2018-12-23 21:04:54 +01:00
|
|
|
# Pleroma: A lightweight social networking server
|
2018-12-31 16:41:47 +01:00
|
|
|
# Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
|
2018-12-23 21:04:54 +01:00
|
|
|
# SPDX-License-Identifier: AGPL-3.0-only
|
|
|
|
|
2017-03-21 17:53:20 +01:00
|
|
|
defmodule Pleroma.Web.TwitterAPI.TwitterAPI do
|
2019-02-09 16:16:26 +01:00
|
|
|
alias Pleroma.Activity
|
2019-03-05 03:52:23 +01:00
|
|
|
alias Pleroma.Mailer
|
|
|
|
alias Pleroma.Repo
|
|
|
|
alias Pleroma.User
|
2019-02-09 16:16:26 +01:00
|
|
|
alias Pleroma.UserEmail
|
2019-03-05 03:52:23 +01:00
|
|
|
alias Pleroma.UserInviteToken
|
2017-03-21 17:53:20 +01:00
|
|
|
alias Pleroma.Web.ActivityPub.ActivityPub
|
2018-12-09 10:12:48 +01:00
|
|
|
alias Pleroma.Web.CommonAPI
|
2019-03-05 03:52:23 +01:00
|
|
|
alias Pleroma.Web.TwitterAPI.UserView
|
2018-12-17 15:28:58 +01:00
|
|
|
|
2017-09-16 14:33:47 +02:00
|
|
|
import Ecto.Query
|
2017-03-21 17:53:20 +01:00
|
|
|
|
2017-11-19 02:22:07 +01:00
|
|
|
def create_status(%User{} = user, %{"status" => _} = data) do
|
2017-09-15 14:17:36 +02:00
|
|
|
CommonAPI.post(user, data)
|
2017-03-21 17:53:20 +01:00
|
|
|
end
|
|
|
|
|
2018-04-18 12:00:40 +02:00
|
|
|
def delete(%User{} = user, id) do
|
2018-12-09 10:12:48 +01:00
|
|
|
with %Activity{data: %{"type" => _type}} <- Repo.get(Activity, id),
|
2018-06-14 03:29:55 +02:00
|
|
|
{:ok, activity} <- CommonAPI.delete(id, user) do
|
|
|
|
{:ok, activity}
|
2018-04-18 12:00:40 +02:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-04-13 14:32:13 +02:00
|
|
|
def follow(%User{} = follower, params) do
|
2019-03-03 22:50:00 +01:00
|
|
|
with {:ok, %User{} = followed} <- get_user(params) do
|
|
|
|
CommonAPI.follow(follower, followed)
|
2017-03-22 18:36:08 +01:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-04-20 09:57:37 +02:00
|
|
|
def unfollow(%User{} = follower, params) do
|
2018-03-30 15:01:53 +02:00
|
|
|
with {:ok, %User{} = unfollowed} <- get_user(params),
|
2019-03-13 07:04:49 +01:00
|
|
|
{:ok, follower} <- CommonAPI.unfollow(follower, unfollowed) do
|
2018-03-30 15:01:53 +02:00
|
|
|
{:ok, follower, unfollowed}
|
2017-03-23 13:13:09 +01:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-11-07 23:04:53 +01:00
|
|
|
def block(%User{} = blocker, params) do
|
|
|
|
with {:ok, %User{} = blocked} <- get_user(params),
|
2018-05-22 11:41:17 +02:00
|
|
|
{:ok, blocker} <- User.block(blocker, blocked),
|
|
|
|
{:ok, _activity} <- ActivityPub.block(blocker, blocked) do
|
2017-11-07 23:04:53 +01:00
|
|
|
{:ok, blocker, blocked}
|
|
|
|
else
|
|
|
|
err -> err
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
def unblock(%User{} = blocker, params) do
|
|
|
|
