1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2021 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.ActivityPub.ObjectValidators.AcceptRejectValidator do
13 import Pleroma.Web.ActivityPub.ObjectValidators.CommonValidations
20 import Elixir.Pleroma.Web.ActivityPub.ObjectValidators.CommonFields
27 def cast_data(data) do
29 |> cast(data, __schema__(:fields))
32 defp validate_data(cng) do
34 |> validate_required([:type, :actor, :to, :cc, :object])
35 |> validate_inclusion(:type, ["Accept", "Reject"])
36 |> validate_actor_presence()
37 |> validate_object_presence(allowed_types: ["Follow"])
38 |> validate_accept_reject_rights()
41 def cast_and_validate(data) do
43 |> maybe_fetch_object()
48 def validate_accept_reject_rights(cng) do
49 with object_id when is_binary(object_id) <- get_field(cng, :object),
50 %Activity{data: %{"object" => followed_actor}} <- Activity.get_by_ap_id(object_id),
51 true <- followed_actor == get_field(cng, :actor) do
56 |> add_error(:actor, "can't accept or reject the given activity")
60 defp maybe_fetch_object(%{"object" => %{} = object} = activity) do
61 # If we don't have an ID, we may have to fetch the object
62 if Map.has_key?(object, "id") do
66 Map.put(activity, "object", fetch_transient_object(object))
70 defp maybe_fetch_object(activity), do: activity
72 defp fetch_transient_object(
73 %{"actor" => actor, "object" => target, "type" => "Follow"} = object
75 with %User{} = actor <- User.get_cached_by_ap_id(actor),
76 %User{local: true} = target <- User.get_cached_by_ap_id(target),
77 %Activity{} = activity <- Activity.follow_activity(actor, target) do
85 defp fetch_transient_object(_), do: {:error, "not a supported transient object"}