679 lines
25 KiB
C#
679 lines
25 KiB
C#
using System.ComponentModel.DataAnnotations;
|
|
using System.Diagnostics.CodeAnalysis;
|
|
using System.Net;
|
|
using System.Net.Mime;
|
|
using Iceshrimp.Backend.Controllers.Mastodon.Attributes;
|
|
using Iceshrimp.Backend.Controllers.Mastodon.Renderers;
|
|
using Iceshrimp.Backend.Controllers.Mastodon.Schemas;
|
|
using Iceshrimp.Backend.Controllers.Mastodon.Schemas.Entities;
|
|
using Iceshrimp.Backend.Controllers.Shared.Attributes;
|
|
using Iceshrimp.Backend.Core.Configuration;
|
|
using Iceshrimp.Backend.Core.Database;
|
|
using Iceshrimp.Backend.Core.Database.Tables;
|
|
using Iceshrimp.Backend.Core.Extensions;
|
|
using Iceshrimp.Backend.Core.Middleware;
|
|
using Iceshrimp.Backend.Core.Services;
|
|
using Iceshrimp.Shared.Helpers;
|
|
using Microsoft.AspNetCore.Cors;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
using Microsoft.AspNetCore.RateLimiting;
|
|
using Microsoft.EntityFrameworkCore;
|
|
using Microsoft.Extensions.Options;
|
|
using static Iceshrimp.Backend.Core.Federation.ActivityPub.UserResolver;
|
|
|
|
namespace Iceshrimp.Backend.Controllers.Mastodon;
|
|
|
|
[MastodonApiController]
|
|
[Route("/api/v1/accounts")]
|
|
[EnableCors("mastodon")]
|
|
[Authenticate]
|
|
[EnableRateLimiting("sliding")]
|
|
[Produces(MediaTypeNames.Application.Json)]
|
|
public class AccountController(
|
|
DatabaseContext db,
|
|
UserRenderer userRenderer,
|
|
NoteRenderer noteRenderer,
|
|
UserService userSvc,
|
|
ActivityPub.UserResolver userResolver,
|
|
DriveService driveSvc,
|
|
IOptionsSnapshot<Config.SecuritySection> config
|
|
) : ControllerBase
|
|
{
|
|
[HttpGet("verify_credentials")]
|
|
[Authorize("read:accounts")]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
public async Task<AccountEntity> VerifyUserCredentials()
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
return await userRenderer.RenderAsync(user, user.UserProfile, user, source: true);
|
|
}
|
|
|
|
[HttpPatch("update_credentials")]
|
|
[Authorize("write:accounts")]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
public async Task<AccountEntity> UpdateUserCredentials([FromHybrid] AccountSchemas.AccountUpdateRequest request)
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
if (user.UserProfile == null)
|
|
throw new Exception("User profile must not be null at this stage");
|
|
|
|
if (request.DisplayName != null)
|
|
user.DisplayName = !string.IsNullOrWhiteSpace(request.DisplayName) ? request.DisplayName : user.Username;
|
|
if (request.Bio != null)
|
|
user.UserProfile.Description = request.Bio;
|
|
if (request.IsLocked.HasValue)
|
|
user.IsLocked = request.IsLocked.Value;
|
|
if (request.IsBot.HasValue)
|
|
user.IsBot = request.IsBot.Value;
|
|
if (request.IsExplorable.HasValue)
|
|
user.IsExplorable = request.IsExplorable.Value;
|
|
if (request.HideCollections.HasValue)
|
|
user.UserProfile.FFVisibility = request.HideCollections.Value
|
|
? UserProfile.UserProfileFFVisibility.Private
|
|
: UserProfile.UserProfileFFVisibility.Public;
|
|
|
|
if (user.UserSettings == null)
|
|
{
|
|
user.UserSettings = new UserSettings { User = user };
|
|
db.Add(user.UserSettings);
|
|
}
|
|
|
|
if (request.Source?.Privacy != null)
|
|
user.UserSettings.DefaultNoteVisibility = StatusEntity.DecodeVisibility(request.Source.Privacy);
|
|
if (request.Source?.Sensitive.HasValue ?? false)
|
|
user.UserSettings.AlwaysMarkSensitive = request.Source.Sensitive.Value;
|
|
|
|
if (request.Fields?.Where(p => p is { Name: not null, Value: not null }).ToList() is { Count: > 0 } fields)
|
