| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317131813191320132113221323132413251326132713281329133013311332133313341335133613371338133913401341134213431344134513461347134813491350135113521353135413551356135713581359136013611362136313641365136613671368136913701371137213731374137513761377137813791380138113821383138413851386138713881389139013911392139313941395139613971398139914001401140214031404140514061407140814091410141114121413141414151416141714181419142014211422142314241425142614271428142914301431143214331434143514361437143814391440144114421443144414451446144714481449145014511452145314541455145614571458145914601461146214631464146514661467146814691470147114721473147414751476147714781479148014811482148314841485148614871488148914901491149214931494149514961497149814991500150115021503150415051506150715081509151015111512151315141515151615171518151915201521152215231524152515261527152815291530153115321533153415351536153715381539154015411542154315441545154615471548154915501551155215531554155515561557155815591560156115621563156415651566156715681569157015711572157315741575157615771578157915801581158215831584158515861587158815891590159115921593159415951596159715981599160016011602160316041605160616071608160916101611161216131614161516161617161816191620162116221623162416251626162716281629163016311632163316341635163616371638163916401641164216431644164516461647164816491650165116521653165416551656165716581659166016611662166316641665166616671668166916701671167216731674167516761677167816791680168116821683168416851686168716881689169016911692169316941695169616971698169917001701170217031704170517061707170817091710171117121713171417151716171717181719172017211722172317241725172617271728172917301731173217331734173517361737173817391740174117421743174417451746174717481749175017511752175317541755175617571758175917601761176217631764176517661767176817691770177117721773177417751776177717781779178017811782178317841785178617871788178917901791179217931794179517961797179817991800180118021803180418051806180718081809181018111812181318141815181618171818181918201821182218231824182518261827182818291830183118321833183418351836183718381839184018411842184318441845184618471848184918501851185218531854185518561857185818591860186118621863186418651866186718681869187018711872187318741875187618771878187918801881188218831884188518861887188818891890189118921893189418951896189718981899190019011902190319041905190619071908190919101911191219131914191519161917191819191920192119221923192419251926192719281929193019311932193319341935193619371938193919401941194219431944194519461947194819491950195119521953195419551956195719581959196019611962196319641965196619671968196919701971197219731974197519761977197819791980198119821983198419851986198719881989199019911992199319941995199619971998199920002001200220032004200520062007200820092010201120122013201420152016201720182019202020212022202320242025202620272028202920302031203220332034203520362037203820392040204120422043204420452046204720482049205020512052205320542055205620572058205920602061206220632064206520662067206820692070207120722073207420752076207720782079208020812082208320842085208620872088208920902091209220932094209520962097209820992100210121022103210421052106210721082109211021112112211321142115211621172118211921202121212221232124212521262127212821292130213121322133213421352136213721382139214021412142214321442145214621472148214921502151215221532154215521562157215821592160216121622163216421652166216721682169217021712172217321742175217621772178217921802181218221832184218521862187218821892190219121922193219421952196219721982199220022012202220322042205220622072208220922102211221222132214221522162217221822192220222122222223222422252226222722282229223022312232223322342235223622372238223922402241224222432244224522462247224822492250225122522253225422552256225722582259226022612262226322642265226622672268226922702271227222732274227522762277227822792280228122822283228422852286228722882289229022912292229322942295229622972298229923002301230223032304230523062307230823092310231123122313231423152316231723182319232023212322232323242325232623272328232923302331233223332334233523362337233823392340234123422343234423452346234723482349235023512352235323542355235623572358235923602361236223632364236523662367236823692370237123722373237423752376237723782379238023812382238323842385238623872388238923902391239223932394239523962397239823992400240124022403240424052406240724082409241024112412241324142415241624172418241924202421242224232424242524262427242824292430243124322433243424352436243724382439244024412442244324442445244624472448244924502451245224532454245524562457245824592460246124622463246424652466246724682469247024712472247324742475247624772478247924802481248224832484248524862487248824892490249124922493249424952496249724982499250025012502250325042505250625072508250925102511251225132514251525162517251825192520252125222523252425252526252725282529253025312532253325342535253625372538253925402541254225432544254525462547254825492550255125522553255425552556255725582559256025612562256325642565256625672568256925702571257225732574257525762577257825792580258125822583258425852586258725882589259025912592259325942595259625972598259926002601260226032604260526062607260826092610261126122613261426152616261726182619262026212622262326242625262626272628262926302631263226332634263526362637263826392640264126422643264426452646264726482649265026512652265326542655265626572658265926602661266226632664266526662667266826692670267126722673267426752676267726782679268026812682268326842685268626872688268926902691269226932694269526962697269826992700270127022703270427052706270727082709271027112712271327142715271627172718271927202721272227232724272527262727272827292730273127322733273427352736273727382739274027412742274327442745274627472748274927502751275227532754275527562757275827592760276127622763276427652766276727682769277027712772277327742775277627772778277927802781278227832784278527862787278827892790279127922793279427952796279727982799280028012802280328042805280628072808280928102811281228132814281528162817281828192820282128