mirror of
https://github.com/versia-pub/server.git
synced 2025-12-06 08:28:19 +01:00
568 lines
17 KiB
TypeScript
568 lines
17 KiB
TypeScript
import { randomBytes } from "node:crypto";
|
|
import { idValidator } from "@api";
|
|
import { getBestContentType, urlToContentFormat } from "@content_types";
|
|
import type { EntityValidator } from "@lysand-org/federation";
|
|
import { addUserToMeilisearch } from "@meilisearch";
|
|
import { proxyUrl } from "@response";
|
|
import {
|
|
type SQL,
|
|
and,
|
|
count,
|
|
countDistinct,
|
|
desc,
|
|
eq,
|
|
gte,
|
|
inArray,
|
|
isNull,
|
|
} from "drizzle-orm";
|
|
import { htmlToText } from "html-to-text";
|
|
import {
|
|
emojiToAPI,
|
|
emojiToLysand,
|
|
fetchEmoji,
|
|
} from "~database/entities/Emoji";
|
|
import { addInstanceIfNotExists } from "~database/entities/Instance";
|
|
import {
|
|
type UserWithRelations,
|
|
findFirstUser,
|
|
findManyUsers,
|
|
} from "~database/entities/User";
|
|
import { db } from "~drizzle/db";
|
|
import {
|
|
EmojiToUser,
|
|
NoteToMentions,
|
|
Notes,
|
|
UserToPinnedNotes,
|
|
Users,
|
|
} from "~drizzle/schema";
|
|
import { type Config, config } from "~packages/config-manager";
|
|
import type { Account as APIAccount } from "~types/mastodon/account";
|
|
import type { Mention as APIMention } from "~types/mastodon/mention";
|
|
import type { Note } from "./note";
|
|
|
|
/**
|
|
* Gives helpers to fetch users from database in a nice format
|
|
*/
|
|
export class User {
|
|
constructor(private user: UserWithRelations) {}
|
|
|
|
static async fromId(id: string | null): Promise<User | null> {
|
|
if (!id) return null;
|
|
|
|
return await User.fromSql(eq(Users.id, id));
|
|
}
|
|
|
|
static async fromIds(ids: string[]): Promise<User[]> {
|
|
return await User.manyFromSql(inArray(Users.id, ids));
|
|
}
|
|
|
|
static async fromSql(
|
|
sql: SQL<unknown> | undefined,
|
|
orderBy: SQL<unknown> | undefined = desc(Users.id),
|
|
) {
|
|
const found = await findFirstUser({
|
|
where: sql,
|
|
orderBy,
|
|
});
|
|
|
|
if (!found) return null;
|
|
return new User(found);
|
|
}
|
|
|
|
static async manyFromSql(
|
|
sql: SQL<unknown> | undefined,
|
|
orderBy: SQL<unknown> | undefined = desc(Users.id),
|
|
limit?: number,
|
|
offset?: number,
|
|
extra?: Parameters<typeof db.query.Users.findMany>[0],
|
|
) {
|
|
const found = await findManyUsers({
|
|
where: sql,
|
|
orderBy,
|
|
limit,
|
|
offset,
|
|
with: extra?.with,
|
|
});
|
|
|
|
return found.map((s) => new User(s));
|
|
}
|
|
|
|
get id() {
|
|
return this.user.id;
|
|
}
|
|
|
|
getUser() {
|
|
return this.user;
|
|
}
|
|
|
|
isLocal() {
|
|
return this.user.instanceId === null;
|
|
}
|
|
|
|
isRemote() {
|
|
return !this.isLocal();
|
|
}
|
|
|
|
getUri() {
|
|
return (
|
|
this.user.uri ||
|
|
new URL(`/users/${this.user.id}`, config.http.base_url).toString()
|
|
);
|
|
}
|
|
|
|
static getUri(id: string, uri: string | null, baseUrl: string) {
|
|
return uri || new URL(`/users/${id}`, baseUrl).toString();
|
|
}
|
|
|
|
static async getCount() {
|
|
return (
|
|
await db
|
|
.select({
|
|
count: count(),
|
|
})
|
|
.from(Users)
|
|
.where(isNull(Users.instanceId))
|
|
)[0].count;
|
|
}
|
|
|
|
static async getActiveInPeriod(milliseconds: number) {
|
|
return (
|
|
await db
|
|
.select({
|
|
count: countDistinct(Users),
|
|
})
|
|
.from(Users)
|
|
.leftJoin(Notes, eq(Users.id, Notes.authorId))
|
|
.where(
|
|
and(
|
|
