-import * as express from 'express'
import 'multer'
-import { UserUpdateMe, UserVideoRate as FormattedUserVideoRate } from '../../../../shared'
+import * as express from 'express'
+import { auditLoggerFactory, getAuditIdFromRes, UserAuditView } from '@server/helpers/audit-logger'
+import { Hooks } from '@server/lib/plugins/hooks'
+import { ActorImageType, UserUpdateMe, UserVideoRate as FormattedUserVideoRate } from '../../../../shared'
+import { HttpStatusCode } from '../../../../shared/core-utils/miscs/http-error-codes'
+import { UserVideoQuota } from '../../../../shared/models/users/user-video-quota.model'
+import { createReqFiles } from '../../../helpers/express-utils'
import { getFormattedObjects } from '../../../helpers/utils'
-import { CONFIG, IMAGE_MIMETYPE_EXT, sequelizeTypescript } from '../../../initializers'
+import { CONFIG } from '../../../initializers/config'
+import { MIMETYPES } from '../../../initializers/constants'
+import { sequelizeTypescript } from '../../../initializers/database'
import { sendUpdateActor } from '../../../lib/activitypub/send'
+import { deleteLocalActorImageFile, updateLocalActorImageFile } from '../../../lib/actor-image'
+import { getOriginalVideoFileTotalDailyFromUser, getOriginalVideoFileTotalFromUser, sendVerifyUserEmail } from '../../../lib/user'
import {
asyncMiddleware,
asyncRetryTransactionMiddleware,
authenticate,
- commonVideosFiltersValidator,
paginationValidator,
setDefaultPagination,
setDefaultSort,
- userSubscriptionAddValidator,
- userSubscriptionGetValidator,
+ setDefaultVideosSort,
usersUpdateMeValidator,
usersVideoRatingValidator
} from '../../../middlewares'
-import {
- areSubscriptionsExistValidator,
- deleteMeValidator,
- userSubscriptionsSortValidator,
- videoImportsSortValidator,
- videosSortValidator
-} from '../../../middlewares/validators'
+import { deleteMeValidator, videoImportsSortValidator, videosSortValidator } from '../../../middlewares/validators'
+import { updateAvatarValidator } from '../../../middlewares/validators/actor-image'
+import { AccountModel } from '../../../models/account/account'
import { AccountVideoRateModel } from '../../../models/account/account-video-rate'
-import { UserModel } from '../../../models/account/user'
+import { UserModel } from '../../../models/user/user'
import { VideoModel } from '../../../models/video/video'
-import { VideoSortField } from '../../../../client/src/app/shared/video/sort-field.type'
-import { buildNSFWFilter, createReqFiles } from '../../../helpers/express-utils'
-import { UserVideoQuota } from '../../../../shared/models/users/user-video-quota.model'
-import { updateAvatarValidator } from '../../../middlewares/validators/avatar'
-import { updateActorAvatarFile } from '../../../lib/avatar'
-import { auditLoggerFactory, getAuditIdFromRes, UserAuditView } from '../../../helpers/audit-logger'
import { VideoImportModel } from '../../../models/video/video-import'
-import { VideoFilter } from '../../../../shared/models/videos/video-query.type'
-import { ActorFollowModel } from '../../../models/activitypub/actor-follow'
-import { JobQueue } from '../../../lib/job-queue'
-import { logger } from '../../../helpers/logger'
-import { AccountModel } from '../../../models/account/account'
+import { AttributesOnly } from '@shared/core-utils'
-const auditLogger = auditLoggerFactory('users-me')
+const auditLogger = auditLoggerFactory('users')
-const reqAvatarFile = createReqFiles([ 'avatarfile' ], IMAGE_MIMETYPE_EXT, { avatarfile: CONFIG.STORAGE.AVATARS_DIR })
+const reqAvatarFile = createReqFiles([ 'avatarfile' ], MIMETYPES.IMAGE.MIMETYPE_EXT, { avatarfile: CONFIG.STORAGE.TMP_DIR })
const meRouter = express.Router()
)
meRouter.delete('/me',
authenticate,
- asyncMiddleware(deleteMeValidator),
