2020-05-16 14:04:08 +00:00
use crate ::{
2020-07-10 18:15:41 +00:00
api ::{ claims ::Claims , APIError , Oper , Perform } ,
apub ::ApubObjectType ,
2020-07-01 12:54:29 +00:00
blocking ,
2020-07-10 18:15:41 +00:00
websocket ::{
server ::{ JoinUserRoom , SendAllMessage , SendUserRoomMessage } ,
UserOperation ,
WebsocketInfo ,
2020-05-16 14:04:08 +00:00
} ,
2020-07-10 18:15:41 +00:00
DbPool ,
LemmyError ,
} ;
use bcrypt ::verify ;
use lemmy_db ::{
comment ::* ,
comment_view ::* ,
community ::* ,
community_view ::* ,
moderator ::* ,
naive_now ,
password_reset_request ::* ,
post ::* ,
post_view ::* ,
private_message ::* ,
private_message_view ::* ,
site ::* ,
site_view ::* ,
user ::* ,
user_mention ::* ,
user_mention_view ::* ,
user_view ::* ,
Crud ,
Followable ,
Joinable ,
ListingType ,
SortType ,
} ;
use lemmy_utils ::{
generate_actor_keypair ,
2020-05-16 14:04:08 +00:00
generate_random_string ,
2020-06-09 12:01:26 +00:00
is_valid_username ,
2020-07-10 18:15:41 +00:00
make_apub_endpoint ,
2020-05-16 14:04:08 +00:00
naive_from_unix ,
remove_slurs ,
send_email ,
settings ::Settings ,
slur_check ,
slurs_vec_to_str ,
2020-07-10 18:15:41 +00:00
EndpointType ,
2020-05-16 14:04:08 +00:00
} ;
use log ::error ;
use serde ::{ Deserialize , Serialize } ;
use std ::str ::FromStr ;
2019-05-05 05:20:38 +00:00
#[ derive(Serialize, Deserialize, Debug) ]
pub struct Login {
username_or_email : String ,
2019-09-07 15:35:05 +00:00
password : String ,
2019-05-05 05:20:38 +00:00
}
#[ derive(Serialize, Deserialize) ]
pub struct Register {
2020-03-26 14:23:15 +00:00
pub username : String ,
pub email : Option < String > ,
pub password : String ,
pub password_verify : String ,
pub admin : bool ,
pub show_nsfw : bool ,
2019-08-14 02:52:43 +00:00
}
#[ derive(Serialize, Deserialize) ]
pub struct SaveUserSettings {
show_nsfw : bool ,
2019-10-15 19:21:27 +00:00
theme : String ,
2019-10-21 04:21:54 +00:00
default_sort_type : i16 ,
default_listing_type : i16 ,
2019-12-09 08:24:53 +00:00
lang : String ,
2019-12-29 20:39:48 +00:00
avatar : Option < String > ,
2020-01-01 20:46:14 +00:00
email : Option < String > ,
2020-01-22 21:35:29 +00:00
matrix_user_id : Option < String > ,
2020-01-01 20:46:14 +00:00
new_password : Option < String > ,
new_password_verify : Option < String > ,
old_password : Option < String > ,
2020-01-02 21:55:54 +00:00
show_avatars : bool ,
send_notifications_to_email : bool ,
2019-08-14 02:52:43 +00:00
auth : String ,
2019-05-05 05:20:38 +00:00
}
#[ derive(Serialize, Deserialize) ]
pub struct LoginResponse {
2020-03-26 14:23:15 +00:00
pub jwt : String ,
2019-05-05 05:20:38 +00:00
}
#[ derive(Serialize, Deserialize) ]
pub struct GetUserDetails {
user_id : Option < i32 > ,
username : Option < String > ,
sort : String ,
page : Option < i64 > ,
limit : Option < i64 > ,
community_id : Option < i32 > ,
saved_only : bool ,
auth : Option < String > ,
}
#[ derive(Serialize, Deserialize) ]
pub struct GetUserDetailsResponse {
user : UserView ,
follows : Vec < CommunityFollowerView > ,
moderates : Vec < CommunityModeratorView > ,
comments : Vec < CommentView > ,
posts : Vec < PostView > ,
}
#[ derive(Serialize, Deserialize) ]
pub struct GetRepliesResponse {
replies : Vec < ReplyView > ,
}
2019-10-20 00:46:29 +00:00
#[ derive(Serialize, Deserialize) ]
pub struct GetUserMentionsResponse {
mentions : Vec < UserMentionView > ,
}
2019-05-05 05:20:38 +00:00
#[ derive(Serialize, Deserialize) ]
pub struct MarkAllAsRead {
2019-09-07 15:35:05 +00:00
auth : String ,
2019-05-05 05:20:38 +00:00
}
#[ derive(Serialize, Deserialize) ]
pub struct AddAdmin {
user_id : i32 ,
added : bool ,
2019-09-07 15:35:05 +00:00
auth : String ,
2019-05-05 05:20:38 +00:00
}
2020-04-19 22:08:25 +00:00
#[ derive(Serialize, Deserialize, Clone) ]
2019-05-05 05:20:38 +00:00
pub struct AddAdminResponse {
admins : Vec < UserView > ,
}
#[ derive(Serialize, Deserialize) ]
pub struct BanUser {
user_id : i32 ,
ban : bool ,
reason : Option < String > ,
expires : Option < i64 > ,
2019-09-07 15:35:05 +00:00
auth : String ,
2019-05-05 05:20:38 +00:00
}
2020-04-19 22:08:25 +00:00
#[ derive(Serialize, Deserialize, Clone) ]
2019-05-05 05:20:38 +00:00
pub struct BanUserResponse {
user : UserView ,
banned : bool ,
}
#[ derive(Serialize, Deserialize) ]
pub struct GetReplies {
sort : String ,
page : Option < i64 > ,
limit : Option < i64 > ,
unread_only : bool ,
2019-09-07 15:35:05 +00:00
auth : String ,
2019-05-05 05:20:38 +00:00
}
2019-10-20 00:46:29 +00:00
#[ derive(Serialize, Deserialize) ]
pub struct GetUserMentions {
sort : String ,
page : Option < i64 > ,
limit : Option < i64 > ,
unread_only : bool ,
auth : String ,
}
#[ derive(Serialize, Deserialize) ]
2020-07-20 14:56:40 +00:00
pub struct MarkUserMentionAsRead {
2019-10-20 00:46:29 +00:00
user_mention_id : i32 ,
2020-07-20 14:56:40 +00:00
read : bool ,
2019-10-20 00:46:29 +00:00
auth : String ,
}
#[ derive(Serialize, Deserialize, Clone) ]
pub struct UserMentionResponse {
mention : UserMentionView ,
}
2019-10-15 22:09:01 +00:00
#[ derive(Serialize, Deserialize) ]
pub struct DeleteAccount {
2019-10-18 04:25:23 +00:00
password : String ,
2019-10-15 22:09:01 +00:00
auth : String ,
}
2019-10-30 03:35:39 +00:00
#[ derive(Serialize, Deserialize) ]
pub struct PasswordReset {
email : String ,
}
#[ derive(Serialize, Deserialize, Clone) ]
2020-01-16 14:39:08 +00:00
pub struct PasswordResetResponse { }
2019-10-30 03:35:39 +00:00
#[ derive(Serialize, Deserialize) ]
pub struct PasswordChange {
token : String ,
password : String ,
password_verify : String ,
}
2020-01-22 21:35:29 +00:00
#[ derive(Serialize, Deserialize) ]
pub struct CreatePrivateMessage {
content : String ,
2020-02-01 01:02:20 +00:00
pub recipient_id : i32 ,
2020-01-22 21:35:29 +00:00
auth : String ,
}
#[ derive(Serialize, Deserialize) ]
pub struct EditPrivateMessage {
edit_id : i32 ,
2020-07-20 04:29:44 +00:00
content : String ,
auth : String ,
}
#[ derive(Serialize, Deserialize) ]
pub struct DeletePrivateMessage {
edit_id : i32 ,
deleted : bool ,
auth : String ,
}
#[ derive(Serialize, Deserialize) ]
pub struct MarkPrivateMessageAsRead {
edit_id : i32 ,
read : bool ,
2020-01-22 21:35:29 +00:00
auth : String ,
}
#[ derive(Serialize, Deserialize) ]
pub struct GetPrivateMessages {
unread_only : bool ,
page : Option < i64 > ,
limit : Option < i64 > ,
auth : String ,
}
#[ derive(Serialize, Deserialize, Clone) ]
pub struct PrivateMessagesResponse {
messages : Vec < PrivateMessageView > ,
}
#[ derive(Serialize, Deserialize, Clone) ]
pub struct PrivateMessageResponse {
2020-05-06 02:06:24 +00:00
pub message : PrivateMessageView ,
2020-01-22 21:35:29 +00:00
}
2020-02-01 01:02:20 +00:00
#[ derive(Serialize, Deserialize, Debug) ]
pub struct UserJoin {
auth : String ,
}
#[ derive(Serialize, Deserialize, Clone) ]
pub struct UserJoinResponse {
pub user_id : i32 ,
}
2020-07-01 12:54:29 +00:00
#[ async_trait::async_trait(?Send) ]
2020-04-20 03:59:07 +00:00
impl Perform for Oper < Login > {
type Response = LoginResponse ;
2020-07-01 12:54:29 +00:00
async fn perform (
2020-04-19 22:08:25 +00:00
& self ,
2020-07-01 12:54:29 +00:00
pool : & DbPool ,
2020-04-19 22:08:25 +00:00
_websocket_info : Option < WebsocketInfo > ,
2020-07-01 12:54:29 +00:00
) -> Result < LoginResponse , LemmyError > {
2019-05-05 16:20:30 +00:00
let data : & Login = & self . data ;
2019-05-05 05:20:38 +00:00
// Fetch that username / email
2020-07-01 12:54:29 +00:00
let username_or_email = data . username_or_email . clone ( ) ;
let user = match blocking ( pool , move | conn | {
2020-07-20 19:32:15 +00:00
User_ ::find_by_email_or_username ( conn , & username_or_email )
2020-07-01 12:54:29 +00:00
} )
. await ?
