View):
         ''' create a like '''
         status = models.Status.objects.get(id=status_id)
         try:
-            favorite = models.Favorite.objects.create(
+            models.Favorite.objects.create(
                 status=status,
                 user=request.user
             )
@@ -27,10 +26,6 @@ class Favorite(View):
             # you already fav'ed that
             return HttpResponseBadRequest()
 
-        fav_activity = favorite.to_activity()
-        broadcast(
-            request.user, fav_activity, privacy='direct',
-            direct_recipients=[status.user])
         if status.user.local:
             create_notification(
                 status.user,
@@ -56,9 +51,7 @@ class Unfavorite(View):
             # can't find that status, idk
             return HttpResponseNotFound()
 
-        fav_activity = favorite.to_undo_activity(request.user)
         favorite.delete()
-        broadcast(request.user, fav_activity, direct_recipients=[status.user])
 
         # check for notification
         if status.user.local:
@@ -86,15 +79,12 @@ class Boost(View):
             # you already boosted that.
             return redirect(request.headers.get('Referer', '/'))
 
-        boost = models.Boost.objects.create(
+        models.Boost.objects.create(
             boosted_status=status,
             privacy=status.privacy,
             user=request.user,
         )
 
-        boost_activity = boost.to_activity()
-        broadcast(request.user, boost_activity)
-
         if status.user.local:
             create_notification(
                 status.user,
@@ -114,10 +104,8 @@ class Unboost(View):
         boost = models.Boost.objects.filter(
             boosted_status=status, user=request.user
         ).first()
-        activity = boost.to_undo_activity(request.user)
 
         boost.delete()
-        broadcast(request.user, activity)
 
         # delete related notification
         if status.user.local:
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index 5128c2b0..17c0e2f3 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -11,7 +11,6 @@ from django.views.decorators.http import require_POST
 
 from bookwyrm import forms, models
 from bookwyrm.activitypub import ActivitypubResponse
-from bookwyrm.broadcast import broadcast
 from bookwyrm.connectors import connector_manager
 from .helpers import is_api_request, object_visible_to_user, privacy_filter
 from .helpers import get_user_from_username
@@ -51,13 +50,6 @@ class Lists(View):
             return redirect('lists')
         book_list = form.save()
 
-        # let the world know
-        broadcast(
-            request.user,
-            book_list.to_create_activity(request.user),
-            privacy=book_list.privacy,
-            software='bookwyrm'
-        )
         return redirect(book_list.local_path)
 
 class UserLists(View):
@@ -138,13 +130,6 @@ class List(View):
         if not form.is_valid():
             return redirect('list', book_list.id)
         book_list = form.save()
-        # let the world know
-        broadcast(
-            request.user,
-            book_list.to_update_activity(request.user),
-            privacy=book_list.privacy,
-            software='bookwyrm'
-        )
         return redirect(book_list.local_path)
 
 
@@ -178,13 +163,6 @@ class Curate(View):
         if approved:
             suggestion.approved = True
             suggestion.save()
-            # let the world know
-            broadcast(
-                request.user,
-                suggestion.to_add_activity(request.user),
-                privacy=book_list.privacy,
-                software='bookwyrm'
-            )
         else:
             suggestion.delete()
         return redirect('list-curate', book_list.id)
@@ -201,18 +179,11 @@ def add_book(request, list_id):
     # do you have permission to add to the list?
     if request.user == book_list.user or book_list.curation == 'open':
         # go ahead and add it
-        item = models.ListItem.objects.create(
+        models.ListItem.objects.create(
             book=book,
             book_list=book_list,
             added_by=request.user,
         )
-        # let the world know
-        broadcast(
-            request.user,
-            item.to_add_activity(request.user),
-            privacy=book_list.privacy,
-            software='bookwyrm'
-        )
     elif book_list.curation == 'curated':
         # make a pending entry
         models.ListItem.objects.create(
@@ -237,13 +208,5 @@ def remove_book(request, list_id):
     if not book_list.user == request.user and not item.added_by == request.user:
         return HttpResponseNotFound()
 
-    activity = item.to_remove_activity(request.user)
     item.delete()
-    # let the world know
-    broadcast(
-        request.user,
-        activity,
-        privacy=book_list.privacy,
-        software='bookwyrm'
-    )
     return redirect('list', list_id)
diff --git a/bookwyrm/views/reading.py b/bookwyrm/views/reading.py
index c2c72509..ba6c8a4a 100644
--- a/bookwyrm/views/reading.py
+++ b/bookwyrm/views/reading.py
@@ -9,7 +9,6 @@ from django.utils import timezone
 from django.views.decorators.http import require_POST
 
 from bookwyrm import models
-from bookwyrm.broadcast import broadcast
 from .helpers import get_edition, handle_reading_status
 from .shelf import handle_unshelve
 
@@ -44,9 +43,8 @@ def start_reading(request, book_id):
         except models.Shelf.DoesNotExist:
             # this just means it isn't currently on the user's shelves
             pass
-    shelfbook = models.ShelfBook.objects.create(
+    models.ShelfBook.objects.create(
         book=book, shelf=shelf, added_by=request.user)
-    broadcast(request.user, shelfbook.to_add_activity(request.user))
 
     # post about it (if you want)
     if request.POST.get('post-status'):
@@ -82,9 +80,8 @@ def finish_reading(request, book_id):
         except models.Shelf.DoesNotExist:
             # this just means it isn't currently on the user's shelves
             pass
-    shelfbook = models.ShelfBook.objects.create(
+    models.ShelfBook.objects.create(
         book=book, shelf=shelf, added_by=request.user)
-    broadcast(request.user, shelfbook.to_add_activity(request.user))
 
     # post about it (if you want)
     if request.POST.get('post-status'):
diff --git a/bookwyrm/views/shelf.py b/bookwyrm/views/shelf.py
index 508d5ea5..dca53ace 100644
--- a/bookwyrm/views/shelf.py
+++ b/bookwyrm/views/shelf.py
@@ -9,7 +9,6 @@ from django.views.decorators.http import require_POST
 
 from bookwyrm import forms, models
 from bookwyrm.activitypub import ActivitypubResponse
-from bookwyrm.broadcast import broadcast
 from .helpers import is_api_request, get_edition, get_user_from_username
 from .helpers import handle_reading_status
 
@@ -136,14 +135,8 @@ def shelve(request):
         except models.Shelf.DoesNotExist:
             # this just means it isn't currently on the user's shelves
             pass
-    shelfbook = models.ShelfBook.objects.create(
+    models.ShelfBook.objects.create(
         book=book, shelf=desired_shelf, added_by=request.user)
-    broadcast(
-        request.user,
-        shelfbook.to_add_activity(request.user),
-        privacy=shelfbook.shelf.privacy,
-        software='bookwyrm'
-    )
 
     # post about "want to read" shelves
     if desired_shelf.identifier == 'to-read':
@@ -168,10 +161,8 @@ def unshelve(request):
     return redirect(request.headers.get('Referer', '/'))
 
 
+#pylint: disable=unused-argument
 def handle_unshelve(user, book, shelf):
     ''' unshelve a book '''
     row = models.ShelfBook.objects.get(book=book, shelf=shelf)
-    activity = row.to_remove_activity(user)
     row.delete()
-
-    broadcast(user, activity, privacy=shelf.privacy, software='bookwyrm')
diff --git a/bookwyrm/views/status.py b/bookwyrm/views/status.py
index 4d342bfb..4b2b4519 100644
--- a/bookwyrm/views/status.py
+++ b/bookwyrm/views/status.py
@@ -8,7 +8,6 @@ from django.views import View
 from markdown import markdown
 
 from bookwyrm import forms, models
-from bookwyrm.broadcast import broadcast
 from bookwyrm.sanitize_html import InputHtmlParser
 from bookwyrm.settings import DOMAIN
 from bookwyrm.status import create_notification, delete_status
@@ -84,15 +83,6 @@ class CreateStatus(View):
             status.quote = to_markdown(status.quote)
 
         status.save()
-
-        broadcast(
-            request.user,
-            status.to_create_activity(request.user),
-            software='bookwyrm')
-
-        # re-format the activity for non-bookwyrm servers
-        remote_activity = status.to_create_activity(request.user, pure=True)
-        broadcast(request.user, remote_activity, software='other')
         return redirect(request.headers.get('Referer', '/'))
 
 
@@ -108,7 +98,6 @@ class DeleteStatus(View):
 
         # perform deletion
         delete_status(status)
-        broadcast(request.user, status.to_delete_activity(request.user))
         return redirect(request.headers.get('Referer', '/'))
 
 def find_mentions(content):
diff --git a/bookwyrm/views/tag.py b/bookwyrm/views/tag.py
index e95ffe81..b50bc0ef 100644
--- a/bookwyrm/views/tag.py
+++ b/bookwyrm/views/tag.py
@@ -8,7 +8,6 @@ from django.views import View
 
 from bookwyrm import models
 from bookwyrm.activitypub import ActivitypubResponse
-from bookwyrm.broadcast import broadcast
 from .helpers import is_api_request
 
 
@@ -45,17 +44,15 @@ class AddTag(View):
         name = request.POST.get('name')
         book_id = request.POST.get('book')
         book = get_object_or_404(models.Edition, id=book_id)
-        tag_obj, created = models.Tag.objects.get_or_create(
+        tag_obj, _ = models.Tag.objects.get_or_create(
             name=name,
         )
-        user_tag, _ = models.UserTag.objects.get_or_create(
+        models.UserTag.objects.get_or_create(
             user=request.user,
             book=book,
             tag=tag_obj,
         )
 
-        if created:
-            broadcast(request.user, user_tag.to_add_activity(request.user))
         return redirect('/book/%s' % book_id)
 
 
@@ -71,8 +68,6 @@ class RemoveTag(View):
 
         user_tag = get_object_or_404(
             models.UserTag, tag=tag_obj, book=book, user=request.user)
-        tag_activity = user_tag.to_remove_activity(request.user)
         user_tag.delete()
 
-        broadcast(request.user, tag_activity)
         return redirect('/book/%s' % book_id)
diff --git a/bookwyrm/views/user.py b/bookwyrm/views/user.py
index a06face2..4da0fdac 100644
--- a/bookwyrm/views/user.py
+++ b/bookwyrm/views/user.py
@@ -15,7 +15,6 @@ from django.views import View
 
 from bookwyrm import forms, models
 from bookwyrm.activitypub import ActivitypubResponse
-from bookwyrm.broadcast import broadcast
 from bookwyrm.settings import PAGE_LENGTH
 from .helpers import get_activity_feed, get_user_from_username, is_api_request
 from .helpers import is_blocked, object_visible_to_user
@@ -176,7 +175,6 @@ class EditUser(View):
             user.avatar.save(filename, image)
         user.save()
 
-        broadcast(user, user.to_update_activity(user))
         return redirect(user.local_path)
 
 

From 5a3a6151a6304f688ab98dfe20d44e51cacdbc16 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Thu, 4 Feb 2021 13:22:27 -0800
Subject: [PATCH 123/280] separate mixins for AP types

---
 .../activitypub_mixin/activity_mixin.py       | 25 +++++
 .../models/activitypub_mixin/object_mixin.py  | 94 +++++++++++++++++++
 2 files changed, 119 insertions(+)
 create mode 100644 bookwyrm/models/activitypub_mixin/activity_mixin.py
 create mode 100644 bookwyrm/models/activitypub_mixin/object_mixin.py

diff --git a/bookwyrm/models/activitypub_mixin/activity_mixin.py b/bookwyrm/models/activitypub_mixin/activity_mixin.py
new file mode 100644
index 00000000..fc74fe17
--- /dev/null
+++ b/bookwyrm/models/activitypub_mixin/activity_mixin.py
@@ -0,0 +1,25 @@
+''' activitypub model functionality '''
+from bookwyrm import activitypub
+from . import ActivitypubMixin
+
+class ActivitybMixin(ActivitypubMixin):
+    ''' add this mixin for models that are AP serializable '''
+
+    def save(self, *args, **kwargs):
+        ''' broadcast activity '''
+        super().save(*args, **kwargs)
+        self.broadcast(self.to_activity(), self.user)
+
+    def delete(self, *args, **kwargs):
+        ''' nevermind, undo that activity '''
+        self.broadcast(self.to_undo_activity(), self.user)
+        super().delete(*args, **kwargs)
+
+
+    def to_undo_activity(self):
+        ''' undo an action '''
+        return activitypub.Undo(
+            id='%s#undo' % self.remote_id,
+            actor=self.user.remote_id,
+            object=self.to_activity()
+        ).serialize()
diff --git a/bookwyrm/models/activitypub_mixin/object_mixin.py b/bookwyrm/models/activitypub_mixin/object_mixin.py
new file mode 100644
index 00000000..2eddf813
--- /dev/null
+++ b/bookwyrm/models/activitypub_mixin/object_mixin.py
@@ -0,0 +1,94 @@
+''' activitypub objects like Person and Book'''
+from base64 import b64encode
+from uuid import uuid4
+
+from Crypto.PublicKey import RSA
+from Crypto.Signature import pkcs1_15
+from Crypto.Hash import SHA256
+from django.apps import apps
+
+from bookwyrm import activitypub
+from . import ActivitypubMixin
+
+
+class ObjectMixin(ActivitypubMixin):
+    ''' add this mixin for object models that are AP serializable '''
+
+    def save(self, *args, **kwargs):
+        ''' broadcast updated '''
+        # first off, we want to save normally no matter what
+        super().save(*args, **kwargs)
+
+        # we only want to handle updates, not newly created objects
+        if not self.id:
+            return
+
+        # this will work for lists, shelves
+        user = self.user if hasattr(self, 'user') else None
+        if not user:
+            # users don't have associated users, they ARE users
+            user_model = apps.get_model('bookwyrm.User', require_ready=True)
+            if isinstance(self, user_model):
+                user = self
+            # book data tracks last editor
+            elif hasattr(self, 'last_edited_by'):
+                user = self.last_edited_by
+        # again, if we don't know the user or they're remote, don't bother
+        if not user or not user.local:
+            return
+
+        # is this a deletion?
+        if self.deleted:
+            activity = self.to_delete_activity(user)
+        else:
+            activity = self.to_update_activity(user)
+        self.broadcast(activity, user)
+
+
+    def to_create_activity(self, user, **kwargs):
+        ''' returns the object wrapped in a Create activity '''
+        activity_object = self.to_activity(**kwargs)
+
+        signature = None
+        create_id = self.remote_id + '/activity'
+        if 'content' in activity_object:
+            signer = pkcs1_15.new(RSA.import_key(user.key_pair.private_key))
+            content = activity_object['content']
+            signed_message = signer.sign(SHA256.new(content.encode('utf8')))
+
+            signature = activitypub.Signature(
+                creator='%s#main-key' % user.remote_id,
+                created=activity_object['published'],
+                signatureValue=b64encode(signed_message).decode('utf8')
+            )
+
+        return activitypub.Create(
+            id=create_id,
+            actor=user.remote_id,
+            to=activity_object['to'],
+            cc=activity_object['cc'],
+            object=activity_object,
+            signature=signature,
+        ).serialize()
+
+
+    def to_delete_activity(self, user):
+        ''' notice of deletion '''
+        return activitypub.Delete(
+            id=self.remote_id + '/activity',
+            actor=user.remote_id,
+            to=['%s/followers' % user.remote_id],
+            cc=['https://www.w3.org/ns/activitystreams#Public'],
+            object=self.to_activity(),
+        ).serialize()
+
+
+    def to_update_activity(self, user):
+        ''' wrapper for Updates to an activity '''
+        activity_id = '%s#update/%s' % (self.remote_id, uuid4())
+        return activitypub.Update(
+            id=activity_id,
+            actor=user.remote_id,
+            to=['https://www.w3.org/ns/activitystreams#Public'],
+            object=self.to_activity()
+        ).serialize()

From 7381536ad6f92be6bbea01e90f76691726daf727 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Thu, 4 Feb 2021 14:27:26 -0800
Subject: [PATCH 124/280] circular import issues and added_by migration

---
 bookwyrm/goodreads_import.py                  |   4 +-
 .../migrations/0043_auto_20210204_2223.py     |  23 ++
 .../activitypub_mixin.py                      | 226 +++++++++++++++++-
 bookwyrm/models/activitypub_mixin/__init__.py |   1 -
 .../activitypub_mixin/activity_mixin.py       |  25 --
 .../models/activitypub_mixin/object_mixin.py  |  94 --------
 .../activitypub_mixin/ordered_collection.py   | 115 ---------
 bookwyrm/models/book.py                       |   2 +-
 bookwyrm/templates/lists/curate.html          |   2 +-
 bookwyrm/templates/lists/list.html            |   4 +-
 bookwyrm/tests/models/test_list.py            |   2 +-
 bookwyrm/tests/test_goodreads_import.py       |   2 +-
 bookwyrm/tests/views/test_feed.py             |   2 +-
 bookwyrm/tests/views/test_list.py             |  16 +-
 bookwyrm/tests/views/test_reading.py          |   2 +-
 bookwyrm/views/books.py                       |   4 +-
 bookwyrm/views/list.py                        |   6 +-
 bookwyrm/views/reading.py                     |   4 +-
 bookwyrm/views/shelf.py                       |   4 +-
 19 files changed, 273 insertions(+), 265 deletions(-)
 create mode 100644 bookwyrm/migrations/0043_auto_20210204_2223.py
 rename bookwyrm/models/{activitypub_mixin => }/activitypub_mixin.py (52%)
 delete mode 100644 bookwyrm/models/activitypub_mixin/__init__.py
 delete mode 100644 bookwyrm/models/activitypub_mixin/activity_mixin.py
 delete mode 100644 bookwyrm/models/activitypub_mixin/object_mixin.py
 delete mode 100644 bookwyrm/models/activitypub_mixin/ordered_collection.py

diff --git a/bookwyrm/goodreads_import.py b/bookwyrm/goodreads_import.py
index 606705c8..3dcdc2f0 100644
--- a/bookwyrm/goodreads_import.py
+++ b/bookwyrm/goodreads_import.py
@@ -81,7 +81,7 @@ def handle_imported_book(user, item, include_reviews, privacy):
         return
 
     existing_shelf = models.ShelfBook.objects.filter(
-        book=item.book, added_by=user).exists()
+        book=item.book, user=user).exists()
 
     # shelve the book if it hasn't been shelved already
     if item.shelf and not existing_shelf:
@@ -90,7 +90,7 @@ def handle_imported_book(user, item, include_reviews, privacy):
             user=user
         )
         models.ShelfBook.objects.create(
-            book=item.book, shelf=desired_shelf, added_by=user)
+            book=item.book, shelf=desired_shelf, user=user)
 
     for read in item.reads:
         # check for an existing readthrough with the same dates
diff --git a/bookwyrm/migrations/0043_auto_20210204_2223.py b/bookwyrm/migrations/0043_auto_20210204_2223.py
new file mode 100644
index 00000000..b9c328ea
--- /dev/null
+++ b/bookwyrm/migrations/0043_auto_20210204_2223.py
@@ -0,0 +1,23 @@
+# Generated by Django 3.0.7 on 2021-02-04 22:23
+
+from django.db import migrations
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('bookwyrm', '0042_auto_20210201_2108'),
+    ]
+
+    operations = [
+        migrations.RenameField(
+            model_name='listitem',
+            old_name='added_by',
+            new_name='user',
+        ),
+        migrations.RenameField(
+            model_name='shelfbook',
+            old_name='added_by',
+            new_name='user',
+        ),
+    ]
diff --git a/bookwyrm/models/activitypub_mixin/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
similarity index 52%
rename from bookwyrm/models/activitypub_mixin/activitypub_mixin.py
rename to bookwyrm/models/activitypub_mixin.py
index eef5ce2b..eee916bb 100644
--- a/bookwyrm/models/activitypub_mixin/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -2,20 +2,25 @@
 from functools import reduce
 import json
 import operator
+from base64 import b64encode
+from uuid import uuid4
 import requests
 
+from Crypto.PublicKey import RSA
+from Crypto.Signature import pkcs1_15
+from Crypto.Hash import SHA256
 from django.apps import apps
+from django.core.paginator import Paginator
 from django.db import models
 from django.db.models import Q
 from django.dispatch import receiver
 from django.utils.http import http_date
 
-
 from bookwyrm import activitypub
-from bookwyrm.settings import USER_AGENT
+from bookwyrm.settings import USER_AGENT, PAGE_LENGTH
 from bookwyrm.signatures import make_signature, make_digest
 from bookwyrm.tasks import app
-from .fields import ImageField, ManyToManyField
+from bookwyrm.models.fields import ImageField, ManyToManyField
 
 
 class ActivitypubMixin:
@@ -247,3 +252,218 @@ def execute_after_save(sender, instance, created, *args, **kwargs):
 
     if activity and user and user.local:
         instance.broadcast(activity, user)
+
+
+class ObjectMixin(ActivitypubMixin):
+    ''' add this mixin for object models that are AP serializable '''
+
+    def save(self, *args, **kwargs):
+        ''' broadcast updated '''
+        # first off, we want to save normally no matter what
+        super().save(*args, **kwargs)
+
+        # we only want to handle updates, not newly created objects
+        if not self.id:
+            return
+
+        # this will work for lists, shelves
+        user = self.user if hasattr(self, 'user') else None
+        if not user:
+            # users don't have associated users, they ARE users
+            user_model = apps.get_model('bookwyrm.User', require_ready=True)
+            if isinstance(self, user_model):
+                user = self
+            # book data tracks last editor
+            elif hasattr(self, 'last_edited_by'):
+                user = self.last_edited_by
+        # again, if we don't know the user or they're remote, don't bother
+        if not user or not user.local:
+            return
+
+        # is this a deletion?
+        if self.deleted:
+            activity = self.to_delete_activity(user)
+        else:
+            activity = self.to_update_activity(user)
+        self.broadcast(activity, user)
+
+
+    def to_create_activity(self, user, **kwargs):
+        ''' returns the object wrapped in a Create activity '''
+        activity_object = self.to_activity(**kwargs)
+
+        signature = None
+        create_id = self.remote_id + '/activity'
+        if 'content' in activity_object:
+            signer = pkcs1_15.new(RSA.import_key(user.key_pair.private_key))
+            content = activity_object['content']
+            signed_message = signer.sign(SHA256.new(content.encode('utf8')))
+
+            signature = activitypub.Signature(
+                creator='%s#main-key' % user.remote_id,
+                created=activity_object['published'],
+                signatureValue=b64encode(signed_message).decode('utf8')
+            )
+
+        return activitypub.Create(
+            id=create_id,
+            actor=user.remote_id,
+            to=activity_object['to'],
+            cc=activity_object['cc'],
+            object=activity_object,
+            signature=signature,
+        ).serialize()
+
+
+    def to_delete_activity(self, user):
+        ''' notice of deletion '''
+        return activitypub.Delete(
+            id=self.remote_id + '/activity',
+            actor=user.remote_id,
+            to=['%s/followers' % user.remote_id],
+            cc=['https://www.w3.org/ns/activitystreams#Public'],
+            object=self.to_activity(),
+        ).serialize()
+
+
+    def to_update_activity(self, user):
+        ''' wrapper for Updates to an activity '''
+        activity_id = '%s#update/%s' % (self.remote_id, uuid4())
+        return activitypub.Update(
+            id=activity_id,
+            actor=user.remote_id,
+            to=['https://www.w3.org/ns/activitystreams#Public'],
+            object=self.to_activity()
+        ).serialize()
+
+
+class OrderedCollectionPageMixin(ObjectMixin):
+    ''' just the paginator utilities, so you don't HAVE to
+        override ActivitypubMixin's to_activity (ie, for outbox) '''
+    @property
+    def collection_remote_id(self):
+        ''' this can be overriden if there's a special remote id, ie outbox '''
+        return self.remote_id
+
+
+    def to_ordered_collection(self, queryset, \
+            remote_id=None, page=False, collection_only=False, **kwargs):
+        ''' an ordered collection of whatevers '''
+        if not queryset.ordered:
+            raise RuntimeError('queryset must be ordered')
+
+        remote_id = remote_id or self.remote_id
+        if page:
+            return to_ordered_collection_page(
+                queryset, remote_id, **kwargs)
+
+        if collection_only or not hasattr(self, 'activity_serializer'):
+            serializer = activitypub.OrderedCollection
+            activity = {}
+        else:
+            serializer = self.activity_serializer
+            # a dict from the model fields
+            activity = generate_activity(self)
+
+        if remote_id:
+            activity['id'] = remote_id
+
+        paginated = Paginator(queryset, PAGE_LENGTH)
+        # add computed fields specific to orderd collections
+        activity['totalItems'] = paginated.count
+        activity['first'] = '%s?page=1' % remote_id
+        activity['last'] = '%s?page=%d' % (remote_id, paginated.num_pages)
+
+        return serializer(**activity).serialize()
+
+
+# pylint: disable=unused-argument
+def to_ordered_collection_page(
+        queryset, remote_id, id_only=False, page=1, **kwargs):
+    ''' serialize and pagiante a queryset '''
+    paginated = Paginator(queryset, PAGE_LENGTH)
+
+    activity_page = paginated.page(page)
+    if id_only:
+        items = [s.remote_id for s in activity_page.object_list]
+    else:
+        items = [s.to_activity() for s in activity_page.object_list]
+
+    prev_page = next_page = None
+    if activity_page.has_next():
+        next_page = '%s?page=%d' % (remote_id, activity_page.next_page_number())
+    if activity_page.has_previous():
+        prev_page = '%s?page=%d' % \
+                (remote_id, activity_page.previous_page_number())
+    return activitypub.OrderedCollectionPage(
+        id='%s?page=%s' % (remote_id, page),
+        partOf=remote_id,
+        orderedItems=items,
+        next=next_page,
+        prev=prev_page
+    ).serialize()
+
+
+class OrderedCollectionMixin(OrderedCollectionPageMixin):
+    ''' extends activitypub models to work as ordered collections '''
+    @property
+    def collection_queryset(self):
+        ''' usually an ordered collection model aggregates a different model '''
+        raise NotImplementedError('Model must define collection_queryset')
+
+    activity_serializer = activitypub.OrderedCollection
+
+    def to_activity(self, **kwargs):
+        ''' an ordered collection of the specified model queryset  '''
+        return self.to_ordered_collection(self.collection_queryset, **kwargs)
+
+
+class CollectionItemMixin(ActivitypubMixin):
+    ''' for items that are part of an (Ordered)Collection '''
+    activity_serializer = activitypub.Add
+    object_field = collection_field = None
+
+    def to_add_activity(self):
+        ''' AP for shelving a book'''
+        object_field = getattr(self, self.object_field)
+        collection_field = getattr(self, self.collection_field)
+        return activitypub.Add(
+            id='%s#add' % self.remote_id,
+            actor=self.user.remote_id,
+            object=object_field.to_activity(),
+            target=collection_field.remote_id
+        ).serialize()
+
+    def to_remove_activity(self):
+        ''' AP for un-shelving a book'''
+        object_field = getattr(self, self.object_field)
+        collection_field = getattr(self, self.collection_field)
+        return activitypub.Remove(
+            id='%s#remove' % self.remote_id,
+            actor=self.user.remote_id,
+            object=object_field.to_activity(),
+            target=collection_field.remote_id
+        ).serialize()
+
+
+class ActivitybMixin(ActivitypubMixin):
+    ''' add this mixin for models that are AP serializable '''
+
+    def save(self, *args, **kwargs):
+        ''' broadcast activity '''
+        super().save(*args, **kwargs)
+        self.broadcast(self.to_activity(), self.user)
+
+    def delete(self, *args, **kwargs):
+        ''' nevermind, undo that activity '''
+        self.broadcast(self.to_undo_activity(), self.user)
+        super().delete(*args, **kwargs)
+
+
+    def to_undo_activity(self):
+        ''' undo an action '''
+        return activitypub.Undo(
+            id='%s#undo' % self.remote_id,
+            actor=self.user.remote_id,
+            object=self.to_activity()
+        ).serialize()
diff --git a/bookwyrm/models/activitypub_mixin/__init__.py b/bookwyrm/models/activitypub_mixin/__init__.py
deleted file mode 100644
index b6e690fd..00000000
--- a/bookwyrm/models/activitypub_mixin/__init__.py
+++ /dev/null
@@ -1 +0,0 @@
-from . import *
diff --git a/bookwyrm/models/activitypub_mixin/activity_mixin.py b/bookwyrm/models/activitypub_mixin/activity_mixin.py
deleted file mode 100644
index fc74fe17..00000000
--- a/bookwyrm/models/activitypub_mixin/activity_mixin.py
+++ /dev/null
@@ -1,25 +0,0 @@
-''' activitypub model functionality '''
-from bookwyrm import activitypub
-from . import ActivitypubMixin
-
-class ActivitybMixin(ActivitypubMixin):
-    ''' add this mixin for models that are AP serializable '''
-
-    def save(self, *args, **kwargs):
-        ''' broadcast activity '''
-        super().save(*args, **kwargs)
-        self.broadcast(self.to_activity(), self.user)
-
-    def delete(self, *args, **kwargs):
-        ''' nevermind, undo that activity '''
-        self.broadcast(self.to_undo_activity(), self.user)
-        super().delete(*args, **kwargs)
-
-
-    def to_undo_activity(self):
-        ''' undo an action '''
-        return activitypub.Undo(
-            id='%s#undo' % self.remote_id,
-            actor=self.user.remote_id,
-            object=self.to_activity()
-        ).serialize()
diff --git a/bookwyrm/models/activitypub_mixin/object_mixin.py b/bookwyrm/models/activitypub_mixin/object_mixin.py
deleted file mode 100644
index 2eddf813..00000000
--- a/bookwyrm/models/activitypub_mixin/object_mixin.py
+++ /dev/null
@@ -1,94 +0,0 @@
-''' activitypub objects like Person and Book'''
-from base64 import b64encode
-from uuid import uuid4
-
-from Crypto.PublicKey import RSA
-from Crypto.Signature import pkcs1_15
-from Crypto.Hash import SHA256
-from django.apps import apps
-
-from bookwyrm import activitypub
-from . import ActivitypubMixin
-
-
-class ObjectMixin(ActivitypubMixin):
-    ''' add this mixin for object models that are AP serializable '''
-
-    def save(self, *args, **kwargs):
-        ''' broadcast updated '''
-        # first off, we want to save normally no matter what
-        super().save(*args, **kwargs)
-
-        # we only want to handle updates, not newly created objects
-        if not self.id:
-            return
-
-        # this will work for lists, shelves
-        user = self.user if hasattr(self, 'user') else None
-        if not user:
-            # users don't have associated users, they ARE users
-            user_model = apps.get_model('bookwyrm.User', require_ready=True)
-            if isinstance(self, user_model):
-                user = self
-            # book data tracks last editor
-            elif hasattr(self, 'last_edited_by'):
-                user = self.last_edited_by
-        # again, if we don't know the user or they're remote, don't bother
-        if not user or not user.local:
-            return
-
-        # is this a deletion?
-        if self.deleted:
-            activity = self.to_delete_activity(user)
-        else:
-            activity = self.to_update_activity(user)
-        self.broadcast(activity, user)
-
-
-    def to_create_activity(self, user, **kwargs):
-        ''' returns the object wrapped in a Create activity '''
-        activity_object = self.to_activity(**kwargs)
-
-        signature = None
-        create_id = self.remote_id + '/activity'
-        if 'content' in activity_object:
-            signer = pkcs1_15.new(RSA.import_key(user.key_pair.private_key))
-            content = activity_object['content']
-            signed_message = signer.sign(SHA256.new(content.encode('utf8')))
-
-            signature = activitypub.Signature(
-                creator='%s#main-key' % user.remote_id,
-                created=activity_object['published'],
-                signatureValue=b64encode(signed_message).decode('utf8')
-            )
-
-        return activitypub.Create(
-            id=create_id,
-            actor=user.remote_id,
-            to=activity_object['to'],
-            cc=activity_object['cc'],
-            object=activity_object,
-            signature=signature,
-        ).serialize()
-
-
-    def to_delete_activity(self, user):
-        ''' notice of deletion '''
-        return activitypub.Delete(
-            id=self.remote_id + '/activity',
-            actor=user.remote_id,
-            to=['%s/followers' % user.remote_id],
-            cc=['https://www.w3.org/ns/activitystreams#Public'],
-            object=self.to_activity(),
-        ).serialize()
-
-
-    def to_update_activity(self, user):
-        ''' wrapper for Updates to an activity '''
-        activity_id = '%s#update/%s' % (self.remote_id, uuid4())
-        return activitypub.Update(
-            id=activity_id,
-            actor=user.remote_id,
-            to=['https://www.w3.org/ns/activitystreams#Public'],
-            object=self.to_activity()
-        ).serialize()
diff --git a/bookwyrm/models/activitypub_mixin/ordered_collection.py b/bookwyrm/models/activitypub_mixin/ordered_collection.py
deleted file mode 100644
index 954e0364..00000000
--- a/bookwyrm/models/activitypub_mixin/ordered_collection.py
+++ /dev/null
@@ -1,115 +0,0 @@
-''' lists of objects '''
-from django.core.paginator import Paginator
-
-from bookwyrm import activitypub
-from bookwyrm.settings import PAGE_LENGTH
-from . import ActivitypubMixin, ObjectMixin, generate_activity
-
-
-class OrderedCollectionPageMixin(ObjectMixin):
-    ''' just the paginator utilities, so you don't HAVE to
-        override ActivitypubMixin's to_activity (ie, for outbox) '''
-    @property
-    def collection_remote_id(self):
-        ''' this can be overriden if there's a special remote id, ie outbox '''
-        return self.remote_id
-
-
-    def to_ordered_collection(self, queryset, \
-            remote_id=None, page=False, collection_only=False, **kwargs):
-        ''' an ordered collection of whatevers '''
-        if not queryset.ordered:
-            raise RuntimeError('queryset must be ordered')
-
-        remote_id = remote_id or self.remote_id
-        if page:
-            return to_ordered_collection_page(
-                queryset, remote_id, **kwargs)
-
-        if collection_only or not hasattr(self, 'activity_serializer'):
-            serializer = activitypub.OrderedCollection
-            activity = {}
-        else:
-            serializer = self.activity_serializer
-            # a dict from the model fields
-            activity = generate_activity(self)
-
-        if remote_id:
-            activity['id'] = remote_id
-
-        paginated = Paginator(queryset, PAGE_LENGTH)
-        # add computed fields specific to orderd collections
-        activity['totalItems'] = paginated.count
-        activity['first'] = '%s?page=1' % remote_id
-        activity['last'] = '%s?page=%d' % (remote_id, paginated.num_pages)
-
-        return serializer(**activity).serialize()
-
-
-# pylint: disable=unused-argument
-def to_ordered_collection_page(
-        queryset, remote_id, id_only=False, page=1, **kwargs):
-    ''' serialize and pagiante a queryset '''
-    paginated = Paginator(queryset, PAGE_LENGTH)
-
-    activity_page = paginated.page(page)
-    if id_only:
-        items = [s.remote_id for s in activity_page.object_list]
-    else:
-        items = [s.to_activity() for s in activity_page.object_list]
-
-    prev_page = next_page = None
-    if activity_page.has_next():
-        next_page = '%s?page=%d' % (remote_id, activity_page.next_page_number())
-    if activity_page.has_previous():
-        prev_page = '%s?page=%d' % \
-                (remote_id, activity_page.previous_page_number())
-    return activitypub.OrderedCollectionPage(
-        id='%s?page=%s' % (remote_id, page),
-        partOf=remote_id,
-        orderedItems=items,
-        next=next_page,
-        prev=prev_page
-    ).serialize()
-
-
-class OrderedCollectionMixin(OrderedCollectionPageMixin):
-    ''' extends activitypub models to work as ordered collections '''
-    @property
-    def collection_queryset(self):
-        ''' usually an ordered collection model aggregates a different model '''
-        raise NotImplementedError('Model must define collection_queryset')
-
-    activity_serializer = activitypub.OrderedCollection
-
-    def to_activity(self, **kwargs):
-        ''' an ordered collection of the specified model queryset  '''
-        return self.to_ordered_collection(self.collection_queryset, **kwargs)
-
-
-class CollectionItemMixin(ActivitypubMixin):
-    ''' for items that are part of an (Ordered)Collection '''
-    activity_serializer = activitypub.Add
-    object_field = collection_field = None
-
-    def to_add_activity(self):
-        ''' AP for shelving a book'''
-        object_field = getattr(self, self.object_field)
-        collection_field = getattr(self, self.collection_field)
-        return activitypub.Add(
-            id='%s#add' % self.remote_id,
-            actor=self.user.remote_id,
-            object=object_field.to_activity(),
-            target=collection_field.remote_id
-        ).serialize()
-
-    def to_remove_activity(self):
-        ''' AP for un-shelving a book'''
-        object_field = getattr(self, self.object_field)
-        collection_field = getattr(self, self.collection_field)
-        return activitypub.Remove(
-            id='%s#remove' % self.remote_id,
-            actor=self.user.remote_id,
-            object=object_field.to_activity(),
-            target=collection_field.remote_id
-        ).serialize()
diff --git a/bookwyrm/models/book.py b/bookwyrm/models/book.py
index ef1dd96d..f1f20830 100644
--- a/bookwyrm/models/book.py
+++ b/bookwyrm/models/book.py
@@ -7,7 +7,7 @@ from model_utils.managers import InheritanceManager
 from bookwyrm import activitypub
 from bookwyrm.settings import DOMAIN
 
-from .activitypub_mixin import ObjectMixin, OrderedCollectionPageMixin
+from .activitypub_mixin import OrderedCollectionPageMixin, ObjectMixin
 from .base_model import BookWyrmModel
 from . import fields
 
diff --git a/bookwyrm/templates/lists/curate.html b/bookwyrm/templates/lists/curate.html
index 20c8175d..a7e0fe79 100644
--- a/bookwyrm/templates/lists/curate.html
+++ b/bookwyrm/templates/lists/curate.html
@@ -23,7 +23,7 @@
                 {% include 'snippets/book_titleby.html' with book=item.book %}
             </td>
             <td>
-                {% include 'snippets/username.html' with user=item.added_by %}
+                {% include 'snippets/username.html' with user=item.user %}
             </td>
             <td>
                 <div class="field has-addons">
diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index 213f9dca..7899d593 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -31,9 +31,9 @@
                     </div>
                     <div class="card-footer has-background-white-bis">
                         <div class="card-footer-item">
-                            <p>Added by {% include 'snippets/username.html' with user=item.added_by %}</p>
+                            <p>Added by {% include 'snippets/username.html' with user=item.user %}</p>
                         </div>
-                        {% if list.user == request.user or list.curation == 'open' and item.added_by == request.user %}
+                        {% if list.user == request.user or list.curation == 'open' and item.user == request.user %}
                         <form name="add-book" method="post" action="{% url 'list-remove-book' list.id %}" class="card-footer-item">
                             {% csrf_token %}
                             <input type="hidden" name="item" value="{{ item.id }}">
diff --git a/bookwyrm/tests/models/test_list.py b/bookwyrm/tests/models/test_list.py
index ee60a029..b53ee380 100644
--- a/bookwyrm/tests/models/test_list.py
+++ b/bookwyrm/tests/models/test_list.py
@@ -38,7 +38,7 @@ class List(TestCase):
         item = models.ListItem.objects.create(
             book_list=self.list,
             book=book,
-            added_by=self.user,
+            user=self.user,
         )
 
         self.assertTrue(item.approved)
diff --git a/bookwyrm/tests/test_goodreads_import.py b/bookwyrm/tests/test_goodreads_import.py
index 9519aab1..5beba024 100644
--- a/bookwyrm/tests/test_goodreads_import.py
+++ b/bookwyrm/tests/test_goodreads_import.py
@@ -146,7 +146,7 @@ class GoodreadsImport(TestCase):
         ''' goodreads import added a book, this adds related connections '''
         shelf = self.user.shelf_set.filter(identifier='to-read').first()
         models.ShelfBook.objects.create(
-            shelf=shelf, added_by=self.user, book=self.book)
+            shelf=shelf, user=self.user, book=self.book)
 
         import_job = models.ImportJob.objects.create(user=self.user)
         datafile = pathlib.Path(__file__).parent.joinpath('data/goodreads.csv')
diff --git a/bookwyrm/tests/views/test_feed.py b/bookwyrm/tests/views/test_feed.py
index 879dd2b6..dd2536b1 100644
--- a/bookwyrm/tests/views/test_feed.py
+++ b/bookwyrm/tests/views/test_feed.py
@@ -92,7 +92,7 @@ class FeedMessageViews(TestCase):
         ''' gets books the ~*~ algorithm ~*~ thinks you want to post about '''
         models.ShelfBook.objects.create(
             book=self.book,
-            added_by=self.local_user,
+            user=self.local_user,
             shelf=self.local_user.shelf_set.get(identifier='reading')
         )
         suggestions = views.feed.get_suggested_books(self.local_user)
diff --git a/bookwyrm/tests/views/test_list.py b/bookwyrm/tests/views/test_list.py
index 454f63e0..24a3aaba 100644
--- a/bookwyrm/tests/views/test_list.py
+++ b/bookwyrm/tests/views/test_list.py
@@ -162,7 +162,7 @@ class ListViews(TestCase):
         view = views.Curate.as_view()
         pending = models.ListItem.objects.create(
             book_list=self.list,
-            added_by=self.local_user,
+            user=self.local_user,
             book=self.book,
             approved=False
         )
@@ -185,7 +185,7 @@ class ListViews(TestCase):
         view = views.Curate.as_view()
         pending = models.ListItem.objects.create(
             book_list=self.list,
-            added_by=self.local_user,
+            user=self.local_user,
             book=self.book,
             approved=False
         )
@@ -211,7 +211,7 @@ class ListViews(TestCase):
         views.list.add_book(request, self.list.id)
         item = self.list.listitem_set.get()
         self.assertEqual(item.book, self.book)
-        self.assertEqual(item.added_by, self.local_user)
+        self.assertEqual(item.user, self.local_user)
         self.assertTrue(item.approved)
 
 
@@ -227,7 +227,7 @@ class ListViews(TestCase):
         views.list.add_book(request, self.list.id)
         item = self.list.listitem_set.get()
         self.assertEqual(item.book, self.book)
-        self.assertEqual(item.added_by, self.rat)
+        self.assertEqual(item.user, self.rat)
         self.assertTrue(item.approved)
 
 
@@ -243,7 +243,7 @@ class ListViews(TestCase):
         views.list.add_book(request, self.list.id)
         item = self.list.listitem_set.get()
         self.assertEqual(item.book, self.book)
-        self.assertEqual(item.added_by, self.rat)
+        self.assertEqual(item.user, self.rat)
         self.assertFalse(item.approved)
 
 
@@ -259,7 +259,7 @@ class ListViews(TestCase):
         views.list.add_book(request, self.list.id)
         item = self.list.listitem_set.get()
         self.assertEqual(item.book, self.book)
-        self.assertEqual(item.added_by, self.local_user)
+        self.assertEqual(item.user, self.local_user)
         self.assertTrue(item.approved)
 
 
@@ -267,7 +267,7 @@ class ListViews(TestCase):
         ''' take an item off a list '''
         item = models.ListItem.objects.create(
             book_list=self.list,
-            added_by=self.local_user,
+            user=self.local_user,
             book=self.book,
         )
         self.assertTrue(self.list.listitem_set.exists())
@@ -285,7 +285,7 @@ class ListViews(TestCase):
         ''' take an item off a list '''
         item = models.ListItem.objects.create(
             book_list=self.list,
-            added_by=self.local_user,
+            user=self.local_user,
             book=self.book,
         )
         self.assertTrue(self.list.listitem_set.exists())
diff --git a/bookwyrm/tests/views/test_reading.py b/bookwyrm/tests/views/test_reading.py
index 89716a48..927fecd3 100644
--- a/bookwyrm/tests/views/test_reading.py
+++ b/bookwyrm/tests/views/test_reading.py
@@ -66,7 +66,7 @@ class ReadingViews(TestCase):
         ''' begin a book '''
         to_read_shelf = self.local_user.shelf_set.get(identifier='to-read')
         models.ShelfBook.objects.create(
-            shelf=to_read_shelf, book=self.book, added_by=self.local_user)
+            shelf=to_read_shelf, book=self.book, user=self.local_user)
         shelf = self.local_user.shelf_set.get(identifier='reading')
         self.assertEqual(to_read_shelf.books.get(), self.book)
         self.assertFalse(shelf.books.exists())
diff --git a/bookwyrm/views/books.py b/bookwyrm/views/books.py
index 02c7f7b4..550c5545 100644
--- a/bookwyrm/views/books.py
+++ b/bookwyrm/views/books.py
@@ -77,12 +77,12 @@ class Book(View):
                     .order_by('-updated_date')
 
             user_shelves = models.ShelfBook.objects.filter(
-                added_by=request.user, book=book
+                user=request.user, book=book
             )
 
             other_edition_shelves = models.ShelfBook.objects.filter(
                 ~Q(book=book),
-                added_by=request.user,
+                user=request.user,
                 book__parent_work=book.parent_work,
             )
 
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index 17c0e2f3..888b2d40 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -182,7 +182,7 @@ def add_book(request, list_id):
         models.ListItem.objects.create(
             book=book,
             book_list=book_list,
-            added_by=request.user,
+            user=request.user,
         )
     elif book_list.curation == 'curated':
         # make a pending entry
@@ -190,7 +190,7 @@ def add_book(request, list_id):
             approved=False,
             book=book,
             book_list=book_list,
-            added_by=request.user,
+            user=request.user,
         )
     else:
         # you can't add to this list, what were you THINKING
@@ -205,7 +205,7 @@ def remove_book(request, list_id):
     book_list = get_object_or_404(models.List, id=list_id)
     item = get_object_or_404(models.ListItem, id=request.POST.get('item'))
 
-    if not book_list.user == request.user and not item.added_by == request.user:
+    if not book_list.user == request.user and not item.user == request.user:
         return HttpResponseNotFound()
 
     item.delete()
diff --git a/bookwyrm/views/reading.py b/bookwyrm/views/reading.py
index ba6c8a4a..6b2bf242 100644
--- a/bookwyrm/views/reading.py
+++ b/bookwyrm/views/reading.py
@@ -44,7 +44,7 @@ def start_reading(request, book_id):
             # this just means it isn't currently on the user's shelves
             pass
     models.ShelfBook.objects.create(
-        book=book, shelf=shelf, added_by=request.user)
+        book=book, shelf=shelf, user=request.user)
 
     # post about it (if you want)
     if request.POST.get('post-status'):
@@ -81,7 +81,7 @@ def finish_reading(request, book_id):
             # this just means it isn't currently on the user's shelves
             pass
     models.ShelfBook.objects.create(
-        book=book, shelf=shelf, added_by=request.user)
+        book=book, shelf=shelf, user=request.user)
 
     # post about it (if you want)
     if request.POST.get('post-status'):
diff --git a/bookwyrm/views/shelf.py b/bookwyrm/views/shelf.py
index dca53ace..c689c09e 100644
--- a/bookwyrm/views/shelf.py
+++ b/bookwyrm/views/shelf.py
@@ -49,7 +49,7 @@ class Shelf(View):
             return ActivitypubResponse(shelf.to_activity(**request.GET))
 
         books = models.ShelfBook.objects.filter(
-            added_by=user, shelf=shelf
+            user=user, shelf=shelf
         ).order_by('-updated_date').all()
 
         data = {
@@ -136,7 +136,7 @@ def shelve(request):
             # this just means it isn't currently on the user's shelves
             pass
     models.ShelfBook.objects.create(
-        book=book, shelf=desired_shelf, added_by=request.user)
+        book=book, shelf=desired_shelf, user=request.user)
 
     # post about "want to read" shelves
     if desired_shelf.identifier == 'to-read':

From 2ef777f87e379f505fdb8ce66429267f62d68f93 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Thu, 4 Feb 2021 14:36:57 -0800
Subject: [PATCH 125/280] Use activity type mixin

---
 bookwyrm/models/activitypub_mixin.py | 3 +--
 bookwyrm/models/favorite.py          | 4 ++--
 bookwyrm/models/relationship.py      | 4 ++--
 bookwyrm/models/status.py            | 7 ++++---
 4 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index eee916bb..4efb08d7 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -446,9 +446,8 @@ class CollectionItemMixin(ActivitypubMixin):
         ).serialize()
 
 
-class ActivitybMixin(ActivitypubMixin):
+class ActivityMixin(ActivitypubMixin):
     ''' add this mixin for models that are AP serializable '''
-
     def save(self, *args, **kwargs):
         ''' broadcast activity '''
         super().save(*args, **kwargs)
diff --git a/bookwyrm/models/favorite.py b/bookwyrm/models/favorite.py
index 9809efe7..4c66bfd5 100644
--- a/bookwyrm/models/favorite.py
+++ b/bookwyrm/models/favorite.py
@@ -3,11 +3,11 @@ from django.db import models
 from django.utils import timezone
 
 from bookwyrm import activitypub
-from .activitypub_mixin import ActivitypubMixin
+from .activitypub_mixin import ActivityMixin
 from .base_model import BookWyrmModel
 from . import fields
 
-class Favorite(ActivitypubMixin, BookWyrmModel):
+class Favorite(ActivityMixin, BookWyrmModel):
     ''' fav'ing a post '''
     user = fields.ForeignKey(
         'User', on_delete=models.PROTECT, activitypub_field='actor')
diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index 44af41ff..712f607b 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -4,12 +4,12 @@ from django.db.models import Q
 from django.dispatch import receiver
 
 from bookwyrm import activitypub
-from .activitypub_mixin import ActivitypubMixin
+from .activitypub_mixin import ActivityMixin
 from .base_model import BookWyrmModel
 from . import fields
 
 
-class UserRelationship(ActivitypubMixin, BookWyrmModel):
+class UserRelationship(ActivityMixin, BookWyrmModel):
     ''' many-to-many through table for followers '''
     user_subject = fields.ForeignKey(
         'User',
diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index dc170f3c..74ede26c 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -9,10 +9,11 @@ from django.utils import timezone
 from model_utils.managers import InheritanceManager
 
 from bookwyrm import activitypub
-from .activitypub_mixin import ActivitypubMixin, OrderedCollectionPageMixin
+from .activitypub_mixin import ActivitypubMixin, ActivityMixin
+from .activitypub_mixin import OrderedCollectionPageMixin
 from .base_model import BookWyrmModel
-from . import fields
 from .fields import image_serializer
+from . import fields
 
 class Status(OrderedCollectionPageMixin, BookWyrmModel):
     ''' any post, like a reply to a review, etc '''
@@ -223,7 +224,7 @@ class Review(Status):
     pure_type = 'Article'
 
 
-class Boost(Status):
+class Boost(ActivityMixin, Status):
     ''' boost'ing a post '''
     boosted_status = fields.ForeignKey(
         'Status',

From c7c975d695183f55dfdea9e5d3743fa7e8fbb76f Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 6 Feb 2021 12:00:47 -0800
Subject: [PATCH 126/280] Use save method override instead of a signal

and gets the new test file working
---
 bookwyrm/models/activitypub_mixin.py          | 300 +++++++++---------
 bookwyrm/models/base_model.py                 |   2 +-
 bookwyrm/models/favorite.py                   |   2 +-
 bookwyrm/models/readthrough.py                |   2 +-
 bookwyrm/models/status.py                     |   2 +-
 bookwyrm/models/user.py                       |   4 +-
 .../tests/models/test_activitypub_mixin.py    | 182 +++++++++++
 bookwyrm/tests/models/test_base_model.py      | 175 ----------
 bookwyrm/tests/models/test_fields.py          |   3 +-
 bookwyrm/tests/test_broadcast.py              |   2 +-
 bookwyrm/views/authentication.py              |   1 +
 11 files changed, 347 insertions(+), 328 deletions(-)
 create mode 100644 bookwyrm/tests/models/test_activitypub_mixin.py

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 4efb08d7..55e4971e 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -11,9 +11,7 @@ from Crypto.Signature import pkcs1_15
 from Crypto.Hash import SHA256
 from django.apps import apps
 from django.core.paginator import Paginator
-from django.db import models
 from django.db.models import Q
-from django.dispatch import receiver
 from django.utils.http import http_date
 
 from bookwyrm import activitypub
@@ -22,7 +20,8 @@ from bookwyrm.signatures import make_signature, make_digest
 from bookwyrm.tasks import app
 from bookwyrm.models.fields import ImageField, ManyToManyField
 
-
+# I tried to separate these classes into mutliple files but I kept getting
+# circular import errors so I gave up. I'm sure it could be done though!
 class ActivitypubMixin:
     ''' add this mixin for models that are AP serializable '''
     activity_serializer = lambda: {}
@@ -33,6 +32,7 @@ class ActivitypubMixin:
         self.image_fields = []
         self.many_to_many_fields = []
         self.simple_fields = [] # "simple"
+        # sort model fields by type
         for field in self._meta.get_fields():
             if not hasattr(field, 'field_to_activity'):
                 continue
@@ -44,9 +44,11 @@ class ActivitypubMixin:
             else:
                 self.simple_fields.append(field)
 
+        # a list of allll the serializable fields
         self.activity_fields = self.image_fields + \
                 self.many_to_many_fields + self.simple_fields
 
+        # these are separate to avoid infinite recursion issues
         self.deserialize_reverse_fields = self.deserialize_reverse_fields \
                 if hasattr(self, 'deserialize_reverse_fields') else []
         self.serialize_reverse_fields = self.serialize_reverse_fields \
@@ -66,6 +68,7 @@ class ActivitypubMixin:
         This always includes remote_id, but can also be unique identifiers
         like an isbn for an edition '''
         filters = []
+        # grabs all the data from the model to create django queryset filters
         for field in cls._meta.get_fields():
             if not hasattr(field, 'deduplication_field') or \
                     not field.deduplication_field:
@@ -89,11 +92,9 @@ class ActivitypubMixin:
         if hasattr(objects, 'select_subclasses'):
             objects = objects.select_subclasses()
 
-        # an OR operation on all the match fields
+        # an OR operation on all the match fields, sorry for the dense syntax
         match = objects.filter(
-            reduce(
-                operator.or_, (Q(**f) for f in filters)
-            )
+            reduce(operator.or_, (Q(**f) for f in filters))
         )
         # there OUGHT to be only one match
         return match.first()
@@ -115,18 +116,18 @@ class ActivitypubMixin:
         # is this activity owned by a user (statuses, lists, shelves), or is it
         # general to the instance (like books)
         user = self.user if hasattr(self, 'user') else None
-        if not user and self.__model__ == 'user':
+        user_model = apps.get_model('bookwyrm.User', require_ready=True)
+        if not user and isinstance(self, user_model):
             # or maybe the thing itself is a user
             user = self
         # find anyone who's tagged in a status, for example
         mentions = self.mention_users if hasattr(self, 'mention_users') else []
 
         # we always send activities to explicitly mentioned users' inboxes
-        recipients = [u.inbox for u in mentions or []]
+        recipients = [u.inbox for u in mentions.all() or []]
 
         # unless it's a dm, all the followers should receive the activity
         if privacy != 'direct':
-            user_model = apps.get_model('bookwyrm.User', require_ready=True)
             # filter users first by whether they're using the desired software
             # this lets us send book updates only to other bw servers
             queryset = user_model.objects.filter(
@@ -142,7 +143,7 @@ class ActivitypubMixin:
             ).values_list('shared_inbox', flat=True).distinct()
             # but not everyone has a shared inbox
             inboxes = queryset.filter(
-                shared_inboxes__isnull=True
+                shared_inbox__isnull=True
             ).values_list('inbox', flat=True)
             recipients += list(shared_inboxes) + list(inboxes)
         return recipients
@@ -154,120 +155,33 @@ class ActivitypubMixin:
         return self.activity_serializer(**activity).serialize()
 
 
-def generate_activity(obj):
-    ''' go through the fields on an object '''
-    activity = {}
-    for field in obj.activity_fields:
-        field.set_activity_from_field(activity, obj)
-
-    if hasattr(obj, 'serialize_reverse_fields'):
-        # for example, editions of a work
-        for model_field_name, activity_field_name, sort_field in \
-                obj.serialize_reverse_fields:
-            related_field = getattr(obj, model_field_name)
-            activity[activity_field_name] = \
-                    unfurl_related_field(related_field, sort_field)
-
-    if not activity.get('id'):
-        activity['id'] = obj.get_remote_id()
-    return activity
-
-
-def unfurl_related_field(related_field, sort_field=None):
-    ''' load reverse lookups (like public key owner or Status attachment '''
-    if hasattr(related_field, 'all'):
-        return [unfurl_related_field(i) for i in related_field.order_by(
-            sort_field).all()]
-    if related_field.reverse_unfurl:
-        return related_field.field_to_activity()
-    return related_field.remote_id
-
-
-@app.task
-def broadcast_task(sender_id, activity, recipients):
-    ''' the celery task for broadcast '''
-    user_model = apps.get_model('bookwyrm.User', require_ready=True)
-    sender = user_model.objects.get(id=sender_id)
-    errors = []
-    for recipient in recipients:
-        try:
-            sign_and_send(sender, activity, recipient)
-        except requests.exceptions.HTTPError as e:
-            errors.append({
-                'error': str(e),
-                'recipient': recipient,
-                'activity': activity,
-            })
-    return errors
-
-
-def sign_and_send(sender, data, destination):
-    ''' crpyto whatever and http junk '''
-    now = http_date()
-
-    if not sender.key_pair.private_key:
-        # this shouldn't happen. it would be bad if it happened.
-        raise ValueError('No private key found for sender')
-
-    digest = make_digest(data)
-
-    response = requests.post(
-        destination,
-        data=data,
-        headers={
-            'Date': now,
-            'Digest': digest,
-            'Signature': make_signature(sender, destination, now, digest),
-            'Content-Type': 'application/activity+json; charset=utf-8',
-            'User-Agent': USER_AGENT,
-        },
-    )
-    if not response.ok:
-        response.raise_for_status()
-    return response
-
-
-@receiver(models.signals.post_save)
-#pylint: disable=unused-argument
-def execute_after_save(sender, instance, created, *args, **kwargs):
-    ''' broadcast when a model instance is created or updated '''
-    # user content like statuses, lists, and shelves, have a "user" field
-    user = instance.user if hasattr(instance, 'user') else None
-
-    # we don't want to broadcast when we save remote activities
-    if user and not user.local:
-        return
-
-    if created:
-        # book data and users don't need to broadcast on creation
-        if not user:
-            return
-
-        # ordered collection items get "Add"ed
-        if hasattr(instance, 'to_add_activity'):
-            activity = instance.to_add_activity()
-        else:
-            # everything else gets "Create"d
-            activity = instance.to_create_activity(user)
-
-    if activity and user and user.local:
-        instance.broadcast(activity, user)
-
-
 class ObjectMixin(ActivitypubMixin):
     ''' add this mixin for object models that are AP serializable '''
-
     def save(self, *args, **kwargs):
-        ''' broadcast updated '''
+        ''' broadcast created/updated/deleted objects as appropriate '''
+        broadcast = kwargs.get('broadcast', True)
+        # this bonus kwarg woul cause an error in the base save method
+        if 'broadcast' in kwargs:
+            del kwargs['broadcast']
+
+        created = not bool(self.id)
         # first off, we want to save normally no matter what
         super().save(*args, **kwargs)
-
-        # we only want to handle updates, not newly created objects
-        if not self.id:
+        if not broadcast:
             return
 
-        # this will work for lists, shelves
+        # this will work for objects owned by a user (lists, shelves)
         user = self.user if hasattr(self, 'user') else None
+
+        if created:
+            # broadcast Create activities for objects owned by a local user
+            if not user or not user.local:
+                return
+            activity = self.to_create_activity(user)
+            self.broadcast(activity, user)
+            return
+
+        # --- updating an existing object
         if not user:
             # users don't have associated users, they ARE users
             user_model = apps.get_model('bookwyrm.User', require_ready=True)
@@ -281,7 +195,7 @@ class ObjectMixin(ActivitypubMixin):
             return
 
         # is this a deletion?
-        if self.deleted:
+        if hasattr(self, 'deleted') and self.deleted:
             activity = self.to_delete_activity(user)
         else:
             activity = self.to_update_activity(user)
@@ -377,33 +291,6 @@ class OrderedCollectionPageMixin(ObjectMixin):
         return serializer(**activity).serialize()
 
 
-# pylint: disable=unused-argument
-def to_ordered_collection_page(
-        queryset, remote_id, id_only=False, page=1, **kwargs):
-    ''' serialize and pagiante a queryset '''
-    paginated = Paginator(queryset, PAGE_LENGTH)
-
-    activity_page = paginated.page(page)
-    if id_only:
-        items = [s.remote_id for s in activity_page.object_list]
-    else:
-        items = [s.to_activity() for s in activity_page.object_list]
-
-    prev_page = next_page = None
-    if activity_page.has_next():
-        next_page = '%s?page=%d' % (remote_id, activity_page.next_page_number())
-    if activity_page.has_previous():
-        prev_page = '%s?page=%d' % \
-                (remote_id, activity_page.previous_page_number())
-    return activitypub.OrderedCollectionPage(
-        id='%s?page=%s' % (remote_id, page),
-        partOf=remote_id,
-        orderedItems=items,
-        next=next_page,
-        prev=prev_page
-    ).serialize()
-
-
 class OrderedCollectionMixin(OrderedCollectionPageMixin):
     ''' extends activitypub models to work as ordered collections '''
     @property
@@ -423,6 +310,28 @@ class CollectionItemMixin(ActivitypubMixin):
     activity_serializer = activitypub.Add
     object_field = collection_field = None
 
+    def save(self, *args, **kwargs):
+        ''' broadcast updated '''
+        created = not bool(self.id)
+        # first off, we want to save normally no matter what
+        super().save(*args, **kwargs)
+
+        # these shouldn't be edited, only created and deleted
+        if not created or not self.user.local:
+            return
+
+        # adding an obj to the collection
+        activity = self.to_add_activity()
+        self.broadcast(activity, self.user)
+
+
+    def delete(self, *args, **kwargs):
+        ''' broadcast a remove activity '''
+        activity = self.to_remove_activity()
+        super().delete(*args, **kwargs)
+        self.broadcast(activity, self.user)
+
+
     def to_add_activity(self):
         ''' AP for shelving a book'''
         object_field = getattr(self, self.object_field)
@@ -453,6 +362,7 @@ class ActivityMixin(ActivitypubMixin):
         super().save(*args, **kwargs)
         self.broadcast(self.to_activity(), self.user)
 
+
     def delete(self, *args, **kwargs):
         ''' nevermind, undo that activity '''
         self.broadcast(self.to_undo_activity(), self.user)
@@ -466,3 +376,103 @@ class ActivityMixin(ActivitypubMixin):
             actor=self.user.remote_id,
             object=self.to_activity()
         ).serialize()
+
+
+def generate_activity(obj):
+    ''' go through the fields on an object '''
+    activity = {}
+    for field in obj.activity_fields:
+        field.set_activity_from_field(activity, obj)
+
+    if hasattr(obj, 'serialize_reverse_fields'):
+        # for example, editions of a work
+        for model_field_name, activity_field_name, sort_field in \
+                obj.serialize_reverse_fields:
+            related_field = getattr(obj, model_field_name)
+            activity[activity_field_name] = \
+                    unfurl_related_field(related_field, sort_field)
+
+    if not activity.get('id'):
+        activity['id'] = obj.get_remote_id()
+    return activity
+
+
+def unfurl_related_field(related_field, sort_field=None):
+    ''' load reverse lookups (like public key owner or Status attachment '''
+    if hasattr(related_field, 'all'):
+        return [unfurl_related_field(i) for i in related_field.order_by(
+            sort_field).all()]
+    if related_field.reverse_unfurl:
+        return related_field.field_to_activity()
+    return related_field.remote_id
+
+
+@app.task
+def broadcast_task(sender_id, activity, recipients):
+    ''' the celery task for broadcast '''
+    user_model = apps.get_model('bookwyrm.User', require_ready=True)
+    sender = user_model.objects.get(id=sender_id)
+    errors = []
+    for recipient in recipients:
+        try:
+            sign_and_send(sender, activity, recipient)
+        except requests.exceptions.HTTPError as e:
+            errors.append({
+                'error': str(e),
+                'recipient': recipient,
+                'activity': activity,
+            })
+    return errors
+
+
+def sign_and_send(sender, data, destination):
+    ''' crpyto whatever and http junk '''
+    now = http_date()
+
+    if not sender.key_pair.private_key:
+        # this shouldn't happen. it would be bad if it happened.
+        raise ValueError('No private key found for sender')
+
+    digest = make_digest(data)
+
+    response = requests.post(
+        destination,
+        data=data,
+        headers={
+            'Date': now,
+            'Digest': digest,
+            'Signature': make_signature(sender, destination, now, digest),
+            'Content-Type': 'application/activity+json; charset=utf-8',
+            'User-Agent': USER_AGENT,
+        },
+    )
+    if not response.ok:
+        response.raise_for_status()
+    return response
+
+
+# pylint: disable=unused-argument
+def to_ordered_collection_page(
+        queryset, remote_id, id_only=False, page=1, **kwargs):
+    ''' serialize and pagiante a queryset '''
+    paginated = Paginator(queryset, PAGE_LENGTH)
+
+    activity_page = paginated.page(page)
+    if id_only:
+        items = [s.remote_id for s in activity_page.object_list]
+    else:
+        items = [s.to_activity() for s in activity_page.object_list]
+
+    prev_page = next_page = None
+    if activity_page.has_next():
+        next_page = '%s?page=%d' % (remote_id, activity_page.next_page_number())
+    if activity_page.has_previous():
+        prev_page = '%s?page=%d' % \
+                (remote_id, activity_page.previous_page_number())
+    return activitypub.OrderedCollectionPage(
+        id='%s?page=%s' % (remote_id, page),
+        partOf=remote_id,
+        orderedItems=items,
+        next=next_page,
+        prev=prev_page
+    ).serialize()
diff --git a/bookwyrm/models/base_model.py b/bookwyrm/models/base_model.py
index 003325a7..9c0865df 100644
--- a/bookwyrm/models/base_model.py
+++ b/bookwyrm/models/base_model.py
@@ -38,4 +38,4 @@ def execute_after_save(sender, instance, created, *args, **kwargs):
         return
     if not instance.remote_id:
         instance.remote_id = instance.get_remote_id()
-        instance.save()
+        instance.save(broadcast=False)
diff --git a/bookwyrm/models/favorite.py b/bookwyrm/models/favorite.py
index 4c66bfd5..7d630cf5 100644
--- a/bookwyrm/models/favorite.py
+++ b/bookwyrm/models/favorite.py
@@ -19,7 +19,7 @@ class Favorite(ActivityMixin, BookWyrmModel):
     def save(self, *args, **kwargs):
         ''' update user active time '''
         self.user.last_active_date = timezone.now()
-        self.user.save()
+        self.user.save(broadcast=False)
         super().save(*args, **kwargs)
 
     class Meta:
diff --git a/bookwyrm/models/readthrough.py b/bookwyrm/models/readthrough.py
index 7daafaaf..2a3dd9f4 100644
--- a/bookwyrm/models/readthrough.py
+++ b/bookwyrm/models/readthrough.py
@@ -31,7 +31,7 @@ class ReadThrough(BookWyrmModel):
     def save(self, *args, **kwargs):
         ''' update user active time '''
         self.user.last_active_date = timezone.now()
-        self.user.save()
+        self.user.save(broadcast=False)
         super().save(*args, **kwargs)
 
     def create_update(self):
diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index 74ede26c..d15afbfc 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -131,7 +131,7 @@ class Status(OrderedCollectionPageMixin, BookWyrmModel):
         ''' update user active time '''
         if self.user.local:
             self.user.last_active_date = timezone.now()
-            self.user.save()
+            self.user.save(broadcast=False)
         return super().save(*args, **kwargs)
 
 
diff --git a/bookwyrm/models/user.py b/bookwyrm/models/user.py
index 133c0721..ee00980e 100644
--- a/bookwyrm/models/user.py
+++ b/bookwyrm/models/user.py
@@ -291,7 +291,7 @@ def execute_after_save(sender, instance, created, *args, **kwargs):
 
     instance.key_pair = KeyPair.objects.create(
         remote_id='%s/#main-key' % instance.remote_id)
-    instance.save()
+    instance.save(broadcast=False)
 
     shelves = [{
         'name': 'To Read',
@@ -310,7 +310,7 @@ def execute_after_save(sender, instance, created, *args, **kwargs):
             identifier=shelf['identifier'],
             user=instance,
             editable=False
-        ).save()
+        ).save(broadcast=False)
 
 
 @app.task
diff --git a/bookwyrm/tests/models/test_activitypub_mixin.py b/bookwyrm/tests/models/test_activitypub_mixin.py
new file mode 100644
index 00000000..36e1fcad
--- /dev/null
+++ b/bookwyrm/tests/models/test_activitypub_mixin.py
@@ -0,0 +1,182 @@
+''' testing model activitypub utilities '''
+from unittest.mock import patch
+from collections import namedtuple
+from dataclasses import dataclass
+import re
+from django.test import TestCase
+
+from bookwyrm.activitypub.base_activity import ActivityObject
+from bookwyrm import models
+from bookwyrm.models import base_model
+from bookwyrm.models.activitypub_mixin import ActivitypubMixin
+from bookwyrm.models.activitypub_mixin import ActivityMixin, ObjectMixin
+
+class ActivitypubMixins(TestCase):
+    ''' functionality shared across models '''
+    def setUp(self):
+        ''' shared data '''
+        self.local_user = models.User.objects.create_user(
+            'mouse', 'mouse@mouse.com', 'mouseword',
+            local=True, localname='mouse')
+        self.local_user.remote_id = 'http://example.com/a/b'
+        self.local_user.save(broadcast=False)
+
+
+    # ActivitypubMixin
+    def test_to_activity(self):
+        ''' model to ActivityPub json '''
+        @dataclass(init=False)
+        class TestActivity(ActivityObject):
+            ''' real simple mock '''
+            type: str = 'Test'
+
+        class TestModel(ActivitypubMixin, base_model.BookWyrmModel):
+            ''' real simple mock model because BookWyrmModel is abstract '''
+
+        instance = TestModel()
+        instance.remote_id = 'https://www.example.com/test'
+        instance.activity_serializer = TestActivity
+
+        activity = instance.to_activity()
+        self.assertIsInstance(activity, dict)
+        self.assertEqual(activity['id'], 'https://www.example.com/test')
+        self.assertEqual(activity['type'], 'Test')
+
+
+    def test_find_existing_by_remote_id(self):
+        ''' attempt to match a remote id to an object in the db '''
+        # uses a different remote id scheme
+        # this isn't really part of this test directly but it's helpful to state
+        book = models.Edition.objects.create(
+            title='Test Edition', remote_id='http://book.com/book')
+
+        self.assertEqual(book.origin_id, 'http://book.com/book')
+        self.assertNotEqual(book.remote_id, 'http://book.com/book')
+
+        # uses subclasses
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.Comment.objects.create(
+                user=self.local_user, content='test status', book=book, \
+                remote_id='https://comment.net')
+
+        result = models.User.find_existing_by_remote_id('hi')
+        self.assertIsNone(result)
+
+        result = models.User.find_existing_by_remote_id(
+            'http://example.com/a/b')
+        self.assertEqual(result, self.local_user)
+
+        # test using origin id
+        result = models.Edition.find_existing_by_remote_id(
+            'http://book.com/book')
+        self.assertEqual(result, book)
+
+        # test subclass match
+        result = models.Status.find_existing_by_remote_id(
+            'https://comment.net')
+
+
+    def test_find_existing(self):
+        ''' match a blob of data to a model '''
+        book = models.Edition.objects.create(
+            title='Test edition',
+            openlibrary_key='OL1234',
+        )
+
+        result = models.Edition.find_existing(
+            {'openlibraryKey': 'OL1234'})
+        self.assertEqual(result, book)
+
+
+    # ObjectMixin
+    def test_to_create_activity(self):
+        ''' wrapper for ActivityPub "create" action '''
+        object_activity = {
+            'to': 'to field', 'cc': 'cc field',
+            'content': 'hi',
+            'published': '2020-12-04T17:52:22.623807+00:00',
+        }
+        MockSelf = namedtuple('Self', ('remote_id', 'to_activity'))
+        mock_self = MockSelf(
+            'https://example.com/status/1',
+            lambda *args: object_activity
+        )
+        activity = ObjectMixin.to_create_activity(
+            mock_self, self.local_user)
+        self.assertEqual(
+            activity['id'],
+            'https://example.com/status/1/activity'
+        )
+        self.assertEqual(activity['actor'], self.local_user.remote_id)
+        self.assertEqual(activity['type'], 'Create')
+        self.assertEqual(activity['to'], 'to field')
+        self.assertEqual(activity['cc'], 'cc field')
+        self.assertEqual(activity['object'], object_activity)
+        self.assertEqual(
+            activity['signature'].creator,
+            '%s#main-key' % self.local_user.remote_id
+        )
+
+    def test_to_delete_activity(self):
+        ''' wrapper for Delete activity '''
+        MockSelf = namedtuple('Self', ('remote_id', 'to_activity'))
+        mock_self = MockSelf(
+            'https://example.com/status/1',
+            lambda *args: {}
+        )
+        activity = ObjectMixin.to_delete_activity(
+            mock_self, self.local_user)
+        self.assertEqual(
+            activity['id'],
+            'https://example.com/status/1/activity'
+        )
+        self.assertEqual(activity['actor'], self.local_user.remote_id)
+        self.assertEqual(activity['type'], 'Delete')
+        self.assertEqual(
+            activity['to'],
+            ['%s/followers' % self.local_user.remote_id])
+        self.assertEqual(
+            activity['cc'],
+            ['https://www.w3.org/ns/activitystreams#Public'])
+
+
+    def test_to_update_activity(self):
+        ''' ditto above but for Update '''
+        MockSelf = namedtuple('Self', ('remote_id', 'to_activity'))
+        mock_self = MockSelf(
+            'https://example.com/status/1',
+            lambda *args: {}
+        )
+        activity = ObjectMixin.to_update_activity(
+            mock_self, self.local_user)
+        self.assertIsNotNone(
+            re.match(
+                r'^https:\/\/example\.com\/status\/1#update\/.*',
+                activity['id']
+            )
+        )
+        self.assertEqual(activity['actor'], self.local_user.remote_id)
+        self.assertEqual(activity['type'], 'Update')
+        self.assertEqual(
+            activity['to'],
+            ['https://www.w3.org/ns/activitystreams#Public'])
+        self.assertEqual(activity['object'], {})
+
+
+    # Activity mixin
+    def test_to_undo_activity(self):
+        ''' and again, for Undo '''
+        MockSelf = namedtuple('Self', ('remote_id', 'to_activity', 'user'))
+        mock_self = MockSelf(
+            'https://example.com/status/1',
+            lambda *args: {},
+            self.local_user,
+        )
+        activity = ActivityMixin.to_undo_activity(mock_self)
+        self.assertEqual(
+            activity['id'],
+            'https://example.com/status/1#undo'
+        )
+        self.assertEqual(activity['actor'], self.local_user.remote_id)
+        self.assertEqual(activity['type'], 'Undo')
+        self.assertEqual(activity['object'], {})
diff --git a/bookwyrm/tests/models/test_base_model.py b/bookwyrm/tests/models/test_base_model.py
index a18257f5..ab388efe 100644
--- a/bookwyrm/tests/models/test_base_model.py
+++ b/bookwyrm/tests/models/test_base_model.py
@@ -1,13 +1,8 @@
 ''' testing models '''
-from collections import namedtuple
-from dataclasses import dataclass
-import re
 from django.test import TestCase
 
-from bookwyrm.activitypub.base_activity import ActivityObject
 from bookwyrm import models
 from bookwyrm.models import base_model
-from bookwyrm.models.base_model import ActivitypubMixin
 from bookwyrm.settings import DOMAIN
 
 class BaseModel(TestCase):
@@ -48,173 +43,3 @@ class BaseModel(TestCase):
         instance.remote_id = None
         base_model.execute_after_save(None, instance, False)
         self.assertIsNone(instance.remote_id)
-
-    def test_to_create_activity(self):
-        ''' wrapper for ActivityPub "create" action '''
-        user = models.User.objects.create_user(
-            'mouse', 'mouse@mouse.com', 'mouseword',
-            local=True, localname='mouse')
-
-        object_activity = {
-            'to': 'to field', 'cc': 'cc field',
-            'content': 'hi',
-            'published': '2020-12-04T17:52:22.623807+00:00',
-        }
-        MockSelf = namedtuple('Self', ('remote_id', 'to_activity'))
-        mock_self = MockSelf(
-            'https://example.com/status/1',
-            lambda *args: object_activity
-        )
-        activity = ActivitypubMixin.to_create_activity(mock_self, user)
-        self.assertEqual(
-            activity['id'],
-            'https://example.com/status/1/activity'
-        )
-        self.assertEqual(activity['actor'], user.remote_id)
-        self.assertEqual(activity['type'], 'Create')
-        self.assertEqual(activity['to'], 'to field')
-        self.assertEqual(activity['cc'], 'cc field')
-        self.assertEqual(activity['object'], object_activity)
-        self.assertEqual(
-            activity['signature'].creator,
-            '%s#main-key' % user.remote_id
-        )
-
-    def test_to_delete_activity(self):
-        ''' wrapper for Delete activity '''
-        user = models.User.objects.create_user(
-            'mouse', 'mouse@mouse.com', 'mouseword',
-            local=True, localname='mouse')
-
-        MockSelf = namedtuple('Self', ('remote_id', 'to_activity'))
-        mock_self = MockSelf(
-            'https://example.com/status/1',
-            lambda *args: {}
-        )
-        activity = ActivitypubMixin.to_delete_activity(mock_self, user)
-        self.assertEqual(
-            activity['id'],
-            'https://example.com/status/1/activity'
-        )
-        self.assertEqual(activity['actor'], user.remote_id)
-        self.assertEqual(activity['type'], 'Delete')
-        self.assertEqual(
-            activity['to'],
-            ['%s/followers' % user.remote_id])
-        self.assertEqual(
-            activity['cc'],
-            ['https://www.w3.org/ns/activitystreams#Public'])
-
-    def test_to_update_activity(self):
-        ''' ditto above but for Update '''
-        user = models.User.objects.create_user(
-            'mouse', 'mouse@mouse.com', 'mouseword',
-            local=True, localname='mouse')
-
-        MockSelf = namedtuple('Self', ('remote_id', 'to_activity'))
-        mock_self = MockSelf(
-            'https://example.com/status/1',
-            lambda *args: {}
-        )
-        activity = ActivitypubMixin.to_update_activity(mock_self, user)
-        self.assertIsNotNone(
-            re.match(
-                r'^https:\/\/example\.com\/status\/1#update\/.*',
-                activity['id']
-            )
-        )
-        self.assertEqual(activity['actor'], user.remote_id)
-        self.assertEqual(activity['type'], 'Update')
-        self.assertEqual(
-            activity['to'],
-            ['https://www.w3.org/ns/activitystreams#Public'])
-        self.assertEqual(activity['object'], {})
-
-    def test_to_undo_activity(self):
-        ''' and again, for Undo '''
-        user = models.User.objects.create_user(
-            'mouse', 'mouse@mouse.com', 'mouseword',
-            local=True, localname='mouse')
-
-        MockSelf = namedtuple('Self', ('remote_id', 'to_activity'))
-        mock_self = MockSelf(
-            'https://example.com/status/1',
-            lambda *args: {}
-        )
-        activity = ActivitypubMixin.to_undo_activity(mock_self, user)
-        self.assertEqual(
-            activity['id'],
-            'https://example.com/status/1#undo'
-        )
-        self.assertEqual(activity['actor'], user.remote_id)
-        self.assertEqual(activity['type'], 'Undo')
-        self.assertEqual(activity['object'], {})
-
-
-    def test_to_activity(self):
-        ''' model to ActivityPub json '''
-        @dataclass(init=False)
-        class TestActivity(ActivityObject):
-            ''' real simple mock '''
-            type: str = 'Test'
-
-        class TestModel(ActivitypubMixin, base_model.BookWyrmModel):
-            ''' real simple mock model because BookWyrmModel is abstract '''
-
-        instance = TestModel()
-        instance.remote_id = 'https://www.example.com/test'
-        instance.activity_serializer = TestActivity
-
-        activity = instance.to_activity()
-        self.assertIsInstance(activity, dict)
-        self.assertEqual(activity['id'], 'https://www.example.com/test')
-        self.assertEqual(activity['type'], 'Test')
-
-
-    def test_find_existing_by_remote_id(self):
-        ''' attempt to match a remote id to an object in the db '''
-        # uses a different remote id scheme
-        # this isn't really part of this test directly but it's helpful to state
-        book = models.Edition.objects.create(
-            title='Test Edition', remote_id='http://book.com/book')
-        user = models.User.objects.create_user(
-            'mouse', 'mouse@mouse.mouse', 'mouseword',
-            local=True, localname='mouse')
-        user.remote_id = 'http://example.com/a/b'
-        user.save()
-
-        self.assertEqual(book.origin_id, 'http://book.com/book')
-        self.assertNotEqual(book.remote_id, 'http://book.com/book')
-
-        # uses subclasses
-        models.Comment.objects.create(
-            user=user, content='test status', book=book, \
-            remote_id='https://comment.net')
-
-        result = models.User.find_existing_by_remote_id('hi')
-        self.assertIsNone(result)
-
-        result = models.User.find_existing_by_remote_id(
-            'http://example.com/a/b')
-        self.assertEqual(result, user)
-
-        # test using origin id
-        result = models.Edition.find_existing_by_remote_id(
-            'http://book.com/book')
-        self.assertEqual(result, book)
-
-        # test subclass match
-        result = models.Status.find_existing_by_remote_id(
-            'https://comment.net')
-
-
-    def test_find_existing(self):
-        ''' match a blob of data to a model '''
-        book = models.Edition.objects.create(
-            title='Test edition',
-            openlibrary_key='OL1234',
-        )
-
-        result = models.Edition.find_existing(
-            {'openlibraryKey': 'OL1234'})
-        self.assertEqual(result, book)
diff --git a/bookwyrm/tests/models/test_fields.py b/bookwyrm/tests/models/test_fields.py
index e87855f6..ff8c800a 100644
--- a/bookwyrm/tests/models/test_fields.py
+++ b/bookwyrm/tests/models/test_fields.py
@@ -19,7 +19,8 @@ from django.utils import timezone
 
 from bookwyrm.activitypub.base_activity import ActivityObject
 from bookwyrm.models import fields, User, Status
-from bookwyrm.models.base_model import ActivitypubMixin, BookWyrmModel
+from bookwyrm.models.base_model import BookWyrmModel
+from bookwyrm.models.activitypub_mixin import ActivitypubMixin
 
 #pylint: disable=too-many-public-methods
 class ActivitypubFields(TestCase):
diff --git a/bookwyrm/tests/test_broadcast.py b/bookwyrm/tests/test_broadcast.py
index eea7abd8..6344a9f0 100644
--- a/bookwyrm/tests/test_broadcast.py
+++ b/bookwyrm/tests/test_broadcast.py
@@ -4,7 +4,7 @@ from django.test import TestCase
 from bookwyrm import models, broadcast
 
 
-class Book(TestCase):
+class Broadcast(TestCase):
     def setUp(self):
         self.user = models.User.objects.create_user(
             'mouse', 'mouse@mouse.mouse', 'mouseword',
diff --git a/bookwyrm/views/authentication.py b/bookwyrm/views/authentication.py
index 0fdee798..a74febca 100644
--- a/bookwyrm/views/authentication.py
+++ b/bookwyrm/views/authentication.py
@@ -46,6 +46,7 @@ class Login(View):
             # successful login
             login(request, user)
             user.last_active_date = timezone.now()
+            user.save(broadcast=False)
             return redirect(request.GET.get('next', '/'))
 
         # login errors

From ff721896c08712c237ee44a9a2131ec6c45653d8 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 6 Feb 2021 12:06:45 -0800
Subject: [PATCH 127/280] Fixes call to mention_users

---
 bookwyrm/models/activitypub_mixin.py            | 5 +++--
 bookwyrm/tests/models/test_activitypub_mixin.py | 8 ++++++++
 2 files changed, 11 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 55e4971e..de440e42 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -121,10 +121,11 @@ class ActivitypubMixin:
             # or maybe the thing itself is a user
             user = self
         # find anyone who's tagged in a status, for example
-        mentions = self.mention_users if hasattr(self, 'mention_users') else []
+        mentions = self.mention_users.all() if \
+            hasattr(self, 'mention_users') else []
 
         # we always send activities to explicitly mentioned users' inboxes
-        recipients = [u.inbox for u in mentions.all() or []]
+        recipients = [u.inbox for u in mentions or []]
 
         # unless it's a dm, all the followers should receive the activity
         if privacy != 'direct':
diff --git a/bookwyrm/tests/models/test_activitypub_mixin.py b/bookwyrm/tests/models/test_activitypub_mixin.py
index 36e1fcad..ba6c1489 100644
--- a/bookwyrm/tests/models/test_activitypub_mixin.py
+++ b/bookwyrm/tests/models/test_activitypub_mixin.py
@@ -88,6 +88,14 @@ class ActivitypubMixins(TestCase):
         self.assertEqual(result, book)
 
 
+    def test_get_recipients(self):
+        ''' determines the recipients for a broadcast '''
+        MockSelf = namedtuple('Self', ('privacy'))
+        mock_self = MockSelf('public')
+        ActivitypubMixin.get_recipients(mock_self)
+        
+
+
     # ObjectMixin
     def test_to_create_activity(self):
         ''' wrapper for ActivityPub "create" action '''

From 3b17c0ed44896c628d729c3f9df3c9408f8e2de5 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 6 Feb 2021 12:41:35 -0800
Subject: [PATCH 128/280] Fixes broadcast recipients with software constraint

---
 bookwyrm/models/activitypub_mixin.py          |  11 +-
 .../tests/models/test_activitypub_mixin.py    | 134 +++++++++++++++++-
 bookwyrm/tests/test_broadcast.py              |  80 -----------
 3 files changed, 138 insertions(+), 87 deletions(-)
 delete mode 100644 bookwyrm/tests/test_broadcast.py

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index de440e42..7d5b5beb 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -129,11 +129,16 @@ class ActivitypubMixin:
 
