X-Git-Url: https://git.immae.eu/?a=blobdiff_plain;f=server%2Fcontrollers%2Fapi%2Fvideos%2Fabuse.ts;h=9c4d008496c247ddadd92e92fc112cddc4540356;hb=403c69c5a34e6db621f30c7b2bfb2b80dc8e74c1;hp=7782fc6390cb3aa187d11ba23b5f5cc3e632548a;hpb=3d52b300ea79bec21f090e2447c4808307078618;p=github%2FChocobozzz%2FPeerTube.git diff --git a/server/controllers/api/videos/abuse.ts b/server/controllers/api/videos/abuse.ts index 7782fc639..9c4d00849 100644 --- a/server/controllers/api/videos/abuse.ts +++ b/server/controllers/api/videos/abuse.ts @@ -1,10 +1,9 @@ import * as express from 'express' -import { UserRight, VideoAbuseCreate } from '../../../../shared' -import { logger } from '../../../helpers/logger' -import { getFormattedObjects } from '../../../helpers/utils' -import { sequelizeTypescript } from '../../../initializers' -import { sendVideoAbuse } from '../../../lib/activitypub/send' +import { AbuseModel } from '@server/models/abuse/abuse' +import { getServerActor } from '@server/models/application/application' +import { AbuseCreate, UserRight, VideoAbuseCreate } from '../../../../shared' import { + abusesSortValidator, asyncMiddleware, asyncRetryTransactionMiddleware, authenticate, @@ -12,31 +11,44 @@ import { paginationValidator, setDefaultPagination, setDefaultSort, + videoAbuseGetValidator, + videoAbuseListValidator, videoAbuseReportValidator, - videoAbusesSortValidator + videoAbuseUpdateValidator } from '../../../middlewares' -import { AccountModel } from '../../../models/account/account' -import { VideoModel } from '../../../models/video/video' -import { VideoAbuseModel } from '../../../models/video/video-abuse' -import { auditLoggerFactory, VideoAbuseAuditView } from '../../../helpers/audit-logger' +import { deleteAbuse, reportAbuse, updateAbuse } from '../abuse' + +// FIXME: deprecated in 2.3. Remove this controller -const auditLogger = auditLoggerFactory('abuse') const abuseVideoRouter = express.Router() abuseVideoRouter.get('/abuse', authenticate, - ensureUserHasRight(UserRight.MANAGE_VIDEO_ABUSES), + ensureUserHasRight(UserRight.MANAGE_ABUSES), paginationValidator, - videoAbusesSortValidator, + abusesSortValidator, setDefaultSort, setDefaultPagination, + videoAbuseListValidator, asyncMiddleware(listVideoAbuses) ) -abuseVideoRouter.post('/:id/abuse', +abuseVideoRouter.put('/:videoId/abuse/:id', + authenticate, + ensureUserHasRight(UserRight.MANAGE_ABUSES), + asyncMiddleware(videoAbuseUpdateValidator), + asyncRetryTransactionMiddleware(updateVideoAbuse) +) +abuseVideoRouter.post('/:videoId/abuse', authenticate, asyncMiddleware(videoAbuseReportValidator), asyncRetryTransactionMiddleware(reportVideoAbuse) ) +abuseVideoRouter.delete('/:videoId/abuse/:id', + authenticate, + ensureUserHasRight(UserRight.MANAGE_ABUSES), + asyncMiddleware(videoAbuseGetValidator), + asyncRetryTransactionMiddleware(deleteVideoAbuse) +) // --------------------------------------------------------------------------- @@ -46,36 +58,57 @@ export { // --------------------------------------------------------------------------- -async function listVideoAbuses (req: express.Request, res: express.Response, next: express.NextFunction) { - const resultList = await VideoAbuseModel.listForApi(req.query.start, req.query.count, req.query.sort) +async function listVideoAbuses (req: express.Request, res: express.Response) { + const user = res.locals.oauth.token.user + const serverActor = await getServerActor() - return res.json(getFormattedObjects(resultList.data, resultList.total)) + const resultList = await AbuseModel.listForAdminApi({ + start: req.query.start, + count: req.query.count, + sort: req.query.sort, + id: req.query.id, + filter: 'video', + predefinedReason: req.query.predefinedReason, + search: req.query.search, + state: req.query.state, + videoIs: req.query.videoIs, + searchReporter: req.query.searchReporter, + searchReportee: req.query.searchReportee, + searchVideo: req.query.searchVideo, + searchVideoChannel: req.query.searchVideoChannel, + serverAccountId: serverActor.Account.id, + user + }) + + return res.json({ + total: resultList.total, + data: resultList.data.map(d => d.toFormattedAdminJSON()) + }) +} + +async function updateVideoAbuse (req: express.Request, res: express.Response) { + return updateAbuse(req, res) +} + +async function deleteVideoAbuse (req: express.Request, res: express.Response) { + return deleteAbuse(req, res) } async function reportVideoAbuse (req: express.Request, res: express.Response) { - const videoInstance = res.locals.video as VideoModel - const reporterAccount = res.locals.oauth.token.User.Account as AccountModel - const body: VideoAbuseCreate = req.body - - const abuseToCreate = { - reporterAccountId: reporterAccount.id, - reason: body.reason, - videoId: videoInstance.id - } - - await sequelizeTypescript.transaction(async t => { - const videoAbuseInstance = await VideoAbuseModel.create(abuseToCreate, { transaction: t }) - videoAbuseInstance.Video = videoInstance - videoAbuseInstance.Account = reporterAccount - - // We send the video abuse to the origin server - if (videoInstance.isOwned() === false) { - await sendVideoAbuse(reporterAccount.Actor, videoAbuseInstance, videoInstance, t) - } + const oldBody = req.body as VideoAbuseCreate - auditLogger.create(reporterAccount.Actor.getIdentifier(), new VideoAbuseAuditView(videoAbuseInstance.toFormattedJSON())) - logger.info('Abuse report for video %s created.', videoInstance.name) - }) + req.body = { + accountId: res.locals.videoAll.VideoChannel.accountId, + + reason: oldBody.reason, + predefinedReasons: oldBody.predefinedReasons, + + video: { + id: res.locals.videoAll.id, + startAt: oldBody.startAt, + endAt: oldBody.endAt + } + } as AbuseCreate - return res.type('json').status(204).end() + return reportAbuse(req, res) }