johan/FoundKey
1
0
Fork 0
forked from FoundKeyGang/FoundKey
Code Issues Pull requests Projects Releases Packages Wiki Activity
21790 commits 3 branches 2 tags 106 MiB
Commit graph

889 commits

Author SHA1 Message Date
Francis Dinh
a8f82050c8
activitypub: perform resolver block check on objects as well 2022-12-24 18:39:44 -05:00
Francis Dinh
8e12b9a33e
server: restore original comment for skippedInstances 2022-12-24 15:01:32 -05:00
Francis Dinh
6583d0c43d
server: pass in resolved meta table to shouldBlockInstance 
This should make it more friendly to use in places where the meta table
has already been resolved for other reasons.
 2022-12-24 14:56:48 -05:00
Johann150
85419326f8
server: use prelude function instead of separate function 2022-12-23 13:55:15 +01:00
Johann150
eaa11647f0
server: rewrite drive usage queries in raw SQL 2022-12-23 13:54:12 +01:00
Johann150
61a2db49df
server: always use user id for calcDriveUsageOf 2022-12-23 13:38:29 +01:00
Norm
0e1459e5cf Merge pull request 'server: refactor follow request functions to be named exports' (#296) from refactor/follow-requests into main 
Reviewed-on: FoundKeyGang/FoundKey#296
 2022-12-23 02:06:31 +00:00
Francis Dinh
9690244848
server: add return type for all follow reject funcs 2022-12-22 17:52:30 -05:00
Francis Dinh
4db25e4b1f
server: add doc for cancelFollowRequest 2022-12-22 16:55:08 -05:00
Francis Dinh
549302e9c0
server: add doc for createFollowRequest 2022-12-22 16:55:07 -05:00
Francis Dinh
a3354904af
server: use named export for createFollowRequest 2022-12-22 16:52:52 -05:00
Francis Dinh
28f65bebfc
server: use named export for cancelFollowRequest 2022-12-22 16:52:52 -05:00
Francis Dinh
2204adc657
server: use named export for acceptAllFollowRequests 2022-12-22 16:52:52 -05:00
Francis Dinh
b11e4053db
server: use named export for acceptFollowRequest 2022-12-22 16:52:52 -05:00
Johann150
e2ef800708
server: dont use replace for file types 
No point in using replace if we already know which character we want to replace.
 2022-12-22 14:46:21 +01:00
Johann150
a7048f17f7
server: simplify duplicated code 2022-12-22 14:45:20 +01:00
Johann150
33f0b24c56
server: add v2 routes to notes endpoints 2022-12-22 11:02:04 +01:00
Andreas Nedbal
7685b92511
improve fetching of endpoint arguments 
including support for route parameters (e.g. '/v2/note/:noteId' giving us a 'noteId' value)

Co-authored-by: Johann150 <johann.galle@protonmail.com>
 2022-12-22 11:02:04 +01:00
Andreas Nedbal
8276bd3bdc
generate OpenAPI spec for v2 endpoints 2022-12-22 11:02:04 +01:00
Andreas Nedbal
aed2752470
server: make v2 meta endpoint support GET 2022-12-22 11:01:56 +01:00
Andreas Nedbal
4a3b91d658
server: add additional API v2 options to endpoints 
* improve type definitions for v2 method
The method has to be lowercase because it is used as an index to get
the respective method of the router.