|
{
|
|
user.UserProfile.Fields =
|
|
fields.Select(p => new UserProfile.Field
|
|
{
|
|
Name = p.Name!,
|
|
Value = p.Value!,
|
|
IsVerified = false
|
|
})
|
|
.ToArray();
|
|
}
|
|
|
|
var prevAvatarId = user.AvatarId;
|
|
var prevBannerId = user.BannerId;
|
|
|
|
if (request.Avatar != null)
|
|
{
|
|
var rq = new DriveFileCreationRequest
|
|
{
|
|
Filename = request.Avatar.FileName,
|
|
IsSensitive = false,
|
|
MimeType = request.Avatar.ContentType
|
|
};
|
|
var avatar = await driveSvc.StoreFileAsync(request.Avatar.OpenReadStream(), user, rq);
|
|
user.Avatar = avatar;
|
|
user.AvatarBlurhash = avatar.Blurhash;
|
|
}
|
|
|
|
if (request.Banner != null)
|
|
{
|
|
var rq = new DriveFileCreationRequest
|
|
{
|
|
Filename = request.Banner.FileName,
|
|
IsSensitive = false,
|
|
MimeType = request.Banner.ContentType
|
|
};
|
|
var banner = await driveSvc.StoreFileAsync(request.Banner.OpenReadStream(), user, rq);
|
|
user.Banner = banner;
|
|
user.BannerBlurhash = banner.Blurhash;
|
|
}
|
|
|
|
user = await userSvc.UpdateLocalUserAsync(user, prevAvatarId, prevBannerId);
|
|
return await userRenderer.RenderAsync(user, user.UserProfile, user, source: true);
|
|
}
|
|
|
|
[HttpDelete("/api/v1/profile/avatar")]
|
|
[Authorize("write:accounts")]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
public async Task<AccountEntity> DeleteUserAvatar()
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
if (user.AvatarId != null)
|
|
{
|
|
var id = user.AvatarId;
|
|
|
|
user.AvatarId = null;
|
|
user.AvatarBlurhash = null;
|
|
|
|
db.Update(user);
|
|
await db.SaveChangesAsync();
|
|
await driveSvc.RemoveFileAsync(id);
|
|
}
|
|
|
|
return await VerifyUserCredentials();
|
|
}
|
|
|
|
[HttpDelete("/api/v1/profile/header")]
|
|
[Authorize("write:accounts")]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
public async Task<AccountEntity> DeleteUserBanner()
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
if (user.BannerId != null)
|
|
{
|
|
var id = user.BannerId;
|
|
|
|
user.BannerId = null;
|
|
user.BannerBlurhash = null;
|
|
|
|
db.Update(user);
|
|
await db.SaveChangesAsync();
|
|
await driveSvc.RemoveFileAsync(id);
|
|
}
|
|
|
|
return await VerifyUserCredentials();
|
|
}
|
|
|
|
[HttpGet]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[ProducesErrors(HttpStatusCode.Forbidden)]
|
|
public async Task<IEnumerable<AccountEntity>> GetManyUsers(
|
|
[FromQuery(Name = "id")] [MaxLength(40)]
|
|
List<string> ids
|
|
)
|
|
{
|
|
var localUser = HttpContext.GetUser();
|
|
if (config.Value.PublicPreview == Enums.PublicPreview.Lockdown && localUser == null)
|
|
throw GracefulException.Forbidden("Public preview is disabled on this instance");
|
|
|
|
var query = db.Users.IncludeCommonProperties().Where(p => ids.Contains(p.Id));
|
|
|
|
if (config.Value.PublicPreview <= Enums.PublicPreview.Restricted && localUser == null)
|
|
query = query.Where(p => p.IsLocalUser);
|
|
|
|
return await userRenderer.RenderManyAsync(await query.ToArrayAsync(), localUser);
|
|
}
|
|
|
|
[HttpGet("{id}")]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[ProducesErrors(HttpStatusCode.NotFound)]
|
|
public async Task<AccountEntity> GetUser(string id)
|
|
{
|
|
var localUser = HttpContext.GetUser();
|
|
if (config.Value.PublicPreview == Enums.PublicPreview.Lockdown && localUser == null)
|
|
throw GracefulException.Forbidden("Public preview is disabled on this instance");
|
|
|
|
var user = await db.Users.IncludeCommonProperties().FirstOrDefaultAsync(p => p.Id == id)
|
|
?? throw GracefulException.RecordNotFound();
|
|
|
