upub/src/activitypub/mod.rs

pub mod user;
pub mod inbox;
pub mod outbox;
pub mod object;
pub mod activity;
pub mod well_known;

pub mod jsonld;
pub use jsonld::JsonLD;

use axum::{extract::State, http::StatusCode, Json};
use rand::Rng;
use sea_orm::{ColumnTrait, Condition, EntityTrait, QueryFilter};

use crate::{activitystream::{object::{actor::{ActorMut, ActorType}, ObjectMut}, BaseMut}, model, server::Context, url};

use self::jsonld::LD;

pub const PUBLIC_TARGET : &str = "https://www.w3.org/ns/activitystreams#Public";

pub fn split_id(id: &str) -> (String, String) {
	let clean = id
		.replace("http://", "")
		.replace("https://", "");
	let mut splits = clean.split('/');
	let first = splits.next().unwrap_or("");
	let last = splits.last().unwrap_or(first);
	(first.to_string(), last.to_string())
}

pub fn domain(domain: &str) -> String {
	domain
		.replace("http://", "")
		.replace("https://", "")
		.replace('/', "")
}


#[derive(Debug, serde::Deserialize)]
// TODO i don't really like how pleroma/mastodon do it actually, maybe change this?
pub struct Pagination {
	pub page: Option<bool>,
	pub offset: Option<u64>,
	pub batch: Option<u64>,
}

pub async fn view(State(ctx): State<Context>) -> Result<Json<serde_json::Value>, StatusCode> {
	Ok(Json(
		serde_json::Value::new_object()
			.set_actor_type(Some(ActorType::Application))
			.set_id(Some(&url!(ctx, "")))
			.set_name(Some("μpub"))
			.set_summary(Some("micro social network, federated"))
			// .set_inbox(Node::link(url!(ctx, "/inbox")))
			// .set_outbox(Node::link(url!(ctx, "/outbox")))
			.ld_context()
	))
}


#[derive(Debug, Clone, serde::Deserialize)]
pub struct LoginForm {
	email: String,
	password: String,
}

pub async fn auth(State(ctx): State<Context>, Json(login): Json<LoginForm>) -> Result<Json<serde_json::Value>, StatusCode> {
	// TODO salt the pwd
	match model::credential::Entity::find()
		.filter(Condition::all()
			.add(model::credential::Column::Email.eq(login.email))
			.add(model::credential::Column::Password.eq(sha256::digest(login.password)))
		)
		.one(ctx.db())
		.await
	{
		Ok(Some(x)) => {
			// TODO should probably use crypto-safe rng
			let token : String = rand::thread_rng()
				.sample_iter(&rand::distributions::Alphanumeric)
				.take(128)
				.map(char::from)
				.collect();
			model::session::Entity::insert(
				model::session::ActiveModel {
					id: sea_orm::ActiveValue::NotSet,
					actor: sea_orm::ActiveValue::Set(x.id),
					session: sea_orm::ActiveValue::Set(token.clone()),
					expires: sea_orm::ActiveValue::Set(chrono::Utc::now() + std::time::Duration::from_secs(3600 * 6)),
				}
			)
				.exec(ctx.db())
				.await.map_err(|_| StatusCode::INTERNAL_SERVER_ERROR)?;
			Ok(Json(serde_json::Value::String(token)))
		},
		Ok(None) => Err(StatusCode::UNAUTHORIZED),
		Err(e) => {
			tracing::error!("error querying db for user credentials: {e}");
			Err(StatusCode::INTERNAL_SERVER_ERROR)
		}
	}
}
chore: moved AP routes in separate folder dir 2024-03-20 05:44:50 +01:00			`pub mod user;`
chore: split inbox/outbox, added forgotten mods 2024-03-24 04:05:09 +01:00			`pub mod inbox;`
			`pub mod outbox;`
chore: moved AP routes in separate folder dir 2024-03-20 05:44:50 +01:00			`pub mod object;`
			`pub mod activity;`
feat: handle host-meta and webfingers 2024-03-22 00:17:52 +01:00			`pub mod well_known;`

fix: i checked the logs, content type ld+json... was it really just this??? ffs 2024-03-21 03:07:35 +01:00			`pub mod jsonld;`
			`pub use jsonld::JsonLD;`
chore: moved AP routes in separate folder dir 2024-03-20 05:44:50 +01:00
			`use axum::{extract::State, http::StatusCode, Json};`
feat: super barebones auth route 2024-03-24 23:55:48 +01:00			`use rand::Rng;`
			`use sea_orm::{ColumnTrait, Condition, EntityTrait, QueryFilter};`
chore: moved AP routes in separate folder dir 2024-03-20 05:44:50 +01:00
feat: super barebones auth route 2024-03-24 23:55:48 +01:00			`use crate::{activitystream::{object::{actor::{ActorMut, ActorType}, ObjectMut}, BaseMut}, model, server::Context, url};`
fix: make @context addition explicit also moved things around: object() is now into LD trait 2024-03-21 19:15:19 +01:00
			`use self::jsonld::LD;`
chore: moved AP routes in separate folder dir 2024-03-20 05:44:50 +01:00
feat: more link helpers and node constructors 2024-03-21 00:04:44 +01:00			`pub const PUBLIC_TARGET : &str = "https://www.w3.org/ns/activitystreams#Public";`