Co-authored-by: Johann150 <johann.galle@protonmail.com>
 2022-12-22 11:00:46 +01:00
Johann150
9317d25078
server: expire notifications after 3 months 
closes FoundKeyGang/FoundKey#292

Changelog: Added
 2022-12-21 21:46:45 +01:00
Johann150
fc36bb8880
server: reduce code duplication in check-expired queue job 2022-12-21 21:46:27 +01:00
Johann150
711bb8be7d
fixup: add missing redirect argument 2022-12-21 21:23:23 +01:00
Johann150
275136cf8b
allow redirects in API ap/* endpoints 2022-12-21 20:45:55 +01:00
Johann150
aa33708b90
server: handle redirects in signed get 
part of FoundKeyGang/FoundKey#288

Changelog: Fixed
 2022-12-20 22:07:24 +01:00
Johann150
99c459a21a
server: better upload limit error 
Ref: FoundKeyGang/FoundKey#293
 2022-12-19 21:29:29 +01:00
Johann150
bd68096ea9
server: refactor API error 2022-12-19 21:24:39 +01:00
Johann150
6c7f1774e3
server: fix thread mutes not applying to renotes 
Changelog: Fixed
 2022-12-15 21:20:24 +01:00
Johann150
af43df15ca
reduce duplication in secureRndstr 2022-12-15 20:46:17 +01:00
Johann150
5f83383ab8
fix import error in tests 2022-12-15 20:45:55 +01:00
Johann150
8c759dde6c
server: fix error about duplicate resolve 2022-12-15 19:44:55 +01:00
Johann150
16d091497a
server: use extractDbHost instead of toPuny, translate comments 
Also swapped logical or for nullish coalescing operator in some places.
 2022-12-15 00:32:15 +01:00
Johann150
ef53ec276a
activitypub: simplify some URI/id related checks 
followup on previous commit
 2022-12-15 00:31:23 +01:00
Johann150
3582fd8260
activitypub: centrally check id matches URL in resolver 
This makes some duplicated checks in models/note and models/person
unnecessary.
 2022-12-15 00:29:39 +01:00
Johann150
9f1670d5fd
server: fix default not found error image 2022-12-14 19:05:41 +01:00
Francis Dinh
ff31b8b06d server: remove bios and cli 
The BIOS and CLI functionality were mainly for debugging purposes.
If a user has to use those to resolve an issue with the server, that
really should be fixed at the source instead.

Closes: FoundKeyGang/FoundKey#283
Changelog: Removed
 2022-12-14 17:59:25 +00:00
Johann150
ffff2ae5ef
server: fix missing import 
closes FoundKeyGang/FoundKey#286
 2022-12-14 18:08:44 +01:00
Johann150
ccc8bf0289
chore: fix more miscellaneous lints 2022-12-13 23:09:32 +01:00
Johann150
a231b36d59
chore: fix lint about unused variables in entities 2022-12-13 23:09:32 +01:00
Johann150
8e9c65fab0
chore: fix some import related lints 2022-12-13 23:09:31 +01:00
Francis Dinh
78a3051313
remove unneeded TODO 2022-12-13 16:46:29 -05:00
Francis Dinh
78717e85d3
server: change JSON.parse/stringify to structuredClone 
structuredClone is more typesafe than using JSON.parse and
JSON.stringify.

Now that Node 18.x is the new baseline, this should be safe to use now.

See https://developer.mozilla.org/en-US/docs/Web/API/structuredClone
for details.
 2022-12-13 16:45:38 -05:00
Francis Dinh
a9d3cae511
server: add return type to extractApMentions 2022-12-13 16:31:15 -05:00
Francis Dinh
bd27b7ca3a
server: add typing for renderFollowRelay 2022-12-13 16:06:18 -05:00
Francis Dinh
e28a9eb8e8
use tsc --noEmit for backend and client 
See https://github.com/misskey-dev/misskey/pull/9316
 2022-12-13 16:02:06 -05:00
Francis Dinh
e5a4c5d2d0
chore: update @typescript-eslint packages 2022-12-13 15:57:26 -05:00
Francis Dinh
6bba55c196
sw: add TypeScript type checking 
This implements the upstream changes from
https://github.com/misskey-dev/misskey/pull/9314 but updated to our
version of ESLint.

