1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2020 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.MediaProxy.MediaProxyController do
6 use Pleroma.Web, :controller
9 alias Pleroma.Helpers.MediaHelper
10 alias Pleroma.ReverseProxy
11 alias Pleroma.Web.MediaProxy
14 @min_content_length_for_preview 100 * 1024
16 def remote(conn, %{"sig" => sig64, "url" => url64}) do
17 with {_, true} <- {:enabled, MediaProxy.enabled?()},
18 {:ok, url} <- MediaProxy.decode_url(sig64, url64),
19 {_, false} <- {:in_banned_urls, MediaProxy.in_banned_urls(url)},
20 :ok <- MediaProxy.verify_request_path_and_url(conn, url) do
21 ReverseProxy.call(conn, url, media_proxy_opts())
24 send_resp(conn, 404, Conn.Status.reason_phrase(404))
26 {:in_banned_urls, true} ->
27 send_resp(conn, 404, Conn.Status.reason_phrase(404))
29 {:error, :invalid_signature} ->
30 send_resp(conn, 403, Conn.Status.reason_phrase(403))
32 {:wrong_filename, filename} ->
33 redirect(conn, external: MediaProxy.build_url(sig64, url64, filename))
37 def preview(%Conn{} = conn, %{"sig" => sig64, "url" => url64}) do
38 with {_, true} <- {:enabled, MediaProxy.preview_enabled?()},
39 {:ok, url} <- MediaProxy.decode_url(sig64, url64) do
40 handle_preview(conn, url)
43 send_resp(conn, 404, Conn.Status.reason_phrase(404))
45 {:error, :invalid_signature} ->
46 send_resp(conn, 403, Conn.Status.reason_phrase(403))
48 {:wrong_filename, filename} ->
49 redirect(conn, external: MediaProxy.build_preview_url(sig64, url64, filename))
53 defp handle_preview(conn, url) do
54 media_proxy_url = MediaProxy.url(url)
56 with {:ok, %{status: status} = head_response} when status in 200..299 <-
57 Pleroma.HTTP.request("head", media_proxy_url, [], [], pool: :media) do
58 content_type = Tesla.get_header(head_response, "content-type")
59 content_length = Tesla.get_header(head_response, "content-length")
60 content_length = content_length && String.to_integer(content_length)
62 handle_preview(content_type, content_length, conn, media_proxy_url)
64 # If HEAD failed, redirecting to media proxy URI doesn't make much sense; returning an error
65 {_, %{status: status}} ->
66 send_resp(conn, :failed_dependency, "Can't fetch HTTP headers (HTTP #{status}).")
68 {:error, :recv_response_timeout} ->
69 send_resp(conn, :failed_dependency, "HEAD request timeout.")
72 send_resp(conn, :failed_dependency, "Can't fetch HTTP headers.")
77 "image/" <> _ = _content_type,
79 %{params: %{"output_format" => "jpeg"}} = conn,
82 handle_jpeg_preview(conn, media_proxy_url)
85 defp handle_preview("image/gif" = _content_type, _content_length, conn, media_proxy_url) do
86 redirect(conn, external: media_proxy_url)
89 defp handle_preview("image/" <> _ = _content_type, content_length, conn, media_proxy_url)
90 when is_integer(content_length) and content_length > 0 and
91 content_length < @min_content_length_for_preview do
92 redirect(conn, external: media_proxy_url)
95 defp handle_preview("image/png" <> _ = _content_type, _content_length, conn, media_proxy_url) do
96 handle_png_preview(conn, media_proxy_url)
99 defp handle_preview("image/" <> _ = _content_type, _content_length, conn, media_proxy_url) do
100 handle_jpeg_preview(conn, media_proxy_url)
103 defp handle_preview("video/" <> _ = _content_type, _content_length, conn, media_proxy_url) do
104 handle_video_preview(conn, media_proxy_url)
107 defp handle_preview(_unsupported_content_type, _content_length, conn, media_proxy_url) do
108 fallback_on_preview_error(conn, media_proxy_url)
111 defp handle_png_preview(conn, media_proxy_url) do
112 quality = Config.get!([:media_preview_proxy, :image_quality])
114 with {thumbnail_max_width, thumbnail_max_height} <- thumbnail_max_dimensions(),
115 {:ok, thumbnail_binary} <-
116 MediaHelper.image_resize(
119 max_width: thumbnail_max_width,
120 max_height: thumbnail_max_height,
126 |> put_preview_response_headers(["image/png", "preview.png"])
127 |> send_resp(200, thumbnail_binary)
130 fallback_on_preview_error(conn, media_proxy_url)
134 defp handle_jpeg_preview(conn, media_proxy_url) do
135 quality = Config.get!([:media_preview_proxy, :image_quality])
137 with {thumbnail_max_width, thumbnail_max_height} <- thumbnail_max_dimensions(),
138 {:ok, thumbnail_binary} <-
139 MediaHelper.image_resize(
141 %{max_width: thumbnail_max_width, max_height: thumbnail_max_height, quality: quality}
144 |> put_preview_response_headers()
145 |> send_resp(200, thumbnail_binary)
148 fallback_on_preview_error(conn, media_proxy_url)
152 defp handle_video_preview(conn, media_proxy_url) do
153 with {:ok, thumbnail_binary} <-
154 MediaHelper.video_framegrab(media_proxy_url) do
156 |> put_preview_response_headers()
157 |> send_resp(200, thumbnail_binary)
160 fallback_on_preview_error(conn, media_proxy_url)
164 defp fallback_on_preview_error(conn, media_proxy_url) do
165 redirect(conn, external: media_proxy_url)
168 defp put_preview_response_headers(
170 [content_type, filename] = _content_info \\ ["image/jpeg", "preview.jpg"]
173 |> put_resp_header("content-type", content_type)
174 |> put_resp_header("content-disposition", "inline; filename=\"#{filename}\"")
175 |> put_resp_header("cache-control", ReverseProxy.default_cache_control_header())
178 defp thumbnail_max_dimensions do
179 config = Config.get([:media_preview_proxy], [])
181 thumbnail_max_width = Keyword.fetch!(config, :thumbnail_max_width)
182 thumbnail_max_height = Keyword.fetch!(config, :thumbnail_max_height)
184 {thumbnail_max_width, thumbnail_max_height}
187 defp media_proxy_opts do
188 Config.get([:media_proxy, :proxy_opts], [])