         # unless it's a dm, all the followers should receive the activity
         if privacy != 'direct':
+            # we will send this out to a subset of all remote users
+            queryset = user_model.objects.filter(
+                local=False,
+            )
             # filter users first by whether they're using the desired software
             # this lets us send book updates only to other bw servers
-            queryset = user_model.objects.filter(
-                bookwyrm_user=(software == 'bookwyrm')
-            )
+            if software:
+                queryset = queryset.filter(
+                    bookwyrm_user=(software == 'bookwyrm')
+                )
             # if there's a user, we only want to send to the user's followers
             if user:
                 queryset = queryset.filter(following=user)
diff --git a/bookwyrm/tests/models/test_activitypub_mixin.py b/bookwyrm/tests/models/test_activitypub_mixin.py
index ba6c1489..300e94aa 100644
--- a/bookwyrm/tests/models/test_activitypub_mixin.py
+++ b/bookwyrm/tests/models/test_activitypub_mixin.py
@@ -8,6 +8,7 @@ from django.test import TestCase
 from bookwyrm.activitypub.base_activity import ActivityObject
 from bookwyrm import models
 from bookwyrm.models import base_model
+from bookwyrm.models import activitypub_mixin
 from bookwyrm.models.activitypub_mixin import ActivitypubMixin
 from bookwyrm.models.activitypub_mixin import ActivityMixin, ObjectMixin
 
@@ -20,6 +21,14 @@ class ActivitypubMixins(TestCase):
             local=True, localname='mouse')
         self.local_user.remote_id = 'http://example.com/a/b'
         self.local_user.save(broadcast=False)
+        with patch('bookwyrm.models.user.set_remote_server.delay'):
+            self.remote_user = models.User.objects.create_user(
+                'rat', 'rat@rat.com', 'ratword',
+                local=False,
+                remote_id='https://example.com/users/rat',
+                inbox='https://example.com/users/rat/inbox',
+                outbox='https://example.com/users/rat/outbox',
+            )
 
 
     # ActivitypubMixin
@@ -88,12 +97,129 @@ class ActivitypubMixins(TestCase):
         self.assertEqual(result, book)
 
 
-    def test_get_recipients(self):
-        ''' determines the recipients for a broadcast '''
+    def test_get_recipients_public_object(self):
+        ''' determines the recipients for an object's broadcast '''
         MockSelf = namedtuple('Self', ('privacy'))
         mock_self = MockSelf('public')
-        ActivitypubMixin.get_recipients(mock_self)
-        
+        recipients = ActivitypubMixin.get_recipients(mock_self)
+        self.assertEqual(len(recipients), 1)
+        self.assertEqual(recipients[0], self.remote_user.inbox)
+
+
+    def test_get_recipients_public_user_object_no_followers(self):
+        ''' determines the recipients for a user's object broadcast '''
+        MockSelf = namedtuple('Self', ('privacy', 'user'))
+        mock_self = MockSelf('public', self.local_user)
+
+        recipients = ActivitypubMixin.get_recipients(mock_self)
+        self.assertEqual(len(recipients), 0)
+
+
+    def test_get_recipients_public_user_object(self):
+        ''' determines the recipients for a user's object broadcast '''
+        MockSelf = namedtuple('Self', ('privacy', 'user'))
+        mock_self = MockSelf('public', self.local_user)
+        self.local_user.followers.add(self.remote_user)
+
+        recipients = ActivitypubMixin.get_recipients(mock_self)
+        self.assertEqual(len(recipients), 1)
+        self.assertEqual(recipients[0], self.remote_user.inbox)
+
+
+    def test_get_recipients_public_user_object_with_mention(self):
+        ''' determines the recipients for a user's object broadcast '''
+        MockSelf = namedtuple('Self', ('privacy', 'user'))
+        mock_self = MockSelf('public', self.local_user)
+        self.local_user.followers.add(self.remote_user)
+        with patch('bookwyrm.models.user.set_remote_server.delay'):
+            another_remote_user = models.User.objects.create_user(
+                'nutria', 'nutria@nutria.com', 'nutriaword',
+                local=False,
+                remote_id='https://example.com/users/nutria',
+                inbox='https://example.com/users/nutria/inbox',
+                outbox='https://example.com/users/nutria/outbox',
+            )
+        MockMentions = namedtuple('Mentions', ('all'))
+        mock_mentions = MockMentions(lambda: [another_remote_user])
+        MockSelf = namedtuple('Self', ('privacy', 'user', 'mention_users'))
+        mock_self = MockSelf('public', self.local_user, mock_mentions)
+
+        recipients = ActivitypubMixin.get_recipients(mock_self)
+        self.assertEqual(len(recipients), 2)
+        self.assertEqual(recipients[0], another_remote_user.inbox)
+        self.assertEqual(recipients[1], self.remote_user.inbox)
+
+
+    def test_get_recipients_direct(self):
+        ''' determines the recipients for a user's object broadcast '''
+        MockSelf = namedtuple('Self', ('privacy', 'user'))
+        mock_self = MockSelf('public', self.local_user)
+        self.local_user.followers.add(self.remote_user)
+        with patch('bookwyrm.models.user.set_remote_server.delay'):
+            another_remote_user = models.User.objects.create_user(
+                'nutria', 'nutria@nutria.com', 'nutriaword',
+                local=False,
+                remote_id='https://example.com/users/nutria',
+                inbox='https://example.com/users/nutria/inbox',
+                outbox='https://example.com/users/nutria/outbox',
+            )
+        MockMentions = namedtuple('Mentions', ('all'))
+        mock_mentions = MockMentions(lambda: [another_remote_user])
+        MockSelf = namedtuple('Self', ('privacy', 'user', 'mention_users'))
+        mock_self = MockSelf('direct', self.local_user, mock_mentions)
+
+        recipients = ActivitypubMixin.get_recipients(mock_self)
+        self.assertEqual(len(recipients), 1)
+        self.assertEqual(recipients[0], another_remote_user.inbox)
+
+
+    def test_get_recipients_combine_inboxes(self):
+        self.remote_user.shared_inbox = 'http://example.com/inbox'
+        self.remote_user.save(broadcast=False)
+        with patch('bookwyrm.models.user.set_remote_server.delay'):
+            another_remote_user = models.User.objects.create_user(
+                'nutria', 'nutria@nutria.com', 'nutriaword',
+                local=False,
+                remote_id='https://example.com/users/nutria',
+                inbox='https://example.com/users/nutria/inbox',
+                shared_inbox='http://example.com/inbox',
+                outbox='https://example.com/users/nutria/outbox',
+            )
+        MockSelf = namedtuple('Self', ('privacy', 'user'))
+        mock_self = MockSelf('public', self.local_user)
+        self.local_user.followers.add(self.remote_user)
+        self.local_user.followers.add(another_remote_user)
+
+        recipients = ActivitypubMixin.get_recipients(mock_self)
+        self.assertEqual(len(recipients), 1)
+        self.assertEqual(recipients[0], 'http://example.com/inbox')
+
+
+    def test_get_recipients_software(self):
+        with patch('bookwyrm.models.user.set_remote_server.delay'):
+            another_remote_user = models.User.objects.create_user(
+                'nutria', 'nutria@nutria.com', 'nutriaword',
+                local=False,
+                remote_id='https://example.com/users/nutria',
+                inbox='https://example.com/users/nutria/inbox',
+                outbox='https://example.com/users/nutria/outbox',
+                bookwyrm_user=False,
+            )
+        MockSelf = namedtuple('Self', ('privacy', 'user'))
+        mock_self = MockSelf('public', self.local_user)
+        self.local_user.followers.add(self.remote_user)
+        self.local_user.followers.add(another_remote_user)
+
+        recipients = ActivitypubMixin.get_recipients(mock_self)
+        self.assertEqual(len(recipients), 2)
+
+        recipients = ActivitypubMixin.get_recipients(mock_self, software='bookwyrm')
+        self.assertEqual(len(recipients), 1)
+        self.assertEqual(recipients[0], self.remote_user.inbox)
+
+        recipients = ActivitypubMixin.get_recipients(mock_self, software='other')
+        self.assertEqual(len(recipients), 1)
+        self.assertEqual(recipients[0], another_remote_user.inbox)
 
 
     # ObjectMixin
diff --git a/bookwyrm/tests/test_broadcast.py b/bookwyrm/tests/test_broadcast.py
deleted file mode 100644
index 6344a9f0..00000000
--- a/bookwyrm/tests/test_broadcast.py
+++ /dev/null
@@ -1,80 +0,0 @@
-from unittest.mock import patch
-from django.test import TestCase
-
-from bookwyrm import models, broadcast
-
-
-class Broadcast(TestCase):
-    def setUp(self):
-        self.user = models.User.objects.create_user(
-            'mouse', 'mouse@mouse.mouse', 'mouseword',
-            local=True, localname='mouse')
-
-        local_follower = models.User.objects.create_user(
-            'joe', 'joe@mouse.mouse', 'jeoword',
-            local=True, localname='joe')
-        self.user.followers.add(local_follower)
-
-        with patch('bookwyrm.models.user.set_remote_server.delay'):
-            follower = models.User.objects.create_user(
-                'rat', 'rat@mouse.mouse', 'ratword', local=False,
-                remote_id='http://example.com/u/1',
-                outbox='http://example.com/u/1/o',
-                shared_inbox='http://example.com/inbox',
-                inbox='http://example.com/u/1/inbox')
-            self.user.followers.add(follower)
-
-            no_inbox_follower = models.User.objects.create_user(
-                'hamster', 'hamster@mouse.mouse', 'hamword',
-                shared_inbox=None, local=False,
-                remote_id='http://example.com/u/2',
-                outbox='http://example.com/u/2/o',
-                inbox='http://example.com/u/2/inbox')
-            self.user.followers.add(no_inbox_follower)
-
-            non_bw_follower = models.User.objects.create_user(
-                'gerbil', 'gerb@mouse.mouse', 'gerbword',
-                remote_id='http://example.com/u/3',
-                outbox='http://example2.com/u/3/o',
-                inbox='http://example2.com/u/3/inbox',
-                shared_inbox='http://example2.com/inbox',
-                bookwyrm_user=False, local=False)
-            self.user.followers.add(non_bw_follower)
-
-            models.User.objects.create_user(
-                'nutria', 'nutria@mouse.mouse', 'nuword',
-                remote_id='http://example.com/u/4',
-                outbox='http://example.com/u/4/o',
-                shared_inbox='http://example.com/inbox',
-                inbox='http://example.com/u/4/inbox',
-                local=False)
-
-
-    def test_get_public_recipients(self):
-        expected = [
-            'http://example2.com/inbox',
-            'http://example.com/inbox',
-            'http://example.com/u/2/inbox',
-        ]
-
-        recipients = broadcast.get_public_recipients(self.user)
-        self.assertEqual(recipients, expected)
-
-
-    def test_get_public_recipients_software(self):
-        expected = [
-            'http://example.com/inbox',
-            'http://example.com/u/2/inbox',
-        ]
-
-        recipients = broadcast.get_public_recipients(self.user, software='bookwyrm')
-        self.assertEqual(recipients, expected)
-
-
-    def test_get_public_recipients_software_other(self):
-        expected = [
-            'http://example2.com/inbox',
-        ]
-
-        recipients = broadcast.get_public_recipients(self.user, software='mastodon')
-        self.assertEqual(recipients, expected)

From d477b6d3f356a5fcbf95df98957f08db61149418 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 6 Feb 2021 13:40:42 -0800
Subject: [PATCH 129/280] tests create and delete activity for objectmixin

---
 .../tests/models/test_activitypub_mixin.py    | 54 +++++++++++++++++--
 1 file changed, 51 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/tests/models/test_activitypub_mixin.py b/bookwyrm/tests/models/test_activitypub_mixin.py
index 300e94aa..e7931431 100644
--- a/bookwyrm/tests/models/test_activitypub_mixin.py
+++ b/bookwyrm/tests/models/test_activitypub_mixin.py
@@ -3,12 +3,12 @@ from unittest.mock import patch
 from collections import namedtuple
 from dataclasses import dataclass
 import re
+from django import db
 from django.test import TestCase
 
 from bookwyrm.activitypub.base_activity import ActivityObject
 from bookwyrm import models
 from bookwyrm.models import base_model
-from bookwyrm.models import activitypub_mixin
 from bookwyrm.models.activitypub_mixin import ActivitypubMixin
 from bookwyrm.models.activitypub_mixin import ActivityMixin, ObjectMixin
 
@@ -174,6 +174,7 @@ class ActivitypubMixins(TestCase):
 
 
     def test_get_recipients_combine_inboxes(self):
+        ''' should combine users with the same shared_inbox '''
         self.remote_user.shared_inbox = 'http://example.com/inbox'
         self.remote_user.save(broadcast=False)
         with patch('bookwyrm.models.user.set_remote_server.delay'):
@@ -196,6 +197,7 @@ class ActivitypubMixins(TestCase):
 
 
     def test_get_recipients_software(self):
+        ''' should differentiate between bookwyrm and other remote users '''
         with patch('bookwyrm.models.user.set_remote_server.delay'):
             another_remote_user = models.User.objects.create_user(
                 'nutria', 'nutria@nutria.com', 'nutriaword',
@@ -213,16 +215,62 @@ class ActivitypubMixins(TestCase):
         recipients = ActivitypubMixin.get_recipients(mock_self)
         self.assertEqual(len(recipients), 2)
 
-        recipients = ActivitypubMixin.get_recipients(mock_self, software='bookwyrm')
+        recipients = ActivitypubMixin.get_recipients(
+            mock_self, software='bookwyrm')
         self.assertEqual(len(recipients), 1)
         self.assertEqual(recipients[0], self.remote_user.inbox)
 
-        recipients = ActivitypubMixin.get_recipients(mock_self, software='other')
+        recipients = ActivitypubMixin.get_recipients(
+            mock_self, software='other')
         self.assertEqual(len(recipients), 1)
         self.assertEqual(recipients[0], another_remote_user.inbox)
 
 
     # ObjectMixin
+    def test_object_save(self):
+        ''' should save uneventufully when broadcast is disabled '''
+        class Success(Exception):
+            ''' this means we got to the right method '''
+
+        class ObjectModel(ObjectMixin, base_model.BookWyrmModel):
+            ''' real simple mock model because BookWyrmModel is abstract '''
+            user = models.fields.ForeignKey('User', on_delete=db.models.CASCADE)
+            def save(self, *args, **kwargs):
+                with patch('django.db.models.Model.save'):
+                    super().save(*args, **kwargs)
+            def broadcast(self, activity, sender):
+                ''' do something '''
+                raise Success()
+            def to_create_activity(self, user):
+                return {}
+
+        with self.assertRaises(Success):
+            ObjectModel(user=self.local_user).save()
+
+        ObjectModel(user=self.local_user).save(broadcast=False)
+        ObjectModel(user=None).save()
+
+
+    def test_object_save_delete(self):
+        ''' should create delete activities when objects are deleted by flag '''
+        class ActivitySuccess(Exception):
+            ''' this means we got to the right method '''
+
+        class DeletableObjectModel(ObjectMixin, base_model.BookWyrmModel):
+            ''' real simple mock model because BookWyrmModel is abstract '''
+            user = models.fields.ForeignKey('User', on_delete=db.models.CASCADE)
+            deleted = models.fields.BooleanField()
+            def save(self, *args, **kwargs):
+                with patch('django.db.models.Model.save'):
+                    super().save(*args, **kwargs)
+            def to_delete_activity(self, user):
+                raise ActivitySuccess()
+
+        with self.assertRaises(ActivitySuccess):
+            DeletableObjectModel(
+                id=1, user=self.local_user, deleted=True).save()
+
+
     def test_to_create_activity(self):
         ''' wrapper for ActivityPub "create" action '''
         object_activity = {

From f917079c0bee152ea0216ab76fa9a90fc0d3624e Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 6 Feb 2021 13:48:02 -0800
Subject: [PATCH 130/280] Adds update tests for objectmixin

---
 .../tests/models/test_activitypub_mixin.py    | 25 ++++++++++++++++++-
 1 file changed, 24 insertions(+), 1 deletion(-)

diff --git a/bookwyrm/tests/models/test_activitypub_mixin.py b/bookwyrm/tests/models/test_activitypub_mixin.py
index e7931431..2d2e0ee1 100644
--- a/bookwyrm/tests/models/test_activitypub_mixin.py
+++ b/bookwyrm/tests/models/test_activitypub_mixin.py
@@ -227,7 +227,7 @@ class ActivitypubMixins(TestCase):
 
 
     # ObjectMixin
-    def test_object_save(self):
+    def test_object_save_create(self):
         ''' should save uneventufully when broadcast is disabled '''
         class Success(Exception):
             ''' this means we got to the right method '''
@@ -247,10 +247,33 @@ class ActivitypubMixins(TestCase):
         with self.assertRaises(Success):
             ObjectModel(user=self.local_user).save()
 
+        ObjectModel(user=self.remote_user).save()
         ObjectModel(user=self.local_user).save(broadcast=False)
         ObjectModel(user=None).save()
 
 
+    def test_object_save_update(self):
+        ''' should save uneventufully when broadcast is disabled '''
+        class Success(Exception):
+            ''' this means we got to the right method '''
+
+        class UpdateObjectModel(ObjectMixin, base_model.BookWyrmModel):
+            ''' real simple mock model because BookWyrmModel is abstract '''
+            user = models.fields.ForeignKey('User', on_delete=db.models.CASCADE)
+            last_edited_by = models.fields.ForeignKey(
+                'User', on_delete=db.models.CASCADE)
+            def save(self, *args, **kwargs):
+                with patch('django.db.models.Model.save'):
+                    super().save(*args, **kwargs)
+            def to_update_activity(self, user):
+                raise Success()
+
+        with self.assertRaises(Success):
+            UpdateObjectModel(id=1, user=self.local_user).save()
+        with self.assertRaises(Success):
+            UpdateObjectModel(id=1, last_edited_by=self.local_user).save()
+
+
     def test_object_save_delete(self):
         ''' should create delete activities when objects are deleted by flag '''
         class ActivitySuccess(Exception):

From ffd0759f6fd48a13c01dfa715120612800e27bfa Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 6 Feb 2021 16:13:59 -0800
Subject: [PATCH 131/280] Fixes field and lists tests

---
 bookwyrm/models/base_model.py                  |  5 ++++-
 bookwyrm/models/readthrough.py                 |  2 +-
 bookwyrm/tests/models/test_fields.py           | 18 ++++++++++++------
 bookwyrm/tests/models/test_list.py             | 17 ++++++++++-------
 .../tests/models/test_relationship_models.py   |  2 +-
 5 files changed, 28 insertions(+), 16 deletions(-)

diff --git a/bookwyrm/models/base_model.py b/bookwyrm/models/base_model.py
index 9c0865df..06546c9b 100644
--- a/bookwyrm/models/base_model.py
+++ b/bookwyrm/models/base_model.py
@@ -38,4 +38,7 @@ def execute_after_save(sender, instance, created, *args, **kwargs):
         return
     if not instance.remote_id:
         instance.remote_id = instance.get_remote_id()
-        instance.save(broadcast=False)
+        try:
+            instance.save(broadcast=False)
+        except TypeError:
+            instance.save()
diff --git a/bookwyrm/models/readthrough.py b/bookwyrm/models/readthrough.py
index 2a3dd9f4..2bec3a81 100644
--- a/bookwyrm/models/readthrough.py
+++ b/bookwyrm/models/readthrough.py
@@ -54,5 +54,5 @@ class ProgressUpdate(BookWyrmModel):
     def save(self, *args, **kwargs):
         ''' update user active time '''
         self.user.last_active_date = timezone.now()
-        self.user.save()
+        self.user.save(broadcast=False)
         super().save(*args, **kwargs)
diff --git a/bookwyrm/tests/models/test_fields.py b/bookwyrm/tests/models/test_fields.py
index ff8c800a..38de9c98 100644
--- a/bookwyrm/tests/models/test_fields.py
+++ b/bookwyrm/tests/models/test_fields.py
@@ -178,7 +178,8 @@ class ActivitypubFields(TestCase):
         self.assertEqual(model_instance.privacy_field, 'unlisted')
 
 
-    def test_privacy_field_set_activity_from_field(self):
+    @patch('bookwyrm.models.activitypub_mixin.ObjectMixin.broadcast')
+    def test_privacy_field_set_activity_from_field(self, _):
         ''' translate between to/cc fields and privacy '''
         user = User.objects.create_user(
             'rat', 'rat@rat.rat', 'ratword',
@@ -195,13 +196,15 @@ class ActivitypubFields(TestCase):
         self.assertEqual(activity['to'], [public])
         self.assertEqual(activity['cc'], [followers])
 
-        model_instance = Status.objects.create(user=user, privacy='unlisted')
+        model_instance = Status.objects.create(
+            user=user, content='hi', privacy='unlisted')
         activity = {}
         instance.set_activity_from_field(activity, model_instance)
         self.assertEqual(activity['to'], [followers])
         self.assertEqual(activity['cc'], [public])
 
-        model_instance = Status.objects.create(user=user, privacy='followers')
+        model_instance = Status.objects.create(
+            user=user, content='hi', privacy='followers')
         activity = {}
         instance.set_activity_from_field(activity, model_instance)
         self.assertEqual(activity['to'], [followers])
@@ -209,6 +212,7 @@ class ActivitypubFields(TestCase):
 
         model_instance = Status.objects.create(
             user=user,
+            content='hi',
             privacy='direct',
         )
         model_instance.mention_users.set([user])
@@ -290,12 +294,13 @@ class ActivitypubFields(TestCase):
             'mouse', 'mouse@mouse.mouse', 'mouseword',
             local=True, localname='mouse')
         user.remote_id = 'https://example.com/user/mouse'
-        user.save()
+        user.save(broadcast=False)
         User.objects.create_user(
             'rat', 'rat@rat.rat', 'ratword',
             local=True, localname='rat')
 
-        value = instance.field_from_activity(userdata)
+        with patch('bookwyrm.models.activitypub_mixin.ObjectMixin.broadcast'):
+            value = instance.field_from_activity(userdata)
         self.assertEqual(value, user)
 
 
@@ -394,7 +399,8 @@ class ActivitypubFields(TestCase):
 
 
     @responses.activate
-    def test_image_field(self):
+    @patch('bookwyrm.models.activitypub_mixin.ObjectMixin.broadcast')
+    def test_image_field(self, _):
         ''' storing images '''
         user = User.objects.create_user(
             'mouse', 'mouse@mouse.mouse', 'mouseword',
diff --git a/bookwyrm/tests/models/test_list.py b/bookwyrm/tests/models/test_list.py
index b53ee380..d41b81c7 100644
--- a/bookwyrm/tests/models/test_list.py
+++ b/bookwyrm/tests/models/test_list.py
@@ -1,9 +1,11 @@
 ''' testing models '''
+from unittest.mock import patch
 from django.test import TestCase
 
 from bookwyrm import models, settings
 
 
+@patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay')
 class List(TestCase):
     ''' some activitypub oddness ahead '''
     def setUp(self):
@@ -11,17 +13,18 @@ class List(TestCase):
         self.user = models.User.objects.create_user(
             'mouse', 'mouse@mouse.mouse', 'mouseword',
             local=True, localname='mouse')
-        self.list = models.List.objects.create(
-            name='Test List', user=self.user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            self.list = models.List.objects.create(
+                name='Test List', user=self.user)
 
-    def test_remote_id(self):
+    def test_remote_id(self, _):
         ''' shelves use custom remote ids '''
         expected_id = 'https://%s/list/%d' % \
             (settings.DOMAIN, self.list.id)
         self.assertEqual(self.list.get_remote_id(), expected_id)
 
 
-    def test_to_activity(self):
+    def test_to_activity(self, _):
         ''' jsonify it '''
         activity_json = self.list.to_activity()
         self.assertIsInstance(activity_json, dict)
@@ -31,7 +34,7 @@ class List(TestCase):
         self.assertEqual(activity_json['name'], 'Test List')
         self.assertEqual(activity_json['owner'], self.user.remote_id)
 
-    def test_list_item(self):
+    def test_list_item(self, _):
         ''' a list entry '''
         work = models.Work.objects.create(title='hello')
         book = models.Edition.objects.create(title='hi', parent_work=work)
@@ -43,12 +46,12 @@ class List(TestCase):
 
         self.assertTrue(item.approved)
 
-        add_activity = item.to_add_activity(self.user)
+        add_activity = item.to_add_activity()
         self.assertEqual(add_activity['actor'], self.user.remote_id)
         self.assertEqual(add_activity['object']['id'], book.remote_id)
         self.assertEqual(add_activity['target'], self.list.remote_id)
 
-        remove_activity = item.to_remove_activity(self.user)
+        remove_activity = item.to_remove_activity()
         self.assertEqual(remove_activity['actor'], self.user.remote_id)
         self.assertEqual(remove_activity['object']['id'], book.remote_id)
         self.assertEqual(remove_activity['target'], self.list.remote_id)
diff --git a/bookwyrm/tests/models/test_relationship_models.py b/bookwyrm/tests/models/test_relationship_models.py
index a1232c1b..56f37e1e 100644
--- a/bookwyrm/tests/models/test_relationship_models.py
+++ b/bookwyrm/tests/models/test_relationship_models.py
@@ -19,7 +19,7 @@ class Relationship(TestCase):
             'mouse', 'mouse@mouse.com', 'mouseword',
             local=True, localname='mouse')
         self.local_user.remote_id = 'http://local.com/user/mouse'
-        self.local_user.save()
+        self.local_user.save(broadcast=False)
 
     def test_user_follows(self):
         rel = models.UserFollows.objects.create(

From b02a2c1aa4698b86da1ec017a9048715e7b345f3 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 6 Feb 2021 19:12:49 -0800
Subject: [PATCH 132/280] broadcasting for follow, accept, and reject

---
 bookwyrm/incoming.py                          |   4 +-
 bookwyrm/models/activitypub_mixin.py          |   6 +-
 bookwyrm/models/relationship.py               |  81 +++++++----
 .../tests/models/test_relationship_models.py  | 137 +++++++++++-------
 bookwyrm/views/__init__.py                    |   2 +-
 bookwyrm/views/follow.py                      |  11 +-
 6 files changed, 140 insertions(+), 101 deletions(-)

diff --git a/bookwyrm/incoming.py b/bookwyrm/incoming.py
index 103b24fc..562225e7 100644
--- a/bookwyrm/incoming.py
+++ b/bookwyrm/incoming.py
@@ -9,7 +9,7 @@ from django.views.decorators.csrf import csrf_exempt
 from django.views.decorators.http import require_POST
 import requests
 
-from bookwyrm import activitypub, models, views
+from bookwyrm import activitypub, models
 from bookwyrm import status as status_builder
 from bookwyrm.tasks import app
 from bookwyrm.signatures import Signature
@@ -144,7 +144,7 @@ def handle_follow(activity):
         related_user=relationship.user_subject
     )
     if not manually_approves:
-        views.handle_accept(relationship)
+        relationship.accept()
 
 
 @app.task
diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 7d5b5beb..0168dec8 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -366,12 +366,14 @@ class ActivityMixin(ActivitypubMixin):
     def save(self, *args, **kwargs):
         ''' broadcast activity '''
         super().save(*args, **kwargs)
-        self.broadcast(self.to_activity(), self.user)
+        user = self.user if hasattr(self, 'user') else self.user_subject
+        self.broadcast(self.to_activity(), user)
 
 
     def delete(self, *args, **kwargs):
         ''' nevermind, undo that activity '''
-        self.broadcast(self.to_undo_activity(), self.user)
+        user = self.user if hasattr(self, 'user') else self.user_subject
+        self.broadcast(self.to_undo_activity(), user)
         super().delete(*args, **kwargs)
 
 
diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index 712f607b..2ff0da59 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -1,15 +1,15 @@
 ''' defines relationships between users '''
-from django.db import models
+from django.db import models, transaction
 from django.db.models import Q
 from django.dispatch import receiver
 
 from bookwyrm import activitypub
-from .activitypub_mixin import ActivityMixin
+from .activitypub_mixin import ActivitypubMixin, ActivityMixin
 from .base_model import BookWyrmModel
 from . import fields
 
 
-class UserRelationship(ActivityMixin, BookWyrmModel):
+class UserRelationship(BookWyrmModel):
     ''' many-to-many through table for followers '''
     user_subject = fields.ForeignKey(
         'User',
@@ -24,6 +24,11 @@ class UserRelationship(ActivityMixin, BookWyrmModel):
         activitypub_field='object',
     )
 
+    @property
+    def privacy(self):
+        ''' all relationships are handled directly with the participants '''
+        return 'direct'
+
     class Meta:
         ''' relationships should be unique '''
         abstract = True
@@ -38,8 +43,6 @@ class UserRelationship(ActivityMixin, BookWyrmModel):
             )
         ]
 
-    activity_serializer = activitypub.Follow
-
     def get_remote_id(self, status=None):# pylint: disable=arguments-differ
         ''' use shelf identifier in remote_id '''
         status = status or 'follows'
@@ -47,55 +50,73 @@ class UserRelationship(ActivityMixin, BookWyrmModel):
         return '%s#%s/%d' % (base_path, status, self.id)
 
 
-    def to_accept_activity(self):
-        ''' generate an Accept for this follow request '''
-        return activitypub.Accept(
-            id=self.get_remote_id(status='accepts'),
-            actor=self.user_object.remote_id,
-            object=self.to_activity()
-        ).serialize()
-
-
-    def to_reject_activity(self):
-        ''' generate a Reject for this follow request '''
-        return activitypub.Reject(
-            id=self.get_remote_id(status='rejects'),
-            actor=self.user_object.remote_id,
-            object=self.to_activity()
-        ).serialize()
-
-
-class UserFollows(UserRelationship):
+class UserFollows(ActivitypubMixin, UserRelationship):
     ''' Following a user '''
     status = 'follows'
+    activity_serializer = activitypub.Follow
+
 
     @classmethod
     def from_request(cls, follow_request):
         ''' converts a follow request into a follow relationship '''
-        return cls(
+        return cls.objects.create(
             user_subject=follow_request.user_subject,
             user_object=follow_request.user_object,
             remote_id=follow_request.remote_id,
         )
 
 
-class UserFollowRequest(UserRelationship):
+class UserFollowRequest(ActivitypubMixin, UserRelationship):
     ''' following a user requires manual or automatic confirmation '''
     status = 'follow_request'
+    activity_serializer = activitypub.Follow
 
     def save(self, *args, **kwargs):
-        ''' make sure the follow relationship doesn't already exist '''
+        ''' make sure the follow or block relationship doesn't already exist '''
         try:
             UserFollows.objects.get(
                 user_subject=self.user_subject,
                 user_object=self.user_object
             )
+            UserBlocks.objects.get(
+                user_subject=self.user_subject,
+                user_object=self.user_object
+            )
             return None
-        except UserFollows.DoesNotExist:
-            return super().save(*args, **kwargs)
+        except (UserFollows.DoesNotExist, UserBlocks.DoesNotExist):
+            super().save(*args, **kwargs)
+        if self.user_subject.local and not self.user_object.local:
+            self.broadcast(self.to_activity(), self.user_subject)
 
 
-class UserBlocks(UserRelationship):
+    def accept(self):
+        ''' turn this request into the real deal'''
+        user = self.user_object
+        activity = activitypub.Accept(
+            id=self.get_remote_id(status='accepts'),
+            actor=self.user_object.remote_id,
+            object=self.to_activity()
+        ).serialize()
+        with transaction.atomic():
+            UserFollows.from_request(self)
+            self.delete()
+
+        self.broadcast(activity, user)
+
+
+    def reject(self):
+        ''' generate a Reject for this follow request '''
+        user = self.user_object
+        activity = activitypub.Reject(
+            id=self.get_remote_id(status='rejects'),
+            actor=self.user_object.remote_id,
+            object=self.to_activity()
+        ).serialize()
+        self.delete()
+        self.broadcast(activity, user)
+
+
+class UserBlocks(ActivityMixin, UserRelationship):
     ''' prevent another user from following you and seeing your posts '''
     status = 'blocks'
     activity_serializer = activitypub.Block
diff --git a/bookwyrm/tests/models/test_relationship_models.py b/bookwyrm/tests/models/test_relationship_models.py
index 56f37e1e..c8d80262 100644
--- a/bookwyrm/tests/models/test_relationship_models.py
+++ b/bookwyrm/tests/models/test_relationship_models.py
@@ -6,7 +6,9 @@ from bookwyrm import models
 
 
 class Relationship(TestCase):
+    ''' following, blocking, stuff like that '''
     def setUp(self):
+        ''' we need some users for this '''
         with patch('bookwyrm.models.user.set_remote_server.delay'):
             self.remote_user = models.User.objects.create_user(
                 'rat', 'rat@rat.com', 'ratword',
@@ -22,65 +24,27 @@ class Relationship(TestCase):
         self.local_user.save(broadcast=False)
 
     def test_user_follows(self):
-        rel = models.UserFollows.objects.create(
-            user_subject=self.local_user,
-            user_object=self.remote_user
-        )
-
-        self.assertEqual(
-            rel.remote_id,
-            'http://local.com/user/mouse#follows/%d' % rel.id
-        )
+        ''' create a follow relationship '''
+        with patch('bookwyrm.models.activitypub_mixin.ActivityMixin.broadcast'):
+            rel = models.UserFollows.objects.create(
+                user_subject=self.local_user,
+                user_object=self.remote_user
+            )
 
         activity = rel.to_activity()
         self.assertEqual(activity['id'], rel.remote_id)
         self.assertEqual(activity['actor'], self.local_user.remote_id)
         self.assertEqual(activity['object'], self.remote_user.remote_id)
 
-    def test_user_follow_accept_serialization(self):
-        rel = models.UserFollows.objects.create(
-            user_subject=self.local_user,
-            user_object=self.remote_user
-        )
-
-        self.assertEqual(
-            rel.remote_id,
-            'http://local.com/user/mouse#follows/%d' % rel.id
-        )
-        accept = rel.to_accept_activity()
-        self.assertEqual(accept['type'], 'Accept')
-        self.assertEqual(
-            accept['id'],
-            'http://local.com/user/mouse#accepts/%d' % rel.id
-        )
-        self.assertEqual(accept['actor'], self.remote_user.remote_id)
-        self.assertEqual(accept['object']['id'], rel.remote_id)
-        self.assertEqual(accept['object']['actor'], self.local_user.remote_id)
-        self.assertEqual(accept['object']['object'], self.remote_user.remote_id)
-
-    def test_user_follow_reject_serialization(self):
-        rel = models.UserFollows.objects.create(
-            user_subject=self.local_user,
-            user_object=self.remote_user
-        )
-
-        self.assertEqual(
-            rel.remote_id,
-            'http://local.com/user/mouse#follows/%d' % rel.id
-        )
-        reject = rel.to_reject_activity()
-        self.assertEqual(reject['type'], 'Reject')
-        self.assertEqual(
-            reject['id'],
-            'http://local.com/user/mouse#rejects/%d' % rel.id
-        )
-        self.assertEqual(reject['actor'], self.remote_user.remote_id)
-        self.assertEqual(reject['object']['id'], rel.remote_id)
-        self.assertEqual(reject['object']['actor'], self.local_user.remote_id)
-        self.assertEqual(reject['object']['object'], self.remote_user.remote_id)
-
 
     def test_user_follows_from_request(self):
+        ''' convert a follow request into a follow '''
+        def mock_broadcast(_, activity, user):
+            ''' introspect what's being sent out '''
+            self.assertEqual(user.remote_id, self.local_user.remote_id)
+            self.assertEqual(activity['type'], 'Follow')
+
+        models.UserFollowRequest.broadcast = mock_broadcast
         request = models.UserFollowRequest.objects.create(
             user_subject=self.local_user,
             user_object=self.remote_user
@@ -102,11 +66,14 @@ class Relationship(TestCase):
 
 
     def test_user_follows_from_request_custom_remote_id(self):
-        request = models.UserFollowRequest.objects.create(
-            user_subject=self.local_user,
-            user_object=self.remote_user,
-            remote_id='http://antoher.server/sdkfhskdjf/23'
-        )
+        ''' store a specific remote id for a relationship provided by remote '''
+        with patch(
+                'bookwyrm.models.activitypub_mixin.ActivitypubMixin.broadcast'):
+            request = models.UserFollowRequest.objects.create(
+                user_subject=self.local_user,
+                user_object=self.remote_user,
+                remote_id='http://antoher.server/sdkfhskdjf/23'
+            )
         self.assertEqual(
             request.remote_id,
             'http://antoher.server/sdkfhskdjf/23'
@@ -121,3 +88,61 @@ class Relationship(TestCase):
         self.assertEqual(rel.status, 'follows')
         self.assertEqual(rel.user_subject, self.local_user)
         self.assertEqual(rel.user_object, self.remote_user)
+
+
+    def test_follow_request_activity(self):
+        ''' accept a request and make it a relationship '''
+        def mock_broadcast(_, activity, user):
+            self.assertEqual(user.remote_id, self.local_user.remote_id)
+            self.assertEqual(activity['actor'], self.local_user.remote_id)
+            self.assertEqual(activity['object'], self.remote_user.remote_id)
+            self.assertEqual(activity['type'], 'Follow')
+
+        models.UserFollowRequest.broadcast = mock_broadcast
+        models.UserFollowRequest.objects.create(
+            user_subject=self.local_user,
+            user_object=self.remote_user,
+        )
+
+
+    def test_follow_request_accept(self):
+        ''' accept a request and make it a relationship '''
+        def mock_broadcast(_, activity, user):
+            self.assertEqual(user.remote_id, self.local_user.remote_id)
+            self.assertEqual(activity['type'], 'Accept')
+            self.assertEqual(activity['actor'], self.local_user.remote_id)
+            self.assertEqual(
+                activity['object']['id'], request.remote_id)
+
+        models.UserFollowRequest.broadcast = mock_broadcast
+        request = models.UserFollowRequest.objects.create(
+            user_subject=self.remote_user,
+            user_object=self.local_user,
+        )
+        request.accept()
+
+        self.assertFalse(models.UserFollowRequest.objects.exists())
+        self.assertTrue(models.UserFollows.objects.exists())
+        rel = models.UserFollows.objects.get()
+        self.assertEqual(rel.user_subject, self.remote_user)
+        self.assertEqual(rel.user_object, self.local_user)
+
+
+    def test_follow_request_reject(self):
+        ''' accept a request and make it a relationship '''
+        def mock_reject(_, activity, user):
+            self.assertEqual(user.remote_id, self.local_user.remote_id)
+            self.assertEqual(activity['type'], 'Reject')
+            self.assertEqual(activity['actor'], self.local_user.remote_id)
+            self.assertEqual(
+                activity['object']['id'], request.remote_id)
+
+        models.UserFollowRequest.broadcast = mock_reject
+        request = models.UserFollowRequest.objects.create(
+            user_subject=self.remote_user,
+            user_object=self.local_user,
+        )
+        request.reject()
+
+        self.assertFalse(models.UserFollowRequest.objects.exists())
+        self.assertFalse(models.UserFollows.objects.exists())
diff --git a/bookwyrm/views/__init__.py b/bookwyrm/views/__init__.py
index 196e84c0..b72c5013 100644
--- a/bookwyrm/views/__init__.py
+++ b/bookwyrm/views/__init__.py
@@ -8,7 +8,7 @@ from .error import not_found_page, server_error_page
 from .federation import Federation
 from .feed import DirectMessage, Feed, Replies, Status
 from .follow import follow, unfollow
-from .follow import accept_follow_request, delete_follow_request, handle_accept
+from .follow import accept_follow_request, delete_follow_request
 from .goal import Goal
 from .import_data import Import, ImportStatus
 from .interaction import Favorite, Unfavorite, Boost, Unboost
diff --git a/bookwyrm/views/follow.py b/bookwyrm/views/follow.py
index 992b0dc1..f5b2ddd5 100644
--- a/bookwyrm/views/follow.py
+++ b/bookwyrm/views/follow.py
@@ -1,5 +1,4 @@
 ''' views for actions you can take in the application '''
-from django.db import  transaction
 from django.contrib.auth.decorators import login_required
 from django.http import HttpResponseBadRequest
 from django.shortcuts import redirect
@@ -62,19 +61,11 @@ def accept_follow_request(request):
     except models.UserFollowRequest.DoesNotExist:
         # Request already dealt with.
         return redirect(request.user.local_path)
-    handle_accept(follow_request)
+    follow_request.accept()
 
     return redirect(request.user.local_path)
 
 
-def handle_accept(follow_request):
-    ''' send an acceptance message to a follow request '''
-    with transaction.atomic():
-        relationship = models.UserFollows.from_request(follow_request)
-        follow_request.delete()
-        relationship.save()
-
-
 @login_required
 @require_POST
 def delete_follow_request(request):

From 63fe9777e2de7f883e1678435d29cb2ea145ab74 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 6 Feb 2021 21:00:08 -0800
Subject: [PATCH 133/280] Fixes shelf model tests

---
 bookwyrm/models/shelf.py                  |  5 +-
 bookwyrm/tests/models/test_shelf_model.py | 84 +++++++++++++++++++++--
 2 files changed, 79 insertions(+), 10 deletions(-)

diff --git a/bookwyrm/models/shelf.py b/bookwyrm/models/shelf.py
index a1b1a48c..38e5913b 100644
--- a/bookwyrm/models/shelf.py
+++ b/bookwyrm/models/shelf.py
@@ -27,12 +27,11 @@ class Shelf(OrderedCollectionMixin, BookWyrmModel):
 
     def save(self, *args, **kwargs):
         ''' set the identifier '''
-        saved = super().save(*args, **kwargs)
+        super().save(*args, **kwargs)
         if not self.identifier:
             slug = re.sub(r'[^\w]', '', self.name).lower()
             self.identifier = '%s-%d' % (slug, self.id)
-            return super().save(*args, **kwargs)
-        return saved
+            super().save(*args, **kwargs)
 
     @property
     def collection_queryset(self):
diff --git a/bookwyrm/tests/models/test_shelf_model.py b/bookwyrm/tests/models/test_shelf_model.py
index 70394a12..0433efe3 100644
--- a/bookwyrm/tests/models/test_shelf_model.py
+++ b/bookwyrm/tests/models/test_shelf_model.py
@@ -8,24 +8,94 @@ class Shelf(TestCase):
     ''' some activitypub oddness ahead '''
     def setUp(self):
         ''' look, a shelf '''
-        self.user = models.User.objects.create_user(
+        self.local_user = models.User.objects.create_user(
             'mouse', 'mouse@mouse.mouse', 'mouseword',
             local=True, localname='mouse')
-        self.shelf = models.Shelf.objects.create(
-            name='Test Shelf', identifier='test-shelf', user=self.user)
+        work = models.Work.objects.create(title='Test Work')
+        self.book = models.Edition.objects.create(
+            title='test book',
+            parent_work=work)
 
     def test_remote_id(self):
         ''' shelves use custom remote ids '''
+        models.Shelf.broadcast = lambda x, y, z: None
+        shelf = models.Shelf.objects.create(
+            name='Test Shelf', identifier='test-shelf',
+            user=self.local_user)
         expected_id = 'https://%s/user/mouse/shelf/test-shelf' % settings.DOMAIN
-        self.assertEqual(self.shelf.get_remote_id(), expected_id)
+        self.assertEqual(shelf.get_remote_id(), expected_id)
 
 
     def test_to_activity(self):
         ''' jsonify it '''
-        activity_json = self.shelf.to_activity()
+        models.Shelf.broadcast = lambda x, y, z: None
+        shelf = models.Shelf.objects.create(
+            name='Test Shelf', identifier='test-shelf',
+            user=self.local_user)
+        activity_json = shelf.to_activity()
         self.assertIsInstance(activity_json, dict)
-        self.assertEqual(activity_json['id'], self.shelf.remote_id)
+        self.assertEqual(activity_json['id'], shelf.remote_id)
         self.assertEqual(activity_json['totalItems'], 0)
         self.assertEqual(activity_json['type'], 'Shelf')
         self.assertEqual(activity_json['name'], 'Test Shelf')
-        self.assertEqual(activity_json['owner'], self.user.remote_id)
+        self.assertEqual(activity_json['owner'], self.local_user.remote_id)
+
+
+    def test_create_update_shelf(self):
+        ''' create and broadcast shelf creation '''
+        def create_mock(_, activity, user):
+            ''' ok '''
+            self.assertEqual(user.remote_id, self.local_user.remote_id)
+            self.assertEqual(activity['type'], 'Create')
+            self.assertEqual(activity['actor'], self.local_user.remote_id)
+            self.assertEqual(activity['object']['name'], 'Test Shelf')
+        models.Shelf.broadcast = create_mock
+
+        shelf = models.Shelf.objects.create(
+            name='Test Shelf', identifier='test-shelf', user=self.local_user)
+
+        def update_mock(_, activity, user):
+            ''' ok '''
+            self.assertEqual(user.remote_id, self.local_user.remote_id)
+            self.assertEqual(activity['type'], 'Update')
+            self.assertEqual(activity['actor'], self.local_user.remote_id)
+            self.assertEqual(activity['object']['name'], 'arthur russel')
+        models.Shelf.broadcast = update_mock
+
+        shelf.name = 'arthur russel'
+        shelf.save()
+        self.assertEqual(shelf.name, 'arthur russel')
+
+
+    def test_shelve(self):
+        ''' create and broadcast shelf creation '''
+        def add_mock(_, activity, user):
+            ''' ok '''
+            self.assertEqual(user.remote_id, self.local_user.remote_id)
+            self.assertEqual(activity['type'], 'Add')
+            self.assertEqual(activity['actor'], self.local_user.remote_id)
+            self.assertEqual(activity['object']['id'], self.book.remote_id)
+            self.assertEqual(activity['target'], shelf.remote_id)
+
+        def remove_mock(_, activity, user):
+            ''' ok '''
+            self.assertEqual(user.remote_id, self.local_user.remote_id)
+            self.assertEqual(activity['type'], 'Remove')
+            self.assertEqual(activity['actor'], self.local_user.remote_id)
+            self.assertEqual(activity['object']['id'], self.book.remote_id)
+            self.assertEqual(activity['target'], shelf.remote_id)
+
+        models.Shelf.broadcast = lambda x, y, z: None
+        shelf = models.Shelf.objects.create(
+            name='Test Shelf', identifier='test-shelf', user=self.local_user)
+
+        models.ShelfBook.broadcast = add_mock
+        shelf_book = models.ShelfBook.objects.create(
+            shelf=shelf,
+            user=self.local_user,
+            book=self.book)
+        self.assertEqual(shelf.books.first(), self.book)
+
+        models.ShelfBook.broadcast = remove_mock
+        shelf_book.delete()
+        self.assertFalse(shelf.books.exists())

From 272685f27d6cb37c1d5109f7b28c666bc2ccbe4a Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 6 Feb 2021 21:26:39 -0800
Subject: [PATCH 134/280] sketchy fix for boost broadcasting

---
 bookwyrm/models/activitypub_mixin.py       |  7 ++++++-
 bookwyrm/models/status.py                  | 13 +++----------
 bookwyrm/tests/models/test_status_model.py |  7 +++++++
 3 files changed, 16 insertions(+), 11 deletions(-)

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 0168dec8..51cce4e6 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -183,7 +183,12 @@ class ObjectMixin(ActivitypubMixin):
             # broadcast Create activities for objects owned by a local user
             if not user or not user.local:
                 return
-            activity = self.to_create_activity(user)
+            try:
+                activity = self.to_create_activity(user)
+            except KeyError:
+                # janky as heck, this catches the mutliple inheritence chain
+                # for boosts and ignores this auxilliary broadcast
+                return
             self.broadcast(activity, user)
             return
 
diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index d15afbfc..ec105a10 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -15,6 +15,7 @@ from .base_model import BookWyrmModel
 from .fields import image_serializer
 from . import fields
 
+
 class Status(OrderedCollectionPageMixin, BookWyrmModel):
     ''' any post, like a reply to a review, etc '''
     user = fields.ForeignKey(
@@ -127,14 +128,6 @@ class Status(OrderedCollectionPageMixin, BookWyrmModel):
         return activity
 
 
-    def save(self, *args, **kwargs):
-        ''' update user active time '''
-        if self.user.local:
-            self.user.last_active_date = timezone.now()
-            self.user.save(broadcast=False)
-        return super().save(*args, **kwargs)
-
-
 class GeneratedNote(Status):
     ''' these are app-generated messages about user activity '''
     @property
@@ -232,6 +225,8 @@ class Boost(ActivityMixin, Status):
         related_name='boosters',
         activitypub_field='object',
     )
+    activity_serializer = activitypub.Boost
+
 
     def __init__(self, *args, **kwargs):
         ''' the user field is "actor" here instead of "attributedTo" '''
@@ -245,8 +240,6 @@ class Boost(ActivityMixin, Status):
         self.image_fields = []
         self.deserialize_reverse_fields = []
 
-    activity_serializer = activitypub.Boost
-
     # This constraint can't work as it would cross tables.
     # class Meta:
     #     unique_together = ('user', 'boosted_status')
diff --git a/bookwyrm/tests/models/test_status_model.py b/bookwyrm/tests/models/test_status_model.py
index a479a88b..7462c07d 100644
--- a/bookwyrm/tests/models/test_status_model.py
+++ b/bookwyrm/tests/models/test_status_model.py
@@ -29,6 +29,7 @@ class Status(TestCase):
             'test.jpg',
             ContentFile(output.getvalue())
         )
+        models.Status.broadcast = lambda x, y, z: None
 
     def test_status_generated_fields(self):
         ''' setting remote id '''
@@ -239,6 +240,12 @@ class Status(TestCase):
 
     def test_favorite(self):
         ''' fav a status '''
+        def fav_broadcast_mock(_, activity, user):
+            ''' ok '''
+            self.assertEqual(user.remote_id, self.user.remote_id)
+            self.assertEqual(activity['type'], 'Like')
+        models.Favorite.broadcast = fav_broadcast_mock
+
         status = models.Status.objects.create(
             content='test content', user=self.user)
         fav = models.Favorite.objects.create(status=status, user=self.user)

From 6b10e487b67c04a43850dd85af94427d293bbdc7 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 6 Feb 2021 22:37:19 -0800
Subject: [PATCH 135/280] adding mocks for views tests

---
 bookwyrm/tests/views/test_author.py      |  2 +-
 bookwyrm/tests/views/test_block.py       | 11 ++--
 bookwyrm/tests/views/test_book.py        |  9 ++--
 bookwyrm/tests/views/test_feed.py        | 22 ++++----
 bookwyrm/tests/views/test_follow.py      |  8 +--
 bookwyrm/tests/views/test_goal.py        |  2 +-
 bookwyrm/tests/views/test_helpers.py     | 65 +++++++++++++-----------
 bookwyrm/tests/views/test_interaction.py | 46 ++++++++---------
 bookwyrm/tests/views/test_list.py        | 13 +++--
 bookwyrm/tests/views/test_outbox.py      | 30 ++++++-----
 bookwyrm/tests/views/test_reading.py     |  6 +--
 bookwyrm/tests/views/test_rss_feed.py    | 12 ++---
 bookwyrm/tests/views/test_shelf.py       |  6 +--
 bookwyrm/tests/views/test_status.py      | 14 +++--
 bookwyrm/tests/views/test_tag.py         |  4 +-
 bookwyrm/tests/views/test_user.py        |  2 +-
 16 files changed, 132 insertions(+), 120 deletions(-)

diff --git a/bookwyrm/tests/views/test_author.py b/bookwyrm/tests/views/test_author.py
index c92c4750..3c1a68bb 100644
--- a/bookwyrm/tests/views/test_author.py
+++ b/bookwyrm/tests/views/test_author.py
@@ -84,7 +84,7 @@ class AuthorViews(TestCase):
         request = self.factory.post('', form.data)
         request.user = self.local_user
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             view(request, author.id)
         author.refresh_from_db()
         self.assertEqual(author.name, 'New Name')
diff --git a/bookwyrm/tests/views/test_block.py b/bookwyrm/tests/views/test_block.py
index 6f85f282..315dc224 100644
--- a/bookwyrm/tests/views/test_block.py
+++ b/bookwyrm/tests/views/test_block.py
@@ -40,15 +40,16 @@ class BlockViews(TestCase):
         ''' create a "block" database entry from an activity '''
         view = views.Block.as_view()
         self.local_user.followers.add(self.remote_user)
-        models.UserFollowRequest.objects.create(
-            user_subject=self.local_user,
-            user_object=self.remote_user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.UserFollowRequest.objects.create(
+                user_subject=self.local_user,
+                user_object=self.remote_user)
         self.assertTrue(models.UserFollows.objects.exists())
         self.assertTrue(models.UserFollowRequest.objects.exists())
 
         request = self.factory.post('')
         request.user = self.local_user
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             view(request, self.remote_user.id)
         block = models.UserBlocks.objects.get()
         self.assertEqual(block.user_subject, self.local_user)
@@ -63,7 +64,7 @@ class BlockViews(TestCase):
         request = self.factory.post('')
         request.user = self.local_user
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             views.block.unblock(request, self.remote_user.id)
 
         self.assertFalse(models.UserBlocks.objects.exists())
diff --git a/bookwyrm/tests/views/test_book.py b/bookwyrm/tests/views/test_book.py
index 32a407d6..268f16a3 100644
--- a/bookwyrm/tests/views/test_book.py
+++ b/bookwyrm/tests/views/test_book.py
@@ -77,7 +77,7 @@ class BookViews(TestCase):
         form.data['last_edited_by'] = self.local_user.id
         request = self.factory.post('', form.data)
         request.user = self.local_user
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             view(request, self.book.id)
         self.book.refresh_from_db()
         self.assertEqual(self.book.title, 'New Title')
@@ -90,8 +90,9 @@ class BookViews(TestCase):
             title='first ed', parent_work=work)
         edition2 = models.Edition.objects.create(
             title='second ed', parent_work=work)
-        shelf = models.Shelf.objects.create(
-            name='Test Shelf', user=self.local_user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            shelf = models.Shelf.objects.create(
+                name='Test Shelf', user=self.local_user)
         shelf.books.add(edition1)
         models.ReadThrough.objects.create(
             user=self.local_user, book=edition1)
@@ -102,7 +103,7 @@ class BookViews(TestCase):
             'edition': edition2.id
         })
         request.user = self.local_user
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             views.switch_edition(request)
 
         self.assertEqual(models.ShelfBook.objects.get().book, edition2)
diff --git a/bookwyrm/tests/views/test_feed.py b/bookwyrm/tests/views/test_feed.py
index dd2536b1..93af9944 100644
--- a/bookwyrm/tests/views/test_feed.py
+++ b/bookwyrm/tests/views/test_feed.py
@@ -18,6 +18,7 @@ class FeedMessageViews(TestCase):
             'mouse@local.com', 'mouse@mouse.mouse', 'password',
             local=True, localname='mouse')
         self.book = models.Edition.objects.create(
+            parent_work=models.Work.objects.create(title='hi'),
             title='Example Edition',
             remote_id='https://example.com/book/1',
         )
@@ -38,8 +39,9 @@ class FeedMessageViews(TestCase):
     def test_status_page(self):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.Status.as_view()
-        status = models.Status.objects.create(
-            content='hi', user=self.local_user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            status = models.Status.objects.create(
+                content='hi', user=self.local_user)
         request = self.factory.get('')
         request.user = self.local_user
         with patch('bookwyrm.views.feed.is_api_request') as is_api:
@@ -59,8 +61,9 @@ class FeedMessageViews(TestCase):
     def test_replies_page(self):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.Replies.as_view()
-        status = models.Status.objects.create(
-            content='hi', user=self.local_user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            status = models.Status.objects.create(
+                content='hi', user=self.local_user)
         request = self.factory.get('')
         request.user = self.local_user
         with patch('bookwyrm.views.feed.is_api_request') as is_api:
@@ -90,11 +93,12 @@ class FeedMessageViews(TestCase):
 
     def test_get_suggested_book(self):
         ''' gets books the ~*~ algorithm ~*~ thinks you want to post about '''
-        models.ShelfBook.objects.create(
-            book=self.book,
-            user=self.local_user,
-            shelf=self.local_user.shelf_set.get(identifier='reading')
-        )
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.ShelfBook.objects.create(
+                book=self.book,
+                user=self.local_user,
+                shelf=self.local_user.shelf_set.get(identifier='reading')
+            )
         suggestions = views.feed.get_suggested_books(self.local_user)
         self.assertEqual(suggestions[0]['name'], 'Currently Reading')
         self.assertEqual(suggestions[0]['books'][0], self.book)
diff --git a/bookwyrm/tests/views/test_follow.py b/bookwyrm/tests/views/test_follow.py
index 9bbf67fb..e6c7e46f 100644
--- a/bookwyrm/tests/views/test_follow.py
+++ b/bookwyrm/tests/views/test_follow.py
@@ -46,7 +46,7 @@ class BookViews(TestCase):
         request.user = self.local_user
         self.assertEqual(models.UserFollowRequest.objects.count(), 0)
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             views.follow(request)
 
         rel = models.UserFollowRequest.objects.get()
@@ -62,7 +62,7 @@ class BookViews(TestCase):
         request.user = self.local_user
         self.remote_user.followers.add(self.local_user)
         self.assertEqual(self.remote_user.followers.count(), 1)
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             views.unfollow(request)
 
         self.assertEqual(self.remote_user.followers.count(), 0)
@@ -77,7 +77,7 @@ class BookViews(TestCase):
             user_object=self.local_user
         )
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             views.accept_follow_request(request)
         # request should be deleted
         self.assertEqual(
@@ -96,7 +96,7 @@ class BookViews(TestCase):
             user_object=self.local_user
         )
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             views.delete_follow_request(request)
         # request should be deleted
         self.assertEqual(
diff --git a/bookwyrm/tests/views/test_goal.py b/bookwyrm/tests/views/test_goal.py
index 343399d0..a78216f2 100644
--- a/bookwyrm/tests/views/test_goal.py
+++ b/bookwyrm/tests/views/test_goal.py
@@ -100,7 +100,7 @@ class GoalViews(TestCase):
             'post-status': True
         })
         request.user = self.local_user
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             view(request, self.local_user.localname, 2020)
 
         goal = models.AnnualGoal.objects.get()
diff --git a/bookwyrm/tests/views/test_helpers.py b/bookwyrm/tests/views/test_helpers.py
index 50c3cfc5..b75d61d5 100644
--- a/bookwyrm/tests/views/test_helpers.py
+++ b/bookwyrm/tests/views/test_helpers.py
@@ -38,11 +38,12 @@ class ViewsHelpers(TestCase):
         )
         self.userdata = json.loads(datafile.read_bytes())
         del self.userdata['icon']
-        self.shelf = models.Shelf.objects.create(
-            name='Test Shelf',
-            identifier='test-shelf',
-            user=self.local_user
-        )
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            self.shelf = models.Shelf.objects.create(
+                name='Test Shelf',
+                identifier='test-shelf',
+                user=self.local_user
+            )
 
 
     def test_get_edition(self):
@@ -83,22 +84,23 @@ class ViewsHelpers(TestCase):
         rat = models.User.objects.create_user(
             'rat', 'rat@rat.rat', 'password', local=True)
 
-        public_status = models.Comment.objects.create(
-            content='public status', book=self.book, user=self.local_user)
-        direct_status = models.Status.objects.create(
-            content='direct', user=self.local_user, privacy='direct')
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            public_status = models.Comment.objects.create(
+                content='public status', book=self.book, user=self.local_user)
+            direct_status = models.Status.objects.create(
+                content='direct', user=self.local_user, privacy='direct')
 
-        rat_public = models.Status.objects.create(
-            content='blah blah', user=rat)
-        rat_unlisted = models.Status.objects.create(
-            content='blah blah', user=rat, privacy='unlisted')
-        remote_status = models.Status.objects.create(
-            content='blah blah', user=self.remote_user)
-        followers_status = models.Status.objects.create(
-            content='blah', user=rat, privacy='followers')
-        rat_mention = models.Status.objects.create(
-            content='blah blah blah', user=rat, privacy='followers')
-        rat_mention.mention_users.set([self.local_user])
+            rat_public = models.Status.objects.create(
+                content='blah blah', user=rat)
+            rat_unlisted = models.Status.objects.create(
+                content='blah blah', user=rat, privacy='unlisted')
+            remote_status = models.Status.objects.create(
+                content='blah blah', user=self.remote_user)
+            followers_status = models.Status.objects.create(
+                content='blah', user=rat, privacy='followers')
+            rat_mention = models.Status.objects.create(
+                content='blah blah blah', user=rat, privacy='followers')
+            rat_mention.mention_users.set([self.local_user])
 
         statuses = views.helpers.get_activity_feed(
             self.local_user,
@@ -159,14 +161,15 @@ class ViewsHelpers(TestCase):
         rat = models.User.objects.create_user(
             'rat', 'rat@rat.rat', 'password', local=True)
 
-        public_status = models.Comment.objects.create(
-            content='public status', book=self.book, user=self.local_user)
-        rat_public = models.Status.objects.create(
-            content='blah blah', user=rat)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            public_status = models.Comment.objects.create(
+                content='public status', book=self.book, user=self.local_user)
+            rat_public = models.Status.objects.create(
+                content='blah blah', user=rat)
 
-        statuses = views.helpers.get_activity_feed(
-            self.local_user, ['public'])
-        self.assertEqual(len(statuses), 2)
+            statuses = views.helpers.get_activity_feed(
+                self.local_user, ['public'])
+            self.assertEqual(len(statuses), 2)
 
         # block relationship
         rat.blocks.add(self.local_user)
@@ -240,7 +243,7 @@ class ViewsHelpers(TestCase):
     def test_handle_reading_status_to_read(self):
         ''' posts shelve activities '''
         shelf = self.local_user.shelf_set.get(identifier='to-read')
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             views.helpers.handle_reading_status(
                 self.local_user, shelf, self.book, 'public')
         status = models.GeneratedNote.objects.get()
@@ -251,7 +254,7 @@ class ViewsHelpers(TestCase):
     def test_handle_reading_status_reading(self):
         ''' posts shelve activities '''
         shelf = self.local_user.shelf_set.get(identifier='reading')
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             views.helpers.handle_reading_status(
                 self.local_user, shelf, self.book, 'public')
         status = models.GeneratedNote.objects.get()
@@ -262,7 +265,7 @@ class ViewsHelpers(TestCase):
     def test_handle_reading_status_read(self):
         ''' posts shelve activities '''
         shelf = self.local_user.shelf_set.get(identifier='read')
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             views.helpers.handle_reading_status(
                 self.local_user, shelf, self.book, 'public')
         status = models.GeneratedNote.objects.get()
@@ -272,7 +275,7 @@ class ViewsHelpers(TestCase):
 
     def test_handle_reading_status_other(self):
         ''' posts shelve activities '''
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             views.helpers.handle_reading_status(
                 self.local_user, self.shelf, self.book, 'public')
         self.assertFalse(models.GeneratedNote.objects.exists())
diff --git a/bookwyrm/tests/views/test_interaction.py b/bookwyrm/tests/views/test_interaction.py
index da1fa90d..da6d5f9c 100644
--- a/bookwyrm/tests/views/test_interaction.py
+++ b/bookwyrm/tests/views/test_interaction.py
@@ -38,10 +38,10 @@ class InteractionViews(TestCase):
         view = views.Favorite.as_view()
         request = self.factory.post('')
         request.user = self.remote_user
-        status = models.Status.objects.create(
-            user=self.local_user, content='hi')
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            status = models.Status.objects.create(
+                user=self.local_user, content='hi')
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
             view(request, status.id)
         fav = models.Favorite.objects.get()
         self.assertEqual(fav.status, status)
@@ -58,15 +58,15 @@ class InteractionViews(TestCase):
         view = views.Unfavorite.as_view()
         request = self.factory.post('')
         request.user = self.remote_user
-        status = models.Status.objects.create(
-            user=self.local_user, content='hi')
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            status = models.Status.objects.create(
+                user=self.local_user, content='hi')
             views.Favorite.as_view()(request, status.id)
 
         self.assertEqual(models.Favorite.objects.count(), 1)
         self.assertEqual(models.Notification.objects.count(), 1)
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             view(request, status.id)
         self.assertEqual(models.Favorite.objects.count(), 0)
         self.assertEqual(models.Notification.objects.count(), 0)
@@ -77,10 +77,10 @@ class InteractionViews(TestCase):
         view = views.Boost.as_view()
         request = self.factory.post('')
         request.user = self.remote_user
-        status = models.Status.objects.create(
-            user=self.local_user, content='hi')
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            status = models.Status.objects.create(
+                user=self.local_user, content='hi')
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
             view(request, status.id)
 
         boost = models.Boost.objects.get()
@@ -99,10 +99,10 @@ class InteractionViews(TestCase):
         view = views.Boost.as_view()
         request = self.factory.post('')
         request.user = self.local_user
-        status = models.Status.objects.create(
-            user=self.local_user, content='hi', privacy='unlisted')
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            status = models.Status.objects.create(
+                user=self.local_user, content='hi', privacy='unlisted')
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
             view(request, status.id)
 
         boost = models.Boost.objects.get()
@@ -113,10 +113,10 @@ class InteractionViews(TestCase):
         view = views.Boost.as_view()
         request = self.factory.post('')
         request.user = self.local_user
-        status = models.Status.objects.create(
-            user=self.local_user, content='hi', privacy='followers')
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            status = models.Status.objects.create(
+                user=self.local_user, content='hi', privacy='followers')
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
             view(request, status.id)
         self.assertFalse(models.Boost.objects.exists())
 
@@ -125,10 +125,10 @@ class InteractionViews(TestCase):
         view = views.Boost.as_view()
         request = self.factory.post('')
         request.user = self.local_user
-        status = models.Status.objects.create(
-            user=self.local_user, content='hi')
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            status = models.Status.objects.create(
+                user=self.local_user, content='hi')
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
             view(request, status.id)
             view(request, status.id)
         self.assertEqual(models.Boost.objects.count(), 1)
@@ -139,14 +139,14 @@ class InteractionViews(TestCase):
         view = views.Unboost.as_view()
         request = self.factory.post('')
         request.user = self.remote_user
-        status = models.Status.objects.create(
-            user=self.local_user, content='hi')
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            status = models.Status.objects.create(
+                user=self.local_user, content='hi')
             views.Boost.as_view()(request, status.id)
 
         self.assertEqual(models.Boost.objects.count(), 1)
         self.assertEqual(models.Notification.objects.count(), 1)
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             view(request, status.id)
         self.assertEqual(models.Boost.objects.count(), 0)
         self.assertEqual(models.Notification.objects.count(), 0)
diff --git a/bookwyrm/tests/views/test_list.py b/bookwyrm/tests/views/test_list.py
index 24a3aaba..8869aa15 100644
--- a/bookwyrm/tests/views/test_list.py
+++ b/bookwyrm/tests/views/test_list.py
@@ -10,7 +10,7 @@ from bookwyrm import models, views
 from bookwyrm.activitypub import ActivitypubResponse
 
 
-@patch('bookwyrm.broadcast.broadcast_task.delay')
+@patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay')
 class ListViews(TestCase):
     ''' tag views'''
     def setUp(self):
@@ -32,8 +32,9 @@ class ListViews(TestCase):
             remote_id='https://example.com/book/1',
             parent_work=work,
         )
-        self.list = models.List.objects.create(
-            name='Test List', user=self.local_user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            self.list = models.List.objects.create(
+                name='Test List', user=self.local_user)
         self.anonymous_user = AnonymousUser
         self.anonymous_user.is_authenticated = False
         models.SiteSettings.objects.create()
@@ -43,8 +44,9 @@ class ListViews(TestCase):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.Lists.as_view()
         models.List.objects.create(name='Public list', user=self.local_user)
-        models.List.objects.create(
-            name='Private list', privacy='private', user=self.local_user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.List.objects.create(
+                name='Private list', privacy='private', user=self.local_user)
         request = self.factory.get('')
         request.user = self.local_user
 
@@ -128,6 +130,7 @@ class ListViews(TestCase):
         })
         request.user = self.local_user
 
+        # TODO should broadcast?
         result = view(request, self.list.id)
         self.assertEqual(result.status_code, 302)
 
diff --git a/bookwyrm/tests/views/test_outbox.py b/bookwyrm/tests/views/test_outbox.py
index 4b47d7ac..d59f028c 100644
--- a/bookwyrm/tests/views/test_outbox.py
+++ b/bookwyrm/tests/views/test_outbox.py
@@ -1,4 +1,5 @@
 ''' sending out activities '''
+from unittest.mock import patch
 import json
 
 from django.http import JsonResponse
@@ -49,14 +50,16 @@ class OutboxView(TestCase):
 
     def test_outbox_privacy(self):
         ''' don't show dms et cetera in outbox '''
-        models.Status.objects.create(
-            content='PRIVATE!!', user=self.local_user, privacy='direct')
-        models.Status.objects.create(
-            content='bffs ONLY', user=self.local_user, privacy='followers')
-        models.Status.objects.create(
-            content='unlisted status', user=self.local_user, privacy='unlisted')
-        models.Status.objects.create(
-            content='look at this', user=self.local_user, privacy='public')
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.Status.objects.create(
+                content='PRIVATE!!', user=self.local_user, privacy='direct')
+            models.Status.objects.create(
+                content='bffs ONLY', user=self.local_user, privacy='followers')
+            models.Status.objects.create(
+                content='unlisted status', user=self.local_user,
+                privacy='unlisted')
+            models.Status.objects.create(
+                content='look at this', user=self.local_user, privacy='public')
 
         request = self.factory.get('')
         result = views.Outbox.as_view()(request, 'mouse')
@@ -67,11 +70,12 @@ class OutboxView(TestCase):
 
     def test_outbox_filter(self):
         ''' if we only care about reviews, only get reviews '''
-        models.Review.objects.create(
-            content='look at this', name='hi', rating=1,
-            book=self.book, user=self.local_user)
-        models.Status.objects.create(
-            content='look at this', user=self.local_user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.Review.objects.create(
+                content='look at this', name='hi', rating=1,
+                book=self.book, user=self.local_user)
+            models.Status.objects.create(
+                content='look at this', user=self.local_user)
 
         request = self.factory.get('', {'type': 'bleh'})
         result = views.Outbox.as_view()(request, 'mouse')
diff --git a/bookwyrm/tests/views/test_reading.py b/bookwyrm/tests/views/test_reading.py
index 927fecd3..7158f36a 100644
--- a/bookwyrm/tests/views/test_reading.py
+++ b/bookwyrm/tests/views/test_reading.py
@@ -45,7 +45,7 @@ class ReadingViews(TestCase):
             'start_date': '2020-01-05',
         })
         request.user = self.local_user
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             views.start_reading(request, self.book.id)
 
         self.assertEqual(shelf.books.get(), self.book)
@@ -74,7 +74,7 @@ class ReadingViews(TestCase):
 
         request = self.factory.post('')
         request.user = self.local_user
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             views.start_reading(request, self.book.id)
 
         self.assertFalse(to_read_shelf.books.exists())
@@ -98,7 +98,7 @@ class ReadingViews(TestCase):
         })
         request.user = self.local_user
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             views.finish_reading(request, self.book.id)
 
         self.assertEqual(shelf.books.get(), self.book)
diff --git a/bookwyrm/tests/views/test_rss_feed.py b/bookwyrm/tests/views/test_rss_feed.py
index cbc97af7..d51f8202 100644
--- a/bookwyrm/tests/views/test_rss_feed.py
+++ b/bookwyrm/tests/views/test_rss_feed.py
@@ -2,16 +2,14 @@
 
 from unittest.mock import patch
 from django.test import RequestFactory, TestCase
-import responses
 
 from bookwyrm import models
 from bookwyrm.views import rss_feed
-from bookwyrm.settings import DOMAIN
 
 class RssFeedView(TestCase):
     ''' rss feed behaves as expected '''
     def setUp(self):
-
+        ''' test data '''
         self.site = models.SiteSettings.objects.create()
 
         self.user = models.User.objects.create_user(
@@ -31,14 +29,15 @@ class RssFeedView(TestCase):
         self.quote = models.Quotation.objects.create(
             quote='a sickening sense', content='test content',
             user=self.user, book=self.book)
-        
+
         self.generatednote = models.GeneratedNote.objects.create(
             content='test content', user=self.user)
 
         self.factory = RequestFactory()
-        
+
 
     def test_rss_feed(self):
+        ''' load an rss feed '''
         view = rss_feed.RssFeed()
         request = self.factory.get('/user/rss_user/rss')
         with patch("bookwyrm.models.SiteSettings.objects.get") as site:
@@ -47,6 +46,5 @@ class RssFeedView(TestCase):
         self.assertEqual(result.status_code, 200)
 
         self.assertIn(b"Status updates from rss_user", result.content)
-        self.assertIn( b"a sickening sense", result.content)
+        self.assertIn(b"a sickening sense", result.content)
         self.assertIn(b"Example Edition", result.content)
-
diff --git a/bookwyrm/tests/views/test_shelf.py b/bookwyrm/tests/views/test_shelf.py
index 5f7e3119..65f7ade5 100644
--- a/bookwyrm/tests/views/test_shelf.py
+++ b/bookwyrm/tests/views/test_shelf.py
@@ -8,7 +8,7 @@ from bookwyrm import models, views
 from bookwyrm.activitypub import ActivitypubResponse
 
 
-@patch('bookwyrm.broadcast.broadcast_task.delay')
+@patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay')
 class ShelfViews(TestCase):
     ''' tag views'''
     def setUp(self):
@@ -170,7 +170,7 @@ class ShelfViews(TestCase):
         })
         request.user = self.local_user
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             views.shelve(request)
         # make sure the book is on the shelf
         self.assertEqual(shelf.books.get(), self.book)
@@ -186,6 +186,6 @@ class ShelfViews(TestCase):
             'shelf': self.shelf.id
         })
         request.user = self.local_user
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             views.unshelve(request)
         self.assertEqual(self.shelf.books.count(), 0)
diff --git a/bookwyrm/tests/views/test_status.py b/bookwyrm/tests/views/test_status.py
index 3be81c48..a37aa465 100644
--- a/bookwyrm/tests/views/test_status.py
+++ b/bookwyrm/tests/views/test_status.py
@@ -1,11 +1,9 @@
 ''' test for app action functionality '''
 from unittest.mock import patch
-from django.template.response import TemplateResponse
 from django.test import TestCase
 from django.test.client import RequestFactory
 
 from bookwyrm import forms, models, views
-from bookwyrm.activitypub import ActivitypubResponse
 from bookwyrm.settings import DOMAIN
 
 
@@ -47,7 +45,7 @@ class StatusViews(TestCase):
         })
         request = self.factory.post('', form.data)
         request.user = self.local_user
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             view(request, 'comment')
         status = models.Comment.objects.get()
         self.assertEqual(status.content, '<p>hi</p>')
@@ -69,7 +67,7 @@ class StatusViews(TestCase):
         })
         request = self.factory.post('', form.data)
         request.user = user
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             view(request, 'reply')
         status = models.Status.objects.get(user=user)
         self.assertEqual(status.content, '<p>hi</p>')
@@ -92,7 +90,7 @@ class StatusViews(TestCase):
         request = self.factory.post('', form.data)
         request.user = self.local_user
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             view(request, 'comment')
         status = models.Status.objects.get()
         self.assertEqual(list(status.mention_users.all()), [user])
@@ -116,7 +114,7 @@ class StatusViews(TestCase):
         request = self.factory.post('', form.data)
         request.user = self.local_user
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             view(request, 'comment')
         status = models.Status.objects.get()
 
@@ -128,7 +126,7 @@ class StatusViews(TestCase):
         })
         request = self.factory.post('', form.data)
         request.user = user
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             view(request, 'reply')
 
         reply = models.Status.replies(status).first()
@@ -226,7 +224,7 @@ class StatusViews(TestCase):
         self.assertFalse(status.deleted)
         request = self.factory.post('')
         request.user = self.local_user
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             view(request, status.id)
         status.refresh_from_db()
         self.assertTrue(status.deleted)
diff --git a/bookwyrm/tests/views/test_tag.py b/bookwyrm/tests/views/test_tag.py
index 3dfef9a1..443f19e7 100644
--- a/bookwyrm/tests/views/test_tag.py
+++ b/bookwyrm/tests/views/test_tag.py
@@ -68,7 +68,7 @@ class TagViews(TestCase):
             })
         request.user = self.local_user
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             view(request)
 
         tag = models.Tag.objects.get()
@@ -93,7 +93,7 @@ class TagViews(TestCase):
             })
         request.user = self.local_user
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             view(request)
 
         self.assertTrue(models.Tag.objects.filter(name='A Tag!?').exists())
diff --git a/bookwyrm/tests/views/test_user.py b/bookwyrm/tests/views/test_user.py
index 616a6575..ea59f042 100644
--- a/bookwyrm/tests/views/test_user.py
+++ b/bookwyrm/tests/views/test_user.py
@@ -138,7 +138,7 @@ class UserViews(TestCase):
         request = self.factory.post('', form.data)
         request.user = self.local_user
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             view(request)
         self.assertEqual(self.local_user.name, 'New Name')
 

From ee2b656b08c226807fd5a87e0080057d24546018 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 6 Feb 2021 22:37:40 -0800
Subject: [PATCH 136/280] fixes change password view

---
 bookwyrm/models/activitypub_mixin.py | 3 ++-
 bookwyrm/views/password.py           | 4 ++--
 2 files changed, 4 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 51cce4e6..7fe9516b 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -384,9 +384,10 @@ class ActivityMixin(ActivitypubMixin):
 
     def to_undo_activity(self):
         ''' undo an action '''
+        user = self.user if hasattr(self, 'user') else self.user_subject
         return activitypub.Undo(
             id='%s#undo' % self.remote_id,
-            actor=self.user.remote_id,
+            actor=user.remote_id,
             object=self.to_activity()
         ).serialize()
 
diff --git a/bookwyrm/views/password.py b/bookwyrm/views/password.py
index 2adeebf5..6602a270 100644
--- a/bookwyrm/views/password.py
+++ b/bookwyrm/views/password.py
@@ -79,7 +79,7 @@ class PasswordReset(View):
             return TemplateResponse(request, 'password_reset.html', data)
 
         user.set_password(new_password)
-        user.save()
+        user.save(broadcast=False)
         login(request, user)
         reset_code.delete()
         return redirect('/')
@@ -106,6 +106,6 @@ class ChangePassword(View):
             return redirect('preferences/password')
 
         request.user.set_password(new_password)
-        request.user.save()
+        request.user.save(broadcast=False)
         login(request, request.user)
         return redirect(request.user.local_path)

From ad7a0455820bb2cf92d4d747bc07eb51129753ad Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 7 Feb 2021 11:29:13 -0800
Subject: [PATCH 137/280] Makes shelbook user required

---
 .../migrations/0044_auto_20210207_1924.py     | 30 +++++++++++++++++
 bookwyrm/models/shelf.py                      |  7 +---
 bookwyrm/tests/views/test_shelf.py            | 33 ++++++++++++-------
 3 files changed, 53 insertions(+), 17 deletions(-)
 create mode 100644 bookwyrm/migrations/0044_auto_20210207_1924.py

diff --git a/bookwyrm/migrations/0044_auto_20210207_1924.py b/bookwyrm/migrations/0044_auto_20210207_1924.py
new file mode 100644
index 00000000..ec95f7e2
--- /dev/null
+++ b/bookwyrm/migrations/0044_auto_20210207_1924.py
@@ -0,0 +1,30 @@
+# Generated by Django 3.0.7 on 2021-02-07 19:24
+
+import bookwyrm.models.fields
+from django.conf import settings
+from django.db import migrations
+import django.db.models.deletion
+
+def set_user(app_registry, schema_editor):
+    db_alias = schema_editor.connection.alias
+    shelfbook = app_registry.get_model('bookwyrm', 'ShelfBook')
+    for item in shelfbook.objects.using(db_alias).filter(user__isnull=True):
+        item.user = item.shelf.user
+        item.save(broadcast=False)
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('bookwyrm', '0043_auto_20210204_2223'),
+    ]
+
+    operations = [
+        migrations.RunPython(set_user),
+        migrations.AlterField(
+            model_name='shelfbook',
+            name='user',
+            field=bookwyrm.models.fields.ForeignKey(default=2, on_delete=django.db.models.deletion.PROTECT, to=settings.AUTH_USER_MODEL),
+            preserve_default=False,
+        ),
+    ]
diff --git a/bookwyrm/models/shelf.py b/bookwyrm/models/shelf.py
index 38e5913b..921b8617 100644
--- a/bookwyrm/models/shelf.py
+++ b/bookwyrm/models/shelf.py
@@ -55,12 +55,7 @@ class ShelfBook(CollectionItemMixin, BookWyrmModel):
     shelf = fields.ForeignKey(
         'Shelf', on_delete=models.PROTECT, activitypub_field='target')
     user = fields.ForeignKey(
-        'User',
-        blank=True,
-        null=True,
-        on_delete=models.PROTECT,
-        activitypub_field='actor'
-    )
+        'User', on_delete=models.PROTECT, activitypub_field='actor')
 
     activity_serializer = activitypub.AddBook
     object_field = 'book'
diff --git a/bookwyrm/tests/views/test_shelf.py b/bookwyrm/tests/views/test_shelf.py
index 65f7ade5..4fa63689 100644
--- a/bookwyrm/tests/views/test_shelf.py
+++ b/bookwyrm/tests/views/test_shelf.py
@@ -25,11 +25,12 @@ class ShelfViews(TestCase):
             remote_id='https://example.com/book/1',
             parent_work=self.work
         )
-        self.shelf = models.Shelf.objects.create(
-            name='Test Shelf',
-            identifier='test-shelf',
-            user=self.local_user
-        )
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            self.shelf = models.Shelf.objects.create(
+                name='Test Shelf',
+                identifier='test-shelf',
+                user=self.local_user
+            )
         models.SiteSettings.objects.create()
 
 
@@ -96,7 +97,8 @@ class ShelfViews(TestCase):
                 'name': 'cool name'
             })
         request.user = self.local_user
-        view(request, request.user.username, shelf.identifier)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            view(request, request.user.username, shelf.identifier)
         shelf.refresh_from_db()
 
         self.assertEqual(shelf.name, 'cool name')
@@ -116,7 +118,8 @@ class ShelfViews(TestCase):
                 'name': 'cool name'
             })
         request.user = self.local_user
-        view(request, request.user.username, shelf.identifier)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            view(request, request.user.username, shelf.identifier)
 
         self.assertEqual(shelf.name, 'To Read')
 
@@ -128,7 +131,8 @@ class ShelfViews(TestCase):
             'shelf': self.shelf.identifier
         })
         request.user = self.local_user
-        views.shelve(request)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            views.shelve(request)
         # make sure the book is on the shelf
         self.assertEqual(self.shelf.books.get(), self.book)
 
@@ -142,7 +146,8 @@ class ShelfViews(TestCase):
         })
         request.user = self.local_user
 
-        views.shelve(request)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            views.shelve(request)
         # make sure the book is on the shelf
         self.assertEqual(shelf.books.get(), self.book)
 
@@ -156,7 +161,8 @@ class ShelfViews(TestCase):
         })
         request.user = self.local_user
 
-        views.shelve(request)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            views.shelve(request)
         # make sure the book is on the shelf
         self.assertEqual(shelf.books.get(), self.book)
 
@@ -178,7 +184,12 @@ class ShelfViews(TestCase):
 
     def test_handle_unshelve(self, _):
         ''' remove a book from a shelf '''
-        self.shelf.books.add(self.book)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.ShelfBook.objects.create(
+                book=self.book,
+                user=self.local_user,
+                shelf=self.shelf
+            )
         self.shelf.save()
         self.assertEqual(self.shelf.books.count(), 1)
         request = self.factory.post('', {

From bf6aca5122bef7d24986045db2a88e683a792d25 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 7 Feb 2021 11:29:24 -0800
Subject: [PATCH 138/280] fixes mocks on tests

---
 bookwyrm/tests/test_goodreads_import.py | 17 +++++-----
 bookwyrm/tests/test_incoming.py         | 45 ++++++++++++++-----------
 bookwyrm/tests/views/test_reading.py    |  5 +--
 bookwyrm/tests/views/test_status.py     | 10 +++---
 bookwyrm/tests/views/test_tag.py        | 14 ++++----
 5 files changed, 51 insertions(+), 40 deletions(-)

diff --git a/bookwyrm/tests/test_goodreads_import.py b/bookwyrm/tests/test_goodreads_import.py
index 5beba024..6a14368c 100644
--- a/bookwyrm/tests/test_goodreads_import.py
+++ b/bookwyrm/tests/test_goodreads_import.py
@@ -124,7 +124,7 @@ class GoodreadsImport(TestCase):
                 job_id=import_job.id, index=index, data=entry, book=self.book)
             break
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             goodreads_import.handle_imported_book(
                 self.user, import_item, False, 'public')
 
@@ -144,9 +144,10 @@ class GoodreadsImport(TestCase):
 
     def test_handle_imported_book_already_shelved(self):
         ''' goodreads import added a book, this adds related connections '''
-        shelf = self.user.shelf_set.filter(identifier='to-read').first()
-        models.ShelfBook.objects.create(
-            shelf=shelf, user=self.user, book=self.book)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            shelf = self.user.shelf_set.filter(identifier='to-read').first()
+            models.ShelfBook.objects.create(
+                shelf=shelf, user=self.user, book=self.book)
 
         import_job = models.ImportJob.objects.create(user=self.user)
         datafile = pathlib.Path(__file__).parent.joinpath('data/goodreads.csv')
@@ -156,7 +157,7 @@ class GoodreadsImport(TestCase):
                 job_id=import_job.id, index=index, data=entry, book=self.book)
             break
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             goodreads_import.handle_imported_book(
                 self.user, import_item, False, 'public')
 