|
if (config.Value.PublicPreview <= Enums.PublicPreview.Restricted && user.IsRemoteUser && localUser == null)
|
|
throw GracefulException.Forbidden("Public preview is disabled on this instance");
|
|
|
|
return await userRenderer.RenderAsync(await userResolver.GetUpdatedUserAsync(user), localUser);
|
|
}
|
|
|
|
[HttpPost("{id}/follow")]
|
|
[Authorize("write:follows")]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[ProducesErrors(HttpStatusCode.BadRequest, HttpStatusCode.Forbidden, HttpStatusCode.NotFound)]
|
|
//TODO: [FromHybrid] request (bool reblogs, bool notify, bool languages)
|
|
public async Task<RelationshipEntity> FollowUser(string id)
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
if (user.Id == id)
|
|
throw GracefulException.BadRequest("You cannot follow yourself");
|
|
|
|
var followee = await db.Users.IncludeCommonProperties()
|
|
.Where(p => p.Id == id)
|
|
.PrecomputeRelationshipData(user)
|
|
.FirstOrDefaultAsync()
|
|
?? throw GracefulException.RecordNotFound();
|
|
|
|
if ((followee.PrecomputedIsBlockedBy ?? true) || (followee.PrecomputedIsBlocking ?? true))
|
|
throw GracefulException.Forbidden("This action is not allowed");
|
|
|
|
if (!(followee.PrecomputedIsFollowedBy ?? false) && !(followee.PrecomputedIsRequestedBy ?? false))
|
|
{
|
|
await userSvc.FollowUserAsync(user, followee);
|
|
|
|
if (followee.IsLocked)
|
|
followee.PrecomputedIsRequestedBy = true;
|
|
else
|
|
followee.PrecomputedIsFollowedBy = true;
|
|
}
|
|
|
|
return RenderRelationship(followee);
|
|
}
|
|
|
|
[HttpPost("{id}/unfollow")]
|
|
[Authorize("write:follows")]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[ProducesErrors(HttpStatusCode.BadRequest)]
|
|
public async Task<RelationshipEntity> UnfollowUser(string id)
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
if (user.Id == id)
|
|
throw GracefulException.BadRequest("You cannot unfollow yourself");
|
|
|
|
var followee = await db.Users
|
|
.Where(p => p.Id == id)
|
|
.IncludeCommonProperties()
|
|
.PrecomputeRelationshipData(user)
|
|
.FirstOrDefaultAsync()
|
|
?? throw GracefulException.RecordNotFound();
|
|
|
|
await userSvc.UnfollowUserAsync(user, followee);
|
|
return RenderRelationship(followee);
|
|
}
|
|
|
|
[HttpPost("{id}/remove_from_followers")]
|
|
[Authorize("write:follows")]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[ProducesErrors(HttpStatusCode.BadRequest)]
|
|
public async Task<RelationshipEntity> RemoveFromFollowers(string id)
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
if (user.Id == id)
|
|
throw GracefulException.BadRequest("You cannot unfollow yourself");
|
|
|
|
var follower = await db.Followings
|
|
.Where(p => p.FolloweeId == user.Id && p.FollowerId == id)
|
|
.Select(p => p.Follower)
|
|
.PrecomputeRelationshipData(user)
|
|
.FirstOrDefaultAsync()
|
|
?? throw GracefulException.RecordNotFound();
|
|
|
|
await userSvc.RemoveFromFollowersAsync(user, follower);
|
|
return RenderRelationship(follower);
|
|
}
|
|
|
|
[HttpPost("{id}/mute")]
|
|
[Authorize("write:mutes")]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[ProducesErrors(HttpStatusCode.BadRequest)]
|
|
public async Task<RelationshipEntity> MuteUser(string id, [FromHybrid] AccountSchemas.AccountMuteRequest request)
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
if (user.Id == id)
|
|
throw GracefulException.BadRequest("You cannot mute yourself");
|
|
|
|
var mutee = await db.Users
|
|
.Where(p => p.Id == id)
|
|
.IncludeCommonProperties()
|
|
.PrecomputeRelationshipData(user)
|
|
.FirstOrDefaultAsync()
|
|
