[github/Chocobozzz/PeerTube.git] / server / lib / activitypub / actor.ts

import * as Bluebird from 'bluebird'
import { Transaction } from 'sequelize'
import * as url from 'url'
import * as uuidv4 from 'uuid/v4'
import { ActivityPubActor, ActivityPubActorType } from '../../../shared/models/activitypub'
import { ActivityPubAttributedTo } from '../../../shared/models/activitypub/objects'
import { checkUrlsSameHost, getAPId } from '../../helpers/activitypub'
import { isActorObjectValid, normalizeActor } from '../../helpers/custom-validators/activitypub/actor'
import { isActivityPubUrlValid } from '../../helpers/custom-validators/activitypub/misc'
import { retryTransactionWrapper, updateInstanceWithAnother } from '../../helpers/database-utils'
import { logger } from '../../helpers/logger'
import { createPrivateAndPublicKeys } from '../../helpers/peertube-crypto'
import { doRequest, downloadImage } from '../../helpers/requests'
import { getUrlFromWebfinger } from '../../helpers/webfinger'
import { AVATARS_SIZE, CONFIG, MIMETYPES, sequelizeTypescript } from '../../initializers'
import { AccountModel } from '../../models/account/account'
import { ActorModel } from '../../models/activitypub/actor'
import { AvatarModel } from '../../models/avatar/avatar'
import { ServerModel } from '../../models/server/server'
import { VideoChannelModel } from '../../models/video/video-channel'
import { JobQueue } from '../job-queue'
import { getServerActor } from '../../helpers/utils'
import { ActorFetchByUrlType, fetchActorByUrl } from '../../helpers/actor'

// Set account keys, this could be long so process after the account creation and do not block the client
function setAsyncActorKeys (actor: ActorModel) {
  return createPrivateAndPublicKeys()
    .then(({ publicKey, privateKey }) => {
      actor.set('publicKey', publicKey)
      actor.set('privateKey', privateKey)
      return actor.save()
    })
    .catch(err => {
      logger.error('Cannot set public/private keys of actor %d.', actor.uuid, { err })
      return actor
    })
}

async function getOrCreateActorAndServerAndModel (
  activityActor: string | ActivityPubActor,
  fetchType: ActorFetchByUrlType = 'actor-and-association-ids',
  recurseIfNeeded = true,
  updateCollections = false
) {
  const actorUrl = getAPId(activityActor)
  let created = false
  let accountPlaylistsUrl: string

  let actor = await fetchActorByUrl(actorUrl, fetchType)
  // Orphan actor (not associated to an account of channel) so recreate it
  if (actor && (!actor.Account && !actor.VideoChannel)) {
    await actor.destroy()
    actor = null
  }

  // We don't have this actor in our database, fetch it on remote
  if (!actor) {
    const { result } = await fetchRemoteActor(actorUrl)
    if (result === undefined) throw new Error('Cannot fetch remote actor ' + actorUrl)

    // Create the attributed to actor
    // In PeerTube a video channel is owned by an account
    let ownerActor: ActorModel = undefined
    if (recurseIfNeeded === true && result.actor.type === 'Group') {
      const accountAttributedTo = result.attributedTo.find(a => a.type === 'Person')
      if (!accountAttributedTo) throw new Error('Cannot find account attributed to video channel ' + actor.url)

      if (checkUrlsSameHost(accountAttributedTo.id, actorUrl) !== true) {
        throw new Error(`Account attributed to ${accountAttributedTo.id} does not have the same host than actor url ${actorUrl}`)
      }

      try {
        // Don't recurse another time
        const recurseIfNeeded = false
        ownerActor = await getOrCreateActorAndServerAndModel(accountAttributedTo.id, 'all', recurseIfNeeded)
      } catch (err) {
        logger.error('Cannot get or create account attributed to video channel ' + actor.url)
        throw new Error(err)
      }
    }

    actor = await retryTransactionWrapper(saveActorAndServerAndModelIfNotExist, result, ownerActor)
    created = true
    accountPlaylistsUrl = result.playlists
  }

  if (actor.Account) actor.Account.Actor = actor
  if (actor.VideoChannel) actor.VideoChannel.Actor = actor

  const { actor: actorRefreshed, refreshed } = await retryTransactionWrapper(refreshActorIfNeeded, actor, fetchType)
  if (!actorRefreshed) throw new Error('Actor ' + actorRefreshed.url + ' does not exist anymore.')

  if ((created === true || refreshed === true) && updateCollections === true) {
    const payload = { uri: actor.outboxUrl, type: 'activity' as 'activity' }
    await JobQueue.Instance.createJob({ type: 'activitypub-http-fetcher', payload })
  }

