2020-09-24 13:53:21 +00:00
|
|
|
use actix_web::{web, web::Data};
|
2021-04-01 17:30:24 +00:00
|
|
|
use captcha::Captcha;
|
2021-03-25 19:19:40 +00:00
|
|
|
use lemmy_api_common::{comment::*, community::*, person::*, post::*, site::*, websocket::*};
|
|
|
|
use lemmy_utils::{ConnectionId, LemmyError};
|
2020-09-24 13:53:21 +00:00
|
|
|
use lemmy_websocket::{serialize_websocket_message, LemmyContext, UserOperation};
|
|
|
|
use serde::Deserialize;
|
|
|
|
|
2021-03-25 19:19:40 +00:00
|
|
|
mod comment;
|
|
|
|
mod comment_report;
|
|
|
|
mod community;
|
|
|
|
mod local_user;
|
|
|
|
mod post;
|
|
|
|
mod post_report;
|
|
|
|
mod private_message;
|
|
|
|
mod site;
|
|
|
|
mod websocket;
|
2020-09-24 13:53:21 +00:00
|
|
|
|
|
|
|
#[async_trait::async_trait(?Send)]
|
|
|
|
pub trait Perform {
|
|
|
|
type Response: serde::ser::Serialize + Send;
|
|
|
|
|
|
|
|
async fn perform(
|
|
|
|
&self,
|
|
|
|
context: &Data<LemmyContext>,
|
|
|
|
websocket_id: Option<ConnectionId>,
|
|
|
|
) -> Result<Self::Response, LemmyError>;
|
|
|
|
}
|
|
|
|
|
|
|
|
pub async fn match_websocket_operation(
|
|
|
|
context: LemmyContext,
|
|
|
|
id: ConnectionId,
|
|
|
|
op: UserOperation,
|
|
|
|
data: &str,
|
|
|
|
) -> Result<String, LemmyError> {
|
|
|
|
match op {
|
|
|
|
// User ops
|
|
|
|
UserOperation::Login => do_websocket_operation::<Login>(context, id, op, data).await,
|
|
|
|
UserOperation::GetCaptcha => do_websocket_operation::<GetCaptcha>(context, id, op, data).await,
|
|
|
|
UserOperation::GetReplies => do_websocket_operation::<GetReplies>(context, id, op, data).await,
|
|
|
|
UserOperation::AddAdmin => do_websocket_operation::<AddAdmin>(context, id, op, data).await,
|
2021-03-10 22:33:55 +00:00
|
|
|
UserOperation::BanPerson => do_websocket_operation::<BanPerson>(context, id, op, data).await,
|
2021-08-19 20:54:15 +00:00
|
|
|
UserOperation::BlockPerson => {
|
|
|
|
do_websocket_operation::<BlockPerson>(context, id, op, data).await
|
|
|
|
}
|
2021-03-10 22:33:55 +00:00
|
|
|
UserOperation::GetPersonMentions => {
|
|
|
|
do_websocket_operation::<GetPersonMentions>(context, id, op, data).await
|
2020-09-24 13:53:21 +00:00
|
|
|
}
|
2021-03-10 22:33:55 +00:00
|
|
|
UserOperation::MarkPersonMentionAsRead => {
|
|
|
|
do_websocket_operation::<MarkPersonMentionAsRead>(context, id, op, data).await
|
2020-09-24 13:53:21 +00:00
|
|
|
}
|
|
|
|
UserOperation::MarkAllAsRead => {
|
|
|
|
do_websocket_operation::<MarkAllAsRead>(context, id, op, data).await
|
|
|
|
}
|
|
|
|
UserOperation::PasswordReset => {
|
|
|
|
do_websocket_operation::<PasswordReset>(context, id, op, data).await
|
|
|
|
}
|
|
|
|
UserOperation::PasswordChange => {
|
|
|
|
do_websocket_operation::<PasswordChange>(context, id, op, data).await
|
|
|
|
}
|
|
|
|
UserOperation::UserJoin => do_websocket_operation::<UserJoin>(context, id, op, data).await,
|
|
|
|
UserOperation::PostJoin => do_websocket_operation::<PostJoin>(context, id, op, data).await,
|
|
|
|