222823282428252826282728282829283028312832283328342835283628372838283928402841284228432844284528462847284828492850285128522853285428552856285728582859286028612862286328642865286628672868286928702871287228732874287528762877287828792880288128822883288428852886288728882889289028912892289328942895289628972898289929002901290229032904290529062907290829092910291129122913291429152916291729182919292029212922292329242925292629272928292929302931293229332934293529362937293829392940294129422943294429452946294729482949295029512952295329542955295629572958295929602961296229632964296529662967296829692970297129722973297429752976297729782979298029812982298329842985298629872988298929902991299229932994299529962997299829993000300130023003300430053006300730083009301030113012301330143015301630173018301930203021302230233024302530263027302830293030303130323033303430353036303730383039304030413042304330443045304630473048304930503051305230533054305530563057305830593060306130623063306430653066306730683069307030713072307330743075307630773078307930803081308230833084308530863087308830893090309130923093309430953096309730983099310031013102310331043105310631073108310931103111311231133114311531163117311831193120312131223123312431253126312731283129313031313132313331343135313631373138313931403141314231433144314531463147314831493150315131523153315431553156315731583159316031613162316331643165316631673168316931703171317231733174317531763177317831793180318131823183318431853186318731883189319031913192319331943195319631973198319932003201320232033204320532063207320832093210321132123213321432153216321732183219322032213222322332243225322632273228322932303231323232333234323532363237323832393240324132423243324432453246324732483249325032513252325332543255325632573258325932603261326232633264326532663267326832693270327132723273327432753276327732783279328032813282328332843285328632873288328932903291329232933294329532963297329832993300330133023303330433053306330733083309331033113312331333143315331633173318331933203321332233233324332533263327332833293330333133323333333433353336333733383339334033413342334333443345334633473348334933503351335233533354335533563357335833593360336133623363336433653366336733683369337033713372337333743375337633773378337933803381338233833384338533863387338833893390339133923393339433953396339733983399340034013402340334043405340634073408340934103411341234133414341534163417341834193420342134223423342434253426342734283429343034313432343334343435343634373438343934403441344234433444344534463447344834493450345134523453345434553456345734583459346034613462346334643465346634673468346934703471347234733474347534763477347834793480348134823483348434853486348734883489349034913492349334943495349634973498349935003501350235033504350535063507350835093510351135123513351435153516351735183519352035213522352335243525352635273528352935303531353235333534353535363537353835393540354135423543354435453546354735483549355035513552355335543555355635573558355935603561356235633564356535663567356835693570357135723573357435753576357735783579358035813582358335843585358635873588358935903591359235933594359535963597359835993600360136023603360436053606360736083609361036113612361336143615361636173618361936203621362236233624362536263627362836293630363136323633363436353636363736383639364036413642364336443645364636473648364936503651365236533654365536563657365836593660366136623663366436653666366736683669367036713672367336743675367636773678367936803681368236833684368536863687368836893690369136923693369436953696369736983699370037013702370337043705370637073708370937103711371237133714371537163717371837193720372137223723372437253726372737283729373037313732373337343735373637373738 |
- __filename__ = "daemon.py"
- __author__ = "Bob Mottram"
- __license__ = "AGPL3+"
- __version__ = "1.0.0"
- __maintainer__ = "Bob Mottram"
- __email__ = "bob@freedombone.net"
- __status__ = "Production"
- from http.server import BaseHTTPRequestHandler,ThreadingHTTPServer
- #import socketserver
- import commentjson
- import json
- import time
- import base64
- import locale
- # used for mime decoding of message POST
- import email.parser
- # for saving images
- from binascii import a2b_base64
- from hashlib import sha256
- from pprint import pprint
- from session import createSession
- from webfinger import webfingerMeta
- from webfinger import webfingerLookup
- from webfinger import webfingerHandle
- from person import registerAccount
- from person import personLookup
- from person import personBoxJson
- from person import createSharedInbox
- from person import isSuspended
- from person import suspendAccount
- from person import unsuspendAccount
- from person import removeAccount
- from person import canRemovePost
- from posts import outboxMessageCreateWrap
- from posts import savePostToBox
- from posts import sendToFollowers
- from posts import postIsAddressedToPublic
- from posts import sendToNamedAddresses
- from posts import createPublicPost
- from posts import createReportPost
- from posts import createUnlistedPost
- from posts import createFollowersOnlyPost
- from posts import createDirectMessagePost
- from posts import populateRepliesJson
- from posts import addToField
- from posts import expireCache
- from inbox import inboxPermittedMessage
- from inbox import inboxMessageHasParams
- from inbox import runInboxQueue
- from inbox import runInboxQueueWatchdog
- from inbox import savePostToInboxQueue
- from inbox import populateReplies
- from follow import getFollowingFeed
- from follow import outboxUndoFollow
- from follow import sendFollowRequest
- from auth import authorize
- from auth import createPassword
- from auth import createBasicAuthHeader
- from auth import authorizeBasic
- from threads import threadWithTrace
- from media import getMediaPath
- from media import createMediaDirs
- from delete import outboxDelete
- from like import outboxLike
- from like import outboxUndoLike
- from blocking import outboxBlock
- from blocking import outboxUndoBlock
- from blocking import addBlock
- from blocking import removeBlock
- from blocking import addGlobalBlock