isNull(Users.instanceId),
|
|
gte(
|
|
Notes.createdAt,
|
|
new Date(Date.now() - milliseconds).toISOString(),
|
|
),
|
|
),
|
|
)
|
|
)[0].count;
|
|
}
|
|
|
|
async delete() {
|
|
return (
|
|
await db.delete(Users).where(eq(Users.id, this.id)).returning()
|
|
)[0];
|
|
}
|
|
|
|
async resetPassword() {
|
|
const resetToken = await randomBytes(32).toString("hex");
|
|
|
|
await this.update({
|
|
passwordResetToken: resetToken,
|
|
});
|
|
|
|
return resetToken;
|
|
}
|
|
|
|
async pin(note: Note) {
|
|
return (
|
|
await db
|
|
.insert(UserToPinnedNotes)
|
|
.values({
|
|
noteId: note.id,
|
|
userId: this.id,
|
|
})
|
|
.returning()
|
|
)[0];
|
|
}
|
|
|
|
async unpin(note: Note) {
|
|
return (
|
|
await db
|
|
.delete(UserToPinnedNotes)
|
|
.where(
|
|
and(
|
|
eq(NoteToMentions.noteId, note.id),
|
|
eq(NoteToMentions.userId, this.id),
|
|
),
|
|
)
|
|
.returning()
|
|
)[0];
|
|
}
|
|
|
|
static async resolve(uri: string): Promise<User | null> {
|
|
// Check if user not already in database
|
|
const foundUser = await User.fromSql(eq(Users.uri, uri));
|
|
|
|
if (foundUser) return foundUser;
|
|
|
|
// Check if URI is of a local user
|
|
if (uri.startsWith(config.http.base_url)) {
|
|
const uuid = uri.match(idValidator);
|
|
|
|
if (!uuid || !uuid[0]) {
|
|
throw new Error(
|
|
`URI ${uri} is of a local user, but it could not be parsed`,
|
|
);
|
|
}
|
|
|
|
return await User.fromId(uuid[0]);
|
|
}
|
|
|
|
if (!URL.canParse(uri)) {
|
|
throw new Error(`Invalid URI to parse ${uri}`);
|
|
}
|
|
|
|
const response = await fetch(uri, {
|
|
method: "GET",
|
|
headers: {
|
|
Accept: "application/json",
|
|
},
|
|
});
|
|
|
|
const data = (await response.json()) as Partial<
|
|
typeof EntityValidator.$User
|
|
>;
|
|
|
|
if (
|
|
!(
|
|
data.id &&
|
|
data.username &&
|
|
data.uri &&
|
|
data.created_at &&
|
|
data.dislikes &&
|
|
data.featured &&
|
|
data.likes &&
|
|
data.followers &&
|
|
data.following &&
|
|
data.inbox &&
|
|
data.outbox &&
|
|
data.public_key
|
|
)
|
|
) {
|
|
throw new Error("Invalid user data");
|
|
}
|
|
|
|
// Parse emojis and add them to database
|
|
const userEmojis =
|
|
data.extensions?.["org.lysand:custom_emojis"]?.emojis ?? [];
|
|
|
|
const instance = await addInstanceIfNotExists(data.uri);
|
|
|
|
const emojis = [];
|
|
|
|
for (const emoji of userEmojis) {
|
|
emojis.push(await fetchEmoji(emoji));
|
|
}
|
|
|
|
const newUser = (
|
|
await db
|
|
.insert(Users)
|
|
.values({
|
|
username: data.username,
|
|
uri: data.uri,
|
|
createdAt: new Date(data.created_at).toISOString(),
|
|
endpoints: {
|
|
dislikes: data.dislikes,
|
|
featured: data.featured,
|
|
likes: data.likes,
|
|
followers: data.followers,
|
|
following: data.following,
|
|
inbox: data.inbox,
|
|
outbox: data.outbox,
|
|
},
|
|
fields:
|
|
data.fields?.map((f) => ({
|
|
key: f.name,
|
|
value: f.value,
|
|
})) ?? [],
|
|
updatedAt: new Date(data.created_at).toISOString(),
|
|
instanceId: instance.id,
|
|
avatar: data.avatar
|
|
? Object.entries(data.avatar)[0][1].content
|
|
: "",
|
|
header: data.header
|
|
? Object.entries(data.header)[0][1].content
|
|
: "",
|
|
displayName: data.display_name ?? "",
|
|
note: getBestContentType(data.bio).content,
|
|
publicKey: data.public_key.public_key,
|
|
source: {
|
|
language: null,
|
|
note: "",
|
|
privacy: "public",
|
|
sensitive: false,
|
|
fields: [],
|
|
},
|
|
})
|
|
.returning()
|
|
)[0];
|
|
|
|
// Add emojis to user
|
|
