1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2018 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.ActivityPub.ActivityPubController do
6 use Pleroma.Web, :controller
7 alias Pleroma.{User, Object}
8 alias Pleroma.Web.ActivityPub.{ObjectView, UserView}
9 alias Pleroma.Web.ActivityPub.ActivityPub
10 alias Pleroma.Web.ActivityPub.Relay
11 alias Pleroma.Web.ActivityPub.Utils
12 alias Pleroma.Web.Federator
16 action_fallback(:errors)
18 plug(Pleroma.Web.FederatingPlug when action in [:inbox, :relay])
19 plug(:relay_active? when action in [:relay])
21 def relay_active?(conn, _) do
22 if Keyword.get(Application.get_env(:pleroma, :instance), :allow_relay) do
27 |> json(%{error: "not found"})
32 def user(conn, %{"nickname" => nickname}) do
33 with %User{} = user <- User.get_cached_by_nickname(nickname),
34 {:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do
36 |> put_resp_header("content-type", "application/activity+json")
37 |> json(UserView.render("user.json", %{user: user}))
39 nil -> {:error, :not_found}
43 def object(conn, %{"uuid" => uuid}) do
44 with ap_id <- o_status_url(conn, :object, uuid),
45 %Object{} = object <- Object.get_cached_by_ap_id(ap_id),
46 {_, true} <- {:public?, ActivityPub.is_public?(object)} do
48 |> put_resp_header("content-type", "application/activity+json")
49 |> json(ObjectView.render("object.json", %{object: object}))
56 def following(conn, %{"nickname" => nickname, "page" => page}) do
57 with %User{} = user <- User.get_cached_by_nickname(nickname),
58 {:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do
59 {page, _} = Integer.parse(page)
62 |> put_resp_header("content-type", "application/activity+json")
63 |> json(UserView.render("following.json", %{user: user, page: page}))
67 def following(conn, %{"nickname" => nickname}) do
68 with %User{} = user <- User.get_cached_by_nickname(nickname),
69 {:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do
71 |> put_resp_header("content-type", "application/activity+json")
72 |> json(UserView.render("following.json", %{user: user}))
76 def followers(conn, %{"nickname" => nickname, "page" => page}) do
77 with %User{} = user <- User.get_cached_by_nickname(nickname),
78 {:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do
79 {page, _} = Integer.parse(page)
82 |> put_resp_header("content-type", "application/activity+json")
83 |> json(UserView.render("followers.json", %{user: user, page: page}))
87 def followers(conn, %{"nickname" => nickname}) do
88 with %User{} = user <- User.get_cached_by_nickname(nickname),
89 {:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do
91 |> put_resp_header("content-type", "application/activity+json")
92 |> json(UserView.render("followers.json", %{user: user}))
96 def outbox(conn, %{"nickname" => nickname} = params) do
97 with %User{} = user <- User.get_cached_by_nickname(nickname),
98 {:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do
100 |> put_resp_header("content-type", "application/activity+json")
101 |> json(UserView.render("outbox.json", %{user: user, max_id: params["max_id"]}))
105 def inbox(%{assigns: %{valid_signature: true}} = conn, %{"nickname" => nickname} = params) do
106 with %User{} = user <- User.get_cached_by_nickname(nickname),
107 true <- Utils.recipient_in_message(user.ap_id, params),
108 params <- Utils.maybe_splice_recipient(user.ap_id, params) do
109 Federator.enqueue(:incoming_ap_doc, params)
114 def inbox(%{assigns: %{valid_signature: true}} = conn, params) do
115 Federator.enqueue(:incoming_ap_doc, params)
119 # only accept relayed Creates
120 def inbox(conn, %{"type" => "Create"} = params) do
122 "Signature missing or not from author, relayed Create message, fetching object from source"
125 ActivityPub.fetch_object_from_id(params["object"]["id"])
130 def inbox(conn, params) do
131 headers = Enum.into(conn.req_headers, %{})
133 if String.contains?(headers["signature"], params["actor"]) do
135 "Signature validation error for: #{params["actor"]}, make sure you are forwarding the HTTP Host header!"
138 Logger.info(inspect(conn.req_headers))
144 def relay(conn, _params) do
145 with %User{} = user <- Relay.get_actor(),
146 {:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do
148 |> put_resp_header("content-type", "application/activity+json")
149 |> json(UserView.render("user.json", %{user: user}))
151 nil -> {:error, :not_found}
155 def read_inbox(%{assigns: %{user: user}} = conn, %{"nickname" => nickname} = params) do
156 if nickname == user.nickname do
158 |> put_resp_header("content-type", "application/activity+json")
159 |> json(UserView.render("inbox.json", %{user: user, max_id: params["max_id"]}))
162 |> put_status(:forbidden)
163 |> json("can't read inbox of #{nickname} as #{user.nickname}")
167 def update_outbox(%{assigns: %{user: user}} = conn, %{"nickname" => nickname} = params) do
168 if nickname == user.nickname do
169 Logger.info("update outbox #{inspect(params)}")
172 |> put_status(:created)
176 |> put_status(:forbidden)
177 |> json("can't update outbox of #{nickname} as #{user.nickname}")
181 def errors(conn, {:error, :not_found}) do
187 def errors(conn, _e) do