mirror of
https://github.com/versia-pub/server.git
synced 2025-12-06 16:38:19 +01:00
282 lines
10 KiB
TypeScript
282 lines
10 KiB
TypeScript
import {
|
|
apiRoute,
|
|
auth,
|
|
parseUserAddress,
|
|
reusedResponses,
|
|
userAddressValidator,
|
|
} from "@/api";
|
|
import { createRoute, z } from "@hono/zod-openapi";
|
|
import { Note, User, db } from "@versia/kit/db";
|
|
import { Instances, Notes, RolePermissions, Users } from "@versia/kit/tables";
|
|
import { and, eq, inArray, isNull, sql } from "drizzle-orm";
|
|
import { ApiError } from "~/classes/errors/api-error";
|
|
import { Account as AccountSchema } from "~/classes/schemas/account";
|
|
import { Id } from "~/classes/schemas/common";
|
|
import { zBoolean } from "~/classes/schemas/common.ts";
|
|
import { Search as SearchSchema } from "~/classes/schemas/search";
|
|
import { searchManager } from "~/classes/search/search-manager";
|
|
import { config } from "~/config.ts";
|
|
import { ErrorSchema } from "~/types/api";
|
|
|
|
const route = createRoute({
|
|
method: "get",
|
|
path: "/api/v2/search",
|
|
summary: "Perform a search",
|
|
externalDocs: {
|
|
url: "https://docs.joinmastodon.org/methods/search/#v2",
|
|
},
|
|
tags: ["Search"],
|
|
middleware: [
|
|
auth({
|
|
auth: false,
|
|
scopes: ["read:search"],
|
|
permissions: [
|
|
RolePermissions.Search,
|
|
RolePermissions.ViewAccounts,
|
|
RolePermissions.ViewNotes,
|
|
],
|
|
}),
|
|
] as const,
|
|
request: {
|
|
query: z.object({
|
|
q: z.string().trim().openapi({
|
|
description: "The search query.",
|
|
example: "versia",
|
|
}),
|
|
type: z
|
|
.enum(["accounts", "hashtags", "statuses"])
|
|
.optional()
|
|
.openapi({
|
|
description:
|
|
"Specify whether to search for only accounts, hashtags, statuses",
|
|
example: "accounts",
|
|
}),
|
|
resolve: zBoolean.default(false).openapi({
|
|
description:
|
|
"Only relevant if type includes accounts. If true and (a) the search query is for a remote account (e.g., someaccount@someother.server) and (b) the local server does not know about the account, WebFinger is used to try and resolve the account at someother.server. This provides the best recall at higher latency. If false only accounts the server knows about are returned.",
|
|
}),
|
|
following: zBoolean.default(false).openapi({
|
|
description:
|
|
"Only include accounts that the user is following?",
|
|
}),
|
|
account_id: AccountSchema.shape.id.optional().openapi({
|
|
description:
|
|
" If provided, will only return statuses authored by this account.",
|
|
}),
|
|
exclude_unreviewed: zBoolean.default(false).openapi({
|
|
description:
|
|
"Filter out unreviewed tags? Use true when trying to find trending tags.",
|
|
}),
|
|
max_id: Id.optional().openapi({
|
|
description:
|
|
"All results returned will be lesser than this ID. In effect, sets an upper bound on results.",
|
|
example: "8d35243d-b959-43e2-8bac-1a9d4eaea2aa",
|
|
}),
|
|
since_id: Id.optional().openapi({
|
|
description:
|
|
"All results returned will be greater than this ID. In effect, sets a lower bound on results.",
|
|
example: undefined,
|
|
}),
|
|
min_id: Id.optional().openapi({
|
|
description:
|
|
"Returns results immediately newer than this ID. In effect, sets a cursor at this ID and paginates forward.",
|
|
example: undefined,
|
|
}),
|
|
limit: z.coerce.number().int().min(1).max(40).default(20).openapi({
|
|
description: "Maximum number of results to return.",
|
|
}),
|
|
offset: z.coerce.number().int().min(0).default(0).openapi({
|
|
description: "Skip the first n results.",
|
|
}),
|
|
}),
|
|
},
|
|
responses: {
|
|
200: {
|
|
description: "Search results",
|
|
content: {
|
|
"application/json": {
|
|
schema: SearchSchema,
|
|
},
|
|
},
|
|
},
|
|
401: {
|
|
description:
|
|
"Cannot use resolve or offset without being authenticated",