Also updates TypeScript to 4.9.4 for all packages.
 2022-12-13 15:42:08 -05:00
Francis Dinh
1d469f3c34
fix import typo 2022-12-13 15:12:29 -05:00
Francis Dinh
3f0228e14c
server: use color-convert KEYWORD instead of extracting parameter type 2022-12-13 15:11:29 -05:00
Johann150
5ea744b1b2
server: use configurable images 2022-12-13 20:54:49 +01:00
Johann150
ae6ba05306
add config for error images 
Changelog: Added
 2022-12-13 20:54:49 +01:00
Johann150
d4d1e03479
server: fix errors for replies and state when note doesnt exist 2022-12-13 20:35:46 +01:00
Francis Dinh
030394b30d
refactor: remove default export for boot 2022-12-11 14:42:55 -05:00
Johann150
768d9bbdfb
refactor: remove default export for perform 2022-12-11 18:23:19 +01:00
Johann150
3ef1a4b0f9
refactor: remove default export for Resolver 2022-12-11 18:23:07 +01:00
Johann150
ae59ce51b0
refactor: remove default export for DbResolver 2022-12-11 18:16:48 +01:00
Johann150
14a9b9bedd
refactor: remove default export for request 2022-12-11 18:16:45 +01:00
Johann150
985a13f47f
refactor: remove default export for DeliverManager 2022-12-11 17:56:25 +01:00
Johann150
507b328fdf
activitypub: also forward resolver to resolveNote 2022-12-10 11:23:10 +01:00
Francis Dinh
3cf673960b server: Fix typing for user token 
Also fix a comment in the User model that wrongly states that the token
is null if the user is local, when it's the opposite.
 2022-12-08 23:20:41 -05:00
Francis Dinh
cbfd866122 server: make fetcher key non-null 2022-12-08 23:19:39 -05:00
Francis Dinh
b23a8dbaed server: translate comments 2022-12-08 23:18:45 -05:00
Francis Dinh
80a73a7510 server: remove unused imports from suspend-user.ts 2022-12-08 23:18:45 -05:00
Francis Dinh
3dec9a47f0 server: fix various type errors in services 2022-12-08 23:18:45 -05:00
Francis Dinh
b8fb7a38cc server: improve Logger typing information and docs 2022-12-08 23:18:45 -05:00
Francis Dinh
fdc682e810 server: remove sendEmailNotification 
The functions have their bodies completely comented out,
which means they are doing nothing.
 2022-12-08 23:18:45 -05:00
Johann150
fde751df8f
fix: properly supply resolver (2) 2022-12-08 19:06:55 +01:00
Johann150
1faf1035f9
server: handle users getting deleted somewhere else 
I don't know why but several jobs got stuck in my inbox queue because
of errors like 'Could not find any entity of type "User" matching...'.
 2022-12-08 18:12:24 +01:00
Johann150
e2ce599aca
fix: properly supply resolver 2022-12-08 18:12:05 +01:00
Francis Dinh
350f21d955
server: fix typing for skippedInstances query 2022-12-07 16:41:34 -05:00
Francis Dinh
873e21f090
chore: update eslint 2022-12-07 16:27:53 -05:00
Francis Dinh
2afe54c121
eslint: allow backticks to avoid escaping single/double quotes 2022-12-07 16:27:39 -05:00
Francis Dinh
b66f7550ab
server: auto-fix lints 2022-12-07 13:39:21 -05:00
Johann150
18664dbca3
server: add missing paren 
How did this not break yet?
 2022-12-07 18:29:04 +01:00
Johann150
0f3f42eb39
remove rndstr dependency 
This dependency was unused in the client.

The use of it in the server can be replaced entirely by the
secureRndstr function, with some slight modifications.

