projects / akkoma / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
[#2456] credo fix.
[akkoma] / lib / pleroma / web / admin_api / admin_api_controller.ex
1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2020 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
4
5 defmodule Pleroma.Web.AdminAPI.AdminAPIController do
6 use Pleroma.Web, :controller
7
8 import Pleroma.Web.ControllerHelper, only: [json_response: 3]
9
10 alias Pleroma.Activity
11 alias Pleroma.Config
12 alias Pleroma.ConfigDB
13 alias Pleroma.MFA
14 alias Pleroma.ModerationLog
15 alias Pleroma.Plugs.OAuthScopesPlug
16 alias Pleroma.ReportNote
17 alias Pleroma.Stats
18 alias Pleroma.User
19 alias Pleroma.UserInviteToken
20 alias Pleroma.Web.ActivityPub.ActivityPub
21 alias Pleroma.Web.ActivityPub.Builder
22 alias Pleroma.Web.ActivityPub.Pipeline
23 alias Pleroma.Web.ActivityPub.Relay
24 alias Pleroma.Web.ActivityPub.Utils
25 alias Pleroma.Web.AdminAPI
26 alias Pleroma.Web.AdminAPI.AccountView
27 alias Pleroma.Web.AdminAPI.ConfigView
28 alias Pleroma.Web.AdminAPI.ModerationLogView
29 alias Pleroma.Web.AdminAPI.Report
30 alias Pleroma.Web.AdminAPI.ReportView
31 alias Pleroma.Web.AdminAPI.Search
32 alias Pleroma.Web.CommonAPI
33 alias Pleroma.Web.Endpoint
34 alias Pleroma.Web.MastodonAPI
35 alias Pleroma.Web.MastodonAPI.AppView
36 alias Pleroma.Web.OAuth.App
37 alias Pleroma.Web.Router
38
39 require Logger
40
41 @descriptions_json Pleroma.Docs.JSON.compile()
42 @users_page_size 50
43
44 plug(
45 OAuthScopesPlug,
46 %{scopes: ["read:accounts"], admin: true}
47 when action in [:list_users, :user_show, :right_get, :show_user_credentials]
48 )
49
50 plug(
51 OAuthScopesPlug,
52 %{scopes: ["write:accounts"], admin: true}
53 when action in [
54 :get_password_reset,
55 :force_password_reset,
56 :user_delete,
57 :users_create,
58 :user_toggle_activation,
59 :user_activate,
60 :user_deactivate,
61 :tag_users,
62 :untag_users,
63 :right_add,
64 :right_add_multiple,
65 :right_delete,
66 :disable_mfa,
67 :right_delete_multiple,
68 :update_user_credentials
69 ]
70 )
71
72 plug(OAuthScopesPlug, %{scopes: ["read:invites"], admin: true} when action == :invites)
73
74 plug(
75 OAuthScopesPlug,
76 %{scopes: ["write:invites"], admin: true}
77 when action in [:create_invite_token, :revoke_invite, :email_invite]
78 )
79
80 plug(
81 OAuthScopesPlug,
82 %{scopes: ["write:follows"], admin: true}
83 when action in [:user_follow, :user_unfollow, :relay_follow, :relay_unfollow]
84 )
85
86 plug(
87 OAuthScopesPlug,
88 %{scopes: ["read:reports"], admin: true}
89 when action in [:list_reports, :report_show]
90 )
91
92 plug(
93 OAuthScopesPlug,
94 %{scopes: ["write:reports"], admin: true}
95 when action in [:reports_update, :report_notes_create, :report_notes_delete]
96 )
97
98 plug(
99 OAuthScopesPlug,
100 %{scopes: ["read:statuses"], admin: true}
101 when action in [:list_statuses, :list_user_statuses, :list_instance_statuses, :status_show]
102 )
103
104 plug(
105 OAuthScopesPlug,
106 %{scopes: ["write:statuses"], admin: true}
107 when action in [:status_update, :status_delete]
108 )
109
110 plug(
111 OAuthScopesPlug,
112 %{scopes: ["read"], admin: true}
113 when action in [
114 :config_show,
115 :list_log,
116 :stats,
117 :relay_list,
118 :config_descriptions,
119 :need_reboot
120 ]
121 )
122
123 plug(
124 OAuthScopesPlug,
125 %{scopes: ["write"], admin: true}
126 when action in [
127 :restart,
128 :config_update,
129 :resend_confirmation_email,
130 :confirm_email,
131 :oauth_app_create,
132 :oauth_app_list,
133 :oauth_app_update,
134 :oauth_app_delete,
135 :reload_emoji
136 ]
137 )
