git.squeep.com Git - akkoma/blob - lib/pleroma/web/twitter_api/twitter_api.ex

   1 defmodule Pleroma.Web.TwitterAPI.TwitterAPI do
   2   alias Pleroma.{UserInviteToken, User, Activity, Repo, Object}
   3   alias Pleroma.{UserEmail, Mailer}
   4   alias Pleroma.Web.ActivityPub.ActivityPub
   5   alias Pleroma.Web.TwitterAPI.UserView
   6   alias Pleroma.Web.CommonAPI
   7
   8   import Ecto.Query
   9
  10   def create_status(%User{} = user, %{"status" => _} = data) do
  11     CommonAPI.post(user, data)
  12   end
  13
  14   def delete(%User{} = user, id) do
  15     with %Activity{data: %{"type" => _type}} <- Repo.get(Activity, id),
  16          {:ok, activity} <- CommonAPI.delete(id, user) do
  17       {:ok, activity}
  18     end
  19   end
  20
  21   def follow(%User{} = follower, params) do
  22     with {:ok, %User{} = followed} <- get_user(params),
  23          {:ok, follower} <- User.maybe_direct_follow(follower, followed),
  24          {:ok, activity} <- ActivityPub.follow(follower, followed),
  25          {:ok, follower, followed} <-
  26            User.wait_and_refresh(
  27              Pleroma.Config.get([:activitypub, :follow_handshake_timeout]),
  28              follower,
  29              followed
  30            ) do
  31       {:ok, follower, followed, activity}
  32     else
  33       err -> err
  34     end
  35   end
  36
  37   def unfollow(%User{} = follower, params) do
  38     with {:ok, %User{} = unfollowed} <- get_user(params),
  39          {:ok, follower, _follow_activity} <- User.unfollow(follower, unfollowed),
  40          {:ok, _activity} <- ActivityPub.unfollow(follower, unfollowed) do
  41       {:ok, follower, unfollowed}
  42     else
  43       err -> err
  44     end
  45   end
  46
  47   def block(%User{} = blocker, params) do
  48     with {:ok, %User{} = blocked} <- get_user(params),
  49          {:ok, blocker} <- User.block(blocker, blocked),
  50          {:ok, _activity} <- ActivityPub.block(blocker, blocked) do
  51       {:ok, blocker, blocked}
  52     else
  53       err -> err
  54     end
  55   end
  56
  57   def unblock(%User{} = blocker, params) do
  58     with {:ok, %User{} = blocked} <- get_user(params),
  59          {:ok, blocker} <- User.unblock(blocker, blocked),
  60          {:ok, _activity} <- ActivityPub.unblock(blocker, blocked) do
  61       {:ok, blocker, blocked}
  62     else
  63       err -> err
  64     end
  65   end
  66
  67   def repeat(%User{} = user, ap_id_or_id) do
  68     with {:ok, _announce, %{data: %{"id" => id}}} <- CommonAPI.repeat(ap_id_or_id, user),
  69          %Activity{} = activity <- Activity.get_create_activity_by_object_ap_id(id) do
  70       {:ok, activity}
  71     end
  72   end
  73
  74   def unrepeat(%User{} = user, ap_id_or_id) do
  75     with {:ok, _unannounce, %{data: %{"id" => id}}} <- CommonAPI.unrepeat(ap_id_or_id, user),
  76          %Activity{} = activity <- Activity.get_create_activity_by_object_ap_id(id) do
  77       {:ok, activity}
  78     end
  79   end
  80
  81   def fav(%User{} = user, ap_id_or_id) do
  82     with {:ok, _fav, %{data: %{"id" => id}}} <- CommonAPI.favorite(ap_id_or_id, user),
  83          %Activity{} = activity <- Activity.get_create_activity_by_object_ap_id(id) do
  84       {:ok, activity}
  85     end
  86   end
  87
  88   def unfav(%User{} = user, ap_id_or_id) do
  89     with {:ok, _unfav, _fav, %{data: %{"id" => id}}} <- CommonAPI.unfavorite(ap_id_or_id, user),
  90          %Activity{} = activity <- Activity.get_create_activity_by_object_ap_id(id) do
  91       {:ok, activity}
  92     end
  93   end
  94
  95   def upload(%Plug.Upload{} = file, %User{} = user, format \\ "xml") do
  96     {:ok, object} = ActivityPub.upload(file, actor: User.ap_id(user))
  97
  98     url = List.first(object.data["url"])
  99     href = url["href"]
 100     type = url["mediaType"]
 101
 102     case format do
 103       "xml" ->
 104         # Fake this as good as possible...
