git.squeep.com Git - akkoma/blob - lib/pleroma/web/twitter_api/twitter_api.ex

   1 # Pleroma: A lightweight social networking server
   2 # Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
   3 # SPDX-License-Identifier: AGPL-3.0-only
   4
   5 defmodule Pleroma.Web.TwitterAPI.TwitterAPI do
   6   alias Pleroma.{UserInviteToken, User, Activity, Repo, Object}
   7   alias Pleroma.{UserEmail, Mailer}
   8   alias Pleroma.Web.ActivityPub.ActivityPub
   9   alias Pleroma.Web.TwitterAPI.UserView
  10   alias Pleroma.Web.CommonAPI
  11
  12   import Ecto.Query
  13
  14   def create_status(%User{} = user, %{"status" => _} = data) do
  15     CommonAPI.post(user, data)
  16   end
  17
  18   def delete(%User{} = user, id) do
  19     with %Activity{data: %{"type" => _type}} <- Repo.get(Activity, id),
  20          {:ok, activity} <- CommonAPI.delete(id, user) do
  21       {:ok, activity}
  22     end
  23   end
  24
  25   def follow(%User{} = follower, params) do
  26     with {:ok, %User{} = followed} <- get_user(params),
  27          {:ok, follower} <- User.maybe_direct_follow(follower, followed),
  28          {:ok, activity} <- ActivityPub.follow(follower, followed),
  29          {:ok, follower, followed} <-
  30            User.wait_and_refresh(
  31              Pleroma.Config.get([:activitypub, :follow_handshake_timeout]),
  32              follower,
  33              followed
  34            ) do
  35       {:ok, follower, followed, activity}
  36     else
  37       err -> err
  38     end
  39   end
  40
  41   def unfollow(%User{} = follower, params) do
  42     with {:ok, %User{} = unfollowed} <- get_user(params),
  43          {:ok, follower, _follow_activity} <- User.unfollow(follower, unfollowed),
  44          {:ok, _activity} <- ActivityPub.unfollow(follower, unfollowed) do
  45       {:ok, follower, unfollowed}
  46     else
  47       err -> err
  48     end
  49   end
  50
  51   def block(%User{} = blocker, params) do
  52     with {:ok, %User{} = blocked} <- get_user(params),
  53          {:ok, blocker} <- User.block(blocker, blocked),
  54          {:ok, _activity} <- ActivityPub.block(blocker, blocked) do
  55       {:ok, blocker, blocked}
  56     else
  57       err -> err
  58     end
  59   end
  60
  61   def unblock(%User{} = blocker, params) do
  62     with {:ok, %User{} = blocked} <- get_user(params),
  63          {:ok, blocker} <- User.unblock(blocker, blocked),
  64          {:ok, _activity} <- ActivityPub.unblock(blocker, blocked) do
  65       {:ok, blocker, blocked}
  66     else
  67       err -> err
  68     end
  69   end
  70
  71   def repeat(%User{} = user, ap_id_or_id) do
  72     with {:ok, _announce, %{data: %{"id" => id}}} <- CommonAPI.repeat(ap_id_or_id, user),
  73          %Activity{} = activity <- Activity.get_create_by_object_ap_id(id) do
  74       {:ok, activity}
  75     end
  76   end
  77
  78   def unrepeat(%User{} = user, ap_id_or_id) do
  79     with {:ok, _unannounce, %{data: %{"id" => id}}} <- CommonAPI.unrepeat(ap_id_or_id, user),
  80          %Activity{} = activity <- Activity.get_create_by_object_ap_id(id) do
  81       {:ok, activity}
  82     end
  83   end
  84
  85   def pin(%User{} = user, ap_id_or_id) do
  86     CommonAPI.pin(ap_id_or_id, user)
  87   end
  88
  89   def unpin(%User{} = user, ap_id_or_id) do
  90     CommonAPI.unpin(ap_id_or_id, user)
  91   end
  92
  93   def fav(%User{} = user, ap_id_or_id) do
  94     with {:ok, _fav, %{data: %{"id" => id}}} <- CommonAPI.favorite(ap_id_or_id, user),
  95          %Activity{} = activity <- Activity.get_create_by_object_ap_id(id) do
  96       {:ok, activity}
  97     end
  98   end
  99
 100   def unfav(%User{} = user, ap_id_or_id) do
 101     with {:ok, _unfav, _fav, %{data: %{"id" => id}}} <- CommonAPI.unfavorite(ap_id_or_id, user),
 102          %Activity{} = activity <- Activity.get_create_by_object_ap_id(id) do
 103       {:ok, activity}
 104     end
 105   end
 106
 107   def upload(%Plug.Upload{} = file, %User{} = user, format \\ "xml") do
 108     {:ok, object} = ActivityPub.upload(file, actor: User.ap_id(user))
 109
 110     url = List.first(object.data["url"])
 111     href = url["href"]
 112     type = url["mediaType"]
 113
 114     case format do
 115       "xml" ->
 116         # Fake this as good as possible...
