7 files changed, 159 insertions, 65 deletions
diff --git a/server/controllers/api/users/index.ts b/server/controllers/api/users/index.ts
index 0b27d5277..a8677a1d3 100644
--- a/server/controllers/api/users/index.ts
+++ b/server/controllers/api/users/index.ts
@@ -51,6 +51,7 @@ import { myVideosHistoryRouter } from './my-history'
 import { myNotificationsRouter } from './my-notifications'
 import { mySubscriptionsRouter } from './my-subscriptions'
 import { myVideoPlaylistsRouter } from './my-video-playlists'
+import { twoFactorRouter } from './two-factor'
 const auditLogger = auditLoggerFactory('users')
@@ -66,6 +67,7 @@ const askSendEmailLimiter = buildRateLimiter({
 })
 const usersRouter = express.Router()
+usersRouter.use('/', twoFactorRouter)
 usersRouter.use('/', tokensRouter)
 usersRouter.use('/', myNotificationsRouter)
 usersRouter.use('/', mySubscriptionsRouter)
@@ -343,7 +345,7 @@ async function askResetUserPassword (req: express.Request, res: express.Response
  const verificationString = await Redis.Instance.setResetPasswordVerificationString(user.id)
  const url = WEBSERVER.URL + '/reset-password?userId=' + user.id + '&verificationString=' + verificationString
-  await Emailer.Instance.addPasswordResetEmailJob(user.username, user.email, url)
+  Emailer.Instance.addPasswordResetEmailJob(user.username, user.email, url)
  return res.status(HttpStatusCode.NO_CONTENT_204).end()
 }
diff --git a/server/controllers/api/users/token.ts b/server/controllers/api/users/token.ts
index 012a49791..c6afea67c 100644
--- a/server/controllers/api/users/token.ts
+++ b/server/controllers/api/users/token.ts
@@ -1,8 +1,9 @@
 import express from 'express'
 import { logger } from '@server/helpers/logger'
 import { CONFIG } from '@server/initializers/config'
+import { OTP } from '@server/initializers/constants'
 import { getAuthNameFromRefreshGrant, getBypassFromExternalAuth, getBypassFromPasswordGrant } from '@server/lib/auth/external-auth'
-import { handleOAuthToken } from '@server/lib/auth/oauth'
+import { handleOAuthToken, MissingTwoFactorError } from '@server/lib/auth/oauth'
 import { BypassLogin, revokeToken } from '@server/lib/auth/oauth-model'
 import { Hooks } from '@server/lib/plugins/hooks'
 import { asyncMiddleware, authenticate, buildRateLimiter, openapiOperationDoc } from '@server/middlewares'
@@ -79,6 +80,10 @@ async function handleToken (req: express.Request, res: express.Response, next: e
  } catch (err) {
    logger.warn('Login error', { err })
+    if (err instanceof MissingTwoFactorError) {
+      res.set(OTP.HEADER_NAME, OTP.HEADER_REQUIRED_VALUE)
+    }
    return res.fail({
      status: err.code,
      message: err.message,
diff --git a/server/controllers/api/users/two-factor.ts b/server/controllers/api/users/two-factor.ts
new file mode 100644
index 000000000..e6ae9e4dd
--- /dev/null
+++ b/server/controllers/api/users/two-factor.ts
@@ -0,0 +1,95 @@
+import express from 'express'
+import { generateOTPSecret, isOTPValid } from '@server/helpers/otp'
+import { encrypt } from '@server/helpers/peertube-crypto'
+import { CONFIG } from '@server/initializers/config'
+import { Redis } from '@server/lib/redis'
+import { asyncMiddleware, authenticate, usersCheckCurrentPasswordFactory } from '@server/middlewares'
+import {
+  confirmTwoFactorValidator,
+  disableTwoFactorValidator,
+  requestOrConfirmTwoFactorValidator
+} from '@server/middlewares/validators/two-factor'
+import { HttpStatusCode, TwoFactorEnableResult } from '@shared/models'
+const twoFactorRouter = express.Router()
+twoFactorRouter.post('/:id/two-factor/request',
+  authenticate,
+  asyncMiddleware(usersCheckCurrentPasswordFactory(req => req.params.id)),
+  asyncMiddleware(requestOrConfirmTwoFactorValidator),
+  asyncMiddleware(requestTwoFactor)
+)
+twoFactorRouter.post('/:id/two-factor/confirm-request',
+  authenticate,
+  asyncMiddleware(requestOrConfirmTwoFactorValidator),