@@ -185,7 +186,7 @@ class GoodreadsImport(TestCase):
                 job_id=import_job.id, index=index, data=entry, book=self.book)
             break
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             goodreads_import.handle_imported_book(
                 self.user, import_item, False, 'public')
             goodreads_import.handle_imported_book(
@@ -214,7 +215,7 @@ class GoodreadsImport(TestCase):
         import_item = models.ImportItem.objects.create(
             job_id=import_job.id, index=0, data=entry, book=self.book)
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             goodreads_import.handle_imported_book(
                 self.user, import_item, True, 'unlisted')
         review = models.Review.objects.get(book=self.book, user=self.user)
@@ -235,7 +236,7 @@ class GoodreadsImport(TestCase):
         import_item = models.ImportItem.objects.create(
             job_id=import_job.id, index=0, data=entry, book=self.book)
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             goodreads_import.handle_imported_book(
                 self.user, import_item, False, 'unlisted')
         self.assertFalse(models.Review.objects.filter(
diff --git a/bookwyrm/tests/test_incoming.py b/bookwyrm/tests/test_incoming.py
index 65679c29..7a297130 100644
--- a/bookwyrm/tests/test_incoming.py
+++ b/bookwyrm/tests/test_incoming.py
@@ -22,7 +22,7 @@ class Incoming(TestCase):
             'mouse@example.com', 'mouse@mouse.com', 'mouseword',
             local=True, localname='mouse')
         self.local_user.remote_id = 'https://example.com/user/mouse'
-        self.local_user.save()
+        self.local_user.save(broadcast=False)
         with patch('bookwyrm.models.user.set_remote_server.delay'):
             self.remote_user = models.User.objects.create_user(
                 'rat', 'rat@rat.com', 'ratword',
@@ -31,11 +31,12 @@ class Incoming(TestCase):
                 inbox='https://example.com/users/rat/inbox',
                 outbox='https://example.com/users/rat/outbox',
             )
-        self.status = models.Status.objects.create(
-            user=self.local_user,
-            content='Test status',
-            remote_id='https://example.com/status/1',
-        )
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            self.status = models.Status.objects.create(
+                user=self.local_user,
+                content='Test status',
+                remote_id='https://example.com/status/1',
+            )
         self.factory = RequestFactory()
 
 
@@ -177,8 +178,9 @@ class Incoming(TestCase):
                 "object": "https://example.com/user/mouse"
             }
         }
-        models.UserFollows.objects.create(
-            user_subject=self.remote_user, user_object=self.local_user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.UserFollows.objects.create(
+                user_subject=self.remote_user, user_object=self.local_user)
         self.assertEqual(self.remote_user, self.local_user.followers.first())
 
         incoming.handle_unfollow(activity)
@@ -200,10 +202,11 @@ class Incoming(TestCase):
             }
         }
 
-        models.UserFollowRequest.objects.create(
-            user_subject=self.local_user,
-            user_object=self.remote_user
-        )
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.UserFollowRequest.objects.create(
+                user_subject=self.local_user,
+                user_object=self.remote_user
+            )
         self.assertEqual(models.UserFollowRequest.objects.count(), 1)
 
         incoming.handle_follow_accept(activity)
@@ -232,10 +235,11 @@ class Incoming(TestCase):
             }
         }
 
-        models.UserFollowRequest.objects.create(
-            user_subject=self.local_user,
-            user_object=self.remote_user
-        )
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.UserFollowRequest.objects.create(
+                user_subject=self.local_user,
+                user_object=self.remote_user
+            )
         self.assertEqual(models.UserFollowRequest.objects.count(), 1)
 
         incoming.handle_follow_reject(activity)
@@ -280,9 +284,10 @@ class Incoming(TestCase):
 
     def test_handle_update_list(self):
         ''' a new list '''
-        book_list = models.List.objects.create(
-            name='hi', remote_id='https://example.com/list/22',
-            user=self.local_user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            book_list = models.List.objects.create(
+                name='hi', remote_id='https://example.com/list/22',
+                user=self.local_user)
         activity = {
             'object': {
                 "id": "https://example.com/list/22",
@@ -539,7 +544,7 @@ class Incoming(TestCase):
         activity = {
             "id": "https://bookwyrm.social/shelfbook/6189#add",
             "type": "Add",
-            "actor": "hhttps://example.com/users/rat",
+            "actor": "https://example.com/users/rat",
             "object": "https://bookwyrm.social/book/37292",
             "target": "https://bookwyrm.social/user/mouse/shelf/to-read",
             "@context": "https://www.w3.org/ns/activitystreams"
diff --git a/bookwyrm/tests/views/test_reading.py b/bookwyrm/tests/views/test_reading.py
index 7158f36a..2bb052ae 100644
--- a/bookwyrm/tests/views/test_reading.py
+++ b/bookwyrm/tests/views/test_reading.py
@@ -65,8 +65,9 @@ class ReadingViews(TestCase):
     def test_start_reading_reshelf(self):
         ''' begin a book '''
         to_read_shelf = self.local_user.shelf_set.get(identifier='to-read')
-        models.ShelfBook.objects.create(
-            shelf=to_read_shelf, book=self.book, user=self.local_user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.ShelfBook.objects.create(
+                shelf=to_read_shelf, book=self.book, user=self.local_user)
         shelf = self.local_user.shelf_set.get(identifier='reading')
         self.assertEqual(to_read_shelf.books.get(), self.book)
         self.assertFalse(shelf.books.exists())
diff --git a/bookwyrm/tests/views/test_status.py b/bookwyrm/tests/views/test_status.py
index a37aa465..719b0d71 100644
--- a/bookwyrm/tests/views/test_status.py
+++ b/bookwyrm/tests/views/test_status.py
@@ -57,8 +57,9 @@ class StatusViews(TestCase):
         view = views.CreateStatus.as_view()
         user = models.User.objects.create_user(
             'rat', 'rat@rat.com', 'password', local=True)
-        parent = models.Status.objects.create(
-            content='parent status', user=self.local_user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            parent = models.Status.objects.create(
+                content='parent status', user=self.local_user)
         form = forms.ReplyForm({
             'content': 'hi',
             'user': user.id,
@@ -219,8 +220,9 @@ class StatusViews(TestCase):
     def test_handle_delete_status(self):
         ''' marks a status as deleted '''
         view = views.DeleteStatus.as_view()
-        status = models.Status.objects.create(
-            user=self.local_user, content='hi')
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            status = models.Status.objects.create(
+                user=self.local_user, content='hi')
         self.assertFalse(status.deleted)
         request = self.factory.post('')
         request.user = self.local_user
diff --git a/bookwyrm/tests/views/test_tag.py b/bookwyrm/tests/views/test_tag.py
index 443f19e7..21a7e22e 100644
--- a/bookwyrm/tests/views/test_tag.py
+++ b/bookwyrm/tests/views/test_tag.py
@@ -39,9 +39,10 @@ class TagViews(TestCase):
     def test_tag_page(self):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.Tag.as_view()
-        tag = models.Tag.objects.create(name='hi there')
-        models.UserTag.objects.create(
-            tag=tag, user=self.local_user, book=self.book)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            tag = models.Tag.objects.create(name='hi there')
+            models.UserTag.objects.create(
+                tag=tag, user=self.local_user, book=self.book)
         request = self.factory.get('')
         with patch('bookwyrm.views.tag.is_api_request') as is_api:
             is_api.return_value = False
@@ -82,9 +83,10 @@ class TagViews(TestCase):
     def test_untag(self):
         ''' remove a tag from a book '''
         view = views.RemoveTag.as_view()
-        tag = models.Tag.objects.create(name='A Tag!?')
-        models.UserTag.objects.create(
-            user=self.local_user, book=self.book, tag=tag)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            tag = models.Tag.objects.create(name='A Tag!?')
+            models.UserTag.objects.create(
+                user=self.local_user, book=self.book, tag=tag)
         request = self.factory.post(
             '', {
                 'user': self.local_user.id,

From 2fcfebd4e58fbf028c298637cf9ac0d2634f7d17 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 7 Feb 2021 16:23:20 -0800
Subject: [PATCH 139/280] fixes broadcasting for incoming activities

---
 bookwyrm/activitypub/base_activity.py |  2 +-
 bookwyrm/models/activitypub_mixin.py  | 14 ++++++++------
 bookwyrm/models/relationship.py       |  4 ++--
 bookwyrm/models/user.py               |  3 +++
 bookwyrm/tests/test_incoming.py       | 23 ++++++++++++++---------
 5 files changed, 28 insertions(+), 18 deletions(-)

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index 3ebf2fab..9a5ad11f 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -93,7 +93,7 @@ class ActivityObject:
         with transaction.atomic():
             # we can't set many to many and reverse fields on an unsaved object
             try:
-                instance.save()
+                instance.save(broadcast=False)
             except IntegrityError as e:
                 raise ActivitySerializerError(e)
 
diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 7fe9516b..1ab5fa3f 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -321,14 +321,14 @@ class CollectionItemMixin(ActivitypubMixin):
     activity_serializer = activitypub.Add
     object_field = collection_field = None
 
-    def save(self, *args, **kwargs):
+    def save(self, *args, broadcast=True, **kwargs):
         ''' broadcast updated '''
         created = not bool(self.id)
         # first off, we want to save normally no matter what
         super().save(*args, **kwargs)
 
         # these shouldn't be edited, only created and deleted
-        if not created or not self.user.local:
+        if not broadcast or not created or not self.user.local:
             return
 
         # adding an obj to the collection
@@ -368,17 +368,19 @@ class CollectionItemMixin(ActivitypubMixin):
 
 class ActivityMixin(ActivitypubMixin):
     ''' add this mixin for models that are AP serializable '''
-    def save(self, *args, **kwargs):
+    def save(self, *args, broadcast=True, **kwargs):
         ''' broadcast activity '''
         super().save(*args, **kwargs)
         user = self.user if hasattr(self, 'user') else self.user_subject
-        self.broadcast(self.to_activity(), user)
+        if broadcast and user.local:
+            self.broadcast(self.to_activity(), user)
 
 
-    def delete(self, *args, **kwargs):
+    def delete(self, *args, broadcast=True, **kwargs):
         ''' nevermind, undo that activity '''
         user = self.user if hasattr(self, 'user') else self.user_subject
-        self.broadcast(self.to_undo_activity(), user)
+        if broadcast and user.local:
+            self.broadcast(self.to_undo_activity(), user)
         super().delete(*args, **kwargs)
 
 
diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index 2ff0da59..171edf36 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -71,7 +71,7 @@ class UserFollowRequest(ActivitypubMixin, UserRelationship):
     status = 'follow_request'
     activity_serializer = activitypub.Follow
 
-    def save(self, *args, **kwargs):
+    def save(self, broadcast=True, *args, **kwargs):
         ''' make sure the follow or block relationship doesn't already exist '''
         try:
             UserFollows.objects.get(
@@ -85,7 +85,7 @@ class UserFollowRequest(ActivitypubMixin, UserRelationship):
             return None
         except (UserFollows.DoesNotExist, UserBlocks.DoesNotExist):
             super().save(*args, **kwargs)
-        if self.user_subject.local and not self.user_object.local:
+        if broadcast and self.user_subject.local and not self.user_object.local:
             self.broadcast(self.to_activity(), self.user_subject)
 
 
diff --git a/bookwyrm/models/user.py b/bookwyrm/models/user.py
index ee00980e..da717d2e 100644
--- a/bookwyrm/models/user.py
+++ b/bookwyrm/models/user.py
@@ -211,6 +211,9 @@ class KeyPair(ActivitypubMixin, BookWyrmModel):
 
     def save(self, *args, **kwargs):
         ''' create a key pair '''
+        # no broadcasting happening here
+        if 'broadcast' in kwargs:
+            del kwargs['broadcast']
         if not self.public_key:
             self.private_key, self.public_key = create_key_pair()
         return super().save(*args, **kwargs)
diff --git a/bookwyrm/tests/test_incoming.py b/bookwyrm/tests/test_incoming.py
index 7a297130..d84fbd8d 100644
--- a/bookwyrm/tests/test_incoming.py
+++ b/bookwyrm/tests/test_incoming.py
@@ -118,7 +118,7 @@ class Incoming(TestCase):
             "object": "https://example.com/user/mouse"
         }
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             incoming.handle_follow(activity)
 
         # notification created
@@ -146,9 +146,9 @@ class Incoming(TestCase):
         }
 
         self.local_user.manually_approves_followers = True
-        self.local_user.save()
+        self.local_user.save(broadcast=False)
 
-        with patch('bookwyrm.broadcast.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             incoming.handle_follow(activity)
 
         # notification created
@@ -392,11 +392,14 @@ class Incoming(TestCase):
 
     def test_handle_delete_status(self):
         ''' remove a status '''
+        self.status.user = self.remote_user
+        self.status.save(broadcast=False)
+
         self.assertFalse(self.status.deleted)
         activity = {
             'type': 'Delete',
             'id': '%s/activity' % self.status.remote_id,
-            'actor': self.local_user.remote_id,
+            'actor': self.remote_user.remote_id,
             'object': {'id': self.status.remote_id},
         }
         incoming.handle_delete_status(activity)
@@ -408,6 +411,8 @@ class Incoming(TestCase):
 
     def test_handle_delete_status_notifications(self):
         ''' remove a status with related notifications '''
+        self.status.user = self.remote_user
+        self.status.save(broadcast=False)
         models.Notification.objects.create(
             related_status=self.status,
             user=self.local_user,
@@ -423,7 +428,7 @@ class Incoming(TestCase):
         activity = {
             'type': 'Delete',
             'id': '%s/activity' % self.status.remote_id,
-            'actor': self.local_user.remote_id,
+            'actor': self.remote_user.remote_id,
             'object': {'id': self.status.remote_id},
         }
         incoming.handle_delete_status(activity)
@@ -515,7 +520,6 @@ class Incoming(TestCase):
         self.assertEqual(models.Boost.objects.count(), 0)
 
 
-
     def test_handle_unboost(self):
         ''' undo a boost '''
         activity = {
@@ -613,9 +617,10 @@ class Incoming(TestCase):
     def test_handle_blocks(self):
         ''' create a "block" database entry from an activity '''
         self.local_user.followers.add(self.remote_user)
-        models.UserFollowRequest.objects.create(
-            user_subject=self.local_user,
-            user_object=self.remote_user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.UserFollowRequest.objects.create(
+                user_subject=self.local_user,
+                user_object=self.remote_user)
         self.assertTrue(models.UserFollows.objects.exists())
         self.assertTrue(models.UserFollowRequest.objects.exists())
 

From be98e36200a22fc1e65a13b085df06bd1dd0c9a5 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 7 Feb 2021 16:53:39 -0800
Subject: [PATCH 140/280] Create instances.md

Fixes #597
---
 instances.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 instances.md

diff --git a/instances.md b/instances.md
new file mode 100644
index 00000000..39d702b1
--- /dev/null
+++ b/instances.md
@@ -0,0 +1,4 @@
+
+| name | url | admin contact | open registration |
+| -- | -- | -- | -- |
+| bookwyrm.social | http://bookwyrm.social/ | mousereeve@riseup.net / @tripofmice@friend.camp | ❌ |

From 8cfd3c36a494c5122d6f086c074dfc7ab9343efa Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 7 Feb 2021 17:11:30 -0800
Subject: [PATCH 141/280] Update README.md

---
 README.md | 45 +++++++++++++++++++++------------------------
 1 file changed, 21 insertions(+), 24 deletions(-)

diff --git a/README.md b/README.md
index 52e5c4cf..f07d9cef 100644
--- a/README.md
+++ b/README.md
@@ -3,7 +3,8 @@
 Social reading and reviewing, decentralized with ActivityPub
 
 ## Contents
- - [The overall idea](#the-overall-idea)
+- [Joining BookWyrm](#joining-bookwyrm)
+- [The overall idea](#the-overall-idea)
    - [What it is and isn't](#what-it-is-and-isnt)
    - [The role of federation](#the-role-of-federation)
    - [Features](#features)
@@ -13,42 +14,46 @@ Social reading and reviewing, decentralized with ActivityPub
  - [Book data](#book-data)
  - [Contributing](#contributing)
 
+## Joining BookWyrm
+BookWyrm is still a young piece of software, and isn't at the level of stability and feature-richness that you'd find in a production-ready application. But it does what it says on the box! If you'd like to join an instance, you can check out the [instances](https://github.com/mouse-reeve/bookwyrm/blob/main/instances.md) list.
+
+I, the maintianer of this project, run https://bookwyrm.social, and I generally give out invite codes to those who ask by [email](mailto:mousereeve@riseup.net), [Mastodon direct message](https://friend.camp/@tripofmice), or [Twitter direct message](https://twitter.com/tripofmice).
+
 ## The overall idea
 ### What it is and isn't
 BookWyrm is a platform for social reading! You can use it to track what you're reading, review books, and follow your friends. It isn't  primarily meant for cataloguing or as a datasource for books, but it does do both of those things to some degree. 
 
 ### The role of federation
-BookWyrm is built on [ActivityPub](http://activitypub.rocks/). With ActivityPub, it inter-operates with different instances of BookWyrm, and other ActivityPub compliant services, like Mastodon and Pixelfed. This means you can run an instance for your book club, and still follow your friend who posts on a server devoted to 20th century Russian speculative fiction. It also means that your friend on mastodon can read and comment on a book review that you post on your BookWyrm instance.
+BookWyrm is built on [ActivityPub](http://activitypub.rocks/). With ActivityPub, it inter-operates with different instances of BookWyrm, and other ActivityPub compliant services, like Mastodon. This means you can run an instance for your book club, and still follow your friend who posts on a server devoted to 20th century Russian speculative fiction. It also means that your friend on mastodon can read and comment on a book review that you post on your BookWyrm instance.
 
-Federation makes it possible to have small, self-determining communities, in contrast to the monolithic service you find on GoodReads or Twitter. An instance can be focused on a particular type of literature, be just for use by people who are in a book club together, or anything else that brings people together. Each community can choose which other instances they want to federate with, and moderate and run their community autonomously. Check out https://runyourown.social/ to get a sense of the philosophy and logistics behind small, high-trust social networks.
+Federation makes it possible to have small, self-determining communities, in contrast to the monolithic service you find on GoodReads or Twitter. An instance can be focused on a particular interest, be just for a group of friends, or anything else that brings people together. Each community can choose which other instances they want to federate with, and moderate and run their community autonomously. Check out https://runyourown.social/ to get a sense of the philosophy and logistics behind small, high-trust social networks.
 
 ### Features
-Since the project is still in its early stages, not everything here is fully implemented. There is plenty of room for suggestions and ideas. Open an [issue](https://github.com/mouse-reeve/bookwyrm/issues) to get the conversation going!
+Since the project is still in its early stages, the features are growing every day, and there is plenty of room for suggestions and ideas. Open an [issue](https://github.com/mouse-reeve/bookwyrm/issues) to get the conversation going!
  - Posting about books
     - Compose reviews, with or without ratings, which are aggregated in the book page
     - Compose other kinds of statuses about books, such as:
      - Comments on a book
      - Quotes or excerpts
-     - Recommenations of other books
     - Reply to statuses
-    - Aggregate reviews of a book across connected BookWyrm instances
-    - Differentiate local and federated reviews and rating
+    - View aggregate reviews of a book across connected BookWyrm instances
+    - Differentiate local and federated reviews and rating in your activity feed
  - Track reading activity
     - Shelve books on default "to-read," "currently reading," and "read" shelves
     - Create custom shelves
-    - Store started reading/finished reading dates
+    - Store started reading/finished reading dates, as well as progress updates along the way
     - Update followers about reading activity (optionally, and with granular privacy controls)
+    - Create lists of books which can be open to submissions from anyone, curated, or only edited by the creator
  - Federation with ActivityPub
     - Broadcast and receive user statuses and activity
-    - Broadcast copies of books that can be used as canonical data sources
+    - Share book data between instances to create a networked database of metadata
     - Identify shared books across instances and aggregate related content
     - Follow and interact with users across BookWyrm instances
-    - Inter-operate with non-BookWyrm ActivityPub services
+    - Inter-operate with non-BookWyrm ActivityPub services (currently, Mastodon is supported)
  - Granular privacy controls
-    - Local-only, followers-only, and public posting
+    - Private, followers-only, and public privacy levels for posting, shelves, and lists
     - Option for users to manually approve followers
     - Allow blocking and flagging for moderation
-    - Control which instances you want to federate with
 
 ## Setting up the developer environment
 
@@ -88,6 +93,7 @@ This project is still young and isn't, at the momoment, very stable, so please p
   `cp .env.example .env`
    - Add your domain, email address, mailgun credentials
    - Set a secure redis password and secret key
+   - Set a secure database password for postgres
  - Update your nginx configuration in `nginx/default.conf`
    - Replace `your-domain.com` with your domain name
  - Run the application (this should also set up a Certbot ssl cert for your domain)
@@ -99,6 +105,7 @@ This project is still young and isn't, at the momoment, very stable, so please p
   `docker-compose up -d`
  - Initialize the database
   `./bw-dev initdb`
+ - Set up schedule backups with cron that runs that `docker-compose exec db pg_dump -U <databasename>` and saves the backup to a safe locationgi
  - Congrats! You did it, go to your domain and enjoy the fruits of your labors
 ### Configure your instance
  - Register a user account in the applcation UI
@@ -114,21 +121,11 @@ This project is still young and isn't, at the momoment, very stable, so please p
     user.is_superuser = True
     user.save()
     ```
-   - Go to the admin panel (`/admin/bookwyrm/sitesettings/1/change` on your domain) and set your instance name, description, code of conduct, and toggle whether registration is open on your instance
-
-
-## Project structure
-All the url routing is in `bookwyrm/urls.py`. This includes the application views (your home page, user page, book page, etc), application endpoints (things that happen when you click buttons), and federation api endpoints (inboxes, outboxes, webfinger, etc).
-
-The application views and actions are in `bookwyrm/views.py`. The internal actions call api handlers which deal with federating content. Outgoing messages (any action done by a user that is federated out), as well as outboxes, live in `bookwyrm/outgoing.py`, and all handlers for incoming messages, as well as inboxes and webfinger, live in `bookwyrm/incoming.py`. Connection to openlibrary.org to get book data is handled in `bookwyrm/connectors/openlibrary.py`. ActivityPub serialization is handled in the `bookwyrm/activitypub/` directory.
-
-Celery is used for background tasks, which includes receiving incoming ActivityPub activities, ActivityPub broadcasting, and external data import. 
-
-The UI is all django templates because that is the default. You can replace it with a complex javascript framework over my ~dead body~ mild objections.
+   - Go to the site settings (`/settings/site-settings` on your domain) and configure your instance name, description, code of conduct, and toggle whether registration is open on your instance
 
 
 ## Book data
-The application is set up to get book data from arbitrary outside sources -- right now, it's only able to connect to OpenLibrary, but other connectors could be written. By default, a book is non-canonical copy of an OpenLibrary book, and will be updated with OpenLibrary if the data there changes. However, a book can edited and decoupled from its original data source, or added locally with no external data source.
+The application is set up to share book and author data between instances, and get book data from arbitrary outside sources. Right now, the only connector is to OpenLibrary, but other connectors could be written.
 
 There are three concepts in the book data model:
  - `Book`, an abstract, high-level concept that could mean either a `Work` or an `Edition`. No data is saved as a `Book`, it serves as shared model for `Work` and `Edition`

From 6a4881d0e128afa9d7a5de9383d7ffee63bb3a42 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 7 Feb 2021 17:12:53 -0800
Subject: [PATCH 142/280] Update instances.md

---
 instances.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/instances.md b/instances.md
index 39d702b1..1c8b282b 100644
--- a/instances.md
+++ b/instances.md
@@ -1,4 +1,4 @@
 
 | name | url | admin contact | open registration |
-| -- | -- | -- | -- |
+| :--- | :-- | :------------ | :---------------- |
 | bookwyrm.social | http://bookwyrm.social/ | mousereeve@riseup.net / @tripofmice@friend.camp | ❌ |

From 80241e59a7054d1fcc938e17cd55a6c3457d18b6 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sun, 7 Feb 2021 19:17:28 -0800
Subject: [PATCH 143/280] adds mocks to templatetags tests

---
 bookwyrm/tests/test_templatetags.py | 100 +++++++++++++++-------------
 1 file changed, 55 insertions(+), 45 deletions(-)

diff --git a/bookwyrm/tests/test_templatetags.py b/bookwyrm/tests/test_templatetags.py
index 98e401ee..267587c2 100644
--- a/bookwyrm/tests/test_templatetags.py
+++ b/bookwyrm/tests/test_templatetags.py
@@ -35,8 +35,9 @@ class TemplateTags(TestCase):
 
     def test_get_user_rating(self):
         ''' get a user's most recent rating of a book '''
-        models.Review.objects.create(
-            user=self.user, book=self.book, rating=3)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.Review.objects.create(
+                user=self.user, book=self.book, rating=3)
         self.assertEqual(
             bookwyrm_tags.get_user_rating(self.book, self.user), 3)
 
@@ -76,14 +77,16 @@ class TemplateTags(TestCase):
 
     def test_get_replies(self):
         ''' direct replies to a status '''
-        parent = models.Review.objects.create(
-            user=self.user, book=self.book)
-        first_child = models.Status.objects.create(
-            reply_parent=parent, user=self.user)
-        second_child = models.Status.objects.create(
-            reply_parent=parent, user=self.user)
-        third_child = models.Status.objects.create(
-            reply_parent=parent, user=self.user, deleted=True)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            parent = models.Review.objects.create(
+                user=self.user, book=self.book, content='hi')
+            first_child = models.Status.objects.create(
+                reply_parent=parent, user=self.user, content='hi')
+            second_child = models.Status.objects.create(
+                reply_parent=parent, user=self.user, content='hi')
+            third_child = models.Status.objects.create(
+                reply_parent=parent, user=self.user,
+                deleted=True, deleted_date=timezone.now())
 
         replies = bookwyrm_tags.get_replies(parent)
         self.assertEqual(len(replies), 2)
@@ -94,10 +97,11 @@ class TemplateTags(TestCase):
 
     def test_get_parent(self):
         ''' get the reply parent of a status '''
-        parent = models.Review.objects.create(
-            user=self.user, book=self.book)
-        child = models.Status.objects.create(
-            reply_parent=parent, user=self.user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            parent = models.Review.objects.create(
+                user=self.user, book=self.book, content='hi')
+            child = models.Status.objects.create(
+                reply_parent=parent, user=self.user, content='hi')
 
         result = bookwyrm_tags.get_parent(child)
         self.assertEqual(result, parent)
@@ -110,10 +114,11 @@ class TemplateTags(TestCase):
             user=self.remote_user, book=self.book)
 
         self.assertFalse(bookwyrm_tags.get_user_liked(self.user, status))
-        models.Favorite.objects.create(
-            user=self.user,
-            status=status
-        )
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.Favorite.objects.create(
+                user=self.user,
+                status=status
+            )
         self.assertTrue(bookwyrm_tags.get_user_liked(self.user, status))
 
 
@@ -123,10 +128,11 @@ class TemplateTags(TestCase):
             user=self.remote_user, book=self.book)
 
         self.assertFalse(bookwyrm_tags.get_user_boosted(self.user, status))
-        models.Boost.objects.create(
-            user=self.user,
-            boosted_status=status
-        )
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.Boost.objects.create(
+                user=self.user,
+                boosted_status=status
+            )
         self.assertTrue(bookwyrm_tags.get_user_boosted(self.user, status))
 
 
@@ -135,9 +141,10 @@ class TemplateTags(TestCase):
         self.assertFalse(
             bookwyrm_tags.follow_request_exists(self.user, self.remote_user))
 
-        models.UserFollowRequest.objects.create(
-            user_subject=self.user,
-            user_object=self.remote_user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.UserFollowRequest.objects.create(
+                user_subject=self.user,
+                user_object=self.remote_user)
 
         self.assertFalse(
             bookwyrm_tags.follow_request_exists(self.user, self.remote_user))
@@ -147,12 +154,13 @@ class TemplateTags(TestCase):
 
     def test_get_boosted(self):
         ''' load a boosted status '''
-        status = models.Review.objects.create(
-            user=self.remote_user, book=self.book)
-        boost = models.Boost.objects.create(
-            user=self.user,
-            boosted_status=status
-        )
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            status = models.Review.objects.create(
+                user=self.remote_user, book=self.book)
+            boost = models.Boost.objects.create(
+                user=self.user,
+                boosted_status=status
+            )
         boosted = bookwyrm_tags.get_boosted(boost)
         self.assertIsInstance(boosted, models.Review)
         self.assertEqual(boosted, status)
@@ -233,29 +241,31 @@ class TemplateTags(TestCase):
 
     def test_get_status_preview_name(self):
         ''' status context string '''
-        status = models.Status.objects.create(content='hi', user=self.user)
-        result = bookwyrm_tags.get_status_preview_name(status)
-        self.assertEqual(result, 'status')
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            status = models.Status.objects.create(content='hi', user=self.user)
+            result = bookwyrm_tags.get_status_preview_name(status)
+            self.assertEqual(result, 'status')
 
-        status = models.Review.objects.create(
-            content='hi', user=self.user, book=self.book)
-        result = bookwyrm_tags.get_status_preview_name(status)
-        self.assertEqual(result, 'review of <em>Test Book</em>')
+            status = models.Review.objects.create(
+                content='hi', user=self.user, book=self.book)
+            result = bookwyrm_tags.get_status_preview_name(status)
+            self.assertEqual(result, 'review of <em>Test Book</em>')
 
-        status = models.Comment.objects.create(
-            content='hi', user=self.user, book=self.book)
-        result = bookwyrm_tags.get_status_preview_name(status)
-        self.assertEqual(result, 'comment on <em>Test Book</em>')
+            status = models.Comment.objects.create(
+                content='hi', user=self.user, book=self.book)
+            result = bookwyrm_tags.get_status_preview_name(status)
+            self.assertEqual(result, 'comment on <em>Test Book</em>')
 
-        status = models.Quotation.objects.create(
-            content='hi', user=self.user, book=self.book)
+            status = models.Quotation.objects.create(
+                content='hi', user=self.user, book=self.book)
         result = bookwyrm_tags.get_status_preview_name(status)
         self.assertEqual(result, 'quotation from <em>Test Book</em>')
 
 
     def test_related_status(self):
         ''' gets the subclass model for a notification status '''
-        status = models.Status.objects.create(content='hi', user=self.user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            status = models.Status.objects.create(content='hi', user=self.user)
         notification = models.Notification.objects.create(
             user=self.user, notification_type='MENTION',
             related_status=status)

From 76e90cb3f68d4045ade9a93fa345721f8fc70db8 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 8 Feb 2021 09:38:28 -0800
Subject: [PATCH 144/280] Fixes remaining test patches

---
 bookwyrm/activitypub/base_activity.py         |  5 ++-
 bookwyrm/activitypub/note.py                  |  2 +-
 .../tests/activitypub/test_base_activity.py   | 33 +++++++++++--------
 .../tests/models/test_relationship_models.py  | 12 +++++--
 bookwyrm/tests/models/test_shelf_model.py     | 12 +++++++
 bookwyrm/tests/models/test_status_model.py    |  2 ++
 bookwyrm/tests/views/test_book.py             |  6 +++-
 .../{actions => views}/test_readthrough.py    | 21 ++++++++----
 8 files changed, 68 insertions(+), 25 deletions(-)
 rename bookwyrm/tests/{actions => views}/test_readthrough.py (84%)

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index 9a5ad11f..4bbb5e9f 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -93,7 +93,10 @@ class ActivityObject:
         with transaction.atomic():
             # we can't set many to many and reverse fields on an unsaved object
             try:
-                instance.save(broadcast=False)
+                try:
+                    instance.save(broadcast=False)
+                except TypeError:
+                    instance.save()
             except IntegrityError as e:
                 raise ActivitySerializerError(e)
 
diff --git a/bookwyrm/activitypub/note.py b/bookwyrm/activitypub/note.py
index 72fbe5fc..1e0bdcb7 100644
--- a/bookwyrm/activitypub/note.py
+++ b/bookwyrm/activitypub/note.py
@@ -18,7 +18,7 @@ class Note(ActivityObject):
     ''' Note activity '''
     published: str
     attributedTo: str
-    content: str
+    content: str = ''
     to: List[str] = field(default_factory=lambda: [])
     cc: List[str] = field(default_factory=lambda: [])
     replies: Dict = field(default_factory=lambda: {})
diff --git a/bookwyrm/tests/activitypub/test_base_activity.py b/bookwyrm/tests/activitypub/test_base_activity.py
index 8668c7e2..e84d7674 100644
--- a/bookwyrm/tests/activitypub/test_base_activity.py
+++ b/bookwyrm/tests/activitypub/test_base_activity.py
@@ -23,7 +23,7 @@ class BaseActivity(TestCase):
             'mouse', 'mouse@mouse.mouse', 'mouseword',
             local=True, localname='mouse')
         self.user.remote_id = 'http://example.com/a/b'
-        self.user.save()
+        self.user.save(broadcast=False)
 
         datafile = pathlib.Path(__file__).parent.joinpath(
             '../data/ap_user.json'
@@ -167,16 +167,19 @@ class BaseActivity(TestCase):
         with self.assertRaises(ValueError):
             self.user.avatar.file #pylint: disable=pointless-statement
 
-        activity.to_model(models.User, self.user)
+        # this would trigger a broadcast because it's a local user
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            activity.to_model(models.User, self.user)
         self.assertIsNotNone(self.user.avatar.name)
         self.assertIsNotNone(self.user.avatar.file)
 
     def test_to_model_many_to_many(self):
         ''' annoying that these all need special handling '''
-        status = models.Status.objects.create(
-            content='test status',
-            user=self.user,
-        )
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            status = models.Status.objects.create(
+                content='test status',
+                user=self.user,
+            )
         book = models.Edition.objects.create(
             title='Test Edition', remote_id='http://book.com/book')
         update_data = activitypub.Note(
@@ -208,10 +211,11 @@ class BaseActivity(TestCase):
     def test_to_model_one_to_many(self):
         ''' these are reversed relationships, where the secondary object
         keys the primary object but not vice versa '''
-        status = models.Status.objects.create(
-            content='test status',
-            user=self.user,
-        )
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            status = models.Status.objects.create(
+                content='test status',
+                user=self.user,
+            )
         update_data = activitypub.Note(
             id=status.remote_id,
             content=status.content,
@@ -242,10 +246,11 @@ class BaseActivity(TestCase):
     @responses.activate
     def test_set_related_field(self):
         ''' celery task to add back-references to created objects '''
-        status = models.Status.objects.create(
-            content='test status',
-            user=self.user,
-        )
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            status = models.Status.objects.create(
+                content='test status',
+                user=self.user,
+            )
         data = {
             'url': 'http://www.example.com/image.jpg',
             'name': 'alt text',
diff --git a/bookwyrm/tests/models/test_relationship_models.py b/bookwyrm/tests/models/test_relationship_models.py
index c8d80262..97f267b6 100644
--- a/bookwyrm/tests/models/test_relationship_models.py
+++ b/bookwyrm/tests/models/test_relationship_models.py
@@ -39,6 +39,7 @@ class Relationship(TestCase):
 
     def test_user_follows_from_request(self):
         ''' convert a follow request into a follow '''
+        real_broadcast = models.UserFollowRequest.broadcast
         def mock_broadcast(_, activity, user):
             ''' introspect what's being sent out '''
             self.assertEqual(user.remote_id, self.local_user.remote_id)
@@ -63,12 +64,13 @@ class Relationship(TestCase):
         self.assertEqual(rel.status, 'follows')
         self.assertEqual(rel.user_subject, self.local_user)
         self.assertEqual(rel.user_object, self.remote_user)
+        models.UserFollowRequest.broadcast = real_broadcast
+
 
 
     def test_user_follows_from_request_custom_remote_id(self):
         ''' store a specific remote id for a relationship provided by remote '''
-        with patch(
-                'bookwyrm.models.activitypub_mixin.ActivitypubMixin.broadcast'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             request = models.UserFollowRequest.objects.create(
                 user_subject=self.local_user,
                 user_object=self.remote_user,
@@ -92,6 +94,7 @@ class Relationship(TestCase):
 
     def test_follow_request_activity(self):
         ''' accept a request and make it a relationship '''
+        real_broadcast = models.UserFollowRequest.broadcast
         def mock_broadcast(_, activity, user):
             self.assertEqual(user.remote_id, self.local_user.remote_id)
             self.assertEqual(activity['actor'], self.local_user.remote_id)
@@ -103,10 +106,12 @@ class Relationship(TestCase):
             user_subject=self.local_user,
             user_object=self.remote_user,
         )
+        models.UserFollowRequest.broadcast = real_broadcast
 
 
     def test_follow_request_accept(self):
         ''' accept a request and make it a relationship '''
+        real_broadcast = models.UserFollowRequest.broadcast
         def mock_broadcast(_, activity, user):
             self.assertEqual(user.remote_id, self.local_user.remote_id)
             self.assertEqual(activity['type'], 'Accept')
@@ -126,10 +131,12 @@ class Relationship(TestCase):
         rel = models.UserFollows.objects.get()
         self.assertEqual(rel.user_subject, self.remote_user)
         self.assertEqual(rel.user_object, self.local_user)
+        models.UserFollowRequest.broadcast = real_broadcast
 
 
     def test_follow_request_reject(self):
         ''' accept a request and make it a relationship '''
+        real_broadcast = models.UserFollowRequest.broadcast
         def mock_reject(_, activity, user):
             self.assertEqual(user.remote_id, self.local_user.remote_id)
             self.assertEqual(activity['type'], 'Reject')
@@ -146,3 +153,4 @@ class Relationship(TestCase):
 
         self.assertFalse(models.UserFollowRequest.objects.exists())
         self.assertFalse(models.UserFollows.objects.exists())
+        models.UserFollowRequest.broadcast = real_broadcast
diff --git a/bookwyrm/tests/models/test_shelf_model.py b/bookwyrm/tests/models/test_shelf_model.py
index 0433efe3..a9b5a8d6 100644
--- a/bookwyrm/tests/models/test_shelf_model.py
+++ b/bookwyrm/tests/models/test_shelf_model.py
@@ -18,16 +18,19 @@ class Shelf(TestCase):
 
     def test_remote_id(self):
         ''' shelves use custom remote ids '''
+        real_broadcast = models.Shelf.broadcast
         models.Shelf.broadcast = lambda x, y, z: None
         shelf = models.Shelf.objects.create(
             name='Test Shelf', identifier='test-shelf',
             user=self.local_user)
         expected_id = 'https://%s/user/mouse/shelf/test-shelf' % settings.DOMAIN
         self.assertEqual(shelf.get_remote_id(), expected_id)
+        models.Shelf.broadcast = real_broadcast
 
 
     def test_to_activity(self):
         ''' jsonify it '''
+        real_broadcast = models.Shelf.broadcast
         models.Shelf.broadcast = lambda x, y, z: None
         shelf = models.Shelf.objects.create(
             name='Test Shelf', identifier='test-shelf',
@@ -39,10 +42,12 @@ class Shelf(TestCase):
         self.assertEqual(activity_json['type'], 'Shelf')
         self.assertEqual(activity_json['name'], 'Test Shelf')
         self.assertEqual(activity_json['owner'], self.local_user.remote_id)
+        models.Shelf.broadcast = real_broadcast
 
 
     def test_create_update_shelf(self):
         ''' create and broadcast shelf creation '''
+        real_broadcast = models.Shelf.broadcast
         def create_mock(_, activity, user):
             ''' ok '''
             self.assertEqual(user.remote_id, self.local_user.remote_id)
@@ -65,10 +70,14 @@ class Shelf(TestCase):
         shelf.name = 'arthur russel'
         shelf.save()
         self.assertEqual(shelf.name, 'arthur russel')
+        models.Shelf.broadcast = real_broadcast
 
 
     def test_shelve(self):
         ''' create and broadcast shelf creation '''
+        real_broadcast = models.Shelf.broadcast
+        real_shelfbook_broadcast = models.ShelfBook.broadcast
+
         def add_mock(_, activity, user):
             ''' ok '''
             self.assertEqual(user.remote_id, self.local_user.remote_id)
@@ -99,3 +108,6 @@ class Shelf(TestCase):
         models.ShelfBook.broadcast = remove_mock
         shelf_book.delete()
         self.assertFalse(shelf.books.exists())
+
+        models.ShelfBook.broadcast = real_shelfbook_broadcast
+        models.Shelf.broadcast = real_broadcast
diff --git a/bookwyrm/tests/models/test_status_model.py b/bookwyrm/tests/models/test_status_model.py
index 7462c07d..233fd6ea 100644
--- a/bookwyrm/tests/models/test_status_model.py
+++ b/bookwyrm/tests/models/test_status_model.py
@@ -240,6 +240,7 @@ class Status(TestCase):
 
     def test_favorite(self):
         ''' fav a status '''
+        real_broadcast = models.Favorite.broadcast
         def fav_broadcast_mock(_, activity, user):
             ''' ok '''
             self.assertEqual(user.remote_id, self.user.remote_id)
@@ -258,6 +259,7 @@ class Status(TestCase):
         self.assertEqual(activity['type'], 'Like')
         self.assertEqual(activity['actor'], self.user.remote_id)
         self.assertEqual(activity['object'], status.remote_id)
+        models.Favorite.broadcast = real_broadcast
 
     def test_boost(self):
         ''' boosting, this one's a bit fussy '''
diff --git a/bookwyrm/tests/views/test_book.py b/bookwyrm/tests/views/test_book.py
index 268f16a3..b3360200 100644
--- a/bookwyrm/tests/views/test_book.py
+++ b/bookwyrm/tests/views/test_book.py
@@ -93,7 +93,11 @@ class BookViews(TestCase):
         with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             shelf = models.Shelf.objects.create(
                 name='Test Shelf', user=self.local_user)
-        shelf.books.add(edition1)
+            models.ShelfBook.objects.create(
+                book=edition1,
+                user=self.local_user,
+                shelf=shelf,
+            )
         models.ReadThrough.objects.create(
             user=self.local_user, book=edition1)
 
diff --git a/bookwyrm/tests/actions/test_readthrough.py b/bookwyrm/tests/views/test_readthrough.py
similarity index 84%
rename from bookwyrm/tests/actions/test_readthrough.py
rename to bookwyrm/tests/views/test_readthrough.py
index 41d2eaa5..41e38a1d 100644
--- a/bookwyrm/tests/actions/test_readthrough.py
+++ b/bookwyrm/tests/views/test_readthrough.py
@@ -1,13 +1,16 @@
+''' tests updating reading progress '''
+from datetime import datetime
 from unittest.mock import patch
 from django.test import TestCase, Client
 from django.utils import timezone
-from datetime import datetime
 
 from bookwyrm import models
 
-@patch('bookwyrm.broadcast.broadcast_task.delay')
+@patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay')
 class ReadThrough(TestCase):
+    ''' readthrough tests '''
     def setUp(self):
+        ''' basic user and book data '''
         self.client = Client()
 
         self.work = models.Work.objects.create(
@@ -25,7 +28,8 @@ class ReadThrough(TestCase):
             'cinco', 'cinco@example.com', 'seissiete',
             local=True, localname='cinco')
 
-        self.client.force_login(self.user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            self.client.force_login(self.user)
 
     def test_create_basic_readthrough(self, delay_mock):
         """A basic readthrough doesn't create a progress update"""
@@ -38,13 +42,15 @@ class ReadThrough(TestCase):
         readthroughs = self.edition.readthrough_set.all()
         self.assertEqual(len(readthroughs), 1)
         self.assertEqual(readthroughs[0].progressupdate_set.count(), 0)
-        self.assertEqual(readthroughs[0].start_date,
+        self.assertEqual(
+            readthroughs[0].start_date,
             datetime(2020, 11, 27, tzinfo=timezone.utc))
         self.assertEqual(readthroughs[0].progress, None)
         self.assertEqual(readthroughs[0].finish_date, None)
         self.assertEqual(delay_mock.call_count, 1)
 
     def test_create_progress_readthrough(self, delay_mock):
+        ''' a readthrough with progress '''
         self.assertEqual(self.edition.readthrough_set.count(), 0)
 
         self.client.post('/start-reading/{}'.format(self.edition.id), {
@@ -54,7 +60,8 @@ class ReadThrough(TestCase):
 
         readthroughs = self.edition.readthrough_set.all()
         self.assertEqual(len(readthroughs), 1)
-        self.assertEqual(readthroughs[0].start_date,
+        self.assertEqual(
+            readthroughs[0].start_date,
             datetime(2020, 11, 27, tzinfo=timezone.utc))
         self.assertEqual(readthroughs[0].progress, 50)
         self.assertEqual(readthroughs[0].finish_date, None)
@@ -76,7 +83,9 @@ class ReadThrough(TestCase):
         self.assertEqual(len(progress_updates), 2)
         self.assertEqual(progress_updates[1].mode, models.ProgressMode.PAGE)
         self.assertEqual(progress_updates[1].progress, 100)
-        self.assertEqual(delay_mock.call_count, 1) # Edit doesn't publish anything
+
+        # Edit doesn't publish anything
+        self.assertEqual(delay_mock.call_count, 1)
 
         self.client.post('/delete-readthrough', {
             'id': readthroughs[0].id,

From 0fd2885e7e026374f25cfdd323d9619f56b88e2b Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 9 Feb 2021 09:41:04 -0800
Subject: [PATCH 145/280] Tests broadcasting from list views more thoroughly

---
 bookwyrm/tests/views/test_list.py | 176 ++++++++++++++++++++++--------
 bookwyrm/views/list.py            |   2 +-
 2 files changed, 130 insertions(+), 48 deletions(-)

diff --git a/bookwyrm/tests/views/test_list.py b/bookwyrm/tests/views/test_list.py
index 8869aa15..763c3b34 100644
--- a/bookwyrm/tests/views/test_list.py
+++ b/bookwyrm/tests/views/test_list.py
@@ -10,7 +10,6 @@ from bookwyrm import models, views
 from bookwyrm.activitypub import ActivitypubResponse
 
 
-@patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay')
 class ListViews(TestCase):
     ''' tag views'''
     def setUp(self):
@@ -40,11 +39,11 @@ class ListViews(TestCase):
         models.SiteSettings.objects.create()
 
 
-    def test_lists_page(self, _):
+    def test_lists_page(self):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.Lists.as_view()
-        models.List.objects.create(name='Public list', user=self.local_user)
         with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.List.objects.create(name='Public list', user=self.local_user)
             models.List.objects.create(
                 name='Private list', privacy='private', user=self.local_user)
         request = self.factory.get('')
@@ -63,8 +62,16 @@ class ListViews(TestCase):
         self.assertEqual(result.status_code, 200)
 
 
-    def test_lists_create(self, _):
+    def test_lists_create(self):
         ''' create list view '''
+        real_broadcast = models.List.broadcast
+        def mock_broadcast(_, activity, user):
+            ''' ok '''
+            self.assertEqual(user.remote_id, self.local_user.remote_id)
+            self.assertEqual(activity['type'], 'Create')
+            self.assertEqual(activity['actor'], self.local_user.remote_id)
+        models.List.broadcast = mock_broadcast
+
         view = views.Lists.as_view()
         request = self.factory.post('', {
             'name': 'A list',
@@ -80,9 +87,10 @@ class ListViews(TestCase):
         self.assertEqual(new_list.description, 'wow')
         self.assertEqual(new_list.privacy, 'unlisted')
         self.assertEqual(new_list.curation, 'open')
+        models.List.broadcast = real_broadcast
 
 
-    def test_list_page(self, _):
+    def test_list_page(self):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.List.as_view()
         request = self.factory.get('')
@@ -118,8 +126,17 @@ class ListViews(TestCase):
         self.assertEqual(result.status_code, 200)
 
 
-    def test_list_edit(self, _):
+    def test_list_edit(self):
         ''' edit a list '''
+        real_broadcast = models.List.broadcast
+        def mock_broadcast(_, activity, user):
+            ''' ok '''
+            self.assertEqual(user.remote_id, self.local_user.remote_id)
+            self.assertEqual(activity['type'], 'Update')
+            self.assertEqual(activity['actor'], self.local_user.remote_id)
+            self.assertEqual(activity['object']['id'], self.list.remote_id)
+        models.List.broadcast = mock_broadcast
+
         view = views.List.as_view()
         request = self.factory.post('', {
             'name': 'New Name',
@@ -130,7 +147,6 @@ class ListViews(TestCase):
         })
         request.user = self.local_user
 
-        # TODO should broadcast?
         result = view(request, self.list.id)
         self.assertEqual(result.status_code, 302)
 
@@ -139,14 +155,16 @@ class ListViews(TestCase):
         self.assertEqual(self.list.description, 'wow')
         self.assertEqual(self.list.privacy, 'direct')
         self.assertEqual(self.list.curation, 'curated')
+        models.List.broadcast = real_broadcast
 
 
-    def test_curate_page(self, _):
+    def test_curate_page(self):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.Curate.as_view()
-        models.List.objects.create(name='Public list', user=self.local_user)
-        models.List.objects.create(
-            name='Private list', privacy='private', user=self.local_user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.List.objects.create(name='Public list', user=self.local_user)
+            models.List.objects.create(
+                name='Private list', privacy='private', user=self.local_user)
         request = self.factory.get('')
         request.user = self.local_user
 
@@ -160,15 +178,25 @@ class ListViews(TestCase):
         self.assertEqual(result.status_code, 302)
 
 
-    def test_curate_approve(self, _):
+    def test_curate_approve(self):
         ''' approve a pending item '''
+        real_broadcast = models.List.broadcast
+        def mock_broadcast(_, activity, user):
+            ''' ok '''
+            self.assertEqual(user.remote_id, self.local_user.remote_id)
+            self.assertEqual(activity['type'], 'Add')
+            self.assertEqual(activity['actor'], self.local_user.remote_id)
+            self.assertEqual(activity['target'], self.list.remote_id)
+        models.ListItem.broadcast = mock_broadcast
+
         view = views.Curate.as_view()
-        pending = models.ListItem.objects.create(
-            book_list=self.list,
-            user=self.local_user,
-            book=self.book,
-            approved=False
-        )
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            pending = models.ListItem.objects.create(
+                book_list=self.list,
+                user=self.local_user,
+                book=self.book,
+                approved=False
+            )
 
         request = self.factory.post('', {
             'item': pending.id,
@@ -181,17 +209,19 @@ class ListViews(TestCase):
         self.assertEqual(self.list.books.count(), 1)
         self.assertEqual(self.list.listitem_set.first(), pending)
         self.assertTrue(pending.approved)
+        models.ListItem.broadcast = real_broadcast
 
 
-    def test_curate_reject(self, _):
+    def test_curate_reject(self):
         ''' approve a pending item '''
         view = views.Curate.as_view()
-        pending = models.ListItem.objects.create(
-            book_list=self.list,
-            user=self.local_user,
-            book=self.book,
-            approved=False
-        )
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            pending = models.ListItem.objects.create(
+                book_list=self.list,
+                user=self.local_user,
+                book=self.book,
+                approved=False
+            )
 
         request = self.factory.post('', {
             'item': pending.id,
@@ -199,13 +229,22 @@ class ListViews(TestCase):
         })
         request.user = self.local_user
 
-        view(request, self.list.id)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            view(request, self.list.id)
         self.assertFalse(self.list.books.exists())
         self.assertFalse(models.ListItem.objects.exists())
 
 
-    def test_add_book(self, _):
+    def test_add_book(self):
         ''' put a book on a list '''
+        real_broadcast = models.List.broadcast
+        def mock_broadcast(_, activity, user):
+            ''' ok '''
+            self.assertEqual(user.remote_id, self.local_user.remote_id)
+            self.assertEqual(activity['type'], 'Add')
+            self.assertEqual(activity['actor'], self.local_user.remote_id)
+            self.assertEqual(activity['target'], self.list.remote_id)
+        models.ListItem.broadcast = mock_broadcast
         request = self.factory.post('', {
             'book': self.book.id,
         })
@@ -216,12 +255,21 @@ class ListViews(TestCase):
         self.assertEqual(item.book, self.book)
         self.assertEqual(item.user, self.local_user)
         self.assertTrue(item.approved)
+        models.ListItem.broadcast = real_broadcast
 
 
-    def test_add_book_outsider(self, _):
+    def test_add_book_outsider(self):
         ''' put a book on a list '''
+        real_broadcast = models.List.broadcast
+        def mock_broadcast(_, activity, user):
+            ''' ok '''
+            self.assertEqual(user.remote_id, self.rat.remote_id)
+            self.assertEqual(activity['type'], 'Add')
+            self.assertEqual(activity['actor'], self.rat.remote_id)
+            self.assertEqual(activity['target'], self.list.remote_id)
+        models.ListItem.broadcast = mock_broadcast
         self.list.curation = 'open'
-        self.list.save()
+        self.list.save(broadcast=False)
         request = self.factory.post('', {
             'book': self.book.id,
         })
@@ -232,12 +280,22 @@ class ListViews(TestCase):
         self.assertEqual(item.book, self.book)
         self.assertEqual(item.user, self.rat)
         self.assertTrue(item.approved)
+        models.ListItem.broadcast = real_broadcast
 
 
-    def test_add_book_pending(self, _):
-        ''' put a book on a list '''
+    def test_add_book_pending(self):
+        ''' put a book on a list awaiting approval '''
+        real_broadcast = models.List.broadcast
+        def mock_broadcast(_, activity, user):
+            ''' ok '''
+            self.assertEqual(user.remote_id, self.rat.remote_id)
+            self.assertEqual(activity['type'], 'Add')
+            self.assertEqual(activity['actor'], self.rat.remote_id)
+            self.assertEqual(activity['target'], self.list.remote_id)
+            self.assertEqual(activity['object']['id'], self.book.remote_id)
+        models.ListItem.broadcast = mock_broadcast
         self.list.curation = 'curated'
-        self.list.save()
+        self.list.save(broadcast=False)
         request = self.factory.post('', {
             'book': self.book.id,
         })
@@ -248,12 +306,22 @@ class ListViews(TestCase):
         self.assertEqual(item.book, self.book)
         self.assertEqual(item.user, self.rat)
         self.assertFalse(item.approved)
+        models.ListItem.broadcast = real_broadcast
 
 
-    def test_add_book_self_curated(self, _):
-        ''' put a book on a list '''
+    def test_add_book_self_curated(self):
+        ''' put a book on a list automatically approved '''
+        real_broadcast = models.ListItem.broadcast
+        def mock_broadcast(_, activity, user):
+            ''' ok '''
+            self.assertEqual(user.remote_id, self.local_user.remote_id)
+            self.assertEqual(activity['type'], 'Add')
+            self.assertEqual(activity['actor'], self.local_user.remote_id)
+            self.assertEqual(activity['target'], self.list.remote_id)
+        models.ListItem.broadcast = mock_broadcast
+
         self.list.curation = 'curated'
-        self.list.save()
+        self.list.save(broadcast=False)
         request = self.factory.post('', {
             'book': self.book.id,
         })
@@ -264,16 +332,28 @@ class ListViews(TestCase):
         self.assertEqual(item.book, self.book)
         self.assertEqual(item.user, self.local_user)
         self.assertTrue(item.approved)
+        models.ListItem.broadcast = real_broadcast
 
 
-    def test_remove_book(self, _):
+    def test_remove_book(self):
         ''' take an item off a list '''
-        item = models.ListItem.objects.create(
-            book_list=self.list,
-            user=self.local_user,
-            book=self.book,
-        )
+        real_broadcast = models.ListItem.broadcast
+
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            item = models.ListItem.objects.create(
+                book_list=self.list,
+                user=self.local_user,
+                book=self.book,
+            )
         self.assertTrue(self.list.listitem_set.exists())
+
+        def mock_broadcast(_, activity, user):
+            ''' ok '''
+            self.assertEqual(user.remote_id, self.local_user.remote_id)
+            self.assertEqual(activity['type'], 'Remove')
+            self.assertEqual(activity['actor'], self.local_user.remote_id)
+            self.assertEqual(activity['target'], self.list.remote_id)
+        models.ListItem.broadcast = mock_broadcast
         request = self.factory.post('', {
             'item': item.id,
         })
@@ -282,15 +362,17 @@ class ListViews(TestCase):
         views.list.remove_book(request, self.list.id)
 
         self.assertFalse(self.list.listitem_set.exists())
+        models.ListItem.broadcast = real_broadcast
 
 
-    def test_remove_book_unauthorized(self, _):
+    def test_remove_book_unauthorized(self):
         ''' take an item off a list '''
-        item = models.ListItem.objects.create(
-            book_list=self.list,
-            user=self.local_user,
-            book=self.book,
-        )
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            item = models.ListItem.objects.create(
+                book_list=self.list,
+                user=self.local_user,
+                book=self.book,
+            )
         self.assertTrue(self.list.listitem_set.exists())
         request = self.factory.post('', {
             'item': item.id,
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index 888b2d40..8e315f30 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -124,7 +124,7 @@ class List(View):
     @method_decorator(login_required, name='dispatch')
     # pylint: disable=unused-argument
     def post(self, request, list_id):
-        ''' edit a book_list '''
+        ''' edit a list '''
         book_list = get_object_or_404(models.List, id=list_id)
         form = forms.ListForm(request.POST, instance=book_list)
         if not form.is_valid():

From 4ad51e62c645ecd7f4a59c7e5820da53c96612af Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 9 Feb 2021 10:26:04 -0800
Subject: [PATCH 146/280] Use recipients model attribute in broadcast

---
 bookwyrm/models/activitypub_mixin.py | 15 +++++----------
 bookwyrm/models/relationship.py      |  7 ++++++-
 bookwyrm/models/status.py            |  9 +++++++++
 3 files changed, 20 insertions(+), 11 deletions(-)

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 1ab5fa3f..1a536ea0 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -1,8 +1,9 @@
 ''' activitypub model functionality '''
+from base64 import b64encode
 from functools import reduce
 import json
 import operator
-from base64 import b64encode
+import logging
 from uuid import uuid4
 import requests
 
@@ -20,6 +21,7 @@ from bookwyrm.signatures import make_signature, make_digest
 from bookwyrm.tasks import app
 from bookwyrm.models.fields import ImageField, ManyToManyField
 
+logger = logging.getLogger(__name__)
 # I tried to separate these classes into mutliple files but I kept getting
 # circular import errors so I gave up. I'm sure it could be done though!
 class ActivitypubMixin:
@@ -121,8 +123,7 @@ class ActivitypubMixin:
             # or maybe the thing itself is a user
             user = self
         # find anyone who's tagged in a status, for example
-        mentions = self.mention_users.all() if \
-            hasattr(self, 'mention_users') else []
+        mentions = self.recipients if hasattr(self, 'recipients') else []
 
         # we always send activities to explicitly mentioned users' inboxes
         recipients = [u.inbox for u in mentions or []]
@@ -428,17 +429,11 @@ def broadcast_task(sender_id, activity, recipients):
     ''' the celery task for broadcast '''
     user_model = apps.get_model('bookwyrm.User', require_ready=True)
     sender = user_model.objects.get(id=sender_id)
-    errors = []
     for recipient in recipients:
         try:
             sign_and_send(sender, activity, recipient)
         except requests.exceptions.HTTPError as e:
-            errors.append({
-                'error': str(e),
-                'recipient': recipient,
-                'activity': activity,
-            })
-    return errors
+            logger.exception(e)
 
 
 def sign_and_send(sender, data, destination):
diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index 171edf36..9f3bf07d 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -29,6 +29,11 @@ class UserRelationship(BookWyrmModel):
         ''' all relationships are handled directly with the participants '''
         return 'direct'
 
+    @property
+    def recipients(self):
+        ''' the remote user needs to recieve direct broadcasts '''
+        return [u for u in [self.user_subject, self.user_object] if not u.local]
+
     class Meta:
         ''' relationships should be unique '''
         abstract = True
@@ -71,7 +76,7 @@ class UserFollowRequest(ActivitypubMixin, UserRelationship):
     status = 'follow_request'
     activity_serializer = activitypub.Follow
 
-    def save(self, broadcast=True, *args, **kwargs):
+    def save(self, *args, broadcast=True, **kwargs):
         ''' make sure the follow or block relationship doesn't already exist '''
         try:
             UserFollows.objects.get(
diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index ec105a10..edf60281 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -52,6 +52,15 @@ class Status(OrderedCollectionPageMixin, BookWyrmModel):
     serialize_reverse_fields = [('attachments', 'attachment', 'id')]
     deserialize_reverse_fields = [('attachments', 'attachment')]
 
+    @property
+    def recipients(self):
+        ''' tagged users who definitely need to get this status in broadcast '''
+        mentions = [u for u in self.mention_users.all() if not u.local]
+        if hasattr(self, 'reply_parent') and self.reply_parent \
+                and not self.reply_parent.user.local:
+            mentions.append(self.reply_parent.user)
+        return list(set(mentions))
+
     @classmethod
     def ignore_activity(cls, activity):
         ''' keep notes if they are replies to existing statuses '''

From 76491e4e35c2bceeb143091ab9c04e8fcf5347f8 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 9 Feb 2021 10:38:43 -0800
Subject: [PATCH 147/280] Back off notification polling

---
 bookwyrm/static/js/shared.js | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/static/js/shared.js b/bookwyrm/static/js/shared.js
index c2fa8b54..758b76dc 100644
--- a/bookwyrm/static/js/shared.js
+++ b/bookwyrm/static/js/shared.js
@@ -46,13 +46,14 @@ function back(e) {
     history.back();
 }
 
-function polling(el) {
-    let delay = 10000 + (Math.random() * 1000);
+function polling(el, delay) {
+    delay = delay || 10000;
+    delay += (Math.random() * 1000);
     setTimeout(function() {
         fetch('/api/updates/' + el.getAttribute('data-poll'))
             .then(response => response.json())
             .then(data => updateCountElement(el, data));
-        polling(el);
+        polling(el, delay * 1.25);
     }, delay, el);
 }
 

From 0a554b002d39a2e01fa084cf4a293dd7be93f47c Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 9 Feb 2021 10:43:40 -0800
Subject: [PATCH 148/280] Fixes test for handling direct recipients

---
 bookwyrm/tests/models/test_activitypub_mixin.py | 16 ++++++----------
 1 file changed, 6 insertions(+), 10 deletions(-)

diff --git a/bookwyrm/tests/models/test_activitypub_mixin.py b/bookwyrm/tests/models/test_activitypub_mixin.py
index 2d2e0ee1..67ff61fd 100644
--- a/bookwyrm/tests/models/test_activitypub_mixin.py
+++ b/bookwyrm/tests/models/test_activitypub_mixin.py
@@ -139,10 +139,8 @@ class ActivitypubMixins(TestCase):
                 inbox='https://example.com/users/nutria/inbox',
                 outbox='https://example.com/users/nutria/outbox',
             )
-        MockMentions = namedtuple('Mentions', ('all'))
-        mock_mentions = MockMentions(lambda: [another_remote_user])
-        MockSelf = namedtuple('Self', ('privacy', 'user', 'mention_users'))
-        mock_self = MockSelf('public', self.local_user, mock_mentions)
+        MockSelf = namedtuple('Self', ('privacy', 'user', 'recipients'))
+        mock_self = MockSelf('public', self.local_user, [another_remote_user])
 
         recipients = ActivitypubMixin.get_recipients(mock_self)
         self.assertEqual(len(recipients), 2)
@@ -163,10 +161,8 @@ class ActivitypubMixins(TestCase):
                 inbox='https://example.com/users/nutria/inbox',
                 outbox='https://example.com/users/nutria/outbox',
             )
-        MockMentions = namedtuple('Mentions', ('all'))
-        mock_mentions = MockMentions(lambda: [another_remote_user])
-        MockSelf = namedtuple('Self', ('privacy', 'user', 'mention_users'))
-        mock_self = MockSelf('direct', self.local_user, mock_mentions)
+        MockSelf = namedtuple('Self', ('privacy', 'user', 'recipients'))
+        mock_self = MockSelf('direct', self.local_user, [another_remote_user])
 
         recipients = ActivitypubMixin.get_recipients(mock_self)
         self.assertEqual(len(recipients), 1)
@@ -238,10 +234,10 @@ class ActivitypubMixins(TestCase):
             def save(self, *args, **kwargs):
                 with patch('django.db.models.Model.save'):
                     super().save(*args, **kwargs)
-            def broadcast(self, activity, sender):
+            def broadcast(self, activity, sender):#pylint: disable=arguments-differ
                 ''' do something '''
                 raise Success()
-            def to_create_activity(self, user):
+            def to_create_activity(self, user):#pylint: disable=arguments-differ
                 return {}
 
         with self.assertRaises(Success):

From e998ac28da601cba21fa0e47a14cd8210b5af5a1 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 9 Feb 2021 11:13:02 -0800
Subject: [PATCH 149/280] Fixes broadcasting created status that needs second
 save

---
 bookwyrm/models/activitypub_mixin.py | 4 ++--
 bookwyrm/views/status.py             | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 1a536ea0..d41c366d 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -164,14 +164,14 @@ class ActivitypubMixin:
 
 class ObjectMixin(ActivitypubMixin):
     ''' add this mixin for object models that are AP serializable '''
-    def save(self, *args, **kwargs):
+    def save(self, *args, created=None, **kwargs):
         ''' broadcast created/updated/deleted objects as appropriate '''
         broadcast = kwargs.get('broadcast', True)
         # this bonus kwarg woul cause an error in the base save method
         if 'broadcast' in kwargs:
             del kwargs['broadcast']
 
-        created = not bool(self.id)
+        created = created or not bool(self.id)
         # first off, we want to save normally no matter what
         super().save(*args, **kwargs)
         if not broadcast:
diff --git a/bookwyrm/views/status.py b/bookwyrm/views/status.py
index 4b2b4519..f7ed0e70 100644
--- a/bookwyrm/views/status.py
+++ b/bookwyrm/views/status.py
@@ -34,7 +34,7 @@ class CreateStatus(View):
         if not status.sensitive and status.content_warning:
             # the cw text field remains populated when you click "remove"
             status.content_warning = None
-        status.save()
+        status.save(broadcast=False)
 
         # inspect the text for user tags
         content = status.content
@@ -82,7 +82,7 @@ class CreateStatus(View):
         if hasattr(status, 'quote'):
             status.quote = to_markdown(status.quote)
 
-        status.save()
+        status.save(created=True)
         return redirect(request.headers.get('Referer', '/'))
 
 

From 9561bb229474c3bb32b103d08cd61b4163d614ac Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 9 Feb 2021 11:21:43 -0800
Subject: [PATCH 150/280] Adds reverse runpython for migration

---
 bookwyrm/migrations/0044_auto_20210207_1924.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/migrations/0044_auto_20210207_1924.py b/bookwyrm/migrations/0044_auto_20210207_1924.py
index ec95f7e2..84b17055 100644
--- a/bookwyrm/migrations/0044_auto_20210207_1924.py
+++ b/bookwyrm/migrations/0044_auto_20210207_1924.py
@@ -20,7 +20,7 @@ class Migration(migrations.Migration):
     ]
 
     operations = [
-        migrations.RunPython(set_user),
+        migrations.RunPython(set_user, lambda x, y: None),
         migrations.AlterField(
             model_name='shelfbook',
             name='user',

From 8fb08e09fd0d4aaf5ab38a9df35fa6d6b00d253d Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 9 Feb 2021 11:40:35 -0800
Subject: [PATCH 151/280] Filter pending books from list display

---
 bookwyrm/models/list.py | 4 +++-
 bookwyrm/views/list.py  | 8 ++++++--
 2 files changed, 9 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/models/list.py b/bookwyrm/models/list.py
index b567929b..9298920f 100644
--- a/bookwyrm/models/list.py
+++ b/bookwyrm/models/list.py
@@ -42,7 +42,9 @@ class List(OrderedCollectionMixin, BookWyrmModel):
     @property
     def collection_queryset(self):
         ''' list of books for this shelf, overrides OrderedCollectionMixin  '''
-        return self.books.all().order_by('listitem')
+        return self.books.filter(
+            listitem__approved=True
+        ).all().order_by('listitem')
 
     class Meta:
         ''' default sorting '''
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index 5128c2b0..161d826c 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -1,7 +1,7 @@
 ''' book list views'''
 from django.contrib.auth.decorators import login_required
 from django.core.paginator import Paginator
-from django.db.models import Q
+from django.db.models import Count, Q
 from django.http import HttpResponseNotFound, HttpResponseBadRequest
 from django.shortcuts import get_object_or_404, redirect
 from django.template.response import TemplateResponse
@@ -27,9 +27,13 @@ class Lists(View):
             page = 1
 
         user = request.user if request.user.is_authenticated else None
+        # hide lists with no approved books
         lists = models.List.objects.filter(
             ~Q(user=user),
-            books__isnull=False,
+        ).annotate(
+            item_count=Count('listitem', filter=Q(listitem__approved=True))
+        ).filter(
+            item_count__gt=0
         ).distinct().all()
         lists = privacy_filter(request.user, lists, ['public', 'followers'])
 

From 0682117a0657987a550e187895888e2f089ae3b5 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 9 Feb 2021 12:07:45 -0800
Subject: [PATCH 152/280] delete and re-add shelf books in switch edition

---
 bookwyrm/views/books.py | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/views/books.py b/bookwyrm/views/books.py
index 550c5545..2655bebb 100644
--- a/bookwyrm/views/books.py
+++ b/bookwyrm/views/books.py
@@ -211,9 +211,14 @@ def switch_edition(request):
         shelf__user=request.user
     )
     for shelfbook in shelfbooks.all():
-        # TODO: this needs to be a delete and re-create
-        shelfbook.book = new_edition
-        shelfbook.save()
+        with transaction.atomic():
+            models.ShelfBook.objects.create(
+                created_date=shelfbook.created_date,
+                user=shelfbook.user,
+                shelf=shelfbook.shelf,
+                book=new_edition
+            )
+            shelfbook.delete()
 
     readthroughs = models.ReadThrough.objects.filter(
         book__parent_work=new_edition.parent_work,

From 25e8b3ddebc3b5ddc8e53d034bbe774248f8db06 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 9 Feb 2021 12:23:59 -0800
Subject: [PATCH 153/280] Send activitypub pure mode activities when possible

---
 bookwyrm/models/activitypub_mixin.py | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index d41c366d..0fc77ce8 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -184,13 +184,21 @@ class ObjectMixin(ActivitypubMixin):
             # broadcast Create activities for objects owned by a local user
             if not user or not user.local:
                 return
+
             try:
+                software = None
+                # do we have a "pure" activitypub version of this for  mastodon?
+                if hasattr(self, 'pure_content'):
+                    pure_activity = self.to_create_activity(user, pure=True)
+                    self.broadcast(pure_activity, user, software='other')
+                    software = 'bookwyrm'
+                # sends to BW only if we just did a pure version for masto
                 activity = self.to_create_activity(user)
+                self.broadcast(activity, user, software=software)
             except KeyError:
                 # janky as heck, this catches the mutliple inheritence chain
                 # for boosts and ignores this auxilliary broadcast
                 return
-            self.broadcast(activity, user)
             return
 
         # --- updating an existing object

From 1d7cea27890f56ae716ad83c90e2dd549bce6cd4 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 9 Feb 2021 12:48:46 -0800
Subject: [PATCH 154/280] fixes tests with broadcast kwarg

---
 .../tests/models/test_activitypub_mixin.py    |  2 +-
 bookwyrm/tests/models/test_shelf_model.py     | 21 ++++++----
 bookwyrm/tests/models/test_status_model.py    | 41 ++++++++++---------
 3 files changed, 36 insertions(+), 28 deletions(-)

diff --git a/bookwyrm/tests/models/test_activitypub_mixin.py b/bookwyrm/tests/models/test_activitypub_mixin.py
index 67ff61fd..1ea4ae6d 100644
--- a/bookwyrm/tests/models/test_activitypub_mixin.py
+++ b/bookwyrm/tests/models/test_activitypub_mixin.py
@@ -234,7 +234,7 @@ class ActivitypubMixins(TestCase):
             def save(self, *args, **kwargs):
                 with patch('django.db.models.Model.save'):
                     super().save(*args, **kwargs)
-            def broadcast(self, activity, sender):#pylint: disable=arguments-differ
+            def broadcast(self, activity, sender, **kwargs):#pylint: disable=arguments-differ
                 ''' do something '''
                 raise Success()
             def to_create_activity(self, user):#pylint: disable=arguments-differ
diff --git a/bookwyrm/tests/models/test_shelf_model.py b/bookwyrm/tests/models/test_shelf_model.py
index a9b5a8d6..11b5ad5c 100644
--- a/bookwyrm/tests/models/test_shelf_model.py
+++ b/bookwyrm/tests/models/test_shelf_model.py
@@ -19,7 +19,9 @@ class Shelf(TestCase):
     def test_remote_id(self):
         ''' shelves use custom remote ids '''
         real_broadcast = models.Shelf.broadcast
-        models.Shelf.broadcast = lambda x, y, z: None
+        def broadcast_mock(_, activity, user, **kwargs):
+            ''' nah '''
+        models.Shelf.broadcast = broadcast_mock
         shelf = models.Shelf.objects.create(
             name='Test Shelf', identifier='test-shelf',
             user=self.local_user)
@@ -31,7 +33,9 @@ class Shelf(TestCase):
     def test_to_activity(self):
         ''' jsonify it '''
         real_broadcast = models.Shelf.broadcast
-        models.Shelf.broadcast = lambda x, y, z: None
+        def empty_mock(_, activity, user, **kwargs):
+            ''' nah '''
+        models.Shelf.broadcast = empty_mock
         shelf = models.Shelf.objects.create(
             name='Test Shelf', identifier='test-shelf',
             user=self.local_user)
@@ -48,7 +52,7 @@ class Shelf(TestCase):
     def test_create_update_shelf(self):
         ''' create and broadcast shelf creation '''
         real_broadcast = models.Shelf.broadcast
-        def create_mock(_, activity, user):
+        def create_mock(_, activity, user, **kwargs):
             ''' ok '''
             self.assertEqual(user.remote_id, self.local_user.remote_id)
             self.assertEqual(activity['type'], 'Create')
@@ -59,7 +63,7 @@ class Shelf(TestCase):
         shelf = models.Shelf.objects.create(
             name='Test Shelf', identifier='test-shelf', user=self.local_user)
 
-        def update_mock(_, activity, user):
+        def update_mock(_, activity, user, **kwargs):
             ''' ok '''
             self.assertEqual(user.remote_id, self.local_user.remote_id)
             self.assertEqual(activity['type'], 'Update')
@@ -78,7 +82,7 @@ class Shelf(TestCase):
         real_broadcast = models.Shelf.broadcast
         real_shelfbook_broadcast = models.ShelfBook.broadcast
 
-        def add_mock(_, activity, user):
+        def add_mock(_, activity, user, **kwargs):
             ''' ok '''
             self.assertEqual(user.remote_id, self.local_user.remote_id)
             self.assertEqual(activity['type'], 'Add')
@@ -86,7 +90,7 @@ class Shelf(TestCase):
             self.assertEqual(activity['object']['id'], self.book.remote_id)
             self.assertEqual(activity['target'], shelf.remote_id)
 
-        def remove_mock(_, activity, user):
+        def remove_mock(_, activity, user, **kwargs):
             ''' ok '''
             self.assertEqual(user.remote_id, self.local_user.remote_id)
             self.assertEqual(activity['type'], 'Remove')
@@ -94,7 +98,10 @@ class Shelf(TestCase):
             self.assertEqual(activity['object']['id'], self.book.remote_id)
             self.assertEqual(activity['target'], shelf.remote_id)
 
-        models.Shelf.broadcast = lambda x, y, z: None
+        def empty_mock(_, activity, user, **kwargs):
+            ''' nah '''
+
+        models.Shelf.broadcast = empty_mock
         shelf = models.Shelf.objects.create(
             name='Test Shelf', identifier='test-shelf', user=self.local_user)
 
diff --git a/bookwyrm/tests/models/test_status_model.py b/bookwyrm/tests/models/test_status_model.py
index 233fd6ea..2e383889 100644
--- a/bookwyrm/tests/models/test_status_model.py
+++ b/bookwyrm/tests/models/test_status_model.py
@@ -1,4 +1,5 @@
 ''' testing models '''
+from unittest.mock import patch
 from io import BytesIO
 import pathlib
 
@@ -11,6 +12,7 @@ from django.utils import timezone
 from bookwyrm import models, settings
 
 
+@patch('bookwyrm.models.Status.broadcast')
 class Status(TestCase):
     ''' lotta types of statuses '''
     def setUp(self):
@@ -29,9 +31,8 @@ class Status(TestCase):
             'test.jpg',
             ContentFile(output.getvalue())
         )
-        models.Status.broadcast = lambda x, y, z: None
 
-    def test_status_generated_fields(self):
+    def test_status_generated_fields(self, _):
         ''' setting remote id '''
         status = models.Status.objects.create(content='bleh', user=self.user)
         expected_id = 'https://%s/user/mouse/status/%d' % \
@@ -39,7 +40,7 @@ class Status(TestCase):
         self.assertEqual(status.remote_id, expected_id)
         self.assertEqual(status.privacy, 'public')
 
-    def test_replies(self):
+    def test_replies(self, _):
         ''' get a list of replies '''
         parent = models.Status.objects.create(content='hi', user=self.user)
         child = models.Status.objects.create(
@@ -55,7 +56,7 @@ class Status(TestCase):
         # should select subclasses
         self.assertIsInstance(replies.last(), models.Review)
 
-    def test_status_type(self):
+    def test_status_type(self, _):
         ''' class name '''
         self.assertEqual(models.Status().status_type, 'Note')
         self.assertEqual(models.Review().status_type, 'Review')
@@ -63,14 +64,14 @@ class Status(TestCase):
         self.assertEqual(models.Comment().status_type, 'Comment')
         self.assertEqual(models.Boost().status_type, 'Boost')
 
-    def test_boostable(self):
+    def test_boostable(self, _):
         ''' can a status be boosted, based on privacy '''
         self.assertTrue(models.Status(privacy='public').boostable)
         self.assertTrue(models.Status(privacy='unlisted').boostable)
         self.assertFalse(models.Status(privacy='followers').boostable)
         self.assertFalse(models.Status(privacy='direct').boostable)
 
-    def test_to_replies(self):
+    def test_to_replies(self, _):
         ''' activitypub replies collection '''
         parent = models.Status.objects.create(content='hi', user=self.user)
         child = models.Status.objects.create(
@@ -84,7 +85,7 @@ class Status(TestCase):
         self.assertEqual(replies['id'], '%s/replies' % parent.remote_id)
         self.assertEqual(replies['totalItems'], 2)
 
-    def test_status_to_activity(self):
+    def test_status_to_activity(self, _):
         ''' subclass of the base model version with a "pure" serializer '''
         status = models.Status.objects.create(
             content='test content', user=self.user)
@@ -94,7 +95,7 @@ class Status(TestCase):
         self.assertEqual(activity['content'], 'test content')
         self.assertEqual(activity['sensitive'], False)
 
-    def test_status_to_activity_tombstone(self):
+    def test_status_to_activity_tombstone(self, _):
         ''' subclass of the base model version with a "pure" serializer '''
         status = models.Status.objects.create(
             content='test content', user=self.user,
@@ -104,7 +105,7 @@ class Status(TestCase):
         self.assertEqual(activity['type'], 'Tombstone')
         self.assertFalse(hasattr(activity, 'content'))
 
-    def test_status_to_pure_activity(self):
+    def test_status_to_pure_activity(self, _):
         ''' subclass of the base model version with a "pure" serializer '''
         status = models.Status.objects.create(
             content='test content', user=self.user)
@@ -115,7 +116,7 @@ class Status(TestCase):
         self.assertEqual(activity['sensitive'], False)
         self.assertEqual(activity['attachment'], [])
 
-    def test_generated_note_to_activity(self):
+    def test_generated_note_to_activity(self, _):
         ''' subclass of the base model version with a "pure" serializer '''
         status = models.GeneratedNote.objects.create(
             content='test content', user=self.user)
@@ -128,7 +129,7 @@ class Status(TestCase):
         self.assertEqual(activity['sensitive'], False)
         self.assertEqual(len(activity['tag']), 2)
 
-    def test_generated_note_to_pure_activity(self):
+    def test_generated_note_to_pure_activity(self, _):
         ''' subclass of the base model version with a "pure" serializer '''
         status = models.GeneratedNote.objects.create(
             content='test content', user=self.user)
@@ -150,7 +151,7 @@ class Status(TestCase):
         self.assertEqual(
             activity['attachment'][0].name, 'Test Edition cover')
 
-    def test_comment_to_activity(self):
+    def test_comment_to_activity(self, _):
         ''' subclass of the base model version with a "pure" serializer '''
         status = models.Comment.objects.create(
             content='test content', user=self.user, book=self.book)
@@ -160,7 +161,7 @@ class Status(TestCase):
         self.assertEqual(activity['content'], 'test content')
         self.assertEqual(activity['inReplyToBook'], self.book.remote_id)
 
-    def test_comment_to_pure_activity(self):
+    def test_comment_to_pure_activity(self, _):
         ''' subclass of the base model version with a "pure" serializer '''
         status = models.Comment.objects.create(
             content='test content', user=self.user, book=self.book)
@@ -177,7 +178,7 @@ class Status(TestCase):
         self.assertEqual(
             activity['attachment'][0].name, 'Test Edition cover')
 
-    def test_quotation_to_activity(self):
+    def test_quotation_to_activity(self, _):
         ''' subclass of the base model version with a "pure" serializer '''
         status = models.Quotation.objects.create(
             quote='a sickening sense', content='test content',
@@ -189,7 +190,7 @@ class Status(TestCase):
         self.assertEqual(activity['content'], 'test content')
         self.assertEqual(activity['inReplyToBook'], self.book.remote_id)
 
-    def test_quotation_to_pure_activity(self):
+    def test_quotation_to_pure_activity(self, _):
         ''' subclass of the base model version with a "pure" serializer '''
         status = models.Quotation.objects.create(
             quote='a sickening sense', content='test content',
@@ -207,7 +208,7 @@ class Status(TestCase):
         self.assertEqual(
             activity['attachment'][0].name, 'Test Edition cover')
 
-    def test_review_to_activity(self):
+    def test_review_to_activity(self, _):
         ''' subclass of the base model version with a "pure" serializer '''
         status = models.Review.objects.create(
             name='Review name', content='test content', rating=3,
@@ -220,7 +221,7 @@ class Status(TestCase):
         self.assertEqual(activity['content'], 'test content')
         self.assertEqual(activity['inReplyToBook'], self.book.remote_id)
 
-    def test_review_to_pure_activity(self):
+    def test_review_to_pure_activity(self, _):
         ''' subclass of the base model version with a "pure" serializer '''
         status = models.Review.objects.create(
             name='Review name', content='test content', rating=3,
@@ -238,7 +239,7 @@ class Status(TestCase):
         self.assertEqual(
             activity['attachment'][0].name, 'Test Edition cover')
 
-    def test_favorite(self):
+    def test_favorite(self, _):
         ''' fav a status '''
         real_broadcast = models.Favorite.broadcast
         def fav_broadcast_mock(_, activity, user):
@@ -261,7 +262,7 @@ class Status(TestCase):
         self.assertEqual(activity['object'], status.remote_id)
         models.Favorite.broadcast = real_broadcast
 
-    def test_boost(self):
+    def test_boost(self, _):
         ''' boosting, this one's a bit fussy '''
         status = models.Status.objects.create(
             content='test content', user=self.user)
@@ -273,7 +274,7 @@ class Status(TestCase):
         self.assertEqual(activity['type'], 'Announce')
         self.assertEqual(activity, boost.to_activity(pure=True))
 
-    def test_notification(self):
+    def test_notification(self, _):
         ''' a simple model '''
         notification = models.Notification.objects.create(
             user=self.user, notification_type='FAVORITE')

From 104e4d7cf7118417bda9cf6a92057aaea07bf091 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 9 Feb 2021 13:06:59 -0800
Subject: [PATCH 155/280] Patch setup in status tests

---
 bookwyrm/tests/models/test_status_model.py | 11 ++++++-----
 1 file changed, 6 insertions(+), 5 deletions(-)

diff --git a/bookwyrm/tests/models/test_status_model.py b/bookwyrm/tests/models/test_status_model.py
index 2e383889..6978d593 100644
--- a/bookwyrm/tests/models/test_status_model.py
+++ b/bookwyrm/tests/models/test_status_model.py
@@ -26,11 +26,12 @@ class Status(TestCase):
             '../../static/images/default_avi.jpg')
         image = Image.open(image_file)
         output = BytesIO()
-        image.save(output, format=image.format)
-        self.book.cover.save(
-            'test.jpg',
-            ContentFile(output.getvalue())
-        )
+        with patch('bookwyrm.models.Status.broadcast'):
+            image.save(output, format=image.format)
+            self.book.cover.save(
+                'test.jpg',
+                ContentFile(output.getvalue())
+            )
 
     def test_status_generated_fields(self, _):
         ''' setting remote id '''

From 9c3bec23b8ce1d87192f2279d115da9fb8750b95 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 9 Feb 2021 17:26:27 -0800
Subject: [PATCH 156/280] More mocks in tests

---
 bookwyrm/models/activitypub_mixin.py  |  2 +-
 bookwyrm/tests/views/test_list.py     |  6 +++---
 bookwyrm/tests/views/test_rss_feed.py | 17 +++++++++--------
 3 files changed, 13 insertions(+), 12 deletions(-)

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 0fc77ce8..84293725 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -228,7 +228,7 @@ class ObjectMixin(ActivitypubMixin):
 
         signature = None
         create_id = self.remote_id + '/activity'
-        if 'content' in activity_object:
+        if 'content' in activity_object and activity_object['content']:
             signer = pkcs1_15.new(RSA.import_key(user.key_pair.private_key))
             content = activity_object['content']
             signed_message = signer.sign(SHA256.new(content.encode('utf8')))
diff --git a/bookwyrm/tests/views/test_list.py b/bookwyrm/tests/views/test_list.py
index 763c3b34..8737e347 100644
--- a/bookwyrm/tests/views/test_list.py
+++ b/bookwyrm/tests/views/test_list.py
@@ -65,7 +65,7 @@ class ListViews(TestCase):
     def test_lists_create(self):
         ''' create list view '''
         real_broadcast = models.List.broadcast
-        def mock_broadcast(_, activity, user):
+        def mock_broadcast(_, activity, user, **kwargs):
             ''' ok '''
             self.assertEqual(user.remote_id, self.local_user.remote_id)
             self.assertEqual(activity['type'], 'Create')
@@ -129,7 +129,7 @@ class ListViews(TestCase):
     def test_list_edit(self):
         ''' edit a list '''
         real_broadcast = models.List.broadcast
-        def mock_broadcast(_, activity, user):
+        def mock_broadcast(_, activity, user, **kwargs):
             ''' ok '''
             self.assertEqual(user.remote_id, self.local_user.remote_id)
             self.assertEqual(activity['type'], 'Update')
@@ -181,7 +181,7 @@ class ListViews(TestCase):
     def test_curate_approve(self):
         ''' approve a pending item '''
         real_broadcast = models.List.broadcast
-        def mock_broadcast(_, activity, user):
+        def mock_broadcast(_, activity, user, **kwargs):
             ''' ok '''
             self.assertEqual(user.remote_id, self.local_user.remote_id)
             self.assertEqual(activity['type'], 'Add')
diff --git a/bookwyrm/tests/views/test_rss_feed.py b/bookwyrm/tests/views/test_rss_feed.py
index d51f8202..2b5e415e 100644
--- a/bookwyrm/tests/views/test_rss_feed.py
+++ b/bookwyrm/tests/views/test_rss_feed.py
@@ -22,16 +22,17 @@ class RssFeedView(TestCase):
             parent_work=work
         )
 
