[github/Chocobozzz/PeerTube.git] / server / helpers / custom-validators / activitypub / videos.ts

import validator from 'validator'
import { ACTIVITY_PUB, CONSTRAINTS_FIELDS } from '../../../initializers/constants'
import { peertubeTruncate } from '../../core-utils'
import { exists, isArray, isBooleanValid, isDateValid, isUUIDValid } from '../misc'
import {
  isVideoDurationValid,
  isVideoNameValid,
  isVideoStateValid,
  isVideoTagValid,
  isVideoTruncatedDescriptionValid,
  isVideoViewsValid
} from '../videos'
import { isActivityPubUrlValid, isBaseActivityValid, setValidAttributedTo } from './misc'
import { VideoState } from '../../../../shared/models/videos'
import { logger } from '@server/helpers/logger'
import { ActivityVideoFileMetadataObject } from '@shared/models'

function sanitizeAndCheckVideoTorrentUpdateActivity (activity: any) {
  return isBaseActivityValid(activity, 'Update') &&
    sanitizeAndCheckVideoTorrentObject(activity.object)
}

function isActivityPubVideoDurationValid (value: string) {
  // https://www.w3.org/TR/activitystreams-vocabulary/#dfn-duration
  return exists(value) &&
    typeof value === 'string' &&
    value.startsWith('PT') &&
    value.endsWith('S') &&
    isVideoDurationValid(value.replace(/[^0-9]+/g, ''))
}

function sanitizeAndCheckVideoTorrentObject (video: any) {
  if (!video || video.type !== 'Video') return false

  if (!setValidRemoteTags(video)) {
    logger.debug('Video has invalid tags', { video })
    return false
  }
  if (!setValidRemoteVideoUrls(video)) {
    logger.debug('Video has invalid urls', { video })
    return false
  }
  if (!setRemoteVideoTruncatedContent(video)) {
    logger.debug('Video has invalid content', { video })
    return false
  }
  if (!setValidAttributedTo(video)) {
    logger.debug('Video has invalid attributedTo', { video })
    return false
  }
  if (!setValidRemoteCaptions(video)) {
    logger.debug('Video has invalid captions', { video })
    return false
  }
  if (!setValidRemoteIcon(video)) {
    logger.debug('Video has invalid icons', { video })
    return false
  }

  // Default attributes
  if (!isVideoStateValid(video.state)) video.state = VideoState.PUBLISHED
  if (!isBooleanValid(video.waitTranscoding)) video.waitTranscoding = false
  if (!isBooleanValid(video.downloadEnabled)) video.downloadEnabled = true
  if (!isBooleanValid(video.commentsEnabled)) video.commentsEnabled = false

  return isActivityPubUrlValid(video.id) &&
    isVideoNameValid(video.name) &&
    isActivityPubVideoDurationValid(video.duration) &&
    isUUIDValid(video.uuid) &&
    (!video.category || isRemoteNumberIdentifierValid(video.category)) &&
    (!video.licence || isRemoteNumberIdentifierValid(video.licence)) &&
    (!video.language || isRemoteStringIdentifierValid(video.language)) &&
    isVideoViewsValid(video.views) &&
    isBooleanValid(video.sensitive) &&
    isBooleanValid(video.commentsEnabled) &&
    isBooleanValid(video.downloadEnabled) &&
    isDateValid(video.published) &&
    isDateValid(video.updated) &&
    (!video.originallyPublishedAt || isDateValid(video.originallyPublishedAt)) &&
    (!video.content || isRemoteVideoContentValid(video.mediaType, video.content)) &&
    video.url.length !== 0 &&
    video.attributedTo.length !== 0
}

function isRemoteVideoUrlValid (url: any) {
  return url.type === 'Link' &&
    (
      ACTIVITY_PUB.URL_MIME_TYPES.VIDEO.includes(url.mediaType) &&
      isActivityPubUrlValid(url.href) &&
      validator.isInt(url.height + '', { min: 0 }) &&
      validator.isInt(url.size + '', { min: 0 }) &&
      (!url.fps || validator.isInt(url.fps + '', { min: -1 }))
    ) ||
    (
      ACTIVITY_PUB.URL_MIME_TYPES.TORRENT.includes(url.mediaType) &&
      isActivityPubUrlValid(url.href) &&
      validator.isInt(url.height + '', { min: 0 })
    ) ||
    (
      ACTIVITY_PUB.URL_MIME_TYPES.MAGNET.includes(url.mediaType) &&
      validator.isLength(url.href, { min: 5 }) &&
      validator.isInt(url.height + '', { min: 0 })
    ) ||
    (
      (url.mediaType || url.mimeType) === 'application/x-mpegURL' &&
      isActivityPubUrlValid(url.href) &&
      isArray(url.tag)
    ) ||
    isAPVideoFileMetadataObject(url)
}

function isAPVideoFileMetadataObject (url: any): url is ActivityVideoFileMetadataObject {
  return url &&
    url.type === 'Link' &&
    url.mediaType === 'application/json' &&
    isArray(url.rel) && url.rel.includes('metadata')
}