?? throw GracefulException.RecordNotFound();
|
|
|
|
//TODO: handle notifications parameter
|
|
DateTime? expiration = request.Duration == 0 ? null : DateTime.UtcNow + TimeSpan.FromSeconds(request.Duration);
|
|
await userSvc.MuteUserAsync(user, mutee, expiration);
|
|
return RenderRelationship(mutee);
|
|
}
|
|
|
|
[HttpPost("{id}/unmute")]
|
|
[Authorize("write:mutes")]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[ProducesErrors(HttpStatusCode.BadRequest)]
|
|
public async Task<RelationshipEntity> UnmuteUser(string id)
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
if (user.Id == id)
|
|
throw GracefulException.BadRequest("You cannot unmute yourself");
|
|
|
|
var mutee = await db.Users
|
|
.Where(p => p.Id == id)
|
|
.IncludeCommonProperties()
|
|
.PrecomputeRelationshipData(user)
|
|
.FirstOrDefaultAsync()
|
|
?? throw GracefulException.RecordNotFound();
|
|
|
|
await userSvc.UnmuteUserAsync(user, mutee);
|
|
return RenderRelationship(mutee);
|
|
}
|
|
|
|
[HttpPost("{id}/block")]
|
|
[Authorize("write:blocks")]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[ProducesErrors(HttpStatusCode.BadRequest)]
|
|
public async Task<RelationshipEntity> BlockUser(string id)
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
if (user.Id == id)
|
|
throw GracefulException.BadRequest("You cannot block yourself");
|
|
|
|
var blockee = await db.Users
|
|
.Where(p => p.Id == id)
|
|
.IncludeCommonProperties()
|
|
.PrecomputeRelationshipData(user)
|
|
.FirstOrDefaultAsync()
|
|
?? throw GracefulException.RecordNotFound();
|
|
|
|
await userSvc.BlockUserAsync(user, blockee);
|
|
return RenderRelationship(blockee);
|
|
}
|
|
|
|
[HttpPost("{id}/unblock")]
|
|
[Authorize("write:blocks")]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[ProducesErrors(HttpStatusCode.BadRequest)]
|
|
public async Task<RelationshipEntity> UnblockUser(string id)
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
if (user.Id == id)
|
|
throw GracefulException.BadRequest("You cannot unblock yourself");
|
|
|
|
var blockee = await db.Users
|
|
.Where(p => p.Id == id)
|
|
.IncludeCommonProperties()
|
|
.PrecomputeRelationshipData(user)
|
|
.FirstOrDefaultAsync()
|
|
?? throw GracefulException.RecordNotFound();
|
|
|
|
await userSvc.UnblockUserAsync(user, blockee);
|
|
return RenderRelationship(blockee);
|
|
}
|
|
|
|
[HttpGet("relationships")]
|
|
[Authorize("read:follows")]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
public async Task<IEnumerable<RelationshipEntity>> GetRelationships([FromQuery(Name = "id")] List<string> ids)
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
|
|
var users = await db.Users
|
|
.Where(p => ids.Contains(p.Id))
|
|
.IncludeCommonProperties()
|
|
.PrecomputeRelationshipData(user)
|
|
.ToListAsync();
|
|
|
|
return users.Select(RenderRelationship);
|
|
}
|
|
|
|
[HttpGet("{id}/statuses")]
|
|
[Authorize("read:statuses")]
|
|
[LinkPagination(20, 40)]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[ProducesErrors(HttpStatusCode.NotFound)]
|
|
public async Task<IEnumerable<StatusEntity>> GetUserStatuses(
|
|
string id, AccountSchemas.AccountStatusesRequest request, MastodonPaginationQuery query
|
|
)
|
|
{
|
|
var user = HttpContext.GetUser();
|
|
if (config.Value.PublicPreview == Enums.PublicPreview.Lockdown && user == null)
|
|
throw GracefulException.Forbidden("Public preview is disabled on this instance");
|
|
|
|
var account = await db.Users.FirstOrDefaultAsync(p => p.Id == id) ?? throw GracefulException.RecordNotFound();
|
|
|
|
return await db.Notes
|
|