-        self.review = models.Review.objects.create(
-            name='Review name', content='test content', rating=3,
-            user=self.user, book=self.book)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            self.review = models.Review.objects.create(
+                name='Review name', content='test content', rating=3,
+                user=self.user, book=self.book)
 
-        self.quote = models.Quotation.objects.create(
-            quote='a sickening sense', content='test content',
-            user=self.user, book=self.book)
+            self.quote = models.Quotation.objects.create(
+                quote='a sickening sense', content='test content',
+                user=self.user, book=self.book)
 
-        self.generatednote = models.GeneratedNote.objects.create(
-            content='test content', user=self.user)
+            self.generatednote = models.GeneratedNote.objects.create(
+                content='test content', user=self.user)
 
         self.factory = RequestFactory()
 

From 7c5b9f563fee95a4695c0c311e84f777877a80f9 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 11:11:55 -0800
Subject: [PATCH 157/280] Fixes double slash in path

---
 bookwyrm/models/base_model.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/models/base_model.py b/bookwyrm/models/base_model.py
index 5c72d547..585f6dcc 100644
--- a/bookwyrm/models/base_model.py
+++ b/bookwyrm/models/base_model.py
@@ -27,7 +27,7 @@ class BookWyrmModel(models.Model):
         ''' generate a url that resolves to the local object '''
         base_path = 'https://%s' % DOMAIN
         if hasattr(self, 'user'):
-            base_path = '%s/%s' % (base_path, self.user.local_path)
+            base_path = '%s%s' % (base_path, self.user.local_path)
         model_name = type(self).__name__.lower()
         return '%s/%s/%d' % (base_path, model_name, self.id)
 

From d29257e1ffcbe64c33f0ac4207b7cbe63b16131f Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 11:48:49 -0800
Subject: [PATCH 158/280] Only show tabs on user page as appropriate

---
 bookwyrm/templates/user/user_layout.html | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/bookwyrm/templates/user/user_layout.html b/bookwyrm/templates/user/user_layout.html
index 2a086fcd..979ee0b0 100644
--- a/bookwyrm/templates/user/user_layout.html
+++ b/bookwyrm/templates/user/user_layout.html
@@ -75,19 +75,25 @@
         <li{% if url == request.path or url == request.path|add:'/' %} class="is-active"{% endif %}>
             <a href="{{ url }}">Activity</a>
         </li>
+        {% if is_self or user.goal.exists %}
         {% now 'Y' as year %}
         {% url 'user-goal' user|username year as url %}
         <li{% if url in request.path %} class="is-active"{% endif %}>
             <a href="{{ url }}">Reading Goal</a>
         </li>
+        {% endif %}
+        {% if is_self or user.lists.exists %}
         {% url 'user-lists' user|username as url %}
         <li{% if url in request.path %} class="is-active"{% endif %}>
             <a href="{{ url }}">Lists</a>
         </li>
+        {% endif %}
+        {% if user.shelf_set.exists %}
         {% url 'user-shelves' user|username as url %}
         <li{% if url in request.path %} class="is-active"{% endif %}>
             <a href="{{ url }}">Shelves</a>
         </li>
+        {% endif %}
     </ul>
 </nav>
 {% endif %}

From 9a564a846af3aa1fbeb5cb2e53e36f061017dc57 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 11:56:08 -0800
Subject: [PATCH 159/280] Better error handling and loggin in get_data

---
 bookwyrm/connectors/abstract_connector.py | 13 ++++++++++---
 1 file changed, 10 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/connectors/abstract_connector.py b/bookwyrm/connectors/abstract_connector.py
index ab9900a7..9bc23698 100644
--- a/bookwyrm/connectors/abstract_connector.py
+++ b/bookwyrm/connectors/abstract_connector.py
@@ -210,13 +210,20 @@ def get_data(url):
                 'User-Agent': settings.USER_AGENT,
             },
         )
-    except (RequestError, SSLError):
+    except (RequestError, SSLError) as e:
+        logger.exception(e)
         raise ConnectorException()
+
     if not resp.ok:
-        resp.raise_for_status()
+        try:
+            resp.raise_for_status()
+        except requests.exceptions.HTTPError as e:
+            logger.exception(e)
+            raise ConnectorException()
     try:
         data = resp.json()
-    except ValueError:
+    except ValueError as e:
+        logger.exception(e)
         raise ConnectorException()
 
     return data

From f46a708f7e19a7120d34ef498de654d0265587a8 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 12:00:16 -0800
Subject: [PATCH 160/280] Handle connector exceptions with sketchy book data
 from OL

---
 bookwyrm/connectors/abstract_connector.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/connectors/abstract_connector.py b/bookwyrm/connectors/abstract_connector.py
index 9bc23698..f822fc5d 100644
--- a/bookwyrm/connectors/abstract_connector.py
+++ b/bookwyrm/connectors/abstract_connector.py
@@ -107,7 +107,7 @@ class AbstractConnector(AbstractMinimalConnector):
         if self.is_work_data(data):
             try:
                 edition_data = self.get_edition_from_work_data(data)
-            except KeyError:
+            except (KeyError, ConnectorException):
                 # hack: re-use the work data as the edition data
                 # this is why remote ids aren't necessarily unique
                 edition_data = data
@@ -116,7 +116,7 @@ class AbstractConnector(AbstractMinimalConnector):
             try:
                 work_data = self.get_work_from_edition_data(data)
                 work_data = dict_from_mappings(work_data, self.book_mappings)
-            except KeyError:
+            except (KeyError, ConnectorException):
                 work_data = mapped_data
             edition_data = data
 

From 5565523d858f44bfc26fcfeb4fe7d05bd9a6c61d Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 12:07:50 -0800
Subject: [PATCH 161/280] Tests bug in link formatting

---
 bookwyrm/tests/views/test_status.py | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/bookwyrm/tests/views/test_status.py b/bookwyrm/tests/views/test_status.py
index 719b0d71..d490f484 100644
--- a/bookwyrm/tests/views/test_status.py
+++ b/bookwyrm/tests/views/test_status.py
@@ -217,6 +217,16 @@ class StatusViews(TestCase):
                     'is rad</p>')
 
 
+    def test_to_markdown_link(self):
+        ''' this is mostly handled in other places, but nonetheless '''
+        text = '[hi](http://fish.com) is <marquee>rad</marquee>'
+        result = views.status.to_markdown(text)
+        self.assertEqual(
+            result,
+            '<p><a href="http://fish.com">hi</a> ' \
+                    'is rad</p>')
+
+
     def test_handle_delete_status(self):
         ''' marks a status as deleted '''
         view = views.DeleteStatus.as_view()

From f75acc385db6a36893140f93baaa1457a53ff1c8 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 12:13:07 -0800
Subject: [PATCH 162/280] Adds link to rss feed from user page

---
 bookwyrm/templates/user/user.html | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/templates/user/user.html b/bookwyrm/templates/user/user.html
index 48f15398..c7f6d3b5 100644
--- a/bookwyrm/templates/user/user.html
+++ b/bookwyrm/templates/user/user.html
@@ -54,8 +54,13 @@
 {% endif %}
 
 <div>
-    <div class="block">
-        <h2 class="title">User Activity</h2>
+    <div class="columns">
+        <h2 class="title column">User Activity</h2>
+        <div class="column is-narrow">
+            <a class="icon icon-rss" target="_blank" href="{{ user.local_path }}/rss">
+                <span class="is-sr-only">RSS feed</span>
+            </a>
+        </div>
     </div>
     {% for activity in activities %}
     <div class="block" id="feed">

From 2f42ec5e3746f5edd6372b484baf330c23474ea4 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 12:27:09 -0800
Subject: [PATCH 163/280] Fixes execution order for formatting content body for
 statuses

---
 bookwyrm/views/status.py | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/bookwyrm/views/status.py b/bookwyrm/views/status.py
index f7ed0e70..522d1f6d 100644
--- a/bookwyrm/views/status.py
+++ b/bookwyrm/views/status.py
@@ -48,7 +48,6 @@ class CreateStatus(View):
                 r'<a href="%s">%s</a>\g<1>' % \
                     (mention_user.remote_id, mention_text),
                 content)
-
         # add reply parent to mentions and notify
         if status.reply_parent:
             status.mention_users.add(status.reply_parent.user)
@@ -126,8 +125,8 @@ def format_links(content):
 
 def to_markdown(content):
     ''' catch links and convert to markdown '''
-    content = format_links(content)
     content = markdown(content)
+    content = format_links(content)
     # sanitize resulting html
     sanitizer = InputHtmlParser()
     sanitizer.feed(content)

From 930d9429efa0138da7625a5270b4eba3ead890ec Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 12:43:53 -0800
Subject: [PATCH 164/280] User save() override instead of signal to set user
 fields

this gets gnarly because of transaction.atomic, so it bears further
testing
---
 bookwyrm/models/user.py | 80 ++++++++++++++++++++---------------------
 1 file changed, 38 insertions(+), 42 deletions(-)

diff --git a/bookwyrm/models/user.py b/bookwyrm/models/user.py
index da717d2e..7b0f9a91 100644
--- a/bookwyrm/models/user.py
+++ b/bookwyrm/models/user.py
@@ -6,7 +6,6 @@ from django.apps import apps
 from django.contrib.auth.models import AbstractUser
 from django.core.validators import MinValueValidator
 from django.db import models
-from django.dispatch import receiver
 from django.utils import timezone
 
 from bookwyrm import activitypub
@@ -172,15 +171,23 @@ class User(OrderedCollectionPageMixin, AbstractUser):
 
     def save(self, *args, **kwargs):
         ''' populate fields for new local users '''
-        # this user already exists, no need to populate fields
         if not self.local and not re.match(regex.full_username, self.username):
             # generate a username that uses the domain (webfinger format)
             actor_parts = urlparse(self.remote_id)
             self.username = '%s@%s' % (self.username, actor_parts.netloc)
-            return super().save(*args, **kwargs)
+            super().save(*args, **kwargs)
+            return
 
-        if self.id or not self.local:
-            return super().save(*args, **kwargs)
+        # this user already exists, no need to populate fields
+        if self.id:
+            super().save(*args, **kwargs)
+            return
+
+        # this is a new remote user, we need to set their remote server field
+        if not self.local:
+            super().save(*args, **kwargs)
+            set_remote_server.delay(self.id)
+            return
 
         # populate fields for local users
         self.remote_id = 'https://%s/user/%s' % (DOMAIN, self.localname)
@@ -188,7 +195,32 @@ class User(OrderedCollectionPageMixin, AbstractUser):
         self.shared_inbox = 'https://%s/inbox' % DOMAIN
         self.outbox = '%s/outbox' % self.remote_id
 
-        return super().save(*args, **kwargs)
+        # an id needs to be set before we can proceed with related models
+        super().save(*args, **kwargs)
+
+        # create keys and shelves for new local users
+        self.key_pair = KeyPair.objects.create(
+            remote_id='%s/#main-key' % self.remote_id)
+        self.save(broadcast=False)
+
+        shelves = [{
+            'name': 'To Read',
+            'identifier': 'to-read',
+        }, {
+            'name': 'Currently Reading',
+            'identifier': 'reading',
+        }, {
+            'name': 'Read',
+            'identifier': 'read',
+        }]
+
+        for shelf in shelves:
+            Shelf(
+                name=shelf['name'],
+                identifier=shelf['identifier'],
+                user=self,
+                editable=False
+            ).save(broadcast=False)
 
     @property
     def local_path(self):
@@ -280,42 +312,6 @@ class AnnualGoal(BookWyrmModel):
             finish_date__year__gte=self.year).count()
 
 
-
-@receiver(models.signals.post_save, sender=User)
-#pylint: disable=unused-argument
-def execute_after_save(sender, instance, created, *args, **kwargs):
-    ''' create shelves for new users '''
-    if not created:
-        return
-
-    if not instance.local:
-        set_remote_server.delay(instance.id)
-        return
-
-    instance.key_pair = KeyPair.objects.create(
-        remote_id='%s/#main-key' % instance.remote_id)
-    instance.save(broadcast=False)
-
-    shelves = [{
-        'name': 'To Read',
-        'identifier': 'to-read',
-    }, {
-        'name': 'Currently Reading',
-        'identifier': 'reading',
-    }, {
-        'name': 'Read',
-        'identifier': 'read',
-    }]
-
-    for shelf in shelves:
-        Shelf(
-            name=shelf['name'],
-            identifier=shelf['identifier'],
-            user=instance,
-            editable=False
-        ).save(broadcast=False)
-
-
 @app.task
 def set_remote_server(user_id):
     ''' figure out the user's remote server in the background '''

From 88b25044028a9303c943a931abf6730ab7e18201 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 13:09:04 -0800
Subject: [PATCH 165/280] Fixes broadcasting on generated notes

---
 bookwyrm/status.py | 23 ++++++++++++++---------
 1 file changed, 14 insertions(+), 9 deletions(-)

diff --git a/bookwyrm/status.py b/bookwyrm/status.py
index 648f2e7d..2cf6987f 100644
--- a/bookwyrm/status.py
+++ b/bookwyrm/status.py
@@ -1,4 +1,5 @@
 ''' Handle user activity '''
+from django.db import transaction
 from django.utils import timezone
 
 from bookwyrm import models
@@ -19,16 +20,20 @@ def create_generated_note(user, content, mention_books=None, privacy='public'):
     parser.feed(content)
     content = parser.get_output()
 
-    status = models.GeneratedNote.objects.create(
-        user=user,
-        content=content,
-        privacy=privacy
-    )
-
-    if mention_books:
-        for book in mention_books:
-            status.mention_books.add(book)
+    with transaction.atomic():
+        # create but don't save
+        status = models.GeneratedNote(
+            user=user,
+            content=content,
+            privacy=privacy
+        )
+        # we have to save it to set the related fields, but hold off on telling
+        # folks about it because it is not ready
+        status.save(broadcast=False)
 
+        if mention_books:
+            status.mention_books.set(mention_books)
+        status.save(created=True)
     return status
 
 

From 2bf4b1711367add6f58bd082f32d07b580640aea Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 13:15:12 -0800
Subject: [PATCH 166/280] Adds notification type referencing lists

---
 .../migrations/0045_auto_20210210_2114.py     | 58 +++++++++++++++++++
 bookwyrm/models/notification.py               | 14 +++--
 2 files changed, 66 insertions(+), 6 deletions(-)
 create mode 100644 bookwyrm/migrations/0045_auto_20210210_2114.py

diff --git a/bookwyrm/migrations/0045_auto_20210210_2114.py b/bookwyrm/migrations/0045_auto_20210210_2114.py
new file mode 100644
index 00000000..87b9a318
--- /dev/null
+++ b/bookwyrm/migrations/0045_auto_20210210_2114.py
@@ -0,0 +1,58 @@
+# Generated by Django 3.0.7 on 2021-02-10 21:14
+
+from django.conf import settings
+from django.db import migrations, models
+import django.db.models.deletion
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('bookwyrm', '0044_auto_20210207_1924'),
+    ]
+
+    operations = [
+        migrations.RemoveConstraint(
+            model_name='notification',
+            name='notification_type_valid',
+        ),
+        migrations.AddField(
+            model_name='notification',
+            name='related_list_item',
+            field=models.ForeignKey(null=True, on_delete=django.db.models.deletion.CASCADE, to='bookwyrm.ListItem'),
+        ),
+        migrations.AlterField(
+            model_name='notification',
+            name='notification_type',
+            field=models.CharField(choices=[('FAVORITE', 'Favorite'), ('REPLY', 'Reply'), ('MENTION', 'Mention'), ('TAG', 'Tag'), ('FOLLOW', 'Follow'), ('FOLLOW_REQUEST', 'Follow Request'), ('BOOST', 'Boost'), ('IMPORT', 'Import'), ('ADD', 'Add')], max_length=255),
+        ),
+        migrations.AlterField(
+            model_name='notification',
+            name='related_book',
+            field=models.ForeignKey(null=True, on_delete=django.db.models.deletion.CASCADE, to='bookwyrm.Edition'),
+        ),
+        migrations.AlterField(
+            model_name='notification',
+            name='related_import',
+            field=models.ForeignKey(null=True, on_delete=django.db.models.deletion.CASCADE, to='bookwyrm.ImportJob'),
+        ),
+        migrations.AlterField(
+            model_name='notification',
+            name='related_status',
+            field=models.ForeignKey(null=True, on_delete=django.db.models.deletion.CASCADE, to='bookwyrm.Status'),
+        ),
+        migrations.AlterField(
+            model_name='notification',
+            name='related_user',
+            field=models.ForeignKey(null=True, on_delete=django.db.models.deletion.CASCADE, related_name='related_user', to=settings.AUTH_USER_MODEL),
+        ),
+        migrations.AlterField(
+            model_name='notification',
+            name='user',
+            field=models.ForeignKey(on_delete=django.db.models.deletion.CASCADE, to=settings.AUTH_USER_MODEL),
+        ),
+        migrations.AddConstraint(
+            model_name='notification',
+            constraint=models.CheckConstraint(check=models.Q(notification_type__in=['FAVORITE', 'REPLY', 'MENTION', 'TAG', 'FOLLOW', 'FOLLOW_REQUEST', 'BOOST', 'IMPORT', 'ADD']), name='notification_type_valid'),
+        ),
+    ]
diff --git a/bookwyrm/models/notification.py b/bookwyrm/models/notification.py
index 4ce5dcea..b4c91f61 100644
--- a/bookwyrm/models/notification.py
+++ b/bookwyrm/models/notification.py
@@ -5,20 +5,22 @@ from .base_model import BookWyrmModel
 
 NotificationType = models.TextChoices(
     'NotificationType',
-    'FAVORITE REPLY MENTION TAG FOLLOW FOLLOW_REQUEST BOOST IMPORT')
+    'FAVORITE REPLY MENTION TAG FOLLOW FOLLOW_REQUEST BOOST IMPORT ADD')
 
 class Notification(BookWyrmModel):
     ''' you've been tagged, liked, followed, etc '''
-    user = models.ForeignKey('User', on_delete=models.PROTECT)
+    user = models.ForeignKey('User', on_delete=models.CASCADE)
     related_book = models.ForeignKey(
-        'Edition', on_delete=models.PROTECT, null=True)
+        'Edition', on_delete=models.CASCADE, null=True)
     related_user = models.ForeignKey(
         'User',
-        on_delete=models.PROTECT, null=True, related_name='related_user')
+        on_delete=models.CASCADE, null=True, related_name='related_user')
     related_status = models.ForeignKey(
-        'Status', on_delete=models.PROTECT, null=True)
+        'Status', on_delete=models.CASCADE, null=True)
     related_import = models.ForeignKey(
-        'ImportJob', on_delete=models.PROTECT, null=True)
+        'ImportJob', on_delete=models.CASCADE, null=True)
+    related_list_item = models.ForeignKey(
+        'ListItem', on_delete=models.CASCADE, null=True)
     read = models.BooleanField(default=False)
     notification_type = models.CharField(
         max_length=255, choices=NotificationType.choices)

From 8842db3c1b18359908f00fce4b6021e074a01667 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 13:46:56 -0800
Subject: [PATCH 167/280] Create notification when adding or suggesting a book
 to a list

---
 bookwyrm/models/list.py               | 17 +++++++++
 bookwyrm/templates/lists/list.html    |  4 +-
 bookwyrm/templates/notifications.html | 53 ++++++++++++++-------------
 3 files changed, 48 insertions(+), 26 deletions(-)

diff --git a/bookwyrm/models/list.py b/bookwyrm/models/list.py
index 5004a9b0..db8c1af6 100644
--- a/bookwyrm/models/list.py
+++ b/bookwyrm/models/list.py
@@ -1,4 +1,5 @@
 ''' make a list of books!! '''
+from django.apps import apps
 from django.db import models
 
 from bookwyrm import activitypub
@@ -71,6 +72,22 @@ class ListItem(CollectionItemMixin, BookWyrmModel):
     object_field = 'book'
     collection_field = 'book_list'
 
+    def save(self, *args, **kwargs):
+        ''' create a notification too '''
+        created = not bool(self.id)
+        super().save(*args, **kwargs)
+        list_owner = self.book_list.user
+        # create a notification if somoene ELSE added to a local user's list
+        if created and list_owner.local and list_owner != self.user:
+            model = apps.get_model('bookwyrm.Notification', require_ready=True)
+            model.objects.create(
+                user=list_owner,
+                related_user=self.user,
+                related_list_item=self,
+                notification_type='ADD',
+            )
+
+
     class Meta:
         ''' an opinionated constraint! you can't put a book on a list twice '''
         unique_together = ('book', 'book_list')
diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index 7899d593..4bd71284 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -26,7 +26,7 @@
                         <div class="column is-flex-direction-column is-align-items-self-start">
                             <span>{% include 'snippets/book_titleby.html' with book=item.book %}</span>
                             {% include 'snippets/stars.html' with rating=item.book|rating:request.user %}
-                            {% include 'snippets/shelve_button.html' with book=item.book %}
+                            {% include 'snippets/shelve_button/shelve_button.html' with book=item.book %}
                         </div>
                     </div>
                     <div class="card-footer has-background-white-bis">
@@ -72,6 +72,7 @@
         <p>No books found{% if query %} matching the query "{{ query }}"{% endif %}</p>
         {% endif %}
         {% for book in suggested_books %}
+        {% if book %}
         <div class="block columns">
             <div class="column is-narrow">
                 <a href="{{ book.local_path }}">{% include 'snippets/book_cover.html' with book=book size="small" %}</a>
@@ -85,6 +86,7 @@
                 </form>
             </div>
         </div>
+        {% endif %}
         {% endfor %}
     </section>
     {% endif %}
diff --git a/bookwyrm/templates/notifications.html b/bookwyrm/templates/notifications.html
index b594251f..8e7412a2 100644
--- a/bookwyrm/templates/notifications.html
+++ b/bookwyrm/templates/notifications.html
@@ -29,6 +29,8 @@
                 <span class="icon icon-heart"></span>
                 {% elif notification.notification_type == 'IMPORT' %}
                 <span class="icon icon-list"></span>
+                {% elif notification.notification_type == 'ADD' %}
+                <span class="icon icon-plus"></span>
                 {% endif %}
             </div>
             <div class="column">
@@ -36,33 +38,34 @@
                     <p>
                         {# DESCRIPTION #}
                         {% if notification.related_user %}
-                        {% include 'snippets/avatar.html' with user=notification.related_user %}
-                        {% include 'snippets/username.html' with user=notification.related_user %}
-                        {% if notification.notification_type == 'FAVORITE' %}
-                            favorited your
-                            <a href="{{ related_status.local_path }}">{{ related_status | status_preview_name|safe }}</a>
+                            {% include 'snippets/avatar.html' with user=notification.related_user %}
+                            {% include 'snippets/username.html' with user=notification.related_user %}
+                            {% if notification.notification_type == 'FAVORITE' %}
+                                favorited your
+                                <a href="{{ related_status.local_path }}">{{ related_status | status_preview_name|safe }}</a>
 
-                        {% elif notification.notification_type == 'MENTION' %}
-                            mentioned you in a
-                            <a href="{{ related_status.local_path }}">{{ related_status | status_preview_name|safe }}</a>
+                            {% elif notification.notification_type == 'MENTION' %}
+                                mentioned you in a
+                                <a href="{{ related_status.local_path }}">{{ related_status | status_preview_name|safe }}</a>
 
-                        {% elif notification.notification_type == 'REPLY' %}
-                            <a href="{{ related_status.local_path }}">replied</a>
-                            to your
-                            <a href="{{ related_status.reply_parent.local_path }}">{{ related_status | status_preview_name|safe }}</a>
-                        {% elif notification.notification_type == 'FOLLOW' %}
-                            followed you
-                            {% include 'snippets/follow_button.html' with user=notification.related_user %}
-                        {% elif notification.notification_type == 'FOLLOW_REQUEST' %}
-                            sent you a follow request
-                            <div class="row shrink">
-                                {% include 'snippets/follow_request_buttons.html' with user=notification.related_user %}
-                            </div>
-
-                        {% elif notification.notification_type == 'BOOST' %}
-                            boosted your <a href="{{ related_status.local_path }}">{{ related_status | status_preview_name|safe }}</a>
-                        {% endif %}
-                        {% else %}
+                            {% elif notification.notification_type == 'REPLY' %}
+                                <a href="{{ related_status.local_path }}">replied</a>
+                                to your
+                                <a href="{{ related_status.reply_parent.local_path }}">{{ related_status | status_preview_name|safe }}</a>
+                            {% elif notification.notification_type == 'FOLLOW' %}
+                                followed you
+                                {% include 'snippets/follow_button.html' with user=notification.related_user %}
+                            {% elif notification.notification_type == 'FOLLOW_REQUEST' %}
+                                sent you a follow request
+                                <div class="row shrink">
+                                    {% include 'snippets/follow_request_buttons.html' with user=notification.related_user %}
+                                </div>
+                            {% elif notification.notification_type == 'BOOST' %}
+                                boosted your <a href="{{ related_status.local_path }}">{{ related_status | status_preview_name|safe }}</a>
+                            {% elif notification.notification_type == 'ADD' %}
+                            {% if notification.related_list_item.approved %}added{% else %}suggested adding{% endif %} {% include 'snippets/book_titleby.html' with book=notification.related_list_item.book %} to your list "<a href="{{ notification.related_list_item.book_list.local_path }}{% if not notification.related_list_item.approved %}/curate{% endif %}">{{ notification.related_list_item.book_list.name }}</a>"
+                            {% endif %}
+                        {% elif notification.related_import %}
                             your <a href="/import/{{ notification.related_import.id }}">import</a> completed.
                         {% endif %}
                     </p>

From b22e56333fca921ca0b7fd9e51780038d0f08aee Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 13:50:20 -0800
Subject: [PATCH 168/280] Gracefully handle list duplicate additions

---
 bookwyrm/views/list.py | 41 +++++++++++++++++++++++------------------
 1 file changed, 23 insertions(+), 18 deletions(-)

diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index 64efc166..cfdf6d76 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -1,6 +1,7 @@
 ''' book list views'''
 from django.contrib.auth.decorators import login_required
 from django.core.paginator import Paginator
+from django.db import IntegrityError
 from django.db.models import Count, Q
 from django.http import HttpResponseNotFound, HttpResponseBadRequest
 from django.shortcuts import get_object_or_404, redirect
@@ -181,24 +182,28 @@ def add_book(request, list_id):
 
     book = get_object_or_404(models.Edition, id=request.POST.get('book'))
     # do you have permission to add to the list?
-    if request.user == book_list.user or book_list.curation == 'open':
-        # go ahead and add it
-        models.ListItem.objects.create(
-            book=book,
-            book_list=book_list,
-            user=request.user,
-        )
-    elif book_list.curation == 'curated':
-        # make a pending entry
-        models.ListItem.objects.create(
-            approved=False,
-            book=book,
-            book_list=book_list,
-            user=request.user,
-        )
-    else:
-        # you can't add to this list, what were you THINKING
-        return HttpResponseBadRequest()
+    try:
+        if request.user == book_list.user or book_list.curation == 'open':
+            # go ahead and add it
+            models.ListItem.objects.create(
+                book=book,
+                book_list=book_list,
+                user=request.user,
+            )
+        elif book_list.curation == 'curated':
+            # make a pending entry
+            models.ListItem.objects.create(
+                approved=False,
+                book=book,
+                book_list=book_list,
+                user=request.user,
+            )
+        else:
+            # you can't add to this list, what were you THINKING
+            return HttpResponseBadRequest()
+    except IntegrityError:
+        # if the book is already on the list, don't flip out
+        pass
 
     return redirect('list', list_id)
 

From 13d8ccb016ca8c761fe5fa6a4b841db2f0f9a556 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 14:13:36 -0800
Subject: [PATCH 169/280] Moves status notifications into model

---
 bookwyrm/models/status.py | 25 +++++++++++++++++++++++++
 bookwyrm/views/status.py  | 23 ++---------------------
 2 files changed, 27 insertions(+), 21 deletions(-)

diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index edf60281..7091fd0b 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -52,6 +52,31 @@ class Status(OrderedCollectionPageMixin, BookWyrmModel):
     serialize_reverse_fields = [('attachments', 'attachment', 'id')]
     deserialize_reverse_fields = [('attachments', 'attachment')]
 
+    def save(self, *args, **kwargs):
+        ''' save and notify '''
+        super().save(*args, **kwargs)
+
+        notification_model = apps.get_model(
+            'bookwyrm.Notification', require_ready=True)
+        if self.reply_parent and self.reply_parent.user.local:
+            notification_model.objects.create(
+                user=self.reply_parent.user,
+                notification_type='REPLY',
+                related_user=self.user,
+                related_status=self,
+            )
+        for mention_user in self.mention_users.all():
+            # avoid double-notifying about this status
+            if not mention_user.local or notification_model.objects.filter(
+                    related_status=self, related_user=mention_user).exists():
+                continue
+            notification_model.objects.create(
+                user=mention_user,
+                notification_type='MENTION',
+                related_user=self.user,
+                related_status=self,
+            )
+
     @property
     def recipients(self):
         ''' tagged users who definitely need to get this status in broadcast '''
diff --git a/bookwyrm/views/status.py b/bookwyrm/views/status.py
index 522d1f6d..db924ce8 100644
--- a/bookwyrm/views/status.py
+++ b/bookwyrm/views/status.py
@@ -10,7 +10,7 @@ from markdown import markdown
 from bookwyrm import forms, models
 from bookwyrm.sanitize_html import InputHtmlParser
 from bookwyrm.settings import DOMAIN
-from bookwyrm.status import create_notification, delete_status
+from bookwyrm.status import delete_status
 from bookwyrm.utils import regex
 from .helpers import handle_remote_webfinger
 
@@ -48,31 +48,12 @@ class CreateStatus(View):
                 r'<a href="%s">%s</a>\g<1>' % \
                     (mention_user.remote_id, mention_text),
                 content)
-        # add reply parent to mentions and notify
+        # add reply parent to mentions
         if status.reply_parent:
             status.mention_users.add(status.reply_parent.user)
 
-            if status.reply_parent.user.local:
-                create_notification(
-                    status.reply_parent.user,
-                    'REPLY',
-                    related_user=request.user,
-                    related_status=status
-                )
-
         # deduplicate mentions
         status.mention_users.set(set(status.mention_users.all()))
-        # create mention notifications
-        for mention_user in status.mention_users.all():
-            if status.reply_parent and mention_user == status.reply_parent.user:
-                continue
-            if mention_user.local:
-                create_notification(
-                    mention_user,
-                    'MENTION',
-                    related_user=request.user,
-                    related_status=status
-                )
 
         # don't apply formatting to generated notes
         if not isinstance(status, models.GeneratedNote):

From ca08bfa6f516d023d32f8795fb182ec75502a5cb Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 14:14:33 -0800
Subject: [PATCH 170/280] Remove duplicate notification generation code in
 incoming

---
 bookwyrm/incoming.py | 21 ---------------------
 1 file changed, 21 deletions(-)

diff --git a/bookwyrm/incoming.py b/bookwyrm/incoming.py
index 562225e7..ca53d919 100644
--- a/bookwyrm/incoming.py
+++ b/bookwyrm/incoming.py
@@ -256,27 +256,6 @@ def handle_create_status(activity):
         # it was discarded because it's not a bookwyrm type
         return
 
-    # create a notification if this is a reply
-    notified = []
-    if status.reply_parent and status.reply_parent.user.local:
-        notified.append(status.reply_parent.user)
-        status_builder.create_notification(
-            status.reply_parent.user,
-            'REPLY',
-            related_user=status.user,
-            related_status=status,
-        )
-    if status.mention_users.exists():
-        for mentioned_user in status.mention_users.all():
-            if not mentioned_user.local or mentioned_user in notified:
-                continue
-            status_builder.create_notification(
-                mentioned_user,
-                'MENTION',
-                related_user=status.user,
-                related_status=status,
-            )
-
 
 @app.task
 def handle_delete_status(activity):

From 106d442a0bc88d1faec9841d23193fde339a486b Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 14:18:55 -0800
Subject: [PATCH 171/280] Moves import complete notification to model

---
 bookwyrm/goodreads_import.py  |  2 --
 bookwyrm/models/import_job.py | 14 ++++++++++++++
 2 files changed, 14 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/goodreads_import.py b/bookwyrm/goodreads_import.py
index 3dcdc2f0..1b2b971c 100644
--- a/bookwyrm/goodreads_import.py
+++ b/bookwyrm/goodreads_import.py
@@ -4,7 +4,6 @@ import logging
 
 from bookwyrm import models
 from bookwyrm.models import ImportJob, ImportItem
-from bookwyrm.status import create_notification
 from bookwyrm.tasks import app
 
 logger = logging.getLogger(__name__)
@@ -68,7 +67,6 @@ def import_data(job_id):
                 item.fail_reason = 'Could not find a match for book'
                 item.save()
     finally:
-        create_notification(job.user, 'IMPORT', related_import=job)
         job.complete = True
         job.save()
 
diff --git a/bookwyrm/models/import_job.py b/bookwyrm/models/import_job.py
index b10651b9..af8a35dd 100644
--- a/bookwyrm/models/import_job.py
+++ b/bookwyrm/models/import_job.py
@@ -2,6 +2,7 @@
 import re
 import dateutil.parser
 
+from django.apps import apps
 from django.contrib.postgres.fields import JSONField
 from django.db import models
 from django.utils import timezone
@@ -50,6 +51,19 @@ class ImportJob(models.Model):
     )
     retry = models.BooleanField(default=False)
 
+    def save(self, *args, **kwargs):
+        ''' save and notify '''
+        super().save(*args, **kwargs)
+        if self.complete:
+            notification_model = apps.get_model(
+                'bookwyrm.Notification', require_ready=True)
+            notification_model.objects.create(
+                user=self.user,
+                notification_type='IMPORT',
+                related_import=self,
+            )
+
+
 
 class ImportItem(models.Model):
     ''' a single line of a csv being imported '''

From 74d39c3e24629fb39bcc94907a461bc822f1ff98 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 14:31:39 -0800
Subject: [PATCH 172/280] Move fav notifications to model

---
 bookwyrm/incoming.py          |  7 -------
 bookwyrm/models/favorite.py   | 30 ++++++++++++++++++++++++++++++
 bookwyrm/views/interaction.py | 16 ----------------
 3 files changed, 30 insertions(+), 23 deletions(-)

diff --git a/bookwyrm/incoming.py b/bookwyrm/incoming.py
index ca53d919..09cda8d9 100644
--- a/bookwyrm/incoming.py
+++ b/bookwyrm/incoming.py
@@ -288,13 +288,6 @@ def handle_favorite(activity):
     if fav.user.local:
         return
 
-    status_builder.create_notification(
-        fav.status.user,
-        'FAVORITE',
-        related_user=fav.user,
-        related_status=fav.status,
-    )
-
 
 @app.task
 def handle_unfavorite(activity):
diff --git a/bookwyrm/models/favorite.py b/bookwyrm/models/favorite.py
index 7d630cf5..3a7249f2 100644
--- a/bookwyrm/models/favorite.py
+++ b/bookwyrm/models/favorite.py
@@ -1,4 +1,5 @@
 ''' like/fav/star a status '''
+from django.apps import apps
 from django.db import models
 from django.utils import timezone
 
@@ -22,6 +23,35 @@ class Favorite(ActivityMixin, BookWyrmModel):
         self.user.save(broadcast=False)
         super().save(*args, **kwargs)
 
+        if self.status.user.local and self.status.user != self.user:
+            notification_model = apps.get_model(
+                'bookwyrm.Notification', require_ready=True)
+            if notification_model.objects.filter(
+                    user=self.status.user, related_user=self.user,
+                    related_status=self.status, notification_type='FAVORITE'
+                ).exists():
+                return
+            notification_model.objects.create(
+                user=self.status.user,
+                notification_type='FAVORITE',
+                related_user=self.user,
+                related_status=self.status
+            )
+
+    def delete(self, *args, **kwargs):
+        ''' delete and delete notifications '''
+        # check for notification
+        if self.status.user.local:
+            notification_model = apps.get_model(
+                'bookwyrm.Notification', require_ready=True)
+            notification = notification_model.objects.filter(
+                user=self.status.user, related_user=self.user,
+                related_status=self.status, notification_type='FAVORITE'
+            ).first()
+            if notification:
+                notification.delete()
+        super().delete(*args, **kwargs)
+
     class Meta:
         ''' can't fav things twice '''
         unique_together = ('user', 'status')
diff --git a/bookwyrm/views/interaction.py b/bookwyrm/views/interaction.py
index ebee4719..88813e60 100644
--- a/bookwyrm/views/interaction.py
+++ b/bookwyrm/views/interaction.py
@@ -26,13 +26,6 @@ class Favorite(View):
             # you already fav'ed that
             return HttpResponseBadRequest()
 
-        if status.user.local:
-            create_notification(
-                status.user,
-                'FAVORITE',
-                related_user=request.user,
-                related_status=status
-            )
         return redirect(request.headers.get('Referer', '/'))
 
 
@@ -52,15 +45,6 @@ class Unfavorite(View):
             return HttpResponseNotFound()
 
         favorite.delete()
-
-        # check for notification
-        if status.user.local:
-            notification = models.Notification.objects.filter(
-                user=status.user, related_user=request.user,
-                related_status=status, notification_type='FAVORITE'
-            ).first()
-            if notification:
-                notification.delete()
         return redirect(request.headers.get('Referer', '/'))
 
 

From 6f748a6a2473ce84413616a745aae8d909f9eadc Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 15:18:20 -0800
Subject: [PATCH 173/280] Fixes status notifications

---
 bookwyrm/models/fields.py | 1 +
 bookwyrm/models/status.py | 7 +++++--
 2 files changed, 6 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/models/fields.py b/bookwyrm/models/fields.py
index bc10156b..55de1fab 100644
--- a/bookwyrm/models/fields.py
+++ b/bookwyrm/models/fields.py
@@ -263,6 +263,7 @@ class ManyToManyField(ActivitypubFieldMixin, models.ManyToManyField):
         if formatted is None or formatted is MISSING:
             return
         getattr(instance, self.name).set(formatted)
+        instance.save(broadcast=False)
 
     def field_to_activity(self, value):
         if self.link_only:
diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index 7091fd0b..d2768e28 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -52,13 +52,15 @@ class Status(OrderedCollectionPageMixin, BookWyrmModel):
     serialize_reverse_fields = [('attachments', 'attachment', 'id')]
     deserialize_reverse_fields = [('attachments', 'attachment')]
 
+
     def save(self, *args, **kwargs):
         ''' save and notify '''
         super().save(*args, **kwargs)
 
         notification_model = apps.get_model(
             'bookwyrm.Notification', require_ready=True)
-        if self.reply_parent and self.reply_parent.user.local:
+        if self.reply_parent and self.reply_parent.user != self.user and \
+                self.reply_parent.user.local:
             notification_model.objects.create(
                 user=self.reply_parent.user,
                 notification_type='REPLY',
@@ -68,7 +70,8 @@ class Status(OrderedCollectionPageMixin, BookWyrmModel):
         for mention_user in self.mention_users.all():
             # avoid double-notifying about this status
             if not mention_user.local or notification_model.objects.filter(
-                    related_status=self, related_user=mention_user).exists():
+                    user=mention_user, related_status=self,
+                    related_user=self.user).exists():
                 continue
             notification_model.objects.create(
                 user=mention_user,

From ac57db537564eb6a08e2db8f8b519163bdd83b99 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 16:00:02 -0800
Subject: [PATCH 174/280] Boost notifications

---
 bookwyrm/incoming.py          | 10 +---------
 bookwyrm/models/status.py     | 36 +++++++++++++++++++++++++++++++++++
 bookwyrm/views/interaction.py | 18 ------------------
 3 files changed, 37 insertions(+), 27 deletions(-)

diff --git a/bookwyrm/incoming.py b/bookwyrm/incoming.py
index 09cda8d9..a7ada52e 100644
--- a/bookwyrm/incoming.py
+++ b/bookwyrm/incoming.py
@@ -304,19 +304,11 @@ def handle_unfavorite(activity):
 def handle_boost(activity):
     ''' someone gave us a boost! '''
     try:
-        boost = activitypub.Boost(**activity).to_model(models.Boost)
+        activitypub.Boost(**activity).to_model(models.Boost)
     except activitypub.ActivitySerializerError:
         # this probably just means we tried to boost an unknown status
         return
 
-    if not boost.user.local:
-        status_builder.create_notification(
-            boost.boosted_status.user,
-            'BOOST',
-            related_user=boost.user,
-            related_status=boost.boosted_status,
-        )
-
 
 @app.task
 def handle_unboost(activity):
diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index d2768e28..ce4a18bf 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -59,6 +59,10 @@ class Status(OrderedCollectionPageMixin, BookWyrmModel):
 
         notification_model = apps.get_model(
             'bookwyrm.Notification', require_ready=True)
+
+        if self.deleted:
+            notification_model.objects.filter(related_status=self).delete()
+
         if self.reply_parent and self.reply_parent.user != self.user and \
                 self.reply_parent.user.local:
             notification_model.objects.create(
@@ -264,6 +268,38 @@ class Boost(ActivityMixin, Status):
     )
     activity_serializer = activitypub.Boost
 
+    def save(self, *args, **kwargs):
+        ''' save and notify '''
+        super().save(*args, **kwargs)
+        if not self.boosted_status.user.local:
+            return
+
+        notification_model = apps.get_model(
+            'bookwyrm.Notification', require_ready=True)
+        if notification_model.objects.filter(
+                user=self.boosted_status.user,
+                related_status=self.boosted_status,
+                related_user=self.user, notification_type='BOOST').exists():
+            return
+        notification_model.objects.create(
+            user=self.boosted_status.user,
+            related_status=self.boosted_status,
+            related_user=self.user,
+            notification_type='BOOST',
+        )
+
+    def delete(self, *args, **kwargs):
+        ''' delete and un-notify '''
+        notification_model = apps.get_model(
+            'bookwyrm.Notification', require_ready=True)
+        notification_model.objects.filter(
+            user=self.boosted_status.user,
+            related_status=self.boosted_status,
+            related_user=self.user,
+            notification_type='BOOST',
+        ).delete()
+        super().delete(*args, **kwargs)
+
 
     def __init__(self, *args, **kwargs):
         ''' the user field is "actor" here instead of "attributedTo" '''
diff --git a/bookwyrm/views/interaction.py b/bookwyrm/views/interaction.py
index 88813e60..a7fcc231 100644
--- a/bookwyrm/views/interaction.py
+++ b/bookwyrm/views/interaction.py
@@ -7,7 +7,6 @@ from django.utils.decorators import method_decorator
 from django.views import View
 
 from bookwyrm import models
-from bookwyrm.status import create_notification
 
 
 # pylint: disable= no-self-use
@@ -68,14 +67,6 @@ class Boost(View):
             privacy=status.privacy,
             user=request.user,
         )
-
-        if status.user.local:
-            create_notification(
-                status.user,
-                'BOOST',
-                related_user=request.user,
-                related_status=status
-            )
         return redirect(request.headers.get('Referer', '/'))
 
 
@@ -90,13 +81,4 @@ class Unboost(View):
         ).first()
 
         boost.delete()
-
-        # delete related notification
-        if status.user.local:
-            notification = models.Notification.objects.filter(
-                user=status.user, related_user=request.user,
-                related_status=status, notification_type='BOOST'
-            ).first()
-            if notification:
-                notification.delete()
         return redirect(request.headers.get('Referer', '/'))

From d9e65aa3638c4a78c23c34e93359e4c03e58ce7a Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 16:06:50 -0800
Subject: [PATCH 175/280] Notifications for follow requests

---
 bookwyrm/incoming.py            |  9 +--------
 bookwyrm/models/relationship.py | 12 ++++++++++++
 2 files changed, 13 insertions(+), 8 deletions(-)

diff --git a/bookwyrm/incoming.py b/bookwyrm/incoming.py
index a7ada52e..a88a748e 100644
--- a/bookwyrm/incoming.py
+++ b/bookwyrm/incoming.py
@@ -136,14 +136,7 @@ def handle_follow(activity):
         )
         # send the accept normally for a duplicate request
 
-    manually_approves = relationship.user_object.manually_approves_followers
-
-    status_builder.create_notification(
-        relationship.user_object,
-        'FOLLOW_REQUEST' if manually_approves else 'FOLLOW',
-        related_user=relationship.user_subject
-    )
-    if not manually_approves:
+    if not relationship.user_object.manually_approves_followers:
         relationship.accept()
 
 
diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index 9f3bf07d..ac8f8286 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -1,4 +1,5 @@
 ''' defines relationships between users '''
+from django.apps import apps
 from django.db import models, transaction
 from django.db.models import Q
 from django.dispatch import receiver
@@ -90,9 +91,20 @@ class UserFollowRequest(ActivitypubMixin, UserRelationship):
             return None
         except (UserFollows.DoesNotExist, UserBlocks.DoesNotExist):
             super().save(*args, **kwargs)
+
         if broadcast and self.user_subject.local and not self.user_object.local:
             self.broadcast(self.to_activity(), self.user_subject)
 
+        if self.user_object.local:
+            model = apps.get_model('bookwyrm.Notification', require_ready=True)
+            notification_type = 'FOLLOW_REQUEST' \
+                if self.user_object.manually_approves_followers else 'FOLLOW'
+            model.objects.create(
+                user=self.user_object,
+                related_user=self.user_subject,
+                notification_type=notification_type,
+            )
+
 
     def accept(self):
         ''' turn this request into the real deal'''

From e0cfb009e40ac0927e656e3c3753f26c9d1d7ae6 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 16:21:29 -0800
Subject: [PATCH 176/280] Deduplicate notifications in notification model

---
 bookwyrm/models/favorite.py                |  5 -----
 bookwyrm/models/import_job.py              |  1 -
 bookwyrm/models/notification.py            | 15 +++++++++++++++
 bookwyrm/models/status.py                  |  5 -----
 bookwyrm/tests/views/test_notifications.py |  2 +-
 5 files changed, 16 insertions(+), 12 deletions(-)

diff --git a/bookwyrm/models/favorite.py b/bookwyrm/models/favorite.py
index 3a7249f2..f9019501 100644
--- a/bookwyrm/models/favorite.py
+++ b/bookwyrm/models/favorite.py
@@ -26,11 +26,6 @@ class Favorite(ActivityMixin, BookWyrmModel):
         if self.status.user.local and self.status.user != self.user:
             notification_model = apps.get_model(
                 'bookwyrm.Notification', require_ready=True)
-            if notification_model.objects.filter(
-                    user=self.status.user, related_user=self.user,
-                    related_status=self.status, notification_type='FAVORITE'
-                ).exists():
-                return
             notification_model.objects.create(
                 user=self.status.user,
                 notification_type='FAVORITE',
diff --git a/bookwyrm/models/import_job.py b/bookwyrm/models/import_job.py
index af8a35dd..407d820b 100644
--- a/bookwyrm/models/import_job.py
+++ b/bookwyrm/models/import_job.py
@@ -64,7 +64,6 @@ class ImportJob(models.Model):
             )
 
 
-
 class ImportItem(models.Model):
     ''' a single line of a csv being imported '''
     job = models.ForeignKey(
diff --git a/bookwyrm/models/notification.py b/bookwyrm/models/notification.py
index b4c91f61..0470b325 100644
--- a/bookwyrm/models/notification.py
+++ b/bookwyrm/models/notification.py
@@ -25,6 +25,21 @@ class Notification(BookWyrmModel):
     notification_type = models.CharField(
         max_length=255, choices=NotificationType.choices)
 
+    def save(self, *args, **kwargs):
+        ''' save, but don't make dupes '''
+        # there's probably a better way to do this
+        if self.__class__.objects.filter(
+                user=self.user,
+                related_book=self.related_book,
+                related_user=self.related_user,
+                related_status=self.related_status,
+                related_import=self.related_import,
+                related_list_item=self.related_list_item,
+                notification_type=self.notification_type,
+            ).exists():
+            return
+        super().save(*args, **kwargs)
+
     class Meta:
         ''' checks if notifcation is in enum list for valid types '''
         constraints = [
diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index ce4a18bf..bda4d3e8 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -276,11 +276,6 @@ class Boost(ActivityMixin, Status):
 
         notification_model = apps.get_model(
             'bookwyrm.Notification', require_ready=True)
-        if notification_model.objects.filter(
-                user=self.boosted_status.user,
-                related_status=self.boosted_status,
-                related_user=self.user, notification_type='BOOST').exists():
-            return
         notification_model.objects.create(
             user=self.boosted_status.user,
             related_status=self.boosted_status,
diff --git a/bookwyrm/tests/views/test_notifications.py b/bookwyrm/tests/views/test_notifications.py
index 24fbde1e..55513359 100644
--- a/bookwyrm/tests/views/test_notifications.py
+++ b/bookwyrm/tests/views/test_notifications.py
@@ -30,7 +30,7 @@ class NotificationViews(TestCase):
     def test_clear_notifications(self):
         ''' erase notifications '''
         models.Notification.objects.create(
-            user=self.local_user, notification_type='MENTION')
+            user=self.local_user, notification_type='FAVORITE')
         models.Notification.objects.create(
             user=self.local_user, notification_type='MENTION', read=True)
         self.assertEqual(models.Notification.objects.count(), 2)

From e6b9985f958e2c79750a981154b47e2c664c71a5 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 16:23:49 -0800
Subject: [PATCH 177/280] Don't need a helper function for creating
 notifications anymore

---
 bookwyrm/status.py | 16 ----------------
 1 file changed, 16 deletions(-)

diff --git a/bookwyrm/status.py b/bookwyrm/status.py
index 648f2e7d..9eec1fa2 100644
--- a/bookwyrm/status.py
+++ b/bookwyrm/status.py
@@ -30,19 +30,3 @@ def create_generated_note(user, content, mention_books=None, privacy='public'):
             status.mention_books.add(book)
 
     return status
-
-
-def create_notification(user, notification_type, related_user=None, \
-        related_book=None, related_status=None, related_import=None):
-    ''' let a user know when someone interacts with their content '''
-    if user == related_user:
-        # don't create notification when you interact with your own stuff
-        return
-    models.Notification.objects.create(
-        user=user,
-        related_book=related_book,
-        related_user=related_user,
-        related_status=related_status,
-        related_import=related_import,
-        notification_type=notification_type,
-    )

From b774e946f3c4a1f4720c642b87049dd0ccda95eb Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 16:28:50 -0800
Subject: [PATCH 178/280] fixes avoiding mention and reply notification

---
 bookwyrm/models/status.py | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index bda4d3e8..62effeb8 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -73,9 +73,9 @@ class Status(OrderedCollectionPageMixin, BookWyrmModel):
             )
         for mention_user in self.mention_users.all():
             # avoid double-notifying about this status
-            if not mention_user.local or notification_model.objects.filter(
-                    user=mention_user, related_status=self,
-                    related_user=self.user).exists():
+            if not mention_user.local or \
+                    (self.reply_parent and \
+                     mention_user == self.reply_parent.user):
                 continue
             notification_model.objects.create(
                 user=mention_user,

From 848454c50fab213cab4837dbc0c23ccfd680e0a2 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 16:31:41 -0800
Subject: [PATCH 179/280] Fixes templatetag test

---
 bookwyrm/tests/test_templatetags.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/tests/test_templatetags.py b/bookwyrm/tests/test_templatetags.py
index 267587c2..45c99344 100644
--- a/bookwyrm/tests/test_templatetags.py
+++ b/bookwyrm/tests/test_templatetags.py
@@ -65,9 +65,9 @@ class TemplateTags(TestCase):
         self.assertEqual(bookwyrm_tags.get_notification_count(self.user), 0)
 
         models.Notification.objects.create(
-            user=self.user, notification_type='FOLLOW')
+            user=self.user, notification_type='FAVORITE')
         models.Notification.objects.create(
-            user=self.user, notification_type='FOLLOW')
+            user=self.user, notification_type='MENTION')
 
         models.Notification.objects.create(
             user=self.remote_user, notification_type='FOLLOW')

From 11504e9cefceb39fc7a266c68a7c09fff08d1a5d Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 16:45:53 -0800
Subject: [PATCH 180/280] Makes covers clickable in places they aren't

Fixes #598
---
 bookwyrm/templates/lists/list.html       | 2 +-
 bookwyrm/templates/lists/list_items.html | 2 +-
 bookwyrm/templates/snippets/shelf.html   | 4 ++--
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index 4bd71284..5f9baa03 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -21,7 +21,7 @@
                 <div class="card">
                     <div class="card-content columns p-0 mb-0">
                         <div class="column is-narrow pt-0 pb-0">
-                            <a href="{{ book.local_path }}">{% include 'snippets/book_cover.html' with book=item.book size="medium" %}</a>
+                            <a href="{{ item.book.local_path }}">{% include 'snippets/book_cover.html' with book=item.book size="medium" %}</a>
                         </div>
                         <div class="column is-flex-direction-column is-align-items-self-start">
                             <span>{% include 'snippets/book_titleby.html' with book=item.book %}</span>
diff --git a/bookwyrm/templates/lists/list_items.html b/bookwyrm/templates/lists/list_items.html
index 942579ca..87b195ed 100644
--- a/bookwyrm/templates/lists/list_items.html
+++ b/bookwyrm/templates/lists/list_items.html
@@ -10,7 +10,7 @@
             </header>
             <div class="card-image is-flex">
                 {% for book in list.listitem_set.all|slice:5 %}
-                {% include 'snippets/book_cover.html' with book=book.book size="small" %}
+                <a href="{{ book.book.local_path }}">{% include 'snippets/book_cover.html' with book=book.book size="small" %}</a>
                 {% endfor %}
             </div>
             <div class="card-content is-flex-grow-0">
diff --git a/bookwyrm/templates/snippets/shelf.html b/bookwyrm/templates/snippets/shelf.html
index d5cdd003..006bb4ea 100644
--- a/bookwyrm/templates/snippets/shelf.html
+++ b/bookwyrm/templates/snippets/shelf.html
@@ -37,10 +37,10 @@
 {% for book in books %}
 <tr class="book-preview">
     <td>
-        {% include 'snippets/book_cover.html' with book=book size="small" %}
+        <a href="{{ book.local_path }}">{% include 'snippets/book_cover.html' with book=book size="small" %}</a>
     </td>
     <td>
-        <a href="/book/{{ book.id }}">{{ book.title }}</a>
+        <a href="{{ book.local_path }}">{{ book.title }}</a>
     </td>
     <td>
         {{ book.authors.first.name }}

From 4c2ec43fcec920e28c7e44c5194e06daf485391a Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 16:53:51 -0800
Subject: [PATCH 181/280] Don't set default edition if it's already set

---
 bookwyrm/connectors/abstract_connector.py | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/connectors/abstract_connector.py b/bookwyrm/connectors/abstract_connector.py
index f822fc5d..2cbcda47 100644
--- a/bookwyrm/connectors/abstract_connector.py
+++ b/bookwyrm/connectors/abstract_connector.py
@@ -145,8 +145,9 @@ class AbstractConnector(AbstractMinimalConnector):
         edition.connector = self.connector
         edition.save()
 
-        work.default_edition = edition
-        work.save()
+        if not work.default_edition:
+            work.default_edition = edition
+            work.save()
 
         for author in self.get_authors_from_data(edition_data):
             edition.authors.add(author)

From 3aa7f8afe03362997451b0c056d807f4a7aaa96c Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 17:30:26 -0800
Subject: [PATCH 182/280] Safer migration runpython function

---
 bookwyrm/migrations/0044_auto_20210207_1924.py | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/bookwyrm/migrations/0044_auto_20210207_1924.py b/bookwyrm/migrations/0044_auto_20210207_1924.py
index 84b17055..7289c73d 100644
--- a/bookwyrm/migrations/0044_auto_20210207_1924.py
+++ b/bookwyrm/migrations/0044_auto_20210207_1924.py
@@ -10,7 +10,10 @@ def set_user(app_registry, schema_editor):
     shelfbook = app_registry.get_model('bookwyrm', 'ShelfBook')
     for item in shelfbook.objects.using(db_alias).filter(user__isnull=True):
         item.user = item.shelf.user
-        item.save(broadcast=False)
+        try:
+            item.save(broadcast=False)
+        except TypeError:
+            item.save()
 
 
 class Migration(migrations.Migration):

From 41cef9bdfd5540185cbb00ad9e9cee0402bd30b6 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 17:54:49 -0800
Subject: [PATCH 183/280] Catch expand book data load error

---
 bookwyrm/connectors/abstract_connector.py | 3 ++-
 bookwyrm/connectors/openlibrary.py        | 7 ++++++-
 2 files changed, 8 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/connectors/abstract_connector.py b/bookwyrm/connectors/abstract_connector.py
index 2cbcda47..527d2f42 100644
--- a/bookwyrm/connectors/abstract_connector.py
+++ b/bookwyrm/connectors/abstract_connector.py
@@ -239,7 +239,8 @@ def get_image(url):
                 'User-Agent': settings.USER_AGENT,
             },
         )
-    except (RequestError, SSLError):
+    except (RequestError, SSLError) as e:
+        logger.exception(e)
         return None
     if not resp.ok:
         return None
diff --git a/bookwyrm/connectors/openlibrary.py b/bookwyrm/connectors/openlibrary.py
index cd196d27..a767a45a 100644
--- a/bookwyrm/connectors/openlibrary.py
+++ b/bookwyrm/connectors/openlibrary.py
@@ -142,7 +142,12 @@ class Connector(AbstractConnector):
             work = book.parent_work
 
         # we can mass download edition data from OL to avoid repeatedly querying
-        edition_options = self.load_edition_data(work.openlibrary_key)
+        try:
+            edition_options = self.load_edition_data(work.openlibrary_key)
+        except ConnectorException:
+            # who knows, man
+            return
+
         for edition_data in edition_options.get('entries'):
             # does this edition have ANY interesting data?
             if ignore_edition(edition_data):

From 2a069adc8aa37770e14ca510137408059474efa3 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 18:00:56 -0800
Subject: [PATCH 184/280] Fixes updating lists

---
 bookwyrm/incoming.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/incoming.py b/bookwyrm/incoming.py
index a88a748e..16742ebf 100644
--- a/bookwyrm/incoming.py
+++ b/bookwyrm/incoming.py
@@ -216,7 +216,7 @@ def handle_create_list(activity):
 def handle_update_list(activity):
     ''' update a list '''
     try:
-        book_list = models.List.objects.get(id=activity['object']['id'])
+        book_list = models.List.objects.get(remote_id=activity['object']['id'])
     except models.List.DoesNotExist:
         return
     activitypub.BookList(

From b898f263b704e0947e55b976656068d0a7dafd57 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 18:01:11 -0800
Subject: [PATCH 185/280] Another test case for the user view

---
 bookwyrm/tests/views/test_user.py | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/bookwyrm/tests/views/test_user.py b/bookwyrm/tests/views/test_user.py
index ea59f042..b349b119 100644
--- a/bookwyrm/tests/views/test_user.py
+++ b/bookwyrm/tests/views/test_user.py
@@ -3,6 +3,7 @@ import pathlib
 from unittest.mock import patch
 from PIL import Image
 
+from django.contrib.auth.models import AnonymousUser
 from django.core.files.base import ContentFile
 from django.template.response import TemplateResponse
 from django.test import TestCase
@@ -24,6 +25,8 @@ class UserViews(TestCase):
             'rat@local.com', 'rat@rat.rat', 'password',
             local=True, localname='rat')
         models.SiteSettings.objects.create()
+        self.anonymous_user = AnonymousUser
+        self.anonymous_user.is_authenticated = False
 
 
     def test_user_page(self):
@@ -38,6 +41,14 @@ class UserViews(TestCase):
         result.render()
         self.assertEqual(result.status_code, 200)
 
+        request.user = self.anonymous_user
+        with patch('bookwyrm.views.user.is_api_request') as is_api:
+            is_api.return_value = False
+            result = view(request, 'mouse')
+        self.assertIsInstance(result, TemplateResponse)
+        result.render()
+        self.assertEqual(result.status_code, 200)
+
         with patch('bookwyrm.views.user.is_api_request') as is_api:
             is_api.return_value = True
             result = view(request, 'mouse')

From 2a65aa7cc795f34123fa4672ad701216a82469eb Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 18:24:09 -0800
Subject: [PATCH 186/280] More tests

---
 bookwyrm/incoming.py            |  2 +-
 bookwyrm/tests/test_incoming.py | 27 +++++++++++++++++++++++++--
 2 files changed, 26 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/incoming.py b/bookwyrm/incoming.py
index 16742ebf..da345cb8 100644
--- a/bookwyrm/incoming.py
+++ b/bookwyrm/incoming.py
@@ -218,7 +218,7 @@ def handle_update_list(activity):
     try:
         book_list = models.List.objects.get(remote_id=activity['object']['id'])
     except models.List.DoesNotExist:
-        return
+        book_list = None
     activitypub.BookList(
         **activity['object']).to_model(models.List, instance=book_list)
 
diff --git a/bookwyrm/tests/test_incoming.py b/bookwyrm/tests/test_incoming.py
index d84fbd8d..01d0c9a3 100644
--- a/bookwyrm/tests/test_incoming.py
+++ b/bookwyrm/tests/test_incoming.py
@@ -308,7 +308,7 @@ class Incoming(TestCase):
                 "@context": "https://www.w3.org/ns/activitystreams"
             }
         }
-        incoming.handle_create_list(activity)
+        incoming.handle_update_list(activity)
         book_list.refresh_from_db()
         self.assertEqual(book_list.name, 'Test List')
         self.assertEqual(book_list.curation, 'curated')
@@ -626,7 +626,7 @@ class Incoming(TestCase):
 
         activity = {
             "@context": "https://www.w3.org/ns/activitystreams",
-            "id": "https://example.com/9e1f41ac-9ddd-4159-aede-9f43c6b9314f",
+            "id": "https://example.com/9e1f41ac-9ddd-4159",
             "type": "Block",
             "actor": "https://example.com/users/rat",
             "object": "https://example.com/user/mouse"
@@ -636,6 +636,29 @@ class Incoming(TestCase):
         block = models.UserBlocks.objects.get()
         self.assertEqual(block.user_subject, self.remote_user)
         self.assertEqual(block.user_object, self.local_user)
+        self.assertEqual(
+            block.remote_id, 'https://example.com/9e1f41ac-9ddd-4159')
 
         self.assertFalse(models.UserFollows.objects.exists())
         self.assertFalse(models.UserFollowRequest.objects.exists())
+
+
+    def test_handle_unblock(self):
+        ''' unblock a user '''
+        self.remote_user.blocks.add(self.local_user)
+
+        block = models.UserBlocks.objects.get()
+        block.remote_id = 'https://example.com/9e1f41ac-9ddd-4159'
+        block.save()
+
+        self.assertEqual(block.user_subject, self.remote_user)
+        self.assertEqual(block.user_object, self.local_user)
+        activity = {'type': 'Undo', 'object': {
+            "@context": "https://www.w3.org/ns/activitystreams",
+            "id": "https://example.com/9e1f41ac-9ddd-4159",
+            "type": "Block",
+            "actor": "https://example.com/users/rat",
+            "object": "https://example.com/user/mouse"
+        }}
+        incoming.handle_unblock(activity)
+        self.assertFalse(models.UserBlocks.objects.exists())

From 5f7466e92d13d2fd48b799df8187eebc2daf45d8 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 10 Feb 2021 19:17:01 -0800
Subject: [PATCH 187/280] Fixes bugs in how lists/shelves federate Adds

---
 bookwyrm/activitypub/__init__.py      |  2 +-
 bookwyrm/activitypub/base_activity.py |  7 +++++++
 bookwyrm/activitypub/verbs.py         | 15 ++++++++++++---
 bookwyrm/incoming.py                  | 13 ++++++++++++-
 bookwyrm/models/list.py               |  2 +-
 5 files changed, 33 insertions(+), 6 deletions(-)

diff --git a/bookwyrm/activitypub/__init__.py b/bookwyrm/activitypub/__init__.py
index 201e8042..510f1f3f 100644
--- a/bookwyrm/activitypub/__init__.py
+++ b/bookwyrm/activitypub/__init__.py
@@ -16,7 +16,7 @@ from .response import ActivitypubResponse
 from .book import Edition, Work, Author
 from .verbs import Create, Delete, Undo, Update
 from .verbs import Follow, Accept, Reject, Block
-from .verbs import Add, AddBook, Remove
+from .verbs import Add, AddBook, AddListItem, Remove
 
 # this creates a list of all the Activity types that we can serialize,
 # so when an Activity comes in from outside, we can check if it's known
diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index 4bbb5e9f..5f35f1d7 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -65,6 +65,13 @@ class ActivityObject:
 
     def to_model(self, model, instance=None, save=True):
         ''' convert from an activity to a model instance '''
+        if self.type != model.activity_serializer.type:
+            raise ActivitySerializerError(
+                'Wrong activity type "%s" for activity of type "%s"' % \
+                        (model.activity_serializer.type,
+                         self.type)
+            )
+
         if not isinstance(self, model.activity_serializer):
             raise ActivitySerializerError(
                 'Wrong activity type "%s" for model "%s" (expects "%s")' % \
diff --git a/bookwyrm/activitypub/verbs.py b/bookwyrm/activitypub/verbs.py
index 5502ced0..190cd739 100644
--- a/bookwyrm/activitypub/verbs.py
+++ b/bookwyrm/activitypub/verbs.py
@@ -70,17 +70,26 @@ class Reject(Verb):
 @dataclass(init=False)
 class Add(Verb):
     '''Add activity '''
-    target: ActivityObject
+    target: str
+    object: ActivityObject
     type: str = 'Add'
 
 
 @dataclass(init=False)
-class AddBook(Verb):
+class AddBook(Add):
     '''Add activity that's aware of the book obj '''
-    target: Edition
+    object: Edition
     type: str = 'Add'
 
 
+@dataclass(init=False)
+class AddListItem(AddBook):
+    '''Add activity that's aware of the book obj '''
+    notes: str = None
+    order: int = 0
+    approved: bool = True
+
+
 @dataclass(init=False)
 class Remove(Verb):
     '''Remove activity '''
diff --git a/bookwyrm/incoming.py b/bookwyrm/incoming.py
index a88a748e..202bf806 100644
--- a/bookwyrm/incoming.py
+++ b/bookwyrm/incoming.py
@@ -319,8 +319,19 @@ def handle_add(activity):
     #this is janky as heck but I haven't thought of a better solution
     try:
         activitypub.AddBook(**activity).to_model(models.ShelfBook)
+        return
     except activitypub.ActivitySerializerError:
-        activitypub.AddBook(**activity).to_model(models.Tag)
+        pass
+    try:
+        activitypub.AddListItem(**activity).to_model(models.ListItem)
+        return
+    except activitypub.ActivitySerializerError:
+        pass
+    try:
+        activitypub.AddBook(**activity).to_model(models.UserTag)
+        return
+    except activitypub.ActivitySerializerError:
+        pass
 
 
 @app.task
diff --git a/bookwyrm/models/list.py b/bookwyrm/models/list.py
index db8c1af6..ef48ed95 100644
--- a/bookwyrm/models/list.py
+++ b/bookwyrm/models/list.py
@@ -68,7 +68,7 @@ class ListItem(CollectionItemMixin, BookWyrmModel):
     order = fields.IntegerField(blank=True, null=True)
     endorsement = models.ManyToManyField('User', related_name='endorsers')
 
-    activity_serializer = activitypub.AddBook
+    activity_serializer = activitypub.AddListItem
     object_field = 'book'
     collection_field = 'book_list'
 

From 89c0ecdca9545a4c8ffcefbb792d0b37ac5a291d Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Thu, 11 Feb 2021 08:24:20 -0800
Subject: [PATCH 188/280] comma in number

---
 bookwyrm/templates/snippets/goal_progress.html | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/bookwyrm/templates/snippets/goal_progress.html b/bookwyrm/templates/snippets/goal_progress.html
index 997fbfbd..43f27f4e 100644
--- a/bookwyrm/templates/snippets/goal_progress.html
+++ b/bookwyrm/templates/snippets/goal_progress.html
@@ -1,10 +1,11 @@
+{% load humanize %}
 <p>
     {% if goal.progress_percent >= 100 %}
         Success!
     {% elif goal.progress_percent %}
         {{ goal.progress_percent }}% complete!
     {% endif %}
-    {% if goal.user == request.user %}You've{% else %}{{ goal.user.display_name }} has{% endif %} read {% if request.path != goal.local_path %}<a href="{{ goal.local_path }}">{% endif %}{{ goal.book_count }} of {{ goal.goal }} books{% if request.path != goal.local_path %}</a>{% endif %}.
+    {% if goal.user == request.user %}You've{% else %}{{ goal.user.display_name }} has{% endif %} read {% if request.path != goal.local_path %}<a href="{{ goal.local_path }}">{% endif %}{{ goal.book_count }} of {{ goal.goal | intcomma }} books{% if request.path != goal.local_path %}</a>{% endif %}.
 </p>
 <progress class="progress is-large" value="{{ goal.book_count }}" max="{{ goal.goal }}" aria-hidden="true">{{ goal.progress_percent }}%</progress>
 

From 18a86cbe2ab5fd81e6f52a5e0165e3d6ee715526 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Thu, 11 Feb 2021 08:38:45 -0800
Subject: [PATCH 189/280] More edit user tests

---
 bookwyrm/tests/views/test_user.py | 26 ++++++++++++++++++++++++--
 1 file changed, 24 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/tests/views/test_user.py b/bookwyrm/tests/views/test_user.py
index b349b119..710ba1c9 100644
--- a/bookwyrm/tests/views/test_user.py
+++ b/bookwyrm/tests/views/test_user.py
@@ -130,7 +130,7 @@ class UserViews(TestCase):
         self.assertEqual(result.status_code, 404)
 
 
-    def test_edit_profile_page(self):
+    def test_edit_user_page(self):
         ''' there are so many views, this just makes sure it LOADS '''
         view = views.EditUser.as_view()
         request = self.factory.get('')
@@ -149,11 +149,33 @@ class UserViews(TestCase):
         request = self.factory.post('', form.data)
         request.user = self.local_user
 
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay') \
+                as delay_mock:
             view(request)
+            self.assertEqual(delay_mock.call_count, 1)
         self.assertEqual(self.local_user.name, 'New Name')
 
 
+    def test_edit_user_avatar(self):
+        ''' use a form to update a user '''
+        view = views.EditUser.as_view()
+        form = forms.EditUserForm(instance=self.local_user)
+        form.data['name'] = 'New Name'
+        image_file = pathlib.Path(__file__).parent.joinpath(
+            '../../static/images/no_cover.jpg')
+        form.files['avatar'] = image_file
+        request = self.factory.post('', form.data)
+        request.user = self.local_user
+
+        self.assertNone(self.local_user.avatar)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay') \
+                as delay_mock:
+            view(request)
+            self.assertEqual(delay_mock.call_count, 1)
+        self.assertEqual(self.local_user.name, 'New Name')
+        self.assertNotNone(self.local_user.avatar)
+
+
     def test_crop_avatar(self):
         ''' reduce that image size '''
         image_file = pathlib.Path(__file__).parent.joinpath(

From 927cb15abd15cbadaa8844a588b333ec93fc7c03 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Thu, 11 Feb 2021 12:42:54 -0800
Subject: [PATCH 190/280] fixes edit user test

---
 bookwyrm/tests/views/test_user.py | 43 +++++++++++++++++++------------
 1 file changed, 26 insertions(+), 17 deletions(-)

diff --git a/bookwyrm/tests/views/test_user.py b/bookwyrm/tests/views/test_user.py
index 710ba1c9..f08c17e7 100644
--- a/bookwyrm/tests/views/test_user.py
+++ b/bookwyrm/tests/views/test_user.py
@@ -5,6 +5,7 @@ from PIL import Image
 
 from django.contrib.auth.models import AnonymousUser
 from django.core.files.base import ContentFile
+from django.core.files.uploadedfile import SimpleUploadedFile
 from django.template.response import TemplateResponse
 from django.test import TestCase
 from django.test.client import RequestFactory
@@ -146,34 +147,42 @@ class UserViews(TestCase):
         view = views.EditUser.as_view()
         form = forms.EditUserForm(instance=self.local_user)
         form.data['name'] = 'New Name'
+        form.data['email'] = 'wow@email.com'
         request = self.factory.post('', form.data)
         request.user = self.local_user
 
+        self.assertIsNone(self.local_user.name)
         with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay') \
                 as delay_mock:
             view(request)
             self.assertEqual(delay_mock.call_count, 1)
         self.assertEqual(self.local_user.name, 'New Name')
+        self.assertEqual(self.local_user.email, 'wow@email.com')
 
 
-    def test_edit_user_avatar(self):
-        ''' use a form to update a user '''
-        view = views.EditUser.as_view()
-        form = forms.EditUserForm(instance=self.local_user)
-        form.data['name'] = 'New Name'
-        image_file = pathlib.Path(__file__).parent.joinpath(
-            '../../static/images/no_cover.jpg')
-        form.files['avatar'] = image_file
-        request = self.factory.post('', form.data)
-        request.user = self.local_user
+# idk how to mock the upload form, got tired of triyng to make it work
+#     def test_edit_user_avatar(self):
+#         ''' use a form to update a user '''
+#         view = views.EditUser.as_view()
+#         form = forms.EditUserForm(instance=self.local_user)
+#         form.data['name'] = 'New Name'
+#         form.data['email'] = 'wow@email.com'
+#         image_file = pathlib.Path(__file__).parent.joinpath(
+#             '../../static/images/no_cover.jpg')
+#         image = Image.open(image_file)
+#         form.files['avatar'] = SimpleUploadedFile(
+#             image_file, open(image_file), content_type='image/jpeg')
+#         request = self.factory.post('', form.data, form.files)
+#         request.user = self.local_user
 
-        self.assertNone(self.local_user.avatar)
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay') \
-                as delay_mock:
-            view(request)
-            self.assertEqual(delay_mock.call_count, 1)
-        self.assertEqual(self.local_user.name, 'New Name')
-        self.assertNotNone(self.local_user.avatar)
+#         with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay') \
+#                 as delay_mock:
+#             view(request)
+#             self.assertEqual(delay_mock.call_count, 1)
+#         self.assertEqual(self.local_user.name, 'New Name')
+#         self.assertEqual(self.local_user.email, 'wow@email.com')
+#         self.assertIsNotNone(self.local_user.avatar)
+#         self.assertEqual(self.local_user.avatar.size, (120, 120))
 
 
     def test_crop_avatar(self):

From 403cc712c5f7faaa8793b8eb487aa14e470e1106 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 12 Feb 2021 09:55:25 -0800
Subject: [PATCH 191/280] Fixes review pluralization

---
 bookwyrm/templates/book.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/templates/book.html b/bookwyrm/templates/book.html
index 1d8b5d35..c174116e 100644
--- a/bookwyrm/templates/book.html
+++ b/bookwyrm/templates/book.html
@@ -103,7 +103,7 @@
 
         <div class="column">
             <div class="block">
-                <h3 class="field is-grouped">{% include 'snippets/stars.html' with rating=rating %} ({{ review_count }} review{{ reviews|length|pluralize }})</h3>
+                <h3 class="field is-grouped">{% include 'snippets/stars.html' with rating=rating %} ({{ review_count }} review{{ review_count|pluralize }})</h3>
 
                 {% include 'snippets/trimmed_text.html' with full=book|book_description %}
 

From 03dddaa06470fbded51398ebeb8be3ad0524c2bb Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 12 Feb 2021 09:58:57 -0800
Subject: [PATCH 192/280] Fixes list display

---
 bookwyrm/templates/lists/list_items.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/templates/lists/list_items.html b/bookwyrm/templates/lists/list_items.html
index 87b195ed..a487bbd6 100644
--- a/bookwyrm/templates/lists/list_items.html
+++ b/bookwyrm/templates/lists/list_items.html
@@ -8,7 +8,7 @@
                     <a href="{{ list.local_path }}">{{ list.name }}</a> <span class="subtitle">{% include 'snippets/privacy-icons.html' with item=list %}</span>
                 </h4>
             </header>
-            <div class="card-image is-flex">
+            <div class="card-image is-flex is-clipped">
                 {% for book in list.listitem_set.all|slice:5 %}
                 <a href="{{ book.book.local_path }}">{% include 'snippets/book_cover.html' with book=book.book size="small" %}</a>
                 {% endfor %}

From 2297fe133d1907092f1ea59670a92acdc702e032 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 12 Feb 2021 11:52:05 -0800
Subject: [PATCH 193/280] Uses template for generating goal status

---
 bookwyrm/templates/snippets/generated_status/goal.html | 1 +
 bookwyrm/views/goal.py                                 | 4 +++-
 2 files changed, 4 insertions(+), 1 deletion(-)
 create mode 100644 bookwyrm/templates/snippets/generated_status/goal.html

diff --git a/bookwyrm/templates/snippets/generated_status/goal.html b/bookwyrm/templates/snippets/generated_status/goal.html
new file mode 100644
index 00000000..3b4d0de4
--- /dev/null
+++ b/bookwyrm/templates/snippets/generated_status/goal.html
@@ -0,0 +1 @@
+{% load humanize %}set a goal to read {{ goal.goal | intcomma }} book{{ goal.goal | pluralize }} in {{ goal.year }}
diff --git a/bookwyrm/views/goal.py b/bookwyrm/views/goal.py
index 87404b10..4f2d1b6f 100644
--- a/bookwyrm/views/goal.py
+++ b/bookwyrm/views/goal.py
@@ -2,6 +2,7 @@
 from django.contrib.auth.decorators import login_required
 from django.http import HttpResponseNotFound
 from django.shortcuts import redirect
+from django.template.loader import get_template
 from django.template.response import TemplateResponse
 from django.utils.decorators import method_decorator
 from django.views import View
@@ -62,9 +63,10 @@ class Goal(View):
 
         if request.POST.get('post-status'):
             # create status, if appropraite
+            template = get_template('snippets/generated_status/goal.html')
             create_generated_note(
                 request.user,
-                'set a goal to read %d books in %d' % (goal.goal, goal.year),
+                template.render({'goal': goal, 'user': request.user}).strip(),
                 privacy=goal.privacy
             )
 

From 5ca1e0a8271248906b62ff100db64279d41ca646 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 12 Feb 2021 15:31:12 -0800
Subject: [PATCH 194/280] Update README.md

Fixes #620
---
 README.md | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/README.md b/README.md
index f07d9cef..dcc34b49 100644
--- a/README.md
+++ b/README.md
@@ -17,7 +17,7 @@ Social reading and reviewing, decentralized with ActivityPub
 ## Joining BookWyrm
 BookWyrm is still a young piece of software, and isn't at the level of stability and feature-richness that you'd find in a production-ready application. But it does what it says on the box! If you'd like to join an instance, you can check out the [instances](https://github.com/mouse-reeve/bookwyrm/blob/main/instances.md) list.
 
-I, the maintianer of this project, run https://bookwyrm.social, and I generally give out invite codes to those who ask by [email](mailto:mousereeve@riseup.net), [Mastodon direct message](https://friend.camp/@tripofmice), or [Twitter direct message](https://twitter.com/tripofmice).
+You can request an invite to https://bookwyrm.social by [email](mailto:mousereeve@riseup.net), [Mastodon direct message](https://friend.camp/@tripofmice), or [Twitter direct message](https://twitter.com/tripofmice).
 
 ## The overall idea
 ### What it is and isn't
@@ -116,7 +116,6 @@ This project is still young and isn't, at the momoment, very stable, so please p
     ```python
     from bookwyrm import models
     user = models.User.objects.get(id=1)
-    user.is_admin = True
     user.is_staff = True
     user.is_superuser = True
     user.save()

From 363609e7be1bdcaabc4cb9e9c21829835b3b6a16 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 12 Feb 2021 16:16:22 -0800
Subject: [PATCH 195/280] Fixes follows

Yikes
---
 bookwyrm/tests/views/test_follow.py | 45 ++++++++++++++++++++++++++++-
 bookwyrm/views/follow.py            |  5 +++-
 2 files changed, 48 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/tests/views/test_follow.py b/bookwyrm/tests/views/test_follow.py
index e6c7e46f..943ffcf8 100644
--- a/bookwyrm/tests/views/test_follow.py
+++ b/bookwyrm/tests/views/test_follow.py
@@ -40,7 +40,7 @@ class BookViews(TestCase):
             parent_work=self.work
         )
 
-    def test_handle_follow(self):
+    def test_handle_follow_remote(self):
         ''' send a follow request '''
         request = self.factory.post('', {'user': self.remote_user.username})
         request.user = self.local_user
@@ -56,6 +56,49 @@ class BookViews(TestCase):
         self.assertEqual(rel.status, 'follow_request')
 
 
+    def test_handle_follow_local_manually_approves(self):
+        ''' send a follow request '''
+        rat = models.User.objects.create_user(
+            'rat@local.com', 'rat@rat.com', 'ratword',
+            local=True, localname='rat',
+            remote_id='https://example.com/users/rat',
+            manually_approves_followers=True,
+        )
+        request = self.factory.post('', {'user': rat})
+        request.user = self.local_user
+        self.assertEqual(models.UserFollowRequest.objects.count(), 0)
+
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            views.follow(request)
+        rel = models.UserFollowRequest.objects.get()
+
+        self.assertEqual(rel.user_subject, self.local_user)
+        self.assertEqual(rel.user_object, rat)
+        self.assertEqual(rel.status, 'follow_request')
+
+
+
+    def test_handle_follow_local(self):
+        ''' send a follow request '''
+        rat = models.User.objects.create_user(
+            'rat@local.com', 'rat@rat.com', 'ratword',
+            local=True, localname='rat',
+            remote_id='https://example.com/users/rat',
+        )
+        request = self.factory.post('', {'user': rat})
+        request.user = self.local_user
+        self.assertEqual(models.UserFollowRequest.objects.count(), 0)
+
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            views.follow(request)
+
+        rel = models.UserFollows.objects.get()
+
+        self.assertEqual(rel.user_subject, self.local_user)
+        self.assertEqual(rel.user_object, rat)
+        self.assertEqual(rel.status, 'follows')
+
+
     def test_handle_unfollow(self):
         ''' send an unfollow '''
         request = self.factory.post('', {'user': self.remote_user.username})
diff --git a/bookwyrm/views/follow.py b/bookwyrm/views/follow.py
index f5b2ddd5..c59f2e6d 100644
--- a/bookwyrm/views/follow.py
+++ b/bookwyrm/views/follow.py
@@ -17,10 +17,13 @@ def follow(request):
     except models.User.DoesNotExist:
         return HttpResponseBadRequest()
 
-    models.UserFollowRequest.objects.get_or_create(
+    rel, _ = models.UserFollowRequest.objects.get_or_create(
         user_subject=request.user,
         user_object=to_follow,
     )
+
+    if to_follow.local and not to_follow.manually_approves_followers:
+        rel.accept()
     return redirect(to_follow.local_path)
 
 

From ed351e109cbffb4e6f81858203a95c6e49bf3188 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 12 Feb 2021 17:29:05 -0800
Subject: [PATCH 196/280] Update README.md

---
 README.md | 47 +++++++++++++++++++++++++++++++++++++----------
 1 file changed, 37 insertions(+), 10 deletions(-)

diff --git a/README.md b/README.md
index dcc34b49..6a624ab3 100644
--- a/README.md
+++ b/README.md
@@ -4,22 +4,36 @@ Social reading and reviewing, decentralized with ActivityPub
 
 ## Contents
 - [Joining BookWyrm](#joining-bookwyrm)
-- [The overall idea](#the-overall-idea)
+- [Contributing](#contributing)
+- [About BookWyrm](#about-bookwyrm)
    - [What it is and isn't](#what-it-is-and-isnt)
    - [The role of federation](#the-role-of-federation)
    - [Features](#features)
  - [Setting up the developer environment](#setting-up-the-developer-environment)
  - [Installing in Production](#installing-in-production)
- - [Project structure](#project-structure)
  - [Book data](#book-data)
- - [Contributing](#contributing)
 
 ## Joining BookWyrm
 BookWyrm is still a young piece of software, and isn't at the level of stability and feature-richness that you'd find in a production-ready application. But it does what it says on the box! If you'd like to join an instance, you can check out the [instances](https://github.com/mouse-reeve/bookwyrm/blob/main/instances.md) list.
 
 You can request an invite to https://bookwyrm.social by [email](mailto:mousereeve@riseup.net), [Mastodon direct message](https://friend.camp/@tripofmice), or [Twitter direct message](https://twitter.com/tripofmice).
 
-## The overall idea
+
+## Contributing
+There are many ways you can contribute to this project, regardless of your level of technical expertise. 
+
+### Feedback and feature requests
+Please feel encouraged and welcome to point out bugs, suggestions, feature requests, and ideas for how things ought to work using [GitHub issues](https://github.com/mouse-reeve/bookwyrm/issues).
+
+### Code contributions
+Code contributons are gladly welcomed! If you're not sure where to start, take a look at the ["Good first issue"](https://github.com/mouse-reeve/bookwyrm/issues?q=is%3Aissue+is%3Aopen+label%3A%22good+first+issue%22) tag. Because BookWyrm is a small project, there isn't a lot of formal structure, but there is a huge capacity for one-on-one support, which can look like asking questions as you go, pair programming, video chats, et cetera, so please feel free to reach out.
+
+If you have questions about the project or contributing, you can seet up a video call during BookWyrm ["office hours"](https://calendly.com/mouse-reeve/30min).
+
+### Financial Support
+BookWyrm is an ad-free passion project with no intentions of seeking out venture funding or corporate financial relationships. If you want to help keep the project going, you can donate to the [Patreon](https://www.patreon.com/bookwyrm), or make a one time gift via [PayPal](https://paypal.me/oulipo).
+
+## About BookWyrm
 ### What it is and isn't
 BookWyrm is a platform for social reading! You can use it to track what you're reading, review books, and follow your friends. It isn't  primarily meant for cataloguing or as a datasource for books, but it does do both of those things to some degree. 
 