- from blocking import removeGlobalBlock
- from blocking import isBlockedHashtag
- from blocking import isBlockedDomain
- from config import setConfigParam
- from config import getConfigParam
- from roles import outboxDelegate
- from roles import setRole
- from roles import clearModeratorStatus
- from skills import outboxSkills
- from availability import outboxAvailability
- from webinterface import htmlDeletePost
- from webinterface import htmlAbout
- from webinterface import htmlRemoveSharedItem
- from webinterface import htmlInboxDMs
- from webinterface import htmlUnblockConfirm
- from webinterface import htmlPersonOptions
- from webinterface import htmlIndividualPost
- from webinterface import htmlProfile
- from webinterface import htmlInbox
- from webinterface import htmlOutbox
- from webinterface import htmlModeration
- from webinterface import htmlPostReplies
- from webinterface import htmlLogin
- from webinterface import htmlSuspended
- from webinterface import htmlGetLoginCredentials
- from webinterface import htmlNewPost
- from webinterface import htmlFollowConfirm
- from webinterface import htmlSearch
- from webinterface import htmlSearchEmoji
- from webinterface import htmlSearchEmojiTextEntry
- from webinterface import htmlUnfollowConfirm
- from webinterface import htmlProfileAfterSearch
- from webinterface import htmlEditProfile
- from webinterface import htmlTermsOfService
- from webinterface import htmlSkillsSearch
- from webinterface import htmlHashtagSearch
- from webinterface import htmlModerationInfo
- from webinterface import htmlSearchSharedItems
- from webinterface import htmlHashtagBlocked
- from shares import getSharesFeedForPerson
- from shares import outboxShareUpload
- from shares import outboxUndoShareUpload
- from shares import addShare
- from shares import removeShare
- from utils import getNicknameFromActor
- from utils import getDomainFromActor
- from utils import getStatusNumber
- from manualapprove import manualDenyFollowRequest
- from manualapprove import manualApproveFollowRequest
- from announce import createAnnounce
- from announce import outboxAnnounce
- from content import addHtmlTags
- from media import removeMetaData
- from cache import storePersonInCache
- import os
- import sys
- # maximum number of posts to list in outbox feed
- maxPostsInFeed=12
- # number of follows/followers per page
- followsPerPage=12
- # number of item shares per page
- sharesPerPage=12
- def readFollowList(filename: str):
- """Returns a list of ActivityPub addresses to follow
- """
- followlist=[]
- if not os.path.isfile(filename):
- return followlist
- followUsers = open(filename, "r")
- for u in followUsers:
- if u not in followlist:
- nickname,domain = parseHandle(u)
- if nickname:
- followlist.append(nickname+'@'+domain)
- followUsers.close()
- return followlist
- class PubServer(BaseHTTPRequestHandler):
- protocol_version = 'HTTP/1.1'
- def _requestHTTP(self) -> bool:
- """Should a http response be given?
- """
- if not self.headers.get('Accept'):
- return False
- if 'image/' in self.headers['Accept']:
- return False
- if self.headers['Accept'].startswith('*'):
- return False
- if 'json' in self.headers['Accept']:
- return False
- return True
-
- def _login_headers(self,fileFormat: str,length: int) -> None:
- self.send_response(200)
- self.send_header('Content-type', fileFormat)
- self.send_header('Content-Length', str(length))
- self.send_header('Host', self.server.domainFull)
- self.send_header('WWW-Authenticate', 'title="Login to Epicyon", Basic realm="epicyon"')
- self.send_header('X-Robots-Tag','noindex')
- self.end_headers()
- def _set_headers(self,fileFormat: str,length: int,cookie: str) -> None:
- self.send_response(200)
- self.send_header('Content-type', fileFormat)
- self.send_header('Content-Length', str(length))
- if cookie:
- self.send_header('Cookie', cookie)
- self.send_header('Host', self.server.domainFull)
- self.send_header('InstanceID', self.server.instanceId)
- self.send_header('X-Robots-Tag','noindex')
- self.end_headers()
- def _redirect_headers(self,redirect: str,cookie: str) -> None:
- self.send_response(303)
- #self.send_header('Content-type', 'text/html')
- if cookie:
- self.send_header('Cookie', cookie)
- self.send_header('Location', redirect)
- self.send_header('Host', self.server.domainFull)
- self.send_header('InstanceID', self.server.instanceId)
- self.send_header('Content-Length', '0')
- self.send_header('X-Robots-Tag','noindex')
- self.end_headers()
- def _404(self) -> None:
- msg="<html><head></head><body><h1>404 Not Found</h1></body></html>".encode('utf-8')
- self.send_response(404)
- self.send_header('Content-Type', 'text/html; charset=utf-8')
- self.send_header('Content-Length', str(len(msg)))
- self.send_header('X-Robots-Tag','noindex')
- self.end_headers()
- try:
- self.wfile.write(msg)
- except Exception as e:
- print('Error when showing 404')
- print(e)
- def _robotsTxt(self) -> bool:
- if not self.path.lower().startswith('/robot'):
- return False
- msg='User-agent: *\nDisallow: /'
- msg=msg.encode('utf-8')
- self._set_headers('text/plain; charset=utf-8',len(msg),None)
- self.wfile.write(msg)
- return True
- def _webfinger(self) -> bool:
- if not self.path.startswith('/.well-known'):
- return False
- if self.server.debug:
- print('DEBUG: WEBFINGER well-known')
- if self.server.debug:
- print('DEBUG: WEBFINGER host-meta')
- if self.path.startswith('/.well-known/host-meta'):
- wfResult=webfingerMeta(self.server.httpPrefix,self.server.domainFull)
- if wfResult:
- msg=wfResult.encode('utf-8')
- self._set_headers('application/xrd+xml',len(msg),None)
- self.wfile.write(msg)
- return
- if self.server.debug:
- print('DEBUG: WEBFINGER lookup '+self.path+' '+str(self.server.baseDir))
- wfResult=webfingerLookup(self.path,self.server.baseDir,self.server.port,self.server.debug)
- if wfResult:
- msg=json.dumps(wfResult).encode('utf-8')
- self._set_headers('application/jrd+json',len(msg),None)
- self.wfile.write(msg)
- else:
- if self.server.debug:
- print('DEBUG: WEBFINGER lookup 404 '+self.path)
- self._404()