|
|
content: {
|
|
"application/json": {
|
|
schema: ErrorSchema,
|
|
},
|
|
},
|
|
},
|
|
501: {
|
|
description: "Search is not enabled on this server",
|
|
content: {
|
|
"application/json": {
|
|
schema: ErrorSchema,
|
|
},
|
|
},
|
|
},
|
|
422: reusedResponses[422],
|
|
},
|
|
});
|
|
|
|
export default apiRoute((app) =>
|
|
app.openapi(route, async (context) => {
|
|
const { user } = context.get("auth");
|
|
const { q, type, resolve, following, account_id, limit, offset } =
|
|
context.req.valid("query");
|
|
|
|
if (!user && (resolve || offset)) {
|
|
throw new ApiError(
|
|
401,
|
|
"Usage of 'resolve' or 'offset' requires authentication",
|
|
);
|
|
}
|
|
|
|
if (!config.search.enabled) {
|
|
throw new ApiError(501, "Search is not enabled on this server");
|
|
}
|
|
|
|
let accountResults: string[] = [];
|
|
let statusResults: string[] = [];
|
|
|
|
if (!type || type === "accounts") {
|
|
// Check if q is matching format username@domain.com or @username@domain.com
|
|
const accountMatches = q?.trim().match(userAddressValidator);
|
|
if (accountMatches) {
|
|
// Remove leading @ if it exists
|
|
if (accountMatches[0].startsWith("@")) {
|
|
accountMatches[0] = accountMatches[0].slice(1);
|
|
}
|
|
|
|
const { username, domain } = parseUserAddress(
|
|
accountMatches[0],
|
|
);
|
|
|
|
const accountId = (
|
|
await db
|
|
.select({
|
|
id: Users.id,
|
|
})
|
|
.from(Users)
|
|
.leftJoin(Instances, eq(Users.instanceId, Instances.id))
|
|
.where(
|
|
and(
|
|
eq(Users.username, username),
|
|
domain
|
|
? eq(Instances.baseUrl, domain)
|
|
: isNull(Users.instanceId),
|
|
),
|
|
)
|
|
)[0]?.id;
|
|
|
|
const account = accountId ? await User.fromId(accountId) : null;
|
|
|
|
if (account) {
|
|
return context.json(
|
|
{
|
|
accounts: [account.toApi()],
|
|
statuses: [],
|
|
hashtags: [],
|
|
},
|
|
200,
|
|
);
|
|
}
|
|
|
|
if (resolve && domain) {
|
|
const manager = await (
|
|
user ?? User
|
|
).getFederationRequester();
|
|
|
|
const uri = await User.webFinger(manager, username, domain);
|
|
|
|
if (uri) {
|
|
const newUser = await User.resolve(uri);
|
|
|
|
if (newUser) {
|
|
return context.json(
|
|
{
|
|
accounts: [newUser.toApi()],
|
|
statuses: [],
|
|
hashtags: [],
|
|
},
|
|
200,
|
|
);
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
accountResults = await searchManager.searchAccounts(
|
|
q,
|
|
limit,
|
|
offset,
|
|
);
|
|
}
|
|
|
|
if (!type || type === "statuses") {
|
|
statusResults = await searchManager.searchStatuses(
|
|
q,
|
|
limit,
|
|
offset,
|
|
);
|
|
}
|
|
|
|
const accounts =
|
|
accountResults.length > 0
|
|
? await User.manyFromSql(
|
|
and(
|
|
inArray(
|
|
Users.id,
|
|
accountResults.map((hit) => hit),
|
|
),
|
|
user && following
|
|
? sql`EXISTS (SELECT 1 FROM "Relationships" WHERE "Relationships"."subjectId" = ${
|
|
user?.id
|
|
} AND "Relationships".following = ${!!following} AND "Relationships"."ownerId" = ${
|
|
Users.id
|
|
})`
|
|
: undefined,
|
|
),
|
|
)
|
|
: [];
|
|
|
|
const statuses =
|
|
statusResults.length > 0
|
|
? await Note.manyFromSql(
|
|
and(
|
|
inArray(
|
|
Notes.id,
|
|
statusResults.map((hit) => hit),
|
|
),
|
|
account_id
|
|
? eq(Notes.authorId, account_id)
|
|
: undefined,
|
|
user && following
|
|
? sql`EXISTS (SELECT 1 FROM "Relationships" WHERE "Relationships"."subjectId" = ${
|
|
user?.id
|
|
} AND "Relationships".following = ${!!following} AND "Relationships"."ownerId" = ${
|
|
Notes.authorId
|
|
})`
|
|
: undefined,
|
|
),
|
|
undefined,
|
|
undefined,
|
|
undefined,
|
|
user?.id,
|
|
)
|
|
: [];
|
|
|
|
return context.json(
|
|
{
|
|
accounts: accounts.map((account) => account.toApi()),
|
|
statuses: await Promise.all(
|
|
statuses.map((status) => status.toApi(user)),
|
|
),
|
|
hashtags: [],
|
|
},
|
|
200,
|
|
);
|
|
}),
|
|
);
|