 105         """
 106         <?xml version="1.0" encoding="UTF-8"?>
 107         <rsp stat="ok" xmlns:atom="http://www.w3.org/2005/Atom">
 108         <mediaid>#{object.id}</mediaid>
 109         <media_id>#{object.id}</media_id>
 110         <media_id_string>#{object.id}</media_id_string>
 111         <media_url>#{href}</media_url>
 112         <mediaurl>#{href}</mediaurl>
 113         <atom:link rel="enclosure" href="#{href}" type="#{type}"></atom:link>
 114         </rsp>
 115         """
 116
 117       "json" ->
 118         %{
 119           media_id: object.id,
 120           media_id_string: "#{object.id}}",
 121           media_url: href,
 122           size: 0
 123         }
 124         |> Jason.encode!()
 125     end
 126   end
 127
 128   def register_user(params) do
 129     tokenString = params["token"]
 130
 131     params = %{
 132       nickname: params["nickname"],
 133       name: params["fullname"],
 134       bio: User.parse_bio(params["bio"]),
 135       email: params["email"],
 136       password: params["password"],
 137       password_confirmation: params["confirm"],
 138       captcha_solution: params["captcha_solution"],
 139       captcha_token: params["captcha_token"],
 140       captcha_answer_data: params["captcha_answer_data"]
 141     }
 142
 143     captcha_enabled = Pleroma.Config.get([Pleroma.Captcha, :enabled])
 144     # true if captcha is disabled or enabled and valid, false otherwise
 145     captcha_ok =
 146       if !captcha_enabled do
 147         :ok
 148       else
 149         Pleroma.Captcha.validate(
 150           params[:captcha_token],
 151           params[:captcha_solution],
 152           params[:captcha_answer_data]
 153         )
 154       end
 155
 156     # Captcha invalid
 157     if captcha_ok != :ok do
 158       {:error, error} = captcha_ok
 159       # I have no idea how this error handling works
 160       {:error, %{error: Jason.encode!(%{captcha: [error]})}}
 161     else
 162       registrations_open = Pleroma.Config.get([:instance, :registrations_open])
 163
 164       # no need to query DB if registration is open
 165       token =
 166         unless registrations_open || is_nil(tokenString) do
 167           Repo.get_by(UserInviteToken, %{token: tokenString})
 168         end
 169
 170       cond do
 171         registrations_open || (!is_nil(token) && !token.used) ->
 172           changeset = User.register_changeset(%User{}, params)
 173
 174           with {:ok, user} <- User.register(changeset) do
 175             !registrations_open && UserInviteToken.mark_as_used(token.token)
 176
 177             {:ok, user}
 178           else
 179             {:error, changeset} ->
 180               errors =
 181                 Ecto.Changeset.traverse_errors(changeset, fn {msg, _opts} -> msg end)
 182                 |> Jason.encode!()
 183
 184               {:error, %{error: errors}}
 185           end
 186
 187         !registrations_open && is_nil(token) ->
 188           {:error, "Invalid token"}
 189
 190         !registrations_open && token.used ->
 191           {:error, "Expired token"}
 192       end
 193     end
 194   end
 195
 196   def password_reset(nickname_or_email) do
 197     with true <- is_binary(nickname_or_email),
 198          %User{local: true} = user <- User.get_by_nickname_or_email(nickname_or_email),
 199          {:ok, token_record} <- Pleroma.PasswordResetToken.create_token(user) do
 200       user
 201       |> UserEmail.password_reset_email(token_record.token)
 202       |> Mailer.deliver()
 203     else
 204       false ->
 205         {:error, "bad user identifier"}
