1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2021 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.MastodonAPI.FollowRequestController do
6 use Pleroma.Web, :controller
8 import Pleroma.Web.ControllerHelper,
9 only: [add_link_headers: 2]
12 alias Pleroma.Web.CommonAPI
13 alias Pleroma.Web.Plugs.OAuthScopesPlug
14 alias Pleroma.Pagination
16 plug(Pleroma.Web.ApiSpec.CastAndValidate)
17 plug(:assign_follower when action != :index)
19 action_fallback(:errors)
21 plug(OAuthScopesPlug, %{scopes: ["follow", "read:follows"]} when action == :index)
25 %{scopes: ["follow", "write:follows"]} when action != :index
28 defdelegate open_api_operation(action), to: Pleroma.Web.ApiSpec.FollowRequestOperation
30 @doc "GET /api/v1/follow_requests"
31 def index(%{assigns: %{user: followed}} = conn, params) do
34 |> User.get_follow_requests_query()
35 |> Pagination.fetch_paginated(params, :keyset, :follower)
38 |> add_link_headers(follow_requests)
39 |> render("index.json", for: followed, users: follow_requests, as: :user)
42 @doc "POST /api/v1/follow_requests/:id/authorize"
43 def authorize(%{assigns: %{user: followed, follower: follower}} = conn, _params) do
44 with {:ok, follower} <- CommonAPI.accept_follow_request(follower, followed) do
45 render(conn, "relationship.json", user: followed, target: follower)
49 @doc "POST /api/v1/follow_requests/:id/reject"
50 def reject(%{assigns: %{user: followed, follower: follower}} = conn, _params) do
51 with {:ok, follower} <- CommonAPI.reject_follow_request(follower, followed) do
52 render(conn, "relationship.json", user: followed, target: follower)
56 defp assign_follower(%{params: %{id: id}} = conn, _) do
57 case User.get_cached_by_id(id) do
58 %User{} = follower -> assign(conn, :follower, follower)
59 nil -> Pleroma.Web.MastodonAPI.FallbackController.call(conn, {:error, :not_found}) |> halt()
63 defp errors(conn, {:error, message}) do
65 |> put_status(:forbidden)
66 |> json(%{error: message})