+ deleteMeValidator,
asyncMiddleware(deleteMe)
)
authenticate,
paginationValidator,
videosSortValidator,
- setDefaultSort,
+ setDefaultVideosSort,
setDefaultPagination,
asyncMiddleware(getUserVideos)
)
asyncRetryTransactionMiddleware(updateMyAvatar)
)
-// ##### Subscriptions part #####
-
-meRouter.get('/me/subscriptions/videos',
- authenticate,
- paginationValidator,
- videosSortValidator,
- setDefaultSort,
- setDefaultPagination,
- commonVideosFiltersValidator,
- asyncMiddleware(getUserSubscriptionVideos)
-)
-
-meRouter.get('/me/subscriptions/exist',
- authenticate,
- areSubscriptionsExistValidator,
- asyncMiddleware(areSubscriptionsExist)
-)
-
-meRouter.get('/me/subscriptions',
- authenticate,
- paginationValidator,
- userSubscriptionsSortValidator,
- setDefaultSort,
- setDefaultPagination,
- asyncMiddleware(getUserSubscriptions)
-)
-
-meRouter.post('/me/subscriptions',
- authenticate,
- userSubscriptionAddValidator,
- asyncMiddleware(addUserSubscription)
-)
-
-meRouter.get('/me/subscriptions/:uri',
- authenticate,
- userSubscriptionGetValidator,
- getUserSubscription
-)
-
-meRouter.delete('/me/subscriptions/:uri',
+meRouter.delete('/me/avatar',
authenticate,
- userSubscriptionGetValidator,
- asyncRetryTransactionMiddleware(deleteUserSubscription)
+ asyncRetryTransactionMiddleware(deleteMyAvatar)
)
// ---------------------------------------------------------------------------
// ---------------------------------------------------------------------------
-async function areSubscriptionsExist (req: express.Request, res: express.Response) {
- const uris = req.query.uris as string[]
- const user = res.locals.oauth.token.User as UserModel
-
- const handles = uris.map(u => {
- let [ name, host ] = u.split('@')
- if (host === CONFIG.WEBSERVER.HOST) host = null
+async function getUserVideos (req: express.Request, res: express.Response) {
+ const user = res.locals.oauth.token.User
- return { name, host, uri: u }
- })
-
- const results = await ActorFollowModel.listSubscribedIn(user.Account.Actor.id, handles)
-
- const existObject: { [id: string ]: boolean } = {}
- for (const handle of handles) {
- const obj = results.find(r => {
- const server = r.ActorFollowing.Server
-
- return r.ActorFollowing.preferredUsername === handle.name &&
- (
- (!server && !handle.host) ||
- (server.host === handle.host)
- )
- })
-
- existObject[handle.uri] = obj !== undefined
- }
-
- return res.json(existObject)
-}
-
-async function addUserSubscription (req: express.Request, res: express.Response) {
- const user = res.locals.oauth.token.User as UserModel
- const [ name, host ] = req.body.uri.split('@')
-
- const payload = {
- name,
- host,
- followerActorId: user.Account.Actor.id
- }
-
- JobQueue.Instance.createJob({ type: 'activitypub-follow', payload })
- .catch(err => logger.error('Cannot create follow job for subscription %s.', req.body.uri, err))
-
- return res.status(204).end()
-}
-
-function getUserSubscription (req: express.Request, res: express.Response) {
- const subscription: ActorFollowModel = res.locals.subscription
-
- return res.json(subscription.ActorFollowing.VideoChannel.toFormattedJSON())
-}
-
-async function deleteUserSubscription (req: express.Request, res: express.Response) {
- const subscription: ActorFollowModel = res.locals.subscription
-
- await sequelizeTypescript.transaction(async t => {
- return subscription.destroy({ transaction: t })
- })
-
- return res.type('json').status(204).end()
-}
-
-async function getUserSubscriptions (req: express.Request, res: express.Response) {
- const user = res.locals.oauth.token.User as UserModel
- const actorId = user.Account.Actor.id
-
- const resultList = await ActorFollowModel.listSubscriptionsForApi(actorId, req.query.start, req.query.count, req.query.sort)
-