138
139 action_fallback(:errors)
140
141 def user_delete(conn, %{"nickname" => nickname}) do
142 user_delete(conn, %{"nicknames" => [nickname]})
143 end
144
145 def user_delete(%{assigns: %{user: admin}} = conn, %{"nicknames" => nicknames}) do
146 users =
147 nicknames
148 |> Enum.map(&User.get_cached_by_nickname/1)
149
150 users
151 |> Enum.each(fn user ->
152 {:ok, delete_data, _} = Builder.delete(admin, user.ap_id)
153 Pipeline.common_pipeline(delete_data, local: true)
154 end)
155
156 ModerationLog.insert_log(%{
157 actor: admin,
158 subject: users,
159 action: "delete"
160 })
161
162 conn
163 |> json(nicknames)
164 end
165
166 def user_follow(%{assigns: %{user: admin}} = conn, %{
167 "follower" => follower_nick,
168 "followed" => followed_nick
169 }) do
170 with %User{} = follower <- User.get_cached_by_nickname(follower_nick),
171 %User{} = followed <- User.get_cached_by_nickname(followed_nick) do
172 User.follow(follower, followed)
173
174 ModerationLog.insert_log(%{
175 actor: admin,
176 followed: followed,
177 follower: follower,
178 action: "follow"
179 })
180 end
181
182 conn
183 |> json("ok")
184 end
185
186 def user_unfollow(%{assigns: %{user: admin}} = conn, %{
187 "follower" => follower_nick,
188 "followed" => followed_nick
189 }) do
190 with %User{} = follower <- User.get_cached_by_nickname(follower_nick),
191 %User{} = followed <- User.get_cached_by_nickname(followed_nick) do
192 User.unfollow(follower, followed)
193
194 ModerationLog.insert_log(%{
195 actor: admin,
196 followed: followed,
197 follower: follower,
198 action: "unfollow"
199 })
200 end
201
202 conn
203 |> json("ok")
204 end
205
206 def users_create(%{assigns: %{user: admin}} = conn, %{"users" => users}) do
207 changesets =
208 Enum.map(users, fn %{"nickname" => nickname, "email" => email, "password" => password} ->
209 user_data = %{
210 nickname: nickname,
211 name: nickname,
212 email: email,
213 password: password,
214 password_confirmation: password,
215 bio: "."
216 }
217
218 User.register_changeset(%User{}, user_data, need_confirmation: false)
219 end)
220 |> Enum.reduce(Ecto.Multi.new(), fn changeset, multi ->
221 Ecto.Multi.insert(multi, Ecto.UUID.generate(), changeset)
222 end)
223
224 case Pleroma.Repo.transaction(changesets) do
225 {:ok, users} ->
226 res =
227 users
228 |> Map.values()
229 |> Enum.map(fn user ->
230 {:ok, user} = User.post_register_action(user)
231
232 user
233 end)
234 |> Enum.map(&AccountView.render("created.json", %{user: &1}))
235
236 ModerationLog.insert_log(%{
237 actor: admin,
238 subjects: Map.values(users),
239 action: "create"
240 })
241
242 conn
243 |> json(res)
244
245 {:error, id, changeset, _} ->
246 res =
247 Enum.map(changesets.operations, fn
248 {current_id, {:changeset, _current_changeset, _}} when current_id == id ->
249 AccountView.render("create-error.json", %{changeset: changeset})
250
251 {_, {:changeset, current_changeset, _}} ->
252 AccountView.render("create-error.json", %{changeset: current_changeset})
253 end)
254
255 conn
256 |> put_status(:conflict)
257 |> json(res)
258 end
259 end
260
261 def user_show(conn, %{"nickname" => nickname}) do
262 with %User{} = user <- User.get_cached_by_nickname_or_id(nickname) do
263 conn
264 |> put_view(AccountView)
265 |> render("show.json", %{user: user})
266 else
267 _ -> {:error, :not_found}
268 end
269 end
270
271 def list_instance_statuses(conn, %{"instance" => instance} = params) do
272 with_reblogs = params["with_reblogs"] == "true" || params["with_reblogs"] == true
273 {page, page_size} = page_params(params)
274
275 activities =
