akkoma/lib/pleroma/user.ex

706 lines
18 KiB
Elixir
Raw Normal View History

2017-03-20 20:28:31 +00:00
defmodule Pleroma.User do
use Ecto.Schema
import Ecto.{Changeset, Query}
alias Pleroma.{Repo, User, Object, Web, Activity, Notification}
alias Comeonin.Pbkdf2
alias Pleroma.Web.{OStatus, Websub}
2017-12-08 16:50:11 +00:00
alias Pleroma.Web.ActivityPub.{Utils, ActivityPub}
2017-03-20 20:28:31 +00:00
schema "users" do
2018-03-30 13:01:53 +00:00
field(:bio, :string)
field(:email, :string)
field(:name, :string)
field(:nickname, :string)
field(:password_hash, :string)
field(:password, :string, virtual: true)
field(:password_confirmation, :string, virtual: true)
field(:following, {:array, :string}, default: [])
field(:ap_id, :string)
field(:avatar, :map)
field(:local, :boolean, default: true)
field(:info, :map, default: %{})
field(:follower_address, :string)
field(:search_distance, :float, virtual: true)
2018-03-30 13:01:53 +00:00
has_many(:notifications, Notification)
2017-03-20 20:28:31 +00:00
timestamps()
end
2017-03-21 16:53:20 +00:00
2017-04-17 12:12:36 +00:00
def avatar_url(user) do
case user.avatar do
%{"url" => [%{"href" => href} | _]} -> href
_ -> "#{Web.base_url()}/images/avi.png"
2017-04-17 12:12:36 +00:00
end
end
2017-09-16 11:44:08 +00:00
def banner_url(user) do
case user.info["banner"] do
%{"url" => [%{"href" => href} | _]} -> href
_ -> "#{Web.base_url()}/images/banner.png"
2017-09-16 11:44:08 +00:00
end
end
2017-03-21 16:53:20 +00:00
def ap_id(%User{nickname: nickname}) do
2018-03-30 13:01:53 +00:00
"#{Web.base_url()}/users/#{nickname}"
2017-03-21 16:53:20 +00:00
end
def ap_followers(%User{} = user) do
"#{ap_id(user)}/followers"
end
2017-03-22 17:36:08 +00:00
def follow_changeset(struct, params \\ %{}) do
struct
|> cast(params, [:following])
|> validate_required([:following])
end
def info_changeset(struct, params \\ %{}) do
struct
|> cast(params, [:info])
|> validate_required([:info])
end
2017-04-20 22:51:09 +00:00
def user_info(%User{} = user) do
oneself = if user.local, do: 1, else: 0
2018-03-30 13:01:53 +00:00
2017-04-20 22:51:09 +00:00
%{
following_count: length(user.following) - oneself,
note_count: user.info["note_count"] || 0,
follower_count: user.info["follower_count"] || 0,
locked: user.info["locked"] || false
2017-04-20 22:51:09 +00:00
}
end
2017-05-09 16:11:51 +00:00
@email_regex ~r/^[a-zA-Z0-9.!#$%&'*+\/=?^_`{|}~-]+@[a-zA-Z0-9](?:[a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?(?:\.[a-zA-Z0-9](?:[a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?)*$/
def remote_user_creation(params) do
2018-03-30 13:01:53 +00:00
changes =
%User{}
|> cast(params, [:bio, :name, :ap_id, :nickname, :info, :avatar])
|> validate_required([:name, :ap_id, :nickname])
|> unique_constraint(:nickname)
|> validate_format(:nickname, @email_regex)
|> validate_length(:bio, max: 5000)
|> validate_length(:name, max: 100)
|> put_change(:local, false)
if changes.valid? do
2018-02-11 16:20:02 +00:00
case changes.changes[:info]["source_data"] do
%{"followers" => followers} ->
changes
|> put_change(:follower_address, followers)
2018-03-30 13:01:53 +00:00
2018-02-11 16:20:02 +00:00
_ ->
followers = User.ap_followers(%User{nickname: changes.changes[:nickname]})
2018-03-30 13:01:53 +00:00
2018-02-11 16:20:02 +00:00
changes
|> put_change(:follower_address, followers)