- return True
- def _permittedDir(self,path: str) -> bool:
- """These are special paths which should not be accessible
- directly via GET or POST
- """
- if path.startswith('/wfendpoints') or \
- path.startswith('/keys') or \
- path.startswith('/accounts'):
- return False
- return True
-
- def _postToOutbox(self,messageJson: {},version: str) -> bool:
- """post is received by the outbox
- Client to server message post
- https://www.w3.org/TR/activitypub/#client-to-server-outbox-delivery
- """
- if not messageJson.get('type'):
- if self.server.debug:
- print('DEBUG: POST to outbox has no "type" parameter')
- return False
- if not messageJson.get('object') and messageJson.get('content'):
- if messageJson['type']!='Create':
- # https://www.w3.org/TR/activitypub/#object-without-create
- if self.server.debug:
- print('DEBUG: POST to outbox - adding Create wrapper')
- messageJson= \
- outboxMessageCreateWrap(self.server.httpPrefix, \
- self.postToNickname, \
- self.server.domain, \
- self.server.port, \
- messageJson)
- if messageJson['type']=='Create':
- if not (messageJson.get('id') and \
- messageJson.get('type') and \
- messageJson.get('actor') and \
- messageJson.get('object') and \
- messageJson.get('to')):
- if self.server.debug:
- pprint(messageJson)
- print('DEBUG: POST to outbox - Create does not have the required parameters')
- return False
- testDomain,testPort=getDomainFromActor(messageJson['actor'])
- if testPort:
- if testPort!=80 and testPort!=443:
- testDomain=testDomain+':'+str(testPort)
- if isBlockedDomain(self.server.baseDir,testDomain):
- if self.server.debug:
- print('DEBUG: domain is blocked: '+messageJson['actor'])
- return False
- # https://www.w3.org/TR/activitypub/#create-activity-outbox
- messageJson['object']['attributedTo']=messageJson['actor']
- if messageJson['object'].get('attachment'):
- attachmentIndex=0
- if messageJson['object']['attachment'][attachmentIndex].get('mediaType'):
- fileExtension='png'
- if messageJson['object']['attachment'][attachmentIndex]['mediaType'].endswith('jpeg'):
- fileExtension='jpg'
- if messageJson['object']['attachment'][attachmentIndex]['mediaType'].endswith('gif'):
- fileExtension='gif'
- if messageJson['object']['attachment'][attachmentIndex]['mediaType'].endswith('audio/mpeg'):
- fileExtension='mp3'
- if messageJson['object']['attachment'][attachmentIndex]['mediaType'].endswith('ogg'):
- fileExtension='ogg'
- if messageJson['object']['attachment'][attachmentIndex]['mediaType'].endswith('mp4'):
- fileExtension='mp4'
- if messageJson['object']['attachment'][attachmentIndex]['mediaType'].endswith('webm'):
- fileExtension='webm'
- if messageJson['object']['attachment'][attachmentIndex]['mediaType'].endswith('ogv'):
- fileExtension='ogv'
- mediaDir=self.server.baseDir+'/accounts/'+self.postToNickname+'@'+self.server.domain
- uploadMediaFilename=mediaDir+'/upload.'+fileExtension
- if not os.path.isfile(uploadMediaFilename):
- del messageJson['object']['attachment']
- else:
- # generate a path for the uploaded image
- mPath=getMediaPath()
- mediaPath=mPath+'/'+createPassword(32)+'.'+fileExtension
- createMediaDirs(self.server.baseDir,mPath)
- mediaFilename=self.server.baseDir+'/'+mediaPath
- # move the uploaded image to its new path
- os.rename(uploadMediaFilename,mediaFilename)
- # change the url of the attachment
- messageJson['object']['attachment'][attachmentIndex]['url']= \
- self.server.httpPrefix+'://'+self.server.domainFull+'/'+mediaPath
-
- permittedOutboxTypes=[
- 'Create','Announce','Like','Follow','Undo', \
- 'Update','Add','Remove','Block','Delete', \
- 'Delegate','Skill'
- ]
- if messageJson['type'] not in permittedOutboxTypes:
- if self.server.debug:
- print('DEBUG: POST to outbox - '+messageJson['type']+ \
- ' is not a permitted activity type')
- return False
- if messageJson.get('id'):
- postId=messageJson['id'].replace('/activity','').replace('/undo','')
- if self.server.debug:
- print('DEBUG: id attribute exists within POST to outbox')
- else:
- if self.server.debug:
- print('DEBUG: No id attribute within POST to outbox')
- postId=None
- if self.server.debug:
- pprint(messageJson)
- print('DEBUG: savePostToBox')
- savePostToBox(self.server.baseDir, \
- self.server.httpPrefix, \
- postId, \
- self.postToNickname, \
- self.server.domainFull,messageJson,'outbox')
- if outboxAnnounce(self.server.baseDir,messageJson,self.server.debug):
- if self.server.debug:
- print('DEBUG: Updated announcements (shares) collection for the post associated with the Announce activity')
- if not self.server.session:
- if self.server.debug:
- print('DEBUG: creating new session for c2s')
- self.server.session= \
- createSession(self.server.domain,self.server.port,self.server.useTor)
- if self.server.debug:
- print('DEBUG: sending c2s post to followers')
- sendToFollowers(self.server.session,self.server.baseDir, \
- self.postToNickname,self.server.domain, \
- self.server.port, \
- self.server.httpPrefix, \
- self.server.federationList, \
- self.server.sendThreads, \
- self.server.postLog, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- messageJson,self.server.debug, \
- self.server.projectVersion)
- if self.server.debug:
- print('DEBUG: handle any unfollow requests')
- outboxUndoFollow(self.server.baseDir,messageJson,self.server.debug)
- if self.server.debug:
- print('DEBUG: handle delegation requests')
- outboxDelegate(self.server.baseDir,self.postToNickname,messageJson,self.server.debug)
- if self.server.debug:
- print('DEBUG: handle skills changes requests')
- outboxSkills(self.server.baseDir,self.postToNickname,messageJson,self.server.debug)
- if self.server.debug:
- print('DEBUG: handle availability changes requests')
- outboxAvailability(self.server.baseDir,self.postToNickname,messageJson,self.server.debug)
- if self.server.debug:
- print('DEBUG: handle any like requests')
- outboxLike(self.server.baseDir,self.server.httpPrefix, \
- self.postToNickname,self.server.domain,self.server.port, \
- messageJson,self.server.debug)
- if self.server.debug:
- print('DEBUG: handle any undo like requests')