+  confirmTwoFactorValidator,
+  asyncMiddleware(confirmRequestTwoFactor)
+)
+twoFactorRouter.post('/:id/two-factor/disable',
+  authenticate,
+  asyncMiddleware(usersCheckCurrentPasswordFactory(req => req.params.id)),
+  asyncMiddleware(disableTwoFactorValidator),
+  asyncMiddleware(disableTwoFactor)
+)
+// ---------------------------------------------------------------------------
+export {
+  twoFactorRouter
+}
+// ---------------------------------------------------------------------------
+async function requestTwoFactor (req: express.Request, res: express.Response) {
+  const user = res.locals.user
+  const { secret, uri } = generateOTPSecret(user.email)
+  const encryptedSecret = await encrypt(secret, CONFIG.SECRETS.PEERTUBE)
+  const requestToken = await Redis.Instance.setTwoFactorRequest(user.id, encryptedSecret)
+  return res.json({
+    otpRequest: {
+      requestToken,
+      secret,
+      uri
+    }
+  } as TwoFactorEnableResult)
+}
+async function confirmRequestTwoFactor (req: express.Request, res: express.Response) {
+  const requestToken = req.body.requestToken
+  const otpToken = req.body.otpToken
+  const user = res.locals.user
+  const encryptedSecret = await Redis.Instance.getTwoFactorRequestToken(user.id, requestToken)
+  if (!encryptedSecret) {
+    return res.fail({
+      message: 'Invalid request token',
+      status: HttpStatusCode.FORBIDDEN_403
+    })
+  }
+  if (await isOTPValid({ encryptedSecret, token: otpToken }) !== true) {
+    return res.fail({
+      message: 'Invalid OTP token',
+      status: HttpStatusCode.FORBIDDEN_403
+    })
+  }
+  user.otpSecret = encryptedSecret
+  await user.save()
+  return res.sendStatus(HttpStatusCode.NO_CONTENT_204)
+}
+async function disableTwoFactor (req: express.Request, res: express.Response) {
+  const user = res.locals.user
+  user.otpSecret = null
+  await user.save()
+  return res.sendStatus(HttpStatusCode.NO_CONTENT_204)
+}
diff --git a/server/controllers/feeds.ts b/server/controllers/feeds.ts
index 241715fb9..772fe734d 100644
--- a/server/controllers/feeds.ts
+++ b/server/controllers/feeds.ts
@@ -4,7 +4,8 @@ import { Feed } from '@peertube/feed'
 import { mdToOneLinePlainText, toSafeHtml } from '@server/helpers/markdown'
 import { getServerActor } from '@server/models/application/application'
 import { getCategoryLabel } from '@server/models/video/formatter/video-format-utils'
-import { VideoInclude } from '@shared/models'
+import { MAccountDefault, MChannelBannerAccountDefault, MVideoFullLight } from '@server/types/models'
+import { ActorImageType, VideoInclude } from '@shared/models'
 import { buildNSFWFilter } from '../helpers/express-utils'
 import { CONFIG } from '../initializers/config'
 import { MIMETYPES, PREVIEWS_SIZE, ROUTE_CACHE_LIFETIME, WEBSERVER } from '../initializers/constants'
@@ -82,22 +83,12 @@ async function generateVideoCommentsFeed (req: express.Request, res: express.Res
    videoChannelId: videoChannel ? videoChannel.id : undefined
  })
-  let name: string
+  const { name, description, imageUrl } = buildFeedMetadata({ video, account, videoChannel })
-  let description: string
-  if (videoChannel) {
-    name = videoChannel.getDisplayName()
-    description = videoChannel.description
-  } else if (account) {
-    name = account.getDisplayName()
-    description = account.description
-  } else {
-    name = video ? video.name : CONFIG.INSTANCE.NAME
-    description = video ? video.description : CONFIG.INSTANCE.DESCRIPTION
-  }
  const feed = initFeed({
    name,
    description,
+    imageUrl,
    resourceType: 'video-comments',
    queryString: new URL(WEBSERVER.URL + req.originalUrl).search
  })
@@ -137,23 +128,12 @@ async function generateVideoFeed (req: express.Request, res: express.Response) {
  const videoChannel = res.locals.videoChannel
  const nsfw = buildNSFWFilter(res, req.query.nsfw)
