upub/src/routes/activitypub/activity.rs

use axum::extract::{Path, Query, State};
use sea_orm::{ColumnTrait, QueryFilter};
use crate::{errors::UpubError, model::{self, addressing::EmbeddedActivity}, server::{auth::AuthIdentity, fetcher::Fetcher, Context}};

use super::{jsonld::LD, JsonLD, TryFetch};

pub async fn view(
	State(ctx): State<Context>,
	Path(id): Path<String>,
	AuthIdentity(auth): AuthIdentity,
	Query(query): Query<TryFetch>,
) -> crate::Result<JsonLD<serde_json::Value>> {
	let aid = if id.starts_with('+') {
		format!("https://{}", id.replacen('+', "", 1).replace('@', "/"))
	} else {
		ctx.aid(id.clone())
	};
	if auth.is_local() && query.fetch && !ctx.is_local(&aid) {
		ctx.fetch_activity(&aid).await?;
	}

	match model::addressing::Entity::find_activities()
		.filter(model::activity::Column::Id.eq(&aid))
		.filter(auth.filter_condition())
		.into_model::<EmbeddedActivity>()
		.one(ctx.db())
		.await?
	{
		Some(activity) => Ok(JsonLD(
			activity.ap_filled(ctx.db()).await?.ld_context()
		)),
		None => Err(UpubError::not_found()),
	}
}
feat: local users can request to fetch remote stuff 2024-04-18 04:48:49 +02:00			`use axum::extract::{Path, Query, State};`
feat: authorized fetch on activities and objects 2024-04-12 22:21:23 +02:00			`use sea_orm::{ColumnTrait, QueryFilter};`
fix: insert addressings after fetching also refactored fetcher into a trait of context 2024-04-18 05:25:56 +02:00			`use crate::{errors::UpubError, model::{self, addressing::EmbeddedActivity}, server::{auth::AuthIdentity, fetcher::Fetcher, Context}};`
chore: moved AP routes in separate folder dir 2024-03-20 05:44:50 +01:00
feat: local users can request to fetch remote stuff 2024-04-18 04:48:49 +02:00			`use super::{jsonld::LD, JsonLD, TryFetch};`
chore: moved AP routes in separate folder dir 2024-03-20 05:44:50 +01:00
feat: authorized fetch on activities and objects 2024-04-12 22:21:23 +02:00			`pub async fn view(`
			`State(ctx): State<Context>,`
			`Path(id): Path<String>,`
			`AuthIdentity(auth): AuthIdentity,`
feat: local users can request to fetch remote stuff 2024-04-18 04:48:49 +02:00			`Query(query): Query<TryFetch>,`
			`) -> crate::Result<JsonLD<serde_json::Value>> {`
feat: allow to resolve local views of remote things basically any id prefixed with + will be: * prefixed with 'https://' * have all '@' replaced with '/' * not be normalized with local domain patterns thus allowing to look up kind of any url in our db this is kinda reinventing the wheel, but i really don't want to have local-only ids and would much rather have a local-only way to display them, because at least everyone can understand it and look up anything remote easily 2024-04-15 21:36:31 +02:00			`let aid = if id.starts_with('+') {`
			`format!("https://{}", id.replacen('+', "", 1).replace('@', "/"))`
			`} else {`
			`ctx.aid(id.clone())`
			`};`
fix: ensure viewer has perms even for fetches before, the first fetch would bypass addressing checks. now we always do 2 trips to db when viewing+fetching remote stuff: 1st to make sure we have it, second to make sure we can view it 2024-04-19 05:26:51 +02:00			`if auth.is_local() && query.fetch && !ctx.is_local(&aid) {`
			`ctx.fetch_activity(&aid).await?;`
			`}`

feat: authorized fetch on activities and objects 2024-04-12 22:21:23 +02:00			`match model::addressing::Entity::find_activities()`
feat: local users can request to fetch remote stuff 2024-04-18 04:48:49 +02:00			`.filter(model::activity::Column::Id.eq(&aid))`
feat: authorized fetch on activities and objects 2024-04-12 22:21:23 +02:00			`.filter(auth.filter_condition())`
			`.into_model::<EmbeddedActivity>()`
feat: activity view embeds object 2024-03-21 01:42:29 +01:00			`.one(ctx.db())`
feat: local users can request to fetch remote stuff 2024-04-18 04:48:49 +02:00			`.await?`
feat: activity view embeds object 2024-03-21 01:42:29 +01:00			`{`
feat: show attachments in inbox, outbox and /object attachments are lazy loaded, so it may be efficient if not all posts have media, but it should probably be eager loaded anyway eventually 2024-04-21 23:19:26 +02:00			`Some(activity) => Ok(JsonLD(`
			`activity.ap_filled(ctx.db()).await?.ld_context()`
			`)),`
fix: ensure viewer has perms even for fetches before, the first fetch would bypass addressing checks. now we always do 2 trips to db when viewing+fetching remote stuff: 1st to make sure we have it, second to make sure we can view it 2024-04-19 05:26:51 +02:00			`None => Err(UpubError::not_found()),`
chore: moved AP routes in separate folder dir 2024-03-20 05:44:50 +01:00			`}`
			`}`