  // We created a new account: fetch the playlists
  if (created === true && actor.Account && accountPlaylistsUrl) {
    const payload = { uri: accountPlaylistsUrl, accountId: actor.Account.id, type: 'account-playlists' as 'account-playlists' }
    await JobQueue.Instance.createJob({ type: 'activitypub-http-fetcher', payload })
  }

  return actorRefreshed
}

function buildActorInstance (type: ActivityPubActorType, url: string, preferredUsername: string, uuid?: string) {
  return new ActorModel({
    type,
    url,
    preferredUsername,
    uuid,
    publicKey: null,
    privateKey: null,
    followersCount: 0,
    followingCount: 0,
    inboxUrl: url + '/inbox',
    outboxUrl: url + '/outbox',
    sharedInboxUrl: CONFIG.WEBSERVER.URL + '/inbox',
    followersUrl: url + '/followers',
    followingUrl: url + '/following'
  })
}

async function updateActorInstance (actorInstance: ActorModel, attributes: ActivityPubActor) {
  const followersCount = await fetchActorTotalItems(attributes.followers)
  const followingCount = await fetchActorTotalItems(attributes.following)

  actorInstance.set('type', attributes.type)
  actorInstance.set('uuid', attributes.uuid)
  actorInstance.set('preferredUsername', attributes.preferredUsername)
  actorInstance.set('url', attributes.id)
  actorInstance.set('publicKey', attributes.publicKey.publicKeyPem)
  actorInstance.set('followersCount', followersCount)
  actorInstance.set('followingCount', followingCount)
  actorInstance.set('inboxUrl', attributes.inbox)
  actorInstance.set('outboxUrl', attributes.outbox)
  actorInstance.set('sharedInboxUrl', attributes.endpoints.sharedInbox)
  actorInstance.set('followersUrl', attributes.followers)
  actorInstance.set('followingUrl', attributes.following)
}

async function updateActorAvatarInstance (actorInstance: ActorModel, avatarName: string, t: Transaction) {
  if (avatarName !== undefined) {
    if (actorInstance.avatarId) {
      try {
        await actorInstance.Avatar.destroy({ transaction: t })
      } catch (err) {
        logger.error('Cannot remove old avatar of actor %s.', actorInstance.url, { err })
      }
    }

    const avatar = await AvatarModel.create({
      filename: avatarName
    }, { transaction: t })

    actorInstance.set('avatarId', avatar.id)
    actorInstance.Avatar = avatar
  }

  return actorInstance
}

async function fetchActorTotalItems (url: string) {
  const options = {
    uri: url,
    method: 'GET',
    json: true,
    activityPub: true
  }

  try {
    const { body } = await doRequest(options)
    return body.totalItems ? body.totalItems : 0
  } catch (err) {
    logger.warn('Cannot fetch remote actor count %s.', url, { err })
    return 0
  }
}

async function fetchAvatarIfExists (actorJSON: ActivityPubActor) {
  if (
    actorJSON.icon && actorJSON.icon.type === 'Image' && MIMETYPES.IMAGE.MIMETYPE_EXT[actorJSON.icon.mediaType] !== undefined &&
    isActivityPubUrlValid(actorJSON.icon.url)
  ) {
    const extension = MIMETYPES.IMAGE.MIMETYPE_EXT[actorJSON.icon.mediaType]

    const avatarName = uuidv4() + extension
    await downloadImage(actorJSON.icon.url, CONFIG.STORAGE.AVATARS_DIR, avatarName, AVATARS_SIZE)

    return avatarName
  }

  return undefined
}

async function addFetchOutboxJob (actor: ActorModel) {
  // Don't fetch ourselves
  const serverActor = await getServerActor()
  if (serverActor.id === actor.id) {
    logger.error('Cannot fetch our own outbox!')
    return undefined
  }

  const payload = {
    uri: actor.outboxUrl,
    type: 'activity' as 'activity'
  }

  return JobQueue.Instance.createJob({ type: 'activitypub-http-fetcher', payload })
}

async function refreshActorIfNeeded (
  actorArg: ActorModel,
  fetchedType: ActorFetchByUrlType
): Promise<{ actor: ActorModel, refreshed: boolean }> {
  if (!actorArg.isOutdated()) return { actor: actorArg, refreshed: false }

  // We need more attributes
  const actor = fetchedType === 'all' ? actorArg : await ActorModel.loadByUrlAndPopulateAccountAndChannel(actorArg.url)

  try {
    let actorUrl: string
    try {
      actorUrl = await getUrlFromWebfinger(actor.preferredUsername + '@' + actor.getHost())
    } catch (err) {
      logger.warn('Cannot get actor URL from webfinger, keeping the old one.', err)
      actorUrl = actor.url
    }

    const { result, statusCode } = await fetchRemoteActor(actorUrl)

    if (statusCode === 404) {
      logger.info('Deleting actor %s because there is a 404 in refresh actor.', actor.url)
      actor.Account ? actor.Account.destroy() : actor.VideoChannel.destroy()
      return { actor: undefined, refreshed: false }
    }

    if (result === undefined) {
      logger.warn('Cannot fetch remote actor in refresh actor.')
      return { actor, refreshed: false }
    }

    return sequelizeTypescript.transaction(async t => {
      updateInstanceWithAnother(actor, result.actor)

      if (result.avatarName !== undefined) {
        await updateActorAvatarInstance(actor, result.avatarName, t)
      }

      // Force update
      actor.setDataValue('updatedAt', new Date())
      await actor.save({ transaction: t })

      if (actor.Account) {
        actor.Account.set('name', result.name)
        actor.Account.set('description', result.summary)

        await actor.Account.save({ transaction: t })
      } else if (actor.VideoChannel) {
        actor.VideoChannel.set('name', result.name)
        actor.VideoChannel.set('description', result.summary)
        actor.VideoChannel.set('support', result.support)

        await actor.VideoChannel.save({ transaction: t })
      }

      return { refreshed: true, actor }
    })
  } catch (err) {
    logger.warn('Cannot refresh actor.', { err })
    return { actor, refreshed: false }
  }
}

export {
  getOrCreateActorAndServerAndModel,
  buildActorInstance,
  setAsyncActorKeys,
  fetchActorTotalItems,
  fetchAvatarIfExists,
  updateActorInstance,
  refreshActorIfNeeded,
  updateActorAvatarInstance,
  addFetchOutboxJob
}

// ---------------------------------------------------------------------------

function saveActorAndServerAndModelIfNotExist (
  result: FetchRemoteActorResult,
  ownerActor?: ActorModel,
  t?: Transaction
): Bluebird<ActorModel> | Promise<ActorModel> {
  let actor = result.actor

  if (t !== undefined) return save(t)

  return sequelizeTypescript.transaction(t => save(t))

  async function save (t: Transaction) {
    const actorHost = url.parse(actor.url).host

    const serverOptions = {
      where: {
        host: actorHost
      },
      defaults: {
        host: actorHost
      },
      transaction: t
    }
    const [ server ] = await ServerModel.findOrCreate(serverOptions)

    // Save our new account in database
    actor.set('serverId', server.id)

    // Avatar?
    if (result.avatarName) {
      const avatar = await AvatarModel.create({
        filename: result.avatarName
      }, { transaction: t })
      actor.set('avatarId', avatar.id)
    }

    // Force the actor creation, sometimes Sequelize skips the save() when it thinks the instance already exists
    // (which could be false in a retried query)
    const [ actorCreated ] = await ActorModel.findOrCreate({
      defaults: actor.toJSON(),
      where: {
        url: actor.url
      },
      transaction: t
    })

    if (actorCreated.type === 'Person' || actorCreated.type === 'Application') {
      actorCreated.Account = await saveAccount(actorCreated, result, t)
      actorCreated.Account.Actor = actorCreated
    } else if (actorCreated.type === 'Group') { // Video channel
      actorCreated.VideoChannel = await saveVideoChannel(actorCreated, result, ownerActor, t)
      actorCreated.VideoChannel.Actor = actorCreated
      actorCreated.VideoChannel.Account = ownerActor.Account
    }

    return actorCreated
  }
}

type FetchRemoteActorResult = {
  actor: ActorModel
  name: string
  summary: string
  support?: string
  playlists?: string
  avatarName?: string
  attributedTo: ActivityPubAttributedTo[]
}
async function fetchRemoteActor (actorUrl: string): Promise<{ statusCode?: number, result: FetchRemoteActorResult }> {
  const options = {
    uri: actorUrl,
    method: 'GET',
    json: true,
    activityPub: true
  }

  logger.info('Fetching remote actor %s.', actorUrl)

  const requestResult = await doRequest<ActivityPubActor>(options)
  normalizeActor(requestResult.body)

  const actorJSON = requestResult.body
  if (isActorObjectValid(actorJSON) === false) {
    logger.debug('Remote actor JSON is not valid.', { actorJSON })
    return { result: undefined, statusCode: requestResult.response.statusCode }
  }

  if (checkUrlsSameHost(actorJSON.id, actorUrl) !== true) {
    logger.warn('Actor url %s has not the same host than its AP id %s', actorUrl, actorJSON.id)
    return { result: undefined, statusCode: requestResult.response.statusCode }
  }

  const followersCount = await fetchActorTotalItems(actorJSON.followers)
  const followingCount = await fetchActorTotalItems(actorJSON.following)

  const actor = new ActorModel({
    type: actorJSON.type,
    uuid: actorJSON.uuid,
    preferredUsername: actorJSON.preferredUsername,
    url: actorJSON.id,
    publicKey: actorJSON.publicKey.publicKeyPem,
    privateKey: null,
    followersCount: followersCount,
    followingCount: followingCount,
    inboxUrl: actorJSON.inbox,
    outboxUrl: actorJSON.outbox,
    sharedInboxUrl: actorJSON.endpoints.sharedInbox,
    followersUrl: actorJSON.followers,
    followingUrl: actorJSON.following
  })

  const avatarName = await fetchAvatarIfExists(actorJSON)

  const name = actorJSON.name || actorJSON.preferredUsername
  return {
    statusCode: requestResult.response.statusCode,
    result: {
      actor,
      name,
      avatarName,
      summary: actorJSON.summary,
      support: actorJSON.support,
      playlists: actorJSON.playlists,
      attributedTo: actorJSON.attributedTo
    }
  }
}

async function saveAccount (actor: ActorModel, result: FetchRemoteActorResult, t: Transaction) {
  const [ accountCreated ] = await AccountModel.findOrCreate({
    defaults: {
      name: result.name,
      description: result.summary,
      actorId: actor.id
    },
    where: {
      actorId: actor.id
    },
    transaction: t
  })

  return accountCreated
}

async function saveVideoChannel (actor: ActorModel, result: FetchRemoteActorResult, ownerActor: ActorModel, t: Transaction) {
  const [ videoChannelCreated ] = await VideoChannelModel.findOrCreate({
    defaults: {
      name: result.name,
      description: result.summary,
      support: result.support,
      actorId: actor.id,
      accountId: ownerActor.Account.id
    },
    where: {
      actorId: actor.id
    },
    transaction: t
  })

  return videoChannelCreated
}
Commit	Line	Data
50d6de9c C	1	import * as Bluebird from 'bluebird'
	2	import { Transaction } from 'sequelize'
	3	import * as url from 'url'
c5911fd3	4	import * as uuidv4 from 'uuid/v4'
50d6de9c C	5	import { ActivityPubActor, ActivityPubActorType } from '../../../shared/models/activitypub'
50d6de9c C	6	import { ActivityPubAttributedTo } from '../../../shared/models/activitypub/objects'
848f499d	7	import { checkUrlsSameHost, getAPId } from '../../helpers/activitypub'
938d3fa0	8	import { isActorObjectValid, normalizeActor } from '../../helpers/custom-validators/activitypub/actor'
c5911fd3	9	import { isActivityPubUrlValid } from '../../helpers/custom-validators/activitypub/misc'
a5625b41	10	import { retryTransactionWrapper, updateInstanceWithAnother } from '../../helpers/database-utils'
da854ddd C	11	import { logger } from '../../helpers/logger'
da854ddd C	12	import { createPrivateAndPublicKeys } from '../../helpers/peertube-crypto'
361805c4	13	import { doRequest, downloadImage } from '../../helpers/requests'
a5625b41	14	import { getUrlFromWebfinger } from '../../helpers/webfinger'
14e2014a	15	import { AVATARS_SIZE, CONFIG, MIMETYPES, sequelizeTypescript } from '../../initializers'
50d6de9c C	16	import { AccountModel } from '../../models/account/account'
50d6de9c C	17	import { ActorModel } from '../../models/activitypub/actor'
c5911fd3	18	import { AvatarModel } from '../../models/avatar/avatar'
50d6de9c C	19	import { ServerModel } from '../../models/server/server'
50d6de9c C	20	import { VideoChannelModel } from '../../models/video/video-channel'
16f29007 C	21	import { JobQueue } from '../job-queue'
16f29007 C	22	import { getServerActor } from '../../helpers/utils'
e587e0ec	23	import { ActorFetchByUrlType, fetchActorByUrl } from '../../helpers/actor'
50d6de9c	24
e12a0092	25	// Set account keys, this could be long so process after the account creation and do not block the client
50d6de9c C	26	function setAsyncActorKeys (actor: ActorModel) {
	27	return createPrivateAndPublicKeys()
	28	.then(({ publicKey, privateKey }) => {
	29	actor.set('publicKey', publicKey)
	30	actor.set('privateKey', privateKey)
	31	return actor.save()
	32	})
	33	.catch(err => {
d5b7d911	34	logger.error('Cannot set public/private keys of actor %d.', actor.uuid, { err })
50d6de9c C	35	return actor
	36	})
	37	}
	38
687d638c C	39	async function getOrCreateActorAndServerAndModel (
687d638c C	40	activityActor: string \| ActivityPubActor,
e587e0ec	41	fetchType: ActorFetchByUrlType = 'actor-and-association-ids',
687d638c C	42	recurseIfNeeded = true,
	43	updateCollections = false
	44	) {
848f499d	45	const actorUrl = getAPId(activityActor)
687d638c	46	let created = false
418d092a	47	let accountPlaylistsUrl: string
6be84cbc	48
e587e0ec	49	let actor = await fetchActorByUrl(actorUrl, fetchType)
25e4d6ee	50	// Orphan actor (not associated to an account of channel) so recreate it
6104adc3	51	if (actor && (!actor.Account && !actor.VideoChannel)) {
25e4d6ee C	52	await actor.destroy()
	53	actor = null
	54	}
50d6de9c C	55
	56	// We don't have this actor in our database, fetch it on remote
	57	if (!actor) {
f5b0af50	58	const { result } = await fetchRemoteActor(actorUrl)
601527d7	59	if (result === undefined) throw new Error('Cannot fetch remote actor ' + actorUrl)
50d6de9c C	60
	61	// Create the attributed to actor
	62	// In PeerTube a video channel is owned by an account
	63	let ownerActor: ActorModel = undefined
	64	if (recurseIfNeeded === true && result.actor.type === 'Group') {
	65	const accountAttributedTo = result.attributedTo.find(a => a.type === 'Person')
	66	if (!accountAttributedTo) throw new Error('Cannot find account attributed to video channel ' + actor.url)
	67
5c6d985f C	68	if (checkUrlsSameHost(accountAttributedTo.id, actorUrl) !== true) {
	69	throw new Error(`Account attributed to ${accountAttributedTo.id} does not have the same host than actor url ${actorUrl}`)
	70	}
	71
50d6de9c	72	try {
5c6d985f	73	// Don't recurse another time
418d092a C	74	const recurseIfNeeded = false
418d092a C	75	ownerActor = await getOrCreateActorAndServerAndModel(accountAttributedTo.id, 'all', recurseIfNeeded)
50d6de9c C	76	} catch (err) {
	77	logger.error('Cannot get or create account attributed to video channel ' + actor.url)
	78	throw new Error(err)
	79	}
	80	}
	81
90d4bb81	82	actor = await retryTransactionWrapper(saveActorAndServerAndModelIfNotExist, result, ownerActor)
687d638c	83	created = true
418d092a	84	accountPlaylistsUrl = result.playlists
50d6de9c C	85	}
50d6de9c C	86
d9bdd007 C	87	if (actor.Account) actor.Account.Actor = actor
	88	if (actor.VideoChannel) actor.VideoChannel.Actor = actor
	89
e587e0ec	90	const { actor: actorRefreshed, refreshed } = await retryTransactionWrapper(refreshActorIfNeeded, actor, fetchType)
687d638c	91	if (!actorRefreshed) throw new Error('Actor ' + actorRefreshed.url + ' does not exist anymore.')
f5b0af50	92
687d638c C	93	if ((created === true \|\| refreshed === true) && updateCollections === true) {
	94	const payload = { uri: actor.outboxUrl, type: 'activity' as 'activity' }
	95	await JobQueue.Instance.createJob({ type: 'activitypub-http-fetcher', payload })
	96	}
	97
418d092a C	98	// We created a new account: fetch the playlists
	99	if (created === true && actor.Account && accountPlaylistsUrl) {
	100	const payload = { uri: accountPlaylistsUrl, accountId: actor.Account.id, type: 'account-playlists' as 'account-playlists' }
	101	await JobQueue.Instance.createJob({ type: 'activitypub-http-fetcher', payload })
	102	}
	103
687d638c	104	return actorRefreshed
50d6de9c C	105	}
50d6de9c C	106
c5911fd3 C	107	function buildActorInstance (type: ActivityPubActorType, url: string, preferredUsername: string, uuid?: string) {
	108	return new ActorModel({
	109	type,
	110	url,
	111	preferredUsername,
	112	uuid,
	113	publicKey: null,
	114	privateKey: null,
	115	followersCount: 0,
	116	followingCount: 0,
	117	inboxUrl: url + '/inbox',
	118	outboxUrl: url + '/outbox',
	119	sharedInboxUrl: CONFIG.WEBSERVER.URL + '/inbox',
	120	followersUrl: url + '/followers',
	121	followingUrl: url + '/following'
	122	})
	123	}
	124
a5625b41 C	125	async function updateActorInstance (actorInstance: ActorModel, attributes: ActivityPubActor) {
	126	const followersCount = await fetchActorTotalItems(attributes.followers)
	127	const followingCount = await fetchActorTotalItems(attributes.following)
	128
	129	actorInstance.set('type', attributes.type)
	130	actorInstance.set('uuid', attributes.uuid)
	131	actorInstance.set('preferredUsername', attributes.preferredUsername)
	132	actorInstance.set('url', attributes.id)
	133	actorInstance.set('publicKey', attributes.publicKey.publicKeyPem)
	134	actorInstance.set('followersCount', followersCount)
	135	actorInstance.set('followingCount', followingCount)
	136	actorInstance.set('inboxUrl', attributes.inbox)
	137	actorInstance.set('outboxUrl', attributes.outbox)
	138	actorInstance.set('sharedInboxUrl', attributes.endpoints.sharedInbox)
	139	actorInstance.set('followersUrl', attributes.followers)
	140	actorInstance.set('followingUrl', attributes.following)
	141	}
	142
	143	async function updateActorAvatarInstance (actorInstance: ActorModel, avatarName: string, t: Transaction) {
	144	if (avatarName !== undefined) {
	145	if (actorInstance.avatarId) {
	146	try {
	147	await actorInstance.Avatar.destroy({ transaction: t })
	148	} catch (err) {
d5b7d911	149	logger.error('Cannot remove old avatar of actor %s.', actorInstance.url, { err })
a5625b41 C	150	}
	151	}
	152
	153	const avatar = await AvatarModel.create({
	154	filename: avatarName
	155	}, { transaction: t })
	156
	157	actorInstance.set('avatarId', avatar.id)
	158	actorInstance.Avatar = avatar
	159	}
	160
	161	return actorInstance
	162	}
	163
265ba139 C	164	async function fetchActorTotalItems (url: string) {
	165	const options = {
	166	uri: url,
	167	method: 'GET',
	168	json: true,
	169	activityPub: true
	170	}
	171
265ba139	172	try {
7006bc63 C	173	const { body } = await doRequest(options)
7006bc63 C	174	return body.totalItems ? body.totalItems : 0
265ba139	175	} catch (err) {
d5b7d911	176	logger.warn('Cannot fetch remote actor count %s.', url, { err })
7006bc63	177	return 0
265ba139	178	}
265ba139 C	179	}
	180
	181	async function fetchAvatarIfExists (actorJSON: ActivityPubActor) {
	182	if (
14e2014a	183	actorJSON.icon && actorJSON.icon.type === 'Image' && MIMETYPES.IMAGE.MIMETYPE_EXT[actorJSON.icon.mediaType] !== undefined &&
265ba139 C	184	isActivityPubUrlValid(actorJSON.icon.url)
265ba139 C	185	) {
14e2014a	186	const extension = MIMETYPES.IMAGE.MIMETYPE_EXT[actorJSON.icon.mediaType]
265ba139 C	187
265ba139 C	188	const avatarName = uuidv4() + extension
6040f87d	189	await downloadImage(actorJSON.icon.url, CONFIG.STORAGE.AVATARS_DIR, avatarName, AVATARS_SIZE)
265ba139 C	190
	191	return avatarName
	192	}
	193
	194	return undefined
	195	}
	196
16f29007 C	197	async function addFetchOutboxJob (actor: ActorModel) {
	198	// Don't fetch ourselves
	199	const serverActor = await getServerActor()
	200	if (serverActor.id === actor.id) {
	201	logger.error('Cannot fetch our own outbox!')
	202	return undefined
	203	}
	204
	205	const payload = {
f6eebcb3 C	206	uri: actor.outboxUrl,
f6eebcb3 C	207	type: 'activity' as 'activity'
16f29007 C	208	}
	209
	210	return JobQueue.Instance.createJob({ type: 'activitypub-http-fetcher', payload })
	211	}
	212
744d0eca C	213	async function refreshActorIfNeeded (
	214	actorArg: ActorModel,
	215	fetchedType: ActorFetchByUrlType
	216	): Promise<{ actor: ActorModel, refreshed: boolean }> {
	217	if (!actorArg.isOutdated()) return { actor: actorArg, refreshed: false }
	218
	219	// We need more attributes
	220	const actor = fetchedType === 'all' ? actorArg : await ActorModel.loadByUrlAndPopulateAccountAndChannel(actorArg.url)
	221
	222	try {
699b059e C	223	let actorUrl: string
	224	try {
	225	actorUrl = await getUrlFromWebfinger(actor.preferredUsername + '@' + actor.getHost())
	226	} catch (err) {
	227	logger.warn('Cannot get actor URL from webfinger, keeping the old one.', err)
	228	actorUrl = actor.url
	229	}
	230
744d0eca C	231	const { result, statusCode } = await fetchRemoteActor(actorUrl)
	232
	233	if (statusCode === 404) {
	234	logger.info('Deleting actor %s because there is a 404 in refresh actor.', actor.url)
	235	actor.Account ? actor.Account.destroy() : actor.VideoChannel.destroy()
	236	return { actor: undefined, refreshed: false }
	237	}
	238
	239	if (result === undefined) {
	240	logger.warn('Cannot fetch remote actor in refresh actor.')
	241	return { actor, refreshed: false }
	242	}
	243
	244	return sequelizeTypescript.transaction(async t => {
	245	updateInstanceWithAnother(actor, result.actor)
	246
	247	if (result.avatarName !== undefined) {
	248	await updateActorAvatarInstance(actor, result.avatarName, t)
	249	}
	250
	251	// Force update
	252	actor.setDataValue('updatedAt', new Date())
	253	await actor.save({ transaction: t })
	254
	255	if (actor.Account) {
	256	actor.Account.set('name', result.name)
	257	actor.Account.set('description', result.summary)
	258
	259	await actor.Account.save({ transaction: t })
	260	} else if (actor.VideoChannel) {
	261	actor.VideoChannel.set('name', result.name)
	262	actor.VideoChannel.set('description', result.summary)
	263	actor.VideoChannel.set('support', result.support)
	264
	265	await actor.VideoChannel.save({ transaction: t })
	266	}
	267
	268	return { refreshed: true, actor }
	269	})
	270	} catch (err) {
	271	logger.warn('Cannot refresh actor.', { err })
	272	return { actor, refreshed: false }
	273	}
	274	}
	275
c5911fd3 C	276	export {
	277	getOrCreateActorAndServerAndModel,
	278	buildActorInstance,
265ba139 C	279	setAsyncActorKeys,
265ba139 C	280	fetchActorTotalItems,
a5625b41 C	281	fetchAvatarIfExists,
a5625b41 C	282	updateActorInstance,
744d0eca	283	refreshActorIfNeeded,
16f29007 C	284	updateActorAvatarInstance,
16f29007 C	285	addFetchOutboxJob
c5911fd3 C	286	}
	287
	288	// ---------------------------------------------------------------------------
	289
50d6de9c C	290	function saveActorAndServerAndModelIfNotExist (
	291	result: FetchRemoteActorResult,
	292	ownerActor?: ActorModel,
	293	t?: Transaction
	294	): Bluebird<ActorModel> \| Promise<ActorModel> {
	295	let actor = result.actor
	296
	297	if (t !== undefined) return save(t)
	298
	299	return sequelizeTypescript.transaction(t => save(t))
	300
	301	async function save (t: Transaction) {
	302	const actorHost = url.parse(actor.url).host
	303
	304	const serverOptions = {
	305	where: {
	306	host: actorHost
	307	},
	308	defaults: {
	309	host: actorHost
	310	},
	311	transaction: t
	312	}
	313	const [ server ] = await ServerModel.findOrCreate(serverOptions)
	314
	315	// Save our new account in database
	316	actor.set('serverId', server.id)
	317
c5911fd3 C	318	// Avatar?
	319	if (result.avatarName) {
	320	const avatar = await AvatarModel.create({
	321	filename: result.avatarName
	322	}, { transaction: t })
	323	actor.set('avatarId', avatar.id)
	324	}
	325
50d6de9c C	326	// Force the actor creation, sometimes Sequelize skips the save() when it thinks the instance already exists
50d6de9c C	327	// (which could be false in a retried query)
2c897999 C	328	const [ actorCreated ] = await ActorModel.findOrCreate({
	329	defaults: actor.toJSON(),
	330	where: {
	331	url: actor.url
	332	},
	333	transaction: t
	334	})
50d6de9c C	335
50d6de9c C	336	if (actorCreated.type === 'Person' \|\| actorCreated.type === 'Application') {
2422c46b	337	actorCreated.Account = await saveAccount(actorCreated, result, t)
50d6de9c C	338	actorCreated.Account.Actor = actorCreated
50d6de9c C	339	} else if (actorCreated.type === 'Group') { // Video channel
2422c46b	340	actorCreated.VideoChannel = await saveVideoChannel(actorCreated, result, ownerActor, t)
50d6de9c	341	actorCreated.VideoChannel.Actor = actorCreated
f6eebcb3	342	actorCreated.VideoChannel.Account = ownerActor.Account
50d6de9c C	343	}
	344
	345	return actorCreated
	346	}
	347	}
	348
	349	type FetchRemoteActorResult = {
	350	actor: ActorModel
e12a0092	351	name: string
50d6de9c	352	summary: string
2422c46b	353	support?: string
418d092a	354	playlists?: string
c5911fd3	355	avatarName?: string
50d6de9c C	356	attributedTo: ActivityPubAttributedTo[]
50d6de9c C	357	}
f5b0af50	358	async function fetchRemoteActor (actorUrl: string): Promise<{ statusCode?: number, result: FetchRemoteActorResult }> {
50d6de9c C	359	const options = {
	360	uri: actorUrl,
	361	method: 'GET',
da854ddd C	362	json: true,
da854ddd C	363	activityPub: true
50d6de9c C	364	}
	365
	366	logger.info('Fetching remote actor %s.', actorUrl)
	367
4c280004	368	const requestResult = await doRequest<ActivityPubActor>(options)
f47776e2 C	369	normalizeActor(requestResult.body)
f47776e2 C	370
4c280004	371	const actorJSON = requestResult.body
265ba139	372	if (isActorObjectValid(actorJSON) === false) {
b4593cd7	373	logger.debug('Remote actor JSON is not valid.', { actorJSON })
f5b0af50	374	return { result: undefined, statusCode: requestResult.response.statusCode }
50d6de9c C	375	}
50d6de9c C	376
5c6d985f	377	if (checkUrlsSameHost(actorJSON.id, actorUrl) !== true) {
9f79ade6 C	378	logger.warn('Actor url %s has not the same host than its AP id %s', actorUrl, actorJSON.id)
9f79ade6 C	379	return { result: undefined, statusCode: requestResult.response.statusCode }
5c6d985f C	380	}
5c6d985f C	381
50d6de9c C	382	const followersCount = await fetchActorTotalItems(actorJSON.followers)
	383	const followingCount = await fetchActorTotalItems(actorJSON.following)
	384
	385	const actor = new ActorModel({
	386	type: actorJSON.type,
	387	uuid: actorJSON.uuid,
e12a0092 C	388	preferredUsername: actorJSON.preferredUsername,
e12a0092 C	389	url: actorJSON.id,
50d6de9c C	390	publicKey: actorJSON.publicKey.publicKeyPem,
	391	privateKey: null,
	392	followersCount: followersCount,
	393	followingCount: followingCount,
	394	inboxUrl: actorJSON.inbox,
	395	outboxUrl: actorJSON.outbox,
	396	sharedInboxUrl: actorJSON.endpoints.sharedInbox,
	397	followersUrl: actorJSON.followers,
	398	followingUrl: actorJSON.following
	399	})
	400
265ba139	401	const avatarName = await fetchAvatarIfExists(actorJSON)
c5911fd3	402
e12a0092	403	const name = actorJSON.name \|\| actorJSON.preferredUsername
50d6de9c	404	return {
f5b0af50 C	405	statusCode: requestResult.response.statusCode,
	406	result: {
	407	actor,
	408	name,
	409	avatarName,
	410	summary: actorJSON.summary,
	411	support: actorJSON.support,
418d092a	412	playlists: actorJSON.playlists,
f5b0af50 C	413	attributedTo: actorJSON.attributedTo
f5b0af50 C	414	}
50d6de9c C	415	}
	416	}
	417
2c897999 C	418	async function saveAccount (actor: ActorModel, result: FetchRemoteActorResult, t: Transaction) {
	419	const [ accountCreated ] = await AccountModel.findOrCreate({
	420	defaults: {
	421	name: result.name,
2422c46b	422	description: result.summary,
2c897999 C	423	actorId: actor.id
	424	},
	425	where: {
	426	actorId: actor.id
	427	},
	428	transaction: t
50d6de9c C	429	})
50d6de9c C	430
2c897999	431	return accountCreated
50d6de9c C	432	}
	433
	434	async function saveVideoChannel (actor: ActorModel, result: FetchRemoteActorResult, ownerActor: ActorModel, t: Transaction) {
2c897999 C	435	const [ videoChannelCreated ] = await VideoChannelModel.findOrCreate({
	436	defaults: {
	437	name: result.name,
	438	description: result.summary,
2422c46b	439	support: result.support,
2c897999 C	440	actorId: actor.id,
	441	accountId: ownerActor.Account.id
	442	},
	443	where: {
	444	actorId: actor.id
	445	},
	446	transaction: t
50d6de9c C	447	})
50d6de9c C	448
2c897999	449	return videoChannelCreated
50d6de9c	450	}