git.squeep.com Git - akkoma/blob - lib/pleroma/web/twitter_api/controllers/util_controller.ex

   1 # Pleroma: A lightweight social networking server
   2 # Copyright © 2017-2021 Pleroma Authors <https://pleroma.social/>
   3 # SPDX-License-Identifier: AGPL-3.0-only
   4
   5 defmodule Pleroma.Web.TwitterAPI.UtilController do
   6   use Pleroma.Web, :controller
   7
   8   require Logger
   9
  10   alias Pleroma.Config
  11   alias Pleroma.Emoji
  12   alias Pleroma.Healthcheck
  13   alias Pleroma.User
  14   alias Pleroma.Web.CommonAPI
  15   alias Pleroma.Web.Plugs.OAuthScopesPlug
  16   alias Pleroma.Web.WebFinger
  17
  18   plug(Pleroma.Web.ApiSpec.CastAndValidate when action != :remote_subscribe)
  19   plug(Pleroma.Web.Plugs.FederatingPlug when action == :remote_subscribe)
  20
  21   plug(
  22     OAuthScopesPlug,
  23     %{scopes: ["write:accounts"]}
  24     when action in [
  25            :change_email,
  26            :change_password,
  27            :delete_account,
  28            :update_notificaton_settings,
  29            :disable_account
  30          ]
  31   )
  32
  33   defdelegate open_api_operation(action), to: Pleroma.Web.ApiSpec.TwitterUtilOperation
  34
  35   def remote_subscribe(conn, %{"nickname" => nick, "profile" => _}) do
  36     with %User{} = user <- User.get_cached_by_nickname(nick),
  37          avatar = User.avatar_url(user) do
  38       conn
  39       |> render("subscribe.html", %{nickname: nick, avatar: avatar, error: false})
  40     else
  41       _e ->
  42         render(conn, "subscribe.html", %{
  43           nickname: nick,
  44           avatar: nil,
  45           error: "Could not find user"
  46         })
  47     end
  48   end
  49
  50   def remote_subscribe(conn, %{"user" => %{"nickname" => nick, "profile" => profile}}) do
  51     with {:ok, %{"subscribe_address" => template}} <- WebFinger.finger(profile),
  52          %User{ap_id: ap_id} <- User.get_cached_by_nickname(nick) do
  53       conn
  54       |> Phoenix.Controller.redirect(external: String.replace(template, "{uri}", ap_id))
  55     else
  56       _e ->
  57         render(conn, "subscribe.html", %{
  58           nickname: nick,
  59           avatar: nil,
  60           error: "Something went wrong."
  61         })
  62     end
  63   end
  64
  65   def frontend_configurations(conn, _params) do
  66     render(conn, "frontend_configurations.json")
  67   end
  68
  69   def emoji(conn, _params) do
  70     emoji =
  71       Enum.reduce(Emoji.get_all(), %{}, fn {code, %Emoji{file: file, tags: tags}}, acc ->
  72         Map.put(acc, code, %{image_url: file, tags: tags})
  73       end)
  74
  75     json(conn, emoji)
  76   end
  77
  78   def update_notificaton_settings(%{assigns: %{user: user}} = conn, params) do
  79     with {:ok, _} <- User.update_notification_settings(user, params) do
  80       json(conn, %{status: "success"})
  81     end
  82   end
  83
  84   def change_password(%{assigns: %{user: user}, body_params: body_params} = conn, %{}) do
  85     case CommonAPI.Utils.confirm_current_password(user, body_params.password) do
  86       {:ok, user} ->
  87         with {:ok, _user} <-
  88                User.reset_password(user, %{
  89                  password: body_params.new_password,
  90                  password_confirmation: body_params.new_password_confirmation
  91                }) do
  92           json(conn, %{status: "success"})
  93         else
  94           {:error, changeset} ->
  95             {_, {error, _}} = Enum.at(changeset.errors, 0)
  96             json(conn, %{error: "New password #{error}."})
  97
  98           _ ->
  99             json(conn, %{error: "Unable to change password."})
 100         end
 101
 102       {:error, msg} ->
 103         json(conn, %{error: msg})
 104     end
 105   end
 106
 107   def change_email(%{assigns: %{user: user}} = conn, %{password: password, email: email}) do
 108     case CommonAPI.Utils.confirm_current_password(user, password) do
 109       {:ok, user} ->
 110         with {:ok, _user} <- User.change_email(user, email) do
 111           json(conn, %{status: "success"})
 112         else
 113           {:error, changeset} ->
 114             {_, {error, _}} = Enum.at(changeset.errors, 0)
 115             json(conn, %{error: "Email #{error}."})
 116
 117           _ ->
 118             json(conn, %{error: "Unable to change email."})
 119         end
 120
 121       {:error, msg} ->
 122         json(conn, %{error: msg})
 123     end
 124   end
 125
 126   def delete_account(%{assigns: %{user: user}} = conn, params) do
 127     password = params[:password] || ""
 128
 129     case CommonAPI.Utils.confirm_current_password(user, password) do
 130       {:ok, user} ->
 131         User.delete(user)
 132         json(conn, %{status: "success"})
 133
 134       {:error, msg} ->
 135         json(conn, %{error: msg})
 136     end
 137   end
 138
 139   def disable_account(%{assigns: %{user: user}} = conn, params) do
 140     case CommonAPI.Utils.confirm_current_password(user, params[:password]) do
 141       {:ok, user} ->
 142         User.set_activation_async(user, false)
 143         json(conn, %{status: "success"})
 144
 145       {:error, msg} ->
 146         json(conn, %{error: msg})
 147     end
 148   end
 149
 150   def captcha(conn, _params) do
 151     json(conn, Pleroma.Captcha.new())
 152   end
 153
 154   def healthcheck(conn, _params) do
 155     with true <- Config.get([:instance, :healthcheck]),
 156          %{healthy: true} = info <- Healthcheck.system_info() do
 157       json(conn, info)
 158     else
 159       %{healthy: false} = info ->
 160         service_unavailable(conn, info)
 161
 162       _ ->
 163         service_unavailable(conn, %{})
 164     end
 165   end
 166
 167   defp service_unavailable(conn, info) do
 168     conn
 169     |> put_status(:service_unavailable)
 170     |> json(info)
 171   end
 172 end