git.squeep.com Git - akkoma/blob - lib/pleroma/web/activity_pub/mrf/simple_policy.ex

   1 # Pleroma: A lightweight social networking server
   2 # Copyright © 2017-2020 Pleroma Authors <https://pleroma.social/>
   3 # SPDX-License-Identifier: AGPL-3.0-only
   4
   5 defmodule Pleroma.Web.ActivityPub.MRF.SimplePolicy do
   6   @moduledoc "Filter activities depending on their origin instance"
   7   @behaviour Pleroma.Web.ActivityPub.MRF
   8
   9   alias Pleroma.Config
  10   alias Pleroma.User
  11   alias Pleroma.Web.ActivityPub.MRF
  12
  13   require Pleroma.Constants
  14
  15   defp check_accept(%{host: actor_host} = _actor_info, object) do
  16     accepts =
  17       Config.get([:mrf_simple, :accept])
  18       |> MRF.subdomains_regex()
  19
  20     cond do
  21       accepts == [] -> {:ok, object}
  22       actor_host == Config.get([Pleroma.Web.Endpoint, :url, :host]) -> {:ok, object}
  23       MRF.subdomain_match?(accepts, actor_host) -> {:ok, object}
  24       true -> {:reject, nil}
  25     end
  26   end
  27
  28   defp check_reject(%{host: actor_host} = _actor_info, object) do
  29     rejects =
  30       Config.get([:mrf_simple, :reject])
  31       |> MRF.subdomains_regex()
  32
  33     if MRF.subdomain_match?(rejects, actor_host) do
  34       {:reject, nil}
  35     else
  36       {:ok, object}
  37     end
  38   end
  39
  40   defp check_media_removal(
  41          %{host: actor_host} = _actor_info,
  42          %{"type" => "Create", "object" => %{"attachment" => child_attachment}} = object
  43        )
  44        when length(child_attachment) > 0 do
  45     media_removal =
  46       Config.get([:mrf_simple, :media_removal])
  47       |> MRF.subdomains_regex()
  48
  49     object =
  50       if MRF.subdomain_match?(media_removal, actor_host) do
  51         child_object = Map.delete(object["object"], "attachment")
  52         Map.put(object, "object", child_object)
  53       else
  54         object
  55       end
  56
  57     {:ok, object}
  58   end
  59
  60   defp check_media_removal(_actor_info, object), do: {:ok, object}
  61
  62   defp check_media_nsfw(
  63          %{host: actor_host} = _actor_info,
  64          %{
  65            "type" => "Create",
  66            "object" => child_object
  67          } = object
  68        ) do
  69     media_nsfw =
  70       Config.get([:mrf_simple, :media_nsfw])
  71       |> MRF.subdomains_regex()
  72
  73     object =
  74       if MRF.subdomain_match?(media_nsfw, actor_host) do
  75         tags = (child_object["tag"] || []) ++ ["nsfw"]
  76         child_object = Map.put(child_object, "tag", tags)
  77         child_object = Map.put(child_object, "sensitive", true)
  78         Map.put(object, "object", child_object)
  79       else
  80         object
  81       end
  82
  83     {:ok, object}
  84   end
  85
  86   defp check_media_nsfw(_actor_info, object), do: {:ok, object}
  87
  88   defp check_ftl_removal(%{host: actor_host} = _actor_info, object) do
  89     timeline_removal =
  90       Config.get([:mrf_simple, :federated_timeline_removal])
  91       |> MRF.subdomains_regex()
  92
  93     object =
  94       with true <- MRF.subdomain_match?(timeline_removal, actor_host),
  95            user <- User.get_cached_by_ap_id(object["actor"]),
  96            true <- Pleroma.Constants.as_public() in object["to"] do
  97         to = List.delete(object["to"], Pleroma.Constants.as_public()) ++ [user.follower_address]
  98
  99         cc = List.delete(object["cc"], user.follower_address) ++ [Pleroma.Constants.as_public()]
 100
 101         object