@@ -54,6 +68,25 @@ Since the project is still in its early stages, the features are growing every d
     - Private, followers-only, and public privacy levels for posting, shelves, and lists
     - Option for users to manually approve followers
     - Allow blocking and flagging for moderation
+    
+### The Tech Stack
+Web backend
+ - [Django](https://www.djangoproject.com/) web server
+ - [PostgreSQL](https://www.postgresql.org/) database
+ - [ActivityPub](http://activitypub.rocks/) federation
+ - [Celery](http://celeryproject.org/) task queuing
+ - [Redis](https://redis.io/) task backend
+ 
+Front end
+ - Django templates
+ - [Bulma.io](https://bulma.io/) css framework
+ - Vanilla JavaScript, in moderation
+ 
+Deployment
+ - [Docker](https://www.docker.com/) and docker-compose
+ - [Gunicorn](https://gunicorn.org/) web runner
+ - [Flower](https://github.com/mher/flower) celery monitoring
+ - [Nginx](https://nginx.org/en/) HTTP server
 
 ## Setting up the developer environment
 
@@ -132,9 +165,3 @@ There are three concepts in the book data model:
  - `Edition`, a concrete, actually published version of a book
  
 Whenever a user interacts with a book, they are interacting with a specific edition. Every work has a default edition, but the user can select other editions. Reviews aggregated for all editions of a work when you view an edition's page.
-
-
-## Contributing
-There are many ways you can contribute to this project! You are welcome and encouraged to create or contribute an issue to report a bug, request a feature, make a usability suggestion, or express a nebulous desire.
-
-If you'd like to add to the codebase, that's super rad and you should do it! At this point, there isn't a formalized process, but you can take a look at the open issues, or contact me directly and chat about it.

From 5c054cf424c40025637cbcf96fa091bce052beb7 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 12 Feb 2021 18:03:06 -0800
Subject: [PATCH 197/280] Update FUNDING.yml

---
 .github/FUNDING.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/FUNDING.yml b/.github/FUNDING.yml
index 5662d1d5..b644337a 100644
--- a/.github/FUNDING.yml
+++ b/.github/FUNDING.yml
@@ -2,7 +2,7 @@
 
 github: # Replace with up to 4 GitHub Sponsors-enabled usernames e.g., [user1, user2]
 patreon: bookwyrm
-open_collective: # Replace with a single Open Collective username
+open_collective: bookwyrm
 ko_fi: # Replace with a single Ko-fi username
 tidelift: # Replace with a single Tidelift platform-name/package-name e.g., npm/babel
 community_bridge: # Replace with a single Community Bridge project-name e.g., cloud-foundry

From 4a58cd42a6d51269dfbc3bc4c9823974bebb38c1 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 12 Feb 2021 18:14:51 -0800
Subject: [PATCH 198/280] More thorough check to prevent following blocked
 users

---
 bookwyrm/models/relationship.py | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index ac8f8286..e2db5468 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -82,11 +82,16 @@ class UserFollowRequest(ActivitypubMixin, UserRelationship):
         try:
             UserFollows.objects.get(
                 user_subject=self.user_subject,
-                user_object=self.user_object
+                user_object=self.user_object,
             )
+            # blocking in either direction is a no-go
             UserBlocks.objects.get(
                 user_subject=self.user_subject,
-                user_object=self.user_object
+                user_object=self.user_object,
+            )
+            UserBlocks.objects.get(
+                user_subject=self.user_object,
+                user_object=self.user_subject,
             )
             return None
         except (UserFollows.DoesNotExist, UserBlocks.DoesNotExist):

From 8cb345886bb1635f5984df398e97489857041afe Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 15 Feb 2021 11:30:22 -0800
Subject: [PATCH 199/280] Show lists on book page

---
 bookwyrm/templates/book.html | 11 +++++++++++
 bookwyrm/views/books.py      |  5 +++++
 2 files changed, 16 insertions(+)

diff --git a/bookwyrm/templates/book.html b/bookwyrm/templates/book.html
index c174116e..0bef2856 100644
--- a/bookwyrm/templates/book.html
+++ b/bookwyrm/templates/book.html
@@ -224,6 +224,17 @@
                 </ul>
             </section>
             {% endif %}
+
+            {% if lists.exists %}
+            <section class="content block">
+                <h2 class="title is-5">Lists</h2>
+                <ul>
+                {% for list in lists %}
+                <li><a href="{{ list.local_path }}">{{ list.name }}</a></li>
+                {% endfor %}
+                </ul>
+            </section>
+            {% endif %}
         </div>
     </div>
 </div>
diff --git a/bookwyrm/views/books.py b/bookwyrm/views/books.py
index 2655bebb..9d196563 100644
--- a/bookwyrm/views/books.py
+++ b/bookwyrm/views/books.py
@@ -15,6 +15,7 @@ from bookwyrm.activitypub import ActivitypubResponse
 from bookwyrm.connectors import connector_manager
 from bookwyrm.settings import PAGE_LENGTH
 from .helpers import is_api_request, get_activity_feed, get_edition
+from .helpers import privacy_filter
 
 
 # pylint: disable= no-self-use
@@ -94,6 +95,10 @@ class Book(View):
             'ratings': reviews.filter(Q(content__isnull=True) | Q(content='')),
             'rating': reviews.aggregate(Avg('rating'))['rating__avg'],
             'tags':  models.UserTag.objects.filter(book=book),
+            'lists': privacy_filter(
+                request.user,
+                book.list_set.all(),
+                ['public', 'unlisted', 'followers']),
             'user_tags': user_tags,
             'user_shelves': user_shelves,
             'other_edition_shelves': other_edition_shelves,

From 65f81bd5f0fb5c6075ba5bb39b008066c6ae11c3 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 15 Feb 2021 12:21:48 -0800
Subject: [PATCH 200/280] Moves blocking to save function

I just like these better than signals??
---
 bookwyrm/incoming.py            |  2 +-
 bookwyrm/models/relationship.py | 28 +++++++++++-----------------
 2 files changed, 12 insertions(+), 18 deletions(-)

diff --git a/bookwyrm/incoming.py b/bookwyrm/incoming.py
index 562225e7..cb5baafc 100644
--- a/bookwyrm/incoming.py
+++ b/bookwyrm/incoming.py
@@ -195,7 +195,7 @@ def handle_block(activity):
     ''' blocking a user '''
     # create "block" databse entry
     activitypub.Block(**activity).to_model(models.UserBlocks)
-    # the removing relationships is handled in post-save hook in model
+    # the removing relationships is handled in model save
 
 
 @app.task
diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index 9f3bf07d..6aaffae9 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -1,7 +1,6 @@
 ''' defines relationships between users '''
 from django.db import models, transaction
 from django.db.models import Q
-from django.dispatch import receiver
 
 from bookwyrm import activitypub
 from .activitypub_mixin import ActivitypubMixin, ActivityMixin
@@ -126,20 +125,15 @@ class UserBlocks(ActivityMixin, UserRelationship):
     status = 'blocks'
     activity_serializer = activitypub.Block
 
+    def save(self, *args, **kwargs):
+        ''' remove follow or follow request rels after a block is created '''
+        super().save(*args, **kwargs)
 
-@receiver(models.signals.post_save, sender=UserBlocks)
-#pylint: disable=unused-argument
-def execute_after_save(sender, instance, created, *args, **kwargs):
-    ''' remove follow or follow request rels after a block is created '''
-    UserFollows.objects.filter(
-        Q(user_subject=instance.user_subject,
-          user_object=instance.user_object) | \
-        Q(user_subject=instance.user_object,
-          user_object=instance.user_subject)
-    ).delete()
-    UserFollowRequest.objects.filter(
-        Q(user_subject=instance.user_subject,
-          user_object=instance.user_object) | \
-        Q(user_subject=instance.user_object,
-          user_object=instance.user_subject)
-    ).delete()
+        UserFollows.objects.filter(
+            Q(user_subject=self.user_subject, user_object=self.user_object) | \
+            Q(user_subject=self.user_object, user_object=self.user_subject)
+        ).delete()
+        UserFollowRequest.objects.filter(
+            Q(user_subject=self.user_subject, user_object=self.user_object) | \
+            Q(user_subject=self.user_object, user_object=self.user_subject)
+        ).delete()

From f974b9b89538f226a30c4854fa3947f51ff05e28 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 15 Feb 2021 12:51:34 -0800
Subject: [PATCH 201/280] Better blocking checks

---
 bookwyrm/models/relationship.py | 48 ++++++++++++++++++++++-----------
 1 file changed, 32 insertions(+), 16 deletions(-)

diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index 044b08ac..f4df3b83 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -1,6 +1,6 @@
 ''' defines relationships between users '''
 from django.apps import apps
-from django.db import models, transaction
+from django.db import models, transaction, IntegrityError
 from django.db.models import Q
 
 from bookwyrm import activitypub
@@ -60,6 +60,20 @@ class UserFollows(ActivitypubMixin, UserRelationship):
     status = 'follows'
     activity_serializer = activitypub.Follow
 
+    def save(self, *args, **kwargs):
+        ''' really really don't let a user follow someone who blocked them '''
+        # blocking in either direction is a no-go
+        if UserBlocks.objects.filter(
+                Q(
+                    user_subject=self.user_subject,
+                    user_object=self.user_object,
+                ) | Q(
+                    user_subject=self.user_object,
+                    user_object=self.user_subject,
+                )
+            ).exists():
+            raise IntegrityError()
+        super().save(*args, **kwargs)
 
     @classmethod
     def from_request(cls, follow_request):
@@ -78,23 +92,25 @@ class UserFollowRequest(ActivitypubMixin, UserRelationship):
 
     def save(self, *args, broadcast=True, **kwargs):
         ''' make sure the follow or block relationship doesn't already exist '''
-        try:
-            UserFollows.objects.get(
+        # don't create a request if a follow already exists
+        if UserFollows.objects.filter(
                 user_subject=self.user_subject,
                 user_object=self.user_object,
-            )
-            # blocking in either direction is a no-go
-            UserBlocks.objects.get(
-                user_subject=self.user_subject,
-                user_object=self.user_object,
-            )
-            UserBlocks.objects.get(
-                user_subject=self.user_object,
-                user_object=self.user_subject,
-            )
-            return None
-        except (UserFollows.DoesNotExist, UserBlocks.DoesNotExist):
-            super().save(*args, **kwargs)
+            ).exists():
+            raise IntegrityError()
+        # blocking in either direction is a no-go
+        if UserBlocks.objects.filter(
+                Q(
+                    user_subject=self.user_subject,
+                    user_object=self.user_object,
+                ) | Q(
+                    user_subject=self.user_object,
+                    user_object=self.user_subject,
+                )
+            ).exists():
+            raise IntegrityError()
+
+        super().save(*args, **kwargs)
 
         if broadcast and self.user_subject.local and not self.user_object.local:
             self.broadcast(self.to_activity(), self.user_subject)

From fd19b559612aacc36f96fda15db88f6ef35d57cd Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 15 Feb 2021 16:26:48 -0800
Subject: [PATCH 202/280] Basic checks for inbox

---
 bookwyrm/incoming.py               |  21 +++---
 bookwyrm/tests/views/test_inbox.py | 102 +++++++++++++++++++++++++++++
 bookwyrm/urls.py                   |   6 +-
 bookwyrm/views/__init__.py         |   1 +
 bookwyrm/views/inbox.py            |  79 ++++++++++++++++++++++
 5 files changed, 195 insertions(+), 14 deletions(-)
 create mode 100644 bookwyrm/tests/views/test_inbox.py
 create mode 100644 bookwyrm/views/inbox.py

diff --git a/bookwyrm/incoming.py b/bookwyrm/incoming.py
index 18db1069..83d325af 100644
--- a/bookwyrm/incoming.py
+++ b/bookwyrm/incoming.py
@@ -160,14 +160,12 @@ def handle_follow_accept(activity):
     accepter = activitypub.resolve_remote_id(models.User, activity['actor'])
 
     try:
-        request = models.UserFollowRequest.objects.get(
+        models.UserFollowRequest.objects.get(
             user_subject=requester,
             user_object=accepter
-        )
-        request.delete()
+        ).accept()
     except models.UserFollowRequest.DoesNotExist:
-        pass
-    accepter.followers.add(requester)
+        return
 
 
 @app.task
@@ -176,12 +174,13 @@ def handle_follow_reject(activity):
     requester = models.User.objects.get(remote_id=activity['object']['actor'])
     rejecter = activitypub.resolve_remote_id(models.User, activity['actor'])
 
-    request = models.UserFollowRequest.objects.get(
-        user_subject=requester,
-        user_object=rejecter
-    )
-    request.delete()
-    #raises models.UserFollowRequest.DoesNotExist
+    try:
+        models.UserFollowRequest.objects.get(
+            user_subject=requester,
+            user_object=rejecter
+        ).reject()
+    except models.UserFollowRequest.DoesNotExist:
+        return
 
 @app.task
 def handle_block(activity):
diff --git a/bookwyrm/tests/views/test_inbox.py b/bookwyrm/tests/views/test_inbox.py
new file mode 100644
index 00000000..64dcc149
--- /dev/null
+++ b/bookwyrm/tests/views/test_inbox.py
@@ -0,0 +1,102 @@
+''' tests incoming activities'''
+import json
+from unittest.mock import patch
+
+from django.http import HttpResponseNotAllowed, HttpResponseNotFound
+from django.test import TestCase, Client
+
+from bookwyrm import models
+
+class Inbox(TestCase):
+    ''' readthrough tests '''
+    def setUp(self):
+        ''' basic user and book data '''
+        self.client = Client()
+        self.local_user = models.User.objects.create_user(
+            'mouse@example.com', 'mouse@mouse.com', 'mouseword',
+            local=True, localname='mouse')
+        self.local_user.remote_id = 'https://example.com/user/mouse'
+        self.local_user.save(broadcast=False)
+        with patch('bookwyrm.models.user.set_remote_server.delay'):
+            self.remote_user = models.User.objects.create_user(
+                'rat', 'rat@rat.com', 'ratword',
+                local=False,
+                remote_id='https://example.com/users/rat',
+                inbox='https://example.com/users/rat/inbox',
+                outbox='https://example.com/users/rat/outbox',
+            )
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            self.status = models.Status.objects.create(
+                user=self.local_user,
+                content='Test status',
+                remote_id='https://example.com/status/1',
+            )
+        models.SiteSettings.objects.create()
+
+
+    def test_inbox_invalid_get(self):
+        ''' shouldn't try to handle if the user is not found '''
+        result = self.client.get(
+            '/inbox', content_type="application/json"
+        )
+        self.assertIsInstance(result, HttpResponseNotAllowed)
+
+    def test_inbox_invalid_user(self):
+        ''' shouldn't try to handle if the user is not found '''
+        result = self.client.post(
+            '/user/bleh/inbox',
+            '{"type": "Test", "object": "exists"}',
+            content_type="application/json"
+        )
+        self.assertIsInstance(result, HttpResponseNotFound)
+
+    def test_inbox_invalid_bad_signature(self):
+        ''' bad request for invalid signature '''
+        with patch('bookwyrm.views.inbox.has_valid_signature') as mock_valid:
+            mock_valid.return_value = False
+            result = self.client.post(
+                '/user/mouse/inbox',
+                '{"type": "Test", "object": "exists"}',
+                content_type="application/json"
+            )
+            self.assertEqual(result.status_code, 401)
+
+    def test_inbox_invalid_bad_signature_delete(self):
+        ''' invalid signature for Delete is okay though '''
+        with patch('bookwyrm.views.inbox.has_valid_signature') as mock_valid:
+            mock_valid.return_value = False
+            result = self.client.post(
+                '/user/mouse/inbox',
+                '{"type": "Delete", "object": "exists"}',
+                content_type="application/json"
+            )
+            self.assertEqual(result.status_code, 200)
+
+    def test_inbox_unknown_type(self):
+        ''' never heard of that activity type, don't have a handler for it '''
+        with patch('bookwyrm.views.inbox.has_valid_signature') as mock_valid:
+            result = self.client.post(
+                '/inbox',
+                '{"type": "Fish", "object": "exists"}',
+                content_type="application/json"
+            )
+            mock_valid.return_value = True
+            self.assertIsInstance(result, HttpResponseNotFound)
+
+
+    def test_inbox_success(self):
+        ''' a known type, for which we start a task '''
+        activity = {
+            "id": "hi",
+            "type": "Accept",
+            "actor": "https://example.com/users/rat",
+            "object": "https://example.com/user/mouse"
+        }
+        with patch('bookwyrm.views.inbox.has_valid_signature') as mock_valid:
+            mock_valid.return_value = True
+            result = self.client.post(
+                '/inbox',
+                json.dumps(activity),
+                content_type="application/json"
+            )
+        self.assertEqual(result.status_code, 200)
diff --git a/bookwyrm/urls.py b/bookwyrm/urls.py
index 3830adb9..a741088a 100644
--- a/bookwyrm/urls.py
+++ b/bookwyrm/urls.py
@@ -4,7 +4,7 @@ from django.contrib import admin
 from django.urls import path, re_path
 
 
-from bookwyrm import incoming, settings, views, wellknown
+from bookwyrm import settings, views, wellknown
 from bookwyrm.utils import regex
 
 user_path = r'^user/(?P<username>%s)' % regex.username
@@ -29,8 +29,8 @@ urlpatterns = [
     path('admin/', admin.site.urls),
 
     # federation endpoints
-    re_path(r'^inbox/?$', incoming.shared_inbox),
-    re_path(r'%s/inbox/?$' % local_user_path, incoming.inbox),
+    re_path(r'^inbox/?$', views.Inbox.as_view()),
+    re_path(r'%s/inbox/?$' % local_user_path, views.Inbox.as_view()),
     re_path(r'%s/outbox/?$' % local_user_path, views.Outbox.as_view()),
     re_path(r'^.well-known/webfinger/?$', wellknown.webfinger),
     re_path(r'^.well-known/nodeinfo/?$', wellknown.nodeinfo_pointer),
diff --git a/bookwyrm/views/__init__.py b/bookwyrm/views/__init__.py
index b72c5013..2c7cdc46 100644
--- a/bookwyrm/views/__init__.py
+++ b/bookwyrm/views/__init__.py
@@ -11,6 +11,7 @@ from .follow import follow, unfollow
 from .follow import accept_follow_request, delete_follow_request
 from .goal import Goal
 from .import_data import Import, ImportStatus
+from .inbox import Inbox
 from .interaction import Favorite, Unfavorite, Boost, Unboost
 from .invite import ManageInvites, Invite
 from .landing import About, Home, Discover
diff --git a/bookwyrm/views/inbox.py b/bookwyrm/views/inbox.py
new file mode 100644
index 00000000..8f38e7a2
--- /dev/null
+++ b/bookwyrm/views/inbox.py
@@ -0,0 +1,79 @@
+''' incoming activities '''
+import json
+from urllib.parse import urldefrag
+
+from django.http import HttpResponse
+from django.http import HttpResponseBadRequest, HttpResponseNotFound
+from django.shortcuts import get_object_or_404
+from django.views import View
+import requests
+
+from bookwyrm import activitypub, models
+from bookwyrm.signatures import Signature
+
+
+# pylint: disable=no-self-use
+class Inbox(View):
+    ''' requests sent by outside servers'''
+    def post(self, request, username=None):
+        ''' only works as POST request '''
+        # first let's do some basic checks to see if this is legible
+        if username:
+            try:
+                models.User.objects.get(localname=username)
+            except models.User.DoesNotExist:
+                return HttpResponseNotFound()
+
+        # is it valid json? does it at least vaguely resemble an activity?
+        try:
+            resp = request.body
+            activity_json = json.loads(resp)
+            activity_type = activity_json['type'] # Follow, Accept, Create, etc
+        except (json.decoder.JSONDecodeError, KeyError):
+            return HttpResponseBadRequest()
+
+        # verify the signature
+        if not has_valid_signature(request, activity_json):
+            if activity_json['type'] == 'Delete':
+                # Pretend that unauth'd deletes succeed. Auth may be failing
+                # because the resource or owner of the resource might have
+                # been deleted.
+                return HttpResponse()
+            return HttpResponse(status=401)
+
+        # get the activity dataclass from the type field
+        try:
+            serializer = getattr(activitypub, activity_type)
+            serializer(**activity_json)
+        except (AttributeError, activitypub.ActivitySerializerError):
+            return HttpResponseNotFound()
+
+        return HttpResponse()
+
+
+def has_valid_signature(request, activity):
+    ''' verify incoming signature '''
+    try:
+        signature = Signature.parse(request)
+
+        key_actor = urldefrag(signature.key_id).url
+        if key_actor != activity.get('actor'):
+            raise ValueError("Wrong actor created signature.")
+
+        remote_user = activitypub.resolve_remote_id(models.User, key_actor)
+        if not remote_user:
+            return False
+
+        try:
+            signature.verify(remote_user.key_pair.public_key, request)
+        except ValueError:
+            old_key = remote_user.key_pair.public_key
+            remote_user = activitypub.resolve_remote_id(
+                models.User, remote_user.remote_id, refresh=True
+            )
+            if remote_user.key_pair.public_key == old_key:
+                raise # Key unchanged.
+            signature.verify(remote_user.key_pair.public_key, request)
+    except (ValueError, requests.exceptions.HTTPError):
+        return False
+    return True

From e810c2bee0e8887bfe1c073dd1d53f3b405cc9fe Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 15 Feb 2021 17:23:17 -0800
Subject: [PATCH 203/280] Recursively parse activities

---
 bookwyrm/activitypub/__init__.py      |  6 ++-
 bookwyrm/activitypub/base_activity.py | 17 ++++++++-
 bookwyrm/tests/test_incoming.py       | 54 ---------------------------
 bookwyrm/views/inbox.py               | 10 ++---
 4 files changed, 24 insertions(+), 63 deletions(-)

diff --git a/bookwyrm/activitypub/__init__.py b/bookwyrm/activitypub/__init__.py
index 510f1f3f..ce4acd66 100644
--- a/bookwyrm/activitypub/__init__.py
+++ b/bookwyrm/activitypub/__init__.py
@@ -2,7 +2,7 @@
 import inspect
 import sys
 
-from .base_activity import ActivityEncoder, Signature
+from .base_activity import ActivityEncoder, Signature, naive_parse
 from .base_activity import Link, Mention
 from .base_activity import ActivitySerializerError, resolve_remote_id
 from .image import Image
@@ -23,3 +23,7 @@ from .verbs import Add, AddBook, AddListItem, Remove
 cls_members = inspect.getmembers(sys.modules[__name__], inspect.isclass)
 activity_objects = {c[0]: c[1] for c in cls_members \
     if hasattr(c[1], 'to_model')}
+
+def parse(activity_json):
+    ''' figure out what activity this is and parse it '''
+    return naive_parse(activity_objects, activity_json)
diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index 5f35f1d7..596662e8 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -40,6 +40,17 @@ class Signature:
     signatureValue: str
     type: str = 'RsaSignature2017'
 
+def naive_parse(activity_objects, activity_json):
+    ''' this navigates circular import issues '''
+    try:
+        activity_type = activity_json['type']
+        print(activity_type)
+        serializer = activity_objects[activity_type]
+        print(serializer)
+    except KeyError:
+        raise ActivitySerializerError('Invalid type "%s"' % activity_type)
+
+    return serializer(activity_objects=activity_objects, **activity_json)
 
 @dataclass(init=False)
 class ActivityObject:
@@ -47,13 +58,17 @@ class ActivityObject:
     id: str
     type: str
 
-    def __init__(self, **kwargs):
+    def __init__(self, activity_objects=None, **kwargs):
         ''' this lets you pass in an object with fields that aren't in the
         dataclass, which it ignores. Any field in the dataclass is required or
         has a default value '''
         for field in fields(self):
             try:
+                print(field.name, field.type)
                 value = kwargs[field.name]
+                if field.type == 'ActivityObject' and activity_objects:
+                    value = naive_parse(activity_objects, value)
+
             except KeyError:
                 if field.default == MISSING and \
                         field.default_factory == MISSING:
diff --git a/bookwyrm/tests/test_incoming.py b/bookwyrm/tests/test_incoming.py
index 01d0c9a3..9be0bb97 100644
--- a/bookwyrm/tests/test_incoming.py
+++ b/bookwyrm/tests/test_incoming.py
@@ -40,60 +40,6 @@ class Incoming(TestCase):
         self.factory = RequestFactory()
 
 
-    def test_inbox_invalid_get(self):
-        ''' shouldn't try to handle if the user is not found '''
-        request = self.factory.get('https://www.example.com/')
-        self.assertIsInstance(
-            incoming.inbox(request, 'anything'), HttpResponseNotAllowed)
-        self.assertIsInstance(
-            incoming.shared_inbox(request), HttpResponseNotAllowed)
-
-    def test_inbox_invalid_user(self):
-        ''' shouldn't try to handle if the user is not found '''
-        request = self.factory.post('https://www.example.com/')
-        self.assertIsInstance(
-            incoming.inbox(request, 'fish@tomato.com'), HttpResponseNotFound)
-
-    def test_inbox_invalid_no_object(self):
-        ''' json is missing "object" field '''
-        request = self.factory.post(
-            self.local_user.shared_inbox, data={})
-        self.assertIsInstance(
-            incoming.shared_inbox(request), HttpResponseBadRequest)
-
-    def test_inbox_invalid_bad_signature(self):
-        ''' bad request for invalid signature '''
-        request = self.factory.post(
-            self.local_user.shared_inbox,
-            '{"type": "Test", "object": "exists"}',
-            content_type='application/json')
-        with patch('bookwyrm.incoming.has_valid_signature') as mock_has_valid:
-            mock_has_valid.return_value = False
-            self.assertEqual(
-                incoming.shared_inbox(request).status_code, 401)
-
-    def test_inbox_invalid_bad_signature_delete(self):
-        ''' invalid signature for Delete is okay though '''
-        request = self.factory.post(
-            self.local_user.shared_inbox,
-            '{"type": "Delete", "object": "exists"}',
-            content_type='application/json')
-        with patch('bookwyrm.incoming.has_valid_signature') as mock_has_valid:
-            mock_has_valid.return_value = False
-            self.assertEqual(
-                incoming.shared_inbox(request).status_code, 200)
-
-    def test_inbox_unknown_type(self):
-        ''' never heard of that activity type, don't have a handler for it '''
-        request = self.factory.post(
-            self.local_user.shared_inbox,
-            '{"type": "Fish", "object": "exists"}',
-            content_type='application/json')
-        with patch('bookwyrm.incoming.has_valid_signature') as mock_has_valid:
-            mock_has_valid.return_value = True
-            self.assertIsInstance(
-                incoming.shared_inbox(request), HttpResponseNotFound)
-
     def test_inbox_success(self):
         ''' a known type, for which we start a task '''
         request = self.factory.post(
diff --git a/bookwyrm/views/inbox.py b/bookwyrm/views/inbox.py
index 8f38e7a2..53dd6c40 100644
--- a/bookwyrm/views/inbox.py
+++ b/bookwyrm/views/inbox.py
@@ -4,7 +4,6 @@ from urllib.parse import urldefrag
 
 from django.http import HttpResponse
 from django.http import HttpResponseBadRequest, HttpResponseNotFound
-from django.shortcuts import get_object_or_404
 from django.views import View
 import requests
 
@@ -26,10 +25,8 @@ class Inbox(View):
 
         # is it valid json? does it at least vaguely resemble an activity?
         try:
-            resp = request.body
-            activity_json = json.loads(resp)
-            activity_type = activity_json['type'] # Follow, Accept, Create, etc
-        except (json.decoder.JSONDecodeError, KeyError):
+            activity_json = json.loads(request.body)
+        except json.decoder.JSONDecodeError:
             return HttpResponseBadRequest()
 
         # verify the signature
@@ -43,8 +40,7 @@ class Inbox(View):
 
         # get the activity dataclass from the type field
         try:
-            serializer = getattr(activitypub, activity_type)
-            serializer(**activity_json)
+            activitypub.parse(activity_json)
         except (AttributeError, activitypub.ActivitySerializerError):
             return HttpResponseNotFound()
 

From 81e2021f92c170b8c73098a4746e511983975ce9 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 15 Feb 2021 18:47:08 -0800
Subject: [PATCH 204/280] Move handlers to activitypub classes

---
 bookwyrm/activitypub/base_activity.py | 33 ++++++++++----------
 bookwyrm/activitypub/verbs.py         |  7 +++++
 bookwyrm/tests/views/test_inbox.py    | 43 +++++++++++++++++++++------
 bookwyrm/views/inbox.py               | 24 ++++++++++++---
 celerywyrm/celery.py                  |  2 +-
 5 files changed, 78 insertions(+), 31 deletions(-)

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index 596662e8..93af0d0c 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -47,8 +47,8 @@ def naive_parse(activity_objects, activity_json):
         print(activity_type)
         serializer = activity_objects[activity_type]
         print(serializer)
-    except KeyError:
-        raise ActivitySerializerError('Invalid type "%s"' % activity_type)
+    except KeyError as e:
+        raise ActivitySerializerError(e)
 
     return serializer(activity_objects=activity_objects, **activity_json)
 
@@ -66,7 +66,11 @@ class ActivityObject:
             try:
                 print(field.name, field.type)
                 value = kwargs[field.name]
-                if field.type == 'ActivityObject' and activity_objects:
+                try:
+                    is_subclass = issubclass(field.type, ActivityObject)
+                except TypeError:
+                    is_subclass = False
+                if is_subclass and activity_objects:
                     value = naive_parse(activity_objects, value)
 
             except KeyError:
@@ -78,22 +82,17 @@ class ActivityObject:
             setattr(self, field.name, value)
 
 
-    def to_model(self, model, instance=None, save=True):
+    def to_model(self, instance=None, save=True):
         ''' convert from an activity to a model instance '''
-        if self.type != model.activity_serializer.type:
+        # figure out the right model -- wish I had a better way for this
+        models = apps.get_models()
+        model = [m for m in models if hasattr(m, 'activity_serializer') and \
+            hasattr(m.activity_serializer, 'type') and \
+            m.activity_serializer.type == self.type]
+        if not len(model):
             raise ActivitySerializerError(
-                'Wrong activity type "%s" for activity of type "%s"' % \
-                        (model.activity_serializer.type,
-                         self.type)
-            )
-
-        if not isinstance(self, model.activity_serializer):
-            raise ActivitySerializerError(
-                'Wrong activity type "%s" for model "%s" (expects "%s")' % \
-                        (self.__class__,
-                         model.__name__,
-                         model.activity_serializer)
-            )
+                'No model found for activity type "%s"' % self.type)
+        model = model[0]
 
         if hasattr(model, 'ignore_activity') and model.ignore_activity(self):
             return instance
diff --git a/bookwyrm/activitypub/verbs.py b/bookwyrm/activitypub/verbs.py
index 190cd739..c4b30253 100644
--- a/bookwyrm/activitypub/verbs.py
+++ b/bookwyrm/activitypub/verbs.py
@@ -21,6 +21,11 @@ class Create(Verb):
     signature: Signature = None
     type: str = 'Create'
 
+    def action(self):
+        ''' create the model instance from the dataclass '''
+        # check for dupes
+        self.object.to_model()
+
 
 @dataclass(init=False)
 class Delete(Verb):
@@ -46,11 +51,13 @@ class Undo(Verb):
 @dataclass(init=False)
 class Follow(Verb):
     ''' Follow activity '''
+    object: str
     type: str = 'Follow'
 
 @dataclass(init=False)
 class Block(Verb):
     ''' Block activity '''
+    object: str
     type: str = 'Block'
 
 @dataclass(init=False)
diff --git a/bookwyrm/tests/views/test_inbox.py b/bookwyrm/tests/views/test_inbox.py
index 64dcc149..3bb7760e 100644
--- a/bookwyrm/tests/views/test_inbox.py
+++ b/bookwyrm/tests/views/test_inbox.py
@@ -87,16 +87,41 @@ class Inbox(TestCase):
     def test_inbox_success(self):
         ''' a known type, for which we start a task '''
         activity = {
-            "id": "hi",
-            "type": "Accept",
-            "actor": "https://example.com/users/rat",
-            "object": "https://example.com/user/mouse"
+            'id': 'hi',
+            'type': 'Create',
+            'actor': 'hi',
+            "to": [
+                "https://www.w3.org/ns/activitystreams#Public"
+            ],
+            "cc": [
+                "https://example.com/user/mouse/followers"
+            ],
+            'object': {
+                "id": "https://example.com/list/22",
+                "type": "BookList",
+                "totalItems": 1,
+                "first": "https://example.com/list/22?page=1",
+                "last": "https://example.com/list/22?page=1",
+                "name": "Test List",
+                "owner": "https://example.com/user/mouse",
+                "to": [
+                    "https://www.w3.org/ns/activitystreams#Public"
+                ],
+                "cc": [
+                    "https://example.com/user/mouse/followers"
+                ],
+                "summary": "summary text",
+                "curation": "curated",
+                "@context": "https://www.w3.org/ns/activitystreams"
+            }
         }
         with patch('bookwyrm.views.inbox.has_valid_signature') as mock_valid:
             mock_valid.return_value = True
-            result = self.client.post(
-                '/inbox',
-                json.dumps(activity),
-                content_type="application/json"
-            )
+
+            with patch('bookwyrm.views.inbox.activity_task.delay'):
+                result = self.client.post(
+                    '/inbox',
+                    json.dumps(activity),
+                    content_type="application/json"
+                )
         self.assertEqual(result.status_code, 200)
diff --git a/bookwyrm/views/inbox.py b/bookwyrm/views/inbox.py
index 53dd6c40..fdac8446 100644
--- a/bookwyrm/views/inbox.py
+++ b/bookwyrm/views/inbox.py
@@ -8,6 +8,7 @@ from django.views import View
 import requests
 
 from bookwyrm import activitypub, models
+from bookwyrm.tasks import app
 from bookwyrm.signatures import Signature
 
 
@@ -38,15 +39,30 @@ class Inbox(View):
                 return HttpResponse()
             return HttpResponse(status=401)
 
-        # get the activity dataclass from the type field
-        try:
-            activitypub.parse(activity_json)
-        except (AttributeError, activitypub.ActivitySerializerError):
+        # just some quick smell tests before we try to parse the json
+        if not 'object' in activity_json or \
+                not 'type' in activity_json or \
+                not activity_json['type'] in activitypub.activity_objects:
             return HttpResponseNotFound()
 
+        activity_task.delay()
         return HttpResponse()
 
 
+@app.task
+def activity_task(activity_json):
+    ''' do something with this json we think is legit '''
+    # lets see if the activitypub module can make sense of this json
+    try:
+        activity = activitypub.parse(activity_json)
+    except activitypub.ActivitySerializerError:
+        return
+
+    # cool that worked, now we should do the action described by the type
+    # (create, update, delete, etc)
+    activity.action()
+
+
 def has_valid_signature(request, activity):
     ''' verify incoming signature '''
     try:
diff --git a/celerywyrm/celery.py b/celerywyrm/celery.py
index 5a53dab5..2937ef0f 100644
--- a/celerywyrm/celery.py
+++ b/celerywyrm/celery.py
@@ -25,5 +25,5 @@ app.autodiscover_tasks(
     ['bookwyrm'], related_name='connectors.abstract_connector')
 app.autodiscover_tasks(['bookwyrm'], related_name='emailing')
 app.autodiscover_tasks(['bookwyrm'], related_name='goodreads_import')
-app.autodiscover_tasks(['bookwyrm'], related_name='incoming')
 app.autodiscover_tasks(['bookwyrm'], related_name='models.user')
+app.autodiscover_tasks(['bookwyrm'], related_name='views.inbox')

From 12a3aa96676c3ddbfe1905a14ef8d45dcdaded3c Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 15 Feb 2021 19:41:22 -0800
Subject: [PATCH 205/280] incoming Create flow with tests

---
 bookwyrm/activitypub/base_activity.py |   3 -
 bookwyrm/activitypub/verbs.py         |   1 -
 bookwyrm/incoming.py                  |  41 -------
 bookwyrm/tests/test_incoming.py       | 117 --------------------
 bookwyrm/tests/views/test_inbox.py    | 151 ++++++++++++++++++++++----
 bookwyrm/views/inbox.py               |   2 +-
 6 files changed, 129 insertions(+), 186 deletions(-)

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index 93af0d0c..a49514dc 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -44,9 +44,7 @@ def naive_parse(activity_objects, activity_json):
     ''' this navigates circular import issues '''
     try:
         activity_type = activity_json['type']
-        print(activity_type)
         serializer = activity_objects[activity_type]
-        print(serializer)
     except KeyError as e:
         raise ActivitySerializerError(e)
 
@@ -64,7 +62,6 @@ class ActivityObject:
         has a default value '''
         for field in fields(self):
             try:
-                print(field.name, field.type)
                 value = kwargs[field.name]
                 try:
                     is_subclass = issubclass(field.type, ActivityObject)
diff --git a/bookwyrm/activitypub/verbs.py b/bookwyrm/activitypub/verbs.py
index c4b30253..fee5f362 100644
--- a/bookwyrm/activitypub/verbs.py
+++ b/bookwyrm/activitypub/verbs.py
@@ -23,7 +23,6 @@ class Create(Verb):
 
     def action(self):
         ''' create the model instance from the dataclass '''
-        # check for dupes
         self.object.to_model()
 
 
diff --git a/bookwyrm/incoming.py b/bookwyrm/incoming.py
index 83d325af..7ddd893f 100644
--- a/bookwyrm/incoming.py
+++ b/bookwyrm/incoming.py
@@ -53,14 +53,6 @@ def shared_inbox(request):
         'Accept': handle_follow_accept,
         'Reject': handle_follow_reject,
         'Block': handle_block,
-        'Create': {
-            'BookList': handle_create_list,
-            'Note': handle_create_status,
-            'Article': handle_create_status,
-            'Review': handle_create_status,
-            'Comment': handle_create_status,
-            'Quotation': handle_create_status,
-        },
         'Delete': handle_delete_status,
         'Like': handle_favorite,
         'Announce': handle_boost,
@@ -204,13 +196,6 @@ def handle_unblock(activity):
     block.delete()
 
 
-@app.task
-def handle_create_list(activity):
-    ''' a new list '''
-    activity = activity['object']
-    activitypub.BookList(**activity).to_model(models.List)
-
-
 @app.task
 def handle_update_list(activity):
     ''' update a list '''
@@ -222,32 +207,6 @@ def handle_update_list(activity):
         **activity['object']).to_model(models.List, instance=book_list)
 
 
-@app.task
-def handle_create_status(activity):
-    ''' someone did something, good on them '''
-    # deduplicate incoming activities
-    activity = activity['object']
-    status_id = activity.get('id')
-    if models.Status.objects.filter(remote_id=status_id).count():
-        return
-
-    try:
-        serializer = activitypub.activity_objects[activity['type']]
-    except KeyError:
-        return
-
-    activity = serializer(**activity)
-    try:
-        model = models.activity_models[activity.type]
-    except KeyError:
-        # not a type of status we are prepared to deserialize
-        return
-
-    status = activity.to_model(model)
-    if not status:
-        # it was discarded because it's not a bookwyrm type
-        return
-
 
 @app.task
 def handle_delete_status(activity):
diff --git a/bookwyrm/tests/test_incoming.py b/bookwyrm/tests/test_incoming.py
index 9be0bb97..288ae302 100644
--- a/bookwyrm/tests/test_incoming.py
+++ b/bookwyrm/tests/test_incoming.py
@@ -40,19 +40,6 @@ class Incoming(TestCase):
         self.factory = RequestFactory()
 
 
-    def test_inbox_success(self):
-        ''' a known type, for which we start a task '''
-        request = self.factory.post(
-            self.local_user.shared_inbox,
-            '{"type": "Accept", "object": "exists"}',
-            content_type='application/json')
-        with patch('bookwyrm.incoming.has_valid_signature') as mock_has_valid:
-            mock_has_valid.return_value = True
-
-            with patch('bookwyrm.incoming.handle_follow_accept.delay'):
-                self.assertEqual(
-                    incoming.shared_inbox(request).status_code, 200)
-
 
     def test_handle_follow(self):
         ''' remote user wants to follow local user '''
@@ -198,36 +185,6 @@ class Incoming(TestCase):
         self.assertEqual(follows.count(), 0)
 
 
-    def test_handle_create_list(self):
-        ''' a new list '''
-        activity = {
-            'object': {
-                "id": "https://example.com/list/22",
-                "type": "BookList",
-                "totalItems": 1,
-                "first": "https://example.com/list/22?page=1",
-                "last": "https://example.com/list/22?page=1",
-                "name": "Test List",
-                "owner": "https://example.com/user/mouse",
-                "to": [
-                    "https://www.w3.org/ns/activitystreams#Public"
-                ],
-                "cc": [
-                    "https://example.com/user/mouse/followers"
-                ],
-                "summary": "summary text",
-                "curation": "curated",
-                "@context": "https://www.w3.org/ns/activitystreams"
-            }
-        }
-        incoming.handle_create_list(activity)
-        book_list = models.List.objects.get()
-        self.assertEqual(book_list.name, 'Test List')
-        self.assertEqual(book_list.curation, 'curated')
-        self.assertEqual(book_list.description, 'summary text')
-        self.assertEqual(book_list.remote_id, 'https://example.com/list/22')
-
-
     def test_handle_update_list(self):
         ''' a new list '''
         with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
@@ -262,80 +219,6 @@ class Incoming(TestCase):
         self.assertEqual(book_list.remote_id, 'https://example.com/list/22')
 
 
-    def test_handle_create_status(self):
-        ''' the "it justs works" mode '''
-        self.assertEqual(models.Status.objects.count(), 1)
-
-        datafile = pathlib.Path(__file__).parent.joinpath(
-            'data/ap_quotation.json')
-        status_data = json.loads(datafile.read_bytes())
-        models.Edition.objects.create(
-            title='Test Book', remote_id='https://example.com/book/1')
-        activity = {'object': status_data, 'type': 'Create'}
-
-        incoming.handle_create_status(activity)
-
-        status = models.Quotation.objects.get()
-        self.assertEqual(
-            status.remote_id, 'https://example.com/user/mouse/quotation/13')
-        self.assertEqual(status.quote, 'quote body')
-        self.assertEqual(status.content, 'commentary')
-        self.assertEqual(status.user, self.local_user)
-        self.assertEqual(models.Status.objects.count(), 2)
-
-        # while we're here, lets ensure we avoid dupes
-        incoming.handle_create_status(activity)
-        self.assertEqual(models.Status.objects.count(), 2)
-
-    def test_handle_create_status_unknown_type(self):
-        ''' folks send you all kinds of things '''
-        activity = {'object': {'id': 'hi'}, 'type': 'Fish'}
-        result = incoming.handle_create_status(activity)
-        self.assertIsNone(result)
-
-    def test_handle_create_status_remote_note_with_mention(self):
-        ''' should only create it under the right circumstances '''
-        self.assertEqual(models.Status.objects.count(), 1)
-        self.assertFalse(
-            models.Notification.objects.filter(user=self.local_user).exists())
-
-        datafile = pathlib.Path(__file__).parent.joinpath(
-            'data/ap_note.json')
-        status_data = json.loads(datafile.read_bytes())
-        activity = {'object': status_data, 'type': 'Create'}
-
-        incoming.handle_create_status(activity)
-        status = models.Status.objects.last()
-        self.assertEqual(status.content, 'test content in note')
-        self.assertEqual(status.mention_users.first(), self.local_user)
-        self.assertTrue(
-            models.Notification.objects.filter(user=self.local_user).exists())
-        self.assertEqual(
-            models.Notification.objects.get().notification_type, 'MENTION')
-
-    def test_handle_create_status_remote_note_with_reply(self):
-        ''' should only create it under the right circumstances '''
-        self.assertEqual(models.Status.objects.count(), 1)
-        self.assertFalse(
-            models.Notification.objects.filter(user=self.local_user))
-
-        datafile = pathlib.Path(__file__).parent.joinpath(
-            'data/ap_note.json')
-        status_data = json.loads(datafile.read_bytes())
-        del status_data['tag']
-        status_data['inReplyTo'] = self.status.remote_id
-        activity = {'object': status_data, 'type': 'Create'}
-
-        incoming.handle_create_status(activity)
-        status = models.Status.objects.last()
-        self.assertEqual(status.content, 'test content in note')
-        self.assertEqual(status.reply_parent, self.status)
-        self.assertTrue(
-            models.Notification.objects.filter(user=self.local_user))
-        self.assertEqual(
-            models.Notification.objects.get().notification_type, 'REPLY')
-
-
     def test_handle_delete_status(self):
         ''' remove a status '''
         self.status.user = self.remote_user
diff --git a/bookwyrm/tests/views/test_inbox.py b/bookwyrm/tests/views/test_inbox.py
index 3bb7760e..784f2127 100644
--- a/bookwyrm/tests/views/test_inbox.py
+++ b/bookwyrm/tests/views/test_inbox.py
@@ -1,11 +1,12 @@
 ''' tests incoming activities'''
 import json
+import pathlib
 from unittest.mock import patch
 
 from django.http import HttpResponseNotAllowed, HttpResponseNotFound
 from django.test import TestCase, Client
 
-from bookwyrm import models
+from bookwyrm import models, views
 
 class Inbox(TestCase):
     ''' readthrough tests '''
@@ -31,6 +32,19 @@ class Inbox(TestCase):
                 content='Test status',
                 remote_id='https://example.com/status/1',
             )
+
+        self.create_json = {
+            'id': 'hi',
+            'type': 'Create',
+            'actor': 'hi',
+            "to": [
+                "https://www.w3.org/ns/activitystreams#Public"
+            ],
+            "cc": [
+                "https://example.com/user/mouse/followers"
+            ],
+            'object': {}
+        }
         models.SiteSettings.objects.create()
 
 
@@ -86,34 +100,24 @@ class Inbox(TestCase):
 
     def test_inbox_success(self):
         ''' a known type, for which we start a task '''
-        activity = {
-            'id': 'hi',
-            'type': 'Create',
-            'actor': 'hi',
+        activity = self.create_json
+        activity['object'] = {
+            "id": "https://example.com/list/22",
+            "type": "BookList",
+            "totalItems": 1,
+            "first": "https://example.com/list/22?page=1",
+            "last": "https://example.com/list/22?page=1",
+            "name": "Test List",
+            "owner": "https://example.com/user/mouse",
             "to": [
                 "https://www.w3.org/ns/activitystreams#Public"
             ],
             "cc": [
                 "https://example.com/user/mouse/followers"
             ],
-            'object': {
-                "id": "https://example.com/list/22",
-                "type": "BookList",
-                "totalItems": 1,
-                "first": "https://example.com/list/22?page=1",
-                "last": "https://example.com/list/22?page=1",
-                "name": "Test List",
-                "owner": "https://example.com/user/mouse",
-                "to": [
-                    "https://www.w3.org/ns/activitystreams#Public"
-                ],
-                "cc": [
-                    "https://example.com/user/mouse/followers"
-                ],
-                "summary": "summary text",
-                "curation": "curated",
-                "@context": "https://www.w3.org/ns/activitystreams"
-            }
+            "summary": "summary text",
+            "curation": "curated",
+            "@context": "https://www.w3.org/ns/activitystreams"
         }
         with patch('bookwyrm.views.inbox.has_valid_signature') as mock_valid:
             mock_valid.return_value = True
@@ -125,3 +129,104 @@ class Inbox(TestCase):
                     content_type="application/json"
                 )
         self.assertEqual(result.status_code, 200)
+
+
+    def test_handle_create_status(self):
+        ''' the "it justs works" mode '''
+        self.assertEqual(models.Status.objects.count(), 1)
+
+        datafile = pathlib.Path(__file__).parent.joinpath(
+            '../data/ap_quotation.json')
+        status_data = json.loads(datafile.read_bytes())
+        models.Edition.objects.create(
+            title='Test Book', remote_id='https://example.com/book/1')
+        activity = self.create_json
+        activity['object'] = status_data
+
+        views.inbox.activity_task(activity)
+
+        status = models.Quotation.objects.get()
+        self.assertEqual(
+            status.remote_id, 'https://example.com/user/mouse/quotation/13')
+        self.assertEqual(status.quote, 'quote body')
+        self.assertEqual(status.content, 'commentary')
+        self.assertEqual(status.user, self.local_user)
+        self.assertEqual(models.Status.objects.count(), 2)
+
+        # while we're here, lets ensure we avoid dupes
+        views.inbox.activity_task(activity)
+        self.assertEqual(models.Status.objects.count(), 2)
+
+
+    def test_handle_create_status_remote_note_with_mention(self):
+        ''' should only create it under the right circumstances '''
+        self.assertEqual(models.Status.objects.count(), 1)
+        self.assertFalse(
+            models.Notification.objects.filter(user=self.local_user).exists())
+
+        datafile = pathlib.Path(__file__).parent.joinpath(
+            '../data/ap_note.json')
+        status_data = json.loads(datafile.read_bytes())
+        activity = self.create_json
+        activity['object'] = status_data
+
+        views.inbox.activity_task(activity)
+        status = models.Status.objects.last()
+        self.assertEqual(status.content, 'test content in note')
+        self.assertEqual(status.mention_users.first(), self.local_user)
+        self.assertTrue(
+            models.Notification.objects.filter(user=self.local_user).exists())
+        self.assertEqual(
+            models.Notification.objects.get().notification_type, 'MENTION')
+
+    def test_handle_create_status_remote_note_with_reply(self):
+        ''' should only create it under the right circumstances '''
+        self.assertEqual(models.Status.objects.count(), 1)
+        self.assertFalse(
+            models.Notification.objects.filter(user=self.local_user))
+
+        datafile = pathlib.Path(__file__).parent.joinpath(
+            '../data/ap_note.json')
+        status_data = json.loads(datafile.read_bytes())
+        del status_data['tag']
+        status_data['inReplyTo'] = self.status.remote_id
+        activity = self.create_json
+        activity['object'] = status_data
+
+        views.inbox.activity_task(activity)
+        status = models.Status.objects.last()
+        self.assertEqual(status.content, 'test content in note')
+        self.assertEqual(status.reply_parent, self.status)
+        self.assertTrue(
+            models.Notification.objects.filter(user=self.local_user))
+        self.assertEqual(
+            models.Notification.objects.get().notification_type, 'REPLY')
+
+
+    def test_handle_create_list(self):
+        ''' a new list '''
+        activity = self.create_json
+        activity['object'] = {
+            "id": "https://example.com/list/22",
+            "type": "BookList",
+            "totalItems": 1,
+            "first": "https://example.com/list/22?page=1",
+            "last": "https://example.com/list/22?page=1",
+            "name": "Test List",
+            "owner": "https://example.com/user/mouse",
+            "to": [
+                "https://www.w3.org/ns/activitystreams#Public"
+            ],
+            "cc": [
+                "https://example.com/user/mouse/followers"
+            ],
+            "summary": "summary text",
+            "curation": "curated",
+            "@context": "https://www.w3.org/ns/activitystreams"
+        }
+        views.inbox.activity_task(activity)
+        book_list = models.List.objects.get()
+        self.assertEqual(book_list.name, 'Test List')
+        self.assertEqual(book_list.curation, 'curated')
+        self.assertEqual(book_list.description, 'summary text')
+        self.assertEqual(book_list.remote_id, 'https://example.com/list/22')
diff --git a/bookwyrm/views/inbox.py b/bookwyrm/views/inbox.py
index fdac8446..6e7b036b 100644
--- a/bookwyrm/views/inbox.py
+++ b/bookwyrm/views/inbox.py
@@ -45,7 +45,7 @@ class Inbox(View):
                 not activity_json['type'] in activitypub.activity_objects:
             return HttpResponseNotFound()
 
-        activity_task.delay()
+        activity_task.delay(activity_json)
         return HttpResponse()
 
 

From a16b81a6eb8232dc3f88f0d5ca6b3ae4ac95bf1d Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 15 Feb 2021 20:49:23 -0800
Subject: [PATCH 206/280] Adds actions for all verbs

---
 bookwyrm/activitypub/base_activity.py |   8 +-
 bookwyrm/activitypub/verbs.py         |  40 ++-
 bookwyrm/models/relationship.py       |  12 +-
 bookwyrm/tests/test_incoming.py       | 493 --------------------------
 bookwyrm/tests/views/test_follow.py   |   2 +
 bookwyrm/tests/views/test_inbox.py    | 456 ++++++++++++++++++++++++
 bookwyrm/views/follow.py              |   2 -
 7 files changed, 507 insertions(+), 506 deletions(-)
 delete mode 100644 bookwyrm/tests/test_incoming.py

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index a49514dc..631ca2dd 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -50,6 +50,7 @@ def naive_parse(activity_objects, activity_json):
 
     return serializer(activity_objects=activity_objects, **activity_json)
 
+
 @dataclass(init=False)
 class ActivityObject:
     ''' actor activitypub json '''
@@ -79,7 +80,7 @@ class ActivityObject:
             setattr(self, field.name, value)
 
 
-    def to_model(self, instance=None, save=True):
+    def to_model(self, instance=None, allow_create=True, save=True):
         ''' convert from an activity to a model instance '''
         # figure out the right model -- wish I had a better way for this
         models = apps.get_models()
@@ -95,7 +96,10 @@ class ActivityObject:
             return instance
 
         # check for an existing instance, if we're not updating a known obj
-        instance = instance or model.find_existing(self.serialize()) or model()
+        instance = instance or model.find_existing(self.serialize())
+        if not instance and not allow_create:
+            return None
+        instance = instance or model()
 
         for field in instance.simple_fields:
             field.set_field_from_activity(instance, self)
diff --git a/bookwyrm/activitypub/verbs.py b/bookwyrm/activitypub/verbs.py
index fee5f362..d781993e 100644
--- a/bookwyrm/activitypub/verbs.py
+++ b/bookwyrm/activitypub/verbs.py
@@ -12,6 +12,10 @@ class Verb(ActivityObject):
     actor: str
     object: ActivityObject
 
+    def action(self):
+        ''' usually we just want to save, this can be overridden as needed '''
+        self.object.to_model()
+
 
 @dataclass(init=False)
 class Create(Verb):
@@ -21,10 +25,6 @@ class Create(Verb):
     signature: Signature = None
     type: str = 'Create'
 
-    def action(self):
-        ''' create the model instance from the dataclass '''
-        self.object.to_model()
-
 
 @dataclass(init=False)
 class Delete(Verb):
@@ -33,6 +33,12 @@ class Delete(Verb):
     cc: List
     type: str = 'Delete'
 
+    def action(self):
+        ''' find and delete the activity object '''
+        obj = self.object.to_model(save=False, allow_create=False)
+        obj.delete()
+
+
 
 @dataclass(init=False)
 class Update(Verb):
@@ -40,12 +46,21 @@ class Update(Verb):
     to: List
     type: str = 'Update'
 
+    def action(self):
+        ''' update a model instance from the dataclass '''
+        self.object.to_model(allow_create=False)
+
 
 @dataclass(init=False)
 class Undo(Verb):
     ''' Undo an activity '''
     type: str = 'Undo'
 
+    def action(self):
+        ''' find and remove the activity object '''
+        obj = self.object.to_model(save=False, allow_create=False)
+        obj.delete()
+
 
 @dataclass(init=False)
 class Follow(Verb):
@@ -53,18 +68,25 @@ class Follow(Verb):
     object: str
     type: str = 'Follow'
 
+
 @dataclass(init=False)
 class Block(Verb):
     ''' Block activity '''
     object: str
     type: str = 'Block'
 
+
 @dataclass(init=False)
 class Accept(Verb):
     ''' Accept activity '''
     object: Follow
     type: str = 'Accept'
 
+    def action(self):
+        ''' find and remove the activity object '''
+        obj = self.object.to_model(save=False, allow_create=False)
+        obj.accept()
+
 
 @dataclass(init=False)
 class Reject(Verb):
@@ -72,6 +94,11 @@ class Reject(Verb):
     object: Follow
     type: str = 'Reject'
 
+    def action(self):
+        ''' find and remove the activity object '''
+        obj = self.object.to_model(save=False, allow_create=False)
+        obj.reject()
+
 
 @dataclass(init=False)
 class Add(Verb):
@@ -101,3 +128,8 @@ class Remove(Verb):
     '''Remove activity '''
     target: ActivityObject
     type: str = 'Remove'
+
+    def action(self):
+        ''' find and remove the activity object '''
+        obj = self.object.to_model(save=False, allow_create=False)
+        obj.delete()
diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index e2db5468..e4c6f4fa 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -56,11 +56,9 @@ class UserRelationship(BookWyrmModel):
         return '%s#%s/%d' % (base_path, status, self.id)
 
 
-class UserFollows(ActivitypubMixin, UserRelationship):
+class UserFollows(UserRelationship):
     ''' Following a user '''
     status = 'follows'
-    activity_serializer = activitypub.Follow
-
 
     @classmethod
     def from_request(cls, follow_request):
@@ -101,9 +99,13 @@ class UserFollowRequest(ActivitypubMixin, UserRelationship):
             self.broadcast(self.to_activity(), self.user_subject)
 
         if self.user_object.local:
+            manually_approves = self.user_object.manually_approves_followers
+            if manually_approves:
+                self.accept()
+
             model = apps.get_model('bookwyrm.Notification', require_ready=True)
-            notification_type = 'FOLLOW_REQUEST' \
-                if self.user_object.manually_approves_followers else 'FOLLOW'
+            notification_type = 'FOLLOW_REQUEST' if \
+                    manually_approves else 'FOLLOW'
             model.objects.create(
                 user=self.user_object,
                 related_user=self.user_subject,
diff --git a/bookwyrm/tests/test_incoming.py b/bookwyrm/tests/test_incoming.py
deleted file mode 100644
index 288ae302..00000000
--- a/bookwyrm/tests/test_incoming.py
+++ /dev/null
@@ -1,493 +0,0 @@
-''' test incoming activities '''
-from datetime import datetime
-import json
-import pathlib
-from unittest.mock import patch
-
-from django.http import HttpResponseBadRequest, HttpResponseNotAllowed, \
-        HttpResponseNotFound
-from django.test import TestCase
-from django.test.client import RequestFactory
-import responses
-
-from bookwyrm import models, incoming
-
-
-#pylint: disable=too-many-public-methods
-class Incoming(TestCase):
-    ''' a lot here: all handlers for receiving activitypub requests '''
-    def setUp(self):
-        ''' we need basic things, like users '''
-        self.local_user = models.User.objects.create_user(
-            'mouse@example.com', 'mouse@mouse.com', 'mouseword',
-            local=True, localname='mouse')
-        self.local_user.remote_id = 'https://example.com/user/mouse'
-        self.local_user.save(broadcast=False)
-        with patch('bookwyrm.models.user.set_remote_server.delay'):
-            self.remote_user = models.User.objects.create_user(
-                'rat', 'rat@rat.com', 'ratword',
-                local=False,
-                remote_id='https://example.com/users/rat',
-                inbox='https://example.com/users/rat/inbox',
-                outbox='https://example.com/users/rat/outbox',
-            )
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
-            self.status = models.Status.objects.create(
-                user=self.local_user,
-                content='Test status',
-                remote_id='https://example.com/status/1',
-            )
-        self.factory = RequestFactory()
-
-
-
-    def test_handle_follow(self):
-        ''' remote user wants to follow local user '''
-        activity = {
-            "@context": "https://www.w3.org/ns/activitystreams",
-            "id": "https://example.com/users/rat/follows/123",
-            "type": "Follow",
-            "actor": "https://example.com/users/rat",
-            "object": "https://example.com/user/mouse"
-        }
-
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
-            incoming.handle_follow(activity)
-
-        # notification created
-        notification = models.Notification.objects.get()
-        self.assertEqual(notification.user, self.local_user)
-        self.assertEqual(notification.notification_type, 'FOLLOW')
-
-        # the request should have been deleted
-        requests = models.UserFollowRequest.objects.all()
-        self.assertEqual(list(requests), [])
-
-        # the follow relationship should exist
-        follow = models.UserFollows.objects.get(user_object=self.local_user)
-        self.assertEqual(follow.user_subject, self.remote_user)
-
-
-    def test_handle_follow_manually_approved(self):
-        ''' needs approval before following '''
-        activity = {
-            "@context": "https://www.w3.org/ns/activitystreams",
-            "id": "https://example.com/users/rat/follows/123",
-            "type": "Follow",
-            "actor": "https://example.com/users/rat",
-            "object": "https://example.com/user/mouse"
-        }
-
-        self.local_user.manually_approves_followers = True
-        self.local_user.save(broadcast=False)
-
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
-            incoming.handle_follow(activity)
-
-        # notification created
-        notification = models.Notification.objects.get()
-        self.assertEqual(notification.user, self.local_user)
-        self.assertEqual(notification.notification_type, 'FOLLOW_REQUEST')
-
-        # the request should exist
-        request = models.UserFollowRequest.objects.get()
-        self.assertEqual(request.user_subject, self.remote_user)
-        self.assertEqual(request.user_object, self.local_user)
-
-        # the follow relationship should not exist
-        follow = models.UserFollows.objects.all()
-        self.assertEqual(list(follow), [])
-
-
-    def test_handle_unfollow(self):
-        ''' remove a relationship '''
-        activity = {
-            "type": "Undo",
-            "@context": "https://www.w3.org/ns/activitystreams",
-            "object": {
-                "id": "https://example.com/users/rat/follows/123",
-                "type": "Follow",
-                "actor": "https://example.com/users/rat",
-                "object": "https://example.com/user/mouse"
-            }
-        }
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
-            models.UserFollows.objects.create(
-                user_subject=self.remote_user, user_object=self.local_user)
-        self.assertEqual(self.remote_user, self.local_user.followers.first())
-
-        incoming.handle_unfollow(activity)
-        self.assertIsNone(self.local_user.followers.first())
-
-
-    def test_handle_follow_accept(self):
-        ''' a remote user approved a follow request from local '''
-        activity = {
-            "@context": "https://www.w3.org/ns/activitystreams",
-            "id": "https://example.com/users/rat/follows/123#accepts",
-            "type": "Accept",
-            "actor": "https://example.com/users/rat",
-            "object": {
-                "id": "https://example.com/users/rat/follows/123",
-                "type": "Follow",
-                "actor": "https://example.com/user/mouse",
-                "object": "https://example.com/users/rat"
-            }
-        }
-
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
-            models.UserFollowRequest.objects.create(
-                user_subject=self.local_user,
-                user_object=self.remote_user
-            )
-        self.assertEqual(models.UserFollowRequest.objects.count(), 1)
-
-        incoming.handle_follow_accept(activity)
-
-        # request should be deleted
-        self.assertEqual(models.UserFollowRequest.objects.count(), 0)
-
-        # relationship should be created
-        follows = self.remote_user.followers
-        self.assertEqual(follows.count(), 1)
-        self.assertEqual(follows.first(), self.local_user)
-
-
-    def test_handle_follow_reject(self):
-        ''' turn down a follow request '''
-        activity = {
-            "@context": "https://www.w3.org/ns/activitystreams",
-            "id": "https://example.com/users/rat/follows/123#accepts",
-            "type": "Reject",
-            "actor": "https://example.com/users/rat",
-            "object": {
-                "id": "https://example.com/users/rat/follows/123",
-                "type": "Follow",
-                "actor": "https://example.com/user/mouse",
-                "object": "https://example.com/users/rat"
-            }
-        }
-
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
-            models.UserFollowRequest.objects.create(
-                user_subject=self.local_user,
-                user_object=self.remote_user
-            )
-        self.assertEqual(models.UserFollowRequest.objects.count(), 1)
-
-        incoming.handle_follow_reject(activity)
-
-        # request should be deleted
-        self.assertEqual(models.UserFollowRequest.objects.count(), 0)
-
-        # relationship should be created
-        follows = self.remote_user.followers
-        self.assertEqual(follows.count(), 0)
-
-
-    def test_handle_update_list(self):
-        ''' a new list '''
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
-            book_list = models.List.objects.create(
-                name='hi', remote_id='https://example.com/list/22',
-                user=self.local_user)
-        activity = {
-            'object': {
-                "id": "https://example.com/list/22",
-                "type": "BookList",
-                "totalItems": 1,
-                "first": "https://example.com/list/22?page=1",
-                "last": "https://example.com/list/22?page=1",
-                "name": "Test List",
-                "owner": "https://example.com/user/mouse",
-                "to": [
-                    "https://www.w3.org/ns/activitystreams#Public"
-                ],
-                "cc": [
-                    "https://example.com/user/mouse/followers"
-                ],
-                "summary": "summary text",
-                "curation": "curated",
-                "@context": "https://www.w3.org/ns/activitystreams"
-            }
-        }
-        incoming.handle_update_list(activity)
-        book_list.refresh_from_db()
-        self.assertEqual(book_list.name, 'Test List')
-        self.assertEqual(book_list.curation, 'curated')
-        self.assertEqual(book_list.description, 'summary text')
-        self.assertEqual(book_list.remote_id, 'https://example.com/list/22')
-
-
-    def test_handle_delete_status(self):
-        ''' remove a status '''
-        self.status.user = self.remote_user
-        self.status.save(broadcast=False)
-
-        self.assertFalse(self.status.deleted)
-        activity = {
-            'type': 'Delete',
-            'id': '%s/activity' % self.status.remote_id,
-            'actor': self.remote_user.remote_id,
-            'object': {'id': self.status.remote_id},
-        }
-        incoming.handle_delete_status(activity)
-        # deletion doens't remove the status, it turns it into a tombstone
-        status = models.Status.objects.get()
-        self.assertTrue(status.deleted)
-        self.assertIsInstance(status.deleted_date, datetime)
-
-
-    def test_handle_delete_status_notifications(self):
-        ''' remove a status with related notifications '''
-        self.status.user = self.remote_user
-        self.status.save(broadcast=False)
-        models.Notification.objects.create(
-            related_status=self.status,
-            user=self.local_user,
-            notification_type='MENTION'
-        )
-        # this one is innocent, don't delete it
-        notif = models.Notification.objects.create(
-            user=self.local_user,
-            notification_type='MENTION'
-        )
-        self.assertFalse(self.status.deleted)
-        self.assertEqual(models.Notification.objects.count(), 2)
-        activity = {
-            'type': 'Delete',
-            'id': '%s/activity' % self.status.remote_id,
-            'actor': self.remote_user.remote_id,
-            'object': {'id': self.status.remote_id},
-        }
-        incoming.handle_delete_status(activity)
-        # deletion doens't remove the status, it turns it into a tombstone
-        status = models.Status.objects.get()
-        self.assertTrue(status.deleted)
-        self.assertIsInstance(status.deleted_date, datetime)
-
-        # notifications should be truly deleted
-        self.assertEqual(models.Notification.objects.count(), 1)
-        self.assertEqual(models.Notification.objects.get(), notif)
-
-
-    def test_handle_favorite(self):
-        ''' fav a status '''
-        activity = {
-            '@context': 'https://www.w3.org/ns/activitystreams',
-            'id': 'https://example.com/fav/1',
-            'actor': 'https://example.com/users/rat',
-            'published': 'Mon, 25 May 2020 19:31:20 GMT',
-            'object': 'https://example.com/status/1',
-        }
-
-        incoming.handle_favorite(activity)
-
-        fav = models.Favorite.objects.get(remote_id='https://example.com/fav/1')
-        self.assertEqual(fav.status, self.status)
-        self.assertEqual(fav.remote_id, 'https://example.com/fav/1')
-        self.assertEqual(fav.user, self.remote_user)
-
-    def test_handle_unfavorite(self):
-        ''' fav a status '''
-        activity = {
-            'id': 'https://example.com/fav/1#undo',
-            'type': 'Undo',
-            'object': {
-                '@context': 'https://www.w3.org/ns/activitystreams',
-                'id': 'https://example.com/fav/1',
-                'actor': 'https://example.com/users/rat',
-                'published': 'Mon, 25 May 2020 19:31:20 GMT',
-                'object': 'https://example.com/fav/1',
-            }
-        }
-        models.Favorite.objects.create(
-            status=self.status,
-            user=self.remote_user,
-            remote_id='https://example.com/fav/1')
-        self.assertEqual(models.Favorite.objects.count(), 1)
-
-        incoming.handle_unfavorite(activity)
-        self.assertEqual(models.Favorite.objects.count(), 0)
-
-
-    def test_handle_boost(self):
-        ''' boost a status '''
-        self.assertEqual(models.Notification.objects.count(), 0)
-        activity = {
-            'type': 'Announce',
-            'id': '%s/boost' % self.status.remote_id,
-            'actor': self.remote_user.remote_id,
-            'object': self.status.to_activity(),
-        }
-        with patch('bookwyrm.models.status.Status.ignore_activity') \
-                as discarder:
-            discarder.return_value = False
-            incoming.handle_boost(activity)
-        boost = models.Boost.objects.get()
-        self.assertEqual(boost.boosted_status, self.status)
-        notification = models.Notification.objects.get()
-        self.assertEqual(notification.user, self.local_user)
-        self.assertEqual(notification.related_status, self.status)
-
-
-    @responses.activate
-    def test_handle_discarded_boost(self):
-        ''' test a boost of a mastodon status that will be discarded '''
-        activity = {
-            'type': 'Announce',
-            'id': 'http://www.faraway.com/boost/12',
-            'actor': self.remote_user.remote_id,
-            'object': self.status.to_activity(),
-        }
-        responses.add(
-            responses.GET,
-            'http://www.faraway.com/boost/12',
-            json={'id': 'http://www.faraway.com/boost/12'},
-            status=200)
-        incoming.handle_boost(activity)
-        self.assertEqual(models.Boost.objects.count(), 0)
-
-
-    def test_handle_unboost(self):
-        ''' undo a boost '''
-        activity = {
-            'type': 'Undo',
-            'object': {
-                'type': 'Announce',
-                'id': '%s/boost' % self.status.remote_id,
-                'actor': self.local_user.remote_id,
-                'object': self.status.to_activity(),
-            }
-        }
-        models.Boost.objects.create(
-            boosted_status=self.status, user=self.remote_user)
-        incoming.handle_unboost(activity)
-
-
-    def test_handle_add_book(self):
-        ''' shelving a book '''
-        book = models.Edition.objects.create(
-            title='Test', remote_id='https://bookwyrm.social/book/37292')
-        shelf = models.Shelf.objects.create(
-            user=self.remote_user, name='Test Shelf')
-        shelf.remote_id = 'https://bookwyrm.social/user/mouse/shelf/to-read'
-        shelf.save()
-
-        activity = {
-            "id": "https://bookwyrm.social/shelfbook/6189#add",
-            "type": "Add",
-            "actor": "https://example.com/users/rat",
-            "object": "https://bookwyrm.social/book/37292",
-            "target": "https://bookwyrm.social/user/mouse/shelf/to-read",
-            "@context": "https://www.w3.org/ns/activitystreams"
-        }
-        incoming.handle_add(activity)
-        self.assertEqual(shelf.books.first(), book)
-
-
-    def test_handle_update_user(self):
-        ''' update an existing user '''
-        # we only do this with remote users
-        self.local_user.local = False
-        self.local_user.save()
-
-        datafile = pathlib.Path(__file__).parent.joinpath(
-            'data/ap_user.json')
-        userdata = json.loads(datafile.read_bytes())
-        del userdata['icon']
-        self.assertIsNone(self.local_user.name)
-        incoming.handle_update_user({'object': userdata})
-        user = models.User.objects.get(id=self.local_user.id)
-        self.assertEqual(user.name, 'MOUSE?? MOUSE!!')
-        self.assertEqual(user.username, 'mouse@example.com')
-        self.assertEqual(user.localname, 'mouse')
-
-
-    def test_handle_update_edition(self):
-        ''' update an existing edition '''
-        datafile = pathlib.Path(__file__).parent.joinpath(
-            'data/bw_edition.json')
-        bookdata = json.loads(datafile.read_bytes())
-
-        models.Work.objects.create(
-            title='Test Work', remote_id='https://bookwyrm.social/book/5988')
-        book = models.Edition.objects.create(
-            title='Test Book', remote_id='https://bookwyrm.social/book/5989')
-
-        del bookdata['authors']
-        self.assertEqual(book.title, 'Test Book')
-
-        with patch(
-                'bookwyrm.activitypub.base_activity.set_related_field.delay'):
-            incoming.handle_update_edition({'object': bookdata})
-        book = models.Edition.objects.get(id=book.id)
-        self.assertEqual(book.title, 'Piranesi')
-
-
-    def test_handle_update_work(self):
-        ''' update an existing edition '''
-        datafile = pathlib.Path(__file__).parent.joinpath(
-            'data/bw_work.json')
-        bookdata = json.loads(datafile.read_bytes())
-
-        book = models.Work.objects.create(
-            title='Test Book', remote_id='https://bookwyrm.social/book/5988')
-
-        del bookdata['authors']
-        self.assertEqual(book.title, 'Test Book')
-        with patch(
-                'bookwyrm.activitypub.base_activity.set_related_field.delay'):
-            incoming.handle_update_work({'object': bookdata})
-        book = models.Work.objects.get(id=book.id)
-        self.assertEqual(book.title, 'Piranesi')
-
-
-    def test_handle_blocks(self):
-        ''' create a "block" database entry from an activity '''
-        self.local_user.followers.add(self.remote_user)
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
-            models.UserFollowRequest.objects.create(
-                user_subject=self.local_user,
-                user_object=self.remote_user)
-        self.assertTrue(models.UserFollows.objects.exists())
-        self.assertTrue(models.UserFollowRequest.objects.exists())
-
-        activity = {
-            "@context": "https://www.w3.org/ns/activitystreams",
-            "id": "https://example.com/9e1f41ac-9ddd-4159",
-            "type": "Block",
-            "actor": "https://example.com/users/rat",
-            "object": "https://example.com/user/mouse"
-        }
-
-        incoming.handle_block(activity)
-        block = models.UserBlocks.objects.get()
-        self.assertEqual(block.user_subject, self.remote_user)
-        self.assertEqual(block.user_object, self.local_user)
-        self.assertEqual(
-            block.remote_id, 'https://example.com/9e1f41ac-9ddd-4159')
-
-        self.assertFalse(models.UserFollows.objects.exists())
-        self.assertFalse(models.UserFollowRequest.objects.exists())
-
-
-    def test_handle_unblock(self):
-        ''' unblock a user '''
-        self.remote_user.blocks.add(self.local_user)
-
-        block = models.UserBlocks.objects.get()
-        block.remote_id = 'https://example.com/9e1f41ac-9ddd-4159'
-        block.save()
-
-        self.assertEqual(block.user_subject, self.remote_user)
-        self.assertEqual(block.user_object, self.local_user)
-        activity = {'type': 'Undo', 'object': {
-            "@context": "https://www.w3.org/ns/activitystreams",
-            "id": "https://example.com/9e1f41ac-9ddd-4159",
-            "type": "Block",
-            "actor": "https://example.com/users/rat",
-            "object": "https://example.com/user/mouse"
-        }}
-        incoming.handle_unblock(activity)
-        self.assertFalse(models.UserBlocks.objects.exists())
diff --git a/bookwyrm/tests/views/test_follow.py b/bookwyrm/tests/views/test_follow.py
index 943ffcf8..9a157659 100644
--- a/bookwyrm/tests/views/test_follow.py
+++ b/bookwyrm/tests/views/test_follow.py
@@ -105,6 +105,8 @@ class BookViews(TestCase):
         request.user = self.local_user
         self.remote_user.followers.add(self.local_user)
         self.assertEqual(self.remote_user.followers.count(), 1)
+        # need to see if this ACTUALLY broadcasts
+        raise ValueError()
         with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             views.unfollow(request)
 
diff --git a/bookwyrm/tests/views/test_inbox.py b/bookwyrm/tests/views/test_inbox.py
index 784f2127..9ca7198e 100644
--- a/bookwyrm/tests/views/test_inbox.py
+++ b/bookwyrm/tests/views/test_inbox.py
@@ -1,13 +1,17 @@
 ''' tests incoming activities'''
+from datetime import datetime
 import json
 import pathlib
 from unittest.mock import patch
 
 from django.http import HttpResponseNotAllowed, HttpResponseNotFound
 from django.test import TestCase, Client
+import responses
 
 from bookwyrm import models, views
 
+
+#pylint: disable=too-many-public-methods
 class Inbox(TestCase):
     ''' readthrough tests '''
     def setUp(self):
@@ -230,3 +234,455 @@ class Inbox(TestCase):
         self.assertEqual(book_list.curation, 'curated')
         self.assertEqual(book_list.description, 'summary text')
         self.assertEqual(book_list.remote_id, 'https://example.com/list/22')
+
+
+    def test_handle_follow(self):
+        ''' remote user wants to follow local user '''
+        activity = {
+            "@context": "https://www.w3.org/ns/activitystreams",
+            "id": "https://example.com/users/rat/follows/123",
+            "type": "Follow",
+            "actor": "https://example.com/users/rat",
+            "object": "https://example.com/user/mouse"
+        }
+
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            views.inbox.activity_task(activity)
+
+        # notification created
+        notification = models.Notification.objects.get()
+        self.assertEqual(notification.user, self.local_user)
+        self.assertEqual(notification.notification_type, 'FOLLOW')
+
+        # the request should have been deleted
+        requests = models.UserFollowRequest.objects.all()
+        self.assertEqual(list(requests), [])
+
+        # the follow relationship should exist
+        follow = models.UserFollows.objects.get(user_object=self.local_user)
+        self.assertEqual(follow.user_subject, self.remote_user)
+
+
+    def test_handle_follow_manually_approved(self):
+        ''' needs approval before following '''
+        activity = {
+            "@context": "https://www.w3.org/ns/activitystreams",
+            "id": "https://example.com/users/rat/follows/123",
+            "type": "Follow",
+            "actor": "https://example.com/users/rat",
+            "object": "https://example.com/user/mouse"
+        }
+
+        self.local_user.manually_approves_followers = True
+        self.local_user.save(broadcast=False)
+
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            views.inbox.activity_task(activity)
+
+        # notification created
+        notification = models.Notification.objects.get()
+        self.assertEqual(notification.user, self.local_user)
+        self.assertEqual(notification.notification_type, 'FOLLOW_REQUEST')
+
+        # the request should exist
+        request = models.UserFollowRequest.objects.get()
+        self.assertEqual(request.user_subject, self.remote_user)
+        self.assertEqual(request.user_object, self.local_user)
+
+        # the follow relationship should not exist
+        follow = models.UserFollows.objects.all()
+        self.assertEqual(list(follow), [])
+
+
+    def test_handle_unfollow(self):
+        ''' remove a relationship '''
+        activity = {
+            "type": "Undo",
+            "@context": "https://www.w3.org/ns/activitystreams",
+            "object": {
+                "id": "https://example.com/users/rat/follows/123",
+                "type": "Follow",
+                "actor": "https://example.com/users/rat",
+                "object": "https://example.com/user/mouse"
+            }
+        }
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.UserFollows.objects.create(
+                user_subject=self.remote_user, user_object=self.local_user)
+        self.assertEqual(self.remote_user, self.local_user.followers.first())
+
+        views.inbox.activity_task(activity)
+        self.assertIsNone(self.local_user.followers.first())
+
+
+    def test_handle_follow_accept(self):
+        ''' a remote user approved a follow request from local '''
+        activity = {
+            "@context": "https://www.w3.org/ns/activitystreams",
+            "id": "https://example.com/users/rat/follows/123#accepts",
+            "type": "Accept",
+            "actor": "https://example.com/users/rat",
+            "object": {
+                "id": "https://example.com/users/rat/follows/123",
+                "type": "Follow",
+                "actor": "https://example.com/user/mouse",
+                "object": "https://example.com/users/rat"
+            }
+        }
+
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.UserFollowRequest.objects.create(
+                user_subject=self.local_user,
+                user_object=self.remote_user
+            )
+        self.assertEqual(models.UserFollowRequest.objects.count(), 1)
+
+        views.inbox.activity_task(activity)
+
+        # request should be deleted
+        self.assertEqual(models.UserFollowRequest.objects.count(), 0)
+
+        # relationship should be created
+        follows = self.remote_user.followers
+        self.assertEqual(follows.count(), 1)
+        self.assertEqual(follows.first(), self.local_user)
+
+
+    def test_handle_follow_reject(self):
+        ''' turn down a follow request '''
+        activity = {
+            "@context": "https://www.w3.org/ns/activitystreams",
+            "id": "https://example.com/users/rat/follows/123#accepts",
+            "type": "Reject",
+            "actor": "https://example.com/users/rat",
+            "object": {
+                "id": "https://example.com/users/rat/follows/123",
+                "type": "Follow",
+                "actor": "https://example.com/user/mouse",
+                "object": "https://example.com/users/rat"
+            }
+        }
+
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.UserFollowRequest.objects.create(
+                user_subject=self.local_user,
+                user_object=self.remote_user
+            )
+        self.assertEqual(models.UserFollowRequest.objects.count(), 1)
+
+        views.inbox.activity_task(activity)
+
+        # request should be deleted
+        self.assertEqual(models.UserFollowRequest.objects.count(), 0)
+
+        # relationship should be created
+        follows = self.remote_user.followers
+        self.assertEqual(follows.count(), 0)
+
+
+    def test_handle_update_list(self):
+        ''' a new list '''
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            book_list = models.List.objects.create(
+                name='hi', remote_id='https://example.com/list/22',
+                user=self.local_user)
+        activity = {
+            'object': {
+                "id": "https://example.com/list/22",
+                "type": "BookList",
+                "totalItems": 1,
+                "first": "https://example.com/list/22?page=1",
+                "last": "https://example.com/list/22?page=1",
+                "name": "Test List",
+                "owner": "https://example.com/user/mouse",
+                "to": [
+                    "https://www.w3.org/ns/activitystreams#Public"
+                ],
+                "cc": [
+                    "https://example.com/user/mouse/followers"
+                ],
+                "summary": "summary text",
+                "curation": "curated",
+                "@context": "https://www.w3.org/ns/activitystreams"
+            }
+        }
+        views.inbox.activity_task(activity)
+        book_list.refresh_from_db()
+        self.assertEqual(book_list.name, 'Test List')
+        self.assertEqual(book_list.curation, 'curated')
+        self.assertEqual(book_list.description, 'summary text')
+        self.assertEqual(book_list.remote_id, 'https://example.com/list/22')
+
+
+    def test_handle_delete_status(self):
+        ''' remove a status '''
+        self.status.user = self.remote_user
+        self.status.save(broadcast=False)
+
+        self.assertFalse(self.status.deleted)
+        activity = {
+            'type': 'Delete',
+            'id': '%s/activity' % self.status.remote_id,
+            'actor': self.remote_user.remote_id,
+            'object': {'id': self.status.remote_id},
+        }
+        views.inbox.activity_task(activity)
+        # deletion doens't remove the status, it turns it into a tombstone
+        status = models.Status.objects.get()
+        self.assertTrue(status.deleted)
+        self.assertIsInstance(status.deleted_date, datetime)
+
+
+    def test_handle_delete_status_notifications(self):
+        ''' remove a status with related notifications '''
+        self.status.user = self.remote_user
+        self.status.save(broadcast=False)
+        models.Notification.objects.create(
+            related_status=self.status,
+            user=self.local_user,
+            notification_type='MENTION'
+        )
+        # this one is innocent, don't delete it
+        notif = models.Notification.objects.create(
+            user=self.local_user,
+            notification_type='MENTION'
+        )
+        self.assertFalse(self.status.deleted)
+        self.assertEqual(models.Notification.objects.count(), 2)
+        activity = {
+            'type': 'Delete',
+            'id': '%s/activity' % self.status.remote_id,
+            'actor': self.remote_user.remote_id,
+            'object': {'id': self.status.remote_id},
+        }
+        views.inbox.activity_task(activity)
+        # deletion doens't remove the status, it turns it into a tombstone
+        status = models.Status.objects.get()
+        self.assertTrue(status.deleted)
+        self.assertIsInstance(status.deleted_date, datetime)
+
+        # notifications should be truly deleted
+        self.assertEqual(models.Notification.objects.count(), 1)
+        self.assertEqual(models.Notification.objects.get(), notif)
+
+
+    def test_handle_favorite(self):
+        ''' fav a status '''
+        activity = {
+            '@context': 'https://www.w3.org/ns/activitystreams',
+            'id': 'https://example.com/fav/1',
+            'actor': 'https://example.com/users/rat',
+            'published': 'Mon, 25 May 2020 19:31:20 GMT',
+            'object': 'https://example.com/status/1',
+        }
+
+        views.inbox.activity_task(activity)
+
+        fav = models.Favorite.objects.get(remote_id='https://example.com/fav/1')
+        self.assertEqual(fav.status, self.status)
+        self.assertEqual(fav.remote_id, 'https://example.com/fav/1')
+        self.assertEqual(fav.user, self.remote_user)
+
+    def test_handle_unfavorite(self):
+        ''' fav a status '''
+        activity = {
+            'id': 'https://example.com/fav/1#undo',
+            'type': 'Undo',
+            'object': {
+                '@context': 'https://www.w3.org/ns/activitystreams',
+                'id': 'https://example.com/fav/1',
+                'actor': 'https://example.com/users/rat',
+                'published': 'Mon, 25 May 2020 19:31:20 GMT',
+                'object': 'https://example.com/fav/1',
+            }
+        }
+        models.Favorite.objects.create(
+            status=self.status,
+            user=self.remote_user,
+            remote_id='https://example.com/fav/1')
+        self.assertEqual(models.Favorite.objects.count(), 1)
+
+        views.inbox.activity_task(activity)
+        self.assertEqual(models.Favorite.objects.count(), 0)
+
+
+    def test_handle_boost(self):
+        ''' boost a status '''
+        self.assertEqual(models.Notification.objects.count(), 0)
+        activity = {
+            'type': 'Announce',
+            'id': '%s/boost' % self.status.remote_id,
+            'actor': self.remote_user.remote_id,
+            'object': self.status.to_activity(),
+        }
+        with patch('bookwyrm.models.status.Status.ignore_activity') \
+                as discarder:
+            discarder.return_value = False
+            views.inbox.activity_task(activity)
+        boost = models.Boost.objects.get()
+        self.assertEqual(boost.boosted_status, self.status)
+        notification = models.Notification.objects.get()
+        self.assertEqual(notification.user, self.local_user)
+        self.assertEqual(notification.related_status, self.status)
+
+
+    @responses.activate
+    def test_handle_discarded_boost(self):
+        ''' test a boost of a mastodon status that will be discarded '''
+        activity = {
+            'type': 'Announce',
+            'id': 'http://www.faraway.com/boost/12',
+            'actor': self.remote_user.remote_id,
+            'object': self.status.to_activity(),
+        }
+        responses.add(
+            responses.GET,
+            'http://www.faraway.com/boost/12',
+            json={'id': 'http://www.faraway.com/boost/12'},
+            status=200)
+        views.inbox.activity_task(activity)
+        self.assertEqual(models.Boost.objects.count(), 0)
+
+
+    def test_handle_unboost(self):
+        ''' undo a boost '''
+        activity = {
+            'type': 'Undo',
+            'object': {
+                'type': 'Announce',
+                'id': '%s/boost' % self.status.remote_id,
+                'actor': self.local_user.remote_id,
+                'object': self.status.to_activity(),
+            }
+        }
+        models.Boost.objects.create(
+            boosted_status=self.status, user=self.remote_user)
+        views.inbox.activity_task(activity)
+
+
+    def test_handle_add_book(self):
+        ''' shelving a book '''
+        book = models.Edition.objects.create(
+            title='Test', remote_id='https://bookwyrm.social/book/37292')
+        shelf = models.Shelf.objects.create(
+            user=self.remote_user, name='Test Shelf')
+        shelf.remote_id = 'https://bookwyrm.social/user/mouse/shelf/to-read'
+        shelf.save()
+
+        activity = {
+            "id": "https://bookwyrm.social/shelfbook/6189#add",
+            "type": "Add",
+            "actor": "https://example.com/users/rat",
+            "object": "https://bookwyrm.social/book/37292",
+            "target": "https://bookwyrm.social/user/mouse/shelf/to-read",
+            "@context": "https://www.w3.org/ns/activitystreams"
+        }
+        views.inbox.activity_task(activity)
+        self.assertEqual(shelf.books.first(), book)
+
+
+    def test_handle_update_user(self):
+        ''' update an existing user '''
+        # we only do this with remote users
+        self.local_user.local = False
+        self.local_user.save()
+
+        datafile = pathlib.Path(__file__).parent.joinpath(
+            'data/ap_user.json')
+        userdata = json.loads(datafile.read_bytes())
+        del userdata['icon']
+        self.assertIsNone(self.local_user.name)
+        views.inbox.activity_task({'object': userdata})
+        user = models.User.objects.get(id=self.local_user.id)
+        self.assertEqual(user.name, 'MOUSE?? MOUSE!!')
+        self.assertEqual(user.username, 'mouse@example.com')
+        self.assertEqual(user.localname, 'mouse')
+
+
+    def test_handle_update_edition(self):
+        ''' update an existing edition '''
+        datafile = pathlib.Path(__file__).parent.joinpath(
+            'data/bw_edition.json')
+        bookdata = json.loads(datafile.read_bytes())
+
+        models.Work.objects.create(
+            title='Test Work', remote_id='https://bookwyrm.social/book/5988')
+        book = models.Edition.objects.create(
+            title='Test Book', remote_id='https://bookwyrm.social/book/5989')
+
+        del bookdata['authors']
+        self.assertEqual(book.title, 'Test Book')
+
+        with patch(
+                'bookwyrm.activitypub.base_activity.set_related_field.delay'):
+            views.inbox.activity_task({'object': bookdata})
+        book = models.Edition.objects.get(id=book.id)
+        self.assertEqual(book.title, 'Piranesi')
+
+
+    def test_handle_update_work(self):
+        ''' update an existing edition '''
+        datafile = pathlib.Path(__file__).parent.joinpath(
+            'data/bw_work.json')
+        bookdata = json.loads(datafile.read_bytes())
+
+        book = models.Work.objects.create(
+            title='Test Book', remote_id='https://bookwyrm.social/book/5988')
+
+        del bookdata['authors']
+        self.assertEqual(book.title, 'Test Book')
+        with patch(
+                'bookwyrm.activitypub.base_activity.set_related_field.delay'):
+            views.inbox.activity_task({'object': bookdata})
+        book = models.Work.objects.get(id=book.id)
+        self.assertEqual(book.title, 'Piranesi')
+
+
+    def test_handle_blocks(self):
+        ''' create a "block" database entry from an activity '''
+        self.local_user.followers.add(self.remote_user)
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.UserFollowRequest.objects.create(
+                user_subject=self.local_user,
+                user_object=self.remote_user)
+        self.assertTrue(models.UserFollows.objects.exists())
+        self.assertTrue(models.UserFollowRequest.objects.exists())
+
+        activity = {
+            "@context": "https://www.w3.org/ns/activitystreams",
+            "id": "https://example.com/9e1f41ac-9ddd-4159",
+            "type": "Block",
+            "actor": "https://example.com/users/rat",
+            "object": "https://example.com/user/mouse"
+        }
+
+        views.inbox.activity_task(activity)
+        block = models.UserBlocks.objects.get()
+        self.assertEqual(block.user_subject, self.remote_user)
+        self.assertEqual(block.user_object, self.local_user)
+        self.assertEqual(
+            block.remote_id, 'https://example.com/9e1f41ac-9ddd-4159')
+
+        self.assertFalse(models.UserFollows.objects.exists())
+        self.assertFalse(models.UserFollowRequest.objects.exists())
+
+
+    def test_handle_unblock(self):
+        ''' unblock a user '''
+        self.remote_user.blocks.add(self.local_user)
+
+        block = models.UserBlocks.objects.get()
+        block.remote_id = 'https://example.com/9e1f41ac-9ddd-4159'
+        block.save()
+
+        self.assertEqual(block.user_subject, self.remote_user)
+        self.assertEqual(block.user_object, self.local_user)
+        activity = {'type': 'Undo', 'object': {
+            "@context": "https://www.w3.org/ns/activitystreams",
+            "id": "https://example.com/9e1f41ac-9ddd-4159",
+            "type": "Block",
+            "actor": "https://example.com/users/rat",
+            "object": "https://example.com/user/mouse"
+        }}
+        views.inbox.activity_task(activity)
+        self.assertFalse(models.UserBlocks.objects.exists())
diff --git a/bookwyrm/views/follow.py b/bookwyrm/views/follow.py
index c59f2e6d..e95355e6 100644
--- a/bookwyrm/views/follow.py
+++ b/bookwyrm/views/follow.py
@@ -22,8 +22,6 @@ def follow(request):
         user_object=to_follow,
     )
 
