1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2020 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.ActivityPub.ObjectValidators.ChatMessageValidator do
9 alias Pleroma.Web.ActivityPub.ObjectValidators.AttachmentValidator
10 alias Pleroma.Web.ActivityPub.ObjectValidators.Types
13 import Pleroma.Web.ActivityPub.Transmogrifier, only: [fix_emoji: 1]
19 field(:id, Types.ObjectID, primary_key: true)
20 field(:to, Types.Recipients, default: [])
22 field(:content, Types.SafeText)
23 field(:actor, Types.ObjectID)
24 field(:published, Types.DateTime)
25 field(:emoji, :map, default: %{})
27 embeds_one(:attachment, AttachmentValidator)
30 def cast_and_apply(data) do
33 |> apply_action(:insert)
36 def cast_and_validate(data) do
42 def cast_data(data) do
51 |> Map.put_new("actor", data["attributedTo"])
54 # Throws everything but the first one away
55 def fix_attachment(%{"attachment" => [attachment | _]} = data) do
57 |> Map.put("attachment", attachment)
60 def fix_attachment(data), do: data
62 def changeset(struct, data) do
66 |> cast(data, List.delete(__schema__(:fields), :attachment))
67 |> cast_embed(:attachment)
70 def validate_data(data_cng) do
72 |> validate_inclusion(:type, ["ChatMessage"])
73 |> validate_required([:id, :actor, :to, :type, :published])
74 |> validate_content_or_attachment()
75 |> validate_length(:to, is: 1)
76 |> validate_length(:content, max: Pleroma.Config.get([:instance, :remote_limit]))
77 |> validate_local_concern()
80 def validate_content_or_attachment(cng) do
81 attachment = get_field(cng, :attachment)
87 |> validate_required([:content])
92 Validates the following
93 - If both users are in our system
94 - If at least one of the users in this ChatMessage is a local user
95 - If the recipient is not blocking the actor
97 def validate_local_concern(cng) do
98 with actor_ap <- get_field(cng, :actor),
99 {_, %User{} = actor} <- {:find_actor, User.get_cached_by_ap_id(actor_ap)},
100 {_, %User{} = recipient} <-
101 {:find_recipient, User.get_cached_by_ap_id(get_field(cng, :to) |> hd())},
102 {_, false} <- {:blocking_actor?, User.blocks?(recipient, actor)},
103 {_, true} <- {:local?, Enum.any?([actor, recipient], & &1.local)} do
106 {:blocking_actor?, true} ->
108 |> add_error(:actor, "actor is blocked by recipient")
112 |> add_error(:actor, "actor and recipient are both remote")
116 |> add_error(:actor, "can't find user")
118 {:find_recipient, _} ->
120 |> add_error(:to, "can't find user")