git.squeep.com Git - akkoma/blob - lib/pleroma/web/endpoint.ex

   1 # Pleroma: A lightweight social networking server
   2 # Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
   3 # SPDX-License-Identifier: AGPL-3.0-only
   4
   5 defmodule Pleroma.Web.Endpoint do
   6   use Phoenix.Endpoint, otp_app: :pleroma
   7
   8   socket("/socket", Pleroma.Web.UserSocket)
   9
  10   # Serve at "/" the static files from "priv/static" directory.
  11   #
  12   # You should set gzip to true if you are running phoenix.digest
  13   # when deploying your static files in production.
  14   plug(CORSPlug)
  15   plug(Pleroma.Plugs.HTTPSecurityPlug)
  16
  17   plug(Pleroma.Plugs.UploadedMedia)
  18
  19   # InstanceStatic needs to be before Plug.Static to be able to override shipped-static files
  20   # If you're adding new paths to `only:` you'll need to configure them in InstanceStatic as well
  21   plug(Pleroma.Plugs.InstanceStatic, at: "/")
  22
  23   plug(
  24     Plug.Static,
  25     at: "/",
  26     from: :pleroma,
  27     only:
  28       ~w(index.html robots.txt static finmoji emoji packs sounds images instance sw.js sw-pleroma.js favicon.png schemas doc)
  29     # credo:disable-for-previous-line Credo.Check.Readability.MaxLineLength
  30   )
  31
  32   # Code reloading can be explicitly enabled under the
  33   # :code_reloader configuration of your endpoint.
  34   if code_reloading? do
  35     plug(Phoenix.CodeReloader)
  36   end
  37
  38   plug(TrailingFormatPlug)
  39   plug(Plug.RequestId)
  40   plug(Plug.Logger)
  41
  42   plug(
  43     Plug.Parsers,
  44     parsers: [:urlencoded, :multipart, :json],
  45     pass: ["*/*"],
  46     json_decoder: Jason,
  47     length: Application.get_env(:pleroma, :instance) |> Keyword.get(:upload_limit),
  48     body_reader: {Pleroma.Web.Plugs.DigestPlug, :read_body, []}
  49   )
  50
  51   plug(Plug.MethodOverride)
  52   plug(Plug.Head)
  53
  54   secure_cookies = Pleroma.Config.get([__MODULE__, :secure_cookie_flag])
  55
  56   cookie_name =
  57     if secure_cookies,
  58       do: "__Host-pleroma_key",
  59       else: "pleroma_key"
  60
  61   same_site =
  62     if Pleroma.Config.get([:auth, :oauth_consumer_enabled]) do
  63       # Note: "SameSite=Strict" prevents sign in with external OAuth provider
  64       #   (there would be no cookies during callback request from OAuth provider)
  65       "SameSite=Lax"
  66     else
  67       "SameSite=Strict"
  68     end
  69
  70   # The session will be stored in the cookie and signed,
  71   # this means its contents can be read but not tampered with.
  72   # Set :encryption_salt if you would also like to encrypt it.
  73   plug(
  74     Plug.Session,
  75     store: :cookie,
  76     key: cookie_name,
  77     signing_salt: {Pleroma.Config, :get, [[__MODULE__, :signing_salt], "CqaoopA2"]},
  78     http_only: true,
  79     secure: secure_cookies,
  80     extra: same_site
  81   )
  82
  83   plug(Pleroma.Web.Router)
  84
  85   @doc """
  86   Dynamically loads configuration from the system environment
  87   on startup.
  88
  89   It receives the endpoint configuration from the config files
  90   and must return the updated configuration.
  91   """
  92   def load_from_system_env(config) do
  93     port = System.get_env("PORT") || raise "expected the PORT environment variable to be set"
  94     {:ok, Keyword.put(config, :http, [:inet6, port: port])}
  95   end
  96
  97   def websocket_url do
  98     String.replace_leading(url(), "http", "ws")
  99   end
 100 end