276 ActivityPub.fetch_statuses(nil, %{
277 "instance" => instance,
278 "limit" => page_size,
279 "offset" => (page - 1) * page_size,
280 "exclude_reblogs" => !with_reblogs && "true"
281 })
282
283 conn
284 |> put_view(AdminAPI.StatusView)
285 |> render("index.json", %{activities: activities, as: :activity})
286 end
287
288 def list_user_statuses(conn, %{"nickname" => nickname} = params) do
289 with_reblogs = params["with_reblogs"] == "true" || params["with_reblogs"] == true
290 godmode = params["godmode"] == "true" || params["godmode"] == true
291
292 with %User{} = user <- User.get_cached_by_nickname_or_id(nickname) do
293 {_, page_size} = page_params(params)
294
295 activities =
296 ActivityPub.fetch_user_activities(user, nil, %{
297 "limit" => page_size,
298 "godmode" => godmode,
299 "exclude_reblogs" => !with_reblogs && "true"
300 })
301
302 conn
303 |> put_view(MastodonAPI.StatusView)
304 |> render("index.json", %{activities: activities, as: :activity})
305 else
306 _ -> {:error, :not_found}
307 end
308 end
309
310 def user_toggle_activation(%{assigns: %{user: admin}} = conn, %{"nickname" => nickname}) do
311 user = User.get_cached_by_nickname(nickname)
312
313 {:ok, updated_user} = User.deactivate(user, !user.deactivated)
314
315 action = if user.deactivated, do: "activate", else: "deactivate"
316
317 ModerationLog.insert_log(%{
318 actor: admin,
319 subject: [user],
320 action: action
321 })
322
323 conn
324 |> put_view(AccountView)
325 |> render("show.json", %{user: updated_user})
326 end
327
328 def user_activate(%{assigns: %{user: admin}} = conn, %{"nicknames" => nicknames}) do
329 users = Enum.map(nicknames, &User.get_cached_by_nickname/1)
330 {:ok, updated_users} = User.deactivate(users, false)
331
332 ModerationLog.insert_log(%{
333 actor: admin,
334 subject: users,
335 action: "activate"
336 })
337
338 conn
339 |> put_view(AccountView)
340 |> render("index.json", %{users: Keyword.values(updated_users)})
341 end
342
343 def user_deactivate(%{assigns: %{user: admin}} = conn, %{"nicknames" => nicknames}) do
344 users = Enum.map(nicknames, &User.get_cached_by_nickname/1)
345 {:ok, updated_users} = User.deactivate(users, true)
346
347 ModerationLog.insert_log(%{
348 actor: admin,
349 subject: users,
350 action: "deactivate"
351 })
352
353 conn
354 |> put_view(AccountView)
355 |> render("index.json", %{users: Keyword.values(updated_users)})
356 end
357
358 def tag_users(%{assigns: %{user: admin}} = conn, %{"nicknames" => nicknames, "tags" => tags}) do
359 with {:ok, _} <- User.tag(nicknames, tags) do
360 ModerationLog.insert_log(%{
361 actor: admin,
362 nicknames: nicknames,
363 tags: tags,
364 action: "tag"
365 })
366
367 json_response(conn, :no_content, "")
368 end
369 end
370
371 def untag_users(%{assigns: %{user: admin}} = conn, %{"nicknames" => nicknames, "tags" => tags}) do
372 with {:ok, _} <- User.untag(nicknames, tags) do
373 ModerationLog.insert_log(%{
374 actor: admin,
375 nicknames: nicknames,
376 tags: tags,
377 action: "untag"
378 })
379
380 json_response(conn, :no_content, "")
381 end
382 end
383
384 def list_users(conn, params) do
385 {page, page_size} = page_params(params)
386 filters = maybe_parse_filters(params["filters"])
387
388 search_params = %{
389 query: params["query"],
390 page: page,
391 page_size: page_size,
392 tags: params["tags"],
393 name: params["name"],
394 email: params["email"]
395 }
396
397 with {:ok, users, count} <- Search.user(Map.merge(search_params, filters)) do
398 json(
399 conn,
400 AccountView.render("index.json", users: users, count: count, page_size: page_size)
401 )
402 end
403 end