with {:ok, %User{} = blocked} <- get_user(params),
|
2018-05-22 11:41:17 +02:00
|
|
|
{:ok, blocker} <- User.unblock(blocker, blocked),
|
|
|
|
{:ok, _activity} <- ActivityPub.unblock(blocker, blocked) do
|
2017-11-07 23:04:53 +01:00
|
|
|
{:ok, blocker, blocked}
|
|
|
|
else
|
|
|
|
err -> err
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-09-09 17:48:57 +02:00
|
|
|
def repeat(%User{} = user, ap_id_or_id) do
|
2018-06-03 19:11:22 +02:00
|
|
|
with {:ok, _announce, %{data: %{"id" => id}}} <- CommonAPI.repeat(ap_id_or_id, user),
|
2019-01-21 07:14:20 +01:00
|
|
|
%Activity{} = activity <- Activity.get_create_by_object_ap_id(id) do
|
2018-03-30 16:50:30 +02:00
|
|
|
{:ok, activity}
|
2017-09-09 17:48:57 +02:00
|
|
|
end
|
2017-04-15 13:54:46 +02:00
|
|
|
end
|
|
|
|
|
2018-06-14 03:29:55 +02:00
|
|
|
def unrepeat(%User{} = user, ap_id_or_id) do
|
|
|
|
with {:ok, _unannounce, %{data: %{"id" => id}}} <- CommonAPI.unrepeat(ap_id_or_id, user),
|
2019-01-21 07:14:20 +01:00
|
|
|
%Activity{} = activity <- Activity.get_create_by_object_ap_id(id) do
|
2018-04-18 12:00:40 +02:00
|
|
|
{:ok, activity}
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2019-01-09 13:54:19 +01:00
|
|
|
def pin(%User{} = user, ap_id_or_id) do
|
|
|
|
CommonAPI.pin(ap_id_or_id, user)
|
|
|
|
end
|
|
|
|
|
|
|
|
def unpin(%User{} = user, ap_id_or_id) do
|
|
|
|
CommonAPI.unpin(ap_id_or_id, user)
|
|
|
|
end
|
|
|
|
|
2017-09-09 18:09:37 +02:00
|
|
|
def fav(%User{} = user, ap_id_or_id) do
|
2018-06-03 19:11:22 +02:00
|
|
|
with {:ok, _fav, %{data: %{"id" => id}}} <- CommonAPI.favorite(ap_id_or_id, user),
|
2019-01-21 07:14:20 +01:00
|
|
|
%Activity{} = activity <- Activity.get_create_by_object_ap_id(id) do
|
2018-03-30 16:50:30 +02:00
|
|
|
{:ok, activity}
|
2017-09-09 18:09:37 +02:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-09-09 18:30:02 +02:00
|
|
|
def unfav(%User{} = user, ap_id_or_id) do
|
2018-06-03 19:11:22 +02:00
|
|
|
with {:ok, _unfav, _fav, %{data: %{"id" => id}}} <- CommonAPI.unfavorite(ap_id_or_id, user),
|
2019-01-21 07:14:20 +01:00
|
|
|
%Activity{} = activity <- Activity.get_create_by_object_ap_id(id) do
|
2018-03-30 16:50:30 +02:00
|
|
|
{:ok, activity}
|
2017-09-09 18:30:02 +02:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2018-12-05 11:37:06 +01:00
|
|
|
def upload(%Plug.Upload{} = file, %User{} = user, format \\ "xml") do
|
2018-12-06 08:26:17 +01:00
|
|
|
{:ok, object} = ActivityPub.upload(file, actor: User.ap_id(user))
|
2017-03-29 02:05:51 +02:00
|
|
|
|
2017-03-30 16:08:23 +02:00
|
|
|
url = List.first(object.data["url"])
|
2018-11-23 17:40:45 +01:00
|
|
|
href = url["href"]
|
2017-03-30 16:08:23 +02:00
|
|
|
type = url["mediaType"]
