1 defmodule Pleroma.Web.MastodonAPI.MastodonAPIController do
2 use Pleroma.Web, :controller
3 alias Pleroma.{Repo, Activity, User, Notification}
5 alias Pleroma.Web.MastodonAPI.{StatusView, AccountView, MastodonView}
6 alias Pleroma.Web.ActivityPub.ActivityPub
7 alias Pleroma.Web.TwitterAPI.TwitterAPI
8 alias Pleroma.Web.{CommonAPI, OStatus}
9 alias Pleroma.Web.OAuth.{Authorization, Token, App}
14 def create_app(conn, params) do
15 with cs <- App.register_changeset(%App{}, params) |> IO.inspect,
16 {:ok, app} <- Repo.insert(cs) |> IO.inspect do
19 client_id: app.client_id,
20 client_secret: app.client_secret
27 def verify_credentials(%{assigns: %{user: user}} = conn, params) do
28 account = AccountView.render("account.json", %{user: user})
32 def user(conn, %{"id" => id}) do
33 with %User{} = user <- Repo.get(User, id) do
34 account = AccountView.render("account.json", %{user: user})
39 |> json(%{error: "Can't find user"})
43 @instance Application.get_env(:pleroma, :instance)
45 def masto_instance(conn, _params) do
48 title: Keyword.get(@instance, :name),
49 description: "A Pleroma instance, an alternative fediverse server",
50 version: Keyword.get(@instance, :version),
51 email: Keyword.get(@instance, :email),
53 streaming_api: String.replace(Web.base_url, ["http","https"], "wss")
65 def custom_emojis(conn, _params) do
66 mastodon_emoji = Pleroma.Formatter.get_custom_emoji()
67 |> Enum.map(fn {shortcode, relative_url} ->
68 url = to_string URI.merge(Web.base_url(), relative_url)
70 "shortcode" => shortcode,
75 json conn, mastodon_emoji
78 defp add_link_headers(conn, method, activities) do
79 last = List.last(activities)
80 first = List.first(activities)
84 next_url = mastodon_api_url(Pleroma.Web.Endpoint, method, max_id: min)
85 prev_url = mastodon_api_url(Pleroma.Web.Endpoint, method, since_id: max)
87 |> put_resp_header("link", "<#{next_url}>; rel=\"next\", <#{prev_url}>; rel=\"prev\"")
93 def home_timeline(%{assigns: %{user: user}} = conn, params) do
95 |> Map.put("type", ["Create", "Announce"])
96 |> Map.put("blocking_user", user)
98 activities = ActivityPub.fetch_activities([user.ap_id | user.following], params)
102 |> add_link_headers(:home_timeline, activities)
103 |> render(StatusView, "index.json", %{activities: activities, for: user, as: :activity})
106 def public_timeline(%{assigns: %{user: user}} = conn, params) do
108 |> Map.put("type", ["Create", "Announce"])
109 |> Map.put("local_only", !!params["local"])
110 |> Map.put("blocking_user", user)
112 activities = ActivityPub.fetch_public_activities(params)
116 |> add_link_headers(:public_timeline, activities)
117 |> render(StatusView, "index.json", %{activities: activities, for: user, as: :activity})
121 def user_statuses(%{assigns: %{user: user}} = conn, params) do
122 with %User{ap_id: ap_id} <- Repo.get(User, params["id"]) do
124 |> Map.put("type", ["Create", "Announce"])
125 |> Map.put("actor_id", ap_id)
126 |> Map.put("whole_db", true)
128 activities = ActivityPub.fetch_activities([], params)
131 render conn, StatusView, "index.json", %{activities: activities, for: user, as: :activity}
135 def get_status(%{assigns: %{user: user}} = conn, %{"id" => id}) do
136 with %Activity{} = activity <- Repo.get(Activity, id) do
137 render conn, StatusView, "status.json", %{activity: activity, for: user}
141 def get_context(%{assigns: %{user: user}} = conn, %{"id" => id}) do
142 with %Activity{} = activity <- Repo.get(Activity, id),
143 activities <- ActivityPub.fetch_activities_for_context(activity.data["object"]["context"], %{"blocking_user" => user}),