 117         """
 118         <?xml version="1.0" encoding="UTF-8"?>
 119         <rsp stat="ok" xmlns:atom="http://www.w3.org/2005/Atom">
 120         <mediaid>#{object.id}</mediaid>
 121         <media_id>#{object.id}</media_id>
 122         <media_id_string>#{object.id}</media_id_string>
 123         <media_url>#{href}</media_url>
 124         <mediaurl>#{href}</mediaurl>
 125         <atom:link rel="enclosure" href="#{href}" type="#{type}"></atom:link>
 126         </rsp>
 127         """
 128
 129       "json" ->
 130         %{
 131           media_id: object.id,
 132           media_id_string: "#{object.id}}",
 133           media_url: href,
 134           size: 0
 135         }
 136         |> Jason.encode!()
 137     end
 138   end
 139
 140   def register_user(params) do
 141     tokenString = params["token"]
 142
 143     params = %{
 144       nickname: params["nickname"],
 145       name: params["fullname"],
 146       bio: User.parse_bio(params["bio"]),
 147       email: params["email"],
 148       password: params["password"],
 149       password_confirmation: params["confirm"],
 150       captcha_solution: params["captcha_solution"],
 151       captcha_token: params["captcha_token"],
 152       captcha_answer_data: params["captcha_answer_data"]
 153     }
 154
 155     captcha_enabled = Pleroma.Config.get([Pleroma.Captcha, :enabled])
 156     # true if captcha is disabled or enabled and valid, false otherwise
 157     captcha_ok =
 158       if !captcha_enabled do
 159         :ok
 160       else
 161         Pleroma.Captcha.validate(
 162           params[:captcha_token],
 163           params[:captcha_solution],
 164           params[:captcha_answer_data]
 165         )
 166       end
 167
 168     # Captcha invalid
 169     if captcha_ok != :ok do
 170       {:error, error} = captcha_ok
 171       # I have no idea how this error handling works
 172       {:error, %{error: Jason.encode!(%{captcha: [error]})}}
 173     else
 174       registrations_open = Pleroma.Config.get([:instance, :registrations_open])
 175
 176       # no need to query DB if registration is open
 177       token =
 178         unless registrations_open || is_nil(tokenString) do
 179           Repo.get_by(UserInviteToken, %{token: tokenString})
 180         end
 181
 182       cond do
 183         registrations_open || (!is_nil(token) && !token.used) ->
 184           changeset = User.register_changeset(%User{}, params)
 185
 186           with {:ok, user} <- User.register(changeset) do
 187             !registrations_open && UserInviteToken.mark_as_used(token.token)
 188
 189             {:ok, user}
 190           else
 191             {:error, changeset} ->
 192               errors =
 193                 Ecto.Changeset.traverse_errors(changeset, fn {msg, _opts} -> msg end)
 194                 |> Jason.encode!()
 195
 196               {:error, %{error: errors}}
 197           end
 198
 199         !registrations_open && is_nil(token) ->
 200           {:error, "Invalid token"}
 201
 202         !registrations_open && token.used ->
 203           {:error, "Expired token"}
 204       end
 205     end
 206   end
 207
 208   def password_reset(nickname_or_email) do
 209     with true <- is_binary(nickname_or_email),
 210          %User{local: true} = user <- User.get_by_nickname_or_email(nickname_or_email),
 211          {:ok, token_record} <- Pleroma.PasswordResetToken.create_token(user) do
 212       user
 213       |> UserEmail.password_reset_email(token_record.token)
 214       |> Mailer.deliver()
 215     else
 216       false ->
 217         {:error, "bad user identifier"}
