1 defmodule Pleroma.Web.MastodonAPI.MastodonAPIController do
2 use Pleroma.Web, :controller
3 alias Pleroma.{Repo, Activity, User, Notification, Stats}
5 alias Pleroma.Web.MastodonAPI.{StatusView, AccountView, MastodonView}
6 alias Pleroma.Web.ActivityPub.ActivityPub
7 alias Pleroma.Web.{CommonAPI, OStatus}
8 alias Pleroma.Web.OAuth.{Authorization, Token, App}
13 def create_app(conn, params) do
14 with cs <- App.register_changeset(%App{}, params) |> IO.inspect,
15 {:ok, app} <- Repo.insert(cs) |> IO.inspect do
18 client_id: app.client_id,
19 client_secret: app.client_secret
26 def update_credentials(%{assigns: %{user: user}} = conn, params) do
28 params = if bio = params["note"] do
29 Map.put(params, "bio", bio)
34 params = if name = params["display_name"] do
35 Map.put(params, "name", name)
40 user = if avatar = params["avatar"] do
41 with %Plug.Upload{} <- avatar,
42 {:ok, object} <- ActivityPub.upload(avatar),
43 change = Ecto.Changeset.change(user, %{avatar: object.data}),
44 {:ok, user} = User.update_and_set_cache(change) do
53 user = if banner = params["header"] do
54 with %Plug.Upload{} <- banner,
55 {:ok, object} <- ActivityPub.upload(banner),
56 new_info <- Map.put(user.info, "banner", object.data),
57 change <- User.info_changeset(user, %{info: new_info}),
58 {:ok, user} <- User.update_and_set_cache(change) do
67 with changeset <- User.update_changeset(user, params),
68 {:ok, user} <- User.update_and_set_cache(changeset) do
69 if original_user != user do
70 CommonAPI.update(user)
72 json conn, AccountView.render("account.json", %{user: user})
77 |> json(%{error: "Invalid request"})
81 def verify_credentials(%{assigns: %{user: user}} = conn, _) do
82 account = AccountView.render("account.json", %{user: user})
86 def user(conn, %{"id" => id}) do
87 with %User{} = user <- Repo.get(User, id) do
88 account = AccountView.render("account.json", %{user: user})
93 |> json(%{error: "Can't find user"})
97 @instance Application.get_env(:pleroma, :instance)
99 def masto_instance(conn, _params) do
102 title: Keyword.get(@instance, :name),
103 description: "A Pleroma instance, an alternative fediverse server",
104 version: Keyword.get(@instance, :version),
105 email: Keyword.get(@instance, :email),
107 streaming_api: String.replace(Web.base_url, ["http","https"], "wss")
109 stats: Stats.get_stats,
110 thumbnail: Web.base_url <> "/instance/thumbnail.jpeg",
111 max_toot_chars: Keyword.get(@instance, :limit)
117 def peers(conn, _params) do
118 json(conn, Stats.get_peers)
121 defp mastodonized_emoji do
122 Pleroma.Formatter.get_custom_emoji()
123 |> Enum.map(fn {shortcode, relative_url} ->
124 url = to_string URI.merge(Web.base_url(), relative_url)
126 "shortcode" => shortcode,
133 def custom_emojis(conn, _params) do
134 mastodon_emoji = mastodonized_emoji()
135 json conn, mastodon_emoji
138 defp add_link_headers(conn, method, activities) do
139 last = List.last(activities)
140 first = List.first(activities)
144 next_url = mastodon_api_url(Pleroma.Web.Endpoint, method, max_id: min)
145 prev_url = mastodon_api_url(Pleroma.Web.Endpoint, method, since_id: max)
147 |> put_resp_header("link", "<#{next_url}>; rel=\"next\", <#{prev_url}>; rel=\"prev\"")
153 def home_timeline(%{assigns: %{user: user}} = conn, params) do
155 |> Map.put("type", ["Create", "Announce"])
156 |> Map.put("blocking_user", user)
157 |> Map.put("user", user)
159 activities = ActivityPub.fetch_activities([user.ap_id | user.following], params)
163 |> add_link_headers(:home_timeline, activities)
164 |> render(StatusView, "index.json", %{activities: activities, for: user, as: :activity})
167 def public_timeline(%{assigns: %{user: user}} = conn, params) do
169 |> Map.put("type", ["Create", "Announce"])
170 |> Map.put("local_only", params["local"] in [true, "True", "true", "1"])
171 |> Map.put("blocking_user", user)
173 activities = ActivityPub.fetch_public_activities(params)
177 |> add_link_headers(:public_timeline, activities)
178 |> render(StatusView, "index.json", %{activities: activities, for: user, as: :activity})
182 def user_statuses(%{assigns: %{user: user}} = conn, params) do