144 activities <- activities |> Enum.filter(fn (%{id: aid}) -> to_string(aid) != to_string(id) end),
145 grouped_activities <- Enum.group_by(activities, fn (%{id: id}) -> id < activity.id end) do
147 ancestors: StatusView.render("index.json", for: user, activities: grouped_activities[true] || [], as: :activity) |> Enum.reverse,
148 descendants: StatusView.render("index.json", for: user, activities: grouped_activities[false] || [], as: :activity) |> Enum.reverse,
155 def post_status(%{assigns: %{user: user}} = conn, %{"status" => status} = params) do
157 |> Map.put("in_reply_to_status_id", params["in_reply_to_id"])
159 {:ok, activity} = CommonAPI.post(user, params)
160 render conn, StatusView, "status.json", %{activity: activity, for: user, as: :activity}
163 def delete_status(%{assigns: %{user: user}} = conn, %{"id" => id}) do
164 with {:ok, %Activity{}} <- CommonAPI.delete(id, user) do
170 |> json(%{error: "Can't delete this post"})
174 def reblog_status(%{assigns: %{user: user}} = conn, %{"id" => ap_id_or_id}) do
175 with {:ok, _announce, %{data: %{"id" => id}}} = CommonAPI.repeat(ap_id_or_id, user),
176 %Activity{} = activity <- Activity.get_create_activity_by_object_ap_id(id) do
177 render conn, StatusView, "status.json", %{activity: activity, for: user, as: :activity}
181 def fav_status(%{assigns: %{user: user}} = conn, %{"id" => ap_id_or_id}) do
182 with {:ok, _fav, %{data: %{"id" => id}}} = CommonAPI.favorite(ap_id_or_id, user),
183 %Activity{} = activity <- Activity.get_create_activity_by_object_ap_id(id) do
184 render conn, StatusView, "status.json", %{activity: activity, for: user, as: :activity}
188 def unfav_status(%{assigns: %{user: user}} = conn, %{"id" => ap_id_or_id}) do
189 with {:ok, %{data: %{"id" => id}}} = CommonAPI.unfavorite(ap_id_or_id, user),
190 %Activity{} = activity <- Activity.get_create_activity_by_object_ap_id(id) do
191 render conn, StatusView, "status.json", %{activity: activity, for: user, as: :activity}
195 def notifications(%{assigns: %{user: user}} = conn, params) do
196 notifications = Notification.for_user(user, params)
197 result = Enum.map(notifications, fn (%{id: id, activity: activity, inserted_at: created_at}) ->
198 actor = User.get_cached_by_ap_id(activity.data["actor"])
199 created_at = NaiveDateTime.to_iso8601(created_at)
200 |> String.replace(~r/(\.\d+)?$/, ".000Z", global: false)
201 case activity.data["type"] do
203 %{id: id, type: "mention", created_at: created_at, account: AccountView.render("account.json", %{user: actor}), status: StatusView.render("status.json", %{activity: activity, for: user})}
205 liked_activity = Activity.get_create_activity_by_object_ap_id(activity.data["object"])
206 %{id: id, type: "favourite", created_at: created_at, account: AccountView.render("account.json", %{user: actor}), status: StatusView.render("status.json", %{activity: liked_activity, for: user})}
208 announced_activity = Activity.get_create_activity_by_object_ap_id(activity.data["object"])
209 %{id: id, type: "reblog", created_at: created_at, account: AccountView.render("account.json", %{user: actor}), status: StatusView.render("status.json", %{activity: announced_activity, for: user})}
211 %{id: id, type: "follow", created_at: created_at, account: AccountView.render("account.json", %{user: actor})}
215 |> Enum.filter(&(&1))
218 |> add_link_headers(:notifications, notifications)
222 def relationships(%{assigns: %{user: user}} = conn, %{"id" => id}) do
226 targets = Repo.all(q)