if (emojis.length > 0) {
|
|
await db.insert(EmojiToUser).values(
|
|
emojis.map((emoji) => ({
|
|
emojiId: emoji.id,
|
|
userId: newUser.id,
|
|
})),
|
|
);
|
|
}
|
|
|
|
const finalUser = await User.fromId(newUser.id);
|
|
|
|
if (!finalUser) return null;
|
|
|
|
// Add to Meilisearch
|
|
await addUserToMeilisearch(finalUser);
|
|
|
|
return finalUser;
|
|
}
|
|
|
|
/**
|
|
* Get the user's avatar in raw URL format
|
|
* @param config The config to use
|
|
* @returns The raw URL for the user's avatar
|
|
*/
|
|
getAvatarUrl(config: Config) {
|
|
if (!this.user.avatar)
|
|
return (
|
|
config.defaults.avatar ||
|
|
`https://api.dicebear.com/8.x/${config.defaults.placeholder_style}/svg?seed=${this.user.username}`
|
|
);
|
|
return this.user.avatar;
|
|
}
|
|
|
|
static async generateKeys() {
|
|
const keys = await crypto.subtle.generateKey("Ed25519", true, [
|
|
"sign",
|
|
"verify",
|
|
]);
|
|
|
|
const privateKey = Buffer.from(
|
|
await crypto.subtle.exportKey("pkcs8", keys.privateKey),
|
|
).toString("base64");
|
|
|
|
const publicKey = Buffer.from(
|
|
await crypto.subtle.exportKey("spki", keys.publicKey),
|
|
).toString("base64");
|
|
|
|
// Add header, footer and newlines later on
|
|
// These keys are base64 encrypted
|
|
return {
|
|
private_key: privateKey,
|
|
public_key: publicKey,
|
|
};
|
|
}
|
|
|
|
static async fromDataLocal(data: {
|
|
username: string;
|
|
display_name?: string;
|
|
password: string | undefined;
|
|
email: string | undefined;
|
|
bio?: string;
|
|
avatar?: string;
|
|
header?: string;
|
|
admin?: boolean;
|
|
skipPasswordHash?: boolean;
|
|
}): Promise<User | null> {
|
|
const keys = await User.generateKeys();
|
|
|
|
const newUser = (
|
|
await db
|
|
.insert(Users)
|
|
.values({
|
|
username: data.username,
|
|
displayName: data.display_name ?? data.username,
|
|
password:
|
|
data.skipPasswordHash || !data.password
|
|
? data.password
|
|
: await Bun.password.hash(data.password),
|
|
email: data.email,
|
|
note: data.bio ?? "",
|
|
avatar: data.avatar ?? config.defaults.avatar ?? "",
|
|
header: data.header ?? config.defaults.avatar ?? "",
|
|
isAdmin: data.admin ?? false,
|
|
publicKey: keys.public_key,
|
|
fields: [],
|
|
privateKey: keys.private_key,
|
|
updatedAt: new Date().toISOString(),
|
|
source: {
|
|
language: null,
|
|
note: "",
|
|
privacy: "public",
|
|
sensitive: false,
|
|
fields: [],
|
|
},
|
|
})
|
|
.returning()
|
|
)[0];
|
|
|
|
const finalUser = await User.fromId(newUser.id);
|
|
|
|
if (!finalUser) return null;
|
|
|
|
// Add to Meilisearch
|
|
await addUserToMeilisearch(finalUser);
|
|
|
|
return finalUser;
|
|
}
|
|
|
|
/**
|
|
* Get the user's header in raw URL format
|
|
* @param config The config to use
|
|
* @returns The raw URL for the user's header
|
|
*/
|
|
getHeaderUrl(config: Config) {
|
|
if (!this.user.header) return config.defaults.header || "";
|
|
return this.user.header;
|
|
}
|
|
|
|
getAcct() {
|
|
return this.isLocal()
|
|
? this.user.username
|
|
: `${this.user.username}@${this.user.instance?.baseUrl}`;
|
|
}
|
|
|
|
static getAcct(isLocal: boolean, username: string, baseUrl?: string) {
|
|
return isLocal ? username : `${username}@${baseUrl}`;
|
|
}
|
|
|
|
async update(data: Partial<typeof Users.$inferSelect>) {
|
|
const updated = (
|
|
await db
|
|
.update(Users)
|
|
.set({
|
|
...data,
|
|
updatedAt: new Date().toISOString(),
|
|
})
|
|
.where(eq(Users.id, this.id))
|
|
.returning()