-  let name: string
+  const { name, description, imageUrl } = buildFeedMetadata({ videoChannel, account })
-  let description: string
-  if (videoChannel) {
-    name = videoChannel.getDisplayName()
-    description = videoChannel.description
-  } else if (account) {
-    name = account.getDisplayName()
-    description = account.description
-  } else {
-    name = CONFIG.INSTANCE.NAME
-    description = CONFIG.INSTANCE.DESCRIPTION
-  }
  const feed = initFeed({
    name,
    description,
+    imageUrl,
    resourceType: 'videos',
    queryString: new URL(WEBSERVER.URL + req.url).search
  })
@@ -190,12 +170,13 @@ async function generateVideoFeedForSubscriptions (req: express.Request, res: exp
  const start = 0
  const account = res.locals.account
  const nsfw = buildNSFWFilter(res, req.query.nsfw)
-  const name = account.getDisplayName()
-  const description = account.description
+  const { name, description, imageUrl } = buildFeedMetadata({ account })
  const feed = initFeed({
    name,
    description,
+    imageUrl,
    resourceType: 'videos',
    queryString: new URL(WEBSERVER.URL + req.url).search
  })
@@ -229,11 +210,12 @@ async function generateVideoFeedForSubscriptions (req: express.Request, res: exp
 function initFeed (parameters: {
  name: string
  description: string
+  imageUrl: string
  resourceType?: 'videos' | 'video-comments'
  queryString?: string
 }) {
  const webserverUrl = WEBSERVER.URL
-  const { name, description, resourceType, queryString } = parameters
+  const { name, description, resourceType, queryString, imageUrl } = parameters
  return new Feed({
    title: name,
@@ -241,7 +223,7 @@ function initFeed (parameters: {
    // updated: TODO: somehowGetLatestUpdate, // optional, default = today
    id: webserverUrl,
    link: webserverUrl,
-    image: webserverUrl + '/client/assets/images/icons/icon-96x96.png',
+    image: imageUrl,
    favicon: webserverUrl + '/client/assets/images/favicon.png',
    copyright: `All rights reserved, unless otherwise specified in the terms specified at ${webserverUrl}/about` +
    ` and potential licenses granted by each content's rightholder.`,
@@ -369,3 +351,39 @@ function sendFeed (feed: Feed, req: express.Request, res: express.Response) {
  return res.send(feed.rss2()).end()
 }
+function buildFeedMetadata (options: {
+  videoChannel?: MChannelBannerAccountDefault
+  account?: MAccountDefault
+  video?: MVideoFullLight
+}) {
+  const { video, videoChannel, account } = options
+  let imageUrl = WEBSERVER.URL + '/client/assets/images/icons/icon-96x96.png'
+  let name: string
+  let description: string
+  if (videoChannel) {
+    name = videoChannel.getDisplayName()
+    description = videoChannel.description
+    if (videoChannel.Actor.hasImage(ActorImageType.AVATAR)) {
+      imageUrl = WEBSERVER.URL + videoChannel.Actor.Avatars[0].getStaticPath()
+    }
+  } else if (account) {
+    name = account.getDisplayName()
+    description = account.description
+    if (account.Actor.hasImage(ActorImageType.AVATAR)) {
+      imageUrl = WEBSERVER.URL + account.Actor.Avatars[0].getStaticPath()
+    }
+  } else if (video) {
+    name = video.name
+    description = video.description
+  } else {
+    name = CONFIG.INSTANCE.NAME
+    description = CONFIG.INSTANCE.DESCRIPTION
+  }
+  return { name, description, imageUrl }
+}
diff --git a/server/controllers/index.ts b/server/controllers/index.ts
index e8833d58c..8574a9e7b 100644
--- a/server/controllers/index.ts
+++ b/server/controllers/index.ts
@@ -6,7 +6,6 @@ export * from './feeds'
 export * from './services'
 export * from './static'
 export * from './lazy-static'
-export * from './live'
 export * from './misc'
 export * from './webfinger'
 export * from './tracker'
diff --git a/server/controllers/live.ts b/server/controllers/live.ts
deleted file mode 100644
index 81008f120..000000000
--- a/server/controllers/live.ts
+++ /dev/null
