Add email blacklist, fixes #1404

author Alex Gleason <alex@alexgleason.me>

Sun, 2 Aug 2020 19:53:42 +0000 (14:53 -0500)

committer Alex Gleason <alex@alexgleason.me>

Sun, 2 Aug 2020 19:53:42 +0000 (14:53 -0500)
author Alex Gleason <alex@alexgleason.me>
Sun, 2 Aug 2020 19:53:42 +0000 (14:53 -0500)
committer Alex Gleason <alex@alexgleason.me>
Sun, 2 Aug 2020 19:53:42 +0000 (14:53 -0500)
diff --git a/config/config.exs b/config/config.exs

index d31208c255f10f8fbd41c10ce1f50d0f727303aa..ba263bf95b4b543b8c30ef8ccb814d1d66310c3a 100644 (file)
--- a/config/config.exs
+++ b/config/config.exs
@@ -509,7 +509,8 @@ config :pleroma, Pleroma.User,
      "user_exists",
      "users",
      "web"
-  ]
+  ],
+  email_blacklist: []
  
  config :pleroma, Oban,
    repo: Pleroma.Repo,
diff --git a/config/description.exs b/config/description.exs

index 11fbe0d788b4181957fc38332b6827f0ab6427c5..3fe22e9696862088720e687be077e792a29b0059 100644 (file)
--- a/config/description.exs
+++ b/config/description.exs
@@ -3021,6 +3021,7 @@ config :pleroma, :config_description, [
        %{
          key: :restricted_nicknames,
          type: {:list, :string},
+        description: "List of nicknames users may not register with.",
          suggestions: [
            ".well-known",
            "~",
@@ -3053,6 +3054,12 @@ config :pleroma, :config_description, [
            "users",
            "web"
          ]
+      },
+      %{
+        key: :email_blacklist,
+        type: {:list, :string},
+        description: "List of email domains users may not register with.",
+        suggestions: ["mailinator.com", "maildrop.cc"]
        }
      ]
    },
diff --git a/docs/configuration/cheatsheet.md b/docs/configuration/cheatsheet.md

index 9c768abef356cfbe2ed633a4b5254c14090d00a6..1a86179f356e34adeb8411ce4cc3871875c0df6a 100644 (file)
--- a/docs/configuration/cheatsheet.md
+++ b/docs/configuration/cheatsheet.md
@@ -202,6 +202,11 @@ config :pleroma, :mrf_user_allowlist, %{
  * `sign_object_fetches`: Sign object fetches with HTTP signatures
  * `authorized_fetch_mode`: Require HTTP signatures for AP fetches
  
+## Pleroma.User
+
+* `restricted_nicknames`: List of nicknames users may not register with.
+* `email_blacklist`: List of email domains users may not register with.
+
  ## Pleroma.ScheduledActivity
  
  * `daily_user_limit`: the number of scheduled activities a user is allowed to create in a single day (Default: `25`)
diff --git a/lib/pleroma/user.ex b/lib/pleroma/user.ex

index dcf6ebee2e4a46d8c6f4150e03a8fd4c7d561fac..d0cc098fe1a1abfd4843b1e34fc8577028c5b840 100644 (file)
--- a/lib/pleroma/user.ex
+++ b/lib/pleroma/user.ex
@@ -676,10 +676,19 @@ defmodule Pleroma.User do
      |> validate_required([:name, :nickname, :password, :password_confirmation])
      |> validate_confirmation(:password)
      |> unique_constraint(:email)
+    |> validate_format(:email, @email_regex)
+    |> validate_change(:email, fn :email, email ->
+      valid? =
+        Config.get([User, :email_blacklist])
+        |> Enum.all?(fn blacklisted_domain ->
+          !String.ends_with?(email, ["@" <> blacklisted_domain, "." <> blacklisted_domain])
+        end)
+
+      if valid?, do: [], else: [email: "Email domain is blacklisted"]
+    end)
      |> unique_constraint(:nickname)
      |> validate_exclusion(:nickname, Config.get([User, :restricted_nicknames]))
      |> validate_format(:nickname, local_nickname_regex())
-    |> validate_format(:email, @email_regex)
      |> validate_length(:bio, max: bio_limit)
      |> validate_length(:name, min: 1, max: name_limit)
      |> validate_length(:registration_reason, max: reason_limit)
diff --git a/test/user_test.exs b/test/user_test.exs

index 904cea5368a94bcf4957de64045e523cd329fda0..7c45e69e792a4ee29e90b18621d2b5ed46bc5cc9 100644 (file)
--- a/test/user_test.exs
+++ b/test/user_test.exs
@@ -490,6 +490,29 @@ defmodule Pleroma.UserTest do
        refute changeset.valid?
      end
  
+    test "it blocks blacklisted email domains" do
+      clear_config([User, :email_blacklist], ["trolling.world"])
+
+      # Block with match
+      params = Map.put(@full_user_data, :email, "troll@trolling.world")
+      changeset = User.register_changeset(%User{}, params)
+      refute changeset.valid?
+
+      # Block with subdomain match
+      params = Map.put(@full_user_data, :email, "troll@gnomes.trolling.world")
+      changeset = User.register_changeset(%User{}, params)
+      refute changeset.valid?
+
+      # Pass with different domains that are similar
+      params = Map.put(@full_user_data, :email, "troll@gnomestrolling.world")
+      changeset = User.register_changeset(%User{}, params)
+      assert changeset.valid?
+
+      params = Map.put(@full_user_data, :email, "troll@trolling.world.us")
+      changeset = User.register_changeset(%User{}, params)
+      assert changeset.valid?
+    end
+
      test "it sets the password_hash and ap_id" do
        changeset = User.register_changeset(%User{}, @full_user_data)
author	Alex Gleason <alex@alexgleason.me>
	Sun, 2 Aug 2020 19:53:42 +0000 (14:53 -0500)
committer	Alex Gleason <alex@alexgleason.me>
	Sun, 2 Aug 2020 19:53:42 +0000 (14:53 -0500)
config/config.exs		patch \| blob \| history
config/description.exs		patch \| blob \| history
docs/configuration/cheatsheet.md		patch \| blob \| history
lib/pleroma/user.ex		patch \| blob \| history
test/user_test.exs		patch \| blob \| history