end
else
changes
end
2017-05-09 16:11:51 +00:00
end
2017-08-29 13:14:00 +00:00
def update_changeset(struct, params \\ %{}) do
2017-11-19 01:22:07 +00:00
struct
2017-08-29 13:14:00 +00:00
|> cast(params, [:bio, :name])
|> unique_constraint(:nickname)
|> validate_format(:nickname, ~r/^[a-zA-Z\d]+$/)
|> validate_length(:bio, max: 5000)
2017-08-29 13:14:00 +00:00
|> validate_length(:name, min: 1, max: 100)
end
2018-02-21 21:21:40 +00:00
def upgrade_changeset(struct, params \\ %{}) do
struct
2018-02-22 07:14:15 +00:00
|> cast(params, [:bio, :name, :info, :follower_address, :avatar])
2018-02-21 21:21:40 +00:00
|> unique_constraint(:nickname)
|> validate_format(:nickname, ~r/^[a-zA-Z\d]+$/)
2018-02-25 15:14:25 +00:00
|> validate_length(:bio, max: 5000)
|> validate_length(:name, max: 100)
2018-02-21 21:21:40 +00:00
end
2017-10-19 15:37:24 +00:00
def password_update_changeset(struct, params) do
2018-03-30 13:01:53 +00:00
changeset =
struct
|> cast(params, [:password, :password_confirmation])
|> validate_required([:password, :password_confirmation])
|> validate_confirmation(:password)
2017-10-19 15:37:24 +00:00
if changeset.valid? do
hashed = Pbkdf2.hashpwsalt(changeset.changes[:password])
2018-03-30 13:01:53 +00:00
2017-10-19 15:37:24 +00:00
changeset
|> put_change(:password_hash, hashed)
else
changeset
end
end
def reset_password(user, data) do
2017-12-08 16:50:11 +00:00
update_and_set_cache(password_update_changeset(user, data))
2017-10-19 15:37:24 +00:00
end
2017-04-15 14:40:09 +00:00
def register_changeset(struct, params \\ %{}) do
2018-03-30 13:01:53 +00:00
changeset =
struct
|> cast(params, [:bio, :email, :name, :nickname, :password, :password_confirmation])
|> validate_required([:email, :name, :nickname, :password, :password_confirmation])
|> validate_confirmation(:password)
|> unique_constraint(:email)
|> unique_constraint(:nickname)
|> validate_format(:nickname, ~r/^[a-zA-Z\d]+$/)
|> validate_format(:email, @email_regex)
|> validate_length(:bio, max: 1000)
|> validate_length(:name, min: 1, max: 100)
2017-04-15 14:40:09 +00:00
if changeset.valid? do
hashed = Pbkdf2.hashpwsalt(changeset.changes[:password])
2017-04-15 14:40:09 +00:00
ap_id = User.ap_id(%User{nickname: changeset.changes[:nickname]})
followers = User.ap_followers(%User{nickname: changeset.changes[:nickname]})
2018-03-30 13:01:53 +00:00
2017-04-15 14:40:09 +00:00
changeset
|> put_change(:password_hash, hashed)
|> put_change(:ap_id, ap_id)
|> put_change(:following, [followers])
|> put_change(:follower_address, followers)
2017-04-15 14:40:09 +00:00
else
changeset
end
end
def maybe_direct_follow(%User{} = follower, %User{info: info} = followed) do
2018-06-23 21:32:00 +00:00
user_config = Application.get_env(:pleroma, :user)
deny_follow_blocked = Keyword.get(user_config, :deny_follow_blocked)
user_info = user_info(followed)
should_direct_follow =
cond do
# if the account is locked, don't pre-create the relationship
user_info[:locked] == true ->
false
# if the users are blocking each other, we shouldn't even be here, but check for it anyway
deny_follow_blocked and
2018-06-09 04:28:11 +00:00
(User.blocks?(follower, followed) or User.blocks?(followed, follower)) ->
false
# if OStatus, then there is no three-way handshake to follow
User.ap_enabled?(followed) != true ->
true