{
2019-05-05 05:20:38 +00:00
Ok ( user ) = > user ,
2020-01-16 14:39:08 +00:00
Err ( _e ) = > return Err ( APIError ::err ( " couldnt_find_that_username_or_email " ) . into ( ) ) ,
2019-05-05 05:20:38 +00:00
} ;
// Verify the password
let valid : bool = verify ( & data . password , & user . password_encrypted ) . unwrap_or ( false ) ;
if ! valid {
2020-01-16 14:39:08 +00:00
return Err ( APIError ::err ( " password_incorrect " ) . into ( ) ) ;
2019-05-05 05:20:38 +00:00
}
// Return the jwt
2020-07-10 18:15:41 +00:00
Ok ( LoginResponse {
jwt : Claims ::jwt ( user , Settings ::get ( ) . hostname ) ,
} )
2019-05-05 05:20:38 +00:00
}
}
2020-07-01 12:54:29 +00:00
#[ async_trait::async_trait(?Send) ]
2020-04-20 03:59:07 +00:00
impl Perform for Oper < Register > {
type Response = LoginResponse ;
2020-07-01 12:54:29 +00:00
async fn perform (
2020-04-19 22:08:25 +00:00
& self ,
2020-07-01 12:54:29 +00:00
pool : & DbPool ,
2020-04-19 22:08:25 +00:00
_websocket_info : Option < WebsocketInfo > ,
2020-07-01 12:54:29 +00:00
) -> Result < LoginResponse , LemmyError > {
2019-05-05 16:20:30 +00:00
let data : & Register = & self . data ;
2019-05-05 05:20:38 +00:00
2019-12-11 20:21:47 +00:00
// Make sure site has open registration
2020-07-01 12:54:29 +00:00
if let Ok ( site ) = blocking ( pool , move | conn | SiteView ::read ( conn ) ) . await ? {
let site : SiteView = site ;
2019-12-11 20:21:47 +00:00
if ! site . open_registration {
2020-01-16 14:39:08 +00:00
return Err ( APIError ::err ( " registration_closed " ) . into ( ) ) ;
2019-12-11 20:21:47 +00:00
}
}
2019-05-05 05:20:38 +00:00
// Make sure passwords match
2020-01-02 11:30:00 +00:00
if data . password ! = data . password_verify {
2020-01-16 14:39:08 +00:00
return Err ( APIError ::err ( " passwords_dont_match " ) . into ( ) ) ;
2019-05-05 05:20:38 +00:00
}
2020-02-03 03:51:54 +00:00
if let Err ( slurs ) = slur_check ( & data . username ) {
return Err ( APIError ::err ( & slurs_vec_to_str ( slurs ) ) . into ( ) ) ;
2019-05-05 05:20:38 +00:00
}
// Make sure there are no admins
2020-07-01 12:54:29 +00:00
let any_admins = blocking ( pool , move | conn | {
UserView ::admins ( conn ) . map ( | a | a . is_empty ( ) )
} )
. await ? ? ;
if data . admin & & ! any_admins {
2020-01-16 14:39:08 +00:00
return Err ( APIError ::err ( " admin_already_created " ) . into ( ) ) ;
2019-05-05 05:20:38 +00:00
}
2020-04-24 14:04:36 +00:00
let user_keypair = generate_actor_keypair ( ) ? ;
2020-05-28 18:07:36 +00:00
if ! is_valid_username ( & data . username ) {
return Err ( APIError ::err ( " invalid_username " ) . into ( ) ) ;
}
2020-04-03 04:12:05 +00:00
2019-05-05 05:20:38 +00:00
// Register the new user
let user_form = UserForm {
name : data . username . to_owned ( ) ,
email : data . email . to_owned ( ) ,
2020-01-22 21:35:29 +00:00
matrix_user_id : None ,
2019-12-29 20:39:48 +00:00
avatar : None ,
2019-05-05 05:20:38 +00:00
password_encrypted : data . password . to_owned ( ) ,
preferred_username : None ,
updated : None ,
admin : data . admin ,
banned : false ,
2019-08-14 02:52:43 +00:00
show_nsfw : data . show_nsfw ,
2019-10-15 19:21:27 +00:00
theme : " darkly " . into ( ) ,
2019-10-21 04:21:54 +00:00
default_sort_type : SortType ::Hot as i16 ,
default_listing_type : ListingType ::Subscribed as i16 ,
2019-12-09 08:24:53 +00:00
lang : " browser " . into ( ) ,
2020-01-02 21:55:54 +00:00
show_avatars : true ,
send_notifications_to_email : false ,
2020-04-03 04:12:05 +00:00
actor_id : make_apub_endpoint ( EndpointType ::User , & data . username ) . to_string ( ) ,
bio : None ,
local : true ,
2020-04-24 14:04:36 +00:00
private_key : Some ( user_keypair . private_key ) ,
public_key : Some ( user_keypair . public_key ) ,
2020-04-03 04:12:05 +00:00
last_refreshed_at : None ,
2019-05-05 05:20:38 +00:00
} ;
// Create the user
2020-07-01 12:54:29 +00:00
let inserted_user = match blocking ( pool , move | conn | User_ ::register ( conn , & user_form ) ) . await ? {
2019-05-05 05:20:38 +00:00
Ok ( user ) = > user ,
2020-01-18 01:34:16 +00:00
Err ( e ) = > {
let err_type = if e . to_string ( )
= = " duplicate key value violates unique constraint \" user__email_key \" "
{
" email_already_exists "
} else {
" user_already_exists "
} ;
2020-01-16 14:39:08 +00:00
return Err ( APIError ::err ( err_type ) . into ( ) ) ;
2020-01-18 01:34:16 +00:00
}
2019-05-05 05:20:38 +00:00
} ;
2020-04-24 14:04:36 +00:00
let main_community_keypair = generate_actor_keypair ( ) ? ;
2020-04-03 04:12:05 +00:00
2019-06-02 16:34:45 +00:00
// Create the main community if it doesn't exist
2020-07-01 12:54:29 +00:00
let main_community = match blocking ( pool , move | conn | Community ::read ( conn , 2 ) ) . await ? {
2019-06-02 16:34:45 +00:00
Ok ( c ) = > c ,
Err ( _e ) = > {
2020-04-03 04:12:05 +00:00
let default_community_name = " main " ;
2019-06-02 16:34:45 +00:00
let community_form = CommunityForm {
2020-04-03 04:12:05 +00:00
name : default_community_name . to_string ( ) ,
2019-06-02 16:34:45 +00:00
title : " The Default Community " . to_string ( ) ,
description : Some ( " The Default Community " . to_string ( ) ) ,
category_id : 1 ,
2019-08-14 02:52:43 +00:00
nsfw : false ,
2019-06-02 16:34:45 +00:00
creator_id : inserted_user . id ,
removed : None ,
deleted : None ,
updated : None ,
2020-04-03 04:12:05 +00:00
actor_id : make_apub_endpoint ( EndpointType ::Community , default_community_name ) . to_string ( ) ,
local : true ,
2020-04-24 14:04:36 +00:00
private_key : Some ( main_community_keypair . private_key ) ,
public_key : Some ( main_community_keypair . public_key ) ,
2020-04-03 04:12:05 +00:00
last_refreshed_at : None ,
2020-04-07 16:47:19 +00:00
published : None ,
2019-06-02 16:34:45 +00:00
} ;
2020-07-01 12:54:29 +00:00
blocking ( pool , move | conn | Community ::create ( conn , & community_form ) ) . await ? ?
