-import 'express-validator'
-import { has, values } from 'lodash'
-
-import {
- REQUEST_ENDPOINTS,
- REQUEST_ENDPOINT_ACTIONS,
- REQUEST_VIDEO_EVENT_TYPES
-} from '../../../initializers'
-import { isArray, isDateValid, isUUIDValid } from '../misc'
+import * as validator from 'validator'
+import { ACTIVITY_PUB, CONSTRAINTS_FIELDS } from '../../../initializers'
+import { peertubeTruncate } from '../../core-utils'
+import { exists, isBooleanValid, isDateValid, isUUIDValid } from '../misc'
import {
- isVideoThumbnailDataValid,
isVideoAbuseReasonValid,
- isVideoAbuseReporterUsernameValid,
- isVideoViewsValid,
- isVideoLikesValid,
- isVideoDislikesValid,
- isVideoEventCountValid,
- isRemoteVideoCategoryValid,
- isRemoteVideoLicenceValid,
- isRemoteVideoLanguageValid,
- isVideoNSFWValid,
- isVideoTruncatedDescriptionValid,
isVideoDurationValid,
- isVideoFileInfoHashValid,
isVideoNameValid,
- isVideoTagsValid,
- isVideoFileExtnameValid,
- isVideoFileResolutionValid
+ isVideoStateValid,
+ isVideoTagValid,
+ isVideoTruncatedDescriptionValid,
+ isVideoViewsValid
} from '../videos'
-import { isVideoChannelDescriptionValid, isVideoChannelNameValid } from '../video-channels'
-import { isVideoAuthorNameValid } from '../video-authors'
-
-const ENDPOINT_ACTIONS = REQUEST_ENDPOINT_ACTIONS[REQUEST_ENDPOINTS.VIDEOS]
-
-const checkers: { [ id: string ]: (obj: any) => boolean } = {}
-checkers[ENDPOINT_ACTIONS.ADD_VIDEO] = checkAddVideo
-checkers[ENDPOINT_ACTIONS.UPDATE_VIDEO] = checkUpdateVideo
-checkers[ENDPOINT_ACTIONS.REMOVE_VIDEO] = checkRemoveVideo
-checkers[ENDPOINT_ACTIONS.REPORT_ABUSE] = checkReportVideo
-checkers[ENDPOINT_ACTIONS.ADD_CHANNEL] = checkAddVideoChannel
-checkers[ENDPOINT_ACTIONS.UPDATE_CHANNEL] = checkUpdateVideoChannel
-checkers[ENDPOINT_ACTIONS.REMOVE_CHANNEL] = checkRemoveVideoChannel
-checkers[ENDPOINT_ACTIONS.ADD_AUTHOR] = checkAddAuthor
-checkers[ENDPOINT_ACTIONS.REMOVE_AUTHOR] = checkRemoveAuthor
-
-function removeBadRequestVideos (requests: any[]) {
- for (let i = requests.length - 1; i >= 0 ; i--) {
- const request = requests[i]
- const video = request.data
-
- if (
- !video ||
- checkers[request.type] === undefined ||
- checkers[request.type](video) === false
- ) {
- requests.splice(i, 1)
- }
- }
+import { isActivityPubUrlValid, isBaseActivityValid, setValidAttributedTo } from './misc'
+import { VideoState } from '../../../../shared/models/videos'
+
+function sanitizeAndCheckVideoTorrentCreateActivity (activity: any) {
+ return isBaseActivityValid(activity, 'Create') &&
+ sanitizeAndCheckVideoTorrentObject(activity.object)
}
-function removeBadRequestVideosQadu (requests: any[]) {
- for (let i = requests.length - 1; i >= 0 ; i--) {
- const request = requests[i]
- const video = request.data
-
- if (
- !video ||
- (
- isUUIDValid(video.uuid) &&
- (has(video, 'views') === false || isVideoViewsValid(video.views)) &&
- (has(video, 'likes') === false || isVideoLikesValid(video.likes)) &&
- (has(video, 'dislikes') === false || isVideoDislikesValid(video.dislikes))
- ) === false
- ) {
- requests.splice(i, 1)
- }
- }
+function sanitizeAndCheckVideoTorrentUpdateActivity (activity: any) {
+ return isBaseActivityValid(activity, 'Update') &&
+ sanitizeAndCheckVideoTorrentObject(activity.object)
}
-function removeBadRequestVideosEvents (requests: any[]) {
- for (let i = requests.length - 1; i >= 0 ; i--) {
- const request = requests[i]
- const eventData = request.data
-
- if (
- !eventData ||
- (
- isUUIDValid(eventData.uuid) &&
- values(REQUEST_VIDEO_EVENT_TYPES).indexOf(eventData.eventType) !== -1 &&