# if there are no other reasons not to, just pre-create the relationship
true ->
true
end
if should_direct_follow do
follow(follower, followed)
else
{:ok, follower}
end
end
def maybe_follow(%User{} = follower, %User{info: info} = followed) do
if not following?(follower, followed) do
follow(follower, followed)
else
{:ok, follower}
end
end
2017-12-07 16:51:55 +00:00
def follow(%User{} = follower, %User{info: info} = followed) do
2018-06-23 21:32:00 +00:00
user_config = Application.get_env(:pleroma, :user)
deny_follow_blocked = Keyword.get(user_config, :deny_follow_blocked)
ap_followers = followed.follower_address
cond do
following?(follower, followed) or info["deactivated"] ->
{:error, "Could not follow user: #{followed.nickname} is already on your list."}
deny_follow_blocked and blocks?(followed, follower) ->
{:error, "Could not follow user: #{followed.nickname} blocked you."}
2017-03-22 17:36:08 +00:00
true ->
if !followed.local && follower.local && !ap_enabled?(followed) do
Websub.subscribe(follower, followed)
end
following =
[ap_followers | follower.following]
|> Enum.uniq()
follower =
follower
|> follow_changeset(%{following: following})
|> update_and_set_cache
{:ok, _} = update_follower_count(followed)
follower
end
2017-03-22 17:36:08 +00:00
end
2017-03-23 12:13:09 +00:00
def unfollow(%User{} = follower, %User{} = followed) do
ap_followers = followed.follower_address
2018-03-30 13:01:53 +00:00
if following?(follower, followed) and follower.ap_id != followed.ap_id do
2018-03-30 13:01:53 +00:00
following =
follower.following
|> List.delete(ap_followers)
2017-03-23 12:13:09 +00:00
2018-03-30 13:01:53 +00:00
{:ok, follower} =
follower
|> follow_changeset(%{following: following})
|> update_and_set_cache
{:ok, followed} = update_follower_count(followed)
{:ok, follower, Utils.fetch_latest_follow(follower, followed)}
else
{:error, "Not subscribed!"}
end
2017-03-23 12:13:09 +00:00
end
def following?(%User{} = follower, %User{} = followed) do
Enum.member?(follower.following, followed.follower_address)
end
def locked?(%User{} = user) do
user.info["locked"] || false
end
2017-05-11 15:59:11 +00:00
def get_by_ap_id(ap_id) do
Repo.get_by(User, ap_id: ap_id)
end
2017-12-08 16:50:11 +00:00
def update_and_set_cache(changeset) do
with {:ok, user} <- Repo.update(changeset) do
Cachex.put(:user_cache, "ap_id:#{user.ap_id}", user)
Cachex.put(:user_cache, "nickname:#{user.nickname}", user)
Cachex.put(:user_cache, "user_info:#{user.id}", user_info(user))
2017-12-08 16:50:11 +00:00
{:ok, user}
else
e -> e
end
end
2018-02-25 15:14:25 +00:00
def invalidate_cache(user) do
Cachex.del(:user_cache, "ap_id:#{user.ap_id}")
Cachex.del(:user_cache, "nickname:#{user.nickname}")
end
def get_cached_by_ap_id(ap_id) do
key = "ap_id:#{ap_id}"
Cachex.fetch!(:user_cache, key, fn _ -> get_by_ap_id(ap_id) end)
end
def get_cached_by_nickname(nickname) do
key = "nickname:#{nickname}"
Cachex.fetch!(:user_cache, key, fn _ -> get_or_fetch_by_nickname(nickname) end)
end
2017-04-30 13:06:22 +00:00
def get_by_nickname(nickname) do
Repo.get_by(User, nickname: nickname)
end
def get_by_nickname_or_email(nickname_or_email) do
case user = Repo.get_by(User, nickname: nickname_or_email) do
%User{} -> user
nil -> Repo.get_by(User, email: nickname_or_email)
end
end
def get_cached_user_info(user) do
key = "user_info:#{user.id}"