@@ -1,32 +0,0 @@
-import cors from 'cors'
-import express from 'express'
-import { mapToJSON } from '@server/helpers/core-utils'
-import { LiveSegmentShaStore } from '@server/lib/live'
-import { HttpStatusCode } from '@shared/models'
-const liveRouter = express.Router()
-liveRouter.use('/segments-sha256/:videoUUID',
-  cors(),
-  getSegmentsSha256
-)
-// ---------------------------------------------------------------------------
-export {
-  liveRouter
-}
-// ---------------------------------------------------------------------------
-function getSegmentsSha256 (req: express.Request, res: express.Response) {
-  const videoUUID = req.params.videoUUID
-  const result = LiveSegmentShaStore.Instance.getSegmentsSha256(videoUUID)
-  if (!result) {
-    return res.status(HttpStatusCode.NOT_FOUND_404).end()
-  }
-  return res.json(mapToJSON(result))
-}
diff --git a/server/controllers/well-known.ts b/server/controllers/well-known.ts
index f467bd629..ce5883571 100644
--- a/server/controllers/well-known.ts
+++ b/server/controllers/well-known.ts
@@ -5,6 +5,7 @@ import { root } from '@shared/core-utils'
 import { CONFIG } from '../initializers/config'
 import { ROUTE_CACHE_LIFETIME, WEBSERVER } from '../initializers/constants'
 import { cacheRoute } from '../middlewares/cache/cache'
+import { handleStaticError } from '@server/middlewares'
 const wellKnownRouter = express.Router()
@@ -69,6 +70,12 @@ wellKnownRouter.use('/.well-known/host-meta',
  }
 )
+wellKnownRouter.use('/.well-known/',
+  cacheRoute(ROUTE_CACHE_LIFETIME.WELL_KNOWN),
+  express.static(CONFIG.STORAGE.WELL_KNOWN_DIR, { fallthrough: false }),
+  handleStaticError
+)
 // ---------------------------------------------------------------------------
 export {

diff --git a/server/controllers/api/users/index.ts b/server/controllers/api/users/index.ts index 0b27d5277..a8677a1d3 100644 --- a/server/controllers/api/users/index.ts +++ b/server/controllers/api/users/index.ts
@@ -51,6 +51,7 @@ import { myVideosHistoryRouter } from './my-history'
51	import { myNotificationsRouter } from './my-notifications'	51	import { myNotificationsRouter } from './my-notifications'
52	import { mySubscriptionsRouter } from './my-subscriptions'	52	import { mySubscriptionsRouter } from './my-subscriptions'
53	import { myVideoPlaylistsRouter } from './my-video-playlists'	53	import { myVideoPlaylistsRouter } from './my-video-playlists'
		54	import { twoFactorRouter } from './two-factor'
54		55
55	const auditLogger = auditLoggerFactory('users')	56	const auditLogger = auditLoggerFactory('users')
56		57
@@ -66,6 +67,7 @@ const askSendEmailLimiter = buildRateLimiter({
66	})	67	})
67		68
68	const usersRouter = express.Router()	69	const usersRouter = express.Router()
		70	usersRouter.use('/', twoFactorRouter)
69	usersRouter.use('/', tokensRouter)	71	usersRouter.use('/', tokensRouter)
70	usersRouter.use('/', myNotificationsRouter)	72	usersRouter.use('/', myNotificationsRouter)
71	usersRouter.use('/', mySubscriptionsRouter)	73	usersRouter.use('/', mySubscriptionsRouter)
@@ -343,7 +345,7 @@ async function askResetUserPassword (req: express.Request, res: express.Response
343		345
344	const verificationString = await Redis.Instance.setResetPasswordVerificationString(user.id)	346	const verificationString = await Redis.Instance.setResetPasswordVerificationString(user.id)
345	const url = WEBSERVER.URL + '/reset-password?userId=' + user.id + '&verificationString=' + verificationString	347	const url = WEBSERVER.URL + '/reset-password?userId=' + user.id + '&verificationString=' + verificationString
346	await Emailer.Instance.addPasswordResetEmailJob(user.username, user.email, url)	348	Emailer.Instance.addPasswordResetEmailJob(user.username, user.email, url)
347		349
348	return res.status(HttpStatusCode.NO_CONTENT_204).end()	350	return res.status(HttpStatusCode.NO_CONTENT_204).end()
349	}	351	}