// ---------------------------------------------------------------------------

export {
  sanitizeAndCheckVideoTorrentUpdateActivity,
  isRemoteStringIdentifierValid,
  sanitizeAndCheckVideoTorrentObject,
  isRemoteVideoUrlValid,
  isAPVideoFileMetadataObject
}

// ---------------------------------------------------------------------------

function setValidRemoteTags (video: any) {
  if (Array.isArray(video.tag) === false) return false

  video.tag = video.tag.filter(t => {
    return t.type === 'Hashtag' &&
      isVideoTagValid(t.name)
  })

  return true
}

function setValidRemoteCaptions (video: any) {
  if (!video.subtitleLanguage) video.subtitleLanguage = []

  if (Array.isArray(video.subtitleLanguage) === false) return false

  video.subtitleLanguage = video.subtitleLanguage.filter(caption => {
    if (!isActivityPubUrlValid(caption.url)) caption.url = null

    return isRemoteStringIdentifierValid(caption)
  })

  return true
}

function isRemoteNumberIdentifierValid (data: any) {
  return validator.isInt(data.identifier, { min: 0 })
}

function isRemoteStringIdentifierValid (data: any) {
  return typeof data.identifier === 'string'
}

function isRemoteVideoContentValid (mediaType: string, content: string) {
  return mediaType === 'text/markdown' && isVideoTruncatedDescriptionValid(content)
}

function setValidRemoteIcon (video: any) {
  if (video.icon && !isArray(video.icon)) video.icon = [ video.icon ]
  if (!video.icon) video.icon = []

  video.icon = video.icon.filter(icon => {
    return icon.type === 'Image' &&
      isActivityPubUrlValid(icon.url) &&
      icon.mediaType === 'image/jpeg' &&
      validator.isInt(icon.width + '', { min: 0 }) &&
      validator.isInt(icon.height + '', { min: 0 })
  })

  return video.icon.length !== 0
}

function setValidRemoteVideoUrls (video: any) {
  if (Array.isArray(video.url) === false) return false

  video.url = video.url.filter(u => isRemoteVideoUrlValid(u))

  return true
}

function setRemoteVideoTruncatedContent (video: any) {
  if (video.content) {
    video.content = peertubeTruncate(video.content, { length: CONSTRAINTS_FIELDS.VIDEOS.TRUNCATED_DESCRIPTION.max })
  }

