1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.TwitterAPI.TwitterAPI do
10 alias Pleroma.UserEmail
11 alias Pleroma.UserInviteToken
12 alias Pleroma.Web.ActivityPub.ActivityPub
13 alias Pleroma.Web.CommonAPI
14 alias Pleroma.Web.TwitterAPI.UserView
18 def create_status(%User{} = user, %{"status" => _} = data) do
19 CommonAPI.post(user, data)
22 def delete(%User{} = user, id) do
23 with %Activity{data: %{"type" => _type}} <- Activity.get_by_id(id),
24 {:ok, activity} <- CommonAPI.delete(id, user) do
29 def follow(%User{} = follower, params) do
30 with {:ok, %User{} = followed} <- get_user(params) do
31 CommonAPI.follow(follower, followed)
35 def unfollow(%User{} = follower, params) do
36 with {:ok, %User{} = unfollowed} <- get_user(params),
37 {:ok, follower} <- CommonAPI.unfollow(follower, unfollowed) do
38 {:ok, follower, unfollowed}
42 def block(%User{} = blocker, params) do
43 with {:ok, %User{} = blocked} <- get_user(params),
44 {:ok, blocker} <- User.block(blocker, blocked),
45 {:ok, _activity} <- ActivityPub.block(blocker, blocked) do
46 {:ok, blocker, blocked}
52 def unblock(%User{} = blocker, params) do
53 with {:ok, %User{} = blocked} <- get_user(params),
54 {:ok, blocker} <- User.unblock(blocker, blocked),
55 {:ok, _activity} <- ActivityPub.unblock(blocker, blocked) do
56 {:ok, blocker, blocked}
62 def subscribe(%User{} = subscriber, params) do
63 with {:ok, %User{} = subscribed} <- get_user(params) do
64 User.subscribe(subscriber, subscribed)
68 def unsubscribe(%User{} = unsubscriber, params) do
69 with {:ok, %User{} = unsubscribed} <- get_user(params) do
70 User.unsubscribe(unsubscriber, unsubscribed)
74 def repeat(%User{} = user, ap_id_or_id) do
75 with {:ok, _announce, %{data: %{"id" => id}}} <- CommonAPI.repeat(ap_id_or_id, user),
76 %Activity{} = activity <- Activity.get_create_by_object_ap_id(id) do
81 def unrepeat(%User{} = user, ap_id_or_id) do
82 with {:ok, _unannounce, %{data: %{"id" => id}}} <- CommonAPI.unrepeat(ap_id_or_id, user),
83 %Activity{} = activity <- Activity.get_create_by_object_ap_id(id) do
88 def pin(%User{} = user, ap_id_or_id) do
89 CommonAPI.pin(ap_id_or_id, user)
92 def unpin(%User{} = user, ap_id_or_id) do
93 CommonAPI.unpin(ap_id_or_id, user)
96 def fav(%User{} = user, ap_id_or_id) do
97 with {:ok, _fav, %{data: %{"id" => id}}} <- CommonAPI.favorite(ap_id_or_id, user),
98 %Activity{} = activity <- Activity.get_create_by_object_ap_id(id) do
103 def unfav(%User{} = user, ap_id_or_id) do
104 with {:ok, _unfav, _fav, %{data: %{"id" => id}}} <- CommonAPI.unfavorite(ap_id_or_id, user),
105 %Activity{} = activity <- Activity.get_create_by_object_ap_id(id) do
110 def upload(%Plug.Upload{} = file, %User{} = user, format \\ "xml") do
111 {:ok, object} = ActivityPub.upload(file, actor: User.ap_id(user))
113 url = List.first(object.data["url"])
115 type = url["mediaType"]
119 # Fake this as good as possible...