diff --git a/server/controllers/api/users/token.ts b/server/controllers/api/users/token.ts index 012a49791..c6afea67c 100644 --- a/server/controllers/api/users/token.ts +++ b/server/controllers/api/users/token.ts
@@ -1,8 +1,9 @@
1	import express from 'express'	1	import express from 'express'
2	import { logger } from '@server/helpers/logger'	2	import { logger } from '@server/helpers/logger'
3	import { CONFIG } from '@server/initializers/config'	3	import { CONFIG } from '@server/initializers/config'
		4	import { OTP } from '@server/initializers/constants'
4	import { getAuthNameFromRefreshGrant, getBypassFromExternalAuth, getBypassFromPasswordGrant } from '@server/lib/auth/external-auth'	5	import { getAuthNameFromRefreshGrant, getBypassFromExternalAuth, getBypassFromPasswordGrant } from '@server/lib/auth/external-auth'
5	import { handleOAuthToken } from '@server/lib/auth/oauth'	6	import { handleOAuthToken, MissingTwoFactorError } from '@server/lib/auth/oauth'
6	import { BypassLogin, revokeToken } from '@server/lib/auth/oauth-model'	7	import { BypassLogin, revokeToken } from '@server/lib/auth/oauth-model'
7	import { Hooks } from '@server/lib/plugins/hooks'	8	import { Hooks } from '@server/lib/plugins/hooks'
8	import { asyncMiddleware, authenticate, buildRateLimiter, openapiOperationDoc } from '@server/middlewares'	9	import { asyncMiddleware, authenticate, buildRateLimiter, openapiOperationDoc } from '@server/middlewares'
@@ -79,6 +80,10 @@ async function handleToken (req: express.Request, res: express.Response, next: e
79	} catch (err) {	80	} catch (err) {
80	logger.warn('Login error', { err })	81	logger.warn('Login error', { err })
81		82
		83	if (err instanceof MissingTwoFactorError) {
		84	res.set(OTP.HEADER_NAME, OTP.HEADER_REQUIRED_VALUE)
		85	}
		86
82	return res.fail({	87	return res.fail({
83	status: err.code,	88	status: err.code,
84	message: err.message,	89	message: err.message,


diff --git a/server/controllers/api/users/two-factor.ts b/server/controllers/api/users/two-factor.ts new file mode 100644 index 000000000..e6ae9e4dd --- /dev/null +++ b/server/controllers/api/users/two-factor.ts
@@ -0,0 +1,95 @@
		1	import express from 'express'
		2	import { generateOTPSecret, isOTPValid } from '@server/helpers/otp'
		3	import { encrypt } from '@server/helpers/peertube-crypto'
		4	import { CONFIG } from '@server/initializers/config'
		5	import { Redis } from '@server/lib/redis'
		6	import { asyncMiddleware, authenticate, usersCheckCurrentPasswordFactory } from '@server/middlewares'
		7	import {
		8	confirmTwoFactorValidator,
		9	disableTwoFactorValidator,
		10	requestOrConfirmTwoFactorValidator
		11	} from '@server/middlewares/validators/two-factor'
		12	import { HttpStatusCode, TwoFactorEnableResult } from '@shared/models'
		13
		14	const twoFactorRouter = express.Router()
		15
		16	twoFactorRouter.post('/:id/two-factor/request',
		17	authenticate,
		18	asyncMiddleware(usersCheckCurrentPasswordFactory(req => req.params.id)),
		19	asyncMiddleware(requestOrConfirmTwoFactorValidator),
		20	asyncMiddleware(requestTwoFactor)
		21	)
		22
		23	twoFactorRouter.post('/:id/two-factor/confirm-request',
		24	authenticate,
		25	asyncMiddleware(requestOrConfirmTwoFactorValidator),
		26	confirmTwoFactorValidator,
		27	asyncMiddleware(confirmRequestTwoFactor)
		28	)
		29
		30	twoFactorRouter.post('/:id/two-factor/disable',
		31	authenticate,
		32	asyncMiddleware(usersCheckCurrentPasswordFactory(req => req.params.id)),
		33	asyncMiddleware(disableTwoFactorValidator),
		34	asyncMiddleware(disableTwoFactor)
		35	)
		36
		37	// ---------------------------------------------------------------------------
		38
		39	export {
		40	twoFactorRouter
		41	}
		42
		43	// ---------------------------------------------------------------------------
		44
		45	async function requestTwoFactor (req: express.Request, res: express.Response) {
		46	const user = res.locals.user
		47
