1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.TwitterAPI.TwitterAPI do
6 alias Pleroma.{UserInviteToken, User, Activity, Repo, Object}
7 alias Pleroma.{UserEmail, Mailer}
8 alias Pleroma.Web.ActivityPub.ActivityPub
9 alias Pleroma.Web.TwitterAPI.UserView
10 alias Pleroma.Web.CommonAPI
14 def create_status(%User{} = user, %{"status" => _} = data) do
15 CommonAPI.post(user, data)
18 def delete(%User{} = user, id) do
19 with %Activity{data: %{"type" => _type}} <- Repo.get(Activity, id),
20 {:ok, activity} <- CommonAPI.delete(id, user) do
25 def follow(%User{} = follower, params) do
26 with {:ok, %User{} = followed} <- get_user(params),
27 {:ok, follower} <- User.maybe_direct_follow(follower, followed),
28 {:ok, activity} <- ActivityPub.follow(follower, followed),
29 {:ok, follower, followed} <-
30 User.wait_and_refresh(
31 Pleroma.Config.get([:activitypub, :follow_handshake_timeout]),
35 {:ok, follower, followed, activity}
41 def unfollow(%User{} = follower, params) do
42 with {:ok, %User{} = unfollowed} <- get_user(params),
43 {:ok, follower, _follow_activity} <- User.unfollow(follower, unfollowed),
44 {:ok, _activity} <- ActivityPub.unfollow(follower, unfollowed) do
45 {:ok, follower, unfollowed}
51 def block(%User{} = blocker, params) do
52 with {:ok, %User{} = blocked} <- get_user(params),
53 {:ok, blocker} <- User.block(blocker, blocked),
54 {:ok, _activity} <- ActivityPub.block(blocker, blocked) do
55 {:ok, blocker, blocked}
61 def unblock(%User{} = blocker, params) do
62 with {:ok, %User{} = blocked} <- get_user(params),
63 {:ok, blocker} <- User.unblock(blocker, blocked),
64 {:ok, _activity} <- ActivityPub.unblock(blocker, blocked) do
65 {:ok, blocker, blocked}
71 def repeat(%User{} = user, ap_id_or_id) do
72 with {:ok, _announce, %{data: %{"id" => id}}} <- CommonAPI.repeat(ap_id_or_id, user),
73 %Activity{} = activity <- Activity.get_create_activity_by_object_ap_id(id) do
78 def unrepeat(%User{} = user, ap_id_or_id) do
79 with {:ok, _unannounce, %{data: %{"id" => id}}} <- CommonAPI.unrepeat(ap_id_or_id, user),
80 %Activity{} = activity <- Activity.get_create_activity_by_object_ap_id(id) do
85 def pin(%User{} = user, ap_id_or_id) do
86 CommonAPI.pin(ap_id_or_id, user)
89 def unpin(%User{} = user, ap_id_or_id) do
90 CommonAPI.unpin(ap_id_or_id, user)
93 def fav(%User{} = user, ap_id_or_id) do
94 with {:ok, _fav, %{data: %{"id" => id}}} <- CommonAPI.favorite(ap_id_or_id, user),
95 %Activity{} = activity <- Activity.get_create_activity_by_object_ap_id(id) do
100 def unfav(%User{} = user, ap_id_or_id) do
101 with {:ok, _unfav, _fav, %{data: %{"id" => id}}} <- CommonAPI.unfavorite(ap_id_or_id, user),
102 %Activity{} = activity <- Activity.get_create_activity_by_object_ap_id(id) do
107 def upload(%Plug.Upload{} = file, %User{} = user, format \\ "xml") do
108 {:ok, object} = ActivityPub.upload(file, actor: User.ap_id(user))
110 url = List.first(object.data["url"])
112 type = url["mediaType"]
116 # Fake this as good as possible...