-    if to_follow.local and not to_follow.manually_approves_followers:
-        rel.accept()
     return redirect(to_follow.local_path)
 
 

From 606d89d3bde0d909993723fc3e9d9934c2dd7619 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 15 Feb 2021 21:20:00 -0800
Subject: [PATCH 207/280] Fixes boost, recursive to_model calls

---
 bookwyrm/activitypub/__init__.py      |   2 +-
 bookwyrm/activitypub/base_activity.py |   7 +-
 bookwyrm/activitypub/verbs.py         |  34 +++
 bookwyrm/incoming.py                  | 318 --------------------------
 bookwyrm/models/status.py             |   2 +-
 bookwyrm/tests/views/test_inbox.py    |   9 +-
 bookwyrm/views/inbox.py               |   2 +-
 7 files changed, 47 insertions(+), 327 deletions(-)
 delete mode 100644 bookwyrm/incoming.py

diff --git a/bookwyrm/activitypub/__init__.py b/bookwyrm/activitypub/__init__.py
index ce4acd66..5303d1b2 100644
--- a/bookwyrm/activitypub/__init__.py
+++ b/bookwyrm/activitypub/__init__.py
@@ -8,7 +8,6 @@ from .base_activity import ActivitySerializerError, resolve_remote_id
 from .image import Image
 from .note import Note, GeneratedNote, Article, Comment, Review, Quotation
 from .note import Tombstone
-from .interaction import Boost, Like
 from .ordered_collection import OrderedCollection, OrderedCollectionPage
 from .ordered_collection import BookList, Shelf
 from .person import Person, PublicKey
@@ -17,6 +16,7 @@ from .book import Edition, Work, Author
 from .verbs import Create, Delete, Undo, Update
 from .verbs import Follow, Accept, Reject, Block
 from .verbs import Add, AddBook, AddListItem, Remove
+from .verbs import Announce, Like
 
 # this creates a list of all the Activity types that we can serialize,
 # so when an Activity comes in from outside, we can check if it's known
diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index 631ca2dd..c20ab3b8 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -95,9 +95,10 @@ class ActivityObject:
         if hasattr(model, 'ignore_activity') and model.ignore_activity(self):
             return instance
 
-        # check for an existing instance, if we're not updating a known obj
+        # check for an existing instance
         instance = instance or model.find_existing(self.serialize())
         if not instance and not allow_create:
+            # so that we don't create when we want to delete or update
             return None
         instance = instance or model()
 
@@ -197,7 +198,7 @@ def set_related_field(
                 getattr(model_field, 'activitypub_field'),
                 instance.remote_id
             )
-        item = activity.to_model(model)
+        item = activity.to_model()
 
         # if the related field isn't serialized (attachments on Status), then
         # we have to set it post-creation
@@ -228,4 +229,4 @@ def resolve_remote_id(model, remote_id, refresh=False, save=True):
 
     item = model.activity_serializer(**data)
     # if we're refreshing, "result" will be set and we'll update it
-    return item.to_model(model, instance=result, save=save)
+    return item.to_model(instance=result, save=save)
diff --git a/bookwyrm/activitypub/verbs.py b/bookwyrm/activitypub/verbs.py
index d781993e..30eef448 100644
--- a/bookwyrm/activitypub/verbs.py
+++ b/bookwyrm/activitypub/verbs.py
@@ -68,6 +68,10 @@ class Follow(Verb):
     object: str
     type: str = 'Follow'
 
+    def action(self):
+        ''' relationship save '''
+        self.to_model()
+
 
 @dataclass(init=False)
 class Block(Verb):
@@ -75,6 +79,10 @@ class Block(Verb):
     object: str
     type: str = 'Block'
 
+    def action(self):
+        ''' relationship save '''
+        self.to_model()
+
 
 @dataclass(init=False)
 class Accept(Verb):
@@ -107,6 +115,10 @@ class Add(Verb):
     object: ActivityObject
     type: str = 'Add'
 
+    def action(self):
+        ''' add obj to collection '''
+        self.to_model()
+
 
 @dataclass(init=False)
 class AddBook(Add):
@@ -133,3 +145,25 @@ class Remove(Verb):
         ''' find and remove the activity object '''
         obj = self.object.to_model(save=False, allow_create=False)
         obj.delete()
+
+
+@dataclass(init=False)
+class Like(Verb):
+    ''' a user faving an object '''
+    object: str
+    type: str = 'Like'
+
+    def action(self):
+        ''' like '''
+        self.to_model()
+
+
+@dataclass(init=False)
+class Announce(Verb):
+    ''' boosting a status '''
+    object: str
+    type: str = 'Announce'
+
+    def action(self):
+        ''' boost '''
+        self.to_model()
diff --git a/bookwyrm/incoming.py b/bookwyrm/incoming.py
deleted file mode 100644
index 7ddd893f..00000000
--- a/bookwyrm/incoming.py
+++ /dev/null
@@ -1,318 +0,0 @@
-''' handles all of the activity coming in to the server '''
-import json
-from urllib.parse import urldefrag
-
-import django.db.utils
-from django.http import HttpResponse
-from django.http import HttpResponseBadRequest, HttpResponseNotFound
-from django.views.decorators.csrf import csrf_exempt
-from django.views.decorators.http import require_POST
-import requests
-
-from bookwyrm import activitypub, models
-from bookwyrm import status as status_builder
-from bookwyrm.tasks import app
-from bookwyrm.signatures import Signature
-
-
-@csrf_exempt
-@require_POST
-def inbox(request, username):
-    ''' incoming activitypub events '''
-    try:
-        models.User.objects.get(localname=username)
-    except models.User.DoesNotExist:
-        return HttpResponseNotFound()
-
-    return shared_inbox(request)
-
-
-@csrf_exempt
-@require_POST
-def shared_inbox(request):
-    ''' incoming activitypub events '''
-    try:
-        resp = request.body
-        activity = json.loads(resp)
-        if isinstance(activity, str):
-            activity = json.loads(activity)
-        activity_object = activity['object']
-    except (json.decoder.JSONDecodeError, KeyError):
-        return HttpResponseBadRequest()
-
-    if not has_valid_signature(request, activity):
-        if activity['type'] == 'Delete':
-            # Pretend that unauth'd deletes succeed. Auth may be failing because
-            # the resource or owner of the resource might have been deleted.
-            return HttpResponse()
-        return HttpResponse(status=401)
-
-    # if this isn't a file ripe for refactor, I don't know what is.
-    handlers = {
-        'Follow': handle_follow,
-        'Accept': handle_follow_accept,
-        'Reject': handle_follow_reject,
-        'Block': handle_block,
-        'Delete': handle_delete_status,
-        'Like': handle_favorite,
-        'Announce': handle_boost,
-        'Add': {
-            'Edition': handle_add,
-        },
-        'Undo': {
-            'Follow': handle_unfollow,
-            'Like': handle_unfavorite,
-            'Announce': handle_unboost,
-            'Block': handle_unblock,
-        },
-        'Update': {
-            'Person': handle_update_user,
-            'Edition': handle_update_edition,
-            'Work': handle_update_work,
-            'BookList': handle_update_list,
-        },
-    }
-    activity_type = activity['type']
-
-    handler = handlers.get(activity_type, None)
-    if isinstance(handler, dict):
-        handler = handler.get(activity_object['type'], None)
-
-    if not handler:
-        return HttpResponseNotFound()
-
-    handler.delay(activity)
-    return HttpResponse()
-
-
-def has_valid_signature(request, activity):
-    ''' verify incoming signature '''
-    try:
-        signature = Signature.parse(request)
-
-        key_actor = urldefrag(signature.key_id).url
-        if key_actor != activity.get('actor'):
-            raise ValueError("Wrong actor created signature.")
-
-        remote_user = activitypub.resolve_remote_id(models.User, key_actor)
-        if not remote_user:
-            return False
-
-        try:
-            signature.verify(remote_user.key_pair.public_key, request)
-        except ValueError:
-            old_key = remote_user.key_pair.public_key
-            remote_user = activitypub.resolve_remote_id(
-                models.User, remote_user.remote_id, refresh=True
-            )
-            if remote_user.key_pair.public_key == old_key:
-                raise # Key unchanged.
-            signature.verify(remote_user.key_pair.public_key, request)
-    except (ValueError, requests.exceptions.HTTPError):
-        return False
-    return True
-
-
-@app.task
-def handle_follow(activity):
-    ''' someone wants to follow a local user '''
-    try:
-        relationship = activitypub.Follow(
-            **activity
-        ).to_model(models.UserFollowRequest)
-    except django.db.utils.IntegrityError as err:
-        if err.__cause__.diag.constraint_name != 'userfollowrequest_unique':
-            raise
-        relationship = models.UserFollowRequest.objects.get(
-            remote_id=activity['id']
-        )
-        # send the accept normally for a duplicate request
-
-    if not relationship.user_object.manually_approves_followers:
-        relationship.accept()
-
-
-@app.task
-def handle_unfollow(activity):
-    ''' unfollow a local user '''
-    obj = activity['object']
-    requester = activitypub.resolve_remote_id(models.User, obj['actor'])
-    to_unfollow = models.User.objects.get(remote_id=obj['object'])
-    # raises models.User.DoesNotExist
-
-    to_unfollow.followers.remove(requester)
-
-
-@app.task
-def handle_follow_accept(activity):
-    ''' hurray, someone remote accepted a follow request '''
-    # figure out who they want to follow
-    requester = models.User.objects.get(remote_id=activity['object']['actor'])
-    # figure out who they are
-    accepter = activitypub.resolve_remote_id(models.User, activity['actor'])
-
-    try:
-        models.UserFollowRequest.objects.get(
-            user_subject=requester,
-            user_object=accepter
-        ).accept()
-    except models.UserFollowRequest.DoesNotExist:
-        return
-
-
-@app.task
-def handle_follow_reject(activity):
-    ''' someone is rejecting a follow request '''
-    requester = models.User.objects.get(remote_id=activity['object']['actor'])
-    rejecter = activitypub.resolve_remote_id(models.User, activity['actor'])
-
-    try:
-        models.UserFollowRequest.objects.get(
-            user_subject=requester,
-            user_object=rejecter
-        ).reject()
-    except models.UserFollowRequest.DoesNotExist:
-        return
-
-@app.task
-def handle_block(activity):
-    ''' blocking a user '''
-    # create "block" databse entry
-    activitypub.Block(**activity).to_model(models.UserBlocks)
-    # the removing relationships is handled in post-save hook in model
-
-
-@app.task
-def handle_unblock(activity):
-    ''' undoing a block '''
-    try:
-        block_id = activity['object']['id']
-    except KeyError:
-        return
-    try:
-        block = models.UserBlocks.objects.get(remote_id=block_id)
-    except models.UserBlocks.DoesNotExist:
-        return
-    block.delete()
-
-
-@app.task
-def handle_update_list(activity):
-    ''' update a list '''
-    try:
-        book_list = models.List.objects.get(remote_id=activity['object']['id'])
-    except models.List.DoesNotExist:
-        book_list = None
-    activitypub.BookList(
-        **activity['object']).to_model(models.List, instance=book_list)
-
-
-
-@app.task
-def handle_delete_status(activity):
-    ''' remove a status '''
-    try:
-        status_id = activity['object']['id']
-    except TypeError:
-        # this isn't a great fix, because you hit this when mastadon
-        # is trying to delete a user.
-        return
-    try:
-        status = models.Status.objects.get(
-            remote_id=status_id
-        )
-    except models.Status.DoesNotExist:
-        return
-    models.Notification.objects.filter(related_status=status).all().delete()
-    status_builder.delete_status(status)
-
-
-@app.task
-def handle_favorite(activity):
-    ''' approval of your good good post '''
-    fav = activitypub.Like(**activity)
-    # we dont know this status, we don't care about this status
-    if not models.Status.objects.filter(remote_id=fav.object).exists():
-        return
-
-    fav = fav.to_model(models.Favorite)
-    if fav.user.local:
-        return
-
-
-@app.task
-def handle_unfavorite(activity):
-    ''' approval of your good good post '''
-    like = models.Favorite.objects.filter(
-        remote_id=activity['object']['id']
-    ).first()
-    if not like:
-        return
-    like.delete()
-
-
-@app.task
-def handle_boost(activity):
-    ''' someone gave us a boost! '''
-    try:
-        activitypub.Boost(**activity).to_model(models.Boost)
-    except activitypub.ActivitySerializerError:
-        # this probably just means we tried to boost an unknown status
-        return
-
-
-@app.task
-def handle_unboost(activity):
-    ''' someone gave us a boost! '''
-    boost = models.Boost.objects.filter(
-        remote_id=activity['object']['id']
-    ).first()
-    if boost:
-        boost.delete()
-
-
-@app.task
-def handle_add(activity):
-    ''' putting a book on a shelf '''
-    #this is janky as heck but I haven't thought of a better solution
-    try:
-        activitypub.AddBook(**activity).to_model(models.ShelfBook)
-        return
-    except activitypub.ActivitySerializerError:
-        pass
-    try:
-        activitypub.AddListItem(**activity).to_model(models.ListItem)
-        return
-    except activitypub.ActivitySerializerError:
-        pass
-    try:
-        activitypub.AddBook(**activity).to_model(models.UserTag)
-        return
-    except activitypub.ActivitySerializerError:
-        pass
-
-
-@app.task
-def handle_update_user(activity):
-    ''' receive an updated user Person activity object '''
-    try:
-        user = models.User.objects.get(remote_id=activity['object']['id'])
-    except models.User.DoesNotExist:
-        # who is this person? who cares
-        return
-    activitypub.Person(
-        **activity['object']
-    ).to_model(models.User, instance=user)
-    # model save() happens in the to_model function
-
-
-@app.task
-def handle_update_edition(activity):
-    ''' a remote instance changed a book (Document) '''
-    activitypub.Edition(**activity['object']).to_model(models.Edition)
-
-
-@app.task
-def handle_update_work(activity):
-    ''' a remote instance changed a book (Document) '''
-    activitypub.Work(**activity['object']).to_model(models.Work)
diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index 62effeb8..716c1592 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -266,7 +266,7 @@ class Boost(ActivityMixin, Status):
         related_name='boosters',
         activitypub_field='object',
     )
-    activity_serializer = activitypub.Boost
+    activity_serializer = activitypub.Announce
 
     def save(self, *args, **kwargs):
         ''' save and notify '''
diff --git a/bookwyrm/tests/views/test_inbox.py b/bookwyrm/tests/views/test_inbox.py
index 9ca7198e..92e5dace 100644
--- a/bookwyrm/tests/views/test_inbox.py
+++ b/bookwyrm/tests/views/test_inbox.py
@@ -573,12 +573,15 @@ class Inbox(TestCase):
             "id": "https://bookwyrm.social/shelfbook/6189#add",
             "type": "Add",
             "actor": "https://example.com/users/rat",
-            "object": "https://bookwyrm.social/book/37292",
+            "object": {
+                "type": "Edition",
+                "id": "https://bookwyrm.social/book/37292",
+            },
             "target": "https://bookwyrm.social/user/mouse/shelf/to-read",
             "@context": "https://www.w3.org/ns/activitystreams"
         }
-        views.inbox.activity_task(activity)
-        self.assertEqual(shelf.books.first(), book)
+        #views.inbox.activity_task(activity)
+        #self.assertEqual(shelf.books.first(), book)
 
 
     def test_handle_update_user(self):
diff --git a/bookwyrm/views/inbox.py b/bookwyrm/views/inbox.py
index 6e7b036b..58356e1c 100644
--- a/bookwyrm/views/inbox.py
+++ b/bookwyrm/views/inbox.py
@@ -56,7 +56,7 @@ def activity_task(activity_json):
     try:
         activity = activitypub.parse(activity_json)
     except activitypub.ActivitySerializerError:
-        return
+        raise#return
 
     # cool that worked, now we should do the action described by the type
     # (create, update, delete, etc)

From 08c1553e7141ce5afda44ada1113e5df18ddd842 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 15 Feb 2021 21:41:08 -0800
Subject: [PATCH 208/280] Fixes Favs

---
 bookwyrm/activitypub/interaction.py | 20 --------------------
 bookwyrm/activitypub/note.py        |  2 --
 bookwyrm/activitypub/verbs.py       |  1 +
 bookwyrm/models/fields.py           |  2 +-
 bookwyrm/models/user.py             |  2 +-
 bookwyrm/tests/views/test_inbox.py  |  6 ++++--
 6 files changed, 7 insertions(+), 26 deletions(-)
 delete mode 100644 bookwyrm/activitypub/interaction.py

diff --git a/bookwyrm/activitypub/interaction.py b/bookwyrm/activitypub/interaction.py
deleted file mode 100644
index 752b2fe3..00000000
--- a/bookwyrm/activitypub/interaction.py
+++ /dev/null
@@ -1,20 +0,0 @@
-''' boosting and liking posts '''
-from dataclasses import dataclass
-
-from .base_activity import ActivityObject
-
-
-@dataclass(init=False)
-class Like(ActivityObject):
-    ''' a user faving an object '''
-    actor: str
-    object: str
-    type: str = 'Like'
-
-
-@dataclass(init=False)
-class Boost(ActivityObject):
-    ''' boosting a status '''
-    actor: str
-    object: str
-    type: str = 'Announce'
diff --git a/bookwyrm/activitypub/note.py b/bookwyrm/activitypub/note.py
index 1e0bdcb7..5da2cced 100644
--- a/bookwyrm/activitypub/note.py
+++ b/bookwyrm/activitypub/note.py
@@ -8,8 +8,6 @@ from .image import Image
 @dataclass(init=False)
 class Tombstone(ActivityObject):
     ''' the placeholder for a deleted status '''
-    published: str
-    deleted: str
     type: str = 'Tombstone'
 
 
diff --git a/bookwyrm/activitypub/verbs.py b/bookwyrm/activitypub/verbs.py
index 30eef448..c3de73f3 100644
--- a/bookwyrm/activitypub/verbs.py
+++ b/bookwyrm/activitypub/verbs.py
@@ -5,6 +5,7 @@ from typing import List
 from .base_activity import ActivityObject, Signature
 from .book import Edition
 
+
 @dataclass(init=False)
 class Verb(ActivityObject):
     ''' generic fields for activities - maybe an unecessary level of
diff --git a/bookwyrm/models/fields.py b/bookwyrm/models/fields.py
index 55de1fab..880c7600 100644
--- a/bookwyrm/models/fields.py
+++ b/bookwyrm/models/fields.py
@@ -128,7 +128,7 @@ class ActivitypubRelatedFieldMixin(ActivitypubFieldMixin):
                 return related_model.find_existing(value)
             # this is an activitypub object, which we can deserialize
             activity_serializer = related_model.activity_serializer
-            return activity_serializer(**value).to_model(related_model)
+            return activity_serializer(**value).to_model()
         try:
             # make sure the value looks like a remote id
             validate_remote_id(value)
diff --git a/bookwyrm/models/user.py b/bookwyrm/models/user.py
index da717d2e..61d119a8 100644
--- a/bookwyrm/models/user.py
+++ b/bookwyrm/models/user.py
@@ -364,4 +364,4 @@ def get_remote_reviews(outbox):
     for activity in data['orderedItems']:
         if not activity['type'] == 'Review':
             continue
-        activitypub.Review(**activity).to_model(Review)
+        activitypub.Review(**activity).to_model()
diff --git a/bookwyrm/tests/views/test_inbox.py b/bookwyrm/tests/views/test_inbox.py
index 92e5dace..af513609 100644
--- a/bookwyrm/tests/views/test_inbox.py
+++ b/bookwyrm/tests/views/test_inbox.py
@@ -424,7 +424,7 @@ class Inbox(TestCase):
             'type': 'Delete',
             'id': '%s/activity' % self.status.remote_id,
             'actor': self.remote_user.remote_id,
-            'object': {'id': self.status.remote_id},
+            'object': {'id': self.status.remote_id, 'type': 'Tombstone'},
         }
         views.inbox.activity_task(activity)
         # deletion doens't remove the status, it turns it into a tombstone
@@ -453,7 +453,7 @@ class Inbox(TestCase):
             'type': 'Delete',
             'id': '%s/activity' % self.status.remote_id,
             'actor': self.remote_user.remote_id,
-            'object': {'id': self.status.remote_id},
+            'object': {'id': self.status.remote_id, 'type': 'Tombstone'},
         }
         views.inbox.activity_task(activity)
         # deletion doens't remove the status, it turns it into a tombstone
@@ -472,6 +472,7 @@ class Inbox(TestCase):
             '@context': 'https://www.w3.org/ns/activitystreams',
             'id': 'https://example.com/fav/1',
             'actor': 'https://example.com/users/rat',
+            'type': 'Like',
             'published': 'Mon, 25 May 2020 19:31:20 GMT',
             'object': 'https://example.com/status/1',
         }
@@ -492,6 +493,7 @@ class Inbox(TestCase):
                 '@context': 'https://www.w3.org/ns/activitystreams',
                 'id': 'https://example.com/fav/1',
                 'actor': 'https://example.com/users/rat',
+                'type': 'Like',
                 'published': 'Mon, 25 May 2020 19:31:20 GMT',
                 'object': 'https://example.com/fav/1',
             }

From b393df8cab781fcd35f8e5710af5c65bc41f5bc0 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 16 Feb 2021 09:35:00 -0800
Subject: [PATCH 209/280] Fixes deletion

---
 bookwyrm/activitypub/note.py       | 6 ++++++
 bookwyrm/models/status.py          | 6 ++++++
 bookwyrm/tests/views/test_inbox.py | 4 ++++
 3 files changed, 16 insertions(+)

diff --git a/bookwyrm/activitypub/note.py b/bookwyrm/activitypub/note.py
index 5da2cced..705d6eed 100644
--- a/bookwyrm/activitypub/note.py
+++ b/bookwyrm/activitypub/note.py
@@ -1,6 +1,7 @@
 ''' note serializer and children thereof '''
 from dataclasses import dataclass, field
 from typing import Dict, List
+from django.apps import apps
 
 from .base_activity import ActivityObject, Link
 from .image import Image
@@ -10,6 +11,11 @@ class Tombstone(ActivityObject):
     ''' the placeholder for a deleted status '''
     type: str = 'Tombstone'
 
+    def to_model(self, *args, **kwargs):
+        ''' this should never really get serialized, just searched for '''
+        model = apps.get_model('bookwyrm.Status')
+        return model.find_existing_by_remote_id(self.id)
+
 
 @dataclass(init=False)
 class Note(ActivityObject):
diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index 716c1592..029ca5a4 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -84,6 +84,12 @@ class Status(OrderedCollectionPageMixin, BookWyrmModel):
                 related_status=self,
             )
 
+    def delete(self, *args, **kwargs):
+        ''' "delete" a status '''
+        self.deleted = True
+        self.deleted_date = timezone.now()
+        self.save()
+
     @property
     def recipients(self):
         ''' tagged users who definitely need to get this status in broadcast '''
diff --git a/bookwyrm/tests/views/test_inbox.py b/bookwyrm/tests/views/test_inbox.py
index af513609..cfd0e8c0 100644
--- a/bookwyrm/tests/views/test_inbox.py
+++ b/bookwyrm/tests/views/test_inbox.py
@@ -422,6 +422,8 @@ class Inbox(TestCase):
         self.assertFalse(self.status.deleted)
         activity = {
             'type': 'Delete',
+            "to": ["https://www.w3.org/ns/activitystreams#Public"],
+            "cc": ["https://example.com/user/mouse/followers"],
             'id': '%s/activity' % self.status.remote_id,
             'actor': self.remote_user.remote_id,
             'object': {'id': self.status.remote_id, 'type': 'Tombstone'},
@@ -451,6 +453,8 @@ class Inbox(TestCase):
         self.assertEqual(models.Notification.objects.count(), 2)
         activity = {
             'type': 'Delete',
+            "to": ["https://www.w3.org/ns/activitystreams#Public"],
+            "cc": ["https://example.com/user/mouse/followers"],
             'id': '%s/activity' % self.status.remote_id,
             'actor': self.remote_user.remote_id,
             'object': {'id': self.status.remote_id, 'type': 'Tombstone'},

From 3f1b62eb98a1acce321f9a0b31e4ee006f48cd65 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 16 Feb 2021 11:04:13 -0800
Subject: [PATCH 210/280] Fixes Add activity

still janky
---
 bookwyrm/activitypub/base_activity.py | 51 +++++++++++++++++----------
 bookwyrm/activitypub/verbs.py         | 11 +++---
 bookwyrm/models/fields.py             | 13 ++++---
 bookwyrm/tests/views/test_inbox.py    | 12 ++++---
 4 files changed, 54 insertions(+), 33 deletions(-)

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index c20ab3b8..db6cdc94 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -80,17 +80,10 @@ class ActivityObject:
             setattr(self, field.name, value)
 
 
-    def to_model(self, instance=None, allow_create=True, save=True):
+    def to_model(self, model=None, instance=None, allow_create=True, save=True):
         ''' convert from an activity to a model instance '''
         # figure out the right model -- wish I had a better way for this
-        models = apps.get_models()
-        model = [m for m in models if hasattr(m, 'activity_serializer') and \
-            hasattr(m.activity_serializer, 'type') and \
-            m.activity_serializer.type == self.type]
-        if not len(model):
-            raise ActivitySerializerError(
-                'No model found for activity type "%s"' % self.type)
-        model = model[0]
+        model = model or get_model_from_type(self.type)
 
         if hasattr(model, 'ignore_activity') and model.ignore_activity(self):
             return instance
@@ -156,6 +149,14 @@ class ActivityObject:
     def serialize(self):
         ''' convert to dictionary with context attr '''
         data = self.__dict__
+        # recursively serialize
+        for (k, v) in data.items():
+            try:
+                is_subclass = issubclass(v, ActivityObject)
+            except TypeError:
+                is_subclass = False
+            if is_subclass:
+                data[k] = v.serialize()
         data = {k:v for (k, v) in data.items() if v is not None}
         data['@context'] = 'https://www.w3.org/ns/activitystreams'
         return data
@@ -207,11 +208,23 @@ def set_related_field(
             item.save()
 
 
-def resolve_remote_id(model, remote_id, refresh=False, save=True):
+def get_model_from_type(activity_type):
+    ''' given the activity, what type of model '''
+    models = apps.get_models()
+    model = [m for m in models if hasattr(m, 'activity_serializer') and \
+        hasattr(m.activity_serializer, 'type') and \
+        m.activity_serializer.type == activity_type]
+    if not len(model):
+        raise ActivitySerializerError(
+            'No model found for activity type "%s"' % activity_type)
+    return model[0]
+
+def resolve_remote_id(remote_id, model=None, refresh=False, save=True):
     ''' take a remote_id and return an instance, creating if necessary '''
-    result = model.find_existing_by_remote_id(remote_id)
-    if result and not refresh:
-        return result
+    if model:# a bonus check we can do if we already know the model
+        result = model.find_existing_by_remote_id(remote_id)
+        if result and not refresh:
+            return result
 
     # load the data and create the object
     try:
@@ -220,13 +233,15 @@ def resolve_remote_id(model, remote_id, refresh=False, save=True):
         raise ActivitySerializerError(
             'Could not connect to host for remote_id in %s model: %s' % \
                 (model.__name__, remote_id))
+    # determine the model implicitly, if not provided
+    if not model:
+        model = get_model_from_type(data.get('type'))
 
     # check for existing items with shared unique identifiers
-    if not result:
-        result = model.find_existing(data)
-        if result and not refresh:
-            return result
+    result = model.find_existing(data)
+    if result and not refresh:
+        return result
 
     item = model.activity_serializer(**data)
     # if we're refreshing, "result" will be set and we'll update it
-    return item.to_model(instance=result, save=save)
+    return item.to_model(model=model, instance=result, save=save)
diff --git a/bookwyrm/activitypub/verbs.py b/bookwyrm/activitypub/verbs.py
index c3de73f3..300e1bf3 100644
--- a/bookwyrm/activitypub/verbs.py
+++ b/bookwyrm/activitypub/verbs.py
@@ -2,7 +2,7 @@
 from dataclasses import dataclass
 from typing import List
 
-from .base_activity import ActivityObject, Signature
+from .base_activity import ActivityObject, Signature, resolve_remote_id
 from .book import Edition
 
 
@@ -113,19 +113,22 @@ class Reject(Verb):
 class Add(Verb):
     '''Add activity '''
     target: str
-    object: ActivityObject
+    object: Edition
     type: str = 'Add'
 
     def action(self):
         ''' add obj to collection '''
-        self.to_model()
+        target = resolve_remote_id(self.target, refresh=False)
+        # we want to related field that isn't the book, this is janky af sorry
+        model = [t for t in type(target)._meta.related_objects \
+                if t.name != 'edition'][0].related_model
+        self.to_model(model=model)
 
 
 @dataclass(init=False)
 class AddBook(Add):
     '''Add activity that's aware of the book obj '''
     object: Edition
-    type: str = 'Add'
 
 
 @dataclass(init=False)
diff --git a/bookwyrm/models/fields.py b/bookwyrm/models/fields.py
index 880c7600..f2465fb6 100644
--- a/bookwyrm/models/fields.py
+++ b/bookwyrm/models/fields.py
@@ -122,13 +122,12 @@ class ActivitypubRelatedFieldMixin(ActivitypubFieldMixin):
             return None
 
         related_model = self.related_model
-        if isinstance(value, dict) and value.get('id'):
+        if hasattr(value, 'id') and value.id:
             if not self.load_remote:
                 # only look in the local database
-                return related_model.find_existing(value)
+                return related_model.find_existing(value.serialize())
             # this is an activitypub object, which we can deserialize
-            activity_serializer = related_model.activity_serializer
-            return activity_serializer(**value).to_model()
+            return value.to_model(model=related_model)
         try:
             # make sure the value looks like a remote id
             validate_remote_id(value)
@@ -139,7 +138,7 @@ class ActivitypubRelatedFieldMixin(ActivitypubFieldMixin):
         if not self.load_remote:
             # only look in the local database
             return related_model.find_existing_by_remote_id(value)
-        return activitypub.resolve_remote_id(related_model, value)
+        return activitypub.resolve_remote_id(value, model=related_model)
 
 
 class RemoteIdField(ActivitypubFieldMixin, models.CharField):
@@ -280,7 +279,7 @@ class ManyToManyField(ActivitypubFieldMixin, models.ManyToManyField):
             except ValidationError:
                 continue
             items.append(
-                activitypub.resolve_remote_id(self.related_model, remote_id)
+                activitypub.resolve_remote_id(remote_id, model=self.related_model)
             )
         return items
 
@@ -317,7 +316,7 @@ class TagField(ManyToManyField):
                 # tags can contain multiple types
                 continue
             items.append(
-                activitypub.resolve_remote_id(self.related_model, link.href)
+                activitypub.resolve_remote_id(link.href, model=self.related_model)
             )
         return items
 
diff --git a/bookwyrm/tests/views/test_inbox.py b/bookwyrm/tests/views/test_inbox.py
index cfd0e8c0..e7ce4c55 100644
--- a/bookwyrm/tests/views/test_inbox.py
+++ b/bookwyrm/tests/views/test_inbox.py
@@ -566,10 +566,12 @@ class Inbox(TestCase):
         views.inbox.activity_task(activity)
 
 
-    def test_handle_add_book(self):
+    def test_handle_add_book_to_shelf(self):
         ''' shelving a book '''
+        work = models.Work.objects.create(title='work title')
         book = models.Edition.objects.create(
-            title='Test', remote_id='https://bookwyrm.social/book/37292')
+            title='Test', remote_id='https://bookwyrm.social/book/37292',
+            parent_work=work)
         shelf = models.Shelf.objects.create(
             user=self.remote_user, name='Test Shelf')
         shelf.remote_id = 'https://bookwyrm.social/user/mouse/shelf/to-read'
@@ -581,13 +583,15 @@ class Inbox(TestCase):
             "actor": "https://example.com/users/rat",
             "object": {
                 "type": "Edition",
+                "title": "Test Title",
+                "work": work.remote_id,
                 "id": "https://bookwyrm.social/book/37292",
             },
             "target": "https://bookwyrm.social/user/mouse/shelf/to-read",
             "@context": "https://www.w3.org/ns/activitystreams"
         }
-        #views.inbox.activity_task(activity)
-        #self.assertEqual(shelf.books.first(), book)
+        views.inbox.activity_task(activity)
+        self.assertEqual(shelf.books.first(), book)
 
 
     def test_handle_update_user(self):

From f5a022184f71ca84db0d007b80f7f79afe0c6449 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 16 Feb 2021 12:31:27 -0800
Subject: [PATCH 211/280] Fixes discarding boosts

---
 bookwyrm/models/activitypub_mixin.py |  8 ++++++--
 bookwyrm/models/status.py            |  8 +++++++-
 bookwyrm/tests/views/test_inbox.py   | 13 +++++++++----
 3 files changed, 22 insertions(+), 7 deletions(-)

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 84293725..6ecf8d96 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -156,10 +156,14 @@ class ActivitypubMixin:
         return recipients
 
 
-    def to_activity(self):
+    def to_activity_dataclass(self):
         ''' convert from a model to an activity '''
         activity = generate_activity(self)
-        return self.activity_serializer(**activity).serialize()
+        return self.activity_serializer(**activity)
+
+    def to_activity(self):
+        ''' convert from a model to a json activity '''
+        return self.to_activity_dataclass().serialize()
 
 
 class ObjectMixin(ActivitypubMixin):
diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index 029ca5a4..d2dd7d5b 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -102,6 +102,12 @@ class Status(OrderedCollectionPageMixin, BookWyrmModel):
     @classmethod
     def ignore_activity(cls, activity):
         ''' keep notes if they are replies to existing statuses '''
+        if activity.type == 'Announce':
+            # keep it if the booster or the boosted are local
+            boosted = activitypub.resolve_remote_id(activity.object, save=False)
+            return cls.ignore_activity(boosted.to_activity_dataclass())
+
+        # keep if it if it's a custom type
         if activity.type != 'Note':
             return False
         if cls.objects.filter(
@@ -112,8 +118,8 @@ class Status(OrderedCollectionPageMixin, BookWyrmModel):
         if activity.tag == MISSING or activity.tag is None:
             return True
         tags = [l['href'] for l in activity.tag if l['type'] == 'Mention']
+        user_model = apps.get_model('bookwyrm.User', require_ready=True)
         for tag in tags:
-            user_model = apps.get_model('bookwyrm.User', require_ready=True)
             if user_model.objects.filter(
                     remote_id=tag, local=True).exists():
                 # we found a mention of a known use boost
diff --git a/bookwyrm/tests/views/test_inbox.py b/bookwyrm/tests/views/test_inbox.py
index e7ce4c55..288dd056 100644
--- a/bookwyrm/tests/views/test_inbox.py
+++ b/bookwyrm/tests/views/test_inbox.py
@@ -519,7 +519,7 @@ class Inbox(TestCase):
             'type': 'Announce',
             'id': '%s/boost' % self.status.remote_id,
             'actor': self.remote_user.remote_id,
-            'object': self.status.to_activity(),
+            'object': self.status.remote_id,
         }
         with patch('bookwyrm.models.status.Status.ignore_activity') \
                 as discarder:
@@ -535,16 +535,21 @@ class Inbox(TestCase):
     @responses.activate
     def test_handle_discarded_boost(self):
         ''' test a boost of a mastodon status that will be discarded '''
+        status = models.Status(
+            content='hi',
+            user=self.remote_user,
+        )
+        status.save(broadcast=False)
         activity = {
             'type': 'Announce',
             'id': 'http://www.faraway.com/boost/12',
             'actor': self.remote_user.remote_id,
-            'object': self.status.to_activity(),
+            'object': status.remote_id,
         }
         responses.add(
             responses.GET,
-            'http://www.faraway.com/boost/12',
-            json={'id': 'http://www.faraway.com/boost/12'},
+            status.remote_id,
+            json=status.to_activity(),
             status=200)
         views.inbox.activity_task(activity)
         self.assertEqual(models.Boost.objects.count(), 0)

From b57a86d4e23232de5d59ab61319b3d77eefed744 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 16 Feb 2021 12:58:29 -0800
Subject: [PATCH 212/280] Fixes approving follow requests automatically

---
 bookwyrm/models/relationship.py    |  2 +-
 bookwyrm/tests/views/test_inbox.py | 30 +++++++++++++++---------------
 bookwyrm/views/inbox.py            |  2 +-
 3 files changed, 17 insertions(+), 17 deletions(-)

diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index e4c6f4fa..cdeebc86 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -100,7 +100,7 @@ class UserFollowRequest(ActivitypubMixin, UserRelationship):
 
         if self.user_object.local:
             manually_approves = self.user_object.manually_approves_followers
-            if manually_approves:
+            if not manually_approves:
                 self.accept()
 
             model = apps.get_model('bookwyrm.Notification', require_ready=True)
diff --git a/bookwyrm/tests/views/test_inbox.py b/bookwyrm/tests/views/test_inbox.py
index 288dd056..d2e28380 100644
--- a/bookwyrm/tests/views/test_inbox.py
+++ b/bookwyrm/tests/views/test_inbox.py
@@ -246,8 +246,9 @@ class Inbox(TestCase):
             "object": "https://example.com/user/mouse"
         }
 
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay') as mock:
             views.inbox.activity_task(activity)
+            self.assertEqual(mock.call_count, 1)
 
         # notification created
         notification = models.Notification.objects.get()
@@ -255,8 +256,7 @@ class Inbox(TestCase):
         self.assertEqual(notification.notification_type, 'FOLLOW')
 
         # the request should have been deleted
-        requests = models.UserFollowRequest.objects.all()
-        self.assertEqual(list(requests), [])
+        self.assertFalse(models.UserFollowRequest.objects.exists())
 
         # the follow relationship should exist
         follow = models.UserFollows.objects.get(user_object=self.local_user)
@@ -317,24 +317,24 @@ class Inbox(TestCase):
 
     def test_handle_follow_accept(self):
         ''' a remote user approved a follow request from local '''
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            rel = models.UserFollowRequest.objects.create(
+                user_subject=self.local_user,
+                user_object=self.remote_user
+            )
         activity = {
             "@context": "https://www.w3.org/ns/activitystreams",
             "id": "https://example.com/users/rat/follows/123#accepts",
             "type": "Accept",
             "actor": "https://example.com/users/rat",
             "object": {
-                "id": "https://example.com/users/rat/follows/123",
+                "id": rel.remote_id,
                 "type": "Follow",
                 "actor": "https://example.com/user/mouse",
                 "object": "https://example.com/users/rat"
             }
         }
 
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
-            models.UserFollowRequest.objects.create(
-                user_subject=self.local_user,
-                user_object=self.remote_user
-            )
         self.assertEqual(models.UserFollowRequest.objects.count(), 1)
 
         views.inbox.activity_task(activity)
@@ -350,24 +350,24 @@ class Inbox(TestCase):
 
     def test_handle_follow_reject(self):
         ''' turn down a follow request '''
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            rel = models.UserFollowRequest.objects.create(
+                user_subject=self.local_user,
+                user_object=self.remote_user
+            )
         activity = {
             "@context": "https://www.w3.org/ns/activitystreams",
             "id": "https://example.com/users/rat/follows/123#accepts",
             "type": "Reject",
             "actor": "https://example.com/users/rat",
             "object": {
-                "id": "https://example.com/users/rat/follows/123",
+                "id": rel.remote_id,
                 "type": "Follow",
                 "actor": "https://example.com/user/mouse",
                 "object": "https://example.com/users/rat"
             }
         }
 
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
-            models.UserFollowRequest.objects.create(
-                user_subject=self.local_user,
-                user_object=self.remote_user
-            )
         self.assertEqual(models.UserFollowRequest.objects.count(), 1)
 
         views.inbox.activity_task(activity)
diff --git a/bookwyrm/views/inbox.py b/bookwyrm/views/inbox.py
index 58356e1c..6e7b036b 100644
--- a/bookwyrm/views/inbox.py
+++ b/bookwyrm/views/inbox.py
@@ -56,7 +56,7 @@ def activity_task(activity_json):
     try:
         activity = activitypub.parse(activity_json)
     except activitypub.ActivitySerializerError:
-        raise#return
+        return
 
     # cool that worked, now we should do the action described by the type
     # (create, update, delete, etc)

From d81bfb6573b8bca275e9dea578615d29abfe9fdc Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 16 Feb 2021 16:35:28 -0800
Subject: [PATCH 213/280] Fixes unfollow

---
 bookwyrm/activitypub/base_activity.py |  7 ++--
 bookwyrm/activitypub/verbs.py         |  8 ++++-
 bookwyrm/models/relationship.py       |  2 +-
 bookwyrm/tests/views/test_inbox.py    | 49 ++++++++++++++++++---------
 bookwyrm/views/inbox.py               |  2 +-
 5 files changed, 47 insertions(+), 21 deletions(-)

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index db6cdc94..008d3087 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -85,11 +85,14 @@ class ActivityObject:
         # figure out the right model -- wish I had a better way for this
         model = model or get_model_from_type(self.type)
 
-        if hasattr(model, 'ignore_activity') and model.ignore_activity(self):
-            return instance
+        # only reject statuses if we're potentially creating them
+        if allow_create and \
+                hasattr(model, 'ignore_activity') and model.ignore_activity(self):
+            return None
 
         # check for an existing instance
         instance = instance or model.find_existing(self.serialize())
+
         if not instance and not allow_create:
             # so that we don't create when we want to delete or update
             return None
diff --git a/bookwyrm/activitypub/verbs.py b/bookwyrm/activitypub/verbs.py
index 300e1bf3..aa6e7eee 100644
--- a/bookwyrm/activitypub/verbs.py
+++ b/bookwyrm/activitypub/verbs.py
@@ -1,6 +1,7 @@
 ''' undo wrapper activity '''
 from dataclasses import dataclass
 from typing import List
+from django.apps import apps
 
 from .base_activity import ActivityObject, Signature, resolve_remote_id
 from .book import Edition
@@ -59,7 +60,12 @@ class Undo(Verb):
 
     def action(self):
         ''' find and remove the activity object '''
-        obj = self.object.to_model(save=False, allow_create=False)
+        # this is so hacky but it does make it work....
+        # (because you Reject a request and Undo a follow
+        model = None
+        if self.object.type == 'Follow':
+            model = apps.get_model('bookwyrm.UserFollows')
+        obj = self.object.to_model(model=model, save=False, allow_create=False)
         obj.delete()
 
 
diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index cdeebc86..722f0fac 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -56,7 +56,7 @@ class UserRelationship(BookWyrmModel):
         return '%s#%s/%d' % (base_path, status, self.id)
 
 
-class UserFollows(UserRelationship):
+class UserFollows(ActivitypubMixin, UserRelationship):
     ''' Following a user '''
     status = 'follows'
 
diff --git a/bookwyrm/tests/views/test_inbox.py b/bookwyrm/tests/views/test_inbox.py
index d2e28380..2e677cbf 100644
--- a/bookwyrm/tests/views/test_inbox.py
+++ b/bookwyrm/tests/views/test_inbox.py
@@ -42,7 +42,7 @@ class Inbox(TestCase):
             'type': 'Create',
             'actor': 'hi',
             "to": [
-                "https://www.w3.org/ns/activitystreams#Public"
+                "https://www.w3.org/ns/activitystreams#public"
             ],
             "cc": [
                 "https://example.com/user/mouse/followers"
@@ -296,19 +296,23 @@ class Inbox(TestCase):
 
     def test_handle_unfollow(self):
         ''' remove a relationship '''
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            rel = models.UserFollows.objects.create(
+                user_subject=self.remote_user, user_object=self.local_user)
         activity = {
             "type": "Undo",
+            "id": "bleh",
+            "to": ["https://www.w3.org/ns/activitystreams#Public"],
+            "cc": ["https://example.com/user/mouse/followers"],
+            'actor': self.remote_user.remote_id,
             "@context": "https://www.w3.org/ns/activitystreams",
             "object": {
-                "id": "https://example.com/users/rat/follows/123",
+                "id": rel.remote_id,
                 "type": "Follow",
                 "actor": "https://example.com/users/rat",
                 "object": "https://example.com/user/mouse"
             }
         }
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
-            models.UserFollows.objects.create(
-                user_subject=self.remote_user, user_object=self.local_user)
         self.assertEqual(self.remote_user, self.local_user.followers.first())
 
         views.inbox.activity_task(activity)
@@ -493,13 +497,16 @@ class Inbox(TestCase):
         activity = {
             'id': 'https://example.com/fav/1#undo',
             'type': 'Undo',
+            "to": ["https://www.w3.org/ns/activitystreams#Public"],
+            "cc": ["https://example.com/user/mouse/followers"],
+            'actor': self.remote_user.remote_id,
             'object': {
                 '@context': 'https://www.w3.org/ns/activitystreams',
                 'id': 'https://example.com/fav/1',
                 'actor': 'https://example.com/users/rat',
                 'type': 'Like',
                 'published': 'Mon, 25 May 2020 19:31:20 GMT',
-                'object': 'https://example.com/fav/1',
+                'object': self.status.remote_id,
             }
         }
         models.Favorite.objects.create(
@@ -557,17 +564,21 @@ class Inbox(TestCase):
 
     def test_handle_unboost(self):
         ''' undo a boost '''
+        boost = models.Boost.objects.create(
+            boosted_status=self.status, user=self.remote_user)
         activity = {
             'type': 'Undo',
+            'actor': 'hi',
+            'id': 'bleh',
+            "to": ["https://www.w3.org/ns/activitystreams#public"],
+            "cc": ["https://example.com/user/mouse/followers"],
             'object': {
                 'type': 'Announce',
-                'id': '%s/boost' % self.status.remote_id,
+                'id': boost.remote_id,
                 'actor': self.local_user.remote_id,
-                'object': self.status.to_activity(),
+                'object': self.status.remote_id,
             }
         }
-        models.Boost.objects.create(
-            boosted_status=self.status, user=self.remote_user)
         views.inbox.activity_task(activity)
 
 
@@ -695,12 +706,18 @@ class Inbox(TestCase):
 
         self.assertEqual(block.user_subject, self.remote_user)
         self.assertEqual(block.user_object, self.local_user)
-        activity = {'type': 'Undo', 'object': {
-            "@context": "https://www.w3.org/ns/activitystreams",
-            "id": "https://example.com/9e1f41ac-9ddd-4159",
-            "type": "Block",
-            "actor": "https://example.com/users/rat",
-            "object": "https://example.com/user/mouse"
+        activity = {
+            'type': 'Undo',
+            'actor': 'hi',
+            'id': 'bleh',
+            "to": ["https://www.w3.org/ns/activitystreams#public"],
+            "cc": ["https://example.com/user/mouse/followers"],
+            'object': {
+                "@context": "https://www.w3.org/ns/activitystreams",
+                "id": "https://example.com/9e1f41ac-9ddd-4159",
+                "type": "Block",
+                "actor": "https://example.com/users/rat",
+                "object": "https://example.com/user/mouse"
         }}
         views.inbox.activity_task(activity)
         self.assertFalse(models.UserBlocks.objects.exists())
diff --git a/bookwyrm/views/inbox.py b/bookwyrm/views/inbox.py
index 6e7b036b..58356e1c 100644
--- a/bookwyrm/views/inbox.py
+++ b/bookwyrm/views/inbox.py
@@ -56,7 +56,7 @@ def activity_task(activity_json):
     try:
         activity = activitypub.parse(activity_json)
     except activitypub.ActivitySerializerError:
-        return
+        raise#return
 
     # cool that worked, now we should do the action described by the type
     # (create, update, delete, etc)

From 714202986dc859322764f749d32dfd00c06fe042 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 16 Feb 2021 17:47:53 -0800
Subject: [PATCH 214/280] Fixes person/author confusion and public keys

---
 bookwyrm/activitypub/base_activity.py |  4 +++-
 bookwyrm/activitypub/book.py          |  2 +-
 bookwyrm/tests/views/test_inbox.py    | 30 +++++++++++++++++++++------
 3 files changed, 28 insertions(+), 8 deletions(-)

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index 008d3087..5c828858 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -42,6 +42,9 @@ class Signature:
 
 def naive_parse(activity_objects, activity_json):
     ''' this navigates circular import issues '''
+    if activity_json.get('publicKeyPem'):
+        # ugh
+        activity_json['type'] = 'PublicKey'
     try:
         activity_type = activity_json['type']
         serializer = activity_objects[activity_type]
@@ -82,7 +85,6 @@ class ActivityObject:
 
     def to_model(self, model=None, instance=None, allow_create=True, save=True):
         ''' convert from an activity to a model instance '''
-        # figure out the right model -- wish I had a better way for this
         model = model or get_model_from_type(self.type)
 
         # only reject statuses if we're potentially creating them
diff --git a/bookwyrm/activitypub/book.py b/bookwyrm/activitypub/book.py
index 68036559..87c40c90 100644
--- a/bookwyrm/activitypub/book.py
+++ b/bookwyrm/activitypub/book.py
@@ -67,4 +67,4 @@ class Author(ActivityObject):
     librarythingKey: str = ''
     goodreadsKey: str = ''
     wikipediaLink: str = ''
-    type: str = 'Person'
+    type: str = 'Author'
diff --git a/bookwyrm/tests/views/test_inbox.py b/bookwyrm/tests/views/test_inbox.py
index 2e677cbf..0251d8a2 100644
--- a/bookwyrm/tests/views/test_inbox.py
+++ b/bookwyrm/tests/views/test_inbox.py
@@ -391,6 +391,9 @@ class Inbox(TestCase):
                 name='hi', remote_id='https://example.com/list/22',
                 user=self.local_user)
         activity = {
+            'type': 'Update',
+            'to': [], 'cc': [], 'actor': 'hi',
+            'id': 'sdkjf',
             'object': {
                 "id": "https://example.com/list/22",
                 "type": "BookList",
@@ -617,11 +620,16 @@ class Inbox(TestCase):
         self.local_user.save()
 
         datafile = pathlib.Path(__file__).parent.joinpath(
-            'data/ap_user.json')
+            '../data/ap_user.json')
         userdata = json.loads(datafile.read_bytes())
         del userdata['icon']
         self.assertIsNone(self.local_user.name)
-        views.inbox.activity_task({'object': userdata})
+        views.inbox.activity_task({
+            'type': 'Update',
+            'to': [], 'cc': [], 'actor': 'hi',
+            'id': 'sdkjf',
+            'object': userdata
+        })
         user = models.User.objects.get(id=self.local_user.id)
         self.assertEqual(user.name, 'MOUSE?? MOUSE!!')
         self.assertEqual(user.username, 'mouse@example.com')
@@ -631,7 +639,7 @@ class Inbox(TestCase):
     def test_handle_update_edition(self):
         ''' update an existing edition '''
         datafile = pathlib.Path(__file__).parent.joinpath(
-            'data/bw_edition.json')
+            '../data/bw_edition.json')
         bookdata = json.loads(datafile.read_bytes())
 
         models.Work.objects.create(
@@ -644,7 +652,12 @@ class Inbox(TestCase):
 
         with patch(
                 'bookwyrm.activitypub.base_activity.set_related_field.delay'):
-            views.inbox.activity_task({'object': bookdata})
+            views.inbox.activity_task({
+                'type': 'Update',
+                'to': [], 'cc': [], 'actor': 'hi',
+                'id': 'sdkjf',
+                'object': bookdata
+            })
         book = models.Edition.objects.get(id=book.id)
         self.assertEqual(book.title, 'Piranesi')
 
@@ -652,7 +665,7 @@ class Inbox(TestCase):
     def test_handle_update_work(self):
         ''' update an existing edition '''
         datafile = pathlib.Path(__file__).parent.joinpath(
-            'data/bw_work.json')
+            '../data/bw_work.json')
         bookdata = json.loads(datafile.read_bytes())
 
         book = models.Work.objects.create(
@@ -662,7 +675,12 @@ class Inbox(TestCase):
         self.assertEqual(book.title, 'Test Book')
         with patch(
                 'bookwyrm.activitypub.base_activity.set_related_field.delay'):
-            views.inbox.activity_task({'object': bookdata})
+            views.inbox.activity_task({
+                'type': 'Update',
+                'to': [], 'cc': [], 'actor': 'hi',
+                'id': 'sdkjf',
+                'object': bookdata
+            })
         book = models.Work.objects.get(id=book.id)
         self.assertEqual(book.title, 'Piranesi')
 

From a3b7063e4bca4aed6f3bf49460d5073b87d55a6f Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 16 Feb 2021 18:07:57 -0800
Subject: [PATCH 215/280] makes inbox csrf exempt

---
 bookwyrm/tests/test_signing.py | 2 +-
 bookwyrm/views/inbox.py        | 5 ++++-
 2 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/tests/test_signing.py b/bookwyrm/tests/test_signing.py
index 0d55893d..3ad5d233 100644
--- a/bookwyrm/tests/test_signing.py
+++ b/bookwyrm/tests/test_signing.py
@@ -76,7 +76,7 @@ class Signature(TestCase):
         digest = digest or make_digest(data)
         signature = make_signature(
             signer or sender, self.rat.inbox, now, digest)
-        with patch('bookwyrm.incoming.handle_follow.delay'):
+        with patch('bookwyrm.views.inbox.activity_task.delay'):
             with patch('bookwyrm.models.user.set_remote_server.delay'):
                 return self.send(signature, now, send_data or data, digest)
 
diff --git a/bookwyrm/views/inbox.py b/bookwyrm/views/inbox.py
index 58356e1c..b4ff2736 100644
--- a/bookwyrm/views/inbox.py
+++ b/bookwyrm/views/inbox.py
@@ -4,7 +4,9 @@ from urllib.parse import urldefrag
 
 from django.http import HttpResponse
 from django.http import HttpResponseBadRequest, HttpResponseNotFound
+from django.utils.decorators import method_decorator
 from django.views import View
+from django.views.decorators.csrf import csrf_exempt
 import requests
 
 from bookwyrm import activitypub, models
@@ -12,6 +14,7 @@ from bookwyrm.tasks import app
 from bookwyrm.signatures import Signature
 
 
+@method_decorator(csrf_exempt, name='dispatch')
 # pylint: disable=no-self-use
 class Inbox(View):
     ''' requests sent by outside servers'''
@@ -56,7 +59,7 @@ def activity_task(activity_json):
     try:
         activity = activitypub.parse(activity_json)
     except activitypub.ActivitySerializerError:
-        raise#return
+        return
 
     # cool that worked, now we should do the action described by the type
     # (create, update, delete, etc)

From 91908eb1b6d7fa319e14992978c0efcd045fc029 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 16 Feb 2021 18:59:26 -0800
Subject: [PATCH 216/280] Smarter way of inferring serializers (which are
 explicitly present)

---
 bookwyrm/activitypub/base_activity.py | 30 +++++++++++++++------------
 bookwyrm/tests/test_signing.py        | 29 +++++++++++++++++---------
 bookwyrm/views/inbox.py               |  5 +++--
 3 files changed, 39 insertions(+), 25 deletions(-)

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index 5c828858..7ee8ca45 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -40,16 +40,17 @@ class Signature:
     signatureValue: str
     type: str = 'RsaSignature2017'
 
-def naive_parse(activity_objects, activity_json):
+def naive_parse(activity_objects, activity_json, serializer=None):
     ''' this navigates circular import issues '''
-    if activity_json.get('publicKeyPem'):
-        # ugh
-        activity_json['type'] = 'PublicKey'
-    try:
-        activity_type = activity_json['type']
-        serializer = activity_objects[activity_type]
-    except KeyError as e:
-        raise ActivitySerializerError(e)
+    if not serializer:
+        if activity_json.get('publicKeyPem'):
+            # ugh
+            activity_json['type'] = 'PublicKey'
+        try:
+            activity_type = activity_json['type']
+            serializer = activity_objects[activity_type]
+        except KeyError as e:
+            raise ActivitySerializerError(e)
 
     return serializer(activity_objects=activity_objects, **activity_json)
 
@@ -71,8 +72,9 @@ class ActivityObject:
                     is_subclass = issubclass(field.type, ActivityObject)
                 except TypeError:
                     is_subclass = False
-                if is_subclass and activity_objects:
-                    value = naive_parse(activity_objects, value)
+                if is_subclass:
+                    value = naive_parse(
+                        activity_objects, value, serializer=field.type)
 
             except KeyError:
                 if field.default == MISSING and \
@@ -89,7 +91,8 @@ class ActivityObject:
 
         # only reject statuses if we're potentially creating them
         if allow_create and \
-                hasattr(model, 'ignore_activity') and model.ignore_activity(self):
+                hasattr(model, 'ignore_activity') and \
+                model.ignore_activity(self):
             return None
 
         # check for an existing instance
@@ -219,11 +222,12 @@ def get_model_from_type(activity_type):
     model = [m for m in models if hasattr(m, 'activity_serializer') and \
         hasattr(m.activity_serializer, 'type') and \
         m.activity_serializer.type == activity_type]
-    if not len(model):
+    if not model:
         raise ActivitySerializerError(
             'No model found for activity type "%s"' % activity_type)
     return model[0]
 
+
 def resolve_remote_id(remote_id, model=None, refresh=False, save=True):
     ''' take a remote_id and return an instance, creating if necessary '''
     if model:# a bonus check we can do if we already know the model
diff --git a/bookwyrm/tests/test_signing.py b/bookwyrm/tests/test_signing.py
index 3ad5d233..f6de11e1 100644
--- a/bookwyrm/tests/test_signing.py
+++ b/bookwyrm/tests/test_signing.py
@@ -1,3 +1,4 @@
+''' getting and verifying signatures '''
 import time
 from collections import namedtuple
 from urllib.parse import urlsplit
@@ -12,31 +13,33 @@ import pytest
 from django.test import TestCase, Client
 from django.utils.http import http_date
 
-from bookwyrm.models import User
+from bookwyrm import models
 from bookwyrm.activitypub import Follow
 from bookwyrm.settings import DOMAIN
 from bookwyrm.signatures import create_key_pair, make_signature, make_digest
 
-def get_follow_data(follower, followee):
-    follow_activity = Follow(
+def get_follow_activity(follower, followee):
+    ''' generates a test activity '''
+    return Follow(
         id='https://test.com/user/follow/id',
         actor=follower.remote_id,
         object=followee.remote_id,
     ).serialize()
-    return json.dumps(follow_activity)
 
 KeyPair = namedtuple('KeyPair', ('private_key', 'public_key'))
 Sender = namedtuple('Sender', ('remote_id', 'key_pair'))
 
 class Signature(TestCase):
+    ''' signature test '''
     def setUp(self):
-        self.mouse = User.objects.create_user(
+        ''' create users and test data '''
+        self.mouse = models.User.objects.create_user(
             'mouse@%s' % DOMAIN, 'mouse@example.com', '',
             local=True, localname='mouse')
-        self.rat = User.objects.create_user(
+        self.rat = models.User.objects.create_user(
             'rat@%s' % DOMAIN, 'rat@example.com', '',
             local=True, localname='rat')
-        self.cat = User.objects.create_user(
+        self.cat = models.User.objects.create_user(
             'cat@%s' % DOMAIN, 'cat@example.com', '',
             local=True, localname='cat')
 
@@ -47,6 +50,8 @@ class Signature(TestCase):
             KeyPair(private_key, public_key)
         )
 
+        models.SiteSettings.objects.create()
+
     def send(self, signature, now, data, digest):
         ''' test request '''
         c = Client()
@@ -63,7 +68,7 @@ class Signature(TestCase):
             }
         )
 
-    def send_test_request(
+    def send_test_request(#pylint: disable=too-many-arguments
             self,
             sender,
             signer=None,
@@ -72,7 +77,7 @@ class Signature(TestCase):
             date=None):
         ''' sends a follow request to the "rat" user '''
         now = date or http_date()
-        data = json.dumps(get_follow_data(sender, self.rat))
+        data = json.dumps(get_follow_activity(sender, self.rat))
         digest = digest or make_digest(data)
         signature = make_signature(
             signer or sender, self.rat.inbox, now, digest)
@@ -81,6 +86,7 @@ class Signature(TestCase):
                 return self.send(signature, now, send_data or data, digest)
 
     def test_correct_signature(self):
+        ''' this one should just work '''
         response = self.send_test_request(sender=self.mouse)
         self.assertEqual(response.status_code, 200)
 
@@ -120,6 +126,7 @@ class Signature(TestCase):
 
     @responses.activate
     def test_key_needs_refresh(self):
+        ''' an out of date key should be updated and the new key work '''
         datafile = pathlib.Path(__file__).parent.joinpath('data/ap_user.json')
         data = json.loads(datafile.read_bytes())
         data['id'] = self.fake_remote.remote_id
@@ -165,6 +172,7 @@ class Signature(TestCase):
 
     @responses.activate
     def test_nonexistent_signer(self):
+        ''' fail when unable to look up signer '''
         responses.add(
             responses.GET,
             self.fake_remote.remote_id,
@@ -180,11 +188,12 @@ class Signature(TestCase):
         with patch('bookwyrm.activitypub.resolve_remote_id'):
             response = self.send_test_request(
                 self.mouse,
-                send_data=get_follow_data(self.mouse, self.cat))
+                send_data=get_follow_activity(self.mouse, self.cat))
             self.assertEqual(response.status_code, 401)
 
     @pytest.mark.integration
     def test_invalid_digest(self):
+        ''' signature digest must be valid '''
         with patch('bookwyrm.activitypub.resolve_remote_id'):
             response = self.send_test_request(
                 self.mouse,
diff --git a/bookwyrm/views/inbox.py b/bookwyrm/views/inbox.py
index b4ff2736..4da4e5b6 100644
--- a/bookwyrm/views/inbox.py
+++ b/bookwyrm/views/inbox.py
@@ -75,7 +75,8 @@ def has_valid_signature(request, activity):
         if key_actor != activity.get('actor'):
             raise ValueError("Wrong actor created signature.")
 
-        remote_user = activitypub.resolve_remote_id(models.User, key_actor)
+        remote_user = activitypub.resolve_remote_id(
+            key_actor, model=models.User)
         if not remote_user:
             return False
 
@@ -84,7 +85,7 @@ def has_valid_signature(request, activity):
         except ValueError:
             old_key = remote_user.key_pair.public_key
             remote_user = activitypub.resolve_remote_id(
-                models.User, remote_user.remote_id, refresh=True
+                remote_user.remote_id, model=models.User, refresh=True
             )
             if remote_user.key_pair.public_key == old_key:
                 raise # Key unchanged.

From e2f921b7f510f12856436bec203f3d92e11e5900 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 16 Feb 2021 19:28:23 -0800
Subject: [PATCH 217/280] better checking for empty values

---
 bookwyrm/activitypub/base_activity.py | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index 7ee8ca45..933745e0 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -68,6 +68,8 @@ class ActivityObject:
         for field in fields(self):
             try:
                 value = kwargs[field.name]
+                if value in (None, MISSING):
+                    raise KeyError()
                 try:
                     is_subclass = issubclass(field.type, ActivityObject)
                 except TypeError:

From 3f61675a0aa9a7546d9aee3aeb240931785e4d28 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 16 Feb 2021 19:35:43 -0800
Subject: [PATCH 218/280] Updates usage of resolve_remote_id

---
 bookwyrm/connectors/bookwyrm_connector.py        | 2 +-
 bookwyrm/models/fields.py                        | 6 ++++--
 bookwyrm/models/status.py                        | 2 +-
 bookwyrm/tests/activitypub/test_base_activity.py | 4 ++--
 bookwyrm/views/helpers.py                        | 2 +-
 5 files changed, 9 insertions(+), 7 deletions(-)

diff --git a/bookwyrm/connectors/bookwyrm_connector.py b/bookwyrm/connectors/bookwyrm_connector.py
index 1f877993..00e6c62f 100644
--- a/bookwyrm/connectors/bookwyrm_connector.py
+++ b/bookwyrm/connectors/bookwyrm_connector.py
@@ -7,7 +7,7 @@ class Connector(AbstractMinimalConnector):
     ''' this is basically just for search '''
 
     def get_or_create_book(self, remote_id):
-        edition = activitypub.resolve_remote_id(models.Edition, remote_id)
+        edition = activitypub.resolve_remote_id(remote_id, model=models.Edition)
         work = edition.parent_work
         work.default_edition = work.get_default_edition()
         work.save()
diff --git a/bookwyrm/models/fields.py b/bookwyrm/models/fields.py
index f2465fb6..029958bd 100644
--- a/bookwyrm/models/fields.py
+++ b/bookwyrm/models/fields.py
@@ -279,7 +279,8 @@ class ManyToManyField(ActivitypubFieldMixin, models.ManyToManyField):
             except ValidationError:
                 continue
             items.append(
-                activitypub.resolve_remote_id(remote_id, model=self.related_model)
+                activitypub.resolve_remote_id(
+                    remote_id, model=self.related_model)
             )
         return items
 
@@ -316,7 +317,8 @@ class TagField(ManyToManyField):
                 # tags can contain multiple types
                 continue
             items.append(
-                activitypub.resolve_remote_id(link.href, model=self.related_model)
+                activitypub.resolve_remote_id(
+                    link.href, model=self.related_model)
             )
         return items
 
diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index d2dd7d5b..fbc94e9d 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -84,7 +84,7 @@ class Status(OrderedCollectionPageMixin, BookWyrmModel):
                 related_status=self,
             )
 
-    def delete(self, *args, **kwargs):
+    def delete(self, *args, **kwargs):#pylint: disable=unused-argument
         ''' "delete" a status '''
         self.deleted = True
         self.deleted_date = timezone.now()
diff --git a/bookwyrm/tests/activitypub/test_base_activity.py b/bookwyrm/tests/activitypub/test_base_activity.py
index e84d7674..1d3e85d3 100644
--- a/bookwyrm/tests/activitypub/test_base_activity.py
+++ b/bookwyrm/tests/activitypub/test_base_activity.py
@@ -79,7 +79,7 @@ class BaseActivity(TestCase):
     def test_resolve_remote_id(self):
         ''' look up or load remote data '''
         # existing item
-        result = resolve_remote_id(models.User, 'http://example.com/a/b')
+        result = resolve_remote_id('http://example.com/a/b', model=models.User)
         self.assertEqual(result, self.user)
 
         # remote item
@@ -91,7 +91,7 @@ class BaseActivity(TestCase):
 
         with patch('bookwyrm.models.user.set_remote_server.delay'):
             result = resolve_remote_id(
-                models.User, 'https://example.com/user/mouse')
+                'https://example.com/user/mouse', model=models.User)
         self.assertIsInstance(result, models.User)
         self.assertEqual(result.remote_id, 'https://example.com/user/mouse')
         self.assertEqual(result.name, 'MOUSE?? MOUSE!!')
diff --git a/bookwyrm/views/helpers.py b/bookwyrm/views/helpers.py
index 842b8d1c..89d99501 100644
--- a/bookwyrm/views/helpers.py
+++ b/bookwyrm/views/helpers.py
@@ -162,7 +162,7 @@ def handle_remote_webfinger(query):
             if link.get('rel') == 'self':
                 try:
                     user = activitypub.resolve_remote_id(
-                        models.User, link['href']
+                        link['href'], model=models.User
                     )
                 except KeyError:
                     return None

From a9ca3a4290015d9c50f26dcaaf869d91fa82e156 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 16 Feb 2021 20:17:38 -0800
Subject: [PATCH 219/280] Fixes calls to to_model, init with activitypub
 partially serialized

---
 bookwyrm/activitypub/base_activity.py         |  3 ++-
 bookwyrm/connectors/abstract_connector.py     |  6 ++---
 bookwyrm/models/fields.py                     |  4 ++--
 .../tests/activitypub/test_base_activity.py   | 24 ++++++++++++-------
 bookwyrm/tests/activitypub/test_person.py     |  2 +-
 bookwyrm/tests/activitypub/test_quotation.py  |  2 +-
 6 files changed, 24 insertions(+), 17 deletions(-)

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index 933745e0..7292a0d7 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -74,7 +74,8 @@ class ActivityObject:
                     is_subclass = issubclass(field.type, ActivityObject)
                 except TypeError:
                     is_subclass = False
-                if is_subclass:
+                # parse a dict into the appropriate activity
+                if is_subclass and isinstance(value, dict):
                     value = naive_parse(
                         activity_objects, value, serializer=field.type)
 
diff --git a/bookwyrm/connectors/abstract_connector.py b/bookwyrm/connectors/abstract_connector.py
index 527d2f42..61f553a4 100644
--- a/bookwyrm/connectors/abstract_connector.py
+++ b/bookwyrm/connectors/abstract_connector.py
@@ -127,7 +127,7 @@ class AbstractConnector(AbstractMinimalConnector):
             # create activitypub object
             work_activity = activitypub.Work(**work_data)
             # this will dedupe automatically
-            work = work_activity.to_model(models.Work)
+            work = work_activity.to_model(model=models.Work)
             for author in self.get_authors_from_data(data):
                 work.authors.add(author)
 
@@ -141,7 +141,7 @@ class AbstractConnector(AbstractMinimalConnector):
         mapped_data = dict_from_mappings(edition_data, self.book_mappings)
         mapped_data['work'] = work.remote_id
         edition_activity = activitypub.Edition(**mapped_data)
-        edition = edition_activity.to_model(models.Edition)
+        edition = edition_activity.to_model(model=models.Edition)
         edition.connector = self.connector
         edition.save()
 
@@ -168,7 +168,7 @@ class AbstractConnector(AbstractMinimalConnector):
         mapped_data = dict_from_mappings(data, self.author_mappings)
         activity = activitypub.Author(**mapped_data)
         # this will dedupe
-        return activity.to_model(models.Author)
+        return activity.to_model(model=models.Author)
 
 
     @abstractmethod
diff --git a/bookwyrm/models/fields.py b/bookwyrm/models/fields.py
index 029958bd..4ea527eb 100644
--- a/bookwyrm/models/fields.py
+++ b/bookwyrm/models/fields.py
@@ -367,8 +367,8 @@ class ImageField(ActivitypubFieldMixin, models.ImageField):
         image_slug = value
         # when it's an inline image (User avatar/icon, Book cover), it's a json
         # blob, but when it's an attached image, it's just a url
-        if isinstance(image_slug, dict):
-            url = image_slug.get('url')
+        if hasattr(image_slug, 'url'):
+            url = image_slug.url
         elif isinstance(image_slug, str):
             url = image_slug
         else:
diff --git a/bookwyrm/tests/activitypub/test_base_activity.py b/bookwyrm/tests/activitypub/test_base_activity.py
index 1d3e85d3..ce294c1c 100644
--- a/bookwyrm/tests/activitypub/test_base_activity.py
+++ b/bookwyrm/tests/activitypub/test_base_activity.py
@@ -100,7 +100,7 @@ class BaseActivity(TestCase):
         ''' catch mismatch between activity type and model type '''
         instance = ActivityObject(id='a', type='b')
         with self.assertRaises(ActivitySerializerError):
-            instance.to_model(models.User)
+            instance.to_model(model=models.User)
 
     def test_to_model_simple_fields(self):
         ''' test setting simple fields '''
@@ -118,7 +118,7 @@ class BaseActivity(TestCase):
             endpoints={},
         )
 
-        activity.to_model(models.User, self.user)
+        activity.to_model(model=models.User, instance=self.user)
 
         self.assertEqual(self.user.name, 'New Name')
 
@@ -136,9 +136,9 @@ class BaseActivity(TestCase):
             endpoints={},
         )
 
-        activity.publicKey['publicKeyPem'] = 'hi im secure'
+        activity.publicKey.publicKeyPem = 'hi im secure'
 
-        activity.to_model(models.User, self.user)
+        activity.to_model(model=models.User, instance=self.user)
         self.assertEqual(self.user.key_pair.public_key, 'hi im secure')
 
     @responses.activate
@@ -152,9 +152,15 @@ class BaseActivity(TestCase):
             outbox='http://www.com/',
             followers='',
             summary='',
-            publicKey=None,
+            publicKey={
+                'id': 'hi',
+                'owner': self.user.remote_id,
+                'publicKeyPem': 'hi'},
             endpoints={},
-            icon={'url': 'http://www.example.com/image.jpg'}
+            icon={
+                'type': 'Image',
+                'url': 'http://www.example.com/image.jpg'
+            }
         )
 
         responses.add(
@@ -169,7 +175,7 @@ class BaseActivity(TestCase):
 
         # this would trigger a broadcast because it's a local user
         with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
-            activity.to_model(models.User, self.user)
+            activity.to_model(model=models.User, instance=self.user)
         self.assertIsNotNone(self.user.avatar.name)
         self.assertIsNotNone(self.user.avatar.file)
 
@@ -202,7 +208,7 @@ class BaseActivity(TestCase):
                 },
             ]
         )
-        update_data.to_model(models.Status, instance=status)
+        update_data.to_model(model=models.Status, instance=status)
         self.assertEqual(status.mention_users.first(), self.user)
         self.assertEqual(status.mention_books.first(), book)
 
@@ -239,7 +245,7 @@ class BaseActivity(TestCase):
         # sets the celery task call to the function call
         with patch(
                 'bookwyrm.activitypub.base_activity.set_related_field.delay'):
-            update_data.to_model(models.Status, instance=status)
+            update_data.to_model(model=models.Status, instance=status)
         self.assertIsNone(status.attachments.first())
 
 
diff --git a/bookwyrm/tests/activitypub/test_person.py b/bookwyrm/tests/activitypub/test_person.py
index c7a8221c..7548ed93 100644
--- a/bookwyrm/tests/activitypub/test_person.py
+++ b/bookwyrm/tests/activitypub/test_person.py
@@ -25,7 +25,7 @@ class Person(TestCase):
     def test_user_to_model(self):
         activity = activitypub.Person(**self.user_data)
         with patch('bookwyrm.models.user.set_remote_server.delay'):
-            user = activity.to_model(models.User)
+            user = activity.to_model(models=models.User)
         self.assertEqual(user.username, 'mouse@example.com')
         self.assertEqual(user.remote_id, 'https://example.com/user/mouse')
         self.assertFalse(user.local)
diff --git a/bookwyrm/tests/activitypub/test_quotation.py b/bookwyrm/tests/activitypub/test_quotation.py
index 60920889..1cd1f05d 100644
--- a/bookwyrm/tests/activitypub/test_quotation.py
+++ b/bookwyrm/tests/activitypub/test_quotation.py
@@ -46,7 +46,7 @@ class Quotation(TestCase):
     def test_activity_to_model(self):
         ''' create a model instance from an activity object '''
         activity = activitypub.Quotation(**self.status_data)
-        quotation = activity.to_model(models.Quotation)
+        quotation = activity.to_model(model=models.Quotation)
 
         self.assertEqual(quotation.book, self.book)
         self.assertEqual(quotation.user, self.user)

From 77781d57c3e6606e6841c340ede70a9121c34dd0 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 16 Feb 2021 20:24:37 -0800
Subject: [PATCH 220/280] Fixes base activity tests

---
 bookwyrm/activitypub/base_activity.py         |  5 ++-
 .../tests/activitypub/test_base_activity.py   | 41 +------------------
 2 files changed, 6 insertions(+), 40 deletions(-)

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index 7292a0d7..a83021ad 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -107,7 +107,10 @@ class ActivityObject:
         instance = instance or model()
 
         for field in instance.simple_fields:
-            field.set_field_from_activity(instance, self)
+            try:
+                field.set_field_from_activity(instance, self)
+            except AttributeError as e:
+                raise ActivitySerializerError(e)
 
         # image fields have to be set after other fields because they can save
         # too early and jank up users
diff --git a/bookwyrm/tests/activitypub/test_base_activity.py b/bookwyrm/tests/activitypub/test_base_activity.py
index ce294c1c..d489fdaa 100644
--- a/bookwyrm/tests/activitypub/test_base_activity.py
+++ b/bookwyrm/tests/activitypub/test_base_activity.py
@@ -102,44 +102,6 @@ class BaseActivity(TestCase):
         with self.assertRaises(ActivitySerializerError):
             instance.to_model(model=models.User)
 
-    def test_to_model_simple_fields(self):
-        ''' test setting simple fields '''
-        self.assertIsNone(self.user.name)
-
-        activity = activitypub.Person(
-            id=self.user.remote_id,
-            name='New Name',
-            preferredUsername='mouse',
-            inbox='http://www.com/',
-            outbox='http://www.com/',
-            followers='',
-            summary='',
-            publicKey=None,
-            endpoints={},
-        )
-
-        activity.to_model(model=models.User, instance=self.user)
-
-        self.assertEqual(self.user.name, 'New Name')
-
-    def test_to_model_foreign_key(self):
-        ''' test setting one to one/foreign key '''
-        activity = activitypub.Person(
-            id=self.user.remote_id,
-            name='New Name',
-            preferredUsername='mouse',
-            inbox='http://www.com/',
-            outbox='http://www.com/',
-            followers='',
-            summary='',
-            publicKey=self.user.key_pair.to_activity(),
-            endpoints={},
-        )
-
-        activity.publicKey.publicKeyPem = 'hi im secure'
-
-        activity.to_model(model=models.User, instance=self.user)
-        self.assertEqual(self.user.key_pair.public_key, 'hi im secure')
 
     @responses.activate
     def test_to_model_image(self):
@@ -176,8 +138,9 @@ class BaseActivity(TestCase):
         # this would trigger a broadcast because it's a local user
         with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             activity.to_model(model=models.User, instance=self.user)
-        self.assertIsNotNone(self.user.avatar.name)
         self.assertIsNotNone(self.user.avatar.file)
+        self.assertEqual(self.user.name, 'New Name')
+        self.assertEqual(self.user.key_pair.public_key, 'hi')
 
     def test_to_model_many_to_many(self):
         ''' annoying that these all need special handling '''

From 29df2e0fac58b86c7d049fbd594bf08c9cbf1902 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 16 Feb 2021 20:26:51 -0800
Subject: [PATCH 221/280] fixes typo in person test

---
 bookwyrm/tests/activitypub/test_person.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/tests/activitypub/test_person.py b/bookwyrm/tests/activitypub/test_person.py
index 7548ed93..06240281 100644
--- a/bookwyrm/tests/activitypub/test_person.py
+++ b/bookwyrm/tests/activitypub/test_person.py
@@ -25,7 +25,7 @@ class Person(TestCase):
     def test_user_to_model(self):
         activity = activitypub.Person(**self.user_data)
         with patch('bookwyrm.models.user.set_remote_server.delay'):
-            user = activity.to_model(models=models.User)
+            user = activity.to_model(model=models.User)
         self.assertEqual(user.username, 'mouse@example.com')
         self.assertEqual(user.remote_id, 'https://example.com/user/mouse')
         self.assertFalse(user.local)

From 7b27f98e2045cf442dcfb9c755fbd4e36ad45ca0 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 17 Feb 2021 08:34:21 -0800
Subject: [PATCH 222/280] Fixes recursive serializer

---
 bookwyrm/activitypub/base_activity.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index a83021ad..10cbf3a0 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -166,7 +166,7 @@ class ActivityObject:
         # recursively serialize
         for (k, v) in data.items():
             try:
-                is_subclass = issubclass(v, ActivityObject)
+                is_subclass = issubclass(type(v), ActivityObject)
             except TypeError:
                 is_subclass = False
             if is_subclass:

From cbf5479253a3d15cd9e57310c9791db34faa82db Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 17 Feb 2021 08:35:17 -0800
Subject: [PATCH 223/280] Test fixes