 102         |> Map.put("to", to)
 103         |> Map.put("cc", cc)
 104       else
 105         _ -> object
 106       end
 107
 108     {:ok, object}
 109   end
 110
 111   defp check_report_removal(%{host: actor_host} = _actor_info, %{"type" => "Flag"} = object) do
 112     report_removal =
 113       Config.get([:mrf_simple, :report_removal])
 114       |> MRF.subdomains_regex()
 115
 116     if MRF.subdomain_match?(report_removal, actor_host) do
 117       {:reject, nil}
 118     else
 119       {:ok, object}
 120     end
 121   end
 122
 123   defp check_report_removal(_actor_info, object), do: {:ok, object}
 124
 125   defp check_avatar_removal(%{host: actor_host} = _actor_info, %{"icon" => _icon} = object) do
 126     avatar_removal =
 127       Config.get([:mrf_simple, :avatar_removal])
 128       |> MRF.subdomains_regex()
 129
 130     if MRF.subdomain_match?(avatar_removal, actor_host) do
 131       {:ok, Map.delete(object, "icon")}
 132     else
 133       {:ok, object}
 134     end
 135   end
 136
 137   defp check_avatar_removal(_actor_info, object), do: {:ok, object}
 138
 139   defp check_banner_removal(%{host: actor_host} = _actor_info, %{"image" => _image} = object) do
 140     banner_removal =
 141       Config.get([:mrf_simple, :banner_removal])
 142       |> MRF.subdomains_regex()
 143
 144     if MRF.subdomain_match?(banner_removal, actor_host) do
 145       {:ok, Map.delete(object, "image")}
 146     else
 147       {:ok, object}
 148     end
 149   end
 150
 151   defp check_banner_removal(_actor_info, object), do: {:ok, object}
 152
 153   @impl true
 154   def filter(%{"type" => "Delete", "actor" => actor} = object) do
 155     %{host: actor_host} = URI.parse(actor)
 156
 157     reject_deletes =
 158       Config.get([:mrf_simple, :reject_deletes])
 159       |> MRF.subdomains_regex()
 160
 161     if MRF.subdomain_match?(reject_deletes, actor_host) do
 162       {:reject, nil}
 163     else
 164       {:ok, object}
 165     end
 166   end
 167
 168   @impl true
 169   def filter(%{"actor" => actor} = object) do
 170     actor_info = URI.parse(actor)
 171
 172     with {:ok, object} <- check_accept(actor_info, object),
 173          {:ok, object} <- check_reject(actor_info, object),
 174          {:ok, object} <- check_media_removal(actor_info, object),
 175          {:ok, object} <- check_media_nsfw(actor_info, object),
 176          {:ok, object} <- check_ftl_removal(actor_info, object),
 177          {:ok, object} <- check_report_removal(actor_info, object) do
 178       {:ok, object}
 179     else
 180       _e -> {:reject, nil}
 181     end
 182   end
 183
 184   def filter(%{"id" => actor, "type" => obj_type} = object)
 185       when obj_type in ["Application", "Group", "Organization", "Person", "Service"] do
 186     actor_info = URI.parse(actor)
 187
 188     with {:ok, object} <- check_accept(actor_info, object),
 189          {:ok, object} <- check_reject(actor_info, object),
 190          {:ok, object} <- check_avatar_removal(actor_info, object),
 191          {:ok, object} <- check_banner_removal(actor_info, object) do
 192       {:ok, object}
 193     else
 194       _e -> {:reject, nil}
 195     end
 196   end
 197
 198   def filter(object), do: {:ok, object}
 199
 200   @impl true
 201   def describe do
 202     exclusions = Config.get([:mrf, :transparency_exclusions])
 203
 204     mrf_simple =
 205       Config.get(:mrf_simple)
 206       |> Enum.map(fn {k, v} -> {k, Enum.reject(v, fn v -> v in exclusions end)} end)
 207       |> Enum.into(%{})
 208
 209     {:ok, %{mrf_simple: mrf_simple}}
 210   end
 211 end