UserOperation::CommunityJoin => {
|
|
|
|
do_websocket_operation::<CommunityJoin>(context, id, op, data).await
|
|
|
|
}
|
2020-11-04 02:15:11 +00:00
|
|
|
UserOperation::ModJoin => do_websocket_operation::<ModJoin>(context, id, op, data).await,
|
2020-09-24 13:53:21 +00:00
|
|
|
UserOperation::SaveUserSettings => {
|
|
|
|
do_websocket_operation::<SaveUserSettings>(context, id, op, data).await
|
|
|
|
}
|
2021-04-01 21:39:01 +00:00
|
|
|
UserOperation::ChangePassword => {
|
|
|
|
do_websocket_operation::<ChangePassword>(context, id, op, data).await
|
|
|
|
}
|
2020-10-25 02:59:13 +00:00
|
|
|
UserOperation::GetReportCount => {
|
|
|
|
do_websocket_operation::<GetReportCount>(context, id, op, data).await
|
|
|
|
}
|
2020-09-24 13:53:21 +00:00
|
|
|
|
|
|
|
// Private Message ops
|
|
|
|
UserOperation::MarkPrivateMessageAsRead => {
|
|
|
|
do_websocket_operation::<MarkPrivateMessageAsRead>(context, id, op, data).await
|
|
|
|
}
|
|
|
|
|
|
|
|
// Site ops
|
|
|
|
UserOperation::GetModlog => do_websocket_operation::<GetModlog>(context, id, op, data).await,
|
|
|
|
UserOperation::GetSiteConfig => {
|
|
|
|
do_websocket_operation::<GetSiteConfig>(context, id, op, data).await
|
|
|
|
}
|
|
|
|
UserOperation::SaveSiteConfig => {
|
|
|
|
do_websocket_operation::<SaveSiteConfig>(context, id, op, data).await
|
|
|
|
}
|
|
|
|
UserOperation::Search => do_websocket_operation::<Search>(context, id, op, data).await,
|
2021-07-20 07:00:20 +00:00
|
|
|
UserOperation::ResolveObject => {
|
|
|
|
do_websocket_operation::<ResolveObject>(context, id, op, data).await
|
|
|
|
}
|
2020-09-24 13:53:21 +00:00
|
|
|
UserOperation::TransferCommunity => {
|
|
|
|
do_websocket_operation::<TransferCommunity>(context, id, op, data).await
|
|
|
|
}
|
|
|
|
UserOperation::TransferSite => {
|
|
|
|
do_websocket_operation::<TransferSite>(context, id, op, data).await
|
|
|
|
}
|
|
|
|
|
|
|
|
// Community ops
|
|
|
|
UserOperation::FollowCommunity => {
|
|
|
|
do_websocket_operation::<FollowCommunity>(context, id, op, data).await
|
|
|
|
}
|
2021-08-19 20:54:15 +00:00
|
|
|
UserOperation::BlockCommunity => {
|
|
|
|
do_websocket_operation::<BlockCommunity>(context, id, op, data).await
|
2020-09-24 13:53:21 +00:00
|
|
|
}
|
|
|
|
UserOperation::BanFromCommunity => {
|
|
|
|
do_websocket_operation::<BanFromCommunity>(context, id, op, data).await
|
|
|
|
}
|
|
|
|
UserOperation::AddModToCommunity => {
|
|
|
|
do_websocket_operation::<AddModToCommunity>(context, id, op, data).await
|
|
|
|
}
|
|
|
|
|
|
|
|
// Post ops
|
|
|
|
UserOperation::LockPost => do_websocket_operation::<LockPost>(context, id, op, data).await,
|
|
|
|
UserOperation::StickyPost => do_websocket_operation::<StickyPost>(context, id, op, data).await,
|
|
|
|
UserOperation::CreatePostLike => {
|
|
|
|
do_websocket_operation::<CreatePostLike>(context, id, op, data).await
|
|
|
|
}
|
|
|
|
UserOperation::SavePost => do_websocket_operation::<SavePost>(context, id, op, data).await,
|
2020-10-25 02:59:13 +00:00
|