---
 .../connectors/test_openlibrary_connector.py  | 28 +++++++++++++++----
 .../tests/models/test_activitypub_mixin.py    | 25 +++++++++--------
 bookwyrm/tests/models/test_fields.py          |  5 ++--
 bookwyrm/tests/models/test_import_model.py    |  4 ++-
 4 files changed, 42 insertions(+), 20 deletions(-)

diff --git a/bookwyrm/tests/connectors/test_openlibrary_connector.py b/bookwyrm/tests/connectors/test_openlibrary_connector.py
index 8132a203..576e353b 100644
--- a/bookwyrm/tests/connectors/test_openlibrary_connector.py
+++ b/bookwyrm/tests/connectors/test_openlibrary_connector.py
@@ -92,11 +92,26 @@ class Openlibrary(TestCase):
         responses.add(
             responses.GET,
             'https://openlibrary.org/authors/OL382982A',
-            json={'hi': 'there'},
+            json={
+                "name": "George Elliott",
+                "personal_name": "George Elliott",
+                "last_modified": {
+                    "type": "/type/datetime",
+                    "value": "2008-08-31 10:09:33.413686"
+                    },
+                "key": "/authors/OL453734A",
+                "type": {
+                    "key": "/type/author"
+                    },
+                "id": 1259965,
+                "revision": 2
+            },
             status=200)
         results = self.connector.get_authors_from_data(self.work_data)
-        for result in results:
-            self.assertIsInstance(result, models.Author)
+        result = list(results)[0]
+        self.assertIsInstance(result, models.Author)
+        self.assertEqual(result.name, 'George Elliott')
+        self.assertEqual(result.openlibrary_key, 'OL453734A')
 
 
     def test_get_cover_url(self):
@@ -201,8 +216,11 @@ class Openlibrary(TestCase):
             'https://openlibrary.org/authors/OL382982A',
             json={'hi': 'there'},
             status=200)
-        result = self.connector.create_edition_from_data(
-            work, self.edition_data)
+        with patch('bookwyrm.connectors.openlibrary.Connector.' \
+                'get_authors_from_data') as mock:
+            mock.return_value = []
+            result = self.connector.create_edition_from_data(
+                work, self.edition_data)
         self.assertEqual(result.parent_work, work)
         self.assertEqual(result.title, 'Sabriel')
         self.assertEqual(result.isbn_10, '0060273224')
diff --git a/bookwyrm/tests/models/test_activitypub_mixin.py b/bookwyrm/tests/models/test_activitypub_mixin.py
index 1ea4ae6d..a6f069d4 100644
--- a/bookwyrm/tests/models/test_activitypub_mixin.py
+++ b/bookwyrm/tests/models/test_activitypub_mixin.py
@@ -30,6 +30,12 @@ class ActivitypubMixins(TestCase):
                 outbox='https://example.com/users/rat/outbox',
             )
 
+        self.object_mock = {
+            'to': 'to field', 'cc': 'cc field',
+            'content': 'hi', 'id': 'bip', 'type': 'Test',
+            'published': '2020-12-04T17:52:22.623807+00:00',
+        }
+
 
     # ActivitypubMixin
     def test_to_activity(self):
@@ -292,15 +298,10 @@ class ActivitypubMixins(TestCase):
 
     def test_to_create_activity(self):
         ''' wrapper for ActivityPub "create" action '''
-        object_activity = {
-            'to': 'to field', 'cc': 'cc field',
-            'content': 'hi',
-            'published': '2020-12-04T17:52:22.623807+00:00',
-        }
         MockSelf = namedtuple('Self', ('remote_id', 'to_activity'))
         mock_self = MockSelf(
             'https://example.com/status/1',
-            lambda *args: object_activity
+            lambda *args: self.object_mock
         )
         activity = ObjectMixin.to_create_activity(
             mock_self, self.local_user)
@@ -312,7 +313,7 @@ class ActivitypubMixins(TestCase):
         self.assertEqual(activity['type'], 'Create')
         self.assertEqual(activity['to'], 'to field')
         self.assertEqual(activity['cc'], 'cc field')
-        self.assertEqual(activity['object'], object_activity)
+        self.assertIsInstance(activity['object'], dict)
         self.assertEqual(
             activity['signature'].creator,
             '%s#main-key' % self.local_user.remote_id
@@ -323,7 +324,7 @@ class ActivitypubMixins(TestCase):
         MockSelf = namedtuple('Self', ('remote_id', 'to_activity'))
         mock_self = MockSelf(
             'https://example.com/status/1',
-            lambda *args: {}
+            lambda *args: self.object_mock
         )
         activity = ObjectMixin.to_delete_activity(
             mock_self, self.local_user)
@@ -346,7 +347,7 @@ class ActivitypubMixins(TestCase):
         MockSelf = namedtuple('Self', ('remote_id', 'to_activity'))
         mock_self = MockSelf(
             'https://example.com/status/1',
-            lambda *args: {}
+            lambda *args: self.object_mock
         )
         activity = ObjectMixin.to_update_activity(
             mock_self, self.local_user)
@@ -361,7 +362,7 @@ class ActivitypubMixins(TestCase):
         self.assertEqual(
             activity['to'],
             ['https://www.w3.org/ns/activitystreams#Public'])
-        self.assertEqual(activity['object'], {})
+        self.assertIsInstance(activity['object'], dict)
 
 
     # Activity mixin
@@ -370,7 +371,7 @@ class ActivitypubMixins(TestCase):
         MockSelf = namedtuple('Self', ('remote_id', 'to_activity', 'user'))
         mock_self = MockSelf(
             'https://example.com/status/1',
-            lambda *args: {},
+            lambda *args: self.object_mock,
             self.local_user,
         )
         activity = ActivityMixin.to_undo_activity(mock_self)
@@ -380,4 +381,4 @@ class ActivitypubMixins(TestCase):
         )
         self.assertEqual(activity['actor'], self.local_user.remote_id)
         self.assertEqual(activity['type'], 'Undo')
-        self.assertEqual(activity['object'], {})
+        self.assertIsInstance(activity['object'], dict)
diff --git a/bookwyrm/tests/models/test_fields.py b/bookwyrm/tests/models/test_fields.py
index 38de9c98..24c0fb02 100644
--- a/bookwyrm/tests/models/test_fields.py
+++ b/bookwyrm/tests/models/test_fields.py
@@ -17,6 +17,7 @@ from django.db import models
 from django.test import TestCase
 from django.utils import timezone
 
+from bookwyrm import activitypub
 from bookwyrm.activitypub.base_activity import ActivityObject
 from bookwyrm.models import fields, User, Status
 from bookwyrm.models.base_model import BookWyrmModel
@@ -275,7 +276,7 @@ class ActivitypubFields(TestCase):
             'rat', 'rat@rat.rat', 'ratword',
             local=True, localname='rat')
         with patch('bookwyrm.models.user.set_remote_server.delay'):
-            value = instance.field_from_activity(userdata)
+            value = instance.field_from_activity(activitypub.Person(**userdata))
         self.assertIsInstance(value, User)
         self.assertNotEqual(value, unrelated_user)
         self.assertEqual(value.remote_id, 'https://example.com/user/mouse')
@@ -300,7 +301,7 @@ class ActivitypubFields(TestCase):
             local=True, localname='rat')
 
         with patch('bookwyrm.models.activitypub_mixin.ObjectMixin.broadcast'):
-            value = instance.field_from_activity(userdata)
+            value = instance.field_from_activity(activitypub.Person(**userdata))
         self.assertEqual(value, user)
 
 
diff --git a/bookwyrm/tests/models/test_import_model.py b/bookwyrm/tests/models/test_import_model.py
index 146c60a7..7ec4e700 100644
--- a/bookwyrm/tests/models/test_import_model.py
+++ b/bookwyrm/tests/models/test_import_model.py
@@ -171,6 +171,8 @@ class ImportJob(TestCase):
                     'bookwyrm.connectors.connector_manager.first_search_result'
                 ) as search:
                 search.return_value = result
-                book = self.item_1.get_book_from_isbn()
+                with patch('bookwyrm.connectors.openlibrary.Connector.' \
+                        'get_authors_from_data'):
+                    book = self.item_1.get_book_from_isbn()
 
         self.assertEqual(book.title, 'Sabriel')

From 8bb20730fca03ad8c5565ee3f73676816870051e Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 17 Feb 2021 09:33:33 -0800
Subject: [PATCH 224/280] Fixes bug in serializing dataclasses in place

---
 bookwyrm/activitypub/base_activity.py | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index 10cbf3a0..8b538f0b 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -162,15 +162,14 @@ class ActivityObject:
 
     def serialize(self):
         ''' convert to dictionary with context attr '''
-        data = self.__dict__
+        data = self.__dict__.copy()
         # recursively serialize
         for (k, v) in data.items():
             try:
-                is_subclass = issubclass(type(v), ActivityObject)
+                if issubclass(type(v), ActivityObject):
+                    data[k] = v.serialize()
             except TypeError:
-                is_subclass = False
-            if is_subclass:
-                data[k] = v.serialize()
+                pass
         data = {k:v for (k, v) in data.items() if v is not None}
         data['@context'] = 'https://www.w3.org/ns/activitystreams'
         return data

From b18dac5814fd74c62782e6f94d4a7da049f4e2c1 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 17 Feb 2021 10:15:22 -0800
Subject: [PATCH 225/280] Don't use generic ActivityObject as serializer

---
 bookwyrm/activitypub/base_activity.py      | 6 +++++-
 bookwyrm/activitypub/ordered_collection.py | 1 +
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index 8b538f0b..7b9fe519 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -76,8 +76,12 @@ class ActivityObject:
                     is_subclass = False
                 # parse a dict into the appropriate activity
                 if is_subclass and isinstance(value, dict):
+                    serializer = None
+                    if not isinstance(field.type, ActivityObject):
+                        # this is generic, gotta figure out the type manually
+                        serializer = field.type
                     value = naive_parse(
-                        activity_objects, value, serializer=field.type)
+                        activity_objects, value, serializer=serializer)
 
             except KeyError:
                 if field.default == MISSING and \
diff --git a/bookwyrm/activitypub/ordered_collection.py b/bookwyrm/activitypub/ordered_collection.py
index cf642994..38f1c26c 100644
--- a/bookwyrm/activitypub/ordered_collection.py
+++ b/bookwyrm/activitypub/ordered_collection.py
@@ -17,6 +17,7 @@ class OrderedCollection(ActivityObject):
 
 @dataclass(init=False)
 class OrderedCollectionPrivate(OrderedCollection):
+    ''' an ordered collection with privacy settings '''
     to: List[str] = field(default_factory=lambda: [])
     cc: List[str] = field(default_factory=lambda: [])
 

From 9225043b5d1cedbb2a38f137c9f7d929783ef6e7 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 17 Feb 2021 10:16:17 -0800
Subject: [PATCH 226/280] Fixes relationship model test

---
 .../tests/models/test_relationship_models.py  | 21 ++++++-------------
 bookwyrm/tests/models/test_shelf_model.py     |  1 +
 2 files changed, 7 insertions(+), 15 deletions(-)

diff --git a/bookwyrm/tests/models/test_relationship_models.py b/bookwyrm/tests/models/test_relationship_models.py
index 97f267b6..0ef53450 100644
--- a/bookwyrm/tests/models/test_relationship_models.py
+++ b/bookwyrm/tests/models/test_relationship_models.py
@@ -23,19 +23,6 @@ class Relationship(TestCase):
         self.local_user.remote_id = 'http://local.com/user/mouse'
         self.local_user.save(broadcast=False)
 
-    def test_user_follows(self):
-        ''' create a follow relationship '''
-        with patch('bookwyrm.models.activitypub_mixin.ActivityMixin.broadcast'):
-            rel = models.UserFollows.objects.create(
-                user_subject=self.local_user,
-                user_object=self.remote_user
-            )
-
-        activity = rel.to_activity()
-        self.assertEqual(activity['id'], rel.remote_id)
-        self.assertEqual(activity['actor'], self.local_user.remote_id)
-        self.assertEqual(activity['object'], self.remote_user.remote_id)
-
 
     def test_user_follows_from_request(self):
         ''' convert a follow request into a follow '''
@@ -116,13 +103,15 @@ class Relationship(TestCase):
             self.assertEqual(user.remote_id, self.local_user.remote_id)
             self.assertEqual(activity['type'], 'Accept')
             self.assertEqual(activity['actor'], self.local_user.remote_id)
-            self.assertEqual(
-                activity['object']['id'], request.remote_id)
+            self.assertEqual(activity['object']['id'], 'https://www.hi.com/')
 
+        self.local_user.manually_approves_followers = True
+        self.local_user.save(broadcast=False)
         models.UserFollowRequest.broadcast = mock_broadcast
         request = models.UserFollowRequest.objects.create(
             user_subject=self.remote_user,
             user_object=self.local_user,
+            remote_id='https://www.hi.com/'
         )
         request.accept()
 
@@ -145,6 +134,8 @@ class Relationship(TestCase):
                 activity['object']['id'], request.remote_id)
 
         models.UserFollowRequest.broadcast = mock_reject
+        self.local_user.manually_approves_followers = True
+        self.local_user.save(broadcast=False)
         request = models.UserFollowRequest.objects.create(
             user_subject=self.remote_user,
             user_object=self.local_user,
diff --git a/bookwyrm/tests/models/test_shelf_model.py b/bookwyrm/tests/models/test_shelf_model.py
index 11b5ad5c..c997326e 100644
--- a/bookwyrm/tests/models/test_shelf_model.py
+++ b/bookwyrm/tests/models/test_shelf_model.py
@@ -4,6 +4,7 @@ from django.test import TestCase
 from bookwyrm import models, settings
 
 
+#pylint: disable=unused-argument
 class Shelf(TestCase):
     ''' some activitypub oddness ahead '''
     def setUp(self):

From 92e40e1cec05c3d2cc2de66334fa605176a47d86 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 17 Feb 2021 10:30:02 -0800
Subject: [PATCH 227/280] Pass model instances into activities instead of json

---
 bookwyrm/activitypub/base_activity.py | 11 +++++------
 bookwyrm/models/activitypub_mixin.py  | 10 +++++-----
 2 files changed, 10 insertions(+), 11 deletions(-)

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index 7b9fe519..dbd4eacc 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -74,14 +74,13 @@ class ActivityObject:
                     is_subclass = issubclass(field.type, ActivityObject)
                 except TypeError:
                     is_subclass = False
+                # serialize a model obj
+                if hasattr(value, 'to_activity'):
+                    value = value.to_activity()
                 # parse a dict into the appropriate activity
-                if is_subclass and isinstance(value, dict):
-                    serializer = None
-                    if not isinstance(field.type, ActivityObject):
-                        # this is generic, gotta figure out the type manually
-                        serializer = field.type
+                elif is_subclass and isinstance(value, dict):
                     value = naive_parse(
-                        activity_objects, value, serializer=serializer)
+                        activity_objects, value, serializer=field.type)
 
             except KeyError:
                 if field.default == MISSING and \
diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 6ecf8d96..9863af4c 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -260,7 +260,7 @@ class ObjectMixin(ActivitypubMixin):
             actor=user.remote_id,
             to=['%s/followers' % user.remote_id],
             cc=['https://www.w3.org/ns/activitystreams#Public'],
-            object=self.to_activity(),
+            object=self,
         ).serialize()
 
 
@@ -271,7 +271,7 @@ class ObjectMixin(ActivitypubMixin):
             id=activity_id,
             actor=user.remote_id,
             to=['https://www.w3.org/ns/activitystreams#Public'],
-            object=self.to_activity()
+            object=self
         ).serialize()
 
 
@@ -363,7 +363,7 @@ class CollectionItemMixin(ActivitypubMixin):
         return activitypub.Add(
             id='%s#add' % self.remote_id,
             actor=self.user.remote_id,
-            object=object_field.to_activity(),
+            object=object_field,
             target=collection_field.remote_id
         ).serialize()
 
@@ -374,7 +374,7 @@ class CollectionItemMixin(ActivitypubMixin):
         return activitypub.Remove(
             id='%s#remove' % self.remote_id,
             actor=self.user.remote_id,
-            object=object_field.to_activity(),
+            object=object_field,
             target=collection_field.remote_id
         ).serialize()
 
@@ -403,7 +403,7 @@ class ActivityMixin(ActivitypubMixin):
         return activitypub.Undo(
             id='%s#undo' % self.remote_id,
             actor=user.remote_id,
-            object=self.to_activity()
+            object=self,
         ).serialize()
 
 

From d5ca77362bf14f951101fd59d821e85ceb1a7a6b Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 17 Feb 2021 10:38:09 -0800
Subject: [PATCH 228/280] Fixes boost activity type in status model test

---
 bookwyrm/tests/models/test_status_model.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/tests/models/test_status_model.py b/bookwyrm/tests/models/test_status_model.py
index 6978d593..f9b95f34 100644
--- a/bookwyrm/tests/models/test_status_model.py
+++ b/bookwyrm/tests/models/test_status_model.py
@@ -63,7 +63,7 @@ class Status(TestCase):
         self.assertEqual(models.Review().status_type, 'Review')
         self.assertEqual(models.Quotation().status_type, 'Quotation')
         self.assertEqual(models.Comment().status_type, 'Comment')
-        self.assertEqual(models.Boost().status_type, 'Boost')
+        self.assertEqual(models.Boost().status_type, 'Announce')
 
     def test_boostable(self, _):
         ''' can a status be boosted, based on privacy '''

From d022fef6259d8d1c6d975a439fa88d2073c5d46f Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 17 Feb 2021 11:28:54 -0800
Subject: [PATCH 229/280] broadcast accepts correctly

---
 bookwyrm/models/relationship.py     | 20 +++++++++++++-------
 bookwyrm/tests/views/test_follow.py |  8 +++++---
 bookwyrm/views/follow.py            | 16 +++++++++-------
 3 files changed, 27 insertions(+), 17 deletions(-)

diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index 722f0fac..76852988 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -91,9 +91,14 @@ class UserFollowRequest(ActivitypubMixin, UserRelationship):
                 user_subject=self.user_object,
                 user_object=self.user_subject,
             )
-            return None
+            return
         except (UserFollows.DoesNotExist, UserBlocks.DoesNotExist):
+            pass
+
+        # this was calling itself which is not my idea of "super" ...
+        if not self.id:
             super().save(*args, **kwargs)
+            return
 
         if broadcast and self.user_subject.local and not self.user_object.local:
             self.broadcast(self.to_activity(), self.user_subject)
@@ -116,16 +121,17 @@ class UserFollowRequest(ActivitypubMixin, UserRelationship):
     def accept(self):
         ''' turn this request into the real deal'''
         user = self.user_object
-        activity = activitypub.Accept(
-            id=self.get_remote_id(status='accepts'),
-            actor=self.user_object.remote_id,
-            object=self.to_activity()
-        ).serialize()
+        if not self.user_subject.local:
+            activity = activitypub.Accept(
+                id=self.get_remote_id(status='accepts'),
+                actor=self.user_object.remote_id,
+                object=self.to_activity()
+            ).serialize()
+            self.broadcast(activity, user)
         with transaction.atomic():
             UserFollows.from_request(self)
             self.delete()
 
-        self.broadcast(activity, user)
 
 
     def reject(self):
diff --git a/bookwyrm/tests/views/test_follow.py b/bookwyrm/tests/views/test_follow.py
index 9a157659..b913c17d 100644
--- a/bookwyrm/tests/views/test_follow.py
+++ b/bookwyrm/tests/views/test_follow.py
@@ -77,7 +77,6 @@ class BookViews(TestCase):
         self.assertEqual(rel.status, 'follow_request')
 
 
-
     def test_handle_follow_local(self):
         ''' send a follow request '''
         rat = models.User.objects.create_user(
@@ -106,15 +105,18 @@ class BookViews(TestCase):
         self.remote_user.followers.add(self.local_user)
         self.assertEqual(self.remote_user.followers.count(), 1)
         # need to see if this ACTUALLY broadcasts
-        raise ValueError()
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay') \
+                as mock:
             views.unfollow(request)
+            self.assertEqual(mock.call_count, 1)
 
         self.assertEqual(self.remote_user.followers.count(), 0)
 
 
     def test_handle_accept(self):
         ''' accept a follow request '''
+        self.local_user.manually_approves_followers = True
+        self.local_user.save(broadcast=False)
         request = self.factory.post('', {'user': self.remote_user.username})
         request.user = self.local_user
         rel = models.UserFollowRequest.objects.create(
diff --git a/bookwyrm/views/follow.py b/bookwyrm/views/follow.py
index e95355e6..d015dab2 100644
--- a/bookwyrm/views/follow.py
+++ b/bookwyrm/views/follow.py
@@ -1,5 +1,6 @@
 ''' views for actions you can take in the application '''
 from django.contrib.auth.decorators import login_required
+from django.db import IntegrityError
 from django.http import HttpResponseBadRequest
 from django.shortcuts import redirect
 from django.views.decorators.http import require_POST
@@ -17,10 +18,13 @@ def follow(request):
     except models.User.DoesNotExist:
         return HttpResponseBadRequest()
 
-    rel, _ = models.UserFollowRequest.objects.get_or_create(
-        user_subject=request.user,
-        user_object=to_follow,
-    )
+    try:
+        models.UserFollowRequest.objects.create(
+            user_subject=request.user,
+            user_object=to_follow,
+        )
+    except IntegrityError:
+        pass
 
     return redirect(to_follow.local_path)
 
@@ -38,9 +42,7 @@ def unfollow(request):
     models.UserFollows.objects.get(
         user_subject=request.user,
         user_object=to_unfollow
-    )
-
-    to_unfollow.followers.remove(request.user)
+    ).delete()
     return redirect(to_unfollow.local_path)
 
 

From 08dc5b4d8617c1dde4e18e35948a0eb52b3b86d3 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 17 Feb 2021 11:45:21 -0800
Subject: [PATCH 230/280] Fixes unfollow

---
 bookwyrm/models/relationship.py     | 14 ++++++++++++--
 bookwyrm/tests/views/test_follow.py |  1 -
 2 files changed, 12 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index 76852988..3e6ac0fb 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -5,7 +5,7 @@ from django.db.models import Q
 from django.dispatch import receiver
 
 from bookwyrm import activitypub
-from .activitypub_mixin import ActivitypubMixin, ActivityMixin
+from .activitypub_mixin import ActivitypubMixin, ActivityMixin, generate_activity
 from .base_model import BookWyrmModel
 from . import fields
 
@@ -56,10 +56,20 @@ class UserRelationship(BookWyrmModel):
         return '%s#%s/%d' % (base_path, status, self.id)
 
 
-class UserFollows(ActivitypubMixin, UserRelationship):
+class UserFollows(ActivityMixin, UserRelationship):
     ''' Following a user '''
     status = 'follows'
 
+    def save(self, *args, **kwargs):
+        ''' never broadcast a creation (that's handled by "accept"), only a
+            deletion (an unfollow, as opposed to "reject" and undo pending) '''
+        super().save(*args, broadcast=False, **kwargs)
+
+    def to_activity(self):
+        ''' overrides default to manually set serializer '''
+        return activitypub.Follow(**generate_activity(self))
+
+
     @classmethod
     def from_request(cls, follow_request):
         ''' converts a follow request into a follow relationship '''
diff --git a/bookwyrm/tests/views/test_follow.py b/bookwyrm/tests/views/test_follow.py
index b913c17d..5f61ab03 100644
--- a/bookwyrm/tests/views/test_follow.py
+++ b/bookwyrm/tests/views/test_follow.py
@@ -104,7 +104,6 @@ class BookViews(TestCase):
         request.user = self.local_user
         self.remote_user.followers.add(self.local_user)
         self.assertEqual(self.remote_user.followers.count(), 1)
-        # need to see if this ACTUALLY broadcasts
         with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay') \
                 as mock:
             views.unfollow(request)

From 7b21a0a2081af5271aa3322ad6effbe93e307aa8 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 17 Feb 2021 12:23:55 -0800
Subject: [PATCH 231/280] Fix things, unfix things, refix things, break things,
 fix things

---
 bookwyrm/activitypub/base_activity.py | 6 ++++--
 bookwyrm/models/relationship.py       | 5 +----
 bookwyrm/tests/views/test_follow.py   | 2 ++
 bookwyrm/tests/views/test_inbox.py    | 8 +++++---
 4 files changed, 12 insertions(+), 9 deletions(-)

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index dbd4eacc..c360711d 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -79,8 +79,10 @@ class ActivityObject:
                     value = value.to_activity()
                 # parse a dict into the appropriate activity
                 elif is_subclass and isinstance(value, dict):
-                    value = naive_parse(
-                        activity_objects, value, serializer=field.type)
+                    if activity_objects:
+                        value = naive_parse(activity_objects, value)
+                    else:
+                        value = naive_parse(activity_objects, value, serializer=field.type)
 
             except KeyError:
                 if field.default == MISSING and \
diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index 3e6ac0fb..764cada6 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -105,10 +105,7 @@ class UserFollowRequest(ActivitypubMixin, UserRelationship):
         except (UserFollows.DoesNotExist, UserBlocks.DoesNotExist):
             pass
 
-        # this was calling itself which is not my idea of "super" ...
-        if not self.id:
-            super().save(*args, **kwargs)
-            return
+        super().save(*args, **kwargs)
 
         if broadcast and self.user_subject.local and not self.user_object.local:
             self.broadcast(self.to_activity(), self.user_subject)
diff --git a/bookwyrm/tests/views/test_follow.py b/bookwyrm/tests/views/test_follow.py
index 5f61ab03..62543d2d 100644
--- a/bookwyrm/tests/views/test_follow.py
+++ b/bookwyrm/tests/views/test_follow.py
@@ -135,6 +135,8 @@ class BookViews(TestCase):
 
     def test_handle_reject(self):
         ''' reject a follow request '''
+        self.local_user.manually_approves_followers = True
+        self.local_user.save(broadcast=False)
         request = self.factory.post('', {'user': self.remote_user.username})
         request.user = self.local_user
         rel = models.UserFollowRequest.objects.create(
diff --git a/bookwyrm/tests/views/test_inbox.py b/bookwyrm/tests/views/test_inbox.py
index 0251d8a2..1e597cb1 100644
--- a/bookwyrm/tests/views/test_inbox.py
+++ b/bookwyrm/tests/views/test_inbox.py
@@ -236,7 +236,7 @@ class Inbox(TestCase):
         self.assertEqual(book_list.remote_id, 'https://example.com/list/22')
 
 
-    def test_handle_follow(self):
+    def test_handle_follow_x(self):
         ''' remote user wants to follow local user '''
         activity = {
             "@context": "https://www.w3.org/ns/activitystreams",
@@ -246,7 +246,9 @@ class Inbox(TestCase):
             "object": "https://example.com/user/mouse"
         }
 
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay') as mock:
+        self.assertFalse(models.UserFollowRequest.objects.exists())
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay') \
+                as mock:
             views.inbox.activity_task(activity)
             self.assertEqual(mock.call_count, 1)
 
@@ -736,6 +738,6 @@ class Inbox(TestCase):
                 "type": "Block",
                 "actor": "https://example.com/users/rat",
                 "object": "https://example.com/user/mouse"
-        }}
+            }}
         views.inbox.activity_task(activity)
         self.assertFalse(models.UserBlocks.objects.exists())

From e8e4ed773cfa83961756f795c4f234b4d35d5638 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 17 Feb 2021 13:07:19 -0800
Subject: [PATCH 232/280] Fixes deletion for boosts

---
 bookwyrm/models/status.py                | 4 ++++
 bookwyrm/tests/views/test_interaction.py | 6 ++++--
 2 files changed, 8 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index fbc94e9d..2fb70801 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -86,6 +86,10 @@ class Status(OrderedCollectionPageMixin, BookWyrmModel):
 
     def delete(self, *args, **kwargs):#pylint: disable=unused-argument
         ''' "delete" a status '''
+        if hasattr(self, 'boosted_status'):
+            # okay but if it's a boost really delete it
+            super().delete(*args, **kwargs)
+            return
         self.deleted = True
         self.deleted_date = timezone.now()
         self.save()
diff --git a/bookwyrm/tests/views/test_interaction.py b/bookwyrm/tests/views/test_interaction.py
index da6d5f9c..c6d39f29 100644
--- a/bookwyrm/tests/views/test_interaction.py
+++ b/bookwyrm/tests/views/test_interaction.py
@@ -138,7 +138,7 @@ class InteractionViews(TestCase):
         ''' undo a boost '''
         view = views.Unboost.as_view()
         request = self.factory.post('')
-        request.user = self.remote_user
+        request.user = self.local_user
         with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             status = models.Status.objects.create(
                 user=self.local_user, content='hi')
@@ -146,7 +146,9 @@ class InteractionViews(TestCase):
 
         self.assertEqual(models.Boost.objects.count(), 1)
         self.assertEqual(models.Notification.objects.count(), 1)
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay') \
+                as mock:
             view(request, status.id)
+            self.assertEqual(mock.call_count, 1)
         self.assertEqual(models.Boost.objects.count(), 0)
         self.assertEqual(models.Notification.objects.count(), 0)

From 79875271f725dfb079b13d29c2f3a85a6b061522 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 17 Feb 2021 13:33:48 -0800
Subject: [PATCH 233/280] Makes next/prev page links optional

---
 bookwyrm/activitypub/ordered_collection.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/activitypub/ordered_collection.py b/bookwyrm/activitypub/ordered_collection.py
index 38f1c26c..14b35f3c 100644
--- a/bookwyrm/activitypub/ordered_collection.py
+++ b/bookwyrm/activitypub/ordered_collection.py
@@ -39,6 +39,6 @@ class OrderedCollectionPage(ActivityObject):
     ''' structure of an ordered collection activity '''
     partOf: str
     orderedItems: List
-    next: str
-    prev: str
+    next: str = None
+    prev: str = None
     type: str = 'OrderedCollectionPage'

From 3f02b5f6f28040b8d3f0cb1bcce5a7b3330e6e56 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 17 Feb 2021 13:34:36 -0800
Subject: [PATCH 234/280] Fixes view tests

---
 bookwyrm/models/activitypub_mixin.py | 2 +-
 bookwyrm/tests/views/test_list.py    | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 9863af4c..1abf9a75 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -248,7 +248,7 @@ class ObjectMixin(ActivitypubMixin):
             actor=user.remote_id,
             to=activity_object['to'],
             cc=activity_object['cc'],
-            object=activity_object,
+            object=self,
             signature=signature,
         ).serialize()
 
diff --git a/bookwyrm/tests/views/test_list.py b/bookwyrm/tests/views/test_list.py
index 8737e347..e41d9806 100644
--- a/bookwyrm/tests/views/test_list.py
+++ b/bookwyrm/tests/views/test_list.py
@@ -9,7 +9,7 @@ from django.test.client import RequestFactory
 from bookwyrm import models, views
 from bookwyrm.activitypub import ActivitypubResponse
 
-
+#pylint: disable=unused-argument
 class ListViews(TestCase):
     ''' tag views'''
     def setUp(self):
@@ -45,7 +45,7 @@ class ListViews(TestCase):
         with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             models.List.objects.create(name='Public list', user=self.local_user)
             models.List.objects.create(
-                name='Private list', privacy='private', user=self.local_user)
+                name='Private list', privacy='direct', user=self.local_user)
         request = self.factory.get('')
         request.user = self.local_user
 
@@ -164,7 +164,7 @@ class ListViews(TestCase):
         with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
             models.List.objects.create(name='Public list', user=self.local_user)
             models.List.objects.create(
-                name='Private list', privacy='private', user=self.local_user)
+                name='Private list', privacy='direct', user=self.local_user)
         request = self.factory.get('')
         request.user = self.local_user
 

From e707374888f0c9a8571c6356f41bb19bb7086e96 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 17 Feb 2021 14:37:20 -0800
Subject: [PATCH 235/280] Don't broadcast from inbox tests

---
 bookwyrm/models/relationship.py    | 18 ++++++++++--------
 bookwyrm/tests/views/test_inbox.py |  9 +++------
 2 files changed, 13 insertions(+), 14 deletions(-)

diff --git a/bookwyrm/models/relationship.py b/bookwyrm/models/relationship.py
index 764cada6..14f702b4 100644
--- a/bookwyrm/models/relationship.py
+++ b/bookwyrm/models/relationship.py
@@ -5,7 +5,8 @@ from django.db.models import Q
 from django.dispatch import receiver
 
 from bookwyrm import activitypub
-from .activitypub_mixin import ActivitypubMixin, ActivityMixin, generate_activity
+from .activitypub_mixin import ActivitypubMixin, ActivityMixin
+from .activitypub_mixin import generate_activity
 from .base_model import BookWyrmModel
 from . import fields
 
@@ -143,14 +144,15 @@ class UserFollowRequest(ActivitypubMixin, UserRelationship):
 
     def reject(self):
         ''' generate a Reject for this follow request '''
-        user = self.user_object
-        activity = activitypub.Reject(
-            id=self.get_remote_id(status='rejects'),
-            actor=self.user_object.remote_id,
-            object=self.to_activity()
-        ).serialize()
+        if self.user_object.local:
+            activity = activitypub.Reject(
+                id=self.get_remote_id(status='rejects'),
+                actor=self.user_object.remote_id,
+                object=self.to_activity()
+            ).serialize()
+            self.broadcast(activity, self.user_object)
+
         self.delete()
-        self.broadcast(activity, user)
 
 
 class UserBlocks(ActivityMixin, UserRelationship):
diff --git a/bookwyrm/tests/views/test_inbox.py b/bookwyrm/tests/views/test_inbox.py
index 1e597cb1..c2658917 100644
--- a/bookwyrm/tests/views/test_inbox.py
+++ b/bookwyrm/tests/views/test_inbox.py
@@ -379,11 +379,8 @@ class Inbox(TestCase):
         views.inbox.activity_task(activity)
 
         # request should be deleted
-        self.assertEqual(models.UserFollowRequest.objects.count(), 0)
-
-        # relationship should be created
-        follows = self.remote_user.followers
-        self.assertEqual(follows.count(), 0)
+        self.assertFalse(models.UserFollowRequest.objects.exists())
+        self.assertFalse(self.remote_user.followers.exists())
 
 
     def test_handle_update_list(self):
@@ -580,7 +577,7 @@ class Inbox(TestCase):
             'object': {
                 'type': 'Announce',
                 'id': boost.remote_id,
-                'actor': self.local_user.remote_id,
+                'actor': self.remote_user.remote_id,
                 'object': self.status.remote_id,
             }
         }

From fb98ef4b384f6fb2643623782cd3ffd551b9ebb8 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Fri, 19 Feb 2021 11:16:01 -0800
Subject: [PATCH 236/280] Remove redundant activitypub dataclass

---
 bookwyrm/activitypub/__init__.py | 2 +-
 bookwyrm/activitypub/verbs.py    | 8 +-------
 bookwyrm/models/shelf.py         | 2 +-
 bookwyrm/models/tag.py           | 2 +-
 4 files changed, 4 insertions(+), 10 deletions(-)

diff --git a/bookwyrm/activitypub/__init__.py b/bookwyrm/activitypub/__init__.py
index 5303d1b2..f06154ab 100644
--- a/bookwyrm/activitypub/__init__.py
+++ b/bookwyrm/activitypub/__init__.py
@@ -15,7 +15,7 @@ from .response import ActivitypubResponse
 from .book import Edition, Work, Author
 from .verbs import Create, Delete, Undo, Update
 from .verbs import Follow, Accept, Reject, Block
-from .verbs import Add, AddBook, AddListItem, Remove
+from .verbs import Add, AddListItem, Remove
 from .verbs import Announce, Like
 
 # this creates a list of all the Activity types that we can serialize,
diff --git a/bookwyrm/activitypub/verbs.py b/bookwyrm/activitypub/verbs.py
index aa6e7eee..6f1a4d44 100644
--- a/bookwyrm/activitypub/verbs.py
+++ b/bookwyrm/activitypub/verbs.py
@@ -132,13 +132,7 @@ class Add(Verb):
 
 
 @dataclass(init=False)
-class AddBook(Add):
-    '''Add activity that's aware of the book obj '''
-    object: Edition
-
-
-@dataclass(init=False)
-class AddListItem(AddBook):
+class AddListItem(Add):
     '''Add activity that's aware of the book obj '''
     notes: str = None
     order: int = 0
diff --git a/bookwyrm/models/shelf.py b/bookwyrm/models/shelf.py
index 921b8617..dfb8b9b3 100644
--- a/bookwyrm/models/shelf.py
+++ b/bookwyrm/models/shelf.py
@@ -57,7 +57,7 @@ class ShelfBook(CollectionItemMixin, BookWyrmModel):
     user = fields.ForeignKey(
         'User', on_delete=models.PROTECT, activitypub_field='actor')
 
-    activity_serializer = activitypub.AddBook
+    activity_serializer = activitypub.Add
     object_field = 'book'
     collection_field = 'shelf'
 
diff --git a/bookwyrm/models/tag.py b/bookwyrm/models/tag.py
index d75f6e05..12645b9e 100644
--- a/bookwyrm/models/tag.py
+++ b/bookwyrm/models/tag.py
@@ -50,7 +50,7 @@ class UserTag(CollectionItemMixin, BookWyrmModel):
     tag = fields.ForeignKey(
         'Tag', on_delete=models.PROTECT, activitypub_field='target')
 
-    activity_serializer = activitypub.AddBook
+    activity_serializer = activitypub.Add
     object_field = 'book'
     collection_field = 'tag'
 

From dbe9431d5adf93276e4ab381ddf3868b338f0642 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Sat, 20 Feb 2021 11:24:41 -0800
Subject: [PATCH 237/280] Fixes pure serializer

---
 bookwyrm/models/activitypub_mixin.py          | 25 +++++++++++--------
 bookwyrm/models/status.py                     | 24 ++++++++++--------
 .../tests/models/test_activitypub_mixin.py    | 23 -----------------
 bookwyrm/tests/models/test_status_model.py    | 21 ++++++++++++++++
 4 files changed, 49 insertions(+), 44 deletions(-)

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 1abf9a75..12bbda96 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -191,7 +191,7 @@ class ObjectMixin(ActivitypubMixin):
 
             try:
                 software = None
-                # do we have a "pure" activitypub version of this for  mastodon?
+                # do we have a "pure" activitypub version of this for mastodon?
                 if hasattr(self, 'pure_content'):
                     pure_activity = self.to_create_activity(user, pure=True)
                     self.broadcast(pure_activity, user, software='other')
@@ -199,7 +199,7 @@ class ObjectMixin(ActivitypubMixin):
                 # sends to BW only if we just did a pure version for masto
                 activity = self.to_create_activity(user)
                 self.broadcast(activity, user, software=software)
-            except KeyError:
+            except AttributeError:
                 # janky as heck, this catches the mutliple inheritence chain
                 # for boosts and ignores this auxilliary broadcast
                 return
@@ -228,27 +228,27 @@ class ObjectMixin(ActivitypubMixin):
 
     def to_create_activity(self, user, **kwargs):
         ''' returns the object wrapped in a Create activity '''
-        activity_object = self.to_activity(**kwargs)
+        activity_object = self.to_activity_dataclass(**kwargs)
 
         signature = None
         create_id = self.remote_id + '/activity'
-        if 'content' in activity_object and activity_object['content']:
+        if hasattr(activity_object, 'content') and activity_object.content:
             signer = pkcs1_15.new(RSA.import_key(user.key_pair.private_key))
-            content = activity_object['content']
+            content = activity_object.content
             signed_message = signer.sign(SHA256.new(content.encode('utf8')))
 
             signature = activitypub.Signature(
                 creator='%s#main-key' % user.remote_id,
-                created=activity_object['published'],
+                created=activity_object.published,
                 signatureValue=b64encode(signed_message).decode('utf8')
             )
 
         return activitypub.Create(
             id=create_id,
             actor=user.remote_id,
-            to=activity_object['to'],
-            cc=activity_object['cc'],
-            object=self,
+            to=activity_object.to,
+            cc=activity_object.cc,
+            object=activity_object,
             signature=signature,
         ).serialize()
 
@@ -312,7 +312,7 @@ class OrderedCollectionPageMixin(ObjectMixin):
         activity['first'] = '%s?page=1' % remote_id
         activity['last'] = '%s?page=%d' % (remote_id, paginated.num_pages)
 
-        return serializer(**activity).serialize()
+        return serializer(**activity)
 
 
 class OrderedCollectionMixin(OrderedCollectionPageMixin):
@@ -324,9 +324,12 @@ class OrderedCollectionMixin(OrderedCollectionPageMixin):
 
     activity_serializer = activitypub.OrderedCollection
 
+    def to_activity_dataclass(self, **kwargs):
+        return self.to_ordered_collection(self.collection_queryset, **kwargs)
+
     def to_activity(self, **kwargs):
         ''' an ordered collection of the specified model queryset  '''
-        return self.to_ordered_collection(self.collection_queryset, **kwargs)
+        return self.to_ordered_collection(self.collection_queryset, **kwargs).serialize()
 
 
 class CollectionItemMixin(ActivitypubMixin):
diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index 2fb70801..aff028a5 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -157,7 +157,7 @@ class Status(OrderedCollectionPageMixin, BookWyrmModel):
             **kwargs
         )
 
-    def to_activity(self, pure=False):# pylint: disable=arguments-differ
+    def to_activity_dataclass(self, pure=False):# pylint: disable=arguments-differ
         ''' return tombstone if the status is deleted '''
         if self.deleted:
             return activitypub.Tombstone(
@@ -165,25 +165,29 @@ class Status(OrderedCollectionPageMixin, BookWyrmModel):
                 url=self.remote_id,
                 deleted=self.deleted_date.isoformat(),
                 published=self.deleted_date.isoformat()
-            ).serialize()
-        activity = ActivitypubMixin.to_activity(self)
-        activity['replies'] = self.to_replies()
+            )
+        activity = ActivitypubMixin.to_activity_dataclass(self)
+        activity.replies = self.to_replies()
 
         # "pure" serialization for non-bookwyrm instances
         if pure and hasattr(self, 'pure_content'):
-            activity['content'] = self.pure_content
-            if 'name' in activity:
-                activity['name'] = self.pure_name
-            activity['type'] = self.pure_type
-            activity['attachment'] = [
+            activity.content = self.pure_content
+            if hasattr(activity, 'name'):
+                activity.name = self.pure_name
+            activity.type = self.pure_type
+            activity.attachment = [
                 image_serializer(b.cover, b.alt_text) \
                     for b in self.mention_books.all()[:4] if b.cover]
             if hasattr(self, 'book') and self.book.cover:
-                activity['attachment'].append(
+                activity.attachment.append(
                     image_serializer(self.book.cover, self.book.alt_text)
                 )
         return activity
 
+    def to_activity(self, pure=False):# pylint: disable=arguments-differ
+        ''' json serialized activitypub class '''
+        return self.to_activity_dataclass(pure=pure).serialize()
+
 
 class GeneratedNote(Status):
     ''' these are app-generated messages about user activity '''
diff --git a/bookwyrm/tests/models/test_activitypub_mixin.py b/bookwyrm/tests/models/test_activitypub_mixin.py
index a6f069d4..11b944d9 100644
--- a/bookwyrm/tests/models/test_activitypub_mixin.py
+++ b/bookwyrm/tests/models/test_activitypub_mixin.py
@@ -296,29 +296,6 @@ class ActivitypubMixins(TestCase):
                 id=1, user=self.local_user, deleted=True).save()
 
 
-    def test_to_create_activity(self):
-        ''' wrapper for ActivityPub "create" action '''
-        MockSelf = namedtuple('Self', ('remote_id', 'to_activity'))
-        mock_self = MockSelf(
-            'https://example.com/status/1',
-            lambda *args: self.object_mock
-        )
-        activity = ObjectMixin.to_create_activity(
-            mock_self, self.local_user)
-        self.assertEqual(
-            activity['id'],
-            'https://example.com/status/1/activity'
-        )
-        self.assertEqual(activity['actor'], self.local_user.remote_id)
-        self.assertEqual(activity['type'], 'Create')
-        self.assertEqual(activity['to'], 'to field')
-        self.assertEqual(activity['cc'], 'cc field')
-        self.assertIsInstance(activity['object'], dict)
-        self.assertEqual(
-            activity['signature'].creator,
-            '%s#main-key' % self.local_user.remote_id
-        )
-
     def test_to_delete_activity(self):
         ''' wrapper for Delete activity '''
         MockSelf = namedtuple('Self', ('remote_id', 'to_activity'))
diff --git a/bookwyrm/tests/models/test_status_model.py b/bookwyrm/tests/models/test_status_model.py
index f9b95f34..c6911b6d 100644
--- a/bookwyrm/tests/models/test_status_model.py
+++ b/bookwyrm/tests/models/test_status_model.py
@@ -284,3 +284,24 @@ class Status(TestCase):
         with self.assertRaises(IntegrityError):
             models.Notification.objects.create(
                 user=self.user, notification_type='GLORB')
+
+
+    def test_create_broadcast(self, broadcast_mock):
+        ''' should send out two verions of a status on create '''
+        models.Comment.objects.create(
+            content='hi', user=self.user, book=self.book)
+        self.assertEqual(broadcast_mock.call_count, 2)
+        pure_call = broadcast_mock.call_args_list[0]
+        bw_call = broadcast_mock.call_args_list[1]
+
+        self.assertEqual(pure_call[1]['software'], 'other')
+        args = pure_call[0][0]
+        self.assertEqual(args['type'], 'Create')
+        self.assertEqual(args['object']['type'], 'Note')
+        self.assertTrue('content' in args['object'])
+
+
+        self.assertEqual(bw_call[1]['software'], 'bookwyrm')
+        args = bw_call[0][0]
+        self.assertEqual(args['type'], 'Create')
+        self.assertEqual(args['object']['type'], 'Comment')

From 02612b00e912564ebd436039138addcae353b840 Mon Sep 17 00:00:00 2001
From: Jim Fingal <jim.fingal@gmail.com>
Date: Sun, 21 Feb 2021 22:49:52 -0800
Subject: [PATCH 238/280] Update Readme

---
 README.md | 30 ++++++++++++++++++------------
 1 file changed, 18 insertions(+), 12 deletions(-)

diff --git a/README.md b/README.md
index 6a624ab3..c8b6e92b 100644
--- a/README.md
+++ b/README.md
@@ -112,36 +112,42 @@ Once the build is complete, you can access the instance at `localhost:1333`
 ## Installing in Production
 
 This project is still young and isn't, at the momoment, very stable, so please procede with caution when running in production.
+
 ### Server setup
  - Get a domain name and set up DNS for your server
  - Set your server up with appropriate firewalls for running a web application (this instruction set is tested again Ubuntu 20.04)
- - Set up a mailgun account and the appropriate DNS settings
+ - Set up an email service (such as mailgun) and the appropriate SMTP/DNS settings
  - Install Docker and docker-compose
+
 ### Install and configure BookWyrm
+
+The `production` branch of BookWyrm contains a number of tools not on the `main` branch that are suited for running in production, such as `docker-compose` changes to update the default commands or configuration of containers, and indivudal changes to container config to enable things like SSL or regular backups.
+
+Instructions for running BookWyrm in production:
+
  - Get the application code:
   `git clone git@github.com:mouse-reeve/bookwyrm.git`
  - Switch to the `production` branch
   `git checkout production`
  - Create your environment variables file
   `cp .env.example .env`
-   - Add your domain, email address, mailgun credentials
+   - Add your domain, email address, SMTP credentials
    - Set a secure redis password and secret key
    - Set a secure database password for postgres
  - Update your nginx configuration in `nginx/default.conf`
    - Replace `your-domain.com` with your domain name
- - Run the application (this should also set up a Certbot ssl cert for your domain)
-  `docker-compose up --build`
-  Make sure all the images build successfully
+ - Run the application (this should also set up a Certbot ssl cert for your domain) with
+  `docker-compose up --build`, and make sure all the images build successfully
  - When docker has built successfully, stop the process with `CTRL-C`
  - Comment out the `command: certonly...` line in `docker-compose.yml`
- - Run docker-compose in the background
-  `docker-compose up -d`
- - Initialize the database
-  `./bw-dev initdb`
- - Set up schedule backups with cron that runs that `docker-compose exec db pg_dump -U <databasename>` and saves the backup to a safe locationgi
- - Congrats! You did it, go to your domain and enjoy the fruits of your labors
+ - Run docker-compose in the background with: `docker-compose up -d`
+ - Initialize the database with: `./bw-dev initdb`
+ - Set up schedule backups with cron that runs that `docker-compose exec db pg_dump -U <databasename>` and saves the backup to a safe location
+
+Congrats! You did it, go to your domain and enjoy the fruits of your labors.
+
 ### Configure your instance
- - Register a user account in the applcation UI
+ - Register a user account in the application UI
  - Make your account a superuser (warning: do *not* use django's `createsuperuser` command)
    - On your server, open the django shell
     `./bw-dev shell`

From f654444aab261ad52e5c973ca883e4797a0a0446 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 22 Feb 2021 08:53:01 -0800
Subject: [PATCH 239/280] Fixes bug in saving remote server

---
 bookwyrm/models/user.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/models/user.py b/bookwyrm/models/user.py
index 7b0f9a91..170b587e 100644
--- a/bookwyrm/models/user.py
+++ b/bookwyrm/models/user.py
@@ -171,15 +171,15 @@ class User(OrderedCollectionPageMixin, AbstractUser):
 
     def save(self, *args, **kwargs):
         ''' populate fields for new local users '''
+        created = not bool(self.id)
         if not self.local and not re.match(regex.full_username, self.username):
             # generate a username that uses the domain (webfinger format)
             actor_parts = urlparse(self.remote_id)
             self.username = '%s@%s' % (self.username, actor_parts.netloc)
             super().save(*args, **kwargs)
-            return
 
         # this user already exists, no need to populate fields
-        if self.id:
+        if created:
             super().save(*args, **kwargs)
             return
 

From bff75cedf54dd0e5dd5d30aa9848406c98a9ff40 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 22 Feb 2021 09:41:52 -0800
Subject: [PATCH 240/280] Boolean error in user save causing infinite recursion

---
 bookwyrm/models/user.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/models/user.py b/bookwyrm/models/user.py
index 170b587e..a65317fa 100644
--- a/bookwyrm/models/user.py
+++ b/bookwyrm/models/user.py
@@ -179,7 +179,7 @@ class User(OrderedCollectionPageMixin, AbstractUser):
             super().save(*args, **kwargs)
 
         # this user already exists, no need to populate fields
-        if created:
+        if not created:
             super().save(*args, **kwargs)
             return
 

From 6b74f56381cdf1c58c9cb0fc468896a535dc3071 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 22 Feb 2021 10:01:19 -0800
Subject: [PATCH 241/280] Safer set remote server

---
 bookwyrm/models/user.py | 23 ++++++++++++++---------
 1 file changed, 14 insertions(+), 9 deletions(-)

diff --git a/bookwyrm/models/user.py b/bookwyrm/models/user.py
index a65317fa..5e77b9e1 100644
--- a/bookwyrm/models/user.py
+++ b/bookwyrm/models/user.py
@@ -9,7 +9,7 @@ from django.db import models
 from django.utils import timezone
 
 from bookwyrm import activitypub
-from bookwyrm.connectors import get_data
+from bookwyrm.connectors import get_data, ConnectorException
 from bookwyrm.models.shelf import Shelf
 from bookwyrm.models.status import Status, Review
 from bookwyrm.settings import DOMAIN
@@ -333,19 +333,24 @@ def get_or_create_remote_server(domain):
     except FederatedServer.DoesNotExist:
         pass
 
-    data = get_data('https://%s/.well-known/nodeinfo' % domain)
-
     try:
-        nodeinfo_url = data.get('links')[0].get('href')
-    except (TypeError, KeyError):
-        return None
+        data = get_data('https://%s/.well-known/nodeinfo' % domain)
+        try:
+            nodeinfo_url = data.get('links')[0].get('href')
+        except (TypeError, KeyError):
+            return None
+
+        data = get_data(nodeinfo_url)
+        application_type = data.get('software', {}).get('name')
+        application_type = data.get('software', {}).get('version')
+    except ConnectorException:
+        application_type = application_version = None
 
-    data = get_data(nodeinfo_url)
 
     server = FederatedServer.objects.create(
         server_name=domain,
-        application_type=data['software']['name'],
-        application_version=data['software']['version'],
+        application_type=application_type,
+        application_version=application_version,
     )
     return server
 

From ef9acaf87810a999ab01577764ba5400f0c6cd51 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 22 Feb 2021 11:38:11 -0800
Subject: [PATCH 242/280] Adds tests for setting remote server

---
 bookwyrm/models/user.py                  |  4 +-
 bookwyrm/tests/models/test_user_model.py | 84 +++++++++++++++++++++++-
 2 files changed, 85 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/models/user.py b/bookwyrm/models/user.py
index 5e77b9e1..a1f927b2 100644
--- a/bookwyrm/models/user.py
+++ b/bookwyrm/models/user.py
@@ -338,11 +338,11 @@ def get_or_create_remote_server(domain):
         try:
             nodeinfo_url = data.get('links')[0].get('href')
         except (TypeError, KeyError):
-            return None
+            raise ConnectorException()
 
         data = get_data(nodeinfo_url)
         application_type = data.get('software', {}).get('name')
-        application_type = data.get('software', {}).get('version')
+        application_version = data.get('software', {}).get('version')
     except ConnectorException:
         application_type = application_version = None
 
diff --git a/bookwyrm/tests/models/test_user_model.py b/bookwyrm/tests/models/test_user_model.py
index a10c89b8..bd184b65 100644
--- a/bookwyrm/tests/models/test_user_model.py
+++ b/bookwyrm/tests/models/test_user_model.py
@@ -1,11 +1,13 @@
 ''' testing models '''
 from unittest.mock import patch
 from django.test import TestCase
+import responses
 
 from bookwyrm import models
 from bookwyrm.settings import DOMAIN
 
-
+# pylint: disable=missing-class-docstring
+# pylint: disable=missing-function-docstring
 class User(TestCase):
     def setUp(self):
         self.user = models.User.objects.create_user(
@@ -71,3 +73,83 @@ class User(TestCase):
         self.assertEqual(activity['type'], 'OrderedCollection')
         self.assertEqual(activity['id'], self.user.outbox)
         self.assertEqual(activity['totalItems'], 0)
+
+
+    def test_set_remote_server(self):
+        server = models.FederatedServer.objects.create(
+            server_name=DOMAIN,
+            application_type='test type',
+            application_version=3
+        )
+
+        models.user.set_remote_server(self.user.id)
+        self.user.refresh_from_db()
+
+        self.assertEqual(self.user.federated_server, server)
+
+    @responses.activate
+    def test_get_or_create_remote_server(self):
+        responses.add(
+            responses.GET,
+            'https://%s/.well-known/nodeinfo' % DOMAIN,
+            json={'links': [{'href': 'http://www.example.com'}, {}]}
+        )
+        responses.add(
+            responses.GET,
+            'http://www.example.com',
+            json={'software': {'name': 'hi', 'version': '2'}},
+        )
+
+        server = models.user.get_or_create_remote_server(DOMAIN)
+        self.assertEqual(server.server_name, DOMAIN)
+        self.assertEqual(server.application_type, 'hi')
+        self.assertEqual(server.application_version, '2')
+
+    @responses.activate
+    def test_get_or_create_remote_server_no_wellknown(self):
+        responses.add(
+            responses.GET,
+            'https://%s/.well-known/nodeinfo' % DOMAIN,
+            status=404
+        )
+
+        server = models.user.get_or_create_remote_server(DOMAIN)
+        self.assertEqual(server.server_name, DOMAIN)
+        self.assertIsNone(server.application_type)
+        self.assertIsNone(server.application_version)
+
+    @responses.activate
+    def test_get_or_create_remote_server_no_links(self):
+        responses.add(
+            responses.GET,
+            'https://%s/.well-known/nodeinfo' % DOMAIN,
+            json={'links': [{'href': 'http://www.example.com'}, {}]}
+        )
+        responses.add(
+            responses.GET,
+            'http://www.example.com',
+            status=404
+        )
+
+        server = models.user.get_or_create_remote_server(DOMAIN)
+        self.assertEqual(server.server_name, DOMAIN)
+        self.assertIsNone(server.application_type)
+        self.assertIsNone(server.application_version)
+
+    @responses.activate
+    def test_get_or_create_remote_server_unknown_format(self):
+        responses.add(
+            responses.GET,
+            'https://%s/.well-known/nodeinfo' % DOMAIN,
+            json={'links': [{'href': 'http://www.example.com'}, {}]}
+        )
+        responses.add(
+            responses.GET,
+            'http://www.example.com',
+            json={'fish': 'salmon'}
+        )
+
+        server = models.user.get_or_create_remote_server(DOMAIN)
+        self.assertEqual(server.server_name, DOMAIN)
+        self.assertIsNone(server.application_type)
+        self.assertIsNone(server.application_version)

From 726a8739a36f5927bc9ac0c331fa3a6ebd75342c Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Mon, 22 Feb 2021 11:42:45 -0800
Subject: [PATCH 243/280] way too much logging coming from http errors

---
 bookwyrm/connectors/abstract_connector.py | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/bookwyrm/connectors/abstract_connector.py b/bookwyrm/connectors/abstract_connector.py
index 527d2f42..5ccd9f91 100644
--- a/bookwyrm/connectors/abstract_connector.py
+++ b/bookwyrm/connectors/abstract_connector.py
@@ -216,11 +216,7 @@ def get_data(url):
         raise ConnectorException()
 
     if not resp.ok:
-        try:
-            resp.raise_for_status()
-        except requests.exceptions.HTTPError as e:
-            logger.exception(e)
-            raise ConnectorException()
+        raise ConnectorException()
     try:
         data = resp.json()
     except ValueError as e:

From cbccdea4683359c3b03865fa972a8a0eb6e70e7d Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 11:13:20 -0800
Subject: [PATCH 244/280] fixes ordered collection serializations

---
 bookwyrm/models/activitypub_mixin.py | 3 ++-
 bookwyrm/models/status.py            | 2 +-
 bookwyrm/models/user.py              | 2 +-
 3 files changed, 4 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 12bbda96..7ea632b3 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -329,7 +329,8 @@ class OrderedCollectionMixin(OrderedCollectionPageMixin):
 
     def to_activity(self, **kwargs):
         ''' an ordered collection of the specified model queryset  '''
-        return self.to_ordered_collection(self.collection_queryset, **kwargs).serialize()
+        return self.to_ordered_collection(
+            self.collection_queryset, **kwargs).serialize()
 
 
 class CollectionItemMixin(ActivitypubMixin):
diff --git a/bookwyrm/models/status.py b/bookwyrm/models/status.py
index aff028a5..ba9727f5 100644
--- a/bookwyrm/models/status.py
+++ b/bookwyrm/models/status.py
@@ -155,7 +155,7 @@ class Status(OrderedCollectionPageMixin, BookWyrmModel):
             remote_id='%s/replies' % self.remote_id,
             collection_only=True,
             **kwargs
-        )
+        ).serialize()
 
     def to_activity_dataclass(self, pure=False):# pylint: disable=arguments-differ
         ''' return tombstone if the status is deleted '''
diff --git a/bookwyrm/models/user.py b/bookwyrm/models/user.py
index 61d119a8..a64a8add 100644
--- a/bookwyrm/models/user.py
+++ b/bookwyrm/models/user.py
@@ -131,7 +131,7 @@ class User(OrderedCollectionPageMixin, AbstractUser):
             privacy__in=['public', 'unlisted'],
         ).select_subclasses().order_by('-published_date')
         return self.to_ordered_collection(queryset, \
-            collection_only=True, remote_id=self.outbox, **kwargs)
+            collection_only=True, remote_id=self.outbox, **kwargs).serialize()
 
     def to_following_activity(self, **kwargs):
         ''' activitypub following list '''

From 6e09d485c4395a970a3ee28c106973c5dc4658bc Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 11:34:15 -0800
Subject: [PATCH 245/280] Outbox sensitive to user agent strings

---
 bookwyrm/models/activitypub_mixin.py |  6 ++---
 bookwyrm/tests/views/test_helpers.py |  6 ++---
 bookwyrm/tests/views/test_outbox.py  | 37 ++++++++++++++++++++++++++++
 bookwyrm/views/feed.py               |  4 +--
 bookwyrm/views/helpers.py            |  4 +--
 bookwyrm/views/outbox.py             |  7 +++++-
 6 files changed, 53 insertions(+), 11 deletions(-)

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 84293725..d934681e 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -282,7 +282,7 @@ class OrderedCollectionPageMixin(ObjectMixin):
 
     def to_ordered_collection(self, queryset, \
             remote_id=None, page=False, collection_only=False, **kwargs):
-        ''' an ordered collection of whatevers '''
+        'pure=pure, '' an ordered collection of whatevers '''
         if not queryset.ordered:
             raise RuntimeError('queryset must be ordered')
 
@@ -472,7 +472,7 @@ def sign_and_send(sender, data, destination):
 
 # pylint: disable=unused-argument
 def to_ordered_collection_page(
-        queryset, remote_id, id_only=False, page=1, **kwargs):
+        queryset, remote_id, id_only=False, page=1, pure=False, **kwargs):
     ''' serialize and pagiante a queryset '''
     paginated = Paginator(queryset, PAGE_LENGTH)
 
@@ -480,7 +480,7 @@ def to_ordered_collection_page(
     if id_only:
         items = [s.remote_id for s in activity_page.object_list]
     else:
-        items = [s.to_activity() for s in activity_page.object_list]
+        items = [s.to_activity(pure=pure) for s in activity_page.object_list]
 
     prev_page = next_page = None
     if activity_page.has_next():
diff --git a/bookwyrm/tests/views/test_helpers.py b/bookwyrm/tests/views/test_helpers.py
index b75d61d5..b3a79b32 100644
--- a/bookwyrm/tests/views/test_helpers.py
+++ b/bookwyrm/tests/views/test_helpers.py
@@ -188,18 +188,18 @@ class ViewsHelpers(TestCase):
     def test_is_bookwyrm_request(self):
         ''' checks if a request came from a bookwyrm instance '''
         request = self.factory.get('', {'q': 'Test Book'})
-        self.assertFalse(views.helpers.is_bookworm_request(request))
+        self.assertFalse(views.helpers.is_bookwyrm_request(request))
 
         request = self.factory.get(
             '', {'q': 'Test Book'},
             HTTP_USER_AGENT=\
                 "http.rb/4.4.1 (Mastodon/3.3.0; +https://mastodon.social/)"
         )
-        self.assertFalse(views.helpers.is_bookworm_request(request))
+        self.assertFalse(views.helpers.is_bookwyrm_request(request))
 
         request = self.factory.get(
             '', {'q': 'Test Book'}, HTTP_USER_AGENT=USER_AGENT)
-        self.assertTrue(views.helpers.is_bookworm_request(request))
+        self.assertTrue(views.helpers.is_bookwyrm_request(request))
 
 
     def test_existing_user(self):
diff --git a/bookwyrm/tests/views/test_outbox.py b/bookwyrm/tests/views/test_outbox.py
index d59f028c..7986dea6 100644
--- a/bookwyrm/tests/views/test_outbox.py
+++ b/bookwyrm/tests/views/test_outbox.py
@@ -7,6 +7,7 @@ from django.test import TestCase
 from django.test.client import RequestFactory
 
 from bookwyrm import models, views
+from bookwyrm.settings import USER_AGENT
 
 
 # pylint: disable=too-many-public-methods
@@ -90,3 +91,39 @@ class OutboxView(TestCase):
         data = json.loads(result.content)
         self.assertEqual(data['type'], 'OrderedCollection')
         self.assertEqual(data['totalItems'], 1)
+
+    def test_outbox_bookwyrm_request_true(self):
+        ''' should differentiate between bookwyrm and outside requests '''
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.Review.objects.create(
+                name='hi',
+                content='look at this',
+                user=self.local_user,
+                book=self.book,
+                privacy='public',
+            )
+
+        request = self.factory.get('', {'page': 1}, HTTP_USER_AGENT=USER_AGENT)
+        result = views.Outbox.as_view()(request, 'mouse')
+
+        data = json.loads(result.content)
+        self.assertEqual(len(data['orderedItems']), 1)
+        self.assertEqual(data['orderedItems'][0]['type'], 'Review')
+
+    def test_outbox_bookwyrm_request_false(self):
+        ''' should differentiate between bookwyrm and outside requests '''
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            models.Review.objects.create(
+                name='hi',
+                content='look at this',
+                user=self.local_user,
+                book=self.book,
+                privacy='public',
+            )
+
+        request = self.factory.get('', {'page': 1})
+        result = views.Outbox.as_view()(request, 'mouse')
+
+        data = json.loads(result.content)
+        self.assertEqual(len(data['orderedItems']), 1)
+        self.assertEqual(data['orderedItems'][0]['type'], 'Article')
diff --git a/bookwyrm/views/feed.py b/bookwyrm/views/feed.py
index 0e550f0c..059237b9 100644
--- a/bookwyrm/views/feed.py
+++ b/bookwyrm/views/feed.py
@@ -13,7 +13,7 @@ from bookwyrm.activitypub import ActivitypubResponse
 from bookwyrm.settings import PAGE_LENGTH
 from .helpers import get_activity_feed
 from .helpers import get_user_from_username
-from .helpers import is_api_request, is_bookworm_request, object_visible_to_user
+from .helpers import is_api_request, is_bookwyrm_request, object_visible_to_user
 
 
 # pylint: disable= no-self-use
@@ -107,7 +107,7 @@ class Status(View):
 
         if is_api_request(request):
             return ActivitypubResponse(
-                status.to_activity(pure=not is_bookworm_request(request)))
+                status.to_activity(pure=not is_bookwyrm_request(request)))
 
         data = {**feed_page_data(request.user), **{
             'title': 'Status by %s' % user.username,
diff --git a/bookwyrm/views/helpers.py b/bookwyrm/views/helpers.py
index 842b8d1c..6eeaa926 100644
--- a/bookwyrm/views/helpers.py
+++ b/bookwyrm/views/helpers.py
@@ -24,8 +24,8 @@ def is_api_request(request):
             request.path[-5:] == '.json'
 
 
-def is_bookworm_request(request):
-    ''' check if the request is coming from another bookworm instance '''
+def is_bookwyrm_request(request):
+    ''' check if the request is coming from another bookwyrm instance '''
     user_agent = request.headers.get('User-Agent')
     if user_agent is None or \
             re.search(regex.bookwyrm_user_agent, user_agent) is None:
diff --git a/bookwyrm/views/outbox.py b/bookwyrm/views/outbox.py
index 8bfc3b3d..5df9d199 100644
--- a/bookwyrm/views/outbox.py
+++ b/bookwyrm/views/outbox.py
@@ -4,6 +4,7 @@ from django.shortcuts import get_object_or_404
 from django.views import View
 
 from bookwyrm import activitypub, models
+from .helpers import is_bookwyrm_request
 
 
 # pylint: disable= no-self-use
@@ -17,6 +18,10 @@ class Outbox(View):
             filter_type = None
 
         return JsonResponse(
-            user.to_outbox(**request.GET, filter_type=filter_type),
+            user.to_outbox(
+                **request.GET,
+                filter_type=filter_type,
+                pure=not is_bookwyrm_request(request)
+            ),
             encoder=activitypub.ActivityEncoder
         )

From c6a61abf79a2e51dcb4bed9c28245188326655ee Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 11:58:01 -0800
Subject: [PATCH 246/280] Don't try to fetch reviews for remote user in test

---
 bookwyrm/tests/models/test_user_model.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/tests/models/test_user_model.py b/bookwyrm/tests/models/test_user_model.py
index bd184b65..34f4c54d 100644
--- a/bookwyrm/tests/models/test_user_model.py
+++ b/bookwyrm/tests/models/test_user_model.py
@@ -30,7 +30,7 @@ class User(TestCase):
         with patch('bookwyrm.models.user.set_remote_server.delay'):
             user = models.User.objects.create_user(
                 'rat', 'rat@rat.rat', 'ratword', local=False,
-                remote_id='https://example.com/dfjkg')
+                remote_id='https://example.com/dfjkg', bookwyrm_user=False)
         self.assertEqual(user.username, 'rat@example.com')
 
 

From a617302006b1de642ca09df5379408c3340dc9bb Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 12:10:54 -0800
Subject: [PATCH 247/280] Cleans up display of follow/block/unfollow/unblock
 buttons

---
 .../templates/snippets/follow_button.html     | 37 ++++++++++++-------
 bookwyrm/templates/user/user_layout.html      |  9 +----
 2 files changed, 24 insertions(+), 22 deletions(-)

diff --git a/bookwyrm/templates/snippets/follow_button.html b/bookwyrm/templates/snippets/follow_button.html
index 7db69191..f7286e67 100644
--- a/bookwyrm/templates/snippets/follow_button.html
+++ b/bookwyrm/templates/snippets/follow_button.html
@@ -5,20 +5,29 @@
 Follow request already sent.
 </div>
 
+{% elif user in request.user.blocks.all %}
+{% include 'snippets/block_button.html' %}
 {% else %}
 
-<form action="/follow/" method="POST" class="interaction follow-{{ user.id }} {% if request.user in user.followers.all %}hidden{%endif %}" data-id="follow-{{ user.id }}">
-    {% csrf_token %}
-    <input type="hidden" name="user" value="{{ user.username }}">
-    {% if user.manually_approves_followers %}
-        <button class="button is-small is-link" type="submit">Send follow request</button>
-    {% else %}
-        <button class="button is-small is-link" type="submit">Follow</button>
-    {% endif %}
-</form>
-<form action="/unfollow/" method="POST" class="interaction follow-{{ user.id }} {% if not request.user in user.followers.all %}hidden{%endif %}" data-id="follow-{{ user.id }}">
-    {% csrf_token %}
-    <input type="hidden" name="user" value="{{ user.username }}">
-    <button class="button is-small is-danger is-light" type="submit">Unfollow</button>
-</form>
+<div class="field has-addons">
+    <div class="control">
+        <form action="/follow/" method="POST" class="interaction follow-{{ user.id }} {% if request.user in user.followers.all %}hidden{%endif %}" data-id="follow-{{ user.id }}">
+            {% csrf_token %}
+            <input type="hidden" name="user" value="{{ user.username }}">
+            {% if user.manually_approves_followers %}
+                <button class="button is-small is-link" type="submit">Send follow request</button>
+            {% else %}
+                <button class="button is-small is-link" type="submit">Follow</button>
+            {% endif %}
+        </form>
+        <form action="/unfollow/" method="POST" class="interaction follow-{{ user.id }} {% if not request.user in user.followers.all %}hidden{%endif %}" data-id="follow-{{ user.id }}">
+            {% csrf_token %}
+            <input type="hidden" name="user" value="{{ user.username }}">
+            <button class="button is-small is-danger is-light" type="submit">Unfollow</button>
+        </form>
+    </div>
+    <div class="control">
+        {% include 'snippets/user_options.html' with user=user class="is-small" %}
+    </div>
+</div>
 {% endif %}
diff --git a/bookwyrm/templates/user/user_layout.html b/bookwyrm/templates/user/user_layout.html
index 979ee0b0..9abc469a 100644
--- a/bookwyrm/templates/user/user_layout.html
+++ b/bookwyrm/templates/user/user_layout.html
@@ -43,14 +43,7 @@
         </div>
     </div>
     {% if not is_self and request.user.is_authenticated %}
-    <div class="field has-addons">
-        <div class="control">
-            {% include 'snippets/follow_button.html' with user=user %}
-        </div>
-        <div class="control">
-            {% include 'snippets/user_options.html' with user=user class="is-small" %}
-        </div>
-    </div>
+    {% include 'snippets/follow_button.html' with user=user %}
     {% endif %}
 
     {% if is_self and user.follower_requests.all %}

From 364b053d9addf6962e4e7e6d8294790f9d30b64e Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 12:41:37 -0800
Subject: [PATCH 248/280] Better user block privacy

---
 bookwyrm/models/user.py              | 10 ++++++++++
 bookwyrm/tests/views/test_helpers.py |  8 +++++---
 bookwyrm/views/feed.py               |  2 +-
 bookwyrm/views/follow.py             |  8 ++++----
 bookwyrm/views/helpers.py            |  6 +++---
 bookwyrm/views/search.py             |  2 +-
 bookwyrm/views/shelf.py              |  2 +-
 bookwyrm/views/user.py               |  6 +++---
 8 files changed, 28 insertions(+), 16 deletions(-)

diff --git a/bookwyrm/models/user.py b/bookwyrm/models/user.py
index a65317fa..108f4345 100644
--- a/bookwyrm/models/user.py
+++ b/bookwyrm/models/user.py
@@ -112,6 +112,16 @@ class User(OrderedCollectionPageMixin, AbstractUser):
 
     activity_serializer = activitypub.Person
 
+    @classmethod
+    def viewer_aware_objects(cls, viewer):
+        ''' the user queryset filtered for the context of the logged in user '''
+        queryset = cls.objects.filter(is_active=True)
+        if viewer.is_authenticated:
+            queryset = queryset.exclude(
+                blocks=viewer
+            )
+        return queryset
+
     def to_outbox(self, filter_type=None, **kwargs):
         ''' an ordered collection of statuses '''
         if filter_type:
diff --git a/bookwyrm/tests/views/test_helpers.py b/bookwyrm/tests/views/test_helpers.py
index b75d61d5..577b45e5 100644
--- a/bookwyrm/tests/views/test_helpers.py
+++ b/bookwyrm/tests/views/test_helpers.py
@@ -56,12 +56,14 @@ class ViewsHelpers(TestCase):
     def test_get_user_from_username(self):
         ''' works for either localname or username '''
         self.assertEqual(
-            views.helpers.get_user_from_username('mouse'), self.local_user)
+            views.helpers.get_user_from_username(
+                self.local_user, 'mouse'), self.local_user)
         self.assertEqual(
             views.helpers.get_user_from_username(
-                'mouse@local.com'), self.local_user)
+                self.local_user, 'mouse@local.com'), self.local_user)
         with self.assertRaises(models.User.DoesNotExist):
-            views.helpers.get_user_from_username('mojfse@example.com')
+            views.helpers.get_user_from_username(
+                self.local_user, 'mojfse@example.com')
 
 
     def test_is_api_request(self):
diff --git a/bookwyrm/views/feed.py b/bookwyrm/views/feed.py
index 0e550f0c..e67a893d 100644
--- a/bookwyrm/views/feed.py
+++ b/bookwyrm/views/feed.py
@@ -65,7 +65,7 @@ class DirectMessage(View):
         user = None
         if username:
             try:
-                user = get_user_from_username(username)
+                user = get_user_from_username(request.user, username)
             except models.User.DoesNotExist:
                 pass
         if user:
diff --git a/bookwyrm/views/follow.py b/bookwyrm/views/follow.py
index c59f2e6d..e1b1a0bb 100644
--- a/bookwyrm/views/follow.py
+++ b/bookwyrm/views/follow.py
@@ -13,7 +13,7 @@ def follow(request):
     ''' follow another user, here or abroad '''
     username = request.POST['user']
     try:
-        to_follow = get_user_from_username(username)
+        to_follow = get_user_from_username(request.user, username)
     except models.User.DoesNotExist:
         return HttpResponseBadRequest()
 
@@ -33,7 +33,7 @@ def unfollow(request):
     ''' unfollow a user '''
     username = request.POST['user']
     try:
-        to_unfollow = get_user_from_username(username)
+        to_unfollow = get_user_from_username(request.user, username)
     except models.User.DoesNotExist:
         return HttpResponseBadRequest()
 
@@ -52,7 +52,7 @@ def accept_follow_request(request):
     ''' a user accepts a follow request '''
     username = request.POST['user']
     try:
-        requester = get_user_from_username(username)
+        requester = get_user_from_username(request.user, username)
     except models.User.DoesNotExist:
         return HttpResponseBadRequest()
 
@@ -75,7 +75,7 @@ def delete_follow_request(request):
     ''' a user rejects a follow request '''
     username = request.POST['user']
     try:
-        requester = get_user_from_username(username)
+        requester = get_user_from_username(request.user, username)
     except models.User.DoesNotExist:
         return HttpResponseBadRequest()
 
diff --git a/bookwyrm/views/helpers.py b/bookwyrm/views/helpers.py
index 842b8d1c..7e0550fb 100644
--- a/bookwyrm/views/helpers.py
+++ b/bookwyrm/views/helpers.py
@@ -9,13 +9,13 @@ from bookwyrm.status import create_generated_note
 from bookwyrm.utils import regex
 
 
-def get_user_from_username(username):
+def get_user_from_username(viewer, username):
     ''' helper function to resolve a localname or a username to a user '''
     # raises DoesNotExist if user is now found
     try:
-        return models.User.objects.get(localname=username)
+        return models.User.viwer_aware_objects(viewer).get(localname=username)
     except models.User.DoesNotExist:
-        return models.User.objects.get(username=username)
+        return models.User.viewer_aware_objects(viewer).get(username=username)
 
 
 def is_api_request(request):
diff --git a/bookwyrm/views/search.py b/bookwyrm/views/search.py
index a4cd7337..98be166f 100644
--- a/bookwyrm/views/search.py
+++ b/bookwyrm/views/search.py
@@ -33,7 +33,7 @@ class Search(View):
             handle_remote_webfinger(query)
 
         # do a  user search
-        user_results = models.User.objects.annotate(
+        user_results = models.User.viewer_aware_objects(request.user).annotate(
             similarity=Greatest(
                 TrigramSimilarity('username', query),
                 TrigramSimilarity('localname', query),
diff --git a/bookwyrm/views/shelf.py b/bookwyrm/views/shelf.py
index 02502ff6..70d3d1de 100644
--- a/bookwyrm/views/shelf.py
+++ b/bookwyrm/views/shelf.py
@@ -19,7 +19,7 @@ class Shelf(View):
     def get(self, request, username, shelf_identifier):
         ''' display a shelf '''
         try:
-            user = get_user_from_username(username)
+            user = get_user_from_username(request.user, username)
         except models.User.DoesNotExist:
             return HttpResponseNotFound()
 
diff --git a/bookwyrm/views/user.py b/bookwyrm/views/user.py
index 4da0fdac..7a238ce7 100644
--- a/bookwyrm/views/user.py
+++ b/bookwyrm/views/user.py
@@ -26,7 +26,7 @@ class User(View):
     def get(self, request, username):
         ''' profile page for a user '''
         try:
-            user = get_user_from_username(username)
+            user = get_user_from_username(request.user, username)
         except models.User.DoesNotExist:
             return HttpResponseNotFound()
 
@@ -96,7 +96,7 @@ class Followers(View):
     def get(self, request, username):
         ''' list of followers '''
         try:
-            user = get_user_from_username(username)
+            user = get_user_from_username(request.user, username)
         except models.User.DoesNotExist:
             return HttpResponseNotFound()
 
@@ -121,7 +121,7 @@ class Following(View):
     def get(self, request, username):
         ''' list of followers '''
         try:
-            user = get_user_from_username(username)
+            user = get_user_from_username(request.user, username)
         except models.User.DoesNotExist:
             return HttpResponseNotFound()
 

From b1268b7db8032356ef7cfe8db6c5d68053ff58e0 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 12:44:25 -0800
Subject: [PATCH 249/280] Small covers too small on mobile

---
 bookwyrm/static/css/format.css | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/bookwyrm/static/css/format.css b/bookwyrm/static/css/format.css
index 50ce101e..9d4b3105 100644
--- a/bookwyrm/static/css/format.css
+++ b/bookwyrm/static/css/format.css
@@ -100,9 +100,6 @@
     .cover-container.is-medium {
         height: 100px;
     }
-    .cover-container.is-small {
-        height: 70px;
-    }
 }
 
 .cover-container.is-medium .no-cover div {

From d1a21b851a9072f65d7eae86c137f930ef88d4c2 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 12:46:41 -0800
Subject: [PATCH 250/280] Maintain list columns in mobile

---
 bookwyrm/templates/lists/list.html | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/templates/lists/list.html b/bookwyrm/templates/lists/list.html
index 5f9baa03..c5aef606 100644
--- a/bookwyrm/templates/lists/list.html
+++ b/bookwyrm/templates/lists/list.html
@@ -19,7 +19,7 @@
         {% for item in items %}
             <li class="block pb-3">
                 <div class="card">
-                    <div class="card-content columns p-0 mb-0">
+                    <div class="card-content columns p-0 mb-0 is-mobile">
                         <div class="column is-narrow pt-0 pb-0">
                             <a href="{{ item.book.local_path }}">{% include 'snippets/book_cover.html' with book=item.book size="medium" %}</a>
                         </div>
@@ -73,7 +73,7 @@
         {% endif %}
         {% for book in suggested_books %}
         {% if book %}
-        <div class="block columns">
+        <div class="block columns is-mobile">
             <div class="column is-narrow">
                 <a href="{{ book.local_path }}">{% include 'snippets/book_cover.html' with book=book size="small" %}</a>
             </div>

From 8a3d1a0bf2db971ce6005855d78c073a12d147d4 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 13:04:24 -0800
Subject: [PATCH 251/280] Fixes header wrap on mobile headers

---
 bookwyrm/templates/author.html            |  2 +-
 bookwyrm/templates/book.html              |  2 +-
 bookwyrm/templates/lists/list_layout.html |  2 +-
 bookwyrm/templates/lists/lists.html       |  2 +-
 bookwyrm/templates/snippets/shelf.html    |  2 ++
 bookwyrm/templates/user/followers.html    | 18 +++++++-----------
 bookwyrm/templates/user/following.html    | 18 +++++++-----------
 bookwyrm/templates/user/lists.html        |  2 +-
 bookwyrm/templates/user/shelf.html        |  2 +-
 bookwyrm/templates/user/user.html         |  4 ++--
 10 files changed, 24 insertions(+), 30 deletions(-)

diff --git a/bookwyrm/templates/author.html b/bookwyrm/templates/author.html
index a875ad78..9f2054d0 100644
--- a/bookwyrm/templates/author.html
+++ b/bookwyrm/templates/author.html
@@ -2,7 +2,7 @@
 {% load bookwyrm_tags %}
 {% block content %}
 <div class="block">
-    <div class="columns">
+    <div class="columns is-mobile">
         <div class="column">
             <h1 class="title">{{ author.name }}</h1>
         </div>
diff --git a/bookwyrm/templates/book.html b/bookwyrm/templates/book.html
index 0bef2856..3a2a6aa7 100644
--- a/bookwyrm/templates/book.html
+++ b/bookwyrm/templates/book.html
@@ -4,7 +4,7 @@
 {% block content %}
 
 <div class="block">
-    <div class="columns">
+    <div class="columns is-mobile">
         <div class="column">
             <h1 class="title">
                 {{ book.title }}{% if book.subtitle %}:
diff --git a/bookwyrm/templates/lists/list_layout.html b/bookwyrm/templates/lists/list_layout.html
index d3ff2c48..f5855f27 100644
--- a/bookwyrm/templates/lists/list_layout.html
+++ b/bookwyrm/templates/lists/list_layout.html
@@ -2,7 +2,7 @@
 {% load bookwyrm_tags %}
 {% block content %}
 
-<header class="columns content">
+<header class="columns content is-mobile">
     <div class="column">
         <h1 class="title">{{ list.name }} <span class="subtitle">{% include 'snippets/privacy-icons.html' with item=list %}</span></h1>
         <p class="subtitle help">Created {% if list.curation != 'open' %} and curated{% endif %} by {% include 'snippets/username.html' with user=list.user %}</p>
diff --git a/bookwyrm/templates/lists/lists.html b/bookwyrm/templates/lists/lists.html
index 71d37250..259d0820 100644
--- a/bookwyrm/templates/lists/lists.html
+++ b/bookwyrm/templates/lists/lists.html
@@ -5,7 +5,7 @@
     <h1 class="title">Lists</h1>
 </header>
 {% if request.user.is_authenticated and not lists.has_previous %}
-<header class="block columns">
+<header class="block columns is-mobile">
     <div class="column">
         <h2 class="title">Your lists</h2>
     </div>
diff --git a/bookwyrm/templates/snippets/shelf.html b/bookwyrm/templates/snippets/shelf.html
index 006bb4ea..0e4e9a08 100644
--- a/bookwyrm/templates/snippets/shelf.html
+++ b/bookwyrm/templates/snippets/shelf.html
@@ -1,6 +1,7 @@
 {% load humanize %}
 {% load bookwyrm_tags %}
 {% if books|length > 0 %}
+<div class="table-container">
 <table class="table is-striped is-fullwidth">
 
 <tr class="book-preview">
@@ -74,6 +75,7 @@
 </tr>
 {% endfor %}
 </table>
+</div>
 {% else %}
 <p>This shelf is empty.</p>
 {% if shelf.editable %}
diff --git a/bookwyrm/templates/user/followers.html b/bookwyrm/templates/user/followers.html
index 42b8cfb0..da6fc320 100644
--- a/bookwyrm/templates/user/followers.html
+++ b/bookwyrm/templates/user/followers.html
@@ -15,17 +15,13 @@
 <div class="block">
     <h2 class="title">Followers</h2>
     {% for followers in followers %}
-    <div class="block">
-        <div class="field is-grouped">
-            <div class="control">
-                {% include 'snippets/avatar.html' with user=followers %}
-            </div>
-            <div class="control">
-                {% include 'snippets/username.html' with user=followers show_full=True  %}
-            </div>
-            <div class="control">
-                {% include 'snippets/follow_button.html' with user=followers %}
-            </div>
+    <div class="block columns">
+        <div class="column">
+            {% include 'snippets/avatar.html' with user=followers %}
+            {% include 'snippets/username.html' with user=followers show_full=True  %}
+        </div>
+        <div class="column is-narrow">
+            {% include 'snippets/follow_button.html' with user=followers %}
         </div>
     </div>
     {% endfor %}
diff --git a/bookwyrm/templates/user/following.html b/bookwyrm/templates/user/following.html
index 9e42b783..d734b0dc 100644
--- a/bookwyrm/templates/user/following.html
+++ b/bookwyrm/templates/user/following.html
@@ -15,17 +15,13 @@
 <div class="block">
     <h2 class="title">Following</h2>
     {% for follower in user.following.all %}
-    <div class="block">
-        <div class="field is-grouped">
-            <div class="control">
-                {% include 'snippets/avatar.html' with user=follower %}
-            </div>
-            <div class="control">
-                {% include 'snippets/username.html' with user=follower show_full=True  %}
-            </div>
-            <div class="control">
-                {% include 'snippets/follow_button.html' with user=follower %}
-            </div>
+    <div class="block columns">
+        <div class="column">
+            {% include 'snippets/avatar.html' with user=follower %}
+            {% include 'snippets/username.html' with user=follower show_full=True  %}
+        </div>
+        <div class="column">
+            {% include 'snippets/follow_button.html' with user=follower %}
         </div>
     </div>
     {% endfor %}
diff --git a/bookwyrm/templates/user/lists.html b/bookwyrm/templates/user/lists.html
index a006c92b..45e4806f 100644
--- a/bookwyrm/templates/user/lists.html
+++ b/bookwyrm/templates/user/lists.html
@@ -1,7 +1,7 @@
 {% extends 'user/user_layout.html' %}
 