|
|
|
|
|
2017-04-14 16:13:34 +02:00
|
|
|
case format do
|
|
|
|
"xml" ->
|
|
|
|
# Fake this as good as possible...
|
|
|
|
"""
|
|
|
|
<?xml version="1.0" encoding="UTF-8"?>
|
|
|
|
<rsp stat="ok" xmlns:atom="http://www.w3.org/2005/Atom">
|
|
|
|
<mediaid>#{object.id}</mediaid>
|
|
|
|
<media_id>#{object.id}</media_id>
|
|
|
|
<media_id_string>#{object.id}</media_id_string>
|
|
|
|
<media_url>#{href}</media_url>
|
|
|
|
<mediaurl>#{href}</mediaurl>
|
|
|
|
<atom:link rel="enclosure" href="#{href}" type="#{type}"></atom:link>
|
|
|
|
</rsp>
|
|
|
|
"""
|
2018-03-30 15:01:53 +02:00
|
|
|
|
2017-04-14 16:13:34 +02:00
|
|
|
"json" ->
|
|
|
|
%{
|
|
|
|
media_id: object.id,
|
|
|
|
media_id_string: "#{object.id}}",
|
|
|
|
media_url: href,
|
|
|
|
size: 0
|
2018-03-30 15:01:53 +02:00
|
|
|
}
|
|
|
|
|> Jason.encode!()
|
2017-04-14 16:13:34 +02:00
|
|
|
end
|
2017-03-29 02:05:51 +02:00
|
|
|
end
|
|
|
|
|
2017-04-16 10:25:27 +02:00
|
|
|
def register_user(params) do
|
2019-03-05 04:36:19 +01:00
|
|
|
token_string = params["token"]
|
2018-06-12 13:52:54 +02:00
|
|
|
|
2017-04-16 10:25:27 +02:00
|
|
|
params = %{
|
|
|
|
nickname: params["nickname"],
|
|
|
|
name: params["fullname"],
|
2018-12-02 20:03:53 +01:00
|
|
|
bio: User.parse_bio(params["bio"]),
|
2017-04-16 10:25:27 +02:00
|
|
|
email: params["email"],
|
|
|
|
password: params["password"],
|
2018-12-14 23:31:19 +01:00
|
|
|
password_confirmation: params["confirm"],
|
|
|
|
captcha_solution: params["captcha_solution"],
|
2018-12-20 22:32:37 +01:00
|
|
|
captcha_token: params["captcha_token"],
|
|
|
|
captcha_answer_data: params["captcha_answer_data"]
|
2017-04-16 10:25:27 +02:00
|
|
|
}
|
|
|
|
|
2018-12-15 00:00:00 +01:00
|
|
|
captcha_enabled = Pleroma.Config.get([Pleroma.Captcha, :enabled])
|
|
|
|
# true if captcha is disabled or enabled and valid, false otherwise
|
2018-12-15 20:08:26 +01:00
|
|
|
captcha_ok =
|
|
|
|
if !captcha_enabled do
|
2018-12-20 22:32:37 +01:00
|
|
|
:ok
|
2018-12-15 20:08:26 +01:00
|
|
|
else
|
2018-12-20 22:32:37 +01:00
|
|
|
Pleroma.Captcha.validate(
|
|
|
|
params[:captcha_token],
|
|
|
|
params[:captcha_solution],
|
|
|
|
params[:captcha_answer_data]
|
|
|
|
)
|
2018-12-15 20:08:26 +01:00
|
|
|
end
|
2018-12-15 00:00:00 +01:00
|
|
|
|
2018-12-14 23:31:19 +01:00
|
|
|
# Captcha invalid
|
2018-12-20 22:32:37 +01:00
|
|
|
if captcha_ok != :ok do
|
|
|
|
{:error, error} = captcha_ok
|
2018-12-14 23:31:19 +01:00
|
|
|
# I have no idea how this error handling works
|
2018-12-20 22:32:37 +01:00
|
|
|
{:error, %{error: Jason.encode!(%{captcha: [error]})}}
|
2018-12-14 23:31:19 +01:00
|
|
|