- return res.json(getFormattedObjects(resultList.data, resultList.total))
-}
-
-async function getUserSubscriptionVideos (req: express.Request, res: express.Response, next: express.NextFunction) {
- const user = res.locals.oauth.token.User as UserModel
- const resultList = await VideoModel.listForApi({
+ const apiOptions = await Hooks.wrapObject({
+ accountId: user.Account.id,
start: req.query.start,
count: req.query.count,
sort: req.query.sort,
- includeLocalVideos: false,
- categoryOneOf: req.query.categoryOneOf,
- licenceOneOf: req.query.licenceOneOf,
- languageOneOf: req.query.languageOneOf,
- tagsOneOf: req.query.tagsOneOf,
- tagsAllOf: req.query.tagsAllOf,
- nsfw: buildNSFWFilter(res, req.query.nsfw),
- filter: req.query.filter as VideoFilter,
- withFiles: false,
- actorId: user.Account.Actor.id,
- user
- })
-
- return res.json(getFormattedObjects(resultList.data, resultList.total))
-}
-
-async function getUserVideos (req: express.Request, res: express.Response, next: express.NextFunction) {
- const user = res.locals.oauth.token.User as UserModel
- const resultList = await VideoModel.listUserVideosForApi(
- user.Account.id,
- req.query.start as number,
- req.query.count as number,
- req.query.sort as VideoSortField
+ search: req.query.search,
+ isLive: req.query.isLive
+ }, 'filter:api.user.me.videos.list.params')
+
+ const resultList = await Hooks.wrapPromiseFun(
+ VideoModel.listUserVideosForApi,
+ apiOptions,
+ 'filter:api.user.me.videos.list.result'
)
const additionalAttributes = {
return res.json(getFormattedObjects(resultList.data, resultList.total, { additionalAttributes }))
}
-async function getUserVideoImports (req: express.Request, res: express.Response, next: express.NextFunction) {
- const user = res.locals.oauth.token.User as UserModel
+async function getUserVideoImports (req: express.Request, res: express.Response) {
+ const user = res.locals.oauth.token.User
const resultList = await VideoImportModel.listUserVideoImportsForApi(
user.id,
req.query.start as number,
return res.json(getFormattedObjects(resultList.data, resultList.total))
}
-async function getUserInformation (req: express.Request, res: express.Response, next: express.NextFunction) {
+async function getUserInformation (req: express.Request, res: express.Response) {
// We did not load channels in res.locals.user
- const user = await UserModel.loadByUsernameAndPopulateChannels(res.locals.oauth.token.user.username)
+ const user = await UserModel.loadForMeAPI(res.locals.oauth.token.user.id)
- return res.json(user.toFormattedJSON())
+ return res.json(user.toMeFormattedJSON())
}
-async function getUserVideoQuotaUsed (req: express.Request, res: express.Response, next: express.NextFunction) {
- // We did not load channels in res.locals.user
- const user = await UserModel.loadByUsernameAndPopulateChannels(res.locals.oauth.token.user.username)
- const videoQuotaUsed = await UserModel.getOriginalVideoFileTotalFromUser(user)
- const videoQuotaUsedDaily = await UserModel.getOriginalVideoFileTotalDailyFromUser(user)
+async function getUserVideoQuotaUsed (req: express.Request, res: express.Response) {
+ const user = res.locals.oauth.token.user
+ const videoQuotaUsed = await getOriginalVideoFileTotalFromUser(user)
+ const videoQuotaUsedDaily = await getOriginalVideoFileTotalDailyFromUser(user)
const data: UserVideoQuota = {
videoQuotaUsed,
return res.json(data)
}
-async function getUserVideoRating (req: express.Request, res: express.Response, next: express.NextFunction) {
- const videoId = res.locals.video.id
+async function getUserVideoRating (req: express.Request, res: express.Response) {
+ const videoId = res.locals.videoId.id
const accountId = +res.locals.oauth.token.User.Account.id
const ratingObj = await AccountVideoRateModel.load(accountId, videoId, null)