227 render conn, AccountView, "relationships.json", %{user: user, targets: targets}
230 def upload(%{assigns: %{user: user}} = conn, %{"file" => file}) do
231 with {:ok, object} <- ActivityPub.upload(file) do
233 |> Map.put("id", object.id)
235 render conn, StatusView, "attachment.json", %{attachment: data}
239 def favourited_by(conn, %{"id" => id}) do
240 with %Activity{data: %{"object" => %{"likes" => likes} = data}} <- Repo.get(Activity, id) do
242 where: u.ap_id in ^likes
244 render conn, AccountView, "accounts.json", %{users: users, as: :user}
250 def reblogged_by(conn, %{"id" => id}) do
251 with %Activity{data: %{"object" => %{"announcements" => announces}}} <- Repo.get(Activity, id) do
253 where: u.ap_id in ^announces
255 render conn, AccountView, "accounts.json", %{users: users, as: :user}
262 def hashtag_timeline(%{assigns: %{user: user}} = conn, params) do
264 |> Map.put("type", "Create")
265 |> Map.put("local_only", !!params["local"])
266 |> Map.put("blocking_user", user)
268 activities = ActivityPub.fetch_public_activities(params)
272 |> render(StatusView, "index.json", %{activities: activities, for: user, as: :activity})
276 def followers(conn, %{"id" => id}) do
277 with %User{} = user <- Repo.get(User, id),
278 {:ok, followers} <- User.get_followers(user) do
279 render conn, AccountView, "accounts.json", %{users: followers, as: :user}
283 def following(conn, %{"id" => id}) do
284 with %User{} = user <- Repo.get(User, id),
285 {:ok, followers} <- User.get_friends(user) do
286 render conn, AccountView, "accounts.json", %{users: followers, as: :user}
290 def follow(%{assigns: %{user: follower}} = conn, %{"id" => id}) do
291 with %User{} = followed <- Repo.get(User, id),
292 {:ok, follower} <- User.follow(follower, followed),
293 {:ok, activity} <- ActivityPub.follow(follower, followed) do
294 render conn, AccountView, "relationship.json", %{user: follower, target: followed}
296 {:error, message} = err ->
298 |> put_resp_content_type("application/json")
299 |> send_resp(403, Poison.encode!(%{"error" => message}))
303 def follow(%{assigns: %{user: follower}} = conn, %{"uri" => uri}) do
304 with %User{} = followed <- Repo.get_by(User, nickname: uri),
305 {:ok, follower} <- User.follow(follower, followed),
306 {:ok, activity} <- ActivityPub.follow(follower, followed) do
307 render conn, AccountView, "account.json", %{user: followed}
309 {:error, message} = err ->
311 |> put_resp_content_type("application/json")
312 |> send_resp(403, Poison.encode!(%{"error" => message}))
316 # TODO: Clean up and unify
317 def unfollow(%{assigns: %{user: follower}} = conn, %{"id" => id}) do
318 with %User{} = followed <- Repo.get(User, id),
319 { :ok, follower, follow_activity } <- User.unfollow(follower, followed),
320 { :ok, _activity } <- ActivityPub.insert(%{
322 "actor" => follower.ap_id,
323 "object" => follow_activity.data["id"] # get latest Follow for these users
325 render conn, AccountView, "relationship.json", %{user: follower, target: followed}
329 def block(%{assigns: %{user: blocker}} = conn, %{"id" => id}) do
330 with %User{} = blocked <- Repo.get(User, id),
331 {:ok, blocker} <- User.block(blocker, blocked) do
332 render conn, AccountView, "relationship.json", %{user: blocker, target: blocked}
334 {:error, message} = err ->
336 |> put_resp_content_type("application/json")
337 |> send_resp(403, Poison.encode!(%{"error" => message}))
341 def unblock(%{assigns: %{user: blocker}} = conn, %{"id" => id}) do
342 with %User{} = blocked <- Repo.get(User, id),
343 {:ok, blocker} <- User.unblock(blocker, blocked) do