|
|
UserOperation::CreatePostReport => {
|
|
|
|
do_websocket_operation::<CreatePostReport>(context, id, op, data).await
|
|
|
|
}
|
|
|
|
UserOperation::ListPostReports => {
|
|
|
|
do_websocket_operation::<ListPostReports>(context, id, op, data).await
|
|
|
|
}
|
|
|
|
UserOperation::ResolvePostReport => {
|
|
|
|
do_websocket_operation::<ResolvePostReport>(context, id, op, data).await
|
|
|
|
}
|
2021-08-19 14:12:49 +00:00
|
|
|
UserOperation::GetSiteMetadata => {
|
|
|
|
do_websocket_operation::<GetSiteMetadata>(context, id, op, data).await
|
|
|
|
}
|
2020-09-24 13:53:21 +00:00
|
|
|
|
|
|
|
// Comment ops
|
|
|
|
UserOperation::MarkCommentAsRead => {
|
|
|
|
do_websocket_operation::<MarkCommentAsRead>(context, id, op, data).await
|
|
|
|
}
|
|
|
|
UserOperation::SaveComment => {
|
|
|
|
do_websocket_operation::<SaveComment>(context, id, op, data).await
|
|
|
|
}
|
|
|
|
UserOperation::CreateCommentLike => {
|
|
|
|
do_websocket_operation::<CreateCommentLike>(context, id, op, data).await
|
|
|
|
}
|
2020-10-25 02:59:13 +00:00
|
|
|
UserOperation::CreateCommentReport => {
|
|
|
|
do_websocket_operation::<CreateCommentReport>(context, id, op, data).await
|
2020-10-21 00:31:01 +00:00
|
|
|
}
|
2020-10-25 02:59:13 +00:00
|
|
|
UserOperation::ListCommentReports => {
|
|
|
|
do_websocket_operation::<ListCommentReports>(context, id, op, data).await
|
2020-10-13 23:32:35 +00:00
|
|
|
}
|
2020-10-25 02:59:13 +00:00
|
|
|
UserOperation::ResolveCommentReport => {
|
|
|
|
do_websocket_operation::<ResolveCommentReport>(context, id, op, data).await
|
2020-10-13 23:32:35 +00:00
|
|
|
}
|
2020-09-24 13:53:21 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
async fn do_websocket_operation<'a, 'b, Data>(
|
|
|
|
context: LemmyContext,
|
|
|
|
id: ConnectionId,
|
|
|
|
op: UserOperation,
|
|
|
|
data: &str,
|
|
|
|
) -> Result<String, LemmyError>
|
|
|
|
where
|
|
|
|
for<'de> Data: Deserialize<'de> + 'a,
|
|
|
|
Data: Perform,
|
|
|
|
{
|
2021-07-05 16:07:26 +00:00
|
|
|
let parsed_data: Data = serde_json::from_str(data)?;
|
2020-09-24 13:53:21 +00:00
|
|
|
let res = parsed_data
|
|
|
|
.perform(&web::Data::new(context), Some(id))
|
|
|
|
.await?;
|
|
|
|
serialize_websocket_message(&op, &res)
|
|
|
|
}
|
|
|
|
|
2021-04-01 17:30:24 +00:00
|
|
|
/// Converts the captcha to a base64 encoded wav audio file
|
|
|
|
pub(crate) fn captcha_as_wav_base64(captcha: &Captcha) -> String {
|
|
|
|
let letters = captcha.as_wav();
|
2020-09-24 13:53:21 +00:00
|
|
|
|
2021-04-01 17:30:24 +00:00
|
|
|
let mut concat_letters: Vec<u8> = Vec::new();
|
2020-09-24 13:53:21 +00:00
|
|
|
|
2021-04-01 17:30:24 +00:00
|
|
|
for letter in letters {
|
|
|
|
let bytes = letter.unwrap_or_default();
|
|
|
|
concat_letters.extend(bytes);
|
2020-09-24 13:53:21 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
// Convert to base64
|
2021-04-01 17:30:24 +00:00
|
|
|
base64::encode(concat_letters)
|
2020-09-24 13:53:21 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