183 with %User{ap_id: ap_id} <- Repo.get(User, params["id"]) do
185 |> Map.put("type", ["Create", "Announce"])
186 |> Map.put("actor_id", ap_id)
187 |> Map.put("whole_db", true)
189 activities = ActivityPub.fetch_public_activities(params)
192 render conn, StatusView, "index.json", %{activities: activities, for: user, as: :activity}
196 def get_status(%{assigns: %{user: user}} = conn, %{"id" => id}) do
197 with %Activity{} = activity <- Repo.get(Activity, id),
198 true <- ActivityPub.visible_for_user?(activity, user) do
199 render conn, StatusView, "status.json", %{activity: activity, for: user}
203 def get_context(%{assigns: %{user: user}} = conn, %{"id" => id}) do
204 with %Activity{} = activity <- Repo.get(Activity, id),
205 activities <- ActivityPub.fetch_activities_for_context(activity.data["context"], %{"blocking_user" => user, "user" => user}),
206 activities <- activities |> Enum.filter(fn (%{id: aid}) -> to_string(aid) != to_string(id) end),
207 activities <- activities |> Enum.filter(fn (%{data: %{"type" => type}}) -> type == "Create" end),
208 grouped_activities <- Enum.group_by(activities, fn (%{id: id}) -> id < activity.id end) do
210 ancestors: StatusView.render("index.json", for: user, activities: grouped_activities[true] || [], as: :activity) |> Enum.reverse,
211 descendants: StatusView.render("index.json", for: user, activities: grouped_activities[false] || [], as: :activity) |> Enum.reverse,
218 def post_status(%{assigns: %{user: user}} = conn, %{"status" => _} = params) do
220 |> Map.put("in_reply_to_status_id", params["in_reply_to_id"])
221 |> Map.put("no_attachment_links", true)
223 {:ok, activity} = CommonAPI.post(user, params)
224 render conn, StatusView, "status.json", %{activity: activity, for: user, as: :activity}
227 def delete_status(%{assigns: %{user: user}} = conn, %{"id" => id}) do
228 with {:ok, %Activity{}} <- CommonAPI.delete(id, user) do
234 |> json(%{error: "Can't delete this post"})
238 def reblog_status(%{assigns: %{user: user}} = conn, %{"id" => ap_id_or_id}) do
239 with {:ok, announce, _activity} = CommonAPI.repeat(ap_id_or_id, user) do
240 render conn, StatusView, "status.json", %{activity: announce, for: user, as: :activity}
244 def fav_status(%{assigns: %{user: user}} = conn, %{"id" => ap_id_or_id}) do
245 with {:ok, _fav, %{data: %{"id" => id}}} = CommonAPI.favorite(ap_id_or_id, user),
246 %Activity{} = activity <- Activity.get_create_activity_by_object_ap_id(id) do
247 render conn, StatusView, "status.json", %{activity: activity, for: user, as: :activity}
251 def unfav_status(%{assigns: %{user: user}} = conn, %{"id" => ap_id_or_id}) do
252 with {:ok, %{data: %{"id" => id}}} = CommonAPI.unfavorite(ap_id_or_id, user),
253 %Activity{} = activity <- Activity.get_create_activity_by_object_ap_id(id) do
254 render conn, StatusView, "status.json", %{activity: activity, for: user, as: :activity}
258 def notifications(%{assigns: %{user: user}} = conn, params) do
259 notifications = Notification.for_user(user, params)
260 result = Enum.map(notifications, fn x ->
261 render_notification(user, x)
263 |> Enum.filter(&(&1))
266 |> add_link_headers(:notifications, notifications)
270 def get_notification(%{assigns: %{user: user}} = conn, %{"id" => id} = _params) do
271 with {:ok, notification} <- Notification.get(user, id) do
272 json(conn, render_notification(user, notification))
276 |> put_resp_content_type("application/json")
277 |> send_resp(403, Poison.encode!(%{"error" => reason}))
281 def clear_notifications(%{assigns: %{user: user}} = conn, _params) do
282 Notification.clear(user)
286 def dismiss_notification(%{assigns: %{user: user}} = conn, %{"id" => id} = _params) do
287 with {:ok, _notif} <- Notification.dismiss(user, id) do
292 |> put_resp_content_type("application/json")
293 |> send_resp(403, Poison.encode!(%{"error" => reason}))
297 def relationships(%{assigns: %{user: user}} = conn, %{"id" => id}) do
301 targets = Repo.all(q)
302 render conn, AccountView, "relationships.json", %{user: user, targets: targets}
305 def upload(%{assigns: %{user: _}} = conn, %{"file" => file}) do