else
|
|
|
|
registrations_open = Pleroma.Config.get([:instance, :registrations_open])
|
2018-11-06 19:34:57 +01:00
|
|
|
|
2018-12-14 23:31:19 +01:00
|
|
|
# no need to query DB if registration is open
|
|
|
|
token =
|
2019-03-05 04:36:19 +01:00
|
|
|
unless registrations_open || is_nil(token_string) do
|
|
|
|
Repo.get_by(UserInviteToken, %{token: token_string})
|
2018-12-15 20:08:26 +01:00
|
|
|
end
|
2017-04-16 10:25:27 +02:00
|
|
|
|
2018-12-18 15:30:30 +01:00
|
|
|
cond do
|
|
|
|
registrations_open || (!is_nil(token) && !token.used) ->
|
|
|
|
changeset = User.register_changeset(%User{}, params)
|
|
|
|
|
|
|
|
with {:ok, user} <- User.register(changeset) do
|
|
|
|
!registrations_open && UserInviteToken.mark_as_used(token.token)
|
|
|
|
|
|
|
|
{:ok, user}
|
|
|
|
else
|
|
|
|
{:error, changeset} ->
|
|
|
|
errors =
|
|
|
|
Ecto.Changeset.traverse_errors(changeset, fn {msg, _opts} -> msg end)
|
|
|
|
|> Jason.encode!()
|
2018-06-12 13:52:54 +02:00
|
|
|
|
2018-12-15 20:08:26 +01:00
|
|
|
{:error, %{error: errors}}
|
2018-12-14 23:31:19 +01:00
|
|
|
end
|
|
|
|
|
|
|
|
!registrations_open && is_nil(token) ->
|
2018-12-15 20:08:26 +01:00
|
|
|
{:error, "Invalid token"}
|
2018-03-30 15:01:53 +02:00
|
|
|
|
2018-12-14 23:31:19 +01:00
|
|
|
!registrations_open && token.used ->
|
2018-12-15 20:08:26 +01:00
|
|
|
{:error, "Expired token"}
|
2018-12-14 23:31:19 +01:00
|
|
|
end
|
2017-04-16 10:25:27 +02:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2018-12-13 11:17:49 +01:00
|
|
|
def password_reset(nickname_or_email) do
|
|
|
|
with true <- is_binary(nickname_or_email),
|
|
|
|
%User{local: true} = user <- User.get_by_nickname_or_email(nickname_or_email),
|
|
|
|
{:ok, token_record} <- Pleroma.PasswordResetToken.create_token(user) do
|
|
|
|
user
|
2018-12-17 15:28:58 +01:00
|
|
|
|> UserEmail.password_reset_email(token_record.token)
|
2019-02-20 17:51:25 +01:00
|
|
|
|> Mailer.deliver_async()
|
2018-12-13 11:17:49 +01:00
|
|
|
else
|
|
|
|
false ->
|
|
|
|
{:error, "bad user identifier"}
|
|
|
|
|
|
|
|
%User{local: false} ->
|
|
|
|
{:error, "remote user"}
|
|
|
|
|
|
|
|
nil ->
|
|
|
|
{:error, "unknown user"}
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-04-20 09:39:18 +02:00
|
|
|
def get_user(user \\ nil, params) do
|
2017-04-16 15:44:30 +02:00
|
|
|
case params do
|
2017-05-05 12:07:38 +02:00
|
|
|
%{"user_id" => user_id} ->
|
2019-02-24 19:23:47 +01:00
|
|
|
case target = User.get_cached_by_nickname_or_id(user_id) do
|
2017-04-16 15:44:30 +02:00
|
|
|
nil ->
|
|
|
|
{:error, "No user with such user_id"}
|
2018-03-30 15:01:53 +02:00
|
|
|
|