2019-06-02 16:34:45 +00:00
}
} ;
// Sign them up for main community no matter what
let community_follower_form = CommunityFollowerForm {
community_id : main_community . id ,
user_id : inserted_user . id ,
} ;
2020-07-01 12:54:29 +00:00
let follow = move | conn : & '_ _ | CommunityFollower ::follow ( conn , & community_follower_form ) ;
if blocking ( pool , follow ) . await ? . is_err ( ) {
return Err ( APIError ::err ( " community_follower_already_exists " ) . into ( ) ) ;
} ;
2019-06-02 16:34:45 +00:00
// If its an admin, add them as a mod and follower to main
if data . admin {
let community_moderator_form = CommunityModeratorForm {
community_id : main_community . id ,
user_id : inserted_user . id ,
} ;
2020-07-01 12:54:29 +00:00
let join = move | conn : & '_ _ | CommunityModerator ::join ( conn , & community_moderator_form ) ;
if blocking ( pool , join ) . await ? . is_err ( ) {
return Err ( APIError ::err ( " community_moderator_already_exists " ) . into ( ) ) ;
}
2019-06-02 16:34:45 +00:00
}
2019-05-05 05:20:38 +00:00
// Return the jwt
2019-09-07 15:35:05 +00:00
Ok ( LoginResponse {
2020-07-10 18:15:41 +00:00
jwt : Claims ::jwt ( inserted_user , Settings ::get ( ) . hostname ) ,
2019-09-07 15:35:05 +00:00
} )
2019-05-05 05:20:38 +00:00
}
}
2020-07-01 12:54:29 +00:00
#[ async_trait::async_trait(?Send) ]
2020-04-20 03:59:07 +00:00
impl Perform for Oper < SaveUserSettings > {
type Response = LoginResponse ;
2020-07-01 12:54:29 +00:00
async fn perform (
2020-04-19 22:08:25 +00:00
& self ,
2020-07-01 12:54:29 +00:00
pool : & DbPool ,
2020-04-19 22:08:25 +00:00
_websocket_info : Option < WebsocketInfo > ,
2020-07-01 12:54:29 +00:00
) -> Result < LoginResponse , LemmyError > {
2019-08-14 02:52:43 +00:00
let data : & SaveUserSettings = & self . data ;
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
2020-01-16 14:39:08 +00:00
Err ( _e ) = > return Err ( APIError ::err ( " not_logged_in " ) . into ( ) ) ,
2019-08-14 02:52:43 +00:00
} ;
let user_id = claims . id ;
2019-09-07 15:35:05 +00:00
2020-07-01 12:54:29 +00:00
let read_user = blocking ( pool , move | conn | User_ ::read ( conn , user_id ) ) . await ? ? ;
2019-08-14 02:52:43 +00:00
2020-01-01 20:46:14 +00:00
let email = match & data . email {
Some ( email ) = > Some ( email . to_owned ( ) ) ,
None = > read_user . email ,
} ;
2020-07-10 00:04:09 +00:00
let avatar = match & data . avatar {
Some ( avatar ) = > Some ( avatar . to_owned ( ) ) ,
None = > read_user . avatar ,
} ;
2020-01-01 20:46:14 +00:00
let password_encrypted = match & data . new_password {
Some ( new_password ) = > {
match & data . new_password_verify {
Some ( new_password_verify ) = > {
// Make sure passwords match
if new_password ! = new_password_verify {
2020-01-16 14:39:08 +00:00
return Err ( APIError ::err ( " passwords_dont_match " ) . into ( ) ) ;
2020-01-01 20:46:14 +00:00
}
// Check the old password
match & data . old_password {
Some ( old_password ) = > {
let valid : bool =
verify ( old_password , & read_user . password_encrypted ) . unwrap_or ( false ) ;
if ! valid {
2020-01-16 14:39:08 +00:00
return Err ( APIError ::err ( " password_incorrect " ) . into ( ) ) ;
2020-01-01 20:46:14 +00:00
}
2020-07-01 12:54:29 +00:00
let new_password = new_password . to_owned ( ) ;
let user = blocking ( pool , move | conn | {
User_ ::update_password ( conn , user_id , & new_password )
} )
. await ? ? ;
user . password_encrypted
2020-01-01 20:46:14 +00:00
}
2020-01-16 14:39:08 +00:00
None = > return Err ( APIError ::err ( " password_incorrect " ) . into ( ) ) ,
2020-01-01 20:46:14 +00:00
}
}
2020-01-16 14:39:08 +00:00
None = > return Err ( APIError ::err ( " passwords_dont_match " ) . into ( ) ) ,
2020-01-01 20:46:14 +00:00
}
}
None = > read_user . password_encrypted ,
} ;
2019-08-14 02:52:43 +00:00
let user_form = UserForm {
name : read_user . name ,
2020-01-01 20:46:14 +00:00
email ,
2020-01-22 21:35:29 +00:00
matrix_user_id : data . matrix_user_id . to_owned ( ) ,
2020-07-10 00:04:09 +00:00
avatar ,
2020-01-01 20:46:14 +00:00
password_encrypted ,
2019-08-14 02:52:43 +00:00
preferred_username : read_user . preferred_username ,
updated : Some ( naive_now ( ) ) ,
admin : read_user . admin ,
banned : read_user . banned ,
show_nsfw : data . show_nsfw ,
2019-10-15 19:21:27 +00:00
theme : data . theme . to_owned ( ) ,
2019-10-21 04:21:54 +00:00
default_sort_type : data . default_sort_type ,
default_listing_type : data . default_listing_type ,
2019-12-09 08:24:53 +00:00
lang : data . lang . to_owned ( ) ,
2020-01-02 21:55:54 +00:00
show_avatars : data . show_avatars ,
send_notifications_to_email : data . send_notifications_to_email ,
2020-04-03 04:12:05 +00:00
actor_id : read_user . actor_id ,
bio : read_user . bio ,
local : read_user . local ,
private_key : read_user . private_key ,
public_key : read_user . public_key ,
last_refreshed_at : None ,
2019-08-14 02:52:43 +00:00
} ;
2020-07-01 12:54:29 +00:00
let res = blocking ( pool , move | conn | User_ ::update ( conn , user_id , & user_form ) ) . await ? ;
let updated_user : User_ = match res {
2019-08-14 02:52:43 +00:00
Ok ( user ) = > user ,
2020-01-18 01:34:16 +00:00
Err ( e ) = > {
let err_type = if e . to_string ( )
= = " duplicate key value violates unique constraint \" user__email_key \" "
{
" email_already_exists "
} else {
" user_already_exists "
} ;
2020-01-16 14:39:08 +00:00
return Err ( APIError ::err ( err_type ) . into ( ) ) ;
2020-01-18 01:34:16 +00:00
}
2019-08-14 02:52:43 +00:00
} ;
// Return the jwt
2019-09-07 15:35:05 +00:00
Ok ( LoginResponse {
2020-07-10 18:15:41 +00:00
jwt : Claims ::jwt ( updated_user , Settings ::get ( ) . hostname ) ,
2019-09-07 15:35:05 +00:00
} )
2019-08-14 02:52:43 +00:00
}
}
2019-05-05 05:20:38 +00:00
2020-07-01 12:54:29 +00:00
#[ async_trait::async_trait(?Send) ]
2020-04-20 03:59:07 +00:00
impl Perform for Oper < GetUserDetails > {
type Response = GetUserDetailsResponse ;
2020-07-01 12:54:29 +00:00
async fn perform (
2020-04-19 22:08:25 +00:00
& self ,
2020-07-01 12:54:29 +00:00
pool : & DbPool ,
2020-04-19 22:08:25 +00:00
_websocket_info : Option < WebsocketInfo > ,
2020-07-01 12:54:29 +00:00
) -> Result < GetUserDetailsResponse , LemmyError > {
2019-05-05 16:20:30 +00:00
let data : & GetUserDetails = & self . data ;
2019-05-05 05:20:38 +00:00
2019-08-14 02:52:43 +00:00
let user_claims : Option < Claims > = match & data . auth {
2019-09-07 15:35:05 +00:00
Some ( auth ) = > match Claims ::decode ( & auth ) {
Ok ( claims ) = > Some ( claims . claims ) ,
Err ( _e ) = > None ,
} ,
None = > None ,
2019-05-05 05:20:38 +00:00
} ;
2019-09-07 15:35:05 +00:00
2019-08-14 02:52:43 +00:00
let user_id = match & user_claims {
Some ( claims ) = > Some ( claims . id ) ,
2019-09-07 15:35:05 +00:00
None = > None ,
2019-08-14 02:52:43 +00:00
} ;
let show_nsfw = match & user_claims {
Some ( claims ) = > claims . show_nsfw ,
2019-09-07 15:35:05 +00:00
None = > false ,
2019-08-14 02:52:43 +00:00
} ;
2019-05-05 05:20:38 +00:00