- outboxUndoLike(self.server.baseDir,self.server.httpPrefix, \
- self.postToNickname,self.server.domain,self.server.port, \
- messageJson,self.server.debug)
- if self.server.debug:
- print('DEBUG: handle delete requests')
- outboxDelete(self.server.baseDir,self.server.httpPrefix, \
- self.postToNickname,self.server.domain, \
- messageJson,self.server.debug, \
- self.server.allowDeletion)
- if self.server.debug:
- print('DEBUG: handle block requests')
- outboxBlock(self.server.baseDir,self.server.httpPrefix, \
- self.postToNickname,self.server.domain, \
- self.server.port,
- messageJson,self.server.debug)
- if self.server.debug:
- print('DEBUG: handle undo block requests')
- outboxUndoBlock(self.server.baseDir,self.server.httpPrefix, \
- self.postToNickname,self.server.domain, \
- self.server.port,
- messageJson,self.server.debug)
- if self.server.debug:
- print('DEBUG: handle share uploads')
- outboxShareUpload(self.server.baseDir,self.server.httpPrefix, \
- self.postToNickname,self.server.domain, \
- self.server.port,
- messageJson,self.server.debug)
- if self.server.debug:
- print('DEBUG: handle undo share uploads')
- outboxUndoShareUpload(self.server.baseDir,self.server.httpPrefix, \
- self.postToNickname,self.server.domain, \
- self.server.port,
- messageJson,self.server.debug)
- if self.server.debug:
- print('DEBUG: sending c2s post to named addresses')
- print('c2s sender: '+self.postToNickname+'@'+self.server.domain+':'+str(self.server.port))
- sendToNamedAddresses(self.server.session,self.server.baseDir, \
- self.postToNickname,self.server.domain, \
- self.server.port, \
- self.server.httpPrefix, \
- self.server.federationList, \
- self.server.sendThreads, \
- self.server.postLog, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- messageJson,self.server.debug, \
- self.server.projectVersion)
- return True
- def _postToOutboxThread(self,messageJson: {}) -> bool:
- """Creates a thread to send a post
- """
- accountOutboxThreadName=self.postToNickname
- if not accountOutboxThreadName:
- accountOutboxThreadName='*'
-
- if self.server.outboxThread.get(accountOutboxThreadName):
- print('Waiting for previous outbox thread to end')
- waitCtr=0
- while self.server.outboxThread[accountOutboxThreadName].isAlive() and waitCtr<8:
- time.sleep(1)
- waitCtr+=1
- if waitCtr>=8:
- self.server.outboxThread[accountOutboxThreadName].kill()
- print('Creating outbox thread')
- self.server.outboxThread[accountOutboxThreadName]= \
- threadWithTrace(target=self._postToOutbox, \
- args=(messageJson.copy(),__version__),daemon=True)
- print('Starting outbox thread')
- self.server.outboxThread[accountOutboxThreadName].start()
- return True
- def _inboxQueueCleardown(self):
- """ Check if the queue is full and remove oldest items if it is
- """
- if len(self.server.inboxQueue)>=self.server.maxQueueLength:
- print('Inbox queue is full. Removing oldest items.')
- while len(self.server.inboxQueue) >= self.server.maxQueueLength-4:
- queueFilename=self.server.inboxQueue[0]
- if os.path.isfile(queueFilename):
- os.remove(queueFilename)
- self.server.inboxQueue.pop(0)
-
- def _updateInboxQueue(self,nickname: str,messageJson: {},messageBytes: str) -> int:
- """Update the inbox queue
- """
- self._inboxQueueCleardown()
- # Convert the headers needed for signature verification to dict
- headersDict={}
- headersDict['host']=self.headers['host']
- headersDict['signature']=self.headers['signature']
- if self.headers.get('Date'):
- headersDict['Date']=self.headers['Date']
- if self.headers.get('digest'):
- headersDict['digest']=self.headers['digest']
- if self.headers.get('Content-type'):
- headersDict['Content-type']=self.headers['Content-type']
- # For follow activities add a 'to' field, which is a copy of the object field
- messageJson,toFieldExists=addToField('Follow',messageJson,self.server.debug)
-
- # For like activities add a 'to' field, which is a copy of the actor within the object field
- messageJson,toFieldExists=addToField('Like',messageJson,self.server.debug)
- pprint(messageJson)
- # save the json for later queue processing
- queueFilename = \
- savePostToInboxQueue(self.server.baseDir,
- self.server.httpPrefix,
- nickname,
- self.server.domainFull,
- messageJson,
- messageBytes.decode('utf-8'),
- headersDict,
- self.path,
- self.server.debug)
- if queueFilename:
- # add json to the queue
- if queueFilename not in self.server.inboxQueue:
- self.server.inboxQueue.append(queueFilename)
- self.send_response(201)
- self.end_headers()
- self.server.POSTbusy=False
- return 0
- return 2
- def _isAuthorized(self) -> bool:
- # token based authenticated used by the web interface
- if self.headers.get('Cookie'):
- if '=' in self.headers['Cookie']:
- tokenStr=self.headers['Cookie'].split('=',1)[1]
- if self.server.tokensLookup.get(tokenStr):
- nickname=self.server.tokensLookup[tokenStr]
- # check that the path contains the same nickname as the cookie
- # otherwise it would be possible to be authorized to use
- # an account you don't own
- if '/'+nickname+'/' in self.path:
- return True
- if self.path.endswith('/'+nickname):
- return True
- return False
- # basic auth
- if self.headers.get('Authorization'):
- if authorize(self.server.baseDir,self.path, \
- self.headers['Authorization'], \
- self.server.debug):
- return True
- return False
-
- def do_GET(self):
- # redirect music to #nowplaying list
- if self.path=='/music' or self.path=='/nowplaying':
- self.path='/tags/nowplaying'
- if self.server.debug:
- print('DEBUG: GET from '+self.server.baseDir+ \
- ' path: '+self.path+' busy: '+ \
- str(self.server.GETbusy))
- if self.server.debug:
- print(str(self.headers))
- cookie=None
- if self.headers.get('Cookie'):
- cookie=self.headers['Cookie']
- # check authorization
- authorized = self._isAuthorized()
- if authorized:
- if self.server.debug:
- print('GET Authorization granted')
- else:
- if self.server.debug:
- print('GET Not authorized')
- if not self.server.session:
- self.server.session= \
- createSession(self.server.domain,self.server.port,self.server.useTor)
- # is this a html request?