- isVideoEventCountValid(eventData.count)
- ) === false
- ) {
- requests.splice(i, 1)
- }
- }
+function isVideoTorrentDeleteActivityValid (activity: any) {
+ return isBaseActivityValid(activity, 'Delete')
+}
+
+function isVideoFlagValid (activity: any) {
+ return isBaseActivityValid(activity, 'Create') &&
+ activity.object.type === 'Flag' &&
+ isVideoAbuseReasonValid(activity.object.content) &&
+ isActivityPubUrlValid(activity.object.object)
+}
+
+function isActivityPubVideoDurationValid (value: string) {
+ // https://www.w3.org/TR/activitystreams-vocabulary/#dfn-duration
+ return exists(value) &&
+ typeof value === 'string' &&
+ value.startsWith('PT') &&
+ value.endsWith('S') &&
+ isVideoDurationValid(value.replace(/[^0-9]+/g, ''))
+}
+
+function sanitizeAndCheckVideoTorrentObject (video: any) {
+ if (!video || video.type !== 'Video') return false
+
+ if (!setValidRemoteTags(video)) return false
+ if (!setValidRemoteVideoUrls(video)) return false
+ if (!setRemoteVideoTruncatedContent(video)) return false
+ if (!setValidAttributedTo(video)) return false
+ if (!setValidRemoteCaptions(video)) return false
+
+ // Default attributes
+ if (!isVideoStateValid(video.state)) video.state = VideoState.PUBLISHED
+ if (!isBooleanValid(video.waitTranscoding)) video.waitTranscoding = false
+
+ return isActivityPubUrlValid(video.id) &&
+ isVideoNameValid(video.name) &&
+ isActivityPubVideoDurationValid(video.duration) &&
+ isUUIDValid(video.uuid) &&
+ (!video.category || isRemoteNumberIdentifierValid(video.category)) &&
+ (!video.licence || isRemoteNumberIdentifierValid(video.licence)) &&
+ (!video.language || isRemoteStringIdentifierValid(video.language)) &&
+ isVideoViewsValid(video.views) &&
+ isBooleanValid(video.sensitive) &&
+ isBooleanValid(video.commentsEnabled) &&
+ isDateValid(video.published) &&
+ isDateValid(video.updated) &&
+ (!video.content || isRemoteVideoContentValid(video.mediaType, video.content)) &&
+ isRemoteVideoIconValid(video.icon) &&
+ video.url.length !== 0 &&
+ video.attributedTo.length !== 0
}
// ---------------------------------------------------------------------------
export {
- removeBadRequestVideos,
- removeBadRequestVideosQadu,
- removeBadRequestVideosEvents
+ sanitizeAndCheckVideoTorrentCreateActivity,
+ sanitizeAndCheckVideoTorrentUpdateActivity,
+ isVideoTorrentDeleteActivityValid,
+ isRemoteStringIdentifierValid,
+ isVideoFlagValid,
+ sanitizeAndCheckVideoTorrentObject
}
// ---------------------------------------------------------------------------
-function isCommonVideoAttributesValid (video: any) {
- return isDateValid(video.createdAt) &&
- isDateValid(video.updatedAt) &&
- isRemoteVideoCategoryValid(video.category) &&
- isRemoteVideoLicenceValid(video.licence) &&
- isRemoteVideoLanguageValid(video.language) &&
- isVideoNSFWValid(video.nsfw) &&
- isVideoTruncatedDescriptionValid(video.truncatedDescription) &&
- isVideoDurationValid(video.duration) &&
- isVideoNameValid(video.name) &&
- isVideoTagsValid(video.tags) &&
- isUUIDValid(video.uuid) &&
- isVideoViewsValid(video.views) &&
- isVideoLikesValid(video.likes) &&
- isVideoDislikesValid(video.dislikes) &&
- isArray(video.files) &&
- video.files.every(videoFile => {
- if (!videoFile) return false
+function setValidRemoteTags (video: any) {
+ if (Array.isArray(video.tag) === false) return false
- return (
- isVideoFileInfoHashValid(videoFile.infoHash) &&
- isVideoFileExtnameValid(videoFile.extname) &&
- isVideoFileResolutionValid(videoFile.resolution)
- )
- })
-}
