-import { values } from 'lodash'
-import * as validator from 'validator'
-import * as Promise from 'bluebird'
-import * as express from 'express'
+import { Response } from 'express'
import 'express-validator'
+import { values } from 'lodash'
import 'multer'
-
+import * as validator from 'validator'
+import { UserRight, VideoPrivacy, VideoRateType } from '../../../shared'
import {
CONSTRAINTS_FIELDS,
VIDEO_CATEGORIES,
VIDEO_LICENCES,
- VIDEO_LANGUAGES,
- VIDEO_RATE_TYPES,
+ VIDEO_MIMETYPE_EXT,
VIDEO_PRIVACIES,
- database as db
+ VIDEO_RATE_TYPES,
+ VIDEO_STATES
} from '../../initializers'
-import { isUserUsernameValid } from './users'
-import { isArray, exists } from './misc'
-import { VideoInstance } from '../../models'
-import { logger } from '../../helpers'
-import { VideoRateType } from '../../../shared'
+import { VideoModel } from '../../models/video/video'
+import { exists, isArray, isFileValid } from './misc'
+import { VideoChannelModel } from '../../models/video/video-channel'
+import { UserModel } from '../../models/account/user'
+import * as magnetUtil from 'magnet-uri'
+import { fetchVideo, VideoFetchType } from '../video'
const VIDEOS_CONSTRAINTS_FIELDS = CONSTRAINTS_FIELDS.VIDEOS
-const VIDEO_ABUSES_CONSTRAINTS_FIELDS = CONSTRAINTS_FIELDS.VIDEO_ABUSES
-const VIDEO_EVENTS_CONSTRAINTS_FIELDS = CONSTRAINTS_FIELDS.VIDEO_EVENTS
-
-function isVideoCategoryValid (value: number) {
- return VIDEO_CATEGORIES[value] !== undefined
-}
-
-// Maybe we don't know the remote category, but that doesn't matter
-function isRemoteVideoCategoryValid (value: string) {
- return validator.isInt('' + value)
-}
-
-function isVideoLicenceValid (value: number) {
- return VIDEO_LICENCES[value] !== undefined
-}
-
-function isVideoPrivacyValid (value: string) {
- return VIDEO_PRIVACIES[value] !== undefined
-}
-// Maybe we don't know the remote privacy setting, but that doesn't matter
-function isRemoteVideoPrivacyValid (value: string) {
- return validator.isInt('' + value)
+function isVideoCategoryValid (value: any) {
+ return value === null || VIDEO_CATEGORIES[ value ] !== undefined
}
-// Maybe we don't know the remote licence, but that doesn't matter
-function isRemoteVideoLicenceValid (value: string) {
- return validator.isInt('' + value)
+function isVideoStateValid (value: any) {
+ return exists(value) && VIDEO_STATES[ value ] !== undefined
}
-function isVideoLanguageValid (value: number) {
- return value === null || VIDEO_LANGUAGES[value] !== undefined
+function isVideoLicenceValid (value: any) {
+ return value === null || VIDEO_LICENCES[ value ] !== undefined
}
-// Maybe we don't know the remote language, but that doesn't matter
-function isRemoteVideoLanguageValid (value: string) {
- return validator.isInt('' + value)
+function isVideoLanguageValid (value: any) {
+ return value === null ||
+ (typeof value === 'string' && validator.isLength(value, VIDEOS_CONSTRAINTS_FIELDS.LANGUAGE))
}
-function isVideoNSFWValid (value: any) {
- return typeof value === 'boolean' || (typeof value === 'string' && validator.isBoolean(value))
+function isVideoDurationValid (value: string) {
+ return exists(value) && validator.isInt(value + '', VIDEOS_CONSTRAINTS_FIELDS.DURATION)
}
function isVideoTruncatedDescriptionValid (value: string) {
}
function isVideoDescriptionValid (value: string) {
- return exists(value) && validator.isLength(value, VIDEOS_CONSTRAINTS_FIELDS.DESCRIPTION)
+ return value === null || (exists(value) && validator.isLength(value, VIDEOS_CONSTRAINTS_FIELDS.DESCRIPTION))
}
-function isVideoDurationValid (value: string) {
- // https://www.w3.org/TR/activitystreams-vocabulary/#dfn-duration
- return exists(value) &&
- typeof value === 'string' &&
- value.startsWith('PT') &&
- value.endsWith('S') &&
- validator.isInt(value.replace(/[^0-9]+/, ''), VIDEOS_CONSTRAINTS_FIELDS.DURATION)
+function isVideoSupportValid (value: string) {
+ return value === null || (exists(value) && validator.isLength(value, VIDEOS_CONSTRAINTS_FIELDS.SUPPORT))
}
function isVideoNameValid (value: string) {