  return true
}
Commit	Line	Data
7cde3b9c	1	import validator from 'validator'
74dc3bca	2	import { ACTIVITY_PUB, CONSTRAINTS_FIELDS } from '../../../initializers/constants'
c73e83da	3	import { peertubeTruncate } from '../../core-utils'
09209296	4	import { exists, isArray, isBooleanValid, isDateValid, isUUIDValid } from '../misc'
65fcc311	5	import {
65fcc311	6	isVideoDurationValid,
65fcc311	7	isVideoNameValid,
2186386c	8	isVideoStateValid,
e34c85e5	9	isVideoTagValid,
8e10cf1a	10	isVideoTruncatedDescriptionValid,
8e10cf1a	11	isVideoViewsValid
65fcc311	12	} from '../videos'
50d6de9c	13	import { isActivityPubUrlValid, isBaseActivityValid, setValidAttributedTo } from './misc'
2186386c	14	import { VideoState } from '../../../../shared/models/videos'
d7a25329	15	import { logger } from '@server/helpers/logger'
7b81edc8	16	import { ActivityVideoFileMetadataObject } from '@shared/models'
0d0e8dd0	17
1d6e5dfc	18	function sanitizeAndCheckVideoTorrentUpdateActivity (activity: any) {
0d0e8dd0	19	return isBaseActivityValid(activity, 'Update') &&
1d6e5dfc	20	sanitizeAndCheckVideoTorrentObject(activity.object)
65fcc311 C	21	}
65fcc311 C	22
8e10cf1a C	23	function isActivityPubVideoDurationValid (value: string) {
	24	// https://www.w3.org/TR/activitystreams-vocabulary/#dfn-duration
	25	return exists(value) &&
	26	typeof value === 'string' &&
	27	value.startsWith('PT') &&
	28	value.endsWith('S') &&
efc32059	29	isVideoDurationValid(value.replace(/[^0-9]+/g, ''))
8e10cf1a C	30	}
8e10cf1a C	31
1d6e5dfc	32	function sanitizeAndCheckVideoTorrentObject (video: any) {
fbad87b0	33	if (!video \|\| video.type !== 'Video') return false
5cf13500	34
d7a25329 C	35	if (!setValidRemoteTags(video)) {
	36	logger.debug('Video has invalid tags', { video })
	37	return false
	38	}
	39	if (!setValidRemoteVideoUrls(video)) {
	40	logger.debug('Video has invalid urls', { video })
	41	return false
	42	}
	43	if (!setRemoteVideoTruncatedContent(video)) {
	44	logger.debug('Video has invalid content', { video })
	45	return false
	46	}
	47	if (!setValidAttributedTo(video)) {
	48	logger.debug('Video has invalid attributedTo', { video })
	49	return false
	50	}
	51	if (!setValidRemoteCaptions(video)) {
	52	logger.debug('Video has invalid captions', { video })
	53	return false
	54	}
ca6d3622 C	55	if (!setValidRemoteIcon(video)) {
	56	logger.debug('Video has invalid icons', { video })
	57	return false
	58	}
1d6e5dfc	59
2186386c C	60	// Default attributes
	61	if (!isVideoStateValid(video.state)) video.state = VideoState.PUBLISHED
	62	if (!isBooleanValid(video.waitTranscoding)) video.waitTranscoding = false
7f2cfe3a	63	if (!isBooleanValid(video.downloadEnabled)) video.downloadEnabled = true
0bc1b31d	64	if (!isBooleanValid(video.commentsEnabled)) video.commentsEnabled = false
2186386c	65
5cf13500	66	return isActivityPubUrlValid(video.id) &&
0d0e8dd0	67	isVideoNameValid(video.name) &&
8e10cf1a	68	isActivityPubVideoDurationValid(video.duration) &&
0d0e8dd0	69	isUUIDValid(video.uuid) &&
9d3ef9fe C	70	(!video.category \|\| isRemoteNumberIdentifierValid(video.category)) &&
	71	(!video.licence \|\| isRemoteNumberIdentifierValid(video.licence)) &&
	72	(!video.language \|\| isRemoteStringIdentifierValid(video.language)) &&
efc32059	73	isVideoViewsValid(video.views) &&
0a67e28b	74	isBooleanValid(video.sensitive) &&
47564bbe	75	isBooleanValid(video.commentsEnabled) &&
7f2cfe3a	76	isBooleanValid(video.downloadEnabled) &&
0d0e8dd0 C	77	isDateValid(video.published) &&
0d0e8dd0 C	78	isDateValid(video.updated) &&
7519127b	79	(!video.originallyPublishedAt \|\| isDateValid(video.originallyPublishedAt)) &&
f595d394	80	(!video.content \|\| isRemoteVideoContentValid(video.mediaType, video.content)) &&
50d6de9c	81	video.url.length !== 0 &&
50d6de9c	82	video.attributedTo.length !== 0
65fcc311 C	83	}
65fcc311 C	84
c48e82b5	85	function isRemoteVideoUrlValid (url: any) {
c48e82b5 C	86	return url.type === 'Link' &&
c48e82b5 C	87	(
bdd428a6	88	ACTIVITY_PUB.URL_MIME_TYPES.VIDEO.includes(url.mediaType) &&