306 with {:ok, object} <- ActivityPub.upload(file) do
308 |> Map.put("id", object.id)
310 render conn, StatusView, "attachment.json", %{attachment: data}
314 def favourited_by(conn, %{"id" => id}) do
315 with %Activity{data: %{"object" => %{"likes" => likes}}} <- Repo.get(Activity, id) do
317 where: u.ap_id in ^likes
319 render conn, AccountView, "accounts.json", %{users: users, as: :user}
325 def reblogged_by(conn, %{"id" => id}) do
326 with %Activity{data: %{"object" => %{"announcements" => announces}}} <- Repo.get(Activity, id) do
328 where: u.ap_id in ^announces
330 render conn, AccountView, "accounts.json", %{users: users, as: :user}
337 def hashtag_timeline(%{assigns: %{user: user}} = conn, params) do
339 |> Map.put("type", "Create")
340 |> Map.put("local_only", !!params["local"])
341 |> Map.put("blocking_user", user)
343 activities = ActivityPub.fetch_public_activities(params)
347 |> render(StatusView, "index.json", %{activities: activities, for: user, as: :activity})
351 def followers(conn, %{"id" => id}) do
352 with %User{} = user <- Repo.get(User, id),
353 {:ok, followers} <- User.get_followers(user) do
354 render conn, AccountView, "accounts.json", %{users: followers, as: :user}
358 def following(conn, %{"id" => id}) do
359 with %User{} = user <- Repo.get(User, id),
360 {:ok, followers} <- User.get_friends(user) do
361 render conn, AccountView, "accounts.json", %{users: followers, as: :user}
365 def follow(%{assigns: %{user: follower}} = conn, %{"id" => id}) do
366 with %User{} = followed <- Repo.get(User, id),
367 {:ok, follower} <- User.follow(follower, followed),
368 {:ok, _activity} <- ActivityPub.follow(follower, followed) do
369 render conn, AccountView, "relationship.json", %{user: follower, target: followed}
373 |> put_resp_content_type("application/json")
374 |> send_resp(403, Poison.encode!(%{"error" => message}))
378 def follow(%{assigns: %{user: follower}} = conn, %{"uri" => uri}) do
379 with %User{} = followed <- Repo.get_by(User, nickname: uri),
380 {:ok, follower} <- User.follow(follower, followed),
381 {:ok, _activity} <- ActivityPub.follow(follower, followed) do
382 render conn, AccountView, "account.json", %{user: followed}
386 |> put_resp_content_type("application/json")
387 |> send_resp(403, Poison.encode!(%{"error" => message}))
391 # TODO: Clean up and unify
392 def unfollow(%{assigns: %{user: follower}} = conn, %{"id" => id}) do
393 with %User{} = followed <- Repo.get(User, id),
394 { :ok, follower, follow_activity } <- User.unfollow(follower, followed),
395 { :ok, _activity } <- ActivityPub.insert(%{
397 "actor" => follower.ap_id,
398 "object" => follow_activity.data["id"] # get latest Follow for these users
400 render conn, AccountView, "relationship.json", %{user: follower, target: followed}
404 def block(%{assigns: %{user: blocker}} = conn, %{"id" => id}) do
405 with %User{} = blocked <- Repo.get(User, id),
406 {:ok, blocker} <- User.block(blocker, blocked) do
407 render conn, AccountView, "relationship.json", %{user: blocker, target: blocked}
411 |> put_resp_content_type("application/json")
412 |> send_resp(403, Poison.encode!(%{"error" => message}))
416 def unblock(%{assigns: %{user: blocker}} = conn, %{"id" => id}) do
417 with %User{} = blocked <- Repo.get(User, id),
418 {:ok, blocker} <- User.unblock(blocker, blocked) do
419 render conn, AccountView, "relationship.json", %{user: blocker, target: blocked}
423 |> put_resp_content_type("application/json")
424 |> send_resp(403, Poison.encode!(%{"error" => message}))
428 # TODO: Use proper query
429 def blocks(%{assigns: %{user: user}} = conn, _) do
430 with blocked_users <- user.info["blocks"] || [],
431 accounts <- Enum.map(blocked_users, fn (ap_id) -> User.get_cached_by_ap_id(ap_id) end) do
432 res = AccountView.render("accounts.json", users: accounts, for: user, as: :user)
437 def search(%{assigns: %{user: user}} = conn, %{"q" => query} = params) do
438 accounts = User.search(query, params["resolve"] == "true")
440 fetched = if Regex.match?(~r/https?:/, query) do
441 with {:ok, activities} <- OStatus.fetch_activity_from_url(query) do
448 q = from a in Activity,