121 <?xml version="1.0" encoding="UTF-8"?>
122 <rsp stat="ok" xmlns:atom="http://www.w3.org/2005/Atom">
123 <mediaid>#{object.id}</mediaid>
124 <media_id>#{object.id}</media_id>
125 <media_id_string>#{object.id}</media_id_string>
126 <media_url>#{href}</media_url>
127 <mediaurl>#{href}</mediaurl>
128 <atom:link rel="enclosure" href="#{href}" type="#{type}"></atom:link>
135 media_id_string: "#{object.id}}",
143 def register_user(params) do
144 token_string = params["token"]
147 nickname: params["nickname"],
148 name: params["fullname"],
149 bio: User.parse_bio(params["bio"]),
150 email: params["email"],
151 password: params["password"],
152 password_confirmation: params["confirm"],
153 captcha_solution: params["captcha_solution"],
154 captcha_token: params["captcha_token"],
155 captcha_answer_data: params["captcha_answer_data"]
158 captcha_enabled = Pleroma.Config.get([Pleroma.Captcha, :enabled])
159 # true if captcha is disabled or enabled and valid, false otherwise
161 if !captcha_enabled do
164 Pleroma.Captcha.validate(
165 params[:captcha_token],
166 params[:captcha_solution],
167 params[:captcha_answer_data]
172 if captcha_ok != :ok do
173 {:error, error} = captcha_ok
174 # I have no idea how this error handling works
175 {:error, %{error: Jason.encode!(%{captcha: [error]})}}
177 registrations_open = Pleroma.Config.get([:instance, :registrations_open])
179 # no need to query DB if registration is open
181 unless registrations_open || is_nil(token_string) do
182 Repo.get_by(UserInviteToken, %{token: token_string})
186 registrations_open || (!is_nil(token) && !token.used) ->
187 changeset = User.register_changeset(%User{}, params)
189 with {:ok, user} <- User.register(changeset) do
190 !registrations_open && UserInviteToken.mark_as_used(token.token)
194 {:error, changeset} ->
196 Ecto.Changeset.traverse_errors(changeset, fn {msg, _opts} -> msg end)
199 {:error, %{error: errors}}
202 !registrations_open && is_nil(token) ->
203 {:error, "Invalid token"}
205 !registrations_open && token.used ->
206 {:error, "Expired token"}
211 def password_reset(nickname_or_email) do
212 with true <- is_binary(nickname_or_email),
213 %User{local: true} = user <- User.get_by_nickname_or_email(nickname_or_email),
214 {:ok, token_record} <- Pleroma.PasswordResetToken.create_token(user) do
216 |> UserEmail.password_reset_email(token_record.token)
217 |> Mailer.deliver_async()
220 {:error, "bad user identifier"}
222 %User{local: false} ->
223 {:error, "remote user"}
226 {:error, "unknown user"}
230 def get_user(user \\ nil, params) do
232 %{"user_id" => user_id} ->
233 case target = User.get_cached_by_nickname_or_id(user_id) do
235 {:error, "No user with such user_id"}
241 %{"screen_name" => nickname} ->
242 case User.get_by_nickname(nickname) do
243 nil -> {:error, "No user with such screen_name"}
244 target -> {:ok, target}
251 {:error, "You need to specify screen_name or user_id"}
256 defp parse_int(string, default)
258 defp parse_int(string, default) when is_binary(string) do
259 with {n, _} <- Integer.parse(string) do
266 defp parse_int(_, default), do: default
268 def search(_user, %{"q" => query} = params) do
269 limit = parse_int(params["rpp"], 20)
270 page = parse_int(params["page"], 1)
271 offset = (page - 1) * limit
276 where: fragment("?->>'type' = 'Create'", a.data),
277 where: "https://www.w3.org/ns/activitystreams#Public" in a.recipients,
280 "to_tsvector('english', ?->'object'->>'content') @@ plainto_tsquery('english', ?)",
286 # this one isn't indexed so psql won't take the wrong index.
287 order_by: [desc: :inserted_at]
290 _activities = Repo.all(q)
293 def get_external_profile(for_user, uri) do
294 with %User{} = user <- User.get_or_fetch(uri) do
295 {:ok, UserView.render("show.json", %{user: user, for: for_user})}
298 {:error, "Couldn't find user"}