That function could probably be refactored a bit more as well.
 2022-12-07 18:08:09 +01:00
Andreas Nedbal
d3f1ad9a88 chore: remove unused packages 2022-12-06 23:18:27 +01:00
Andreas Nedbal
1aa3898db5 server: remove unused import 2022-12-06 23:12:45 +01:00
Andreas Nedbal
b023741f50 server: remove integrations field from user 2022-12-06 23:00:08 +01:00
Andreas Nedbal
4cc5b734e7 activitypub: remove integration fields from person and nodeinfo 2022-12-06 21:49:19 +01:00
Andreas Nedbal
5d32872999 server: remove integration API routes 2022-12-06 21:48:31 +01:00
Andreas Nedbal
b4b1204f77 server: remove integration-related fields from meta 2022-12-06 21:47:59 +01:00
Norm
c1a51547a9 BREAKING: server: remove wildcard blocking and instead block subdomains (#269) 
Co-authored-by: Francis Dinh <normandy@biribiri.dev>
Reviewed-on: FoundKeyGang/FoundKey#269
Changelog: Changed
 2022-12-05 17:55:38 +00:00
Chloe Kudryavtsev
4e74d26e45 backend: fix ratelimit typo 
Changelog: Fixed
 2022-12-05 15:49:33 +01:00
Johann150
a421dd401c
activitypub: refactor to always apply recursion limit 
Refactor to remove as many "new Resolver" as possible.
 2022-12-04 21:11:44 +01:00
Johann150
c4211761e6
server: refactor resolveSelf to just return the webfinger href 
Since the href seems to be the only attribute that is used, and I didn't
want to add a full type definition this was the easier option.
 2022-12-04 21:11:43 +01:00
Johann150
03b673165f
server: refactor "authUser" functions into separate file 
They did not really fit into the DbResolver because they may fetch data
from remote instances even though DbResolver is only supposed to access
the database.
 2022-12-04 21:11:35 +01:00
Johann150
de18c8306d
server: fix token-permissions migration 
The table that is affected here was not properly purged of old entries. It only holds
data that is needed while a 3rd party authorization is in progress but not finished.

The code that typeorm generated for this migration is a bit wonky because it should
probably have dropped one column and created another one. But if we clear out all entries
it should work regardless and I'm feeling lazy right now. :P
 2022-12-04 19:05:02 +01:00
Johann150
11e4a8cb9b
remove erroneous space 2022-12-04 15:34:05 +01:00
Johann150
946e862ecd
server: implement OAuth 2.0 Authorization Code grant 
Changelog: Added
Reviewed-on: FoundKeyGang/FoundKey#205
 2022-12-04 14:06:36 +01:00
Johann150
97052b1f61
server: refactor fromHtml attribute handling 
Also try to recognize owncast hashtag links.
 2022-12-04 03:43:22 +01:00
Johann150
cda9197700
server: increase nodeinfo caching 
Changelog: Changed
 2022-12-04 03:26:50 +01:00
Chloe Kudryavtsev
2dde8273e2 implement separate web workers 
Reviewed-on: FoundKeyGang/FoundKey#252
 2022-12-03 13:33:23 +00:00
Johann150
de927e1f30 server: handle invalid URLs in comparison 2022-12-03 10:38:33 +00:00
Johann150
bdcec2b8a7 server: implement OAuth discovery (RFC 8414) 2022-12-03 10:38:33 +00:00
Johann150
5291f29581 implement OAuth PKCE 
This implements Proof Key for Code Exchange a.k.a. RFC 7636.
 2022-12-03 10:38:33 +00:00
Johann150
15b3ab6d13 check redirect URIs 2022-12-03 10:38:33 +00:00
Johann150
79e3c20189 server: allow to grant tokens with more restricted privileges 
This also simplifies API authentication a bit by not having to fetch
the App that is related to a token.

The restriction of 1 token per app is also lifted. This was not a
constraint in the database but it was enforced by the code and
kinda wrong schema the auth_session table had.
 2022-12-03 10:38:32 +00:00
Johann150
2f2e6a58a4 docs: read scope descriptions from locale strings 2022-12-03 10:38:32 +00:00
Johann150
c65fdebe26 server: add missing auth/deny endpoint 
This endpoint is hinted at in the client, but is not actually defined
in the backend. This commit defines it.
 2022-12-03 10:38:32 +00:00