|
|
)[0];
|
|
|
|
const newUser = await User.fromId(updated.id);
|
|
|
|
if (!newUser) throw new Error("User not found after update");
|
|
|
|
this.user = newUser.getUser();
|
|
|
|
return this;
|
|
}
|
|
|
|
toAPI(isOwnAccount = false): APIAccount {
|
|
const user = this.getUser();
|
|
return {
|
|
id: user.id,
|
|
username: user.username,
|
|
display_name: user.displayName,
|
|
note: user.note,
|
|
url:
|
|
user.uri ||
|
|
new URL(`/@${user.username}`, config.http.base_url).toString(),
|
|
avatar: proxyUrl(this.getAvatarUrl(config)) ?? "",
|
|
header: proxyUrl(this.getHeaderUrl(config)) ?? "",
|
|
locked: user.isLocked,
|
|
created_at: new Date(user.createdAt).toISOString(),
|
|
followers_count: user.followerCount,
|
|
following_count: user.followingCount,
|
|
statuses_count: user.statusCount,
|
|
emojis: user.emojis.map((emoji) => emojiToAPI(emoji)),
|
|
fields: user.fields.map((field) => ({
|
|
name: htmlToText(getBestContentType(field.key).content),
|
|
value: getBestContentType(field.value).content,
|
|
})),
|
|
bot: user.isBot,
|
|
source: isOwnAccount ? user.source : undefined,
|
|
// TODO: Add static avatar and header
|
|
avatar_static: proxyUrl(this.getAvatarUrl(config)) ?? "",
|
|
header_static: proxyUrl(this.getHeaderUrl(config)) ?? "",
|
|
acct: this.getAcct(),
|
|
// TODO: Add these fields
|
|
limited: false,
|
|
moved: null,
|
|
noindex: false,
|
|
suspended: false,
|
|
discoverable: undefined,
|
|
mute_expires_at: undefined,
|
|
group: false,
|
|
};
|
|
}
|
|
|
|
toLysand(): typeof EntityValidator.$User {
|
|
if (this.isRemote()) {
|
|
throw new Error("Cannot convert remote user to Lysand format");
|
|
}
|
|
|
|
const user = this.getUser();
|
|
|
|
return {
|
|
id: user.id,
|
|
type: "User",
|
|
uri: this.getUri(),
|
|
bio: {
|
|
"text/html": {
|
|
content: user.note,
|
|
},
|
|
"text/plain": {
|
|
content: htmlToText(user.note),
|
|
},
|
|
},
|
|
created_at: new Date(user.createdAt).toISOString(),
|
|
dislikes: new URL(
|
|
`/users/${user.id}/dislikes`,
|
|
config.http.base_url,
|
|
).toString(),
|
|
featured: new URL(
|
|
`/users/${user.id}/featured`,
|
|
config.http.base_url,
|
|
).toString(),
|
|
likes: new URL(
|
|
`/users/${user.id}/likes`,
|
|
config.http.base_url,
|
|
).toString(),
|
|
followers: new URL(
|
|
`/users/${user.id}/followers`,
|
|
config.http.base_url,
|
|
).toString(),
|
|
following: new URL(
|
|
`/users/${user.id}/following`,
|
|
config.http.base_url,
|
|
).toString(),
|
|
inbox: new URL(
|
|
`/users/${user.id}/inbox`,
|
|
config.http.base_url,
|
|
).toString(),
|
|
outbox: new URL(
|
|
`/users/${user.id}/outbox`,
|
|
config.http.base_url,
|
|
).toString(),
|
|
indexable: false,
|
|
username: user.username,
|
|
avatar: urlToContentFormat(this.getAvatarUrl(config)) ?? undefined,
|
|
header: urlToContentFormat(this.getHeaderUrl(config)) ?? undefined,
|
|
display_name: user.displayName,
|
|
fields: user.fields.map((f) => ({
|
|
name: f.key,
|
|
value: f.value,
|
|
})),
|
|
public_key: {
|
|
actor: new URL(
|
|
`/users/${user.id}`,
|
|
config.http.base_url,
|
|
).toString(),
|
|
public_key: user.publicKey,
|
|
},
|
|
extensions: {
|
|
"org.lysand:custom_emojis": {
|
|
emojis: user.emojis.map((emoji) => emojiToLysand(emoji)),
|
|
},
|
|
},
|
|
};
|
|
}
|
|
|
|
toMention(): APIMention {
|
|
return {
|
|
url: this.getUri(),
|
|
username: this.getUser().username,
|
|
acct: this.getAcct(),
|
|
id: this.id,
|
|
};
|
|
}
|
|
}
|