#[cfg(test)]
|
|
|
|
mod tests {
|
2021-03-25 19:19:40 +00:00
|
|
|
use lemmy_api_common::check_validator_time;
|
2021-09-20 15:46:34 +00:00
|
|
|
use lemmy_db_queries::{
|
|
|
|
establish_unpooled_connection,
|
2021-09-22 15:57:09 +00:00
|
|
|
source::{local_user::LocalUser_, secret::Secret_},
|
2021-09-20 15:46:34 +00:00
|
|
|
Crud,
|
|
|
|
};
|
2021-03-19 04:31:49 +00:00
|
|
|
use lemmy_db_schema::source::{
|
|
|
|
local_user::{LocalUser, LocalUserForm},
|
|
|
|
person::{Person, PersonForm},
|
2021-09-20 15:46:34 +00:00
|
|
|
secret::Secret,
|
2021-03-13 18:16:35 +00:00
|
|
|
};
|
2021-09-22 15:57:09 +00:00
|
|
|
use lemmy_utils::{claims::Claims, settings::structs::Settings};
|
2021-03-13 18:16:35 +00:00
|
|
|
|
2021-03-19 04:31:49 +00:00
|
|
|
#[test]
|
|
|
|
fn test_should_not_validate_user_token_after_password_change() {
|
|
|
|
let conn = establish_unpooled_connection();
|
2021-09-22 15:57:09 +00:00
|
|
|
let secret = Secret::init(&conn).unwrap();
|
|
|
|
let settings = Settings::init().unwrap();
|
2021-03-13 18:16:35 +00:00
|
|
|
|
2021-03-19 04:31:49 +00:00
|
|
|
let new_person = PersonForm {
|
|
|
|
name: "Gerry9812".into(),
|
2021-03-20 20:59:07 +00:00
|
|
|
..PersonForm::default()
|
2021-03-13 18:16:35 +00:00
|
|
|
};
|
|
|
|
|
2021-03-19 04:31:49 +00:00
|
|
|
let inserted_person = Person::create(&conn, &new_person).unwrap();
|
2021-03-13 18:16:35 +00:00
|
|
|
|
2021-03-19 04:31:49 +00:00
|
|
|
let local_user_form = LocalUserForm {
|
|
|
|
person_id: inserted_person.id,
|
|
|
|
password_encrypted: "123456".to_string(),
|
2021-03-20 20:59:07 +00:00
|
|
|
..LocalUserForm::default()
|
2021-03-19 04:31:49 +00:00
|
|
|
};
|
2021-03-13 20:36:40 +00:00
|
|
|
|
2021-03-19 04:31:49 +00:00
|
|
|
let inserted_local_user = LocalUser::create(&conn, &local_user_form).unwrap();
|
2021-03-13 18:16:35 +00:00
|
|
|
|
2021-09-22 15:57:09 +00:00
|
|
|
let jwt = Claims::jwt(
|
|
|
|
inserted_local_user.id.0,
|
|
|
|
&secret.jwt_secret,
|
|
|
|
&settings.hostname,
|
|
|
|
)
|
|
|
|
.unwrap();
|
|
|
|
let claims = Claims::decode(&jwt, &secret.jwt_secret).unwrap().claims;
|
2021-03-19 04:31:49 +00:00
|
|
|
let check = check_validator_time(&inserted_local_user.validator_time, &claims);
|
|
|
|
assert!(check.is_ok());
|
2021-03-13 18:16:35 +00:00
|
|
|
|
2021-03-19 04:31:49 +00:00
|
|
|
// The check should fail, since the validator time is now newer than the jwt issue time
|
|
|
|
let updated_local_user =
|
2021-07-05 16:07:26 +00:00
|
|
|
LocalUser::update_password(&conn, inserted_local_user.id, "password111").unwrap();
|
2021-03-19 04:31:49 +00:00
|
|
|
let check_after = check_validator_time(&updated_local_user.validator_time, &claims);
|
|
|
|
assert!(check_after.is_err());
|
2021-03-13 18:16:35 +00:00
|
|
|
|
2021-03-19 04:31:49 +00:00
|
|
|
let num_deleted = Person::delete(&conn, inserted_person.id).unwrap();
|
|
|
|
assert_eq!(1, num_deleted);
|
2021-03-13 18:16:35 +00:00
|
|
|
}
|
2020-09-24 13:53:21 +00:00
|
|
|
}
|