- htmlGET=False
- if self.headers.get('Accept'):
- if self._requestHTTP():
- htmlGET=True
- # replace https://domain/@nick with https://domain/users/nick
- if self.path.startswith('/@'):
- self.path=self.path.replace('/@','/users/')
- # treat shared inbox paths consistently
- if self.path=='/sharedInbox' or \
- self.path=='/users/inbox' or \
- self.path=='/actor/inbox' or \
- self.path=='/users/'+self.server.domain:
- self.path='/inbox'
- # show the person options screen with view/follow/block/report
- if htmlGET and '/users/' in self.path:
- if '?options=' in self.path:
- optionsStr=self.path.split('?options=')[1]
- originPathStr=self.path.split('?options=')[0]
- if ';' in optionsStr:
- pageNumber=1
- optionsList=optionsStr.split(';')
- optionsActor=optionsList[0]
- optionsPageNumber=optionsList[1]
- optionsProfileUrl=optionsList[2]
- if optionsPageNumber.isdigit():
- pageNumber=int(optionsPageNumber)
- optionsLink=None
- if len(optionsList)>3:
- optionsLink=optionsList[3]
- msg=htmlPersonOptions(self.server.translate, \
- self.server.baseDir, \
- self.server.domain, \
- originPathStr, \
- optionsActor, \
- optionsProfileUrl, \
- optionsLink, \
- pageNumber).encode()
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- self._redirect_headers(originPathStr,cookie)
- self.server.GETbusy=False
- return
- # remove a shared item
- if htmlGET and '?rmshare=' in self.path:
- shareName=self.path.split('?rmshare=')[1]
- actor=self.server.httpPrefix+'://'+self.server.domainFull+self.path.split('?rmshare=')[0]
- msg=htmlRemoveSharedItem(self.server.translate,self.server.baseDir,actor,shareName).encode()
- if not msg:
- self._redirect_headers(actor+'/inbox',cookie)
- self.server.GETbusy=False
- return
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- if self.path.startswith('/terms'):
- msg=htmlTermsOfService(self.server.baseDir, \
- self.server.httpPrefix, \
- self.server.domainFull).encode()
- self._login_headers('text/html',len(msg))
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- if self.path.startswith('/about'):
- msg=htmlAbout(self.server.baseDir, \
- self.server.httpPrefix, \
- self.server.domainFull).encode()
- self._login_headers('text/html',len(msg))
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- # send robots.txt if asked
- if self._robotsTxt():
- self.server.GETbusy=False
- return
-
- # if not authorized then show the login screen
- if htmlGET and self.path!='/login' and self.path!='/':
- if '/media/' not in self.path and \
- '/sharefiles/' not in self.path and \
- '/statuses/' not in self.path and \
- '/emoji/' not in self.path and \
- '/tags/' not in self.path and \
- '/avatars/' not in self.path and \
- '/icons/' not in self.path:
- divertToLoginScreen=True
- if self.path.startswith('/users/'):
- nickStr=self.path.split('/users/')[1]
- if '/' not in nickStr and '?' not in nickStr:
- divertToLoginScreen=False
- else:
- if self.path.endswith('/following') or \
- self.path.endswith('/followers') or \
- self.path.endswith('/skills') or \
- self.path.endswith('/roles') or \
- self.path.endswith('/shares'):
- divertToLoginScreen=False
- if divertToLoginScreen and not authorized:
- if self.server.debug:
- print('DEBUG: divertToLoginScreen='+str(divertToLoginScreen))
- print('DEBUG: authorized='+str(authorized))
- print('DEBUG: path='+self.path)
- self.send_response(303)
- self.send_header('Location', '/login')
- self.send_header('Content-Length', '0')
- self.send_header('X-Robots-Tag','noindex')
- self.end_headers()
- self.server.GETbusy=False
- return
-
- # get css
- # Note that this comes before the busy flag to avoid conflicts
- if self.path.endswith('.css'):
- if os.path.isfile('epicyon-profile.css'):
- with open('epicyon-profile.css', 'r') as cssfile:
- css = cssfile.read()
- msg=css.encode('utf-8')
- self._set_headers('text/css',len(msg),cookie)
- self.wfile.write(msg)
- self.wfile.flush()
- return
- # image on login screen
- if self.path=='/login.png':
- mediaFilename= \
- self.server.baseDir+'/accounts/login.png'
- if os.path.isfile(mediaFilename):
- with open(mediaFilename, 'rb') as avFile:
- mediaBinary = avFile.read()
- self._set_headers('image/png',len(mediaBinary),cookie)
- self.wfile.write(mediaBinary)
- self.wfile.flush()
- self._404()
- return
- # login screen background image
- if self.path=='/login-background.png':
- mediaFilename= \
- self.server.baseDir+'/accounts/login-background.png'
- if os.path.isfile(mediaFilename):
- with open(mediaFilename, 'rb') as avFile:
- mediaBinary = avFile.read()
- self._set_headers('image/png',len(mediaBinary),cookie)
- self.wfile.write(mediaBinary)
- self.wfile.flush()
- return
- self._404()
- return
- # follow screen background image
