1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2020 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 # Code based on CreateChatMessageValidator
7 # - doesn't embed, will only get the object id
8 defmodule Pleroma.Web.ActivityPub.ObjectValidators.CreateGenericValidator do
11 alias Pleroma.EctoType.ActivityPub.ObjectValidators
15 import Pleroma.Web.ActivityPub.ObjectValidators.CommonValidations
20 field(:id, ObjectValidators.ObjectID, primary_key: true)
21 field(:actor, ObjectValidators.ObjectID)
23 field(:to, ObjectValidators.Recipients, default: [])
24 field(:cc, ObjectValidators.Recipients, default: [])
25 field(:object, ObjectValidators.ObjectID)
26 field(:expires_at, ObjectValidators.DateTime)
28 # Should be moved to object, done for CommonAPI.Utils.make_context
29 field(:context, :string)
32 def cast_data(data, meta \\ []) do
33 data = fix(data, meta)
39 def cast_and_apply(data) do
42 |> apply_action(:insert)
45 def cast_and_validate(data, meta \\ []) do
48 |> validate_data(meta)
51 def changeset(struct, data) do
53 |> cast(data, __schema__(:fields))
56 defp fix_context(data, meta) do
57 if object = meta[:object_data] do
58 Map.put_new(data, "context", object["context"])
64 defp fix_addressing(data, meta) do
65 if object = meta[:object_data] do
67 |> Map.put_new("to", object["to"] || [])
68 |> Map.put_new("cc", object["cc"] || [])
74 defp fix(data, meta) do
77 |> fix_addressing(meta)
80 def validate_data(cng, meta \\ []) do
82 |> validate_required([:actor, :type, :object])
83 |> validate_inclusion(:type, ["Create"])
84 |> validate_actor_presence()
85 |> validate_any_presence([:to, :cc])
86 |> validate_actors_match(meta)
87 |> validate_context_match(meta)
88 |> validate_object_nonexistence()
89 |> validate_object_containment()
92 def validate_object_containment(cng) do
93 actor = get_field(cng, :actor)
96 |> validate_change(:object, fn :object, object_id ->
97 %URI{host: object_id_host} = URI.parse(object_id)
98 %URI{host: actor_host} = URI.parse(actor)
100 if object_id_host == actor_host do
103 [{:object, "The host of the object id doesn't match with the host of the actor"}]
108 def validate_object_nonexistence(cng) do
110 |> validate_change(:object, fn :object, object_id ->
111 if Object.get_cached_by_ap_id(object_id) do
112 [{:object, "The object to create already exists"}]
119 def validate_actors_match(cng, meta) do
120 attributed_to = meta[:object_data]["attributedTo"] || meta[:object_data]["actor"]
123 |> validate_change(:actor, fn :actor, actor ->
124 if actor == attributed_to do
127 [{:actor, "Actor doesn't match with object attributedTo"}]
132 def validate_context_match(cng, %{object_data: %{"context" => object_context}}) do
134 |> validate_change(:context, fn :context, context ->
135 if context == object_context do
138 [{:context, "context field not matching between Create and object (#{object_context})"}]
143 def validate_context_match(cng, _), do: cng