			`pub fn split_id(id: &str) -> (String, String) {`
			`let clean = id`
			`.replace("http://", "")`
			`.replace("https://", "");`
			`let mut splits = clean.split('/');`
			`let first = splits.next().unwrap_or("");`
			`let last = splits.last().unwrap_or(first);`
			`(first.to_string(), last.to_string())`
			`}`

fix: base app Actor, domain stripper 2024-03-21 01:11:20 +01:00			`pub fn domain(domain: &str) -> String {`
			`domain`
			`.replace("http://", "")`
			`.replace("https://", "")`
			`.replace('/', "")`
			`}`

chore: moved AP routes in separate folder dir 2024-03-20 05:44:50 +01:00
feat: simple outbox without objects links dont require me to do relations now, but are likely needed 2024-03-20 07:55:24 +01:00			`#[derive(Debug, serde::Deserialize)]`
			`// TODO i don't really like how pleroma/mastodon do it actually, maybe change this?`
feat: manage follower/followig collections 2024-03-22 02:50:38 +01:00			`pub struct Pagination {`
feat: simple outbox without objects links dont require me to do relations now, but are likely needed 2024-03-20 07:55:24 +01:00			`pub page: Option<bool>,`
feat: manage follower/followig collections 2024-03-22 02:50:38 +01:00			`pub offset: Option<u64>,`
			`pub batch: Option<u64>,`
chore: moved AP routes in separate folder dir 2024-03-20 05:44:50 +01:00			`}`

feat: serve application actor on / mastodon uses /actor, but i think the root is fine? 2024-03-20 11:24:54 +01:00			`pub async fn view(State(ctx): State<Context>) -> Result<Json<serde_json::Value>, StatusCode> {`
chore: Mut traits take owned self rather than &mut 2024-03-21 00:04:01 +01:00			`Ok(Json(`
fix: make @context addition explicit also moved things around: object() is now into LD trait 2024-03-21 19:15:19 +01:00			`serde_json::Value::new_object()`
chore: Mut traits take owned self rather than &mut 2024-03-21 00:04:01 +01:00			`.set_actor_type(Some(ActorType::Application))`
			`.set_id(Some(&url!(ctx, "")))`
			`.set_name(Some("μpub"))`
			`.set_summary(Some("micro social network, federated"))`
fix: disable shared inbox/outbox they aren't really implemented anyway and it's too much hassle now, they're only relevant for big instances, not 1-user dev junk 2024-03-22 01:56:06 +01:00			`// .set_inbox(Node::link(url!(ctx, "/inbox")))`
			`// .set_outbox(Node::link(url!(ctx, "/outbox")))`
fix: ld_context to all 2024-03-21 19:32:07 +01:00			`.ld_context()`
chore: Mut traits take owned self rather than &mut 2024-03-21 00:04:01 +01:00			`))`
feat: serve application actor on / mastodon uses /actor, but i think the root is fine? 2024-03-20 11:24:54 +01:00			`}`

feat: super barebones auth route 2024-03-24 23:55:48 +01:00
			`#[derive(Debug, Clone, serde::Deserialize)]`
			`pub struct LoginForm {`
			`email: String,`
			`password: String,`
			`}`

			`pub async fn auth(State(ctx): State<Context>, Json(login): Json<LoginForm>) -> Result<Json<serde_json::Value>, StatusCode> {`
			`// TODO salt the pwd`
			`match model::credential::Entity::find()`
			`.filter(Condition::all()`
			`.add(model::credential::Column::Email.eq(login.email))`
			`.add(model::credential::Column::Password.eq(sha256::digest(login.password)))`
			`)`
			`.one(ctx.db())`
			`.await`
			`{`
			`Ok(Some(x)) => {`
			`// TODO should probably use crypto-safe rng`
			`let token : String = rand::thread_rng()`
			`.sample_iter(&rand::distributions::Alphanumeric)`
			`.take(128)`
			`.map(char::from)`
			`.collect();`
			`model::session::Entity::insert(`
			`model::session::ActiveModel {`
			`id: sea_orm::ActiveValue::NotSet,`
			`actor: sea_orm::ActiveValue::Set(x.id),`
			`session: sea_orm::ActiveValue::Set(token.clone()),`
			`expires: sea_orm::ActiveValue::Set(chrono::Utc::now() + std::time::Duration::from_secs(3600 * 6)),`
			`}`
			`)`
			`.exec(ctx.db())`
			`.await.map_err(\|_\| StatusCode::INTERNAL_SERVER_ERROR)?;`
			`Ok(Json(serde_json::Value::String(token)))`
			`},`
			`Ok(None) => Err(StatusCode::UNAUTHORIZED),`
			`Err(e) => {`
			`tracing::error!("error querying db for user credentials: {e}");`
			`Err(StatusCode::INTERNAL_SERVER_ERROR)`
			`}`
			`}`
			`}`