- if self.path=='/follow-background.png':
- mediaFilename= \
- self.server.baseDir+'/accounts/follow-background.png'
- if os.path.isfile(mediaFilename):
- with open(mediaFilename, 'rb') as avFile:
- mediaBinary = avFile.read()
- self._set_headers('image/png',len(mediaBinary),cookie)
- self.wfile.write(mediaBinary)
- self.wfile.flush()
- self._404()
- return
- # emoji images
- if '/emoji/' in self.path:
- if self.path.endswith('.png') or \
- self.path.endswith('.jpg') or \
- self.path.endswith('.gif'):
- emojiStr=self.path.split('/emoji/')[1]
- emojiFilename= \
- self.server.baseDir+'/emoji/'+emojiStr
- if os.path.isfile(emojiFilename):
- mediaImageType='png'
- if emojiFilename.endswith('.png'):
- mediaImageType='png'
- elif emojiFilename.endswith('.jpg'):
- mediaImageType='jpeg'
- else:
- mediaImageType='gif'
- with open(emojiFilename, 'rb') as avFile:
- mediaBinary = avFile.read()
- self._set_headers('image/'+mediaImageType,len(mediaBinary),cookie)
- self.wfile.write(mediaBinary)
- self.wfile.flush()
- return
- self._404()
- return
- # show media
- # Note that this comes before the busy flag to avoid conflicts
- if '/media/' in self.path:
- if self.path.endswith('.png') or \
- self.path.endswith('.jpg') or \
- self.path.endswith('.gif') or \
- self.path.endswith('.mp4') or \
- self.path.endswith('.ogv') or \
- self.path.endswith('.mp3') or \
- self.path.endswith('.ogg'):
- mediaStr=self.path.split('/media/')[1]
- mediaFilename= \
- self.server.baseDir+'/media/'+mediaStr
- if os.path.isfile(mediaFilename):
- mediaFileType='image/png'
- if mediaFilename.endswith('.png'):
- mediaFileType='image/png'
- elif mediaFilename.endswith('.jpg'):
- mediaFileType='image/jpeg'
- elif mediaFilename.endswith('.gif'):
- mediaFileType='image/gif'
- elif mediaFilename.endswith('.mp4'):
- mediaFileType='video/mp4'
- elif mediaFilename.endswith('.ogv'):
- mediaFileType='video/ogv'
- elif mediaFilename.endswith('.mp3'):
- mediaFileType='audio/mpeg'
- elif mediaFilename.endswith('.ogg'):
- mediaFileType='audio/ogg'
- with open(mediaFilename, 'rb') as avFile:
- mediaBinary = avFile.read()
- self._set_headers(mediaFileType,len(mediaBinary),cookie)
- self.wfile.write(mediaBinary)
- self.wfile.flush()
- return
- self._404()
- return
- # show shared item images
- # Note that this comes before the busy flag to avoid conflicts
- if '/sharefiles/' in self.path:
- if self.path.endswith('.png') or \
- self.path.endswith('.jpg') or \
- self.path.endswith('.gif'):
- mediaStr=self.path.split('/sharefiles/')[1]
- mediaFilename= \
- self.server.baseDir+'/sharefiles/'+mediaStr
- if os.path.isfile(mediaFilename):
- mediaFileType='png'
- if mediaFilename.endswith('.png'):
- mediaFileType='png'
- elif mediaFilename.endswith('.jpg'):
- mediaFileType='jpeg'
- else:
- mediaFileType='gif'
- with open(mediaFilename, 'rb') as avFile:
- mediaBinary = avFile.read()
- self._set_headers('image/'+mediaFileType,len(mediaBinary),cookie)
- self.wfile.write(mediaBinary)
- self.wfile.flush()
- return
- self._404()
- return
- # icon images
- # Note that this comes before the busy flag to avoid conflicts
- if self.path.startswith('/icons/'):
- if self.path.endswith('.png'):
- mediaStr=self.path.split('/icons/')[1]
- mediaFilename= \
- self.server.baseDir+'/img/icons/'+mediaStr
- if os.path.isfile(mediaFilename):
- if mediaFilename.endswith('.png'):
- with open(mediaFilename, 'rb') as avFile:
- mediaBinary = avFile.read()
- self._set_headers('image/png',len(mediaBinary),cookie)
- self.wfile.write(mediaBinary)
- self.wfile.flush()
- return
- self._404()
- return
- # cached avatar images
- # Note that this comes before the busy flag to avoid conflicts
- if self.path.startswith('/avatars/'):
- mediaFilename= \
- self.server.baseDir+'/cache/'+self.path
- if os.path.isfile(mediaFilename):
- with open(mediaFilename, 'rb') as avFile:
- mediaBinary = avFile.read()
- if mediaFilename.endswith('.png'):
- self._set_headers('image/png',len(mediaBinary),cookie)
- elif mediaFilename.endswith('.jpg'):
- self._set_headers('image/jpeg',len(mediaBinary),cookie)
- elif mediaFilename.endswith('.gif'):
- self._set_headers('image/gif',len(mediaBinary),cookie)
- else:
- self._404()
- return
- self.wfile.write(mediaBinary)
- self.wfile.flush()
- return
- self._404()
- return
- # show avatar or background image
- # Note that this comes before the busy flag to avoid conflicts
- if '/users/' in self.path:
- if self.path.endswith('.png') or \
- self.path.endswith('.jpg') or \
- self.path.endswith('.gif'):
- avatarStr=self.path.split('/users/')[1]
- if '/' in avatarStr:
- avatarNickname=avatarStr.split('/')[0]
- avatarFile=avatarStr.split('/')[1]
- avatarFilename= \