+ video.tag = video.tag.filter(t => {
+ return t.type === 'Hashtag' &&
+ isVideoTagValid(t.name)
+ })
-function checkAddVideo (video: any) {
- return isCommonVideoAttributesValid(video) &&
- isUUIDValid(video.channelUUID) &&
- isVideoThumbnailDataValid(video.thumbnailData)
+ return true
}
-function checkUpdateVideo (video: any) {
- return isCommonVideoAttributesValid(video)
+function setValidRemoteCaptions (video: any) {
+ if (!video.subtitleLanguage) video.subtitleLanguage = []
+
+ if (Array.isArray(video.subtitleLanguage) === false) return false
+
+ video.subtitleLanguage = video.subtitleLanguage.filter(caption => {
+ return isRemoteStringIdentifierValid(caption)
+ })
+
+ return true
}
-function checkRemoveVideo (video: any) {
- return isUUIDValid(video.uuid)
+function isRemoteNumberIdentifierValid (data: any) {
+ return validator.isInt(data.identifier, { min: 0 })
}
-function checkReportVideo (abuse: any) {
- return isUUIDValid(abuse.videoUUID) &&
- isVideoAbuseReasonValid(abuse.reportReason) &&
- isVideoAbuseReporterUsernameValid(abuse.reporterUsername)
+function isRemoteStringIdentifierValid (data: any) {
+ return typeof data.identifier === 'string'
}
-function checkAddVideoChannel (videoChannel: any) {
- return isUUIDValid(videoChannel.uuid) &&
- isVideoChannelNameValid(videoChannel.name) &&
- isVideoChannelDescriptionValid(videoChannel.description) &&
- isDateValid(videoChannel.createdAt) &&
- isDateValid(videoChannel.updatedAt) &&
- isUUIDValid(videoChannel.ownerUUID)
+function isRemoteVideoContentValid (mediaType: string, content: string) {
+ return mediaType === 'text/markdown' && isVideoTruncatedDescriptionValid(content)
}
-function checkUpdateVideoChannel (videoChannel: any) {
- return isUUIDValid(videoChannel.uuid) &&
- isVideoChannelNameValid(videoChannel.name) &&
- isVideoChannelDescriptionValid(videoChannel.description) &&
- isDateValid(videoChannel.createdAt) &&
- isDateValid(videoChannel.updatedAt) &&
- isUUIDValid(videoChannel.ownerUUID)
+function isRemoteVideoIconValid (icon: any) {
+ return icon.type === 'Image' &&
+ isActivityPubUrlValid(icon.url) &&
+ icon.mediaType === 'image/jpeg' &&
+ validator.isInt(icon.width + '', { min: 0 }) &&
+ validator.isInt(icon.height + '', { min: 0 })
}
-function checkRemoveVideoChannel (videoChannel: any) {
- return isUUIDValid(videoChannel.uuid)
+function setValidRemoteVideoUrls (video: any) {
+ if (Array.isArray(video.url) === false) return false
+
+ video.url = video.url.filter(u => isRemoteVideoUrlValid(u))
+
+ return true
}
-function checkAddAuthor (author: any) {
- return isUUIDValid(author.uuid) &&
- isVideoAuthorNameValid(author.name)
+function setRemoteVideoTruncatedContent (video: any) {
+ if (video.content) {
+ video.content = peertubeTruncate(video.content, CONSTRAINTS_FIELDS.VIDEOS.TRUNCATED_DESCRIPTION.max)
+ }
+
+ return true
}
-function checkRemoveAuthor (author: any) {
- return isUUIDValid(author.uuid)
+function isRemoteVideoUrlValid (url: any) {
+ return url.type === 'Link' &&
+ (
+ ACTIVITY_PUB.URL_MIME_TYPES.VIDEO.indexOf(url.mimeType) !== -1 &&
+ isActivityPubUrlValid(url.href) &&
+ validator.isInt(url.width + '', { min: 0 }) &&
+ validator.isInt(url.size + '', { min: 0 })
+ ) ||
+ (
+ ACTIVITY_PUB.URL_MIME_TYPES.TORRENT.indexOf(url.mimeType) !== -1 &&
+ isActivityPubUrlValid(url.href) &&
+ validator.isInt(url.width + '', { min: 0 })
+ ) ||
+ (
+ ACTIVITY_PUB.URL_MIME_TYPES.MAGNET.indexOf(url.mimeType) !== -1 &&
+ validator.isLength(url.href, { min: 5 }) &&
+ validator.isInt(url.width + '', { min: 0 })
+ )
}