 206
 207       %User{local: false} ->
 208         {:error, "remote user"}
 209
 210       nil ->
 211         {:error, "unknown user"}
 212     end
 213   end
 214
 215   def get_by_id_or_nickname(id_or_nickname) do
 216     if !is_integer(id_or_nickname) && :error == Integer.parse(id_or_nickname) do
 217       Repo.get_by(User, nickname: id_or_nickname)
 218     else
 219       Repo.get(User, id_or_nickname)
 220     end
 221   end
 222
 223   def get_user(user \\ nil, params) do
 224     case params do
 225       %{"user_id" => user_id} ->
 226         case target = get_by_id_or_nickname(user_id) do
 227           nil ->
 228             {:error, "No user with such user_id"}
 229
 230           _ ->
 231             {:ok, target}
 232         end
 233
 234       %{"screen_name" => nickname} ->
 235         case target = Repo.get_by(User, nickname: nickname) do
 236           nil ->
 237             {:error, "No user with such screen_name"}
 238
 239           _ ->
 240             {:ok, target}
 241         end
 242
 243       _ ->
 244         if user do
 245           {:ok, user}
 246         else
 247           {:error, "You need to specify screen_name or user_id"}
 248         end
 249     end
 250   end
 251
 252   defp parse_int(string, default)
 253
 254   defp parse_int(string, default) when is_binary(string) do
 255     with {n, _} <- Integer.parse(string) do
 256       n
 257     else
 258       _e -> default
 259     end
 260   end
 261
 262   defp parse_int(_, default), do: default
 263
 264   def search(_user, %{"q" => query} = params) do
 265     limit = parse_int(params["rpp"], 20)
 266     page = parse_int(params["page"], 1)
 267     offset = (page - 1) * limit
 268
 269     q =
 270       from(
 271         a in Activity,
 272         where: fragment("?->>'type' = 'Create'", a.data),
 273         where: "https://www.w3.org/ns/activitystreams#Public" in a.recipients,
 274         where:
 275           fragment(
 276             "to_tsvector('english', ?->'object'->>'content') @@ plainto_tsquery('english', ?)",
 277             a.data,
 278             ^query
 279           ),
 280         limit: ^limit,
 281         offset: ^offset,
 282         # this one isn't indexed so psql won't take the wrong index.
 283         order_by: [desc: :inserted_at]
 284       )
 285
 286     _activities = Repo.all(q)
 287   end
 288
 289   # DEPRECATED mostly, context objects are now created at insertion time.
 290   def context_to_conversation_id(context) do
 291     with %Object{id: id} <- Object.get_cached_by_ap_id(context) do
 292       id
 293     else
 294       _e ->
 295         changeset = Object.context_mapping(context)
 296
 297         case Repo.insert(changeset) do
 298           {:ok, %{id: id}} ->
 299             id
 300
 301           # This should be solved by an upsert, but it seems ecto
 302           # has problems accessing the constraint inside the jsonb.
 303           {:error, _} ->
 304             Object.get_cached_by_ap_id(context).id
 305         end
 306     end
 307   end
 308
 309   def conversation_id_to_context(id) do
 310     with %Object{data: %{"id" => context}} <- Repo.get(Object, id) do
 311       context
 312     else
 313       _e ->
 314         {:error, "No such conversation"}
 315     end
 316   end
 317
 318   def get_external_profile(for_user, uri) do
 319     with %User{} = user <- User.get_or_fetch(uri) do
 320       {:ok, UserView.render("show.json", %{user: user, for: for_user})}
 321     else
 322       _e ->
 323         {:error, "Couldn't find user"}
 324     end
 325   end
 326 end