449 where: fragment("?->>'type' = 'Create'", a.data),
450 where: fragment("to_tsvector('english', ?->'object'->>'content') @@ plainto_tsquery('english', ?)", a.data, ^query),
452 statuses = Repo.all(q) ++ fetched
455 "accounts" => AccountView.render("accounts.json", users: accounts, for: user, as: :user),
456 "statuses" => StatusView.render("index.json", activities: statuses, for: user, as: :activity),
463 def account_search(%{assigns: %{user: user}} = conn, %{"q" => query} = params) do
464 accounts = User.search(query, params["resolve"] == "true")
466 res = AccountView.render("accounts.json", users: accounts, for: user, as: :user)
471 def favourites(%{assigns: %{user: user}} = conn, _) do
473 |> Map.put("type", "Create")
474 |> Map.put("favorited_by", user.ap_id)
475 |> Map.put("blocking_user", user)
477 activities = ActivityPub.fetch_public_activities(params)
481 |> render(StatusView, "index.json", %{activities: activities, for: user, as: :activity})
484 def index(%{assigns: %{user: user}} = conn, _params) do
486 |> get_session(:oauth_token)
489 mastodon_emoji = mastodonized_emoji()
490 accounts = Map.put(%{}, user.id, AccountView.render("account.json", %{user: user}))
493 streaming_api_base_url: String.replace(Pleroma.Web.Endpoint.static_url(), "http", "ws"),
496 domain: Pleroma.Web.Endpoint.host(),
499 unfollow_modal: false,
502 auto_play_gif: false,
507 default_privacy: "public",
508 default_sensitive: false
510 media_attachments: %{
511 accept_content_types: [
555 push_subscription: nil,
557 custom_emojis: mastodon_emoji
561 |> render(MastodonView, "index.html", %{initial_state: initial_state})
564 |> redirect(to: "/web/login")
568 def login(conn, _) do
570 |> render(MastodonView, "login.html", %{error: false})
573 defp get_or_make_app() do
574 with %App{} = app <- Repo.get_by(App, client_name: "Mastodon-Local") do
578 cs = App.register_changeset(%App{}, %{client_name: "Mastodon-Local", redirect_uris: ".", scopes: "read,write,follow"})
583 def login_post(conn, %{"authorization" => %{ "name" => name, "password" => password}}) do
584 with %User{} = user <- User.get_cached_by_nickname(name),
585 true <- Pbkdf2.checkpw(password, user.password_hash),
586 {:ok, app} <- get_or_make_app(),
587 {:ok, auth} <- Authorization.create_authorization(app, user),
588 {:ok, token} <- Token.exchange_token(app, auth) do
590 |> put_session(:oauth_token, token.token)
591 |> redirect(to: "/web/getting-started")
595 |> render(MastodonView, "login.html", %{error: "Wrong username or password"})
599 def logout(conn, _) do
605 def relationship_noop(%{assigns: %{user: user}} = conn, %{"id" => id}) do
606 Logger.debug("Unimplemented, returning unmodified relationship")
607 with %User{} = target <- Repo.get(User, id) do
608 render conn, AccountView, "relationship.json", %{user: user, target: target}
612 def empty_array(conn, _) do
613 Logger.debug("Unimplemented, returning an empty array")
617 def render_notification(user, %{id: id, activity: activity, inserted_at: created_at} = _params) do
618 actor = User.get_cached_by_ap_id(activity.data["actor"])
619 created_at = NaiveDateTime.to_iso8601(created_at)
620 |> String.replace(~r/(\.\d+)?$/, ".000Z", global: false)
621 case activity.data["type"] do
623 %{id: id, type: "mention", created_at: created_at, account: AccountView.render("account.json", %{user: actor}), status: StatusView.render("status.json", %{activity: activity, for: user})}
625 liked_activity = Activity.get_create_activity_by_object_ap_id(activity.data["object"])
626 %{id: id, type: "favourite", created_at: created_at, account: AccountView.render("account.json", %{user: actor}), status: StatusView.render("status.json", %{activity: liked_activity, for: user})}
628 announced_activity = Activity.get_create_activity_by_object_ap_id(activity.data["object"])
629 %{id: id, type: "reblog", created_at: created_at, account: AccountView.render("account.json", %{user: actor}), status: StatusView.render("status.json", %{activity: announced_activity, for: user})}
631 %{id: id, type: "follow", created_at: created_at, account: AccountView.render("account.json", %{user: actor})}