404
405 @filters ~w(local external active deactivated is_admin is_moderator)
406
407 @spec maybe_parse_filters(String.t()) :: %{required(String.t()) => true} | %{}
408 defp maybe_parse_filters(filters) when is_nil(filters) or filters == "", do: %{}
409
410 defp maybe_parse_filters(filters) do
411 filters
412 |> String.split(",")
413 |> Enum.filter(&Enum.member?(@filters, &1))
414 |> Enum.map(&String.to_atom(&1))
415 |> Enum.into(%{}, &{&1, true})
416 end
417
418 def right_add_multiple(%{assigns: %{user: admin}} = conn, %{
419 "permission_group" => permission_group,
420 "nicknames" => nicknames
421 })
422 when permission_group in ["moderator", "admin"] do
423 update = %{:"is_#{permission_group}" => true}
424
425 users = nicknames |> Enum.map(&User.get_cached_by_nickname/1)
426
427 for u <- users, do: User.admin_api_update(u, update)
428
429 ModerationLog.insert_log(%{
430 action: "grant",
431 actor: admin,
432 subject: users,
433 permission: permission_group
434 })
435
436 json(conn, update)
437 end
438
439 def right_add_multiple(conn, _) do
440 render_error(conn, :not_found, "No such permission_group")
441 end
442
443 def right_add(%{assigns: %{user: admin}} = conn, %{
444 "permission_group" => permission_group,
445 "nickname" => nickname
446 })
447 when permission_group in ["moderator", "admin"] do
448 fields = %{:"is_#{permission_group}" => true}
449
450 {:ok, user} =
451 nickname
452 |> User.get_cached_by_nickname()
453 |> User.admin_api_update(fields)
454
455 ModerationLog.insert_log(%{
456 action: "grant",
457 actor: admin,
458 subject: [user],
459 permission: permission_group
460 })
461
462 json(conn, fields)
463 end
464
465 def right_add(conn, _) do
466 render_error(conn, :not_found, "No such permission_group")
467 end
468
469 def right_get(conn, %{"nickname" => nickname}) do
470 user = User.get_cached_by_nickname(nickname)
471
472 conn
473 |> json(%{
474 is_moderator: user.is_moderator,
475 is_admin: user.is_admin
476 })
477 end
478
479 def right_delete_multiple(
480 %{assigns: %{user: %{nickname: admin_nickname} = admin}} = conn,
481 %{
482 "permission_group" => permission_group,
483 "nicknames" => nicknames
484 }
485 )
486 when permission_group in ["moderator", "admin"] do
487 with false <- Enum.member?(nicknames, admin_nickname) do
488 update = %{:"is_#{permission_group}" => false}
489
490 users = nicknames |> Enum.map(&User.get_cached_by_nickname/1)
491
492 for u <- users, do: User.admin_api_update(u, update)
493
494 ModerationLog.insert_log(%{
495 action: "revoke",
496 actor: admin,
497 subject: users,
498 permission: permission_group
499 })
500
501 json(conn, update)
502 else
503 _ -> render_error(conn, :forbidden, "You can't revoke your own admin/moderator status.")
504 end
505 end
506
507 def right_delete_multiple(conn, _) do
508 render_error(conn, :not_found, "No such permission_group")
509 end
510
511 def right_delete(
512 %{assigns: %{user: admin}} = conn,
513 %{
514 "permission_group" => permission_group,
515 "nickname" => nickname
516 }
517 )
518 when permission_group in ["moderator", "admin"] do
519 fields = %{:"is_#{permission_group}" => false}
520
521 {:ok, user} =
522 nickname
523 |> User.get_cached_by_nickname()
524 |> User.admin_api_update(fields)
525
526 ModerationLog.insert_log(%{
527 action: "revoke",
528 actor: admin,
529 subject: [user],
530 permission: permission_group
531 })
532
533 json(conn, fields)
534 end
535
536 def right_delete(%{assigns: %{user: %{nickname: nickname}}} = conn, %{"nickname" => nickname}) do
537 render_error(conn, :forbidden, "You can't revoke your own admin status.")
