1 import * as express from 'express'
2 import { body, param } from 'express-validator'
3 import { getServerActor } from '@server/models/application/application'
4 import { HttpStatusCode } from '../../../shared/core-utils/miscs/http-error-codes'
5 import { isHostValid } from '../../helpers/custom-validators/servers'
6 import { logger } from '../../helpers/logger'
7 import { WEBSERVER } from '../../initializers/constants'
8 import { AccountBlocklistModel } from '../../models/account/account-blocklist'
9 import { ServerModel } from '../../models/server/server'
10 import { ServerBlocklistModel } from '../../models/server/server-blocklist'
11 import { areValidationErrors, doesAccountNameWithHostExist } from './shared'
13 const blockAccountValidator = [
14 body('accountName').exists().withMessage('Should have an account name with host'),
16 async (req: express.Request, res: express.Response, next: express.NextFunction) => {
17 logger.debug('Checking blockAccountByAccountValidator parameters', { parameters: req.body })
19 if (areValidationErrors(req, res)) return
20 if (!await doesAccountNameWithHostExist(req.body.accountName, res)) return
22 const user = res.locals.oauth.token.User
23 const accountToBlock = res.locals.account
25 if (user.Account.id === accountToBlock.id) {
27 status: HttpStatusCode.CONFLICT_409,
28 message: 'You cannot block yourself.'
37 const unblockAccountByAccountValidator = [
38 param('accountName').exists().withMessage('Should have an account name with host'),
40 async (req: express.Request, res: express.Response, next: express.NextFunction) => {
41 logger.debug('Checking unblockAccountByAccountValidator parameters', { parameters: req.params })
43 if (areValidationErrors(req, res)) return
44 if (!await doesAccountNameWithHostExist(req.params.accountName, res)) return
46 const user = res.locals.oauth.token.User
47 const targetAccount = res.locals.account
48 if (!await doesUnblockAccountExist(user.Account.id, targetAccount.id, res)) return
54 const unblockAccountByServerValidator = [
55 param('accountName').exists().withMessage('Should have an account name with host'),
57 async (req: express.Request, res: express.Response, next: express.NextFunction) => {
58 logger.debug('Checking unblockAccountByServerValidator parameters', { parameters: req.params })
60 if (areValidationErrors(req, res)) return
61 if (!await doesAccountNameWithHostExist(req.params.accountName, res)) return
63 const serverActor = await getServerActor()
64 const targetAccount = res.locals.account
65 if (!await doesUnblockAccountExist(serverActor.Account.id, targetAccount.id, res)) return
71 const blockServerValidator = [
72 body('host').custom(isHostValid).withMessage('Should have a valid host'),
74 async (req: express.Request, res: express.Response, next: express.NextFunction) => {
75 logger.debug('Checking serverGetValidator parameters', { parameters: req.body })
77 if (areValidationErrors(req, res)) return
79 const host: string = req.body.host
81 if (host === WEBSERVER.HOST) {
83 status: HttpStatusCode.CONFLICT_409,
84 message: 'You cannot block your own server.'
88 const server = await ServerModel.loadOrCreateByHost(host)
90 res.locals.server = server
96 const unblockServerByAccountValidator = [
97 param('host').custom(isHostValid).withMessage('Should have an account name with host'),
99 async (req: express.Request, res: express.Response, next: express.NextFunction) => {
100 logger.debug('Checking unblockServerByAccountValidator parameters', { parameters: req.params })
102 if (areValidationErrors(req, res)) return
104 const user = res.locals.oauth.token.User
105 if (!await doesUnblockServerExist(user.Account.id, req.params.host, res)) return
111 const unblockServerByServerValidator = [
112 param('host').custom(isHostValid).withMessage('Should have an account name with host'),
114 async (req: express.Request, res: express.Response, next: express.NextFunction) => {
115 logger.debug('Checking unblockServerByServerValidator parameters', { parameters: req.params })
117 if (areValidationErrors(req, res)) return
119 const serverActor = await getServerActor()
120 if (!await doesUnblockServerExist(serverActor.Account.id, req.params.host, res)) return
126 // ---------------------------------------------------------------------------
129 blockServerValidator,
130 blockAccountValidator,
131 unblockAccountByAccountValidator,
132 unblockServerByAccountValidator,
133 unblockAccountByServerValidator,
134 unblockServerByServerValidator
137 // ---------------------------------------------------------------------------
139 async function doesUnblockAccountExist (accountId: number, targetAccountId: number, res: express.Response) {
140 const accountBlock = await AccountBlocklistModel.loadByAccountAndTarget(accountId, targetAccountId)
143 status: HttpStatusCode.NOT_FOUND_404,
144 message: 'Account block entry not found.'
149 res.locals.accountBlock = accountBlock
153 async function doesUnblockServerExist (accountId: number, host: string, res: express.Response) {
154 const serverBlock = await ServerBlocklistModel.loadByAccountAndHost(accountId, host)
157 status: HttpStatusCode.NOT_FOUND_404,
158 message: 'Server block entry not found.'
163 res.locals.serverBlock = serverBlock