Cachex.fetch!(:user_cache, key, fn _ -> user_info(user) end)
end
2017-04-30 16:48:48 +00:00
2018-02-18 11:27:05 +00:00
def fetch_by_nickname(nickname) do
ap_try = ActivityPub.make_user_from_nickname(nickname)
case ap_try do
{:ok, user} -> {:ok, user}
_ -> OStatus.make_user(nickname)
end
end
2017-04-30 16:48:48 +00:00
def get_or_fetch_by_nickname(nickname) do
2018-03-30 13:01:53 +00:00
with %User{} = user <- get_by_nickname(nickname) do
2017-04-30 16:48:48 +00:00
user
2018-03-30 13:01:53 +00:00
else
_e ->
with [_nick, _domain] <- String.split(nickname, "@"),
{:ok, user} <- fetch_by_nickname(nickname) do
user
else
_e -> nil
end
2017-04-30 16:48:48 +00:00
end
end
def get_followers_query(%User{id: id, follower_address: follower_address}) do
from(
u in User,
where: fragment("? <@ ?", ^[follower_address], u.following),
where: u.id != ^id
)
end
def get_followers(user) do
q = get_followers_query(user)
{:ok, Repo.all(q)}
end
def get_friends_query(%User{id: id, following: following}) do
from(
u in User,
where: u.follower_address in ^following,
where: u.id != ^id
)
end
def get_friends(user) do
q = get_friends_query(user)
{:ok, Repo.all(q)}
end
2018-05-26 16:03:32 +00:00
def get_follow_requests_query(%User{} = user) do
from(
a in Activity,
2018-05-28 18:31:48 +00:00
where:
fragment(
"? ->> 'type' = 'Follow'",
a.data
),
where:
fragment(
"? ->> 'state' = 'pending'",
a.data
),
where:
fragment(
"? @> ?",
a.data,
^%{"object" => user.ap_id}
)
2018-05-26 16:03:32 +00:00
)
end
def get_follow_requests(%User{} = user) do
q = get_follow_requests_query(user)
reqs = Repo.all(q)
users =
2018-05-28 18:31:48 +00:00
Enum.map(reqs, fn req -> req.actor end)
|> Enum.uniq()
|> Enum.map(fn ap_id -> get_by_ap_id(ap_id) end)
|> Enum.filter(fn u -> !following?(u, user) end)
2018-05-26 16:03:32 +00:00
{:ok, users}
end
def increase_note_count(%User{} = user) do
note_count = (user.info["note_count"] || 0) + 1
new_info = Map.put(user.info, "note_count", note_count)
cs = info_changeset(user, %{info: new_info})
2017-12-08 16:50:11 +00:00
update_and_set_cache(cs)
end
def decrease_note_count(%User{} = user) do
2018-04-24 12:12:23 +00:00
note_count = user.info["note_count"] || 0
note_count = if note_count <= 0, do: 0, else: note_count - 1
new_info = Map.put(user.info, "note_count", note_count)
cs = info_changeset(user, %{info: new_info})
update_and_set_cache(cs)
end
def update_note_count(%User{} = user) do
2018-03-30 13:01:53 +00:00
note_count_query =
from(
a in Object,
where: fragment("?->>'actor' = ? and ?->>'type' = 'Note'", a.data, ^user.ap_id, a.data),
select: count(a.id)
)
note_count = Repo.one(note_count_query)
new_info = Map.put(user.info, "note_count", note_count)
cs = info_changeset(user, %{info: new_info})
2017-12-08 16:50:11 +00:00
update_and_set_cache(cs)
end
def update_follower_count(%User{} = user) do
2018-03-30 13:01:53 +00:00
follower_count_query =
from(
u in User,
where: ^user.follower_address in u.following,
where: u.id != ^user.id,
select: count(u.id)
)
follower_count = Repo.one(follower_count_query)
new_info = Map.put(user.info, "follower_count", follower_count)
cs = info_changeset(user, %{info: new_info})
2017-12-08 16:50:11 +00:00
update_and_set_cache(cs)
end
def get_notified_from_activity_query(to) do
from(
u in User,
where: u.ap_id in ^to,
where: u.local == true
)
end