 218
 219       %User{local: false} ->
 220         {:error, "remote user"}
 221
 222       nil ->
 223         {:error, "unknown user"}
 224     end
 225   end
 226
 227   def get_by_id_or_nickname(id_or_nickname) do
 228     if !is_integer(id_or_nickname) && :error == Integer.parse(id_or_nickname) do
 229       Repo.get_by(User, nickname: id_or_nickname)
 230     else
 231       Repo.get(User, id_or_nickname)
 232     end
 233   end
 234
 235   def get_user(user \\ nil, params) do
 236     case params do
 237       %{"user_id" => user_id} ->
 238         case target = get_by_id_or_nickname(user_id) do
 239           nil ->
 240             {:error, "No user with such user_id"}
 241
 242           _ ->
 243             {:ok, target}
 244         end
 245
 246       %{"screen_name" => nickname} ->
 247         case target = Repo.get_by(User, nickname: nickname) do
 248           nil ->
 249             {:error, "No user with such screen_name"}
 250
 251           _ ->
 252             {:ok, target}
 253         end
 254
 255       _ ->
 256         if user do
 257           {:ok, user}
 258         else
 259           {:error, "You need to specify screen_name or user_id"}
 260         end
 261     end
 262   end
 263
 264   defp parse_int(string, default)
 265
 266   defp parse_int(string, default) when is_binary(string) do
 267     with {n, _} <- Integer.parse(string) do
 268       n
 269     else
 270       _e -> default
 271     end
 272   end
 273
 274   defp parse_int(_, default), do: default
 275
 276   def search(_user, %{"q" => query} = params) do
 277     limit = parse_int(params["rpp"], 20)
 278     page = parse_int(params["page"], 1)
 279     offset = (page - 1) * limit
 280
 281     q =
 282       from(
 283         a in Activity,
 284         where: fragment("?->>'type' = 'Create'", a.data),
 285         where: "https://www.w3.org/ns/activitystreams#Public" in a.recipients,
 286         where:
 287           fragment(
 288             "to_tsvector('english', ?->'object'->>'content') @@ plainto_tsquery('english', ?)",
 289             a.data,
 290             ^query
 291           ),
 292         limit: ^limit,
 293         offset: ^offset,
 294         # this one isn't indexed so psql won't take the wrong index.
 295         order_by: [desc: :inserted_at]
 296       )
 297
 298     _activities = Repo.all(q)
 299   end
 300
 301   # DEPRECATED mostly, context objects are now created at insertion time.
 302   def context_to_conversation_id(context) do
 303     with %Object{id: id} <- Object.get_cached_by_ap_id(context) do
 304       id
 305     else
 306       _e ->
 307         changeset = Object.context_mapping(context)
 308
 309         case Repo.insert(changeset) do
 310           {:ok, %{id: id}} ->
 311             id
 312
 313           # This should be solved by an upsert, but it seems ecto
 314           # has problems accessing the constraint inside the jsonb.
 315           {:error, _} ->
 316             Object.get_cached_by_ap_id(context).id
 317         end
 318     end
 319   end
 320
 321   def conversation_id_to_context(id) do
 322     with %Object{data: %{"id" => context}} <- Repo.get(Object, id) do
 323       context
 324     else
 325       _e ->
 326         {:error, "No such conversation"}
 327     end
 328   end
 329
 330   def get_external_profile(for_user, uri) do
 331     with %User{} = user <- User.get_or_fetch(uri) do
 332       {:ok, UserView.render("show.json", %{user: user, for: for_user})}
 333     else
 334       _e ->
 335         {:error, "Couldn't find user"}
 336     end
 337   end
 338 end