.IncludeCommonProperties()
|
|
.FilterByUser(account)
|
|
.FilterByAccountStatusesRequest(request)
|
|
.EnsureVisibleFor(user)
|
|
.FilterHidden(user, db, except: id)
|
|
.Paginate(query, ControllerContext)
|
|
.PrecomputeVisibilities(user)
|
|
.RenderAllForMastodonAsync(noteRenderer, user, Filter.FilterContext.Accounts);
|
|
}
|
|
|
|
[HttpGet("{id}/followers")]
|
|
[Authenticate("read:accounts")]
|
|
[LinkPagination(40, 80)]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[ProducesErrors(HttpStatusCode.Forbidden, HttpStatusCode.NotFound)]
|
|
public async Task<IEnumerable<AccountEntity>> GetUserFollowers(string id, MastodonPaginationQuery query)
|
|
{
|
|
var user = HttpContext.GetUser();
|
|
if (config.Value.PublicPreview == Enums.PublicPreview.Lockdown && user == null)
|
|
throw GracefulException.Forbidden("Public preview is disabled on this instance");
|
|
|
|
var account = await db.Users
|
|
.Include(p => p.UserProfile)
|
|
.FirstOrDefaultAsync(p => p.Id == id)
|
|
?? throw GracefulException.RecordNotFound();
|
|
|
|
if (config.Value.PublicPreview <= Enums.PublicPreview.Restricted && account.IsRemoteUser && user == null)
|
|
throw GracefulException.Forbidden("Public preview is disabled on this instance");
|
|
|
|
if (user == null || user.Id != account.Id)
|
|
{
|
|
if (account.UserProfile?.FFVisibility == UserProfile.UserProfileFFVisibility.Private)
|
|
return [];
|
|
if (account.UserProfile?.FFVisibility == UserProfile.UserProfileFFVisibility.Followers)
|
|
if (user == null || !await db.Users.AnyAsync(p => p == account && p.Followers.Contains(user)))
|
|
return [];
|
|
}
|
|
|
|
return await db.Users
|
|
.Where(p => p == account)
|
|
.SelectMany(p => p.Followers)
|
|
.IncludeCommonProperties()
|
|
.Paginate(query, ControllerContext)
|
|
.RenderAllForMastodonAsync(userRenderer, user);
|
|
}
|
|
|
|
[HttpGet("{id}/following")]
|
|
[Authenticate("read:accounts")]
|
|
[LinkPagination(40, 80)]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[ProducesErrors(HttpStatusCode.Forbidden, HttpStatusCode.NotFound)]
|
|
public async Task<IEnumerable<AccountEntity>> GetUserFollowing(string id, MastodonPaginationQuery query)
|
|
{
|
|
var user = HttpContext.GetUser();
|
|
if (config.Value.PublicPreview == Enums.PublicPreview.Lockdown && user == null)
|
|
throw GracefulException.Forbidden("Public preview is disabled on this instance");
|
|
|
|
var account = await db.Users
|
|
.Include(p => p.UserProfile)
|
|
.FirstOrDefaultAsync(p => p.Id == id)
|
|
?? throw GracefulException.RecordNotFound();
|
|
|
|
if (config.Value.PublicPreview <= Enums.PublicPreview.Restricted && account.IsRemoteUser && user == null)
|
|
throw GracefulException.Forbidden("Public preview is disabled on this instance");
|
|
|
|
if (user == null || user.Id != account.Id)
|
|
{
|
|
if (account.UserProfile?.FFVisibility == UserProfile.UserProfileFFVisibility.Private)
|
|
return [];
|
|
if (account.UserProfile?.FFVisibility == UserProfile.UserProfileFFVisibility.Followers)
|
|
if (user == null || !await db.Users.AnyAsync(p => p == account && p.Followers.Contains(user)))
|
|
return [];
|
|
}
|
|
|
|
return await db.Users
|
|
.Where(p => p == account)
|
|
.SelectMany(p => p.Following)
|
|
.IncludeCommonProperties()
|
|
.Paginate(query, ControllerContext)
|
|
.RenderAllForMastodonAsync(userRenderer, user);
|
|
}
|
|
|
|
[HttpGet("{id}/featured_tags")]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[ProducesErrors(HttpStatusCode.NotFound)]
|
|
public async Task<IEnumerable<object>> GetUserFeaturedTags(string id)
|
|
{
|
|
_ = await db.Users
