-import { body, param } from 'express-validator/check'
-import * as express from 'express'
+import express from 'express'
+import { body, param, query } from 'express-validator'
+import { areValidActorHandles } from '@server/helpers/custom-validators/activitypub/actor'
+import { toArray } from '@server/helpers/custom-validators/misc'
+import { getServerActor } from '@server/models/application/application'
+import { HttpStatusCode } from '../../../shared/models/http/http-error-codes'
+import { isEachUniqueHostValid, isHostValid } from '../../helpers/custom-validators/servers'
import { logger } from '../../helpers/logger'
-import { areValidationErrors } from './utils'
-import { isAccountNameWithHostExist } from '../../helpers/custom-validators/accounts'
-import { UserModel } from '../../models/account/user'
+import { WEBSERVER } from '../../initializers/constants'
import { AccountBlocklistModel } from '../../models/account/account-blocklist'
-import { isHostValid } from '../../helpers/custom-validators/servers'
-import { ServerBlocklistModel } from '../../models/server/server-blocklist'
import { ServerModel } from '../../models/server/server'
-import { CONFIG } from '../../initializers'
+import { ServerBlocklistModel } from '../../models/server/server-blocklist'
+import { areValidationErrors, doesAccountNameWithHostExist } from './shared'
-const blockAccountByAccountValidator = [
+const blockAccountValidator = [
body('accountName').exists().withMessage('Should have an account name with host'),
async (req: express.Request, res: express.Response, next: express.NextFunction) => {
logger.debug('Checking blockAccountByAccountValidator parameters', { parameters: req.body })
if (areValidationErrors(req, res)) return
- if (!await isAccountNameWithHostExist(req.body.accountName, res)) return
+ if (!await doesAccountNameWithHostExist(req.body.accountName, res)) return
- const user = res.locals.oauth.token.User as UserModel
+ const user = res.locals.oauth.token.User
const accountToBlock = res.locals.account
if (user.Account.id === accountToBlock.id) {
- res.status(409)
- .send({ error: 'You cannot block yourself.' })
- .end()
-
+ res.fail({
+ status: HttpStatusCode.CONFLICT_409,
+ message: 'You cannot block yourself.'
+ })
return
}
logger.debug('Checking unblockAccountByAccountValidator parameters', { parameters: req.params })
if (areValidationErrors(req, res)) return
- if (!await isAccountNameWithHostExist(req.params.accountName, res)) return
+ if (!await doesAccountNameWithHostExist(req.params.accountName, res)) return
+
+ const user = res.locals.oauth.token.User
+ const targetAccount = res.locals.account
+ if (!await doesUnblockAccountExist(user.Account.id, targetAccount.id, res)) return
+
+ return next()
+ }
+]
+
+const unblockAccountByServerValidator = [
+ param('accountName').exists().withMessage('Should have an account name with host'),
+
+ async (req: express.Request, res: express.Response, next: express.NextFunction) => {
+ logger.debug('Checking unblockAccountByServerValidator parameters', { parameters: req.params })
+
+ if (areValidationErrors(req, res)) return
+ if (!await doesAccountNameWithHostExist(req.params.accountName, res)) return
- const user = res.locals.oauth.token.User as UserModel
+ const serverActor = await getServerActor()
const targetAccount = res.locals.account
- if (!await isUnblockAccountExists(user.Account.id, targetAccount.id, res)) return
+ if (!await doesUnblockAccountExist(serverActor.Account.id, targetAccount.id, res)) return
return next()
}
]
-const blockServerByAccountValidator = [
+const blockServerValidator = [
body('host').custom(isHostValid).withMessage('Should have a valid host'),
async (req: express.Request, res: express.Response, next: express.NextFunction) => {
const host: string = req.body.host
- if (host === CONFIG.WEBSERVER.HOST) {
- return res.status(409)
- .send({ error: 'You cannot block your own server.' })
- .end()
+ if (host === WEBSERVER.HOST) {
+ return res.fail({
+ status: HttpStatusCode.CONFLICT_409,
+ message: 'You cannot block your own server.'
+ })
}
- const server = await ServerModel.loadByHost(host)
- if (!server) {
- return res.status(404)
- .send({ error: 'Server host not found.' })
- .end()
- }
+ const server = await ServerModel.loadOrCreateByHost(host)
res.locals.server = server
if (areValidationErrors(req, res)) return
- const user = res.locals.oauth.token.User as UserModel
- if (!await isUnblockServerExists(user.Account.id, req.params.host, res)) return
+ const user = res.locals.oauth.token.User
+ if (!await doesUnblockServerExist(user.Account.id, req.params.host, res)) return
+
+ return next()
+ }
+]
+
+const unblockServerByServerValidator = [
+ param('host').custom(isHostValid).withMessage('Should have an account name with host'),
+
+ async (req: express.Request, res: express.Response, next: express.NextFunction) => {
+ logger.debug('Checking unblockServerByServerValidator parameters', { parameters: req.params })
+
+ if (areValidationErrors(req, res)) return
+
+ const serverActor = await getServerActor()
+ if (!await doesUnblockServerExist(serverActor.Account.id, req.params.host, res)) return
+
+ return next()
+ }
+]
+
+const blocklistStatusValidator = [
+ query('hosts')
+ .optional()
+ .customSanitizer(toArray)
+ .custom(isEachUniqueHostValid).withMessage('Should have a valid hosts array'),
+
+ query('accounts')
+ .optional()
+ .customSanitizer(toArray)
+ .custom(areValidActorHandles).withMessage('Should have a valid accounts array'),
+
+ (req: express.Request, res: express.Response, next: express.NextFunction) => {
+ logger.debug('Checking blocklistStatusValidator parameters', { query: req.query })
+
+ if (areValidationErrors(req, res)) return
return next()
}
// ---------------------------------------------------------------------------
export {
- blockServerByAccountValidator,
- blockAccountByAccountValidator,
+ blockServerValidator,
+ blockAccountValidator,
unblockAccountByAccountValidator,
- unblockServerByAccountValidator
+ unblockServerByAccountValidator,
+ unblockAccountByServerValidator,
+ unblockServerByServerValidator,
+ blocklistStatusValidator
}
// ---------------------------------------------------------------------------
-async function isUnblockAccountExists (accountId: number, targetAccountId: number, res: express.Response) {
+async function doesUnblockAccountExist (accountId: number, targetAccountId: number, res: express.Response) {
const accountBlock = await AccountBlocklistModel.loadByAccountAndTarget(accountId, targetAccountId)
if (!accountBlock) {
- res.status(404)
- .send({ error: 'Account block entry not found.' })
- .end()
-
+ res.fail({
+ status: HttpStatusCode.NOT_FOUND_404,
+ message: 'Account block entry not found.'
+ })
return false
}
res.locals.accountBlock = accountBlock
-
return true
}
-async function isUnblockServerExists (accountId: number, host: string, res: express.Response) {
+async function doesUnblockServerExist (accountId: number, host: string, res: express.Response) {
const serverBlock = await ServerBlocklistModel.loadByAccountAndHost(accountId, host)
if (!serverBlock) {
- res.status(404)
- .send({ error: 'Server block entry not found.' })
- .end()
-
+ res.fail({
+ status: HttpStatusCode.NOT_FOUND_404,
+ message: 'Server block entry not found.'
+ })
return false
}
res.locals.serverBlock = serverBlock
-
return true
}
projects / github / Chocobozzz / PeerTube.git / blobdiff