}
function isVideoTagsValid (tags: string[]) {
- return isArray(tags) &&
- validator.isInt(tags.length.toString(), VIDEOS_CONSTRAINTS_FIELDS.TAGS) &&
- tags.every(tag => isVideoTagValid(tag))
+ return tags === null || (
+ isArray(tags) &&
+ validator.isInt(tags.length.toString(), VIDEOS_CONSTRAINTS_FIELDS.TAGS) &&
+ tags.every(tag => isVideoTagValid(tag))
+ )
}
-function isVideoThumbnailValid (value: string) {
- return exists(value) && validator.isLength(value, VIDEOS_CONSTRAINTS_FIELDS.THUMBNAIL)
+function isVideoViewsValid (value: string) {
+ return exists(value) && validator.isInt(value + '', VIDEOS_CONSTRAINTS_FIELDS.VIEWS)
}
-function isVideoThumbnailDataValid (value: string) {
- return exists(value) && validator.isByteLength(value, VIDEOS_CONSTRAINTS_FIELDS.THUMBNAIL_DATA)
+function isVideoRatingTypeValid (value: string) {
+ return value === 'none' || values(VIDEO_RATE_TYPES).indexOf(value as VideoRateType) !== -1
}
-function isVideoAbuseReasonValid (value: string) {
- return exists(value) && validator.isLength(value, VIDEO_ABUSES_CONSTRAINTS_FIELDS.REASON)
-}
+const videoFileTypes = Object.keys(VIDEO_MIMETYPE_EXT).map(m => `(${m})`)
+const videoFileTypesRegex = videoFileTypes.join('|')
-function isVideoAbuseReporterUsernameValid (value: string) {
- return isUserUsernameValid(value)
+function isVideoFile (files: { [ fieldname: string ]: Express.Multer.File[] } | Express.Multer.File[]) {
+ return isFileValid(files, videoFileTypesRegex, 'videofile', null)
}
-function isVideoViewsValid (value: string) {
- return exists(value) && validator.isInt(value + '', VIDEOS_CONSTRAINTS_FIELDS.VIEWS)
-}
+const videoImageTypes = CONSTRAINTS_FIELDS.VIDEOS.IMAGE.EXTNAME
+ .map(v => v.replace('.', ''))
+ .join('|')
+const videoImageTypesRegex = `image/(${videoImageTypes})`
-function isVideoLikesValid (value: string) {
- return exists(value) && validator.isInt(value + '', VIDEOS_CONSTRAINTS_FIELDS.LIKES)
+function isVideoImage (files: { [ fieldname: string ]: Express.Multer.File[] } | Express.Multer.File[], field: string) {
+ return isFileValid(files, videoImageTypesRegex, field, CONSTRAINTS_FIELDS.VIDEOS.IMAGE.FILE_SIZE.max, true)
}
-function isVideoDislikesValid (value: string) {
- return exists(value) && validator.isInt(value + '', VIDEOS_CONSTRAINTS_FIELDS.DISLIKES)
+function isVideoPrivacyValid (value: number) {
+ return validator.isInt(value + '') && VIDEO_PRIVACIES[ value ] !== undefined
}
-function isVideoEventCountValid (value: string) {
- return exists(value) && validator.isInt(value + '', VIDEO_EVENTS_CONSTRAINTS_FIELDS.COUNT)
+function isScheduleVideoUpdatePrivacyValid (value: number) {
+ return validator.isInt(value + '') &&
+ (
+ value === VideoPrivacy.UNLISTED ||
+ value === VideoPrivacy.PUBLIC
+ )
}
-function isVideoRatingTypeValid (value: string) {
- return values(VIDEO_RATE_TYPES).indexOf(value as VideoRateType) !== -1
+function isVideoFileInfoHashValid (value: string | null | undefined) {
+ return exists(value) && validator.isLength(value, VIDEOS_CONSTRAINTS_FIELDS.INFO_HASH)
}
-function isVideoFile (files: { [ fieldname: string ]: Express.Multer.File[] } | Express.Multer.File[]) {
- // Should have files
- if (!files) return false
- if (isArray(files)) return false
-
- // Should have videofile file
- const videofile = files['videofile']
- if (!videofile || videofile.length === 0) return false
-
- // The file should exist
- const file = videofile[0]
- if (!file || !file.originalname) return false
+function isVideoFileResolutionValid (value: string) {
+ return exists(value) && validator.isInt(value + '')
+}
- return new RegExp('^video/(webm|mp4|ogg)$', 'i').test(file.mimetype)
+function isVideoFPSResolutionValid (value: string) {
+ return value === null || validator.isInt(value + '')
}
function isVideoFileSizeValid (value: string) {
return exists(value) && validator.isInt(value + '', VIDEOS_CONSTRAINTS_FIELDS.FILE_SIZE)
}
-function isVideoFileResolutionValid (value: string) {
- return exists(value) && validator.isInt(value + '')