538 end
539
540 def relay_list(conn, _params) do
541 with {:ok, list} <- Relay.list() do
542 json(conn, %{relays: list})
543 else
544 _ ->
545 conn
546 |> put_status(500)
547 end
548 end
549
550 def relay_follow(%{assigns: %{user: admin}} = conn, %{"relay_url" => target}) do
551 with {:ok, _message} <- Relay.follow(target) do
552 ModerationLog.insert_log(%{
553 action: "relay_follow",
554 actor: admin,
555 target: target
556 })
557
558 json(conn, target)
559 else
560 _ ->
561 conn
562 |> put_status(500)
563 |> json(target)
564 end
565 end
566
567 def relay_unfollow(%{assigns: %{user: admin}} = conn, %{"relay_url" => target}) do
568 with {:ok, _message} <- Relay.unfollow(target) do
569 ModerationLog.insert_log(%{
570 action: "relay_unfollow",
571 actor: admin,
572 target: target
573 })
574
575 json(conn, target)
576 else
577 _ ->
578 conn
579 |> put_status(500)
580 |> json(target)
581 end
582 end
583
584 @doc "Sends registration invite via email"
585 def email_invite(%{assigns: %{user: user}} = conn, %{"email" => email} = params) do
586 with {_, false} <- {:registrations_open, Config.get([:instance, :registrations_open])},
587 {_, true} <- {:invites_enabled, Config.get([:instance, :invites_enabled])},
588 {:ok, invite_token} <- UserInviteToken.create_invite(),
589 email <-
590 Pleroma.Emails.UserEmail.user_invitation_email(
591 user,
592 invite_token,
593 email,
594 params["name"]
595 ),
596 {:ok, _} <- Pleroma.Emails.Mailer.deliver(email) do
597 json_response(conn, :no_content, "")
598 else
599 {:registrations_open, _} ->
600 errors(
601 conn,
602 {:error, "To send invites you need to set the `registrations_open` option to false."}
603 )
604
605 {:invites_enabled, _} ->
606 errors(
607 conn,
608 {:error, "To send invites you need to set the `invites_enabled` option to true."}
609 )
610 end
611 end
612
613 @doc "Create an account registration invite token"
614 def create_invite_token(conn, params) do
615 opts = %{}
616
617 opts =
618 if params["max_use"],
619 do: Map.put(opts, :max_use, params["max_use"]),
620 else: opts
621
622 opts =
623 if params["expires_at"],
624 do: Map.put(opts, :expires_at, params["expires_at"]),
625 else: opts
626
627 {:ok, invite} = UserInviteToken.create_invite(opts)
628
629 json(conn, AccountView.render("invite.json", %{invite: invite}))
630 end
631
632 @doc "Get list of created invites"
633 def invites(conn, _params) do
634 invites = UserInviteToken.list_invites()
635
636 conn
637 |> put_view(AccountView)
638 |> render("invites.json", %{invites: invites})
639 end
640
641 @doc "Revokes invite by token"
642 def revoke_invite(conn, %{"token" => token}) do
643 with {:ok, invite} <- UserInviteToken.find_by_token(token),
644 {:ok, updated_invite} = UserInviteToken.update_invite(invite, %{used: true}) do
645 conn
646 |> put_view(AccountView)
647 |> render("invite.json", %{invite: updated_invite})
648 else
649 nil -> {:error, :not_found}
650 end
651 end
652
653 @doc "Get a password reset token (base64 string) for given nickname"
654 def get_password_reset(conn, %{"nickname" => nickname}) do
655 (%User{local: true} = user) = User.get_cached_by_nickname(nickname)
656 {:ok, token} = Pleroma.PasswordResetToken.create_token(user)
657
658 conn
659 |> json(%{
660 token: token.token,
661 link: Router.Helpers.reset_password_url(Endpoint, :reset, token.token)
662 })
663 end
664
665 @doc "Force password reset for a given user"
666 def force_password_reset(%{assigns: %{user: admin}} = conn, %{"nicknames" => nicknames}) do
667 users = nicknames |> Enum.map(&User.get_cached_by_nickname/1)
668
669 Enum.each(users, &User.force_password_reset_async/1)
670
671 ModerationLog.insert_log(%{
672 actor: admin,
673 subject: users,
674 action: "force_password_reset"
675 })
676
677 json_response(conn, :no_content, "")
678 end
679
680 @doc "Disable mfa for user's account."
681 def disable_mfa(conn, %{"nickname" => nickname}) do
682 case User.get_by_nickname(nickname) do
683 %User{} = user ->
684 MFA.disable(user)
685 json(conn, nickname)
686
687 _ ->
688 {:error, :not_found}
689 end
690 end
691
692 @doc "Show a given user's credentials"
693 def show_user_credentials(%{assigns: %{user: admin}} = conn, %{"nickname" => nickname}) do