|
|
.Include(p => p.UserProfile)
|
|
.FirstOrDefaultAsync(p => p.Id == id)
|
|
?? throw GracefulException.RecordNotFound();
|
|
|
|
return [];
|
|
}
|
|
|
|
[HttpGet("/api/v1/follow_requests")]
|
|
[Authorize("read:follows")]
|
|
[LinkPagination(40, 80)]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
public async Task<IEnumerable<AccountEntity>> GetFollowRequests(MastodonPaginationQuery query)
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
var requests = await db.FollowRequests
|
|
.Where(p => p.Followee == user)
|
|
.IncludeCommonProperties()
|
|
.Select(p => new EntityWrapper<User> { Id = p.Id, Entity = p.Follower })
|
|
.Paginate(query, ControllerContext)
|
|
.ToListAsync();
|
|
|
|
HttpContext.SetPaginationData(requests);
|
|
return await userRenderer.RenderManyAsync(requests.Select(p => p.Entity), user);
|
|
}
|
|
|
|
[HttpGet("/api/v1/favourites")]
|
|
[Authorize("read:favourites")]
|
|
[LinkPagination(20, 40)]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[SuppressMessage("ReSharper", "EntityFramework.UnsupportedServerSideFunctionCall", Justification = "Projectables")]
|
|
public async Task<IEnumerable<StatusEntity>> GetLikedNotes(MastodonPaginationQuery query)
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
var likes = await db.NoteLikes
|
|
.Where(p => p.User == user)
|
|
.IncludeCommonProperties()
|
|
.Select(p => new EntityWrapper<Note>
|
|
{
|
|
Id = p.Id, Entity = p.Note.WithPrecomputedVisibilities(user)
|
|
})
|
|
.Paginate(query, ControllerContext)
|
|
.ToListAsync();
|
|
|
|
HttpContext.SetPaginationData(likes);
|
|
return await noteRenderer.RenderManyAsync(likes.Select(p => p.Entity).EnforceRenoteReplyVisibility(), user);
|
|
}
|
|
|
|
[HttpGet("/api/v1/bookmarks")]
|
|
[Authorize("read:bookmarks")]
|
|
[LinkPagination(20, 40)]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[SuppressMessage("ReSharper", "EntityFramework.UnsupportedServerSideFunctionCall", Justification = "Projectables")]
|
|
public async Task<IEnumerable<StatusEntity>> GetBookmarkedNotes(MastodonPaginationQuery query)
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
var bookmarks = await db.NoteBookmarks
|
|
.Where(p => p.User == user)
|
|
.IncludeCommonProperties()
|
|
.Select(p => new EntityWrapper<Note>
|
|
{
|
|
Id = p.Id, Entity = p.Note.WithPrecomputedVisibilities(user)
|
|
})
|
|
.Paginate(query, ControllerContext)
|
|
.ToListAsync();
|
|
|
|
HttpContext.SetPaginationData(bookmarks);
|
|
return await noteRenderer.RenderManyAsync(bookmarks.Select(p => p.Entity).EnforceRenoteReplyVisibility(), user);
|
|
}
|
|
|
|
[HttpGet("/api/v1/blocks")]
|
|
[Authorize("read:blocks")]
|
|
[LinkPagination(40, 80)]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[SuppressMessage("ReSharper", "EntityFramework.UnsupportedServerSideFunctionCall", Justification = "Projectables")]
|
|
public async Task<IEnumerable<AccountEntity>> GetBlockedUsers(MastodonPaginationQuery pq)
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
var blocks = await db.Blockings
|
|
.Include(p => p.Blockee.UserProfile)
|
|
.Where(p => p.Blocker == user)
|
|
.Select(p => new EntityWrapper<User> { Id = p.Id, Entity = p.Blockee })
|
|
.Paginate(pq, ControllerContext)
|
|
.ToListAsync();
|
|
|
|
HttpContext.SetPaginationData(blocks);
|
|
return await userRenderer.RenderManyAsync(blocks.Select(p => p.Entity), user);
|
|
}
|
|
|
|
[HttpGet("/api/v1/mutes")]
|
|
[Authorize("read:mutes")]
|
|
[LinkPagination(40, 80)]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[SuppressMessage("ReSharper", "EntityFramework.UnsupportedServerSideFunctionCall", Justification = "Projectables")]