def get_notified_from_activity(%Activity{recipients: to, data: %{"type" => "Announce"} = data}) do
object = Object.normalize(data["object"])
# ensure that the actor who published the announced object appears only once
to =
(to ++ [object.data["actor"]])
|> Enum.uniq()
query = get_notified_from_activity_query(to)
Repo.all(query)
end
def get_notified_from_activity(%Activity{recipients: to}) do
query = get_notified_from_activity_query(to)
Repo.all(query)
end
2017-10-30 18:23:16 +00:00
def get_recipients_from_activity(%Activity{recipients: to}) do
2018-03-30 13:01:53 +00:00
query =
from(
u in User,
where: u.ap_id in ^to,
or_where: fragment("? && ?", u.following, ^to)
)
2018-03-30 13:01:53 +00:00
query = from(u in query, where: u.local == true)
Repo.all(query)
end
2017-10-30 18:23:16 +00:00
def search(query, resolve) do
# strip the beginning @ off if there is a query
query = String.trim_leading(query, "@")
2017-10-30 18:23:16 +00:00
if resolve do
User.get_or_fetch_by_nickname(query)
end
2018-03-30 13:01:53 +00:00
inner =
2018-03-30 13:01:53 +00:00
from(
u in User,
select_merge: %{
2018-05-19 08:37:04 +00:00
search_distance:
fragment(
"? <-> (? || ?)",
^query,
u.nickname,
u.name
)
}
2018-03-30 13:01:53 +00:00
)
2018-05-19 08:37:04 +00:00
q =
from(
s in subquery(inner),
order_by: s.search_distance,
limit: 20
)
2017-10-30 18:23:16 +00:00
Repo.all(q)
end
2017-11-02 20:57:37 +00:00
def block(blocker, %User{ap_id: ap_id} = blocked) do
# sever any follow relationships to prevent leaks per activitypub (Pleroma issue #213)
blocker =
if following?(blocker, blocked) do
{:ok, blocker, _} = unfollow(blocker, blocked)
blocker
else
blocker
end
if following?(blocked, blocker) do
unfollow(blocked, blocker)
end
blocks = blocker.info["blocks"] || []
2017-11-02 20:57:37 +00:00
new_blocks = Enum.uniq([ap_id | blocks])
new_info = Map.put(blocker.info, "blocks", new_blocks)
2017-11-02 20:57:37 +00:00
cs = User.info_changeset(blocker, %{info: new_info})
2017-12-08 16:50:11 +00:00
update_and_set_cache(cs)
2017-11-02 20:57:37 +00:00
end
# helper to handle the block given only an actor's AP id
def block(blocker, %{ap_id: ap_id}) do
block(blocker, User.get_by_ap_id(ap_id))
end
2017-11-02 20:57:37 +00:00
def unblock(user, %{ap_id: ap_id}) do
blocks = user.info["blocks"] || []
new_blocks = List.delete(blocks, ap_id)
new_info = Map.put(user.info, "blocks", new_blocks)
cs = User.info_changeset(user, %{info: new_info})
2017-12-08 16:50:11 +00:00
update_and_set_cache(cs)
2017-11-02 20:57:37 +00:00
end
def blocks?(user, %{ap_id: ap_id}) do
blocks = user.info["blocks"] || []
2018-06-03 19:01:37 +00:00
domain_blocks = user.info["domain_blocks"] || []
%{host: host} = URI.parse(ap_id)
2018-06-03 19:21:23 +00:00
Enum.member?(blocks, ap_id) ||
Enum.any?(domain_blocks, fn domain ->
host == domain
end)
2018-06-03 19:01:37 +00:00
end
def block_domain(user, domain) do
domain_blocks = user.info["domain_blocks"] || []
new_blocks = Enum.uniq([domain | domain_blocks])
new_info = Map.put(user.info, "domain_blocks", new_blocks)
cs = User.info_changeset(user, %{info: new_info})
update_and_set_cache(cs)
end
def unblock_domain(user, domain) do
blocks = user.info["domain_blocks"] || []
new_blocks = List.delete(blocks, domain)
new_info = Map.put(user.info, "domain_blocks", new_blocks)
cs = User.info_changeset(user, %{info: new_info})
update_and_set_cache(cs)