694 with %User{} = user <- User.get_cached_by_nickname_or_id(nickname) do
695 conn
696 |> put_view(AccountView)
697 |> render("credentials.json", %{user: user, for: admin})
698 else
699 _ -> {:error, :not_found}
700 end
701 end
702
703 @doc "Updates a given user"
704 def update_user_credentials(
705 %{assigns: %{user: admin}} = conn,
706 %{"nickname" => nickname} = params
707 ) do
708 with {_, user} <- {:user, User.get_cached_by_nickname(nickname)},
709 {:ok, _user} <-
710 User.update_as_admin(user, params) do
711 ModerationLog.insert_log(%{
712 actor: admin,
713 subject: [user],
714 action: "updated_users"
715 })
716
717 if params["password"] do
718 User.force_password_reset_async(user)
719 end
720
721 ModerationLog.insert_log(%{
722 actor: admin,
723 subject: [user],
724 action: "force_password_reset"
725 })
726
727 json(conn, %{status: "success"})
728 else
729 {:error, changeset} ->
730 {_, {error, _}} = Enum.at(changeset.errors, 0)
731 json(conn, %{error: "New password #{error}."})
732
733 _ ->
734 json(conn, %{error: "Unable to change password."})
735 end
736 end
737
738 def list_reports(conn, params) do
739 {page, page_size} = page_params(params)
740
741 reports = Utils.get_reports(params, page, page_size)
742
743 conn
744 |> put_view(ReportView)
745 |> render("index.json", %{reports: reports})
746 end
747
748 def report_show(conn, %{"id" => id}) do
749 with %Activity{} = report <- Activity.get_by_id(id) do
750 conn
751 |> put_view(ReportView)
752 |> render("show.json", Report.extract_report_info(report))
753 else
754 _ -> {:error, :not_found}
755 end
756 end
757
758 def reports_update(%{assigns: %{user: admin}} = conn, %{"reports" => reports}) do
759 result =
760 reports
761 |> Enum.map(fn report ->
762 with {:ok, activity} <- CommonAPI.update_report_state(report["id"], report["state"]) do
763 ModerationLog.insert_log(%{
764 action: "report_update",
765 actor: admin,
766 subject: activity
767 })
768
769 activity
770 else
771 {:error, message} -> %{id: report["id"], error: message}
772 end
773 end)
774
775 case Enum.any?(result, &Map.has_key?(&1, :error)) do
776 true -> json_response(conn, :bad_request, result)
777 false -> json_response(conn, :no_content, "")
778 end
779 end
780
781 def report_notes_create(%{assigns: %{user: user}} = conn, %{
782 "id" => report_id,
783 "content" => content
784 }) do
785 with {:ok, _} <- ReportNote.create(user.id, report_id, content) do
786 ModerationLog.insert_log(%{
787 action: "report_note",
788 actor: user,
789 subject: Activity.get_by_id(report_id),
790 text: content
791 })
792
793 json_response(conn, :no_content, "")
794 else
795 _ -> json_response(conn, :bad_request, "")
796 end
797 end
798
799 def report_notes_delete(%{assigns: %{user: user}} = conn, %{
800 "id" => note_id,
801 "report_id" => report_id
802 }) do
803 with {:ok, note} <- ReportNote.destroy(note_id) do
804 ModerationLog.insert_log(%{
805 action: "report_note_delete",
806 actor: user,
807 subject: Activity.get_by_id(report_id),
808 text: note.content
809 })
810
811 json_response(conn, :no_content, "")
812 else
813 _ -> json_response(conn, :bad_request, "")
814 end
815 end
816
817 def list_statuses(%{assigns: %{user: _admin}} = conn, params) do
818 godmode = params["godmode"] == "true" || params["godmode"] == true
819 local_only = params["local_only"] == "true" || params["local_only"] == true
820 with_reblogs = params["with_reblogs"] == "true" || params["with_reblogs"] == true
821 {page, page_size} = page_params(params)
822
823 activities =
824 ActivityPub.fetch_statuses(nil, %{
825 "godmode" => godmode,
826 "local_only" => local_only,
827 "limit" => page_size,
828 "offset" => (page - 1) * page_size,
829 "exclude_reblogs" => !with_reblogs && "true"
830 })
831
832 conn
833 |> put_view(AdminAPI.StatusView)
834 |> render("index.json", %{activities: activities, as: :activity})
835 end
836
837 def status_show(conn, %{"id" => id}) do
838 with %Activity{} = activity <- Activity.get_by_id(id) do
839 conn
840 |> put_view(MastodonAPI.StatusView)
841 |> render("show.json", %{activity: activity})
842 else
843 _ -> errors(conn, {:error, :not_found})
844 end
845 end
846
847 def status_update(%{assigns: %{user: admin}} = conn, %{"id" => id} = params) do