		48	const { secret, uri } = generateOTPSecret(user.email)
		49
		50	const encryptedSecret = await encrypt(secret, CONFIG.SECRETS.PEERTUBE)
		51	const requestToken = await Redis.Instance.setTwoFactorRequest(user.id, encryptedSecret)
		52
		53	return res.json({
		54	otpRequest: {
		55	requestToken,
		56	secret,
		57	uri
		58	}
		59	} as TwoFactorEnableResult)
		60	}
		61
		62	async function confirmRequestTwoFactor (req: express.Request, res: express.Response) {
		63	const requestToken = req.body.requestToken
		64	const otpToken = req.body.otpToken
		65	const user = res.locals.user
		66
		67	const encryptedSecret = await Redis.Instance.getTwoFactorRequestToken(user.id, requestToken)
		68	if (!encryptedSecret) {
		69	return res.fail({
		70	message: 'Invalid request token',
		71	status: HttpStatusCode.FORBIDDEN_403
		72	})
		73	}
		74
		75	if (await isOTPValid({ encryptedSecret, token: otpToken }) !== true) {
		76	return res.fail({
		77	message: 'Invalid OTP token',
		78	status: HttpStatusCode.FORBIDDEN_403
		79	})
		80	}
		81
		82	user.otpSecret = encryptedSecret
		83	await user.save()
		84
		85	return res.sendStatus(HttpStatusCode.NO_CONTENT_204)
		86	}
		87
		88	async function disableTwoFactor (req: express.Request, res: express.Response) {
		89	const user = res.locals.user
		90
		91	user.otpSecret = null
		92	await user.save()
		93
		94	return res.sendStatus(HttpStatusCode.NO_CONTENT_204)
		95	}


diff --git a/server/controllers/feeds.ts b/server/controllers/feeds.ts index 241715fb9..772fe734d 100644 --- a/server/controllers/feeds.ts +++ b/server/controllers/feeds.ts
@@ -4,7 +4,8 @@ import { Feed } from '@peertube/feed'
4	import { mdToOneLinePlainText, toSafeHtml } from '@server/helpers/markdown'	4	import { mdToOneLinePlainText, toSafeHtml } from '@server/helpers/markdown'
5	import { getServerActor } from '@server/models/application/application'	5	import { getServerActor } from '@server/models/application/application'
6	import { getCategoryLabel } from '@server/models/video/formatter/video-format-utils'	6	import { getCategoryLabel } from '@server/models/video/formatter/video-format-utils'
7	import { VideoInclude } from '@shared/models'	7	import { MAccountDefault, MChannelBannerAccountDefault, MVideoFullLight } from '@server/types/models'
		8	import { ActorImageType, VideoInclude } from '@shared/models'
8	import { buildNSFWFilter } from '../helpers/express-utils'	9	import { buildNSFWFilter } from '../helpers/express-utils'
9	import { CONFIG } from '../initializers/config'	10	import { CONFIG } from '../initializers/config'
10	import { MIMETYPES, PREVIEWS_SIZE, ROUTE_CACHE_LIFETIME, WEBSERVER } from '../initializers/constants'	11	import { MIMETYPES, PREVIEWS_SIZE, ROUTE_CACHE_LIFETIME, WEBSERVER } from '../initializers/constants'
@@ -82,22 +83,12 @@ async function generateVideoCommentsFeed (req: express.Request, res: express.Res
82	videoChannelId: videoChannel ? videoChannel.id : undefined	83	videoChannelId: videoChannel ? videoChannel.id : undefined
83	})	84	})
84		85
85	let name: string	86	const { name, description, imageUrl } = buildFeedMetadata({ video, account, videoChannel })
86	let description: string
87		87
88	if (videoChannel) {
89	name = videoChannel.getDisplayName()
90	description = videoChannel.description
91	} else if (account) {
92	name = account.getDisplayName()
93	description = account.description
94	} else {
95	name = video ? video.name : CONFIG.INSTANCE.NAME
96	description = video ? video.description : CONFIG.INSTANCE.DESCRIPTION
97	}
98	const feed = initFeed({	88	const feed = initFeed({
99	name,	89	name,
100	description,	90	description,
		91	imageUrl,
101	resourceType: 'video-comments',	92	resourceType: 'video-comments',
102	queryString: new URL(WEBSERVER.URL + req.originalUrl).search	93	queryString: new URL(WEBSERVER.URL + req.originalUrl).search
103	})	94	})