2017-11-02 20:57:37 +00:00
end
2017-11-30 13:59:44 +00:00
def local_user_query() do
2018-03-30 13:01:53 +00:00
from(u in User, where: u.local == true)
2017-11-30 13:59:44 +00:00
end
2018-03-30 13:01:53 +00:00
def deactivate(%User{} = user) do
2017-12-07 16:47:23 +00:00
new_info = Map.put(user.info, "deactivated", true)
cs = User.info_changeset(user, %{info: new_info})
2017-12-08 16:50:11 +00:00
update_and_set_cache(cs)
2017-12-07 16:47:23 +00:00
end
2017-12-07 17:13:05 +00:00
2018-03-30 13:01:53 +00:00
def delete(%User{} = user) do
2017-12-07 17:13:05 +00:00
{:ok, user} = User.deactivate(user)
# Remove all relationships
2018-03-30 13:01:53 +00:00
{:ok, followers} = User.get_followers(user)
2017-12-07 17:13:05 +00:00
followers
2018-03-30 13:01:53 +00:00
|> Enum.each(fn follower -> User.unfollow(follower, user) end)
2017-12-07 17:13:05 +00:00
{:ok, friends} = User.get_friends(user)
2018-03-30 13:01:53 +00:00
2017-12-07 17:13:05 +00:00
friends
2018-03-30 13:01:53 +00:00
|> Enum.each(fn followed -> User.unfollow(user, followed) end)
2017-12-07 17:13:05 +00:00
2018-03-30 13:01:53 +00:00
query = from(a in Activity, where: a.actor == ^user.ap_id)
2017-12-08 16:50:11 +00:00
Repo.all(query)
2018-03-30 13:01:53 +00:00
|> Enum.each(fn activity ->
2017-12-08 16:50:11 +00:00
case activity.data["type"] do
2018-03-30 13:01:53 +00:00
"Create" ->
ActivityPub.delete(Object.normalize(activity.data["object"]))
2018-03-30 13:01:53 +00:00
# TODO: Do something with likes, follows, repeats.
_ ->
"Doing nothing"
2017-12-08 16:50:11 +00:00
end
end)
2017-12-07 17:13:05 +00:00
:ok
end
def get_or_fetch_by_ap_id(ap_id) do
if user = get_by_ap_id(ap_id) do
user
else
2018-02-25 16:06:12 +00:00
ap_try = ActivityPub.make_user_from_ap_id(ap_id)
case ap_try do
2018-03-30 13:01:53 +00:00
{:ok, user} ->
user
2018-02-25 16:06:12 +00:00
_ ->
case OStatus.make_user(ap_id) do
{:ok, user} -> user
2018-03-19 17:57:58 +00:00
_ -> {:error, "Could not fetch by AP id"}
2018-02-25 16:06:12 +00:00
end
end
end
end
# AP style
2018-03-30 13:01:53 +00:00
def public_key_from_info(%{
"source_data" => %{"publicKey" => %{"publicKeyPem" => public_key_pem}}
}) do
key =
:public_key.pem_decode(public_key_pem)
|> hd()
|> :public_key.pem_entry_decode()
2018-03-30 13:01:53 +00:00
{:ok, key}
end
# OStatus Magic Key
def public_key_from_info(%{"magic_key" => magic_key}) do
{:ok, Pleroma.Web.Salmon.decode_key(magic_key)}
end
def get_public_key_for_ap_id(ap_id) do
with %User{} = user <- get_or_fetch_by_ap_id(ap_id),
{:ok, public_key} <- public_key_from_info(user.info) do
{:ok, public_key}
else
_ -> :error
end
end
2018-02-11 16:20:02 +00:00
defp blank?(""), do: nil
defp blank?(n), do: n
2018-02-11 16:20:02 +00:00
def insert_or_update_user(data) do
2018-03-30 13:01:53 +00:00
data =
data
|> Map.put(:name, blank?(data[:name]) || data[:nickname])
2018-02-11 16:20:02 +00:00
cs = User.remote_user_creation(data)
Repo.insert(cs, on_conflict: :replace_all, conflict_target: :nickname)
end
def ap_enabled?(%User{info: info}), do: info["ap_enabled"]
2018-02-25 15:40:37 +00:00
def ap_enabled?(_), do: false
2018-03-24 14:09:09 +00:00
def get_or_fetch(uri_or_nickname) do
if String.starts_with?(uri_or_nickname, "http") do
get_or_fetch_by_ap_id(uri_or_nickname)
else
get_or_fetch_by_nickname(uri_or_nickname)
end
end
2017-03-20 20:28:31 +00:00
end