848 with {:ok, activity} <- CommonAPI.update_activity_scope(id, params) do
849 {:ok, sensitive} = Ecto.Type.cast(:boolean, params["sensitive"])
850
851 ModerationLog.insert_log(%{
852 action: "status_update",
853 actor: admin,
854 subject: activity,
855 sensitive: sensitive,
856 visibility: params["visibility"]
857 })
858
859 conn
860 |> put_view(MastodonAPI.StatusView)
861 |> render("show.json", %{activity: activity})
862 end
863 end
864
865 def status_delete(%{assigns: %{user: user}} = conn, %{"id" => id}) do
866 with {:ok, %Activity{}} <- CommonAPI.delete(id, user) do
867 ModerationLog.insert_log(%{
868 action: "status_delete",
869 actor: user,
870 subject_id: id
871 })
872
873 json(conn, %{})
874 end
875 end
876
877 def list_log(conn, params) do
878 {page, page_size} = page_params(params)
879
880 log =
881 ModerationLog.get_all(%{
882 page: page,
883 page_size: page_size,
884 start_date: params["start_date"],
885 end_date: params["end_date"],
886 user_id: params["user_id"],
887 search: params["search"]
888 })
889
890 conn
891 |> put_view(ModerationLogView)
892 |> render("index.json", %{log: log})
893 end
894
895 def config_descriptions(conn, _params) do
896 conn
897 |> Plug.Conn.put_resp_content_type("application/json")
898 |> Plug.Conn.send_resp(200, @descriptions_json)
899 end
900
901 def config_show(conn, %{"only_db" => true}) do
902 with :ok <- configurable_from_database(conn) do
903 configs = Pleroma.Repo.all(ConfigDB)
904
905 conn
906 |> put_view(ConfigView)
907 |> render("index.json", %{configs: configs})
908 end
909 end
910
911 def config_show(conn, _params) do
912 with :ok <- configurable_from_database(conn) do
913 configs = ConfigDB.get_all_as_keyword()
914
915 merged =
916 Config.Holder.default_config()
917 |> ConfigDB.merge(configs)
918 |> Enum.map(fn {group, values} ->
919 Enum.map(values, fn {key, value} ->
920 db =
921 if configs[group][key] do
922 ConfigDB.get_db_keys(configs[group][key], key)
923 end
924
925 db_value = configs[group][key]
926
927 merged_value =
928 if !is_nil(db_value) and Keyword.keyword?(db_value) and
929 ConfigDB.sub_key_full_update?(group, key, Keyword.keys(db_value)) do
930 ConfigDB.merge_group(group, key, value, db_value)
931 else
932 value
933 end
934
935 setting = %{
936 group: ConfigDB.convert(group),
937 key: ConfigDB.convert(key),
938 value: ConfigDB.convert(merged_value)
939 }
940
941 if db, do: Map.put(setting, :db, db), else: setting
942 end)
943 end)
944 |> List.flatten()
945
946 json(conn, %{configs: merged, need_reboot: Restarter.Pleroma.need_reboot?()})
947 end
948 end
949
950 def config_update(conn, %{"configs" => configs}) do
951 with :ok <- configurable_from_database(conn) do
952 {_errors, results} =
953 Enum.map(configs, fn
954 %{"group" => group, "key" => key, "delete" => true} = params ->
955 ConfigDB.delete(%{group: group, key: key, subkeys: params["subkeys"]})
956
957 %{"group" => group, "key" => key, "value" => value} ->
958 ConfigDB.update_or_create(%{group: group, key: key, value: value})
959 end)
960 |> Enum.split_with(fn result -> elem(result, 0) == :error end)
961
962 {deleted, updated} =
963 results
964 |> Enum.map(fn {:ok, config} ->
965 Map.put(config, :db, ConfigDB.get_db_keys(config))
966 end)
967 |> Enum.split_with(fn config ->
968 Ecto.get_meta(config, :state) == :deleted
969 end)
970
971 Config.TransferTask.load_and_update_env(deleted, false)
972
973 if !Restarter.Pleroma.need_reboot?() do
974 changed_reboot_settings? =
975 (updated ++ deleted)
976 |> Enum.any?(fn config ->
977 group = ConfigDB.from_string(config.group)
978 key = ConfigDB.from_string(config.key)
979 value = ConfigDB.from_binary(config.value)
980 Config.TransferTask.pleroma_need_restart?(group, key, value)
981 end)
982
983 if changed_reboot_settings?, do: Restarter.Pleroma.need_reboot()
984 end
985
986 conn
987 |> put_view(ConfigView)
988 |> render("index.json", %{configs: updated, need_reboot: Restarter.Pleroma.need_reboot?()})
989 end
990 end
991
992 def restart(conn, _params) do
993 with :ok <- configurable_from_database(conn) do
994 Restarter.Pleroma.restart(Config.get(:env), 50)
995
996 json(conn, %{})
997 end
998 end
999
1000 def need_reboot(conn, _params) do
1001 json(conn, %{need_reboot: Restarter.Pleroma.need_reboot?()})