|
|
public async Task<IEnumerable<AccountEntity>> GetMutedUsers(MastodonPaginationQuery pq)
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
var mutes = await db.Mutings
|
|
.Include(p => p.Mutee.UserProfile)
|
|
.Where(p => p.Muter == user)
|
|
.Select(p => new EntityWrapper<User> { Id = p.Id, Entity = p.Mutee })
|
|
.Paginate(pq, ControllerContext)
|
|
.ToListAsync();
|
|
|
|
HttpContext.SetPaginationData(mutes);
|
|
return await userRenderer.RenderManyAsync(mutes.Select(p => p.Entity), user);
|
|
}
|
|
|
|
[HttpPost("/api/v1/follow_requests/{id}/authorize")]
|
|
[Authorize("write:follows")]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[ProducesErrors(HttpStatusCode.NotFound)]
|
|
public async Task<RelationshipEntity> AcceptFollowRequest(string id)
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
var request = await db.FollowRequests.Where(p => p.Followee == user && p.FollowerId == id)
|
|
.Include(p => p.Followee.UserProfile)
|
|
.Include(p => p.Follower.UserProfile)
|
|
.FirstOrDefaultAsync();
|
|
|
|
if (request != null)
|
|
await userSvc.AcceptFollowRequestAsync(request);
|
|
|
|
return await db.Users.Where(p => id == p.Id)
|
|
.IncludeCommonProperties()
|
|
.PrecomputeRelationshipData(user)
|
|
.Select(u => RenderRelationship(u))
|
|
.FirstOrDefaultAsync()
|
|
?? throw GracefulException.RecordNotFound();
|
|
}
|
|
|
|
[HttpPost("/api/v1/follow_requests/{id}/reject")]
|
|
[Authorize("write:follows")]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[ProducesErrors(HttpStatusCode.NotFound)]
|
|
public async Task<RelationshipEntity> RejectFollowRequest(string id)
|
|
{
|
|
var user = HttpContext.GetUserOrFail();
|
|
var request = await db.FollowRequests.Where(p => p.Followee == user && p.FollowerId == id)
|
|
.Include(p => p.Followee.UserProfile)
|
|
.Include(p => p.Follower.UserProfile)
|
|
.FirstOrDefaultAsync();
|
|
|
|
if (request != null)
|
|
await userSvc.RejectFollowRequestAsync(request);
|
|
|
|
return await db.Users.Where(p => id == p.Id)
|
|
.IncludeCommonProperties()
|
|
.PrecomputeRelationshipData(user)
|
|
.Select(u => RenderRelationship(u))
|
|
.FirstOrDefaultAsync()
|
|
?? throw GracefulException.RecordNotFound();
|
|
}
|
|
|
|
[HttpGet("lookup")]
|
|
[ProducesResults(HttpStatusCode.OK)]
|
|
[ProducesErrors(HttpStatusCode.NotFound)]
|
|
public async Task<AccountEntity> LookupUser([FromQuery] string acct)
|
|
{
|
|
const ResolveFlags flags =
|
|
ResolveFlags.Acct | ResolveFlags.Uri | ResolveFlags.MatchUrl | ResolveFlags.OnlyExisting;
|
|
|
|
var localUser = HttpContext.GetUser();
|
|
var user = await userResolver.ResolveOrNullAsync(acct, flags) ?? throw GracefulException.RecordNotFound();
|
|
user = await userResolver.GetUpdatedUserAsync(user);
|
|
return await userRenderer.RenderAsync(user, localUser);
|
|
}
|
|
|
|
private static RelationshipEntity RenderRelationship(User u)
|
|
{
|
|
return new RelationshipEntity
|
|
{
|
|
Id = u.Id,
|
|
Following = u.PrecomputedIsFollowedBy ?? false,
|
|
FollowedBy = u.PrecomputedIsFollowing ?? false,
|
|
Blocking = u.PrecomputedIsBlockedBy ?? false,
|
|
BlockedBy = u.PrecomputedIsBlocking ?? false,
|
|
Requested = u.PrecomputedIsRequestedBy ?? false,
|
|
RequestedBy = u.PrecomputedIsRequested ?? false,
|
|
Muting = u.PrecomputedIsMutedBy ?? false,
|
|
Endorsed = false, //FIXME
|
|
Note = "", //FIXME
|
|
Notifying = false, //FIXME
|
|
DomainBlocking = false, //FIXME
|
|
MutingNotifications = false, //FIXME
|
|
ShowingReblogs = true //FIXME
|
|
};
|
|
}
|
|
}
|