Riley
35cbae61bc
* Respond directly with LemmyError Instrument Perform implementations for more precise traces Use ApiError to format JSON errors when messages are present Keep SpanTrace output in LemmyError Display impl * Hide SpanTrace debug output from LemmyError * Don't log when entering spans, only when leaving * Update actix-web * Update actix-rt * Add newline after error info in LemmyError Display impl * Propogate span information to blocking operations * Instrument apub functions * Use skip_all for more instrument attributes, don't skip 'self' in some api actions * Make message a static string * Send proper JSON over websocket * Add 'message' to LemmyError display if present * Use a quieter root span builder, don't pretty-print logs * Keep passwords and emails out of logs * Re-enable logging Login * Instrument feeds * Emit our own errors * Move error log after status code recording * Make Sensitive generic over the inner type * Remove line that logged secrets
167 lines
4.4 KiB
Rust
167 lines
4.4 KiB
Rust
use crate::PerformCrud;
|
|
use actix_web::web::Data;
|
|
use lemmy_api_common::{
|
|
blocking,
|
|
check_community_ban,
|
|
check_community_deleted_or_removed,
|
|
get_local_user_view_from_jwt,
|
|
is_mod_or_admin,
|
|
post::*,
|
|
};
|
|
use lemmy_apub::activities::deletion::{send_apub_delete, send_apub_remove, DeletableObjects};
|
|
use lemmy_db_schema::{
|
|
source::{
|
|
community::Community,
|
|
moderator::{ModRemovePost, ModRemovePostForm},
|
|
post::Post,
|
|
},
|
|
traits::Crud,
|
|
};
|
|
use lemmy_utils::{ConnectionId, LemmyError};
|
|
use lemmy_websocket::{send::send_post_ws_message, LemmyContext, UserOperationCrud};
|
|
|
|
#[async_trait::async_trait(?Send)]
|
|
impl PerformCrud for DeletePost {
|
|
type Response = PostResponse;
|
|
|
|
#[tracing::instrument(skip(context, websocket_id))]
|
|
async fn perform(
|
|
&self,
|
|
context: &Data<LemmyContext>,
|
|
websocket_id: Option<ConnectionId>,
|
|
) -> Result<PostResponse, LemmyError> {
|
|
let data: &DeletePost = self;
|
|
let local_user_view =
|
|
get_local_user_view_from_jwt(&data.auth, context.pool(), context.secret()).await?;
|
|
|
|
let post_id = data.post_id;
|
|
let orig_post = blocking(context.pool(), move |conn| Post::read(conn, post_id)).await??;
|
|
|
|
// Dont delete it if its already been deleted.
|
|
if orig_post.deleted == data.deleted {
|
|
return Err(LemmyError::from_message("couldnt_update_post"));
|
|
}
|
|
|
|
check_community_ban(
|
|
local_user_view.person.id,
|
|
orig_post.community_id,
|
|
context.pool(),
|
|
)
|
|
.await?;
|
|
check_community_deleted_or_removed(orig_post.community_id, context.pool()).await?;
|
|
|
|
// Verify that only the creator can delete
|
|
if !Post::is_post_creator(local_user_view.person.id, orig_post.creator_id) {
|
|
return Err(LemmyError::from_message("no_post_edit_allowed"));
|
|
}
|
|
|
|
// Update the post
|
|
let post_id = data.post_id;
|
|
let deleted = data.deleted;
|
|
let updated_post = blocking(context.pool(), move |conn| {
|
|
Post::update_deleted(conn, post_id, deleted)
|
|
})
|
|
.await??;
|
|
|
|
// apub updates
|
|
let community = blocking(context.pool(), move |conn| {
|
|
Community::read(conn, orig_post.community_id)
|
|
})
|
|
.await??;
|
|
send_apub_delete(
|
|
&local_user_view.person.clone().into(),
|
|
&community.into(),
|
|
DeletableObjects::Post(Box::new(updated_post.into())),
|
|
deleted,
|
|
context,
|
|
)
|
|
.await?;
|
|
|
|
send_post_ws_message(
|
|
data.post_id,
|
|
UserOperationCrud::DeletePost,
|
|
websocket_id,
|
|
Some(local_user_view.person.id),
|
|
context,
|
|
)
|
|
.await
|
|
}
|
|
}
|
|
|
|
#[async_trait::async_trait(?Send)]
|
|
impl PerformCrud for RemovePost {
|
|
type Response = PostResponse;
|
|
|
|
#[tracing::instrument(skip(context, websocket_id))]
|
|
async fn perform(
|
|
&self,
|
|
context: &Data<LemmyContext>,
|
|
websocket_id: Option<ConnectionId>,
|
|
) -> Result<PostResponse, LemmyError> {
|
|
let data: &RemovePost = self;
|
|
let local_user_view =
|
|
get_local_user_view_from_jwt(&data.auth, context.pool(), context.secret()).await?;
|
|
|
|
let post_id = data.post_id;
|
|
let orig_post = blocking(context.pool(), move |conn| Post::read(conn, post_id)).await??;
|
|
|
|
check_community_ban(
|
|
local_user_view.person.id,
|
|
orig_post.community_id,
|
|
context.pool(),
|
|
)
|
|
.await?;
|
|
|
|
// Verify that only the mods can remove
|
|
is_mod_or_admin(
|
|
context.pool(),
|
|
local_user_view.person.id,
|
|
orig_post.community_id,
|
|
)
|
|
.await?;
|
|
|
|
// Update the post
|
|
let post_id = data.post_id;
|
|
let removed = data.removed;
|
|
let updated_post = blocking(context.pool(), move |conn| {
|
|
Post::update_removed(conn, post_id, removed)
|
|
})
|
|
.await??;
|
|
|
|
// Mod tables
|
|
let form = ModRemovePostForm {
|
|
mod_person_id: local_user_view.person.id,
|
|
post_id: data.post_id,
|
|
removed: Some(removed),
|
|
reason: data.reason.to_owned(),
|
|
};
|
|
blocking(context.pool(), move |conn| {
|
|
ModRemovePost::create(conn, &form)
|
|
})
|
|
.await??;
|
|
|
|
// apub updates
|
|
let community = blocking(context.pool(), move |conn| {
|
|
Community::read(conn, orig_post.community_id)
|
|
})
|
|
.await??;
|
|
send_apub_remove(
|
|
&local_user_view.person.clone().into(),
|
|
&community.into(),
|
|
DeletableObjects::Post(Box::new(updated_post.into())),
|
|
data.reason.clone().unwrap_or_else(|| "".to_string()),
|
|
removed,
|
|
context,
|
|
)
|
|
.await?;
|
|
|
|
send_post_ws_message(
|
|
data.post_id,
|
|
UserOperationCrud::RemovePost,
|
|
websocket_id,
|
|
Some(local_user_view.person.id),
|
|
context,
|
|
)
|
|
.await
|
|
}
|
|
}
|