-}
+function isVideoMagnetUriValid (value: string) {
+ if (!exists(value)) return false
-function isVideoFileExtnameValid (value: string) {
- return VIDEOS_CONSTRAINTS_FIELDS.EXTNAME.indexOf(value) !== -1
+ const parsed = magnetUtil.decode(value)
+ return parsed && isVideoFileInfoHashValid(parsed.infoHash)
}
-function isVideoFileInfoHashValid (value: string) {
- return exists(value) && validator.isLength(value, VIDEOS_CONSTRAINTS_FIELDS.INFO_HASH)
+function checkUserCanManageVideo (user: UserModel, video: VideoModel, right: UserRight, res: Response) {
+ // Retrieve the user who did the request
+ if (video.isOwned() === false) {
+ res.status(403)
+ .json({ error: 'Cannot manage a video of another server.' })
+ .end()
+ return false
+ }
+
+ // Check if the user can delete the video
+ // The user can delete it if he has the right
+ // Or if s/he is the video's account
+ const account = video.VideoChannel.Account
+ if (user.hasRight(right) === false && account.userId !== user.id) {
+ res.status(403)
+ .json({ error: 'Cannot manage a video of another user.' })
+ .end()
+ return false
+ }
+
+ return true
}
-function checkVideoExists (id: string, res: express.Response, callback: () => void) {
- let promise: Promise<VideoInstance>
- if (validator.isInt(id)) {
- promise = db.Video.loadAndPopulateAccountAndPodAndTags(+id)
- } else { // UUID
- promise = db.Video.loadByUUIDAndPopulateAccountAndPodAndTags(id)
+async function isVideoExist (id: string, res: Response, fetchType: VideoFetchType = 'all') {
+ const userId = res.locals.oauth ? res.locals.oauth.token.User.id : undefined
+
+ const video = await fetchVideo(id, fetchType, userId)
+
+ if (video === null) {
+ res.status(404)
+ .json({ error: 'Video not found' })
+ .end()
+
+ return false
}
- promise.then(video => {
- if (!video) {
- return res.status(404)
- .json({ error: 'Video not found' })
- .end()
+ if (fetchType !== 'none') res.locals.video = video
+ return true
+}
+
+async function isVideoChannelOfAccountExist (channelId: number, user: UserModel, res: Response) {
+ if (user.hasRight(UserRight.UPDATE_ANY_VIDEO) === true) {
+ const videoChannel = await VideoChannelModel.loadAndPopulateAccount(channelId)
+ if (videoChannel === null) {
+ res.status(400)
+ .json({ error: 'Unknown video `video channel` on this instance.' })
+ .end()
+
+ return false
}
- res.locals.video = video
- callback()
- })
- .catch(err => {
- logger.error('Error in video request validator.', err)
- return res.sendStatus(500)
- })
+ res.locals.videoChannel = videoChannel
+ return true
+ }
+
+ const videoChannel = await VideoChannelModel.loadByIdAndAccount(channelId, user.Account.id)
+ if (videoChannel === null) {
+ res.status(400)
+ .json({ error: 'Unknown video `video channel` for this account.' })
+ .end()
+
+ return false
+ }
+
+ res.locals.videoChannel = videoChannel
+ return true
}
// ---------------------------------------------------------------------------
export {
isVideoCategoryValid,
+ checkUserCanManageVideo,
isVideoLicenceValid,
isVideoLanguageValid,
- isVideoNSFWValid,
isVideoTruncatedDescriptionValid,
isVideoDescriptionValid,
- isVideoDurationValid,
isVideoFileInfoHashValid,
isVideoNameValid,
isVideoTagsValid,
- isVideoThumbnailValid,
- isVideoThumbnailDataValid,
- isVideoFileExtnameValid,
- isVideoAbuseReasonValid,
- isVideoAbuseReporterUsernameValid,
+ isVideoFPSResolutionValid,
+ isScheduleVideoUpdatePrivacyValid,
isVideoFile,
+ isVideoMagnetUriValid,
+ isVideoStateValid,
isVideoViewsValid,
- isVideoLikesValid,
isVideoRatingTypeValid,
- isVideoDislikesValid,
- isVideoEventCountValid,
- isVideoFileSizeValid,
+ isVideoDurationValid,
+ isVideoTagValid,
isVideoPrivacyValid,
- isRemoteVideoPrivacyValid,
isVideoFileResolutionValid,
- checkVideoExists,
- isVideoTagValid,
- isRemoteVideoCategoryValid,
- isRemoteVideoLicenceValid,
- isRemoteVideoLanguageValid
+ isVideoFileSizeValid,
+ isVideoExist,
+ isVideoImage,
+ isVideoChannelOfAccountExist,
+ isVideoSupportValid
}
projects / github / Chocobozzz / PeerTube.git / blobdiff