- self.server.baseDir+'/accounts/'+ \
- avatarNickname+'@'+ \
- self.server.domain+'/'+avatarFile
- if os.path.isfile(avatarFilename):
- mediaImageType='png'
- if avatarFile.endswith('.png'):
- mediaImageType='png'
- elif avatarFile.endswith('.jpg'):
- mediaImageType='jpeg'
- else:
- mediaImageType='gif'
- with open(avatarFilename, 'rb') as avFile:
- mediaBinary = avFile.read()
- self._set_headers('image/'+mediaImageType,len(mediaBinary),cookie)
- self.wfile.write(mediaBinary)
- self.wfile.flush()
- return
- # This busy state helps to avoid flooding
- # Resources which are expected to be called from a web page
- # should be above this
- if self.server.GETbusy:
- currTimeGET=int(time.time())
- if currTimeGET-self.server.lastGET==0:
- if self.server.debug:
- print('DEBUG: GET Busy')
- self.send_response(429)
- self.end_headers()
- return
- self.server.lastGET=currTimeGET
- self.server.GETbusy=True
- if not self._permittedDir(self.path):
- if self.server.debug:
- print('DEBUG: GET Not permitted')
- self._404()
- self.server.GETbusy=False
- return
- # get webfinger endpoint for a person
- if self._webfinger():
- self.server.GETbusy=False
- return
- if self.path.startswith('/login') or self.path=='/':
- # request basic auth
- msg=htmlLogin(self.server.translate,self.server.baseDir).encode('utf-8')
- self._login_headers('text/html',len(msg))
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- # hashtag search
- if self.path.startswith('/tags/'):
- pageNumber=1
- if '?page=' in self.path:
- pageNumberStr=self.path.split('?page=')[1]
- if pageNumberStr.isdigit():
- pageNumber=int(pageNumberStr)
- hashtag=self.path.split('/tags/')[1]
- if '?page=' in hashtag:
- hashtag=hashtag.split('?page=')[0]
- if isBlockedHashtag(self.server.baseDir,hashtag):
- msg=htmlHashtagBlocked(self.server.baseDir).encode('utf-8')
- self._login_headers('text/html',len(msg))
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- hashtagStr= \
- htmlHashtagSearch(self.server.translate, \
- self.server.baseDir,hashtag,pageNumber, \
- maxPostsInFeed,self.server.session, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- self.server.httpPrefix, \
- self.server.projectVersion)
- if hashtagStr:
- msg=hashtagStr.encode()
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- else:
- originPathStr=self.path.split('/tags/')[0]
- self._redirect_headers(originPathStr+'/search',cookie)
- self.server.GETbusy=False
- return
- # search for a fediverse address, shared item or emoji from the web interface by selecting search icon
- if htmlGET and '/users/' in self.path:
- if self.path.endswith('/search'):
- # show the search screen
- msg=htmlSearch(self.server.translate, \
- self.server.baseDir,self.path).encode()
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- # search for emoji by name
- if htmlGET and '/users/' in self.path:
- if self.path.endswith('/searchemoji'):
- # show the search screen
- msg=htmlSearchEmojiTextEntry(self.server.translate, \
- self.server.baseDir, \
- self.path).encode()
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- # announce/repeat from the web interface
- if htmlGET and '?repeat=' in self.path:
- pageNumber=1
- repeatUrl=self.path.split('?repeat=')[1]
- if '?' in repeatUrl:
- repeatUrl=repeatUrl.split('?')[0]
- if '?page=' in self.path:
- pageNumberStr=self.path.split('?page=')[1]
- if '?' in pageNumberStr:
- pageNumberStr=pageNumberStr.split('?')[0]
- if pageNumberStr.isdigit():
- pageNumber=int(pageNumberStr)
- actor=self.path.split('?repeat=')[0]
- self.postToNickname=getNicknameFromActor(actor)
- if not self.postToNickname:
- print('WARN: unable to find nickname in '+actor)
- self.server.GETbusy=False
- self._redirect_headers(actor+'/inbox?page='+str(pageNumber),cookie)
- return
- if not self.server.session:
- self.server.session= \
- createSession(self.server.domain,self.server.port,self.server.useTor)
- announceJson= \
- createAnnounce(self.server.session, \
- self.server.baseDir, \
- self.server.federationList, \
- self.postToNickname, \
- self.server.domain,self.server.port, \
- 'https://www.w3.org/ns/activitystreams#Public', \
- None,self.server.httpPrefix, \
- repeatUrl,False,False, \
- self.server.sendThreads, \
- self.server.postLog, \
- self.server.personCache, \
- self.server.cachedWebfingers, \
- self.server.debug, \
- self.server.projectVersion)
- if announceJson:
- self._postToOutboxThread(announceJson)
- self.server.GETbusy=False
- self._redirect_headers(actor+'/inbox?page='+str(pageNumber),cookie)
- return
- # undo an announce/repeat from the web interface
- if htmlGET and '?unrepeat=' in self.path:
- pageNumber=1
- repeatUrl=self.path.split('?unrepeat=')[1]
- if '?' in repeatUrl:
- