[github/Chocobozzz/PeerTube.git] / server / controllers / api / videos / abuse.ts

import * as express from 'express'
import { UserRight, VideoAbuseCreate } from '../../../../shared'
import { logger } from '../../../helpers/logger'
import { getFormattedObjects } from '../../../helpers/utils'
import { sequelizeTypescript } from '../../../initializers'
import { sendVideoAbuse } from '../../../lib/activitypub/send'
import {
  asyncMiddleware,
  asyncRetryTransactionMiddleware,
  authenticate,
  ensureUserHasRight,
  paginationValidator,
  setDefaultPagination,
  setDefaultSort,
  videoAbuseReportValidator,
  videoAbusesSortValidator
} from '../../../middlewares'
import { AccountModel } from '../../../models/account/account'
import { VideoModel } from '../../../models/video/video'
import { VideoAbuseModel } from '../../../models/video/video-abuse'

const abuseVideoRouter = express.Router()

abuseVideoRouter.get('/abuse',
  authenticate,
  ensureUserHasRight(UserRight.MANAGE_VIDEO_ABUSES),
  paginationValidator,
  videoAbusesSortValidator,
  setDefaultSort,
  setDefaultPagination,
  asyncMiddleware(listVideoAbuses)
)
abuseVideoRouter.post('/:id/abuse',
  authenticate,
  asyncMiddleware(videoAbuseReportValidator),
  asyncRetryTransactionMiddleware(reportVideoAbuse)
)

// ---------------------------------------------------------------------------

export {
  abuseVideoRouter
}

// ---------------------------------------------------------------------------

async function listVideoAbuses (req: express.Request, res: express.Response, next: express.NextFunction) {
  const resultList = await VideoAbuseModel.listForApi(req.query.start, req.query.count, req.query.sort)

  return res.json(getFormattedObjects(resultList.data, resultList.total))
}

async function reportVideoAbuse (req: express.Request, res: express.Response) {
  const videoInstance = res.locals.video as VideoModel
  const reporterAccount = res.locals.oauth.token.User.Account as AccountModel
  const body: VideoAbuseCreate = req.body

  const abuseToCreate = {
    reporterAccountId: reporterAccount.id,
    reason: body.reason,
    videoId: videoInstance.id
  }

  await sequelizeTypescript.transaction(async t => {
    const videoAbuseInstance = await VideoAbuseModel.create(abuseToCreate, { transaction: t })
    videoAbuseInstance.Video = videoInstance

    // We send the video abuse to the origin server
    if (videoInstance.isOwned() === false) {
      await sendVideoAbuse(reporterAccount.Actor, videoAbuseInstance, videoInstance, t)
    }
  })

  logger.info('Abuse report for video %s created.', videoInstance.name)

  return res.type('json').status(204).end()
}
Commit	Line	Data
	1	import * as express from 'express'
	2	import { UserRight, VideoAbuseCreate } from '../../../../shared'
	3	import { logger } from '../../../helpers/logger'
	4	import { getFormattedObjects } from '../../../helpers/utils'
	5	import { sequelizeTypescript } from '../../../initializers'
	6	import { sendVideoAbuse } from '../../../lib/activitypub/send'
	7	import {
	8	asyncMiddleware,
	9	asyncRetryTransactionMiddleware,
	10	authenticate,
	11	ensureUserHasRight,
	12	paginationValidator,
	13	setDefaultPagination,
	14	setDefaultSort,
	15	videoAbuseReportValidator,
	16	videoAbusesSortValidator
	17	} from '../../../middlewares'
	18	import { AccountModel } from '../../../models/account/account'
	19	import { VideoModel } from '../../../models/video/video'
	20	import { VideoAbuseModel } from '../../../models/video/video-abuse'
	21
	22	const abuseVideoRouter = express.Router()
	23
	24	abuseVideoRouter.get('/abuse',
	25	authenticate,
	26	ensureUserHasRight(UserRight.MANAGE_VIDEO_ABUSES),
	27	paginationValidator,
	28	videoAbusesSortValidator,
	29	setDefaultSort,
	30	setDefaultPagination,
	31	asyncMiddleware(listVideoAbuses)
	32	)
	33	abuseVideoRouter.post('/:id/abuse',
	34	authenticate,
	35	asyncMiddleware(videoAbuseReportValidator),
	36	asyncRetryTransactionMiddleware(reportVideoAbuse)
	37	)
	38
	39	// ---------------------------------------------------------------------------
	40
	41	export {
	42	abuseVideoRouter
	43	}
	44
	45	// ---------------------------------------------------------------------------
	46
	47	async function listVideoAbuses (req: express.Request, res: express.Response, next: express.NextFunction) {
	48	const resultList = await VideoAbuseModel.listForApi(req.query.start, req.query.count, req.query.sort)
	49
	50	return res.json(getFormattedObjects(resultList.data, resultList.total))
	51	}
	52
	53	async function reportVideoAbuse (req: express.Request, res: express.Response) {
	54	const videoInstance = res.locals.video as VideoModel
	55	const reporterAccount = res.locals.oauth.token.User.Account as AccountModel
	56	const body: VideoAbuseCreate = req.body
	57
	58	const abuseToCreate = {
	59	reporterAccountId: reporterAccount.id,
	60	reason: body.reason,
	61	videoId: videoInstance.id
	62	}
	63
	64	await sequelizeTypescript.transaction(async t => {
	65	const videoAbuseInstance = await VideoAbuseModel.create(abuseToCreate, { transaction: t })
	66	videoAbuseInstance.Video = videoInstance
	67
	68	// We send the video abuse to the origin server
	69	if (videoInstance.isOwned() === false) {
	70	await sendVideoAbuse(reporterAccount.Actor, videoAbuseInstance, videoInstance, t)
	71	}
	72	})
	73
	74	logger.info('Abuse report for video %s created.', videoInstance.name)
	75
	76	return res.type('json').status(204).end()
	77	}