 {% block header %}
-<div class="columns">
+<div class="columns is-mobile">
     <div class="column">
         <h1 class="title">
             {% if is_self %}Your
diff --git a/bookwyrm/templates/user/shelf.html b/bookwyrm/templates/user/shelf.html
index 5e2f532f..e62e2218 100644
--- a/bookwyrm/templates/user/shelf.html
+++ b/bookwyrm/templates/user/shelf.html
@@ -38,7 +38,7 @@
     {% include 'user/create_shelf_form.html' with controls_text='create-shelf-form' %}
 </div>
 
-<div class="block columns">
+<div class="block columns is-mobile">
     <div class="column">
         <h2 class="title is-3">
             {{ shelf.name }}
diff --git a/bookwyrm/templates/user/user.html b/bookwyrm/templates/user/user.html
index c7f6d3b5..2ff66468 100644
--- a/bookwyrm/templates/user/user.html
+++ b/bookwyrm/templates/user/user.html
@@ -1,7 +1,7 @@
 {% extends 'user/user_layout.html' %}
 
 {% block header %}
-<div class="columns">
+<div class="columns is-mobile">
     <div class="column">
         <h1 class="title">User profile</h1>
     </div>
@@ -54,7 +54,7 @@
 {% endif %}
 
 <div>
-    <div class="columns">
+    <div class="columns is-mobile">
         <h2 class="title column">User Activity</h2>
         <div class="column is-narrow">
             <a class="icon icon-rss" target="_blank" href="{{ user.local_path }}/rss">

From e6b4212e6b68b2860069b2e369b6f919dcc0c9b7 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 13:05:43 -0800
Subject: [PATCH 252/280] Typo fix

---
 bookwyrm/views/helpers.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/views/helpers.py b/bookwyrm/views/helpers.py
index 7e0550fb..c7eb007f 100644
--- a/bookwyrm/views/helpers.py
+++ b/bookwyrm/views/helpers.py
@@ -13,7 +13,7 @@ def get_user_from_username(viewer, username):
     ''' helper function to resolve a localname or a username to a user '''
     # raises DoesNotExist if user is now found
     try:
-        return models.User.viwer_aware_objects(viewer).get(localname=username)
+        return models.User.viewer_aware_objects(viewer).get(localname=username)
     except models.User.DoesNotExist:
         return models.User.viewer_aware_objects(viewer).get(username=username)
 

From be9198fc4ff7def40d7cd4d5040e8170814a3a43 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 13:09:39 -0800
Subject: [PATCH 253/280] Another place where get reviews is called in tests

---
 bookwyrm/tests/models/test_user_model.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/tests/models/test_user_model.py b/bookwyrm/tests/models/test_user_model.py
index 34f4c54d..84ff3e9b 100644
--- a/bookwyrm/tests/models/test_user_model.py
+++ b/bookwyrm/tests/models/test_user_model.py
@@ -12,7 +12,7 @@ class User(TestCase):
     def setUp(self):
         self.user = models.User.objects.create_user(
             'mouse@%s' % DOMAIN, 'mouse@mouse.mouse', 'mouseword',
-            local=True, localname='mouse', name='hi')
+            local=True, localname='mouse', name='hi', bookwyrm_user=False)
 
     def test_computed_fields(self):
         ''' username instead of id here '''

From b9f06edc1b16a92af7bc02d526b83900e1a5c593 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 13:12:50 -0800
Subject: [PATCH 254/280] Fixes a few missed calls to get_user_from_username

---
 bookwyrm/views/feed.py     | 2 +-
 bookwyrm/views/goal.py     | 4 ++--
 bookwyrm/views/list.py     | 2 +-
 bookwyrm/views/rss_feed.py | 2 +-
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/bookwyrm/views/feed.py b/bookwyrm/views/feed.py
index e67a893d..e7d179b9 100644
--- a/bookwyrm/views/feed.py
+++ b/bookwyrm/views/feed.py
@@ -91,7 +91,7 @@ class Status(View):
     def get(self, request, username, status_id):
         ''' display a particular status (and replies, etc) '''
         try:
-            user = get_user_from_username(username)
+            user = get_user_from_username(request.user, username)
             status = models.Status.objects.select_subclasses().get(
                 id=status_id, deleted=False)
         except ValueError:
diff --git a/bookwyrm/views/goal.py b/bookwyrm/views/goal.py
index 4f2d1b6f..97f13913 100644
--- a/bookwyrm/views/goal.py
+++ b/bookwyrm/views/goal.py
@@ -18,7 +18,7 @@ class Goal(View):
     ''' track books for the year '''
     def get(self, request, username, year):
         ''' reading goal page '''
-        user = get_user_from_username(username)
+        user = get_user_from_username(request.user, username)
         year = int(year)
         goal = models.AnnualGoal.objects.filter(
             year=year, user=user
@@ -42,7 +42,7 @@ class Goal(View):
 
     def post(self, request, username, year):
         ''' update or create an annual goal '''
-        user = get_user_from_username(username)
+        user = get_user_from_username(request.user, username)
         if user != request.user:
             return HttpResponseNotFound()
 
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index cfdf6d76..7286bfb4 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -65,7 +65,7 @@ class UserLists(View):
             page = int(request.GET.get('page', 1))
         except ValueError:
             page = 1
-        user = get_user_from_username(username)
+        user = get_user_from_username(request.user, username)
         lists = models.List.objects.filter(user=user).all()
         lists = privacy_filter(
             request.user, lists, ['public', 'followers', 'unlisted'])
diff --git a/bookwyrm/views/rss_feed.py b/bookwyrm/views/rss_feed.py
index 496689ff..aad227bf 100644
--- a/bookwyrm/views/rss_feed.py
+++ b/bookwyrm/views/rss_feed.py
@@ -11,7 +11,7 @@ class RssFeed(Feed):
 
     def get_object(self, request, username):
         ''' the user who's posts get serialized '''
-        return get_user_from_username(username)
+        return get_user_from_username(request.user, username)
 
 
     def link(self, obj):

From ffe5ce725145351c529923e77423f62f659e7610 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 13:23:41 -0800
Subject: [PATCH 255/280] User friendly-er add cover form

bulma has failed me. Fixes #628
---
 bookwyrm/templates/book.html      | 24 ++++--------------------
 bookwyrm/templates/edit_book.html |  2 +-
 2 files changed, 5 insertions(+), 21 deletions(-)

diff --git a/bookwyrm/templates/book.html b/bookwyrm/templates/book.html
index 0bef2856..bb1f2be7 100644
--- a/bookwyrm/templates/book.html
+++ b/bookwyrm/templates/book.html
@@ -42,26 +42,10 @@
                 <h3 class="title is-6 mb-1">Add cover</h3>
                 <form name="add-cover" method="POST" action="/upload-cover/{{ book.id }}" enctype="multipart/form-data">
                     {% csrf_token %}
-                    <div class="field has-addons">
-                        <div class="control">
-                        <div class="file is-small mb-1">
-                            <label class="file-label">
-                                <input class="file-input" type="file" name="cover" accept="image/*" enctype="multipart/form-data" id="id_cover" required>
-                                <span class="file-cta">
-                                    <span class="file-icon">
-                                        <i class="fas fa-upload"></i>
-                                    </span>
-                                    <span class="file-label">
-                                        Choose file...
-                                    </span>
-                                </span>
-                            </label>
-                        </div>
-                        </div>
-                        <div class="control">
-                            <button class="button is-small is-primary" type="submit">Add</button>
-                        </div>
-                    </div>
+                    <label class="label">
+                        <input type="file" name="cover" accept="image/*" enctype="multipart/form-data" id="id_cover" required>
+                    </label>
+                    <button class="button is-small is-primary" type="submit">Add</button>
                 </form>
             </div>
             {% endif %}
diff --git a/bookwyrm/templates/edit_book.html b/bookwyrm/templates/edit_book.html
index 6e7e434e..fb0bb81c 100644
--- a/bookwyrm/templates/edit_book.html
+++ b/bookwyrm/templates/edit_book.html
@@ -62,7 +62,7 @@
                 <div class="column is-narrow">
                     <div class="block">
                         <h2 class="title is-4">Cover</h2>
-                        <p>{{ form.cover }} </p>
+                        <p>{{ form.cover }}</p>
                         {% for error in form.cover.errors %}
                         <p class="help is-danger">{{ error | escape }}</p>
                         {% endfor %}

From 9ac332f6cc290284416eb892cefc24c897723174 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 13:26:44 -0800
Subject: [PATCH 256/280] Adds request user for rss test

---
 bookwyrm/tests/views/test_rss_feed.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/bookwyrm/tests/views/test_rss_feed.py b/bookwyrm/tests/views/test_rss_feed.py
index 2b5e415e..3d5bec49 100644
--- a/bookwyrm/tests/views/test_rss_feed.py
+++ b/bookwyrm/tests/views/test_rss_feed.py
@@ -41,6 +41,7 @@ class RssFeedView(TestCase):
         ''' load an rss feed '''
         view = rss_feed.RssFeed()
         request = self.factory.get('/user/rss_user/rss')
+        request.user = self.user
         with patch("bookwyrm.models.SiteSettings.objects.get") as site:
             site.return_value = self.site
             result = view(request, username=self.user.username)

From a0b57837a7bfa3b2e73aa9b8208800f64dfd7c53 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 13:34:16 -0800
Subject: [PATCH 257/280] Moves status templates into dir

---
 bookwyrm/templates/book.html                                | 2 +-
 bookwyrm/templates/feed/direct_messages.html                | 2 +-
 bookwyrm/templates/feed/feed.html                           | 2 +-
 bookwyrm/templates/feed/thread.html                         | 2 +-
 bookwyrm/templates/snippets/{ => status}/status.html        | 4 ++--
 bookwyrm/templates/snippets/{ => status}/status_body.html   | 6 +++---
 .../templates/snippets/{ => status}/status_content.html     | 0
 bookwyrm/templates/snippets/{ => status}/status_header.html | 0
 .../templates/snippets/{ => status}/status_options.html     | 0
 bookwyrm/templates/user/user.html                           | 2 +-
 10 files changed, 10 insertions(+), 10 deletions(-)
 rename bookwyrm/templates/snippets/{ => status}/status.html (63%)
 rename bookwyrm/templates/snippets/{ => status}/status_body.html (89%)
 rename bookwyrm/templates/snippets/{ => status}/status_content.html (100%)
 rename bookwyrm/templates/snippets/{ => status}/status_header.html (100%)
 rename bookwyrm/templates/snippets/{ => status}/status_options.html (100%)

diff --git a/bookwyrm/templates/book.html b/bookwyrm/templates/book.html
index 0bef2856..4d15a3a5 100644
--- a/bookwyrm/templates/book.html
+++ b/bookwyrm/templates/book.html
@@ -242,7 +242,7 @@
 <div class="block" id="reviews">
     {% for review in reviews %}
     <div class="block">
-        {% include 'snippets/status.html' with status=review hide_book=True depth=1 %}
+        {% include 'snippets/status/status.html' with status=review hide_book=True depth=1 %}
     </div>
     {% endfor %}
 
diff --git a/bookwyrm/templates/feed/direct_messages.html b/bookwyrm/templates/feed/direct_messages.html
index 8c53cbeb..f3102ee7 100644
--- a/bookwyrm/templates/feed/direct_messages.html
+++ b/bookwyrm/templates/feed/direct_messages.html
@@ -16,7 +16,7 @@
     {% endif %}
     {% for activity in activities %}
     <div class="block">
-    {% include 'snippets/status.html' with status=activity %}
+    {% include 'snippets/status/status.html' with status=activity %}
     </div>
     {% endfor %}
 
diff --git a/bookwyrm/templates/feed/feed.html b/bookwyrm/templates/feed/feed.html
index 8d6152e2..7029fd69 100644
--- a/bookwyrm/templates/feed/feed.html
+++ b/bookwyrm/templates/feed/feed.html
@@ -32,7 +32,7 @@
 {% endif %}
 {% for activity in activities %}
 <div class="block">
-{% include 'snippets/status.html' with status=activity %}
+{% include 'snippets/status/status.html' with status=activity %}
 </div>
 {% endfor %}
 
diff --git a/bookwyrm/templates/feed/thread.html b/bookwyrm/templates/feed/thread.html
index aa67d5bb..18ab6ea3 100644
--- a/bookwyrm/templates/feed/thread.html
+++ b/bookwyrm/templates/feed/thread.html
@@ -8,7 +8,7 @@
         {% endwith %}
     {% endif %}
 
-{% include 'snippets/status.html' with status=status main=is_root %}
+{% include 'snippets/status/status.html' with status=status main=is_root %}
 
 {% if depth <= max_depth and direction >= 0 %}
     {% for reply in status|replies  %}
diff --git a/bookwyrm/templates/snippets/status.html b/bookwyrm/templates/snippets/status/status.html
similarity index 63%
rename from bookwyrm/templates/snippets/status.html
rename to bookwyrm/templates/snippets/status/status.html
index 13d5ee7c..162fad97 100644
--- a/bookwyrm/templates/snippets/status.html
+++ b/bookwyrm/templates/snippets/status/status.html
@@ -4,8 +4,8 @@
         {% include 'snippets/avatar.html' with user=status.user %}
         {% include 'snippets/username.html' with user=status.user %}
         boosted
-        {% include 'snippets/status_body.html' with status=status|boosted_status %}
+        {% include 'snippets/status/status_body.html' with status=status|boosted_status %}
     {% else %}
-        {% include 'snippets/status_body.html' with status=status %}
+        {% include 'snippets/status/status_body.html' with status=status %}
     {% endif %}
 {% endif %}
diff --git a/bookwyrm/templates/snippets/status_body.html b/bookwyrm/templates/snippets/status/status_body.html
similarity index 89%
rename from bookwyrm/templates/snippets/status_body.html
rename to bookwyrm/templates/snippets/status/status_body.html
index 00ae5460..dfc0ac68 100644
--- a/bookwyrm/templates/snippets/status_body.html
+++ b/bookwyrm/templates/snippets/status/status_body.html
@@ -5,13 +5,13 @@
 
 {% block card-header %}
     <h3 class="card-header-title has-background-white-ter is-block">
-        {% include 'snippets/status_header.html' with status=status %}
+        {% include 'snippets/status/status_header.html' with status=status %}
     </h3>
 {% endblock %}
 
 
 {% block card-content %}
-    {% include 'snippets/status_content.html' with status=status %}
+    {% include 'snippets/status/status_content.html' with status=status %}
 {% endblock %}
 
 
@@ -55,7 +55,7 @@
     <a href="{{ status.remote_id }}">{{ status.published_date | post_date }}</a>
 </div>
 <div class="card-footer-item">
-    {% include 'snippets/status_options.html' with class="is-small" right=True %}
+    {% include 'snippets/status/status_options.html' with class="is-small" right=True %}
 </div>
 {% endblock %}
 
diff --git a/bookwyrm/templates/snippets/status_content.html b/bookwyrm/templates/snippets/status/status_content.html
similarity index 100%
rename from bookwyrm/templates/snippets/status_content.html
rename to bookwyrm/templates/snippets/status/status_content.html
diff --git a/bookwyrm/templates/snippets/status_header.html b/bookwyrm/templates/snippets/status/status_header.html
similarity index 100%
rename from bookwyrm/templates/snippets/status_header.html
rename to bookwyrm/templates/snippets/status/status_header.html
diff --git a/bookwyrm/templates/snippets/status_options.html b/bookwyrm/templates/snippets/status/status_options.html
similarity index 100%
rename from bookwyrm/templates/snippets/status_options.html
rename to bookwyrm/templates/snippets/status/status_options.html
diff --git a/bookwyrm/templates/user/user.html b/bookwyrm/templates/user/user.html
index c7f6d3b5..e1c19e53 100644
--- a/bookwyrm/templates/user/user.html
+++ b/bookwyrm/templates/user/user.html
@@ -64,7 +64,7 @@
     </div>
     {% for activity in activities %}
     <div class="block" id="feed">
-        {% include 'snippets/status.html' with status=activity %}
+        {% include 'snippets/status/status.html' with status=activity %}
     </div>
     {% endfor %}
     {% if not activities %}

From f9dd0b0246032b769837c1244b8f88ef5467e2c3 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 13:42:20 -0800
Subject: [PATCH 258/280] Groups in book preview only used by status templates

---
 bookwyrm/templates/snippets/{ => status}/book_preview.html | 0
 bookwyrm/templates/snippets/status/status_content.html     | 4 ++--
 2 files changed, 2 insertions(+), 2 deletions(-)
 rename bookwyrm/templates/snippets/{ => status}/book_preview.html (100%)

diff --git a/bookwyrm/templates/snippets/book_preview.html b/bookwyrm/templates/snippets/status/book_preview.html
similarity index 100%
rename from bookwyrm/templates/snippets/book_preview.html
rename to bookwyrm/templates/snippets/status/book_preview.html
diff --git a/bookwyrm/templates/snippets/status/status_content.html b/bookwyrm/templates/snippets/status/status_content.html
index d6dd5ef5..0f59f7fc 100644
--- a/bookwyrm/templates/snippets/status/status_content.html
+++ b/bookwyrm/templates/snippets/status/status_content.html
@@ -54,9 +54,9 @@
 {% if status.book or status.mention_books.count %}
 <div class="{% if status.status_type != 'GeneratedNote' %}box has-background-white-bis{% endif %}">
     {% if status.book %}
-    {% include 'snippets/book_preview.html' with book=status.book %}
+    {% include 'snippets/status/book_preview.html' with book=status.book %}
     {% elif status.mention_books.count %}
-    {% include 'snippets/book_preview.html' with book=status.mention_books.first %}
+    {% include 'snippets/status/book_preview.html' with book=status.mention_books.first %}
     {% endif %}
 </div>
 {% endif %}

From d0c46060e82282c9a3f1008a4e6e003c64185026 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 14:00:19 -0800
Subject: [PATCH 259/280] Adds stars to book preview in status

---
 bookwyrm/templates/snippets/stars.html               | 2 +-
 bookwyrm/templates/snippets/status/book_preview.html | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/bookwyrm/templates/snippets/stars.html b/bookwyrm/templates/snippets/stars.html
index 7d5b63d7..d1576807 100644
--- a/bookwyrm/templates/snippets/stars.html
+++ b/bookwyrm/templates/snippets/stars.html
@@ -1,7 +1,7 @@
 <p class="stars">
     <span class="is-sr-only">{% if rating %}{{ rating|floatformat }} star{{ rating|floatformat | pluralize }}{% else %}No rating{% endif %}</span>
     {% for i in '12345'|make_list %}
-    <span class="icon icon-star-{% if rating >= forloop.counter %}full{% elif rating|floatformat:0 >= forloop.counter|floatformat:0 %}half{% else %}empty{% endif %}" aria-hidden="true">
+    <span class="icon is-small mr-1 icon-star-{% if rating >= forloop.counter %}full{% elif rating|floatformat:0 >= forloop.counter|floatformat:0 %}half{% else %}empty{% endif %}" aria-hidden="true">
     </span>
     {% endfor %}
 </p>
diff --git a/bookwyrm/templates/snippets/status/book_preview.html b/bookwyrm/templates/snippets/status/book_preview.html
index 0c75f9b1..920b9f53 100644
--- a/bookwyrm/templates/snippets/status/book_preview.html
+++ b/bookwyrm/templates/snippets/status/book_preview.html
@@ -3,6 +3,7 @@
     <div class="column is-narrow">
         <div>
             <a href="{{ book.local_path }}">{% include 'snippets/book_cover.html' with book=book %}</a>
+            {% include 'snippets/stars.html' with rating=book|rating:request.user %}
             {% include 'snippets/shelve_button/shelve_button.html' with book=book %}
         </div>
     </div>

From 31c9c07e384e4aa0a14cd73282d2bc760f94eb28 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 14:06:08 -0800
Subject: [PATCH 260/280] Makes covers clickable on discover page

---
 bookwyrm/templates/{ => discover}/discover.html      | 12 ++++++------
 .../{snippets => }/discover/large-book.html          |  2 +-
 .../{snippets => }/discover/small-book.html          |  2 +-
 bookwyrm/views/landing.py                            |  2 +-
 4 files changed, 9 insertions(+), 9 deletions(-)
 rename bookwyrm/templates/{ => discover}/discover.html (85%)
 rename bookwyrm/templates/{snippets => }/discover/large-book.html (85%)
 rename bookwyrm/templates/{snippets => }/discover/small-book.html (79%)

diff --git a/bookwyrm/templates/discover.html b/bookwyrm/templates/discover/discover.html
similarity index 85%
rename from bookwyrm/templates/discover.html
rename to bookwyrm/templates/discover/discover.html
index 27e26e53..0b6f8a1f 100644
--- a/bookwyrm/templates/discover.html
+++ b/bookwyrm/templates/discover/discover.html
@@ -63,18 +63,18 @@
     <div class="tile is-vertical">
         <div class="tile is-parent">
             <div class="tile is-child box has-background-white-ter">
-                {% include 'snippets/discover/large-book.html' with book=books.0 %}
+                {% include 'discover/large-book.html' with book=books.0 %}
             </div>
         </div>
         <div class="tile">
             <div class="tile is-parent is-6">
                 <div class="tile is-child box has-background-white-ter">
-                    {% include 'snippets/discover/small-book.html' with book=books.1 %}
+                    {% include 'discover/small-book.html' with book=books.1 %}
                 </div>
             </div>
             <div class="tile is-parent is-6">
                 <div class="tile is-child box has-background-white-ter">
-                    {% include 'snippets/discover/small-book.html' with book=books.2 %}
+                    {% include 'discover/small-book.html' with book=books.2 %}
                 </div>
             </div>
         </div>
@@ -83,18 +83,18 @@
         <div class="tile">
             <div class="tile is-parent is-6">
                 <div class="tile is-child box has-background-white-ter">
-                    {% include 'snippets/discover/small-book.html' with book=books.3 %}
+                    {% include 'discover/small-book.html' with book=books.3 %}
                 </div>
             </div>
             <div class="tile is-parent is-6">
                 <div class="tile is-child box has-background-white-ter">
-                    {% include 'snippets/discover/small-book.html' with book=books.4 %}
+                    {% include 'discover/small-book.html' with book=books.4 %}
                 </div>
             </div>
         </div>
         <div class="tile is-parent">
             <div class="tile is-child box has-background-white-ter">
-                {% include 'snippets/discover/large-book.html' with book=books.5 %}
+                {% include 'discover/large-book.html' with book=books.5 %}
             </div>
         </div>
     </div>
diff --git a/bookwyrm/templates/snippets/discover/large-book.html b/bookwyrm/templates/discover/large-book.html
similarity index 85%
rename from bookwyrm/templates/snippets/discover/large-book.html
rename to bookwyrm/templates/discover/large-book.html
index 37b35947..401411a1 100644
--- a/bookwyrm/templates/snippets/discover/large-book.html
+++ b/bookwyrm/templates/discover/large-book.html
@@ -2,7 +2,7 @@
 {% if book %}
 <div class="columns">
     <div class="column is-narrow">
-        {% include 'snippets/book_cover.html' with book=book size="large" %}
+        <a href="{{ book.local_path }}">{% include 'snippets/book_cover.html' with book=book size="large" %}</a>
         {% include 'snippets/stars.html' with rating=ratings|dict_key:book.id %}
     </div>
     <div class="column">
diff --git a/bookwyrm/templates/snippets/discover/small-book.html b/bookwyrm/templates/discover/small-book.html
similarity index 79%
rename from bookwyrm/templates/snippets/discover/small-book.html
rename to bookwyrm/templates/discover/small-book.html
index be399df6..d1676b6b 100644
--- a/bookwyrm/templates/snippets/discover/small-book.html
+++ b/bookwyrm/templates/discover/small-book.html
@@ -1,6 +1,6 @@
 {% load bookwyrm_tags %}
 {% if book %}
-{% include 'snippets/book_cover.html' with book=book %}
+<a href="{{ book.local_path }}">{% include 'snippets/book_cover.html' with book=book %}</a>
 {% if ratings %}
 {% include 'snippets/stars.html' with rating=ratings|dict_key:book.id %}
 {% endif %}
diff --git a/bookwyrm/views/landing.py b/bookwyrm/views/landing.py
index 0d841ef0..854f3a9b 100644
--- a/bookwyrm/views/landing.py
+++ b/bookwyrm/views/landing.py
@@ -56,4 +56,4 @@ class Discover(View):
             'books': list(set(books)),
             'ratings': ratings
         }
-        return TemplateResponse(request, 'discover.html', data)
+        return TemplateResponse(request, 'discover/discover.html', data)

From 1eaff91513e7f3ffa156c2f108d07e06d509b545 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 14:08:52 -0800
Subject: [PATCH 261/280] Makes the interactive rating element a different
 color

---
 bookwyrm/templates/snippets/rate_action.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/templates/snippets/rate_action.html b/bookwyrm/templates/snippets/rate_action.html
index 833f2b88..cc94f675 100644
--- a/bookwyrm/templates/snippets/rate_action.html
+++ b/bookwyrm/templates/snippets/rate_action.html
@@ -9,7 +9,7 @@
         <input type="hidden" name="privacy" value="public">
         <input type="hidden" name="rating" value="{{ forloop.counter }}">
 
-        <div class="field is-grouped stars form-rate-stars mb-1">
+        <div class="field is-grouped stars form-rate-stars mb-1 has-text-warning-dark">
             <label class="is-sr-only" for="rating-no-rating-{{ book.id }}">No rating</label>
             <input class="is-sr-only" type="radio" name="rating" value="" id="rating-no-rating-{{ book.id }}" checked>
             {% for i in '12345'|make_list %}

From 3de8a20d39db8ab2036b0352af435090ff90c712 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 14:36:24 -0800
Subject: [PATCH 262/280] Fixes boolean for is bookwyrm user in test

---
 bookwyrm/tests/models/test_user_model.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/tests/models/test_user_model.py b/bookwyrm/tests/models/test_user_model.py
index 84ff3e9b..ed3ad41a 100644
--- a/bookwyrm/tests/models/test_user_model.py
+++ b/bookwyrm/tests/models/test_user_model.py
@@ -64,7 +64,7 @@ class User(TestCase):
         self.assertEqual(activity['name'], self.user.name)
         self.assertEqual(activity['inbox'], self.user.inbox)
         self.assertEqual(activity['outbox'], self.user.outbox)
-        self.assertEqual(activity['bookwyrmUser'], True)
+        self.assertEqual(activity['bookwyrmUser'], False)
         self.assertEqual(activity['discoverable'], True)
         self.assertEqual(activity['type'], 'Person')
 

From d3381d7a799d98f40a59c962be5b124d0cc6ecc3 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 14:41:33 -0800
Subject: [PATCH 263/280] Paginates invite page

I sure have sent out a lot of invites
---
 bookwyrm/templates/settings/manage_invites.html |  1 +
 bookwyrm/views/invite.py                        | 14 ++++++++++++--
 2 files changed, 13 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/templates/settings/manage_invites.html b/bookwyrm/templates/settings/manage_invites.html
index 03b68b20..42668a3d 100644
--- a/bookwyrm/templates/settings/manage_invites.html
+++ b/bookwyrm/templates/settings/manage_invites.html
@@ -22,6 +22,7 @@
         </tr>
         {% endfor %}
     </table>
+    {% include 'snippets/pagination.html' with page=invites path=request.path %}
 </section>
 
 <section class="block">
diff --git a/bookwyrm/views/invite.py b/bookwyrm/views/invite.py
index bd0715a0..ed7b1f5f 100644
--- a/bookwyrm/views/invite.py
+++ b/bookwyrm/views/invite.py
@@ -1,5 +1,6 @@
 ''' invites when registration is closed '''
 from django.contrib.auth.decorators import login_required, permission_required
+from django.core.paginator import Paginator
 from django.http import HttpResponseBadRequest
 from django.shortcuts import get_object_or_404, redirect
 from django.template.response import TemplateResponse
@@ -7,6 +8,7 @@ from django.utils.decorators import method_decorator
 from django.views import View
 
 from bookwyrm import forms, models
+from bookwyrm.settings import PAGE_LENGTH
 
 
 # pylint: disable= no-self-use
@@ -18,10 +20,18 @@ class ManageInvites(View):
     ''' create invites '''
     def get(self, request):
         ''' invite management page '''
+        try:
+            page = int(request.GET.get('page', 1))
+        except ValueError:
+            page = 1
+
+        paginated = Paginator(models.SiteInvite.objects.filter(
+            user=request.user
+        ).order_by('-created_date'), PAGE_LENGTH)
+
         data = {
             'title': 'Invitations',
-            'invites': models.SiteInvite.objects.filter(
-                user=request.user).order_by('-created_date'),
+            'invites': paginated.page(page),
             'form': forms.CreateInviteForm(),
         }
         return TemplateResponse(request, 'settings/manage_invites.html', data)

From baed291889eb3672c6c503b7b023e28a72ca26ce Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 14:45:39 -0800
Subject: [PATCH 264/280] Don't broadcast after saving remote server

---
 bookwyrm/models/user.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bookwyrm/models/user.py b/bookwyrm/models/user.py
index a1f927b2..094a13d5 100644
--- a/bookwyrm/models/user.py
+++ b/bookwyrm/models/user.py
@@ -319,7 +319,7 @@ def set_remote_server(user_id):
     actor_parts = urlparse(user.remote_id)
     user.federated_server = \
         get_or_create_remote_server(actor_parts.netloc)
-    user.save()
+    user.save(broadcast=False)
     if user.bookwyrm_user:
         get_remote_reviews.delay(user.outbox)
 

From 384187a263c649c4b563b1d422dc09e5c0f07ede Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 15:21:37 -0800
Subject: [PATCH 265/280] Moves create invite form to top of invite page

---
 .../templates/settings/manage_invites.html    | 46 +++++++++----------
 1 file changed, 23 insertions(+), 23 deletions(-)

diff --git a/bookwyrm/templates/settings/manage_invites.html b/bookwyrm/templates/settings/manage_invites.html
index 42668a3d..086615a9 100644
--- a/bookwyrm/templates/settings/manage_invites.html
+++ b/bookwyrm/templates/settings/manage_invites.html
@@ -2,29 +2,6 @@
 {% block header %}Invites{% endblock %}
 {% load humanize %}
 {% block panel %}
-<section class="block">
-    <table class="table is-striped">
-        <tr>
-            <th>Link</th>
-            <th>Expires</th>
-            <th>Max uses</th>
-            <th>Times used</th>
-        </tr>
-        {% if not invites %}
-        <tr><td colspan="4">No active invites</td></tr>
-        {% endif %}
-        {% for invite in invites %}
-        <tr>
-            <td><a href="{{ invite.link }}">{{ invite.link }}</td>
-            <td>{{ invite.expiry|naturaltime }}</td>
-            <td>{{ invite.use_limit }}</td>
-            <td>{{ invite.times_used }}</td>
-        </tr>
-        {% endfor %}
-    </table>
-    {% include 'snippets/pagination.html' with page=invites path=request.path %}
-</section>
-
 <section class="block">
     <h2 class="title is-4">Generate New Invite</h2>
 
@@ -48,4 +25,27 @@
         <button class="button is-primary" type="submit">Create Invite</button>
     </form>
 </section>
+
+<section class="block">
+    <table class="table is-striped">
+        <tr>
+            <th>Link</th>
+            <th>Expires</th>
+            <th>Max uses</th>
+            <th>Times used</th>
+        </tr>
+        {% if not invites %}
+        <tr><td colspan="4">No active invites</td></tr>
+        {% endif %}
+        {% for invite in invites %}
+        <tr>
+            <td><a href="{{ invite.link }}">{{ invite.link }}</td>
+            <td>{{ invite.expiry|naturaltime }}</td>
+            <td>{{ invite.use_limit }}</td>
+            <td>{{ invite.times_used }}</td>
+        </tr>
+        {% endfor %}
+    </table>
+    {% include 'snippets/pagination.html' with page=invites path=request.path %}
+</section>
 {% endblock %}

From 23fb5f62a2e58d4869b1ab79aa72f105dda305f7 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 15:25:26 -0800
Subject: [PATCH 266/280] Keep invite settings in form after save

---
 bookwyrm/views/invite.py | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/bookwyrm/views/invite.py b/bookwyrm/views/invite.py
index ed7b1f5f..6b3611fc 100644
--- a/bookwyrm/views/invite.py
+++ b/bookwyrm/views/invite.py
@@ -46,7 +46,15 @@ class ManageInvites(View):
         invite.user = request.user
         invite.save()
 
-        return redirect('/settings/invites')
+        paginated = Paginator(models.SiteInvite.objects.filter(
+            user=request.user
+        ).order_by('-created_date'), PAGE_LENGTH)
+        data = {
+            'title': 'Invitations',
+            'invites': paginated.page(1),
+            'form': form
+        }
+        return TemplateResponse(request, 'settings/manage_invites.html', data)
 
 
 class Invite(View):

From 6e6bcb2f4833e27d4c626d9d6d7c73c2616db5ff Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 15:51:02 -0800
Subject: [PATCH 267/280] gotta simplify the add activity

---
 bookwyrm/activitypub/__init__.py   |  2 +-
 bookwyrm/activitypub/verbs.py      | 11 ++---
 bookwyrm/models/list.py            |  2 +-
 bookwyrm/tests/views/test_inbox.py | 75 ++++++++++++++++++++++++++++++
 4 files changed, 80 insertions(+), 10 deletions(-)

diff --git a/bookwyrm/activitypub/__init__.py b/bookwyrm/activitypub/__init__.py
index f06154ab..fdfbb1f0 100644
--- a/bookwyrm/activitypub/__init__.py
+++ b/bookwyrm/activitypub/__init__.py
@@ -15,7 +15,7 @@ from .response import ActivitypubResponse
 from .book import Edition, Work, Author
 from .verbs import Create, Delete, Undo, Update
 from .verbs import Follow, Accept, Reject, Block
-from .verbs import Add, AddListItem, Remove
+from .verbs import Add, Remove
 from .verbs import Announce, Like
 
 # this creates a list of all the Activity types that we can serialize,
diff --git a/bookwyrm/activitypub/verbs.py b/bookwyrm/activitypub/verbs.py
index 6f1a4d44..1236338b 100644
--- a/bookwyrm/activitypub/verbs.py
+++ b/bookwyrm/activitypub/verbs.py
@@ -121,6 +121,9 @@ class Add(Verb):
     target: str
     object: Edition
     type: str = 'Add'
+    notes: str = None
+    order: int = 0
+    approved: bool = True
 
     def action(self):
         ''' add obj to collection '''
@@ -131,14 +134,6 @@ class Add(Verb):
         self.to_model(model=model)
 
 
-@dataclass(init=False)
-class AddListItem(Add):
-    '''Add activity that's aware of the book obj '''
-    notes: str = None
-    order: int = 0
-    approved: bool = True
-
-
 @dataclass(init=False)
 class Remove(Verb):
     '''Remove activity '''
diff --git a/bookwyrm/models/list.py b/bookwyrm/models/list.py
index ef48ed95..1b14c2aa 100644
--- a/bookwyrm/models/list.py
+++ b/bookwyrm/models/list.py
@@ -68,7 +68,7 @@ class ListItem(CollectionItemMixin, BookWyrmModel):
     order = fields.IntegerField(blank=True, null=True)
     endorsement = models.ManyToManyField('User', related_name='endorsers')
 
-    activity_serializer = activitypub.AddListItem
+    activity_serializer = activitypub.Add
     object_field = 'book'
     collection_field = 'book_list'
 
diff --git a/bookwyrm/tests/views/test_inbox.py b/bookwyrm/tests/views/test_inbox.py
index c2658917..45966d59 100644
--- a/bookwyrm/tests/views/test_inbox.py
+++ b/bookwyrm/tests/views/test_inbox.py
@@ -612,6 +612,81 @@ class Inbox(TestCase):
         self.assertEqual(shelf.books.first(), book)
 
 
+#    def test_handle_tag_book(self):
+#        ''' tagging a book '''
+#        work = models.Work.objects.create(title='work title')
+#        book = models.Edition.objects.create(
+#            title='Test', remote_id='https://bookwyrm.social/book/37292',
+#            parent_work=work)
+#
+#        activity = {
+#            "id": "https://bookwyrm.social/shelfbook/6189#add",
+#            "type": "Add",
+#            "actor": "https://example.com/users/rat",
+#            "object": {
+#                "type": "Edition",
+#                "title": "Test Title",
+#                "work": work.remote_id,
+#                "id": "https://bookwyrm.social/book/37292",
+#            },
+#            "target": "",
+#            "@context": "https://www.w3.org/ns/activitystreams"
+#        }
+#        views.inbox.activity_task(activity)
+#        self.assertEqual(shelf.books.first(), book)
+
+
+    @responses.activate
+    def test_handle_add_book_to_list(self):
+        ''' listing a book '''
+        work = models.Work.objects.create(title='work title')
+        book = models.Edition.objects.create(
+            title='Test', remote_id='https://bookwyrm.social/book/37292',
+            parent_work=work)
+
+        responses.add(
+            responses.GET,
+            'https://bookwyrm.social/user/mouse/list/to-read',
+            json={
+                "id": "https://example.com/list/22",
+                "type": "BookList",
+                "totalItems": 1,
+                "first": "https://example.com/list/22?page=1",
+                "last": "https://example.com/list/22?page=1",
+                "name": "Test List",
+                "owner": "https://example.com/user/mouse",
+                "to": [
+                    "https://www.w3.org/ns/activitystreams#Public"
+                ],
+                "cc": [
+                    "https://example.com/user/mouse/followers"
+                ],
+                "summary": "summary text",
+                "curation": "curated",
+                "@context": "https://www.w3.org/ns/activitystreams"
+            }
+        )
+
+        activity = {
+            "id": "https://bookwyrm.social/listbook/6189#add",
+            "type": "Add",
+            "actor": "https://example.com/users/rat",
+            "object": {
+                "type": "Edition",
+                "title": "Test Title",
+                "work": work.remote_id,
+                "id": "https://bookwyrm.social/book/37292",
+            },
+            "target": "https://bookwyrm.social/user/mouse/list/to-read",
+            "@context": "https://www.w3.org/ns/activitystreams"
+        }
+        views.inbox.activity_task(activity)
+
+        booklist = models.List.objects.get()
+        self.assertEqual(booklist.name, 'Test List')
+        self.assertEqual(booklist.books.first(), book)
+
+
     def test_handle_update_user(self):
         ''' update an existing user '''
         # we only do this with remote users

From 4d0e52bf517a53d46c070a0d82b4efa89ced70a7 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 17:18:25 -0800
Subject: [PATCH 268/280] Test tag and list add

---
 bookwyrm/activitypub/base_activity.py |  3 +-
 bookwyrm/models/activitypub_mixin.py  |  2 +-
 bookwyrm/models/tag.py                | 19 ++++----
 bookwyrm/tests/views/test_inbox.py    | 67 +++++++++++++++++----------
 bookwyrm/tests/views/test_tag.py      | 15 ++++++
 bookwyrm/views/tag.py                 |  7 ++-
 6 files changed, 73 insertions(+), 40 deletions(-)

diff --git a/bookwyrm/activitypub/base_activity.py b/bookwyrm/activitypub/base_activity.py
index c360711d..57f1a713 100644
--- a/bookwyrm/activitypub/base_activity.py
+++ b/bookwyrm/activitypub/base_activity.py
@@ -82,7 +82,8 @@ class ActivityObject:
                     if activity_objects:
                         value = naive_parse(activity_objects, value)
                     else:
-                        value = naive_parse(activity_objects, value, serializer=field.type)
+                        value = naive_parse(
+                            activity_objects, value, serializer=field.type)
 
             except KeyError:
                 if field.default == MISSING and \
diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 7ea632b3..fe89f267 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -330,7 +330,7 @@ class OrderedCollectionMixin(OrderedCollectionPageMixin):
     def to_activity(self, **kwargs):
         ''' an ordered collection of the specified model queryset  '''
         return self.to_ordered_collection(
-            self.collection_queryset, **kwargs).serialize()
+            self.collection_queryset, **kwargs)
 
 
 class CollectionItemMixin(ActivitypubMixin):
diff --git a/bookwyrm/models/tag.py b/bookwyrm/models/tag.py
index 12645b9e..83359170 100644
--- a/bookwyrm/models/tag.py
+++ b/bookwyrm/models/tag.py
@@ -1,6 +1,7 @@
 ''' models for storing different kinds of Activities '''
 import urllib.parse
 
+from django.apps import apps
 from django.db import models
 
 from bookwyrm import activitypub
@@ -15,17 +16,15 @@ class Tag(OrderedCollectionMixin, BookWyrmModel):
     name = fields.CharField(max_length=100, unique=True)
     identifier = models.CharField(max_length=100)
 
-    @classmethod
-    def book_queryset(cls, identifier):
-        ''' county of books associated with this tag '''
-        return cls.objects.filter(
-            identifier=identifier
-        ).order_by('-updated_date')
-
     @property
-    def collection_queryset(self):
-        ''' books associated with this tag '''
-        return self.book_queryset(self.identifier)
+    def books(self):
+        ''' count of books associated with this tag '''
+        edition_model = apps.get_model('bookwyrm.Edition', require_ready=True)
+        return edition_model.objects.filter(
+            usertag__tag__identifier=self.identifier
+        ).order_by('-created_date').distinct()
+
+    collection_queryset = books
 
     def get_remote_id(self):
         ''' tag should use identifier not id in remote_id '''
diff --git a/bookwyrm/tests/views/test_inbox.py b/bookwyrm/tests/views/test_inbox.py
index 45966d59..ff55ad04 100644
--- a/bookwyrm/tests/views/test_inbox.py
+++ b/bookwyrm/tests/views/test_inbox.py
@@ -612,30 +612,6 @@ class Inbox(TestCase):
         self.assertEqual(shelf.books.first(), book)
 
 
-#    def test_handle_tag_book(self):
-#        ''' tagging a book '''
-#        work = models.Work.objects.create(title='work title')
-#        book = models.Edition.objects.create(
-#            title='Test', remote_id='https://bookwyrm.social/book/37292',
-#            parent_work=work)
-#
-#        activity = {
-#            "id": "https://bookwyrm.social/shelfbook/6189#add",
-#            "type": "Add",
-#            "actor": "https://example.com/users/rat",
-#            "object": {
-#                "type": "Edition",
-#                "title": "Test Title",
-#                "work": work.remote_id,
-#                "id": "https://bookwyrm.social/book/37292",
-#            },
-#            "target": "",
-#            "@context": "https://www.w3.org/ns/activitystreams"
-#        }
-#        views.inbox.activity_task(activity)
-#        self.assertEqual(shelf.books.first(), book)
-
-
     @responses.activate
     def test_handle_add_book_to_list(self):
         ''' listing a book '''
@@ -687,6 +663,49 @@ class Inbox(TestCase):
         self.assertEqual(booklist.books.first(), book)
 
 
+    @responses.activate
+    def test_handle_tag_book(self):
+        ''' listing a book '''
+        work = models.Work.objects.create(title='work title')
+        book = models.Edition.objects.create(
+            title='Test', remote_id='https://bookwyrm.social/book/37292',
+            parent_work=work)
+
+        responses.add(
+            responses.GET,
+            'https://www.example.com/tag/cool-tag',
+            json={
+                "id": "https://1b1a78582461.ngrok.io/tag/tag",
+                "type": "OrderedCollection",
+                "totalItems": 0,
+                "first": "https://1b1a78582461.ngrok.io/tag/tag?page=1",
+                "last": "https://1b1a78582461.ngrok.io/tag/tag?page=1",
+                "name": "cool tag",
+                "@context": "https://www.w3.org/ns/activitystreams"
+            }
+        )
+
+        activity = {
+            "id": "https://bookwyrm.social/listbook/6189#add",
+            "type": "Add",
+            "actor": "https://example.com/users/rat",
+            "object": {
+                "type": "Edition",
+                "title": "Test Title",
+                "work": work.remote_id,
+                "id": "https://bookwyrm.social/book/37292",
+            },
+            "target": "https://www.example.com/tag/cool-tag",
+            "@context": "https://www.w3.org/ns/activitystreams"
+        }
+        views.inbox.activity_task(activity)
+
+        tag = models.Tag.objects.get()
+        self.assertFalse(models.List.objects.exists())
+        self.assertEqual(tag.name, 'cool tag')
+        self.assertEqual(tag.books.first(), book)
+
+
     def test_handle_update_user(self):
         ''' update an existing user '''
         # we only do this with remote users
diff --git a/bookwyrm/tests/views/test_tag.py b/bookwyrm/tests/views/test_tag.py
index 21a7e22e..ef809b46 100644
--- a/bookwyrm/tests/views/test_tag.py
+++ b/bookwyrm/tests/views/test_tag.py
@@ -59,6 +59,21 @@ class TagViews(TestCase):
         self.assertEqual(result.status_code, 200)
 
 
+    def test_tag_page_activitypub_page(self):
+        ''' there are so many views, this just makes sure it LOADS '''
+        view = views.Tag.as_view()
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+            tag = models.Tag.objects.create(name='hi there')
+            models.UserTag.objects.create(
+                tag=tag, user=self.local_user, book=self.book)
+        request = self.factory.get('', {'page': 1})
+        with patch('bookwyrm.views.tag.is_api_request') as is_api:
+            is_api.return_value = True
+            result = view(request, tag.identifier)
+        self.assertIsInstance(result, ActivitypubResponse)
+        self.assertEqual(result.status_code, 200)
+
+
     def test_tag(self):
         ''' add a tag to a book '''
         view = views.AddTag.as_view()
diff --git a/bookwyrm/views/tag.py b/bookwyrm/views/tag.py
index b50bc0ef..710f9415 100644
--- a/bookwyrm/views/tag.py
+++ b/bookwyrm/views/tag.py
@@ -16,12 +16,11 @@ class Tag(View):
     ''' tag page '''
     def get(self, request, tag_id):
         ''' see books related to a tag '''
-        tag_obj = models.Tag.objects.filter(identifier=tag_id).first()
-        if not tag_obj:
-            return HttpResponseNotFound()
+        tag_obj = get_object_or_404(models.Tag, identifier=tag_id)
 
         if is_api_request(request):
-            return ActivitypubResponse(tag_obj.to_activity(**request.GET))
+            return ActivitypubResponse(
+                tag_obj.to_activity(**request.GET), safe=False)
 
         books = models.Edition.objects.filter(
             usertag__tag__identifier=tag_id

From fba53c72e0d1ff2c2efc12967696386a7880b96d Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 17:19:47 -0800
Subject: [PATCH 269/280] default safe mode for activity serialization

---
 bookwyrm/activitypub/response.py | 2 +-
 bookwyrm/views/tag.py            | 3 +--
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/activitypub/response.py b/bookwyrm/activitypub/response.py
index bbc44c4d..8f3c050b 100644
--- a/bookwyrm/activitypub/response.py
+++ b/bookwyrm/activitypub/response.py
@@ -9,7 +9,7 @@ class ActivitypubResponse(JsonResponse):
     configures some stuff beforehand. Made to be a drop-in replacement of
     JsonResponse.
     """
-    def __init__(self, data, encoder=ActivityEncoder, safe=True,
+    def __init__(self, data, encoder=ActivityEncoder, safe=False,
                  json_dumps_params=None, **kwargs):
 
         if 'content_type' not in kwargs:
diff --git a/bookwyrm/views/tag.py b/bookwyrm/views/tag.py
index 710f9415..502f5ea5 100644
--- a/bookwyrm/views/tag.py
+++ b/bookwyrm/views/tag.py
@@ -1,6 +1,5 @@
 ''' tagging views'''
 from django.contrib.auth.decorators import login_required
-from django.http import HttpResponseNotFound
 from django.shortcuts import get_object_or_404, redirect
 from django.template.response import TemplateResponse
 from django.utils.decorators import method_decorator
@@ -20,7 +19,7 @@ class Tag(View):
 
         if is_api_request(request):
             return ActivitypubResponse(
-                tag_obj.to_activity(**request.GET), safe=False)
+                tag_obj.to_activity(**request.GET))
 
         books = models.Edition.objects.filter(
             usertag__tag__identifier=tag_id

From 744de313c8ab2febf33a060a343726365b583467 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 17:23:11 -0800
Subject: [PATCH 270/280] Makes comment and fav/boost buttons the same color
 when selected

---
 bookwyrm/templates/snippets/boost_button.html | 2 +-
 bookwyrm/templates/snippets/fav_button.html   | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/bookwyrm/templates/snippets/boost_button.html b/bookwyrm/templates/snippets/boost_button.html
index 08daae64..bf914379 100644
--- a/bookwyrm/templates/snippets/boost_button.html
+++ b/bookwyrm/templates/snippets/boost_button.html
@@ -11,7 +11,7 @@
 </form>
 <form name="unboost" action="/unboost/{{ status.id }}" method="post" class="interaction boost-{{ status.id }}-{{ uuid }} active {% if not request.user|boosted:status %}hidden{% endif %}" data-id="boost-{{ status.id }}-{{ uuid }}">
     {% csrf_token %}
-    <button class="button is-small is-success" type="submit">
+    <button class="button is-small is-primary" type="submit">
         <span class="icon icon-boost" title="Un-boost status">
             <span class="is-sr-only">Un-boost status</span>
         </span>
diff --git a/bookwyrm/templates/snippets/fav_button.html b/bookwyrm/templates/snippets/fav_button.html
index c413e979..650f4e8a 100644
--- a/bookwyrm/templates/snippets/fav_button.html
+++ b/bookwyrm/templates/snippets/fav_button.html
@@ -10,7 +10,7 @@
 </form>
 <form name="unfavorite" action="/unfavorite/{{ status.id }}" method="POST" class="interaction fav-{{ status.id }}-{{ uuid }} active {% if not request.user|liked:status %}hidden{% endif %}" data-id="fav-{{ status.id }}-{{ uuid }}">
     {% csrf_token %}
-    <button class="button is-success is-small" type="submit">
+    <button class="button is-primary is-small" type="submit">
         <span class="icon icon-heart" title="Un-like status">
             <span class="is-sr-only">Un-like status</span>
         </span>

From fcc0e0ccb6580930ffd0c9c52da704bb8dd44e4a Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 19:58:04 -0800
Subject: [PATCH 271/280] Cleans up formatting on about page

---
 bookwyrm/templates/about.html             | 16 --------------
 bookwyrm/templates/discover/about.html    | 22 ++++++++++++++++++
 bookwyrm/templates/discover/discover.html | 27 ++---------------------
 bookwyrm/templates/discover/icons.html    | 21 ++++++++++++++++++
 bookwyrm/views/landing.py                 |  2 +-
 5 files changed, 46 insertions(+), 42 deletions(-)
 delete mode 100644 bookwyrm/templates/about.html
 create mode 100644 bookwyrm/templates/discover/about.html
 create mode 100644 bookwyrm/templates/discover/icons.html

diff --git a/bookwyrm/templates/about.html b/bookwyrm/templates/about.html
deleted file mode 100644
index aa7426ca..00000000
--- a/bookwyrm/templates/about.html
+++ /dev/null
@@ -1,16 +0,0 @@
-{% extends 'layout.html' %}
-{% block content %}
-
-<div class="columns">
-    <div class="column block">
-        {% include 'snippets/about.html' %}
-    </div>
-
-    <div class="column block">
-        <h2 class="title">Code of Conduct</h2>
-        <div class="content">
-            {{ site.code_of_conduct | safe }}
-        </div>
-    </div>
-</div>
-{% endblock %}
diff --git a/bookwyrm/templates/discover/about.html b/bookwyrm/templates/discover/about.html
new file mode 100644
index 00000000..09115807
--- /dev/null
+++ b/bookwyrm/templates/discover/about.html
@@ -0,0 +1,22 @@
+{% extends 'layout.html' %}
+{% block content %}
+
+<header class="block has-text-centered">
+    <h1 class="title">{{ site.name }}</h1>
+    <h2 class="subtitle">{{ site.instance_tagline }}</h2>
+</header>
+
+{% include 'discover/icons.html' %}
+
+<section class="block">
+    {% include 'snippets/about.html' %}
+</section>
+
+<div class="block">
+    <h2 class="title">Code of Conduct</h2>
+    <div class="content">
+        {{ site.code_of_conduct | safe }}
+    </div>
+</div>
+
+{% endblock %}
diff --git a/bookwyrm/templates/discover/discover.html b/bookwyrm/templates/discover/discover.html
index 0b6f8a1f..5a808bf7 100644
--- a/bookwyrm/templates/discover/discover.html
+++ b/bookwyrm/templates/discover/discover.html
@@ -1,33 +1,14 @@
 {% extends 'layout.html' %}
 {% block content %}
 
-{% if not request.user.is_authenticated %}
 <header class="block has-text-centered">
     <h1 class="title">{{ site.name }}</h1>
     <h2 class="subtitle">{{ site.instance_tagline }}</h2>
 </header>
 
-<section class="level is-mobile">
-    <div class="level-item has-text-centered">
-        <div>
-            <p class="title has-text-weight-normal"><span class="icon icon-graphic-paperplane"></span></p>
-            <p class="heading">Decentralized</p>
-        </div>
-    </div>
-    <div class="level-item has-text-centered">
-        <div>
-            <p class="title has-text-weight-normal"><span class="icon icon-graphic-heart"></span></p>
-            <p class="heading">Friendly</p>
-        </div>
-    </div>
-    <div class="level-item has-text-centered">
-        <div>
-            <p class="title has-text-weight-normal"><span class="icon icon-graphic-banknote"></span></p>
-            <p class="heading">Anti-Corporate</p>
-        </div>
-    </div>
-</section>
+{% include 'discover/icons.html' %}
 
+{% if not request.user.is_authenticated %}
 <section class="tile is-ancestor">
     <div class="tile is-7 is-parent">
         <div class="tile is-child box">
@@ -49,10 +30,6 @@
     </div>
 </section>
 
-{% else %}
-<div class="block">
-    <h1 class="title has-text-centered">Discover</h1>
-</div>
 {% endif %}
 
 <div class="block is-hidden-tablet">
diff --git a/bookwyrm/templates/discover/icons.html b/bookwyrm/templates/discover/icons.html
new file mode 100644
index 00000000..a4086282
--- /dev/null
+++ b/bookwyrm/templates/discover/icons.html
@@ -0,0 +1,21 @@
+<section class="level is-mobile">
+    <div class="level-item has-text-centered">
+        <div>
+            <p class="title has-text-weight-normal"><span class="icon icon-graphic-paperplane"></span></p>
+            <p class="heading">Decentralized</p>
+        </div>
+    </div>
+    <div class="level-item has-text-centered">
+        <div>
+            <p class="title has-text-weight-normal"><span class="icon icon-graphic-heart"></span></p>
+            <p class="heading">Friendly</p>
+        </div>
+    </div>
+    <div class="level-item has-text-centered">
+        <div>
+            <p class="title has-text-weight-normal"><span class="icon icon-graphic-banknote"></span></p>
+            <p class="heading">Anti-Corporate</p>
+        </div>
+    </div>
+</section>
+
diff --git a/bookwyrm/views/landing.py b/bookwyrm/views/landing.py
index 854f3a9b..3be3eb31 100644
--- a/bookwyrm/views/landing.py
+++ b/bookwyrm/views/landing.py
@@ -16,7 +16,7 @@ class About(View):
         data = {
             'title': 'About',
         }
-        return TemplateResponse(request, 'about.html', data)
+        return TemplateResponse(request, 'discover/about.html', data)
 
 class Home(View):
     ''' discover page or home feed depending on auth '''

From 6426282db16f1c692425ffd9986faa180b244f1e Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Tue, 23 Feb 2021 22:07:13 -0800
Subject: [PATCH 272/280] fixes goal page and test for goal page

---
 bookwyrm/templates/goal.html      |  2 +-
 bookwyrm/tests/views/test_goal.py | 14 ++++++++++++--
 2 files changed, 13 insertions(+), 3 deletions(-)

diff --git a/bookwyrm/templates/goal.html b/bookwyrm/templates/goal.html
index dfdc02aa..0dc0aef8 100644
--- a/bookwyrm/templates/goal.html
+++ b/bookwyrm/templates/goal.html
@@ -50,7 +50,7 @@
         <div class="column is-narrow">
             <div class="box">
                 <a href="{{ book.book.local_path }}">
-                    {% include 'snippets/discover/small-book.html' with book=book.book rating=goal.ratings %}
+                    {% include 'discover/small-book.html' with book=book.book rating=goal.ratings %}
                 </a>
             </div>
         </div>
diff --git a/bookwyrm/tests/views/test_goal.py b/bookwyrm/tests/views/test_goal.py
index a78216f2..0d534112 100644
--- a/bookwyrm/tests/views/test_goal.py
+++ b/bookwyrm/tests/views/test_goal.py
@@ -1,5 +1,6 @@
 ''' test for app action functionality '''
 from unittest.mock import patch
+from django.utils import timezone
 
 from django.contrib.auth.models import AnonymousUser
 from django.template.response import TemplateResponse
@@ -30,6 +31,7 @@ class GoalViews(TestCase):
         )
         self.anonymous_user = AnonymousUser
         self.anonymous_user.is_authenticated = False
+        models.SiteSettings.objects.create()
 
 
     def test_goal_page_no_goal(self):
@@ -48,6 +50,7 @@ class GoalViews(TestCase):
         request.user = self.local_user
 
         result = view(request, self.local_user.localname, 2020)
+        result.render()
         self.assertIsInstance(result, TemplateResponse)
 
 
@@ -62,16 +65,23 @@ class GoalViews(TestCase):
 
     def test_goal_page_public(self):
         ''' view a user's public goal '''
+        models.ReadThrough.objects.create(
+            finish_date=timezone.now(),
+            user=self.local_user,
+            book=self.book,
+        )
+
         models.AnnualGoal.objects.create(
             user=self.local_user,
-            year=2020,
+            year=timezone.now().year,
             goal=128937123,
             privacy='public')
         view = views.Goal.as_view()
         request = self.factory.get('')
         request.user = self.rat
 
-        result = view(request, self.local_user.localname, 2020)
+        result = view(request, self.local_user.localname, timezone.now().year)
+        result.render()
         self.assertIsInstance(result, TemplateResponse)
 
     def test_goal_page_private(self):

From 9465455af288b215d29d8766d4ca37e6055150a3 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 24 Feb 2021 08:27:16 -0800
Subject: [PATCH 273/280] Catch ssl errors in broadcast

---
 bookwyrm/models/activitypub_mixin.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index d934681e..2c2e5a72 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -6,6 +6,7 @@ import operator
 import logging
 from uuid import uuid4
 import requests
+from requests.exceptions import HTTPError, SSLError
 
 from Crypto.PublicKey import RSA
 from Crypto.Signature import pkcs1_15
@@ -440,7 +441,7 @@ def broadcast_task(sender_id, activity, recipients):
     for recipient in recipients:
         try:
             sign_and_send(sender, activity, recipient)
-        except requests.exceptions.HTTPError as e:
+        except (HTTPError, SSLError) as e:
             logger.exception(e)
 
 

From 94e95dc39dd5af993d14f02b59383a5b500f1493 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 24 Feb 2021 10:07:03 -0800
Subject: [PATCH 274/280] Adds test for delete activity

---
 bookwyrm/tests/views/test_status.py | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/bookwyrm/tests/views/test_status.py b/bookwyrm/tests/views/test_status.py
index d490f484..4594a203 100644
--- a/bookwyrm/tests/views/test_status.py
+++ b/bookwyrm/tests/views/test_status.py
@@ -1,4 +1,5 @@
 ''' test for app action functionality '''
+import json
 from unittest.mock import patch
 from django.test import TestCase
 from django.test.client import RequestFactory
@@ -236,7 +237,11 @@ class StatusViews(TestCase):
         self.assertFalse(status.deleted)
         request = self.factory.post('')
         request.user = self.local_user
-        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay'):
+        with patch('bookwyrm.models.activitypub_mixin.broadcast_task.delay') \
+                as mock:
             view(request, status.id)
+            activity = json.loads(mock.call_args_list[0][0][1])
+            self.assertEqual(activity['type'], 'Delete')
+            self.assertEqual(activity['object']['type'], 'Tombstone')
         status.refresh_from_db()
         self.assertTrue(status.deleted)

From bcdf2ee1421bc3a31c108050d887fb65464bb62a Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 24 Feb 2021 11:35:19 -0800
Subject: [PATCH 275/280] Improves privacy-related display

---
 bookwyrm/templatetags/bookwyrm_tags.py |  7 ++-----
 bookwyrm/views/books.py                |  5 ++---
 bookwyrm/views/feed.py                 | 18 ++++++++++++------
 bookwyrm/views/helpers.py              | 15 ++++++++-------
 bookwyrm/views/list.py                 |  6 +++---
 bookwyrm/views/search.py               |  3 ++-
 6 files changed, 29 insertions(+), 25 deletions(-)

diff --git a/bookwyrm/templatetags/bookwyrm_tags.py b/bookwyrm/templatetags/bookwyrm_tags.py
index d251d8e4..67354ac6 100644
--- a/bookwyrm/templatetags/bookwyrm_tags.py
+++ b/bookwyrm/templatetags/bookwyrm_tags.py
@@ -22,11 +22,8 @@ def dict_key(d, k):
 @register.filter(name='rating')
 def get_rating(book, user):
     ''' get the overall rating of a book '''
-    queryset = views.helpers.get_activity_feed(
-        user,
-        ['public', 'followers', 'unlisted', 'direct'],
-        queryset=models.Review.objects.filter(book=book),
-    )
+    queryset = views.helpers.privacy_filter(
+        user, models.Review.objects.filter(book=book))
     return queryset.aggregate(Avg('rating'))['rating__avg']
 
 
diff --git a/bookwyrm/views/books.py b/bookwyrm/views/books.py
index 9d196563..3d4b3faf 100644
--- a/bookwyrm/views/books.py
+++ b/bookwyrm/views/books.py
@@ -96,9 +96,8 @@ class Book(View):
             'rating': reviews.aggregate(Avg('rating'))['rating__avg'],
             'tags':  models.UserTag.objects.filter(book=book),
             'lists': privacy_filter(
-                request.user,
-                book.list_set.all(),
-                ['public', 'unlisted', 'followers']),
+                request.user, book.list_set.all()
+            ),
             'user_tags': user_tags,
             'user_shelves': user_shelves,
             'other_edition_shelves': other_edition_shelves,
diff --git a/bookwyrm/views/feed.py b/bookwyrm/views/feed.py
index c229b7c9..d309df94 100644
--- a/bookwyrm/views/feed.py
+++ b/bookwyrm/views/feed.py
@@ -28,15 +28,21 @@ class Feed(View):
             page = 1
 
         if tab == 'home':
-            activities = get_activity_feed(
-                request.user, ['public', 'unlisted', 'followers'],
-                following_only=True)
+            activities = get_activity_feed(request.user, following_only=True)
+            # we only want to show private messages if they're related to books
+            activities = activities.exclude(
+                review__isnull=True,
+                comment__isnull=True,
+                quotation__isnull=True,
+                generatednote__isnull=True,
+                privacy='direct'
+            )
         elif tab == 'local':
             activities = get_activity_feed(
-                request.user, ['public', 'followers'], local_only=True)
+                request.user, privacy=['public', 'followers'], local_only=True)
         else:
             activities = get_activity_feed(
-                request.user, ['public', 'followers'])
+                request.user, privacy=['public', 'followers'])
         paginated = Paginator(activities, PAGE_LENGTH)
 
         data = {**feed_page_data(request.user), **{
@@ -72,7 +78,7 @@ class DirectMessage(View):
             queryset = queryset.filter(Q(user=user) | Q(mention_users=user))
 
         activities = get_activity_feed(
-            request.user, 'direct', queryset=queryset)
+            request.user, privacy=['direct'], queryset=queryset)
 
         paginated = Paginator(activities, PAGE_LENGTH)
         activity_page = paginated.page(page)
diff --git a/bookwyrm/views/helpers.py b/bookwyrm/views/helpers.py
index fac3ab0c..1e96ec1c 100644
--- a/bookwyrm/views/helpers.py
+++ b/bookwyrm/views/helpers.py
@@ -59,8 +59,11 @@ def object_visible_to_user(viewer, obj):
     return False
 
 
-def privacy_filter(viewer, queryset, privacy_levels, following_only=False):
+def privacy_filter(viewer, queryset, privacy_levels=None, following_only=False):
     ''' filter objects that have "user" and "privacy" fields '''
+    privacy_levels = privacy_levels or \
+            ['public', 'unlisted', 'followers', 'direct']
+
     # exclude blocks from both directions
     if not viewer.is_anonymous:
         blocked = models.User.objects.filter(id__in=viewer.blocks.all()).all()
@@ -104,18 +107,16 @@ def privacy_filter(viewer, queryset, privacy_levels, following_only=False):
 
 
 def get_activity_feed(
-        user, privacy, local_only=False, following_only=False,
-        queryset=models.Status.objects):
+        user, privacy=None, local_only=False, following_only=False,
+        queryset=None):
     ''' get a filtered queryset of statuses '''
-    # if we're looking at Status, we need this. We don't if it's Comment
-    if hasattr(queryset, 'select_subclasses'):
-        queryset = queryset.select_subclasses()
+    if not queryset:
+        queryset = models.Status.objects.select_subclasses()
 
     # exclude deleted
     queryset = queryset.exclude(deleted=True).order_by('-published_date')
 
     # apply privacy filters
-    privacy = privacy if isinstance(privacy, list) else [privacy]
     queryset = privacy_filter(
         user, queryset, privacy, following_only=following_only)
 
diff --git a/bookwyrm/views/list.py b/bookwyrm/views/list.py
index 7286bfb4..e7b70a28 100644
--- a/bookwyrm/views/list.py
+++ b/bookwyrm/views/list.py
@@ -35,7 +35,8 @@ class Lists(View):
         ).filter(
             item_count__gt=0
         ).distinct().all()
-        lists = privacy_filter(request.user, lists, ['public', 'followers'])
+        lists = privacy_filter(
+            request.user, lists, privacy_levels=['public', 'followers'])
 
         paginated = Paginator(lists, 12)
         data = {
@@ -67,8 +68,7 @@ class UserLists(View):
             page = 1
         user = get_user_from_username(request.user, username)
         lists = models.List.objects.filter(user=user).all()
-        lists = privacy_filter(
-            request.user, lists, ['public', 'followers', 'unlisted'])
+        lists = privacy_filter(request.user, lists)
         paginated = Paginator(lists, 12)
 
         data = {
diff --git a/bookwyrm/views/search.py b/bookwyrm/views/search.py
index 98be166f..8acb2836 100644
--- a/bookwyrm/views/search.py
+++ b/bookwyrm/views/search.py
@@ -44,7 +44,8 @@ class Search(View):
 
         # any relevent lists?
         list_results = privacy_filter(
-            request.user, models.List.objects, ['public', 'followers']
+            request.user, models.List.objects,
+            privacy_levels=['public', 'followers']
         ).annotate(
             similarity=Greatest(
                 TrigramSimilarity('name', query),

From 2a5d4b83d8f020bee7cf37077fdafe57dfe9bd54 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 24 Feb 2021 11:59:21 -0800
Subject: [PATCH 276/280] Show dms in the right places

---
 bookwyrm/templates/discover/large-book.html |  2 +-
 bookwyrm/templates/discover/small-book.html |  4 +--
 bookwyrm/tests/views/test_helpers.py        | 16 ++++++------
 bookwyrm/views/books.py                     |  4 +--
 bookwyrm/views/feed.py                      | 14 +++-------
 bookwyrm/views/helpers.py                   | 29 ++++++++++++++++-----
 bookwyrm/views/landing.py                   | 13 ++-------
 bookwyrm/views/rss_feed.py                  |  2 +-
 bookwyrm/views/user.py                      |  4 +--
 9 files changed, 42 insertions(+), 46 deletions(-)

diff --git a/bookwyrm/templates/discover/large-book.html b/bookwyrm/templates/discover/large-book.html
index 401411a1..7881a33a 100644
--- a/bookwyrm/templates/discover/large-book.html
+++ b/bookwyrm/templates/discover/large-book.html
@@ -3,7 +3,7 @@
 <div class="columns">
     <div class="column is-narrow">
         <a href="{{ book.local_path }}">{% include 'snippets/book_cover.html' with book=book size="large" %}</a>
-        {% include 'snippets/stars.html' with rating=ratings|dict_key:book.id %}
+        {% include 'snippets/stars.html' with rating=book|rating:request.user %}
     </div>
     <div class="column">
         <h3 class="title is-5"><a href="/book/{{ book.id }}">{{ book.title }}</a></h3>
diff --git a/bookwyrm/templates/discover/small-book.html b/bookwyrm/templates/discover/small-book.html
index d1676b6b..72108c30 100644
--- a/bookwyrm/templates/discover/small-book.html
+++ b/bookwyrm/templates/discover/small-book.html
@@ -1,9 +1,7 @@
 {% load bookwyrm_tags %}
 {% if book %}
 <a href="{{ book.local_path }}">{% include 'snippets/book_cover.html' with book=book %}</a>
-{% if ratings %}
-{% include 'snippets/stars.html' with rating=ratings|dict_key:book.id %}
-{% endif %}
+{% include 'snippets/stars.html' with rating=book|rating:request.user %}
 
 <h3 class="title is-6"><a href="/book/{{ book.id }}">{{ book.title }}</a></h3>
 {% if book.authors %}
diff --git a/bookwyrm/tests/views/test_helpers.py b/bookwyrm/tests/views/test_helpers.py
index 10221933..c61505c2 100644
--- a/bookwyrm/tests/views/test_helpers.py
+++ b/bookwyrm/tests/views/test_helpers.py
@@ -106,7 +106,7 @@ class ViewsHelpers(TestCase):
 
         statuses = views.helpers.get_activity_feed(
             self.local_user,
-            ['public', 'unlisted', 'followers'],
+            privacy=['public', 'unlisted', 'followers'],
             following_only=True,
             queryset=models.Comment.objects
         )
@@ -115,7 +115,7 @@ class ViewsHelpers(TestCase):
 
         statuses = views.helpers.get_activity_feed(
             self.local_user,
-            ['public', 'followers'],
+            privacy=['public', 'followers'],
             local_only=True
         )
         self.assertEqual(len(statuses), 2)
@@ -128,7 +128,7 @@ class ViewsHelpers(TestCase):
 
         statuses = views.helpers.get_activity_feed(
             self.local_user,
-            ['public', 'followers'],
+            privacy=['public', 'followers'],
         )
         self.assertEqual(len(statuses), 3)
         self.assertEqual(statuses[2], public_status)
@@ -137,7 +137,7 @@ class ViewsHelpers(TestCase):
 
         statuses = views.helpers.get_activity_feed(
             self.local_user,
-            ['public', 'unlisted', 'followers'],
+            privacy=['public', 'unlisted', 'followers'],
             following_only=True
         )
         self.assertEqual(len(statuses), 2)
@@ -147,7 +147,7 @@ class ViewsHelpers(TestCase):
         rat.followers.add(self.local_user)
         statuses = views.helpers.get_activity_feed(
             self.local_user,
-            ['public', 'unlisted', 'followers'],
+            privacy=['public', 'unlisted', 'followers'],
             following_only=True
         )
         self.assertEqual(len(statuses), 5)
@@ -170,18 +170,18 @@ class ViewsHelpers(TestCase):
                 content='blah blah', user=rat)
 
             statuses = views.helpers.get_activity_feed(
-                self.local_user, ['public'])
+                self.local_user, privacy=['public'])
             self.assertEqual(len(statuses), 2)
 
         # block relationship
         rat.blocks.add(self.local_user)
         statuses = views.helpers.get_activity_feed(
-            self.local_user, ['public'])
+            self.local_user, privacy=['public'])
         self.assertEqual(len(statuses), 1)
         self.assertEqual(statuses[0], public_status)
 
         statuses = views.helpers.get_activity_feed(
-            rat, ['public'])
+            rat, privacy=['public'])
         self.assertEqual(len(statuses), 1)
         self.assertEqual(statuses[0], rat_public)
 
diff --git a/bookwyrm/views/books.py b/bookwyrm/views/books.py
index 3d4b3faf..d59eb4aa 100644
--- a/bookwyrm/views/books.py
+++ b/bookwyrm/views/books.py
@@ -50,9 +50,7 @@ class Book(View):
         )
         # all reviews for the book
         reviews = get_activity_feed(
-            request.user,
-            ['public', 'unlisted', 'followers', 'direct'],
-            queryset=reviews
+            request.user, queryset=reviews
         )
 
         # the reviews to show
diff --git a/bookwyrm/views/feed.py b/bookwyrm/views/feed.py
index d309df94..a320162d 100644
--- a/bookwyrm/views/feed.py
+++ b/bookwyrm/views/feed.py
@@ -11,8 +11,7 @@ from django.views import View
 from bookwyrm import forms, models
 from bookwyrm.activitypub import ActivitypubResponse
 from bookwyrm.settings import PAGE_LENGTH
-from .helpers import get_activity_feed
-from .helpers import get_user_from_username
+from .helpers import get_activity_feed, get_user_from_username
 from .helpers import is_api_request, is_bookwyrm_request, object_visible_to_user
 
 
@@ -28,15 +27,8 @@ class Feed(View):
             page = 1
 
         if tab == 'home':
-            activities = get_activity_feed(request.user, following_only=True)
-            # we only want to show private messages if they're related to books
-            activities = activities.exclude(
-                review__isnull=True,
-                comment__isnull=True,
-                quotation__isnull=True,
-                generatednote__isnull=True,
-                privacy='direct'
-            )
+            activities = get_activity_feed(
+                request.user, following_only=True, hide_dms=True)
         elif tab == 'local':
             activities = get_activity_feed(
                 request.user, privacy=['public', 'followers'], local_only=True)
diff --git a/bookwyrm/views/helpers.py b/bookwyrm/views/helpers.py
index 1e96ec1c..78f210bf 100644
--- a/bookwyrm/views/helpers.py
+++ b/bookwyrm/views/helpers.py
@@ -1,6 +1,7 @@
 ''' helper functions used in various views '''
 import re
 from requests import HTTPError
+from django.core.exceptions import FieldError
 from django.db.models import Q
 
 from bookwyrm import activitypub, models
@@ -98,17 +99,23 @@ def privacy_filter(viewer, queryset, privacy_levels=None, following_only=False):
 
     # exclude direct messages not intended for the user
     if 'direct' in privacy_levels:
-        queryset = queryset.exclude(
-            ~Q(
-                Q(user=viewer) | Q(mention_users=viewer)
-            ), privacy='direct'
-        )
+        try:
+            queryset = queryset.exclude(
+                ~Q(
+                    Q(user=viewer) | Q(mention_users=viewer)
+                ), privacy='direct'
+            )
+        except FieldError:
+            queryset = queryset.exclude(
+                ~Q(user=viewer), privacy='direct'
+            )
+
     return queryset
 
 
 def get_activity_feed(
         user, privacy=None, local_only=False, following_only=False,
-        queryset=None):
+        queryset=None, hide_dms=False):
     ''' get a filtered queryset of statuses '''
     if not queryset:
         queryset = models.Status.objects.select_subclasses()
@@ -120,6 +127,16 @@ def get_activity_feed(
     queryset = privacy_filter(
         user, queryset, privacy, following_only=following_only)
 
+    if hide_dms:
+        # dms are direct statuses not related to books
+        queryset = queryset.exclude(
+            review__isnull=True,
+            comment__isnull=True,
+            quotation__isnull=True,
+            generatednote__isnull=True,
+            privacy='direct'
+        )
+
     # filter for only local status
     if local_only:
         queryset = queryset.filter(user__local=True)
diff --git a/bookwyrm/views/landing.py b/bookwyrm/views/landing.py
index 3be3eb31..2774e742 100644
--- a/bookwyrm/views/landing.py
+++ b/bookwyrm/views/landing.py
@@ -1,11 +1,10 @@
 ''' non-interactive pages '''
-from django.db.models import Avg, Max
+from django.db.models import Max
 from django.template.response import TemplateResponse
 from django.views import View
 
 from bookwyrm import forms, models
 from .feed import Feed
-from .helpers import get_activity_feed
 
 
 # pylint: disable= no-self-use
@@ -34,6 +33,7 @@ class Discover(View):
         ''' tiled book activity page '''
         books = models.Edition.objects.filter(
             review__published_date__isnull=False,
+            review__deleted=False,
             review__user__local=True,
             review__privacy__in=['public', 'unlisted'],
         ).exclude(
@@ -42,18 +42,9 @@ class Discover(View):
             Max('review__published_date')
         ).order_by('-review__published_date__max')[:6]
 
-        ratings = {}
-        for book in books:
-            reviews = models.Review.objects.filter(
-                book__in=book.parent_work.editions.all()
-            )
-            reviews = get_activity_feed(
-                request.user, ['public', 'unlisted'], queryset=reviews)
-            ratings[book.id] = reviews.aggregate(Avg('rating'))['rating__avg']
         data = {
             'title': 'Discover',
             'register_form': forms.RegisterForm(),
             'books': list(set(books)),
-            'ratings': ratings
         }
         return TemplateResponse(request, 'discover/discover.html', data)
diff --git a/bookwyrm/views/rss_feed.py b/bookwyrm/views/rss_feed.py
index aad227bf..c211f991 100644
--- a/bookwyrm/views/rss_feed.py
+++ b/bookwyrm/views/rss_feed.py
@@ -27,7 +27,7 @@ class RssFeed(Feed):
     def items(self, obj):
         ''' the user's activity feed '''
         return get_activity_feed(
-            obj, ['public', 'unlisted'], queryset=obj.status_set)
+            obj, privacy=['public', 'unlisted'], queryset=obj.status_set)
 
 
     def item_link(self, item):
diff --git a/bookwyrm/views/user.py b/bookwyrm/views/user.py
index 7a238ce7..01002ce5 100644
--- a/bookwyrm/views/user.py
+++ b/bookwyrm/views/user.py
@@ -71,8 +71,8 @@ class User(View):
         # user's posts
         activities = get_activity_feed(
             request.user,
-            ['public', 'unlisted', 'followers'],
-            queryset=user.status_set
+            queryset=user.status_set.select_subclasses(),
+            hide_dms=True
         )
         paginated = Paginator(activities, PAGE_LENGTH)
         goal = models.AnnualGoal.objects.filter(

From 779581c6f480d13612fe998fbeeb9536a6235abd Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 24 Feb 2021 12:06:00 -0800
Subject: [PATCH 277/280] Only show dms in dm page

---
 bookwyrm/views/feed.py    |  2 +-
 bookwyrm/views/helpers.py | 12 ++++++++++--
 bookwyrm/views/user.py    |  1 -
 3 files changed, 11 insertions(+), 4 deletions(-)

diff --git a/bookwyrm/views/feed.py b/bookwyrm/views/feed.py
index a320162d..3a2805b4 100644
--- a/bookwyrm/views/feed.py
+++ b/bookwyrm/views/feed.py
@@ -28,7 +28,7 @@ class Feed(View):
 
         if tab == 'home':
             activities = get_activity_feed(
-                request.user, following_only=True, hide_dms=True)
+                request.user, following_only=True)
         elif tab == 'local':
             activities = get_activity_feed(
                 request.user, privacy=['public', 'followers'], local_only=True)
diff --git a/bookwyrm/views/helpers.py b/bookwyrm/views/helpers.py
index 78f210bf..10b6ed92 100644
--- a/bookwyrm/views/helpers.py
+++ b/bookwyrm/views/helpers.py
@@ -115,7 +115,7 @@ def privacy_filter(viewer, queryset, privacy_levels=None, following_only=False):
 
 def get_activity_feed(
         user, privacy=None, local_only=False, following_only=False,
-        queryset=None, hide_dms=False):
+        queryset=None):
     ''' get a filtered queryset of statuses '''
     if not queryset:
         queryset = models.Status.objects.select_subclasses()
@@ -127,8 +127,16 @@ def get_activity_feed(
     queryset = privacy_filter(
         user, queryset, privacy, following_only=following_only)
 
-    if hide_dms:
+    # only show dms if we only want dms
+    if privacy == ['direct']:
         # dms are direct statuses not related to books
+        queryset = queryset.filter(
+            review__isnull=True,
+            comment__isnull=True,
+            quotation__isnull=True,
+            generatednote__isnull=True,
+        )
+    else:
         queryset = queryset.exclude(
             review__isnull=True,
             comment__isnull=True,
diff --git a/bookwyrm/views/user.py b/bookwyrm/views/user.py
index 01002ce5..a218375f 100644
--- a/bookwyrm/views/user.py
+++ b/bookwyrm/views/user.py
@@ -72,7 +72,6 @@ class User(View):
         activities = get_activity_feed(
             request.user,
             queryset=user.status_set.select_subclasses(),
-            hide_dms=True
         )
         paginated = Paginator(activities, PAGE_LENGTH)
         goal = models.AnnualGoal.objects.filter(

From a5ee535ab64305cf73529d892a513ccff6c70f04 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 24 Feb 2021 12:24:19 -0800
Subject: [PATCH 278/280] fixes book reviews queryset aggregators

---
 bookwyrm/tests/views/test_helpers.py |  3 ++-
 bookwyrm/views/books.py              |  8 ++------
 bookwyrm/views/helpers.py            | 20 ++++++++++++--------
 3 files changed, 16 insertions(+), 15 deletions(-)

diff --git a/bookwyrm/tests/views/test_helpers.py b/bookwyrm/tests/views/test_helpers.py
index c61505c2..eff08307 100644
--- a/bookwyrm/tests/views/test_helpers.py
+++ b/bookwyrm/tests/views/test_helpers.py
@@ -122,7 +122,8 @@ class ViewsHelpers(TestCase):
         self.assertEqual(statuses[1], public_status)
         self.assertEqual(statuses[0], rat_public)
 
-        statuses = views.helpers.get_activity_feed(self.local_user, 'direct')
+        statuses = views.helpers.get_activity_feed(
+            self.local_user, privacy=['direct'])
         self.assertEqual(len(statuses), 1)
         self.assertEqual(statuses[0], direct_status)
 
diff --git a/bookwyrm/views/books.py b/bookwyrm/views/books.py
index d59eb4aa..e05c4726 100644
--- a/bookwyrm/views/books.py
+++ b/bookwyrm/views/books.py
@@ -45,13 +45,9 @@ class Book(View):
         if not work:
             return HttpResponseNotFound()
 
-        reviews = models.Review.objects.filter(
-            book__in=work.editions.all(),
-        )
         # all reviews for the book
-        reviews = get_activity_feed(
-            request.user, queryset=reviews
-        )
+        reviews = models.Review.objects.filter(book__in=work.editions.all())
+        reviews = get_activity_feed(request.user, queryset=reviews)
 
         # the reviews to show
         paginated = Paginator(reviews.exclude(
diff --git a/bookwyrm/views/helpers.py b/bookwyrm/views/helpers.py
index 10b6ed92..cecb65e3 100644
--- a/bookwyrm/views/helpers.py
+++ b/bookwyrm/views/helpers.py
@@ -117,7 +117,7 @@ def get_activity_feed(
         user, privacy=None, local_only=False, following_only=False,
         queryset=None):
     ''' get a filtered queryset of statuses '''
-    if not queryset:
+    if queryset is None:
         queryset = models.Status.objects.select_subclasses()
 
     # exclude deleted
@@ -137,13 +137,17 @@ def get_activity_feed(
             generatednote__isnull=True,
         )
     else:
-        queryset = queryset.exclude(
-            review__isnull=True,
-            comment__isnull=True,
-            quotation__isnull=True,
-            generatednote__isnull=True,
-            privacy='direct'
-        )
+        try:
+            queryset = queryset.exclude(
+                review__isnull=True,
+                comment__isnull=True,
+                quotation__isnull=True,
+                generatednote__isnull=True,
+                privacy='direct'
+            )
+        except FieldError:
+            # if we're looking at a subtype of Status (like Review)
+            pass
 
     # filter for only local status
     if local_only:

From c7d85486142ff9e89551e8fe0895cc30669fb111 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 24 Feb 2021 12:35:43 -0800
Subject: [PATCH 279/280] Select subclasses in rss feed

---
 bookwyrm/views/rss_feed.py | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/bookwyrm/views/rss_feed.py b/bookwyrm/views/rss_feed.py
index c211f991..d24b636e 100644
--- a/bookwyrm/views/rss_feed.py
+++ b/bookwyrm/views/rss_feed.py
@@ -27,7 +27,10 @@ class RssFeed(Feed):
     def items(self, obj):
         ''' the user's activity feed '''
         return get_activity_feed(
-            obj, privacy=['public', 'unlisted'], queryset=obj.status_set)
+            obj,
+            privacy=['public', 'unlisted'],
+            queryset=obj.status_set.select_subclasses()
+        )
 
 
     def item_link(self, item):

From bb7c41ee5fb4e51aa230778426ac8306ce807354 Mon Sep 17 00:00:00 2001
From: Mouse Reeve <mousereeve@riseup.net>
Date: Wed, 24 Feb 2021 13:13:29 -0800
Subject: [PATCH 280/280] Tweaks where serialize is called

---
 bookwyrm/models/activitypub_mixin.py | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/bookwyrm/models/activitypub_mixin.py b/bookwyrm/models/activitypub_mixin.py
index 23752e02..f8b50afa 100644
--- a/bookwyrm/models/activitypub_mixin.py
+++ b/bookwyrm/models/activitypub_mixin.py
@@ -161,7 +161,7 @@ class ActivitypubMixin:
         activity = generate_activity(self)
         return self.activity_serializer(**activity)
 
-    def to_activity(self):
+    def to_activity(self, **kwargs): # pylint: disable=unused-argument
         ''' convert from a model to a json activity '''
         return self.to_activity_dataclass().serialize()
 
@@ -286,7 +286,7 @@ class OrderedCollectionPageMixin(ObjectMixin):
 
     def to_ordered_collection(self, queryset, \
             remote_id=None, page=False, collection_only=False, **kwargs):
-        'pure=pure, '' an ordered collection of whatevers '''
+        ''' an ordered collection of whatevers '''
         if not queryset.ordered:
             raise RuntimeError('queryset must be ordered')
 
@@ -330,7 +330,7 @@ class OrderedCollectionMixin(OrderedCollectionPageMixin):
     def to_activity(self, **kwargs):
         ''' an ordered collection of the specified model queryset  '''
         return self.to_ordered_collection(
-            self.collection_queryset, **kwargs)
+            self.collection_queryset, **kwargs).serialize()
 
 
 class CollectionItemMixin(ActivitypubMixin):
@@ -502,4 +502,4 @@ def to_ordered_collection_page(
         orderedItems=items,
         next=next_page,
         prev=prev_page
-    ).serialize()
+    )