let sort = SortType ::from_str ( & data . sort ) ? ;
2020-07-01 12:54:29 +00:00
let username = data
. username
. to_owned ( )
. unwrap_or_else ( | | " admin " . to_string ( ) ) ;
2019-05-05 05:20:38 +00:00
let user_details_id = match data . user_id {
Some ( id ) = > id ,
2019-09-07 15:35:05 +00:00
None = > {
2020-07-01 12:54:29 +00:00
let user = blocking ( pool , move | conn | User_ ::read_from_name ( conn , & username ) ) . await ? ;
match user {
2019-12-29 01:58:01 +00:00
Ok ( user ) = > user . id ,
2020-01-16 14:39:08 +00:00
Err ( _e ) = > return Err ( APIError ::err ( " couldnt_find_that_username_or_email " ) . into ( ) ) ,
2019-12-29 01:58:01 +00:00
}
2019-09-07 15:35:05 +00:00
}
2019-05-05 05:20:38 +00:00
} ;
2020-07-01 12:54:29 +00:00
let mut user_view = blocking ( pool , move | conn | UserView ::read ( conn , user_details_id ) ) . await ? ? ;
let page = data . page ;
let limit = data . limit ;
let saved_only = data . saved_only ;
let community_id = data . community_id ;
let ( posts , comments ) = blocking ( pool , move | conn | {
let mut posts_query = PostQueryBuilder ::create ( conn )
. sort ( & sort )
. show_nsfw ( show_nsfw )
. saved_only ( saved_only )
. for_community_id ( community_id )
. my_user_id ( user_id )
. page ( page )
. limit ( limit ) ;
let mut comments_query = CommentQueryBuilder ::create ( conn )
. sort ( & sort )
. saved_only ( saved_only )
. my_user_id ( user_id )
. page ( page )
. limit ( limit ) ;
// If its saved only, you don't care what creator it was
// Or, if its not saved, then you only want it for that specific creator
if ! saved_only {
posts_query = posts_query . for_creator_id ( user_details_id ) ;
comments_query = comments_query . for_creator_id ( user_details_id ) ;
}
let posts = posts_query . list ( ) ? ;
let comments = comments_query . list ( ) ? ;
Ok ( ( posts , comments ) ) as Result < _ , LemmyError >
} )
. await ? ? ;
let follows = blocking ( pool , move | conn | {
CommunityFollowerView ::for_user ( conn , user_details_id )
} )
. await ? ? ;
let moderates = blocking ( pool , move | conn | {
CommunityModeratorView ::for_user ( conn , user_details_id )
} )
. await ? ? ;
2019-12-07 12:03:03 +00:00
2020-07-15 14:00:55 +00:00
// If its not the same user, remove the email, and settings
// TODO an if let chain would be better here, but can't figure it out
// TODO separate out settings into its own thing
if user_id . is_none ( ) | | user_details_id ! = user_id . unwrap_or ( 0 ) {
2020-03-05 20:46:33 +00:00
user_view . email = None ;
}
2019-05-05 05:20:38 +00:00
// Return the jwt
2019-09-07 15:35:05 +00:00
Ok ( GetUserDetailsResponse {
user : user_view ,
2019-12-09 19:08:19 +00:00
follows ,
moderates ,
comments ,
posts ,
2019-09-07 15:35:05 +00:00
} )
2019-05-05 05:20:38 +00:00
}
}
2020-07-01 12:54:29 +00:00
#[ async_trait::async_trait(?Send) ]
2020-04-20 03:59:07 +00:00
impl Perform for Oper < AddAdmin > {
type Response = AddAdminResponse ;
2020-07-01 12:54:29 +00:00
async fn perform (
2020-04-19 22:08:25 +00:00
& self ,
2020-07-01 12:54:29 +00:00
pool : & DbPool ,
2020-04-19 22:08:25 +00:00
websocket_info : Option < WebsocketInfo > ,
2020-07-01 12:54:29 +00:00
) -> Result < AddAdminResponse , LemmyError > {
2019-05-05 16:20:30 +00:00
let data : & AddAdmin = & self . data ;
2019-05-05 05:20:38 +00:00
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
2020-01-16 14:39:08 +00:00
Err ( _e ) = > return Err ( APIError ::err ( " not_logged_in " ) . into ( ) ) ,
2019-05-05 05:20:38 +00:00
} ;
let user_id = claims . id ;
// Make sure user is an admin
2020-07-01 12:54:29 +00:00
let is_admin = move | conn : & '_ _ | UserView ::read ( conn , user_id ) . map ( | u | u . admin ) ;
if ! blocking ( pool , is_admin ) . await ? ? {
2020-01-16 14:39:08 +00:00
return Err ( APIError ::err ( " not_an_admin " ) . into ( ) ) ;
2019-05-05 05:20:38 +00:00
}
2020-07-01 12:54:29 +00:00
let added = data . added ;
2020-07-07 14:54:44 +00:00
let added_user_id = data . user_id ;
let add_admin = move | conn : & '_ _ | User_ ::add_admin ( conn , added_user_id , added ) ;
2020-07-01 12:54:29 +00:00
if blocking ( pool , add_admin ) . await ? . is_err ( ) {
return Err ( APIError ::err ( " couldnt_update_user " ) . into ( ) ) ;
}
2019-05-05 05:20:38 +00:00
// Mod tables
let form = ModAddForm {
mod_user_id : user_id ,
other_user_id : data . user_id ,
removed : Some ( ! data . added ) ,
} ;
2020-07-01 12:54:29 +00:00
blocking ( pool , move | conn | ModAdd ::create ( conn , & form ) ) . await ? ? ;
2019-05-05 05:20:38 +00:00
2020-07-01 12:54:29 +00:00
let site_creator_id =
blocking ( pool , move | conn | Site ::read ( conn , 1 ) . map ( | s | s . creator_id ) ) . await ? ? ;
let mut admins = blocking ( pool , move | conn | UserView ::admins ( conn ) ) . await ? ? ;
2019-08-24 02:40:41 +00:00
let creator_index = admins . iter ( ) . position ( | r | r . id = = site_creator_id ) . unwrap ( ) ;
let creator_user = admins . remove ( creator_index ) ;
admins . insert ( 0 , creator_user ) ;
2019-05-05 05:20:38 +00:00
2020-04-19 22:08:25 +00:00
let res = AddAdminResponse { admins } ;
if let Some ( ws ) = websocket_info {
ws . chatserver . do_send ( SendAllMessage {
op : UserOperation ::AddAdmin ,
response : res . clone ( ) ,
my_id : ws . id ,
} ) ;
}
Ok ( res )
2019-05-05 05:20:38 +00:00
}
}
2020-07-01 12:54:29 +00:00
#[ async_trait::async_trait(?Send) ]
2020-04-20 03:59:07 +00:00
impl Perform for Oper < BanUser > {
type Response = BanUserResponse ;
2020-07-01 12:54:29 +00:00
async fn perform (
2020-04-19 22:08:25 +00:00
& self ,
2020-07-01 12:54:29 +00:00
pool : & DbPool ,
2020-04-19 22:08:25 +00:00
websocket_info : Option < WebsocketInfo > ,
2020-07-01 12:54:29 +00:00
) -> Result < BanUserResponse , LemmyError > {
2019-05-05 16:20:30 +00:00
let data : & BanUser = & self . data ;
2019-05-05 05:20:38 +00:00
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
2020-01-16 14:39:08 +00:00
Err ( _e ) = > return Err ( APIError ::err ( " not_logged_in " ) . into ( ) ) ,
2019-05-05 05:20:38 +00:00
} ;
let user_id = claims . id ;
// Make sure user is an admin
2020-07-01 12:54:29 +00:00
let is_admin = move | conn : & '_ _ | UserView ::read ( conn , user_id ) . map ( | u | u . admin ) ;
if ! blocking ( pool , is_admin ) . await ? ? {
2020-01-16 14:39:08 +00:00
return Err ( APIError ::err ( " not_an_admin " ) . into ( ) ) ;
2019-05-05 05:20:38 +00:00
}
2020-07-01 12:54:29 +00:00
let ban = data . ban ;
2020-07-01 13:04:26 +00:00
let banned_user_id = data . user_id ;
let ban_user = move | conn : & '_ _ | User_ ::ban_user ( conn , banned_user_id , ban ) ;
2020-07-01 12:54:29 +00:00
if blocking ( pool , ban_user ) . await ? . is_err ( ) {
return Err ( APIError ::err ( " couldnt_update_user " ) . into ( ) ) ;
}
2019-05-05 05:20:38 +00:00
// Mod tables
let expires = match data . expires {
Some ( time ) = > Some ( naive_from_unix ( time ) ) ,
2019-09-07 15:35:05 +00:00
None = > None ,
2019-05-05 05:20:38 +00:00
} ;