@@ -137,23 +128,12 @@ async function generateVideoFeed (req: express.Request, res: express.Response) {
137	const videoChannel = res.locals.videoChannel	128	const videoChannel = res.locals.videoChannel
138	const nsfw = buildNSFWFilter(res, req.query.nsfw)	129	const nsfw = buildNSFWFilter(res, req.query.nsfw)
139		130
140	let name: string	131	const { name, description, imageUrl } = buildFeedMetadata({ videoChannel, account })
141	let description: string
142
143	if (videoChannel) {
144	name = videoChannel.getDisplayName()
145	description = videoChannel.description
146	} else if (account) {
147	name = account.getDisplayName()
148	description = account.description
149	} else {
150	name = CONFIG.INSTANCE.NAME
151	description = CONFIG.INSTANCE.DESCRIPTION
152	}
153		132
154	const feed = initFeed({	133	const feed = initFeed({
155	name,	134	name,
156	description,	135	description,
		136	imageUrl,
157	resourceType: 'videos',	137	resourceType: 'videos',
158	queryString: new URL(WEBSERVER.URL + req.url).search	138	queryString: new URL(WEBSERVER.URL + req.url).search
159	})	139	})
@@ -190,12 +170,13 @@ async function generateVideoFeedForSubscriptions (req: express.Request, res: exp
190	const start = 0	170	const start = 0
191	const account = res.locals.account	171	const account = res.locals.account
192	const nsfw = buildNSFWFilter(res, req.query.nsfw)	172	const nsfw = buildNSFWFilter(res, req.query.nsfw)
193	const name = account.getDisplayName()	173
194	const description = account.description	174	const { name, description, imageUrl } = buildFeedMetadata({ account })
195		175
196	const feed = initFeed({	176	const feed = initFeed({
197	name,	177	name,
198	description,	178	description,
		179	imageUrl,
199	resourceType: 'videos',	180	resourceType: 'videos',
200	queryString: new URL(WEBSERVER.URL + req.url).search	181	queryString: new URL(WEBSERVER.URL + req.url).search
201	})	182	})
@@ -229,11 +210,12 @@ async function generateVideoFeedForSubscriptions (req: express.Request, res: exp
229	function initFeed (parameters: {	210	function initFeed (parameters: {
230	name: string	211	name: string
231	description: string	212	description: string
		213	imageUrl: string
232	resourceType?: 'videos' \| 'video-comments'	214	resourceType?: 'videos' \| 'video-comments'
233	queryString?: string	215	queryString?: string
234	}) {	216	}) {
235	const webserverUrl = WEBSERVER.URL	217	const webserverUrl = WEBSERVER.URL
236	const { name, description, resourceType, queryString } = parameters	218	const { name, description, resourceType, queryString, imageUrl } = parameters
237		219
238	return new Feed({	220	return new Feed({
239	title: name,	221	title: name,
@@ -241,7 +223,7 @@ function initFeed (parameters: {
241	// updated: TODO: somehowGetLatestUpdate, // optional, default = today	223	// updated: TODO: somehowGetLatestUpdate, // optional, default = today
242	id: webserverUrl,	224	id: webserverUrl,
243	link: webserverUrl,	225	link: webserverUrl,
244	image: webserverUrl + '/client/assets/images/icons/icon-96x96.png',	226	image: imageUrl,
245	favicon: webserverUrl + '/client/assets/images/favicon.png',	227	favicon: webserverUrl + '/client/assets/images/favicon.png',
246	copyright: `All rights reserved, unless otherwise specified in the terms specified at ${webserverUrl}/about` +	228	copyright: `All rights reserved, unless otherwise specified in the terms specified at ${webserverUrl}/about` +
247	` and potential licenses granted by each content's rightholder.`,	229	` and potential licenses granted by each content's rightholder.`,
@@ -369,3 +351,39 @@ function sendFeed (feed: Feed, req: express.Request, res: express.Response) {
369		351
370	return res.send(feed.rss2()).end()	352	return res.send(feed.rss2()).end()
371	}	353	}
		354
		355	function buildFeedMetadata (options: {
		356	videoChannel?: MChannelBannerAccountDefault
		357	account?: MAccountDefault
		358	video?: MVideoFullLight
		359	}) {