344 render conn, AccountView, "relationship.json", %{user: blocker, target: blocked}
346 {:error, message} = err ->
348 |> put_resp_content_type("application/json")
349 |> send_resp(403, Poison.encode!(%{"error" => message}))
353 # TODO: Use proper query
354 def blocks(%{assigns: %{user: user}} = conn, _) do
355 with blocked_users <- user.info["blocks"] || [],
356 accounts <- Enum.map(blocked_users, fn (ap_id) -> User.get_cached_by_ap_id(ap_id) end) do
357 res = AccountView.render("accounts.json", users: accounts, for: user, as: :user)
362 def search(%{assigns: %{user: user}} = conn, %{"q" => query} = params) do
363 accounts = User.search(query, params["resolve"] == "true")
365 fetched = if Regex.match?(~r/https?:/, query) do
366 with {:ok, activities} <- OStatus.fetch_activity_from_url(query) do
373 q = from a in Activity,
374 where: fragment("?->>'type' = 'Create'", a.data),
375 where: fragment("to_tsvector('english', ?->'object'->>'content') @@ plainto_tsquery('english', ?)", a.data, ^query),
377 statuses = Repo.all(q) ++ fetched
380 "accounts" => AccountView.render("accounts.json", users: accounts, for: user, as: :user),
381 "statuses" => StatusView.render("index.json", activities: statuses, for: user, as: :activity),
388 def account_search(%{assigns: %{user: user}} = conn, %{"q" => query} = params) do
389 accounts = User.search(query, params["resolve"] == "true")
391 res = AccountView.render("accounts.json", users: accounts, for: user, as: :user)
396 def favourites(%{assigns: %{user: user}} = conn, params) do
398 |> Map.put("type", "Create")
399 |> Map.put("favorited_by", user.ap_id)
400 |> Map.put("blocking_user", user)
402 activities = ActivityPub.fetch_activities([], params)
406 |> render(StatusView, "index.json", %{activities: activities, for: user, as: :activity})
409 def index(%{assigns: %{user: user}} = conn, _params) do
411 |> get_session(:oauth_token)
414 accounts = Map.put(%{}, user.id, AccountView.render("account.json", %{user: user}))
417 streaming_api_base_url: String.replace(Pleroma.Web.Endpoint.static_url(), "http", "ws"),
420 domain: Pleroma.Web.Endpoint.host(),
423 unfollow_modal: false,
426 auto_play_gif: false,
431 default_privacy: "public",
432 default_sensitive: false
434 media_attachments: %{
435 accept_content_types: [
479 push_subscription: nil,
485 |> render(MastodonView, "index.html", %{initial_state: initial_state})
488 |> redirect(to: "/web/login")
492 def login(conn, params) do
494 |> render(MastodonView, "login.html")
497 defp get_or_make_app() do
498 with %App{} = app <- Repo.get_by(App, client_name: "Mastodon-Local") do
502 cs = App.register_changeset(%App{}, %{client_name: "Mastodon-Local", redirect_uris: ".", scopes: "read,write,follow"})
507 def login_post(conn, %{"authorization" => %{ "name" => name, "password" => password}}) do
508 with %User{} = user <- User.get_cached_by_nickname(name),
509 true <- Pbkdf2.checkpw(password, user.password_hash),
510 {:ok, app} <- get_or_make_app(),
511 {:ok, auth} <- Authorization.create_authorization(app, user),
512 {:ok, token} <- Token.exchange_token(app, auth) do
514 |> put_session(:oauth_token, token.token)
515 |> redirect(to: "/web/timelines/public")
519 def relationship_noop(%{assigns: %{user: user}} = conn, %{"id" => id}) do
520 Logger.debug("Unimplemented, returning unmodified relationship")
521 with %User{} = target <- Repo.get(User, id) do
522 render conn, AccountView, "relationship.json", %{user: user, target: target}
526 def empty_array(conn, _) do
527 Logger.debug("Unimplemented, returning an empty array")