let form = ModBanForm {
mod_user_id : user_id ,
other_user_id : data . user_id ,
reason : data . reason . to_owned ( ) ,
banned : Some ( data . ban ) ,
2019-12-09 19:08:19 +00:00
expires ,
2019-05-05 05:20:38 +00:00
} ;
2020-07-01 12:54:29 +00:00
blocking ( pool , move | conn | ModBan ::create ( conn , & form ) ) . await ? ? ;
2019-05-05 05:20:38 +00:00
2020-07-01 12:54:29 +00:00
let user_id = data . user_id ;
let user_view = blocking ( pool , move | conn | UserView ::read ( conn , user_id ) ) . await ? ? ;
2019-05-05 05:20:38 +00:00
2020-04-19 22:08:25 +00:00
let res = BanUserResponse {
2019-09-07 15:35:05 +00:00
user : user_view ,
banned : data . ban ,
2020-04-19 22:08:25 +00:00
} ;
if let Some ( ws ) = websocket_info {
ws . chatserver . do_send ( SendAllMessage {
op : UserOperation ::BanUser ,
response : res . clone ( ) ,
my_id : ws . id ,
} ) ;
}
Ok ( res )
2019-05-05 05:20:38 +00:00
}
}
2020-07-01 12:54:29 +00:00
#[ async_trait::async_trait(?Send) ]
2020-04-20 03:59:07 +00:00
impl Perform for Oper < GetReplies > {
type Response = GetRepliesResponse ;
2020-07-01 12:54:29 +00:00
async fn perform (
2020-04-19 22:08:25 +00:00
& self ,
2020-07-01 12:54:29 +00:00
pool : & DbPool ,
2020-04-19 22:08:25 +00:00
_websocket_info : Option < WebsocketInfo > ,
2020-07-01 12:54:29 +00:00
) -> Result < GetRepliesResponse , LemmyError > {
2019-05-05 16:20:30 +00:00
let data : & GetReplies = & self . data ;
2019-05-05 05:20:38 +00:00
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
2020-01-16 14:39:08 +00:00
Err ( _e ) = > return Err ( APIError ::err ( " not_logged_in " ) . into ( ) ) ,
2019-05-05 05:20:38 +00:00
} ;
let user_id = claims . id ;
let sort = SortType ::from_str ( & data . sort ) ? ;
2020-07-01 12:54:29 +00:00
let page = data . page ;
let limit = data . limit ;
let unread_only = data . unread_only ;
let replies = blocking ( pool , move | conn | {
ReplyQueryBuilder ::create ( conn , user_id )
. sort ( & sort )
. unread_only ( unread_only )
. page ( page )
. limit ( limit )
. list ( )
} )
. await ? ? ;
2019-05-05 05:20:38 +00:00
2020-01-16 14:39:08 +00:00
Ok ( GetRepliesResponse { replies } )
2019-05-05 05:20:38 +00:00
}
}
2020-07-01 12:54:29 +00:00
#[ async_trait::async_trait(?Send) ]
2020-04-20 03:59:07 +00:00
impl Perform for Oper < GetUserMentions > {
type Response = GetUserMentionsResponse ;
2020-07-01 12:54:29 +00:00
async fn perform (
2020-04-19 22:08:25 +00:00
& self ,
2020-07-01 12:54:29 +00:00
pool : & DbPool ,
2020-04-19 22:08:25 +00:00
_websocket_info : Option < WebsocketInfo > ,
2020-07-01 12:54:29 +00:00
) -> Result < GetUserMentionsResponse , LemmyError > {
2019-10-20 00:46:29 +00:00
let data : & GetUserMentions = & self . data ;
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
2020-01-16 14:39:08 +00:00
Err ( _e ) = > return Err ( APIError ::err ( " not_logged_in " ) . into ( ) ) ,
2019-10-20 00:46:29 +00:00
} ;
let user_id = claims . id ;
let sort = SortType ::from_str ( & data . sort ) ? ;
2020-07-01 12:54:29 +00:00
let page = data . page ;
let limit = data . limit ;
let unread_only = data . unread_only ;
let mentions = blocking ( pool , move | conn | {
UserMentionQueryBuilder ::create ( conn , user_id )
. sort ( & sort )
. unread_only ( unread_only )
. page ( page )
. limit ( limit )
. list ( )
} )
. await ? ? ;
2019-10-20 00:46:29 +00:00
2020-01-16 14:39:08 +00:00
Ok ( GetUserMentionsResponse { mentions } )
2019-10-20 00:46:29 +00:00
}
}
2020-07-01 12:54:29 +00:00
#[ async_trait::async_trait(?Send) ]
2020-07-20 14:56:40 +00:00
impl Perform for Oper < MarkUserMentionAsRead > {
2020-04-20 03:59:07 +00:00
type Response = UserMentionResponse ;
2020-07-01 12:54:29 +00:00
async fn perform (
2020-04-19 22:08:25 +00:00
& self ,
2020-07-01 12:54:29 +00:00
pool : & DbPool ,
2020-04-19 22:08:25 +00:00
_websocket_info : Option < WebsocketInfo > ,
2020-07-01 12:54:29 +00:00
) -> Result < UserMentionResponse , LemmyError > {
2020-07-20 14:56:40 +00:00
let data : & MarkUserMentionAsRead = & self . data ;
2019-10-20 00:46:29 +00:00
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
2020-01-16 14:39:08 +00:00
Err ( _e ) = > return Err ( APIError ::err ( " not_logged_in " ) . into ( ) ) ,
2019-10-20 00:46:29 +00:00
} ;
let user_id = claims . id ;
2020-07-01 12:54:29 +00:00
let user_mention_id = data . user_mention_id ;
2020-07-14 16:12:04 +00:00
let read_user_mention =
2020-07-01 12:54:29 +00:00
blocking ( pool , move | conn | UserMention ::read ( conn , user_mention_id ) ) . await ? ? ;
2019-10-20 00:46:29 +00:00
2020-07-14 16:12:04 +00:00
if user_id ! = read_user_mention . recipient_id {
return Err ( APIError ::err ( " couldnt_update_comment " ) . into ( ) ) ;
}
let user_mention_id = read_user_mention . id ;
2020-07-20 14:56:40 +00:00
let read = data . read ;
let update_mention = move | conn : & '_ _ | UserMention ::update_read ( conn , user_mention_id , read ) ;
2020-07-01 12:54:29 +00:00
if blocking ( pool , update_mention ) . await ? . is_err ( ) {
return Err ( APIError ::err ( " couldnt_update_comment " ) . into ( ) ) ;
} ;
2019-10-20 00:46:29 +00:00
2020-07-14 16:12:04 +00:00
let user_mention_id = read_user_mention . id ;
2020-07-01 12:54:29 +00:00
let user_mention_view = blocking ( pool , move | conn | {
UserMentionView ::read ( conn , user_mention_id , user_id )
} )
. await ? ? ;
2019-10-20 00:46:29 +00:00
Ok ( UserMentionResponse {
mention : user_mention_view ,
} )
}
}
2020-07-01 12:54:29 +00:00
#[ async_trait::async_trait(?Send) ]
2020-04-20 03:59:07 +00:00
impl Perform for Oper < MarkAllAsRead > {
type Response = GetRepliesResponse ;
2020-07-01 12:54:29 +00:00
async fn perform (
2020-04-19 22:08:25 +00:00
& self ,
2020-07-01 12:54:29 +00:00
pool : & DbPool ,
2020-04-19 22:08:25 +00:00
_websocket_info : Option < WebsocketInfo > ,
2020-07-01 12:54:29 +00:00
) -> Result < GetRepliesResponse , LemmyError > {
2019-05-05 16:20:30 +00:00
let data : & MarkAllAsRead = & self . data ;
2019-05-05 05:20:38 +00:00
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
2020-01-16 14:39:08 +00:00
Err ( _e ) = > return Err ( APIError ::err ( " not_logged_in " ) . into ( ) ) ,
2019-05-05 05:20:38 +00:00
} ;
let user_id = claims . id ;
2020-07-01 12:54:29 +00:00
let replies = blocking ( pool , move | conn | {
ReplyQueryBuilder ::create ( conn , user_id )
. unread_only ( true )
. page ( 1 )
. limit ( 999 )
. list ( )
} )
. await ? ? ;
2019-05-05 05:20:38 +00:00
2020-07-01 12:54:29 +00:00
// TODO: this should probably be a bulk operation
2020-07-21 01:37:44 +00:00
// Not easy to do as a bulk operation,
// because recipient_id isn't in the comment table
2019-05-05 05:20:38 +00:00
for reply in & replies {
2020-07-01 12:54:29 +00:00
let reply_id = reply . id ;
2020-07-21 01:37:44 +00:00
let mark_as_read = move | conn : & '_ _ | Comment ::update_read ( conn , reply_id , true ) ;
2020-07-01 12:54:29 +00:00
if blocking ( pool , mark_as_read ) . await ? . is_err ( ) {
return Err ( APIError ::err ( " couldnt_update_comment " ) . into ( ) ) ;
}
2019-05-05 05:20:38 +00:00
}
2020-07-20 14:56:40 +00:00
// Mark all user mentions as read
let update_user_mentions = move | conn : & '_ _ | UserMention ::mark_all_as_read ( conn , user_id ) ;
if blocking ( pool , update_user_mentions ) . await ? . is_err ( ) {
return Err ( APIError ::err ( " couldnt_update_comment " ) . into ( ) ) ;
2019-10-20 00:46:29 +00:00
}
2019-05-05 05:20:38 +00:00
2020-07-20 04:29:44 +00:00
// Mark all private_messages as read
let update_pm = move | conn : & '_ _ | PrivateMessage ::mark_all_as_read ( conn , user_id ) ;
if blocking ( pool , update_pm ) . await ? . is_err ( ) {
return Err ( APIError ::err ( " couldnt_update_private_message " ) . into ( ) ) ;
2020-01-22 21:35:29 +00:00
}
2020-01-16 14:39:08 +00:00
Ok ( GetRepliesResponse { replies : vec ! [ ] } )
2019-05-05 05:20:38 +00:00
}
}
2019-10-15 22:09:01 +00:00
2020-07-01 12:54:29 +00:00
#[ async_trait::async_trait(?Send) ]
2020-04-20 03:59:07 +00:00
impl Perform for Oper < DeleteAccount > {
type Response = LoginResponse ;
2020-07-01 12:54:29 +00:00
async fn perform (
2020-04-19 22:08:25 +00:00
& self ,
2020-07-01 12:54:29 +00:00
pool : & DbPool ,
2020-04-19 22:08:25 +00:00
_websocket_info : Option < WebsocketInfo > ,
2020-07-01 12:54:29 +00:00
) -> Result < LoginResponse , LemmyError > {
2019-10-15 22:09:01 +00:00
let data : & DeleteAccount = & self . data ;
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
2020-01-16 14:39:08 +00:00
Err ( _e ) = > return Err ( APIError ::err ( " not_logged_in " ) . into ( ) ) ,
2019-10-15 22:09:01 +00:00
} ;
let user_id = claims . id ;
2020-07-01 12:54:29 +00:00
let user = blocking ( pool , move | conn | User_ ::read ( conn , user_id ) ) . await ? ? ;
2019-10-18 04:25:23 +00:00
// Verify the password
let valid : bool = verify ( & data . password , & user . password_encrypted ) . unwrap_or ( false ) ;
if ! valid {
2020-01-16 14:39:08 +00:00
return Err ( APIError ::err ( " password_incorrect " ) . into ( ) ) ;
2019-10-18 04:25:23 +00:00
}
2019-10-15 22:09:01 +00:00
// Comments
2020-07-01 12:54:29 +00:00
let comments = blocking ( pool , move | conn | {
CommentQueryBuilder ::create ( conn )
. for_creator_id ( user_id )
. limit ( std ::i64 ::MAX )
. list ( )
} )
. await ? ? ;
2019-10-15 22:09:01 +00:00
2020-07-01 12:54:29 +00:00
// TODO: this should probably be a bulk operation
2019-10-15 22:09:01 +00:00
for comment in & comments {
2020-07-01 12:54:29 +00:00
let comment_id = comment . id ;
let permadelete = move | conn : & '_ _ | Comment ::permadelete ( conn , comment_id ) ;
if blocking ( pool , permadelete ) . await ? . is_err ( ) {
return Err ( APIError ::err ( " couldnt_update_comment " ) . into ( ) ) ;
}
2019-10-15 22:09:01 +00:00
}
// Posts
2020-07-01 12:54:29 +00:00
let posts = blocking ( pool , move | conn | {
PostQueryBuilder ::create ( conn )
. sort ( & SortType ::New )
. for_creator_id ( user_id )
. limit ( std ::i64 ::MAX )
. list ( )
} )
. await ? ? ;
2019-10-15 22:09:01 +00:00
2020-07-01 12:54:29 +00:00
// TODO: this should probably be a bulk operation
2019-10-15 22:09:01 +00:00
for post in & posts {
2020-07-01 12:54:29 +00:00
let post_id = post . id ;
let permadelete = move | conn : & '_ _ | Post ::permadelete ( conn , post_id ) ;
if blocking ( pool , permadelete ) . await ? . is_err ( ) {
return Err ( APIError ::err ( " couldnt_update_post " ) . into ( ) ) ;
}
2019-10-15 22:09:01 +00:00
}
Ok ( LoginResponse {
jwt : data . auth . to_owned ( ) ,
} )
}
}
2019-10-30 03:35:39 +00:00
2020-07-01 12:54:29 +00:00
#[ async_trait::async_trait(?Send) ]
2020-04-20 03:59:07 +00:00
impl Perform for Oper < PasswordReset > {
type Response = PasswordResetResponse ;
2020-07-01 12:54:29 +00:00
async fn perform (
2020-04-19 22:08:25 +00:00
& self ,
2020-07-01 12:54:29 +00:00
pool : & DbPool ,
2020-04-19 22:08:25 +00:00
_websocket_info : Option < WebsocketInfo > ,
2020-07-01 12:54:29 +00:00
) -> Result < PasswordResetResponse , LemmyError > {
2019-10-30 03:35:39 +00:00
let data : & PasswordReset = & self . data ;
// Fetch that email
2020-07-01 12:54:29 +00:00
let email = data . email . clone ( ) ;
let user = match blocking ( pool , move | conn | User_ ::find_by_email ( conn , & email ) ) . await ? {
2019-10-30 03:35:39 +00:00
Ok ( user ) = > user ,
2020-01-16 14:39:08 +00:00
Err ( _e ) = > return Err ( APIError ::err ( " couldnt_find_that_username_or_email " ) . into ( ) ) ,
2019-10-30 03:35:39 +00:00
} ;
// Generate a random token
let token = generate_random_string ( ) ;
2019-11-02 06:43:21 +00:00
2019-10-30 03:35:39 +00:00
// Insert the row
2020-07-01 12:54:29 +00:00
let token2 = token . clone ( ) ;
let user_id = user . id ;
blocking ( pool , move | conn | {
PasswordResetRequest ::create_token ( conn , user_id , & token2 )
} )
. await ? ? ;
2019-10-30 03:35:39 +00:00
// Email the pure token to the user.
// TODO no i18n support here.
let user_email = & user . email . expect ( " email " ) ;
let subject = & format! ( " Password reset for {} " , user . name ) ;
2019-11-02 20:07:19 +00:00
let hostname = & format! ( " https:// {} " , Settings ::get ( ) . hostname ) ; //TODO add https for now.
2019-11-02 06:41:57 +00:00
let html = & format! ( " <h1>Password Reset Request for {} </h1><br><a href= {} /password_change/ {} >Click here to reset your password</a> " , user . name , hostname , & token ) ;
2019-10-30 03:35:39 +00:00
match send_email ( subject , user_email , & user . name , html ) {
Ok ( _o ) = > _o ,
2020-01-16 14:39:08 +00:00
Err ( _e ) = > return Err ( APIError ::err ( & _e ) . into ( ) ) ,
2019-10-30 03:35:39 +00:00
} ;
2020-01-16 14:39:08 +00:00
Ok ( PasswordResetResponse { } )
2019-10-30 03:35:39 +00:00
}
}
2020-07-01 12:54:29 +00:00
#[ async_trait::async_trait(?Send) ]
2020-04-20 03:59:07 +00:00
impl Perform for Oper < PasswordChange > {
type Response = LoginResponse ;
2020-07-01 12:54:29 +00:00
async fn perform (
2020-04-19 22:08:25 +00:00
& self ,
2020-07-01 12:54:29 +00:00
pool : & DbPool ,
2020-04-19 22:08:25 +00:00
_websocket_info : Option < WebsocketInfo > ,
2020-07-01 12:54:29 +00:00
) -> Result < LoginResponse , LemmyError > {
2019-10-30 03:35:39 +00:00
let data : & PasswordChange = & self . data ;
// Fetch the user_id from the token
2020-07-01 12:54:29 +00:00
let token = data . token . clone ( ) ;
let user_id = blocking ( pool , move | conn | {
PasswordResetRequest ::read_from_token ( conn , & token ) . map ( | p | p . user_id )
} )
. await ? ? ;
2019-10-30 03:35:39 +00:00
// Make sure passwords match
2020-01-02 11:30:00 +00:00
if data . password ! = data . password_verify {
2020-01-16 14:39:08 +00:00
return Err ( APIError ::err ( " passwords_dont_match " ) . into ( ) ) ;
2019-10-30 03:35:39 +00:00
}
// Update the user with the new password
2020-07-01 12:54:29 +00:00
let password = data . password . clone ( ) ;
let updated_user = match blocking ( pool , move | conn | {
User_ ::update_password ( conn , user_id , & password )
} )
. await ?
{
2019-10-30 03:35:39 +00:00
Ok ( user ) = > user ,
2020-01-16 14:39:08 +00:00
Err ( _e ) = > return Err ( APIError ::err ( " couldnt_update_user " ) . into ( ) ) ,
2019-10-30 03:35:39 +00:00
} ;
// Return the jwt
Ok ( LoginResponse {
2020-07-10 18:15:41 +00:00
jwt : Claims ::jwt ( updated_user , Settings ::get ( ) . hostname ) ,
2019-10-30 03:35:39 +00:00
} )
}
}
2020-01-22 21:35:29 +00:00
2020-07-01 12:54:29 +00:00
#[ async_trait::async_trait(?Send) ]
2020-04-20 03:59:07 +00:00
impl Perform for Oper < CreatePrivateMessage > {
type Response = PrivateMessageResponse ;
2020-07-01 12:54:29 +00:00
async fn perform (
2020-04-19 22:08:25 +00:00
& self ,
2020-07-01 12:54:29 +00:00
pool : & DbPool ,
2020-04-19 22:08:25 +00:00
websocket_info : Option < WebsocketInfo > ,
2020-07-01 12:54:29 +00:00
) -> Result < PrivateMessageResponse , LemmyError > {
2020-01-22 21:35:29 +00:00
let data : & CreatePrivateMessage = & self . data ;
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
2020-01-24 00:17:42 +00:00
Err ( _e ) = > return Err ( APIError ::err ( " not_logged_in " ) . into ( ) ) ,
2020-01-22 21:35:29 +00:00
} ;
let user_id = claims . id ;
let hostname = & format! ( " https:// {} " , Settings ::get ( ) . hostname ) ;
// Check for a site ban
2020-07-01 12:54:29 +00:00
let user = blocking ( pool , move | conn | User_ ::read ( conn , user_id ) ) . await ? ? ;
2020-05-06 02:06:24 +00:00
if user . banned {
2020-01-24 00:17:42 +00:00
return Err ( APIError ::err ( " site_ban " ) . into ( ) ) ;
2020-01-22 21:35:29 +00:00
}
let content_slurs_removed = remove_slurs ( & data . content . to_owned ( ) ) ;
let private_message_form = PrivateMessageForm {
2020-05-06 02:06:24 +00:00
content : content_slurs_removed . to_owned ( ) ,
2020-01-22 21:35:29 +00:00
creator_id : user_id ,
recipient_id : data . recipient_id ,
deleted : None ,
read : None ,
updated : None ,
2020-06-27 01:12:41 +00:00
ap_id : " http://fake.com " . into ( ) ,
2020-05-06 02:06:24 +00:00
local : true ,
published : None ,
2020-01-22 21:35:29 +00:00
} ;
2020-07-01 12:54:29 +00:00
let inserted_private_message = match blocking ( pool , move | conn | {
PrivateMessage ::create ( conn , & private_message_form )
} )
. await ?
{
2020-01-22 21:35:29 +00:00
Ok ( private_message ) = > private_message ,
Err ( _e ) = > {
2020-01-24 00:17:42 +00:00
return Err ( APIError ::err ( " couldnt_create_private_message " ) . into ( ) ) ;
2020-01-22 21:35:29 +00:00
}
} ;
2020-07-01 12:54:29 +00:00
let inserted_private_message_id = inserted_private_message . id ;
let updated_private_message = match blocking ( pool , move | conn | {
2020-07-10 18:15:41 +00:00
let apub_id = make_apub_endpoint (
EndpointType ::PrivateMessage ,
& inserted_private_message_id . to_string ( ) ,
)
. to_string ( ) ;
PrivateMessage ::update_ap_id ( & conn , inserted_private_message_id , apub_id )
2020-07-01 12:54:29 +00:00
} )
. await ?
{
Ok ( private_message ) = > private_message ,
Err ( _e ) = > return Err ( APIError ::err ( " couldnt_create_private_message " ) . into ( ) ) ,
} ;
2020-05-06 02:06:24 +00:00
2020-07-01 12:54:29 +00:00
updated_private_message
. send_create ( & user , & self . client , pool )
. await ? ;
2020-05-06 02:06:24 +00:00
2020-01-22 21:35:29 +00:00
// Send notifications to the recipient
2020-07-01 12:54:29 +00:00
let recipient_id = data . recipient_id ;
let recipient_user = blocking ( pool , move | conn | User_ ::read ( conn , recipient_id ) ) . await ? ? ;
2020-01-22 21:35:29 +00:00
if recipient_user . send_notifications_to_email {
if let Some ( email ) = recipient_user . email {
let subject = & format! (
" {} - Private Message from {} " ,
Settings ::get ( ) . hostname ,
claims . username
) ;
let html = & format! (
" <h1>Private Message</h1><br><div>{} - {}</div><br><a href={}/inbox>inbox</a> " ,
claims . username , & content_slurs_removed , hostname
) ;
match send_email ( subject , & email , & recipient_user . name , html ) {
Ok ( _o ) = > _o ,
2020-03-13 15:08:42 +00:00
Err ( e ) = > error! ( " {} " , e ) ,
2020-01-22 21:35:29 +00:00
} ;
}
}
2020-07-01 12:54:29 +00:00
let message = blocking ( pool , move | conn | {
PrivateMessageView ::read ( conn , inserted_private_message . id )
} )
. await ? ? ;
2020-01-22 21:35:29 +00:00
2020-04-19 22:08:25 +00:00
let res = PrivateMessageResponse { message } ;
if let Some ( ws ) = websocket_info {
ws . chatserver . do_send ( SendUserRoomMessage {
op : UserOperation ::CreatePrivateMessage ,
response : res . clone ( ) ,
recipient_id : recipient_user . id ,
my_id : ws . id ,
} ) ;
}
Ok ( res )
2020-01-22 21:35:29 +00:00
}
}
2020-07-01 12:54:29 +00:00
#[ async_trait::async_trait(?Send) ]
2020-04-20 03:59:07 +00:00
impl Perform for Oper < EditPrivateMessage > {
type Response = PrivateMessageResponse ;
2020-07-01 12:54:29 +00:00
async fn perform (
2020-04-19 22:08:25 +00:00
& self ,
2020-07-01 12:54:29 +00:00
pool : & DbPool ,
2020-05-06 02:06:24 +00:00
websocket_info : Option < WebsocketInfo > ,
2020-07-01 12:54:29 +00:00
) -> Result < PrivateMessageResponse , LemmyError > {
2020-01-22 21:35:29 +00:00
let data : & EditPrivateMessage = & self . data ;
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
2020-01-24 00:17:42 +00:00
Err ( _e ) = > return Err ( APIError ::err ( " not_logged_in " ) . into ( ) ) ,
2020-01-22 21:35:29 +00:00
} ;
let user_id = claims . id ;
// Check for a site ban
2020-07-01 12:54:29 +00:00
let user = blocking ( pool , move | conn | User_ ::read ( conn , user_id ) ) . await ? ? ;
2020-05-06 02:06:24 +00:00
if user . banned {
2020-01-24 00:17:42 +00:00
return Err ( APIError ::err ( " site_ban " ) . into ( ) ) ;
2020-01-22 21:35:29 +00:00
}
2020-07-20 04:29:44 +00:00
// Checking permissions
let edit_id = data . edit_id ;
let orig_private_message =
blocking ( pool , move | conn | PrivateMessage ::read ( conn , edit_id ) ) . await ? ? ;
if user_id ! = orig_private_message . creator_id {
2020-01-24 00:17:42 +00:00
return Err ( APIError ::err ( " no_private_message_edit_allowed " ) . into ( ) ) ;
2020-01-22 21:35:29 +00:00
}
2020-07-20 04:29:44 +00:00
// Doing the update
let content_slurs_removed = remove_slurs ( & data . content ) ;
let edit_id = data . edit_id ;
let updated_private_message = match blocking ( pool , move | conn | {
PrivateMessage ::update_content ( conn , edit_id , & content_slurs_removed )
} )
. await ?