		360	const { video, videoChannel, account } = options
		361
		362	let imageUrl = WEBSERVER.URL + '/client/assets/images/icons/icon-96x96.png'
		363	let name: string
		364	let description: string
		365
		366	if (videoChannel) {
		367	name = videoChannel.getDisplayName()
		368	description = videoChannel.description
		369
		370	if (videoChannel.Actor.hasImage(ActorImageType.AVATAR)) {
		371	imageUrl = WEBSERVER.URL + videoChannel.Actor.Avatars[0].getStaticPath()
		372	}
		373	} else if (account) {
		374	name = account.getDisplayName()
		375	description = account.description
		376
		377	if (account.Actor.hasImage(ActorImageType.AVATAR)) {
		378	imageUrl = WEBSERVER.URL + account.Actor.Avatars[0].getStaticPath()
		379	}
		380	} else if (video) {
		381	name = video.name
		382	description = video.description
		383	} else {
		384	name = CONFIG.INSTANCE.NAME
		385	description = CONFIG.INSTANCE.DESCRIPTION
		386	}
		387
		388	return { name, description, imageUrl }
		389	}


diff --git a/server/controllers/index.ts b/server/controllers/index.ts index e8833d58c..8574a9e7b 100644 --- a/server/controllers/index.ts +++ b/server/controllers/index.ts
@@ -6,7 +6,6 @@ export * from './feeds'
6	export * from './services'	6	export * from './services'
7	export * from './static'	7	export * from './static'
8	export * from './lazy-static'	8	export * from './lazy-static'
9	export * from './live'
10	export * from './misc'	9	export * from './misc'
11	export * from './webfinger'	10	export * from './webfinger'
12	export * from './tracker'	11	export * from './tracker'


diff --git a/server/controllers/live.ts b/server/controllers/live.ts deleted file mode 100644 index 81008f120..000000000 --- a/server/controllers/live.ts +++ /dev/null
@@ -1,32 +0,0 @@
1	import cors from 'cors'
2	import express from 'express'
3	import { mapToJSON } from '@server/helpers/core-utils'
4	import { LiveSegmentShaStore } from '@server/lib/live'
5	import { HttpStatusCode } from '@shared/models'
6
7	const liveRouter = express.Router()
8
9	liveRouter.use('/segments-sha256/:videoUUID',
10	cors(),
11	getSegmentsSha256
12	)
13
14	// ---------------------------------------------------------------------------
15
16	export {
17	liveRouter
18	}
19
20	// ---------------------------------------------------------------------------
21
22	function getSegmentsSha256 (req: express.Request, res: express.Response) {
23	const videoUUID = req.params.videoUUID
24
25	const result = LiveSegmentShaStore.Instance.getSegmentsSha256(videoUUID)
26
27	if (!result) {
28	return res.status(HttpStatusCode.NOT_FOUND_404).end()
29	}
30
31	return res.json(mapToJSON(result))
32	}


diff --git a/server/controllers/well-known.ts b/server/controllers/well-known.ts index f467bd629..ce5883571 100644 --- a/server/controllers/well-known.ts +++ b/server/controllers/well-known.ts
@@ -5,6 +5,7 @@ import { root } from '@shared/core-utils'
5	import { CONFIG } from '../initializers/config'	5	import { CONFIG } from '../initializers/config'
6	import { ROUTE_CACHE_LIFETIME, WEBSERVER } from '../initializers/constants'	6	import { ROUTE_CACHE_LIFETIME, WEBSERVER } from '../initializers/constants'
7	import { cacheRoute } from '../middlewares/cache/cache'	7	import { cacheRoute } from '../middlewares/cache/cache'
		8	import { handleStaticError } from '@server/middlewares'
8		9
9	const wellKnownRouter = express.Router()	10	const wellKnownRouter = express.Router()
10		11
@@ -69,6 +70,12 @@ wellKnownRouter.use('/.well-known/host-meta',
69	}	70	}
70	)	71	)
71		72
		73	wellKnownRouter.use('/.well-known/',
		74	cacheRoute(ROUTE_CACHE_LIFETIME.WELL_KNOWN),
		75	express.static(CONFIG.STORAGE.WELL_KNOWN_DIR, { fallthrough: false }),
		76	handleStaticError
		77	)
		78
72	// ---------------------------------------------------------------------------	79	// ---------------------------------------------------------------------------
73		80
74	export {	81	export {