118 <?xml version="1.0" encoding="UTF-8"?>
119 <rsp stat="ok" xmlns:atom="http://www.w3.org/2005/Atom">
120 <mediaid>#{object.id}</mediaid>
121 <media_id>#{object.id}</media_id>
122 <media_id_string>#{object.id}</media_id_string>
123 <media_url>#{href}</media_url>
124 <mediaurl>#{href}</mediaurl>
125 <atom:link rel="enclosure" href="#{href}" type="#{type}"></atom:link>
132 media_id_string: "#{object.id}}",
140 def register_user(params) do
141 tokenString = params["token"]
144 nickname: params["nickname"],
145 name: params["fullname"],
146 bio: User.parse_bio(params["bio"]),
147 email: params["email"],
148 password: params["password"],
149 password_confirmation: params["confirm"],
150 captcha_solution: params["captcha_solution"],
151 captcha_token: params["captcha_token"],
152 captcha_answer_data: params["captcha_answer_data"]
155 captcha_enabled = Pleroma.Config.get([Pleroma.Captcha, :enabled])
156 # true if captcha is disabled or enabled and valid, false otherwise
158 if !captcha_enabled do
161 Pleroma.Captcha.validate(
162 params[:captcha_token],
163 params[:captcha_solution],
164 params[:captcha_answer_data]
169 if captcha_ok != :ok do
170 {:error, error} = captcha_ok
171 # I have no idea how this error handling works
172 {:error, %{error: Jason.encode!(%{captcha: [error]})}}
174 registrations_open = Pleroma.Config.get([:instance, :registrations_open])
176 # no need to query DB if registration is open
178 unless registrations_open || is_nil(tokenString) do
179 Repo.get_by(UserInviteToken, %{token: tokenString})
183 registrations_open || (!is_nil(token) && !token.used) ->
184 changeset = User.register_changeset(%User{}, params)
186 with {:ok, user} <- User.register(changeset) do
187 !registrations_open && UserInviteToken.mark_as_used(token.token)
191 {:error, changeset} ->
193 Ecto.Changeset.traverse_errors(changeset, fn {msg, _opts} -> msg end)
196 {:error, %{error: errors}}
199 !registrations_open && is_nil(token) ->
200 {:error, "Invalid token"}
202 !registrations_open && token.used ->
203 {:error, "Expired token"}
208 def password_reset(nickname_or_email) do
209 with true <- is_binary(nickname_or_email),
210 %User{local: true} = user <- User.get_by_nickname_or_email(nickname_or_email),
211 {:ok, token_record} <- Pleroma.PasswordResetToken.create_token(user) do
213 |> UserEmail.password_reset_email(token_record.token)
217 {:error, "bad user identifier"}
219 %User{local: false} ->
220 {:error, "remote user"}
223 {:error, "unknown user"}
227 def get_by_id_or_nickname(id_or_nickname) do
228 if !is_integer(id_or_nickname) && :error == Integer.parse(id_or_nickname) do
229 Repo.get_by(User, nickname: id_or_nickname)
231 Repo.get(User, id_or_nickname)
235 def get_user(user \\ nil, params) do
237 %{"user_id" => user_id} ->
238 case target = get_by_id_or_nickname(user_id) do
240 {:error, "No user with such user_id"}
246 %{"screen_name" => nickname} ->
247 case target = Repo.get_by(User, nickname: nickname) do
249 {:error, "No user with such screen_name"}
259 {:error, "You need to specify screen_name or user_id"}
264 defp parse_int(string, default)
266 defp parse_int(string, default) when is_binary(string) do
267 with {n, _} <- Integer.parse(string) do
274 defp parse_int(_, default), do: default
276 def search(_user, %{"q" => query} = params) do
277 limit = parse_int(params["rpp"], 20)
278 page = parse_int(params["page"], 1)
279 offset = (page - 1) * limit
284 where: fragment("?->>'type' = 'Create'", a.data),
285 where: "https://www.w3.org/ns/activitystreams#Public" in a.recipients,
288 "to_tsvector('english', ?->'object'->>'content') @@ plainto_tsquery('english', ?)",
294 # this one isn't indexed so psql won't take the wrong index.
295 order_by: [desc: :inserted_at]
298 _activities = Repo.all(q)
301 # DEPRECATED mostly, context objects are now created at insertion time.
302 def context_to_conversation_id(context) do
303 with %Object{id: id} <- Object.get_cached_by_ap_id(context) do
307 changeset = Object.context_mapping(context)
309 case Repo.insert(changeset) do
313 # This should be solved by an upsert, but it seems ecto
314 # has problems accessing the constraint inside the jsonb.
316 Object.get_cached_by_ap_id(context).id
321 def conversation_id_to_context(id) do
322 with %Object{data: %{"id" => context}} <- Repo.get(Object, id) do
326 {:error, "No such conversation"}
330 def get_external_profile(for_user, uri) do
331 with %User{} = user <- User.get_or_fetch(uri) do
332 {:ok, UserView.render("show.json", %{user: user, for: for_user})}
335 {:error, "Couldn't find user"}