2020-04-08 13:55:43 +00:00
|
|
|
# Pleroma: A lightweight social networking server
|
|
|
|
# Copyright © 2017-2020 Pleroma Authors <https://pleroma.social/>
|
|
|
|
# SPDX-License-Identifier: AGPL-3.0-only
|
|
|
|
|
|
|
|
defmodule Pleroma.Web.ActivityPub.ObjectValidators.ChatMessageValidator do
|
|
|
|
use Ecto.Schema
|
|
|
|
|
2020-04-16 13:21:47 +00:00
|
|
|
alias Pleroma.User
|
2020-05-06 14:12:36 +00:00
|
|
|
alias Pleroma.Web.ActivityPub.ObjectValidators.AttachmentValidator
|
2020-05-06 14:31:21 +00:00
|
|
|
alias Pleroma.Web.ActivityPub.ObjectValidators.Types
|
2020-04-08 13:55:43 +00:00
|
|
|
|
|
|
|
import Ecto.Changeset
|
2020-04-23 14:19:49 +00:00
|
|
|
import Pleroma.Web.ActivityPub.Transmogrifier, only: [fix_emoji: 1]
|
2020-04-08 13:55:43 +00:00
|
|
|
|
|
|
|
@primary_key false
|
|
|
|
@derive Jason.Encoder
|
|
|
|
|
|
|
|
embedded_schema do
|
|
|
|
field(:id, Types.ObjectID, primary_key: true)
|
|
|
|
field(:to, Types.Recipients, default: [])
|
|
|
|
field(:type, :string)
|
2020-04-28 14:26:19 +00:00
|
|
|
field(:content, Types.SafeText)
|
2020-04-08 13:55:43 +00:00
|
|
|
field(:actor, Types.ObjectID)
|
|
|
|
field(:published, Types.DateTime)
|
2020-04-20 12:08:54 +00:00
|
|
|
field(:emoji, :map, default: %{})
|
2020-05-06 14:12:36 +00:00
|
|
|
|
|
|
|
embeds_one(:attachment, AttachmentValidator)
|
2020-04-08 13:55:43 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
def cast_and_apply(data) do
|
|
|
|
data
|
|
|
|
|> cast_data
|
|
|
|
|> apply_action(:insert)
|
|
|
|
end
|
|
|
|
|
|
|
|
def cast_and_validate(data) do
|
|
|
|
data
|
|
|
|
|> cast_data()
|
|
|
|
|> validate_data()
|
|
|
|
end
|
|
|
|
|
|
|
|
def cast_data(data) do
|
|
|
|
%__MODULE__{}
|
|
|
|
|> changeset(data)
|
|
|
|
end
|
|
|
|
|
|
|
|
def fix(data) do
|
|
|
|
data
|
2020-04-23 14:19:49 +00:00
|
|
|
|> fix_emoji()
|
2020-05-18 16:45:33 +00:00
|
|
|
|> fix_attachment()
|
2020-04-08 13:55:43 +00:00
|
|
|
|> Map.put_new("actor", data["attributedTo"])
|
|
|
|
end
|
|
|
|
|
2020-05-18 16:45:33 +00:00
|
|
|
# Throws everything but the first one away
|
|
|
|
def fix_attachment(%{"attachment" => [attachment | _]} = data) do
|
|
|
|
data
|
|
|
|
|> Map.put("attachment", attachment)
|
|
|
|
end
|
|
|
|
|
|
|
|
def fix_attachment(data), do: data
|
|
|
|
|
2020-04-08 13:55:43 +00:00
|
|
|
def changeset(struct, data) do
|
|
|
|
data = fix(data)
|
|
|
|
|
|
|
|
struct
|
2020-05-06 14:12:36 +00:00
|
|
|
|> cast(data, List.delete(__schema__(:fields), :attachment))
|
|
|
|
|> cast_embed(:attachment)
|
2020-04-08 13:55:43 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
def validate_data(data_cng) do
|
|
|
|
data_cng
|
|
|
|
|> validate_inclusion(:type, ["ChatMessage"])
|
2020-05-13 13:31:28 +00:00
|
|
|
|> validate_required([:id, :actor, :to, :type, :published])
|
|
|
|
|> validate_content_or_attachment()
|
2020-04-16 13:21:47 +00:00
|
|
|
|> validate_length(:to, is: 1)
|
2020-04-20 09:45:11 +00:00
|
|
|
|> validate_length(:content, max: Pleroma.Config.get([:instance, :remote_limit]))
|
2020-04-16 13:21:47 +00:00
|
|
|
|> validate_local_concern()
|
|
|
|
end
|
|
|
|
|
2020-05-13 13:31:28 +00:00
|
|
|
def validate_content_or_attachment(cng) do
|
|
|
|
attachment = get_field(cng, :attachment)
|
|
|
|
|
|
|
|
if attachment do
|
|
|
|
cng
|
|
|
|
else
|
|
|
|
cng
|
|
|
|
|> validate_required([:content])
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2020-04-22 10:48:52 +00:00
|
|
|
@doc """
|
|
|
|
Validates the following
|
|
|
|
- If both users are in our system
|
|
|
|
- If at least one of the users in this ChatMessage is a local user
|
|
|
|
- If the recipient is not blocking the actor
|
|
|
|
"""
|
2020-04-16 13:21:47 +00:00
|
|
|
def validate_local_concern(cng) do
|
|
|
|
with actor_ap <- get_field(cng, :actor),
|
|
|
|
{_, %User{} = actor} <- {:find_actor, User.get_cached_by_ap_id(actor_ap)},
|
|
|
|
{_, %User{} = recipient} <-
|
|
|
|
{:find_recipient, User.get_cached_by_ap_id(get_field(cng, :to) |> hd())},
|
2020-04-22 10:48:52 +00:00
|
|
|
{_, false} <- {:blocking_actor?, User.blocks?(recipient, actor)},
|
2020-04-16 13:21:47 +00:00
|
|
|
{_, true} <- {:local?, Enum.any?([actor, recipient], & &1.local)} do
|
|
|
|
cng
|
|
|
|
else
|
2020-04-22 10:48:52 +00:00
|
|
|
{:blocking_actor?, true} ->
|
|
|
|
cng
|
|
|
|
|> add_error(:actor, "actor is blocked by recipient")
|
|
|
|
|
2020-04-16 13:21:47 +00:00
|
|
|
{:local?, false} ->
|
|
|
|
cng
|
|
|
|
|> add_error(:actor, "actor and recipient are both remote")
|
|
|
|
|
|
|
|
{:find_actor, _} ->
|
|
|
|
cng
|
|
|
|
|> add_error(:actor, "can't find user")
|
|
|
|
|
|
|
|
{:find_recipient, _} ->
|
|
|
|
cng
|
|
|
|
|> add_error(:to, "can't find user")
|
|
|
|
end
|
2020-04-08 13:55:43 +00:00
|
|
|
end
|
|
|
|
end
|