c48e82b5 C	89	isActivityPubUrlValid(url.href) &&
	90	validator.isInt(url.height + '', { min: 0 }) &&
	91	validator.isInt(url.size + '', { min: 0 }) &&
a3737cbf	92	(!url.fps \|\| validator.isInt(url.fps + '', { min: -1 }))
c48e82b5 C	93	) \|\|
c48e82b5 C	94	(
bdd428a6	95	ACTIVITY_PUB.URL_MIME_TYPES.TORRENT.includes(url.mediaType) &&
c48e82b5 C	96	isActivityPubUrlValid(url.href) &&
	97	validator.isInt(url.height + '', { min: 0 })
	98	) \|\|
	99	(
bdd428a6	100	ACTIVITY_PUB.URL_MIME_TYPES.MAGNET.includes(url.mediaType) &&
c48e82b5 C	101	validator.isLength(url.href, { min: 5 }) &&
c48e82b5 C	102	validator.isInt(url.height + '', { min: 0 })
09209296 C	103	) \|\|
	104	(
	105	(url.mediaType \|\| url.mimeType) === 'application/x-mpegURL' &&
	106	isActivityPubUrlValid(url.href) &&
	107	isArray(url.tag)
7b81edc8 C	108	) \|\|
	109	isAPVideoFileMetadataObject(url)
	110	}
	111
	112	function isAPVideoFileMetadataObject (url: any): url is ActivityVideoFileMetadataObject {
	113	return url &&
	114	url.type === 'Link' &&
	115	url.mediaType === 'application/json' &&
	116	isArray(url.rel) && url.rel.includes('metadata')
c48e82b5 C	117	}
c48e82b5 C	118
65fcc311 C	119	// ---------------------------------------------------------------------------
	120
	121	export {
1d6e5dfc	122	sanitizeAndCheckVideoTorrentUpdateActivity,
9d3ef9fe	123	isRemoteStringIdentifierValid,
c48e82b5	124	sanitizeAndCheckVideoTorrentObject,
7b81edc8 C	125	isRemoteVideoUrlValid,
7b81edc8 C	126	isAPVideoFileMetadataObject
65fcc311 C	127	}
	128
	129	// ---------------------------------------------------------------------------
	130
0d0e8dd0 C	131	function setValidRemoteTags (video: any) {
0d0e8dd0 C	132	if (Array.isArray(video.tag) === false) return false
65fcc311	133
a2431b7d	134	video.tag = video.tag.filter(t => {
0d0e8dd0 C	135	return t.type === 'Hashtag' &&
	136	isVideoTagValid(t.name)
	137	})
72c7248b	138
0d0e8dd0	139	return true
72c7248b C	140	}
72c7248b C	141
40e87e9e C	142	function setValidRemoteCaptions (video: any) {
	143	if (!video.subtitleLanguage) video.subtitleLanguage = []
	144
	145	if (Array.isArray(video.subtitleLanguage) === false) return false
	146
	147	video.subtitleLanguage = video.subtitleLanguage.filter(caption => {
ca6d3622 C	148	if (!isActivityPubUrlValid(caption.url)) caption.url = null
ca6d3622 C	149
40e87e9e C	150	return isRemoteStringIdentifierValid(caption)
	151	})
	152
	153	return true
	154	}
	155
9d3ef9fe	156	function isRemoteNumberIdentifierValid (data: any) {
0d0e8dd0	157	return validator.isInt(data.identifier, { min: 0 })
72c7248b C	158	}
72c7248b C	159
9d3ef9fe C	160	function isRemoteStringIdentifierValid (data: any) {
	161	return typeof data.identifier === 'string'
	162	}
	163
0d0e8dd0 C	164	function isRemoteVideoContentValid (mediaType: string, content: string) {
0d0e8dd0 C	165	return mediaType === 'text/markdown' && isVideoTruncatedDescriptionValid(content)
72c7248b C	166	}
72c7248b C	167
ca6d3622 C	168	function setValidRemoteIcon (video: any) {
	169	if (video.icon && !isArray(video.icon)) video.icon = [ video.icon ]
	170	if (!video.icon) video.icon = []
	171
	172	video.icon = video.icon.filter(icon => {
	173	return icon.type === 'Image' &&
	174	isActivityPubUrlValid(icon.url) &&
	175	icon.mediaType === 'image/jpeg' &&
	176	validator.isInt(icon.width + '', { min: 0 }) &&
	177	validator.isInt(icon.height + '', { min: 0 })
	178	})
	179
	180	return video.icon.length !== 0
72c7248b C	181	}
72c7248b C	182
0d0e8dd0 C	183	function setValidRemoteVideoUrls (video: any) {
0d0e8dd0 C	184	if (Array.isArray(video.url) === false) return false
65fcc311	185
a2431b7d	186	video.url = video.url.filter(u => isRemoteVideoUrlValid(u))
65fcc311	187
0d0e8dd0	188	return true
65fcc311 C	189	}
65fcc311 C	190
45cd28b6	191	function setRemoteVideoTruncatedContent (video: any) {
c73e83da	192	if (video.content) {
687c6180	193	video.content = peertubeTruncate(video.content, { length: CONSTRAINTS_FIELDS.VIDEOS.TRUNCATED_DESCRIPTION.max })
c73e83da C	194	}
	195
	196	return true
	197	}