1002 end
1003
1004 defp configurable_from_database(conn) do
1005 if Config.get(:configurable_from_database) do
1006 :ok
1007 else
1008 errors(
1009 conn,
1010 {:error, "To use this endpoint you need to enable configuration from database."}
1011 )
1012 end
1013 end
1014
1015 def reload_emoji(conn, _params) do
1016 Pleroma.Emoji.reload()
1017
1018 conn |> json("ok")
1019 end
1020
1021 def confirm_email(%{assigns: %{user: admin}} = conn, %{"nicknames" => nicknames}) do
1022 users = nicknames |> Enum.map(&User.get_cached_by_nickname/1)
1023
1024 User.toggle_confirmation(users)
1025
1026 ModerationLog.insert_log(%{
1027 actor: admin,
1028 subject: users,
1029 action: "confirm_email"
1030 })
1031
1032 conn |> json("")
1033 end
1034
1035 def resend_confirmation_email(%{assigns: %{user: admin}} = conn, %{"nicknames" => nicknames}) do
1036 users = nicknames |> Enum.map(&User.get_cached_by_nickname/1)
1037
1038 User.try_send_confirmation_email(users)
1039
1040 ModerationLog.insert_log(%{
1041 actor: admin,
1042 subject: users,
1043 action: "resend_confirmation_email"
1044 })
1045
1046 conn |> json("")
1047 end
1048
1049 def oauth_app_create(conn, params) do
1050 params =
1051 if params["name"] do
1052 Map.put(params, "client_name", params["name"])
1053 else
1054 params
1055 end
1056
1057 result =
1058 case App.create(params) do
1059 {:ok, app} ->
1060 AppView.render("show.json", %{app: app, admin: true})
1061
1062 {:error, changeset} ->
1063 App.errors(changeset)
1064 end
1065
1066 json(conn, result)
1067 end
1068
1069 def oauth_app_update(conn, params) do
1070 params =
1071 if params["name"] do
1072 Map.put(params, "client_name", params["name"])
1073 else
1074 params
1075 end
1076
1077 with {:ok, app} <- App.update(params) do
1078 json(conn, AppView.render("show.json", %{app: app, admin: true}))
1079 else
1080 {:error, changeset} ->
1081 json(conn, App.errors(changeset))
1082
1083 nil ->
1084 json_response(conn, :bad_request, "")
1085 end
1086 end
1087
1088 def oauth_app_list(conn, params) do
1089 {page, page_size} = page_params(params)
1090
1091 search_params = %{
1092 client_name: params["name"],
1093 client_id: params["client_id"],
1094 page: page,
1095 page_size: page_size
1096 }
1097
1098 search_params =
1099 if Map.has_key?(params, "trusted") do
1100 Map.put(search_params, :trusted, params["trusted"])
1101 else
1102 search_params
1103 end
1104
1105 with {:ok, apps, count} <- App.search(search_params) do
1106 json(
1107 conn,
1108 AppView.render("index.json",
1109 apps: apps,
1110 count: count,
1111 page_size: page_size,
1112 admin: true
1113 )
1114 )
1115 end
1116 end
1117
1118 def oauth_app_delete(conn, params) do
1119 with {:ok, _app} <- App.destroy(params["id"]) do
1120 json_response(conn, :no_content, "")
1121 else
1122 _ -> json_response(conn, :bad_request, "")
1123 end
1124 end
1125
1126 def stats(conn, _) do
1127 count = Stats.get_status_visibility_count()
1128
1129 conn
1130 |> json(%{"status_visibility" => count})
1131 end
1132
1133 defp errors(conn, {:error, :not_found}) do
1134 conn
1135 |> put_status(:not_found)
1136 |> json(dgettext("errors", "Not found"))
1137 end
1138
1139 defp errors(conn, {:error, reason}) do
1140 conn
1141 |> put_status(:bad_request)
1142 |> json(reason)
1143 end
1144
1145 defp errors(conn, {:param_cast, _}) do
1146 conn
1147 |> put_status(:bad_request)
1148 |> json(dgettext("errors", "Invalid parameters"))
1149 end
1150
1151 defp errors(conn, _) do
1152 conn
1153 |> put_status(:internal_server_error)
1154 |> json(dgettext("errors", "Something went wrong"))
1155 end
1156
1157 defp page_params(params) do
1158 {get_page(params["page"]), get_page_size(params["page_size"])}
1159 end
1160
1161 defp get_page(page_string) when is_nil(page_string), do: 1
1162
1163 defp get_page(page_string) do
1164 case Integer.parse(page_string) do
1165 {page, _} -> page
1166 :error -> 1
1167 end
1168 end
1169
1170 defp get_page_size(page_size_string) when is_nil(page_size_string), do: @users_page_size
1171
1172 defp get_page_size(page_size_string) do
1173 case Integer.parse(page_size_string) do
1174 {page_size, _} -> page_size
1175 :error -> @users_page_size
1176 end
1177 end
1178 end
Fork of https://akkoma.dev/AkkomaGang/akkoma.git