}
async function deleteMe (req: express.Request, res: express.Response) {
- const user: UserModel = res.locals.oauth.token.User
-
- await user.destroy()
+ const user = await UserModel.loadByIdWithChannels(res.locals.oauth.token.User.id)
auditLogger.delete(getAuditIdFromRes(res), new UserAuditView(user.toFormattedJSON()))
- return res.sendStatus(204)
+ await user.destroy()
+
+ return res.sendStatus(HttpStatusCode.NO_CONTENT_204)
}
-async function updateMe (req: express.Request, res: express.Response, next: express.NextFunction) {
+async function updateMe (req: express.Request, res: express.Response) {
const body: UserUpdateMe = req.body
+ let sendVerificationEmail = false
+
+ const user = res.locals.oauth.token.user
+
+ const keysToUpdate: (keyof UserUpdateMe & keyof AttributesOnly<UserModel>)[] = [
+ 'password',
+ 'nsfwPolicy',
+ 'webTorrentEnabled',
+ 'autoPlayVideo',
+ 'autoPlayNextVideo',
+ 'autoPlayNextVideoPlaylist',
+ 'videosHistoryEnabled',
+ 'videoLanguages',
+ 'theme',
+ 'noInstanceConfigWarningModal',
+ 'noWelcomeModal'
+ ]
+
+ for (const key of keysToUpdate) {
+ if (body[key] !== undefined) user.set(key, body[key])
+ }
- const user: UserModel = res.locals.oauth.token.user
- const oldUserAuditView = new UserAuditView(user.toFormattedJSON())
-
- if (body.password !== undefined) user.password = body.password
- if (body.email !== undefined) user.email = body.email
- if (body.nsfwPolicy !== undefined) user.nsfwPolicy = body.nsfwPolicy
- if (body.autoPlayVideo !== undefined) user.autoPlayVideo = body.autoPlayVideo
+ if (body.email !== undefined) {
+ if (CONFIG.SIGNUP.REQUIRES_EMAIL_VERIFICATION) {
+ user.pendingEmail = body.email
+ sendVerificationEmail = true
+ } else {
+ user.email = body.email
+ }
+ }
await sequelizeTypescript.transaction(async t => {
- const userAccount = await AccountModel.load(user.Account.id)
-
await user.save({ transaction: t })
+ if (body.displayName === undefined && body.description === undefined) return
+
+ const userAccount = await AccountModel.load(user.Account.id, t)
+
if (body.displayName !== undefined) userAccount.name = body.displayName
if (body.description !== undefined) userAccount.description = body.description
await userAccount.save({ transaction: t })
await sendUpdateActor(userAccount, t)
-
- auditLogger.update(getAuditIdFromRes(res), new UserAuditView(user.toFormattedJSON()), oldUserAuditView)
})
- return res.sendStatus(204)
+ if (sendVerificationEmail === true) {
+ await sendVerifyUserEmail(user, true)
+ }
+
+ return res.sendStatus(HttpStatusCode.NO_CONTENT_204)
}
-async function updateMyAvatar (req: express.Request, res: express.Response, next: express.NextFunction) {
- const avatarPhysicalFile = req.files[ 'avatarfile' ][ 0 ]
- const user: UserModel = res.locals.oauth.token.user
- const oldUserAuditView = new UserAuditView(user.toFormattedJSON())
+async function updateMyAvatar (req: express.Request, res: express.Response) {
+ const avatarPhysicalFile = req.files['avatarfile'][0]
+ const user = res.locals.oauth.token.user
const userAccount = await AccountModel.load(user.Account.id)
- const avatar = await updateActorAvatarFile(avatarPhysicalFile, userAccount)
-
- auditLogger.update(getAuditIdFromRes(res), new UserAuditView(user.toFormattedJSON()), oldUserAuditView)
+ const avatar = await updateLocalActorImageFile(userAccount, avatarPhysicalFile, ActorImageType.AVATAR)
return res.json({ avatar: avatar.toFormattedJSON() })
}
+
+async function deleteMyAvatar (req: express.Request, res: express.Response) {
+ const user = res.locals.oauth.token.user
+
+ const userAccount = await AccountModel.load(user.Account.id)
+ await deleteLocalActorImageFile(userAccount, ActorImageType.AVATAR)
+
+ return res.sendStatus(HttpStatusCode.NO_CONTENT_204)
+}