{
Ok ( private_message ) = > private_message ,
Err ( _e ) = > return Err ( APIError ::err ( " couldnt_update_private_message " ) . into ( ) ) ,
2020-01-22 21:35:29 +00:00
} ;
2020-07-20 04:29:44 +00:00
// Send the apub update
updated_private_message
. send_update ( & user , & self . client , pool )
. await ? ;
let edit_id = data . edit_id ;
let message = blocking ( pool , move | conn | PrivateMessageView ::read ( conn , edit_id ) ) . await ? ? ;
let recipient_id = message . recipient_id ;
let res = PrivateMessageResponse { message } ;
if let Some ( ws ) = websocket_info {
ws . chatserver . do_send ( SendUserRoomMessage {
op : UserOperation ::EditPrivateMessage ,
response : res . clone ( ) ,
recipient_id ,
my_id : ws . id ,
} ) ;
}
Ok ( res )
}
}
#[ async_trait::async_trait(?Send) ]
impl Perform for Oper < DeletePrivateMessage > {
type Response = PrivateMessageResponse ;
async fn perform (
& self ,
pool : & DbPool ,
websocket_info : Option < WebsocketInfo > ,
) -> Result < PrivateMessageResponse , LemmyError > {
let data : & DeletePrivateMessage = & self . data ;
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
Err ( _e ) = > return Err ( APIError ::err ( " not_logged_in " ) . into ( ) ) ,
2020-01-22 21:35:29 +00:00
} ;
2020-07-20 04:29:44 +00:00
let user_id = claims . id ;
// Check for a site ban
let user = blocking ( pool , move | conn | User_ ::read ( conn , user_id ) ) . await ? ? ;
if user . banned {
return Err ( APIError ::err ( " site_ban " ) . into ( ) ) ;
}
// Checking permissions
2020-07-01 12:54:29 +00:00
let edit_id = data . edit_id ;
2020-07-20 04:29:44 +00:00
let orig_private_message =
blocking ( pool , move | conn | PrivateMessage ::read ( conn , edit_id ) ) . await ? ? ;
if user_id ! = orig_private_message . creator_id {
return Err ( APIError ::err ( " no_private_message_edit_allowed " ) . into ( ) ) ;
}
// Doing the update
let edit_id = data . edit_id ;
let deleted = data . deleted ;
2020-07-01 12:54:29 +00:00
let updated_private_message = match blocking ( pool , move | conn | {
2020-07-20 04:29:44 +00:00
PrivateMessage ::update_deleted ( conn , edit_id , deleted )
2020-07-01 12:54:29 +00:00
} )
. await ?
{
Ok ( private_message ) = > private_message ,
Err ( _e ) = > return Err ( APIError ::err ( " couldnt_update_private_message " ) . into ( ) ) ,
} ;
2020-01-22 21:35:29 +00:00
2020-07-20 04:29:44 +00:00
// Send the apub update
if data . deleted {
updated_private_message
. send_delete ( & user , & self . client , pool )
. await ? ;
2020-05-06 02:06:24 +00:00
} else {
2020-07-01 12:54:29 +00:00
updated_private_message
2020-07-20 04:29:44 +00:00
. send_undo_delete ( & user , & self . client , pool )
2020-07-01 12:54:29 +00:00
. await ? ;
2020-05-06 02:06:24 +00:00
}
2020-07-01 12:54:29 +00:00
let edit_id = data . edit_id ;
let message = blocking ( pool , move | conn | PrivateMessageView ::read ( conn , edit_id ) ) . await ? ? ;
2020-07-20 04:29:44 +00:00
let recipient_id = message . recipient_id ;
2020-01-22 21:35:29 +00:00
2020-05-06 02:06:24 +00:00
let res = PrivateMessageResponse { message } ;
if let Some ( ws ) = websocket_info {
ws . chatserver . do_send ( SendUserRoomMessage {
2020-07-20 04:29:44 +00:00
op : UserOperation ::DeletePrivateMessage ,
response : res . clone ( ) ,
recipient_id ,
my_id : ws . id ,
} ) ;
}
Ok ( res )
}
}
#[ async_trait::async_trait(?Send) ]
impl Perform for Oper < MarkPrivateMessageAsRead > {
type Response = PrivateMessageResponse ;
async fn perform (
& self ,
pool : & DbPool ,
websocket_info : Option < WebsocketInfo > ,
) -> Result < PrivateMessageResponse , LemmyError > {
let data : & MarkPrivateMessageAsRead = & self . data ;
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
Err ( _e ) = > return Err ( APIError ::err ( " not_logged_in " ) . into ( ) ) ,
} ;
let user_id = claims . id ;
// Check for a site ban
let user = blocking ( pool , move | conn | User_ ::read ( conn , user_id ) ) . await ? ? ;
if user . banned {
return Err ( APIError ::err ( " site_ban " ) . into ( ) ) ;
}
// Checking permissions
let edit_id = data . edit_id ;
let orig_private_message =
blocking ( pool , move | conn | PrivateMessage ::read ( conn , edit_id ) ) . await ? ? ;
if user_id ! = orig_private_message . recipient_id {
return Err ( APIError ::err ( " couldnt_update_private_message " ) . into ( ) ) ;
}
// Doing the update
let edit_id = data . edit_id ;
let read = data . read ;
match blocking ( pool , move | conn | {
PrivateMessage ::update_read ( conn , edit_id , read )
} )
. await ?
{
Ok ( private_message ) = > private_message ,
Err ( _e ) = > return Err ( APIError ::err ( " couldnt_update_private_message " ) . into ( ) ) ,
} ;
// No need to send an apub update
let edit_id = data . edit_id ;
let message = blocking ( pool , move | conn | PrivateMessageView ::read ( conn , edit_id ) ) . await ? ? ;
let recipient_id = message . recipient_id ;
let res = PrivateMessageResponse { message } ;
if let Some ( ws ) = websocket_info {
ws . chatserver . do_send ( SendUserRoomMessage {
op : UserOperation ::MarkPrivateMessageAsRead ,
2020-05-06 02:06:24 +00:00
response : res . clone ( ) ,
2020-07-20 04:29:44 +00:00
recipient_id ,
2020-05-06 02:06:24 +00:00
my_id : ws . id ,
} ) ;
}
Ok ( res )
2020-01-22 21:35:29 +00:00
}
}
2020-07-01 12:54:29 +00:00
#[ async_trait::async_trait(?Send) ]
2020-04-20 03:59:07 +00:00
impl Perform for Oper < GetPrivateMessages > {
type Response = PrivateMessagesResponse ;
2020-07-01 12:54:29 +00:00
async fn perform (
2020-04-19 22:08:25 +00:00
& self ,
2020-07-01 12:54:29 +00:00
pool : & DbPool ,
2020-04-19 22:08:25 +00:00
_websocket_info : Option < WebsocketInfo > ,
2020-07-01 12:54:29 +00:00
) -> Result < PrivateMessagesResponse , LemmyError > {
2020-01-22 21:35:29 +00:00
let data : & GetPrivateMessages = & self . data ;
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
2020-01-24 00:17:42 +00:00
Err ( _e ) = > return Err ( APIError ::err ( " not_logged_in " ) . into ( ) ) ,
2020-01-22 21:35:29 +00:00
} ;
let user_id = claims . id ;
2020-07-01 12:54:29 +00:00
let page = data . page ;
let limit = data . limit ;
let unread_only = data . unread_only ;
let messages = blocking ( pool , move | conn | {
PrivateMessageQueryBuilder ::create ( & conn , user_id )
. page ( page )
. limit ( limit )
. unread_only ( unread_only )
. list ( )
} )
. await ? ? ;
2020-01-22 21:35:29 +00:00
2020-01-24 00:17:42 +00:00
Ok ( PrivateMessagesResponse { messages } )
2020-01-22 21:35:29 +00:00
}
}
2020-02-01 01:02:20 +00:00
2020-07-01 12:54:29 +00:00
#[ async_trait::async_trait(?Send) ]
2020-04-20 03:59:07 +00:00
impl Perform for Oper < UserJoin > {
type Response = UserJoinResponse ;
2020-07-01 12:54:29 +00:00
async fn perform (
2020-04-19 22:08:25 +00:00
& self ,
2020-07-01 12:54:29 +00:00
_pool : & DbPool ,
2020-04-19 22:08:25 +00:00
websocket_info : Option < WebsocketInfo > ,
2020-07-01 12:54:29 +00:00
) -> Result < UserJoinResponse , LemmyError > {
2020-02-01 01:02:20 +00:00
let data : & UserJoin = & self . data ;
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
Err ( _e ) = > return Err ( APIError ::err ( " not_logged_in " ) . into ( ) ) ,
} ;
let user_id = claims . id ;
2020-04-19 22:08:25 +00:00
if let Some ( ws ) = websocket_info {
if let Some ( id ) = ws . id {
ws . chatserver . do_send ( JoinUserRoom { user_id , id } ) ;
}
}
2020-02-01 01:02:20 +00:00
Ok ( UserJoinResponse { user_id } )
}
}