2017-04-16 15:44:30 +02:00
|
|
|
_ ->
|
|
|
|
{:ok, target}
|
|
|
|
end
|
2018-03-30 15:01:53 +02:00
|
|
|
|
2017-05-05 12:07:38 +02:00
|
|
|
%{"screen_name" => nickname} ->
|
2017-04-16 15:44:30 +02:00
|
|
|
case target = Repo.get_by(User, nickname: nickname) do
|
|
|
|
nil ->
|
|
|
|
{:error, "No user with such screen_name"}
|
2018-03-30 15:01:53 +02:00
|
|
|
|
2017-04-16 15:44:30 +02:00
|
|
|
_ ->
|
|
|
|
{:ok, target}
|
|
|
|
end
|
2018-03-30 15:01:53 +02:00
|
|
|
|
2017-04-16 15:44:30 +02:00
|
|
|
_ ->
|
|
|
|
if user do
|
|
|
|
{:ok, user}
|
|
|
|
else
|
2017-04-16 16:05:48 +02:00
|
|
|
{:error, "You need to specify screen_name or user_id"}
|
2017-04-16 15:44:30 +02:00
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-11-19 02:22:07 +01:00
|
|
|
defp parse_int(string, default)
|
2018-03-30 15:01:53 +02:00
|
|
|
|
2017-09-16 14:33:47 +02:00
|
|
|
defp parse_int(string, default) when is_binary(string) do
|
|
|
|
with {n, _} <- Integer.parse(string) do
|
|
|
|
n
|
|
|
|
else
|
|
|
|
_e -> default
|
|
|
|
end
|
|
|
|
end
|
2018-03-30 15:01:53 +02:00
|
|
|
|
2017-09-16 14:33:47 +02:00
|
|
|
defp parse_int(_, default), do: default
|
|
|
|
|
2018-05-04 22:59:01 +02:00
|
|
|
def search(_user, %{"q" => query} = params) do
|
2017-09-16 14:33:47 +02:00
|
|
|
limit = parse_int(params["rpp"], 20)
|
|
|
|
page = parse_int(params["page"], 1)
|
|
|
|
offset = (page - 1) * limit
|
|
|
|
|
2018-03-30 15:01:53 +02:00
|
|
|
q =
|
|
|
|
from(
|
|
|
|
a in Activity,
|
|
|
|
where: fragment("?->>'type' = 'Create'", a.data),
|
2018-04-07 16:40:03 +02:00
|
|
|
where: "https://www.w3.org/ns/activitystreams#Public" in a.recipients,
|
2018-03-30 15:01:53 +02:00
|
|
|
where:
|
|
|
|
fragment(
|
|
|
|
"to_tsvector('english', ?->'object'->>'content') @@ plainto_tsquery('english', ?)",
|
|
|
|
a.data,
|
|
|
|
^query
|
|
|
|
),
|
|
|
|
limit: ^limit,
|
|
|
|
offset: ^offset,
|
|
|
|
# this one isn't indexed so psql won't take the wrong index.
|
|
|
|
order_by: [desc: :inserted_at]
|
|
|
|
)
|
2017-09-16 14:33:47 +02:00
|
|
|
|
2018-05-04 22:59:01 +02:00
|
|
|
_activities = Repo.all(q)
|
2017-09-16 14:33:47 +02:00
|
|
|
end
|
|
|
|
|
2017-05-10 18:44:57 +02:00
|
|
|
def get_external_profile(for_user, uri) do
|
2018-03-24 15:09:09 +01:00
|
|
|
with %User{} = user <- User.get_or_fetch(uri) do
|
2017-06-19 23:12:37 +02:00
|
|
|
{:ok, UserView.render("show.json", %{user: user, for: for_user})}
|
2018-03-30 15:01:53 +02:00
|
|
|
else
|
|
|
|
_e ->
|
2017-05-12 18:50:47 +02:00
|
|
|
{:error, "Couldn't find user"}
|
2017-05-10 18:44:57 +02:00
|
|
|
end
|
|
|
|
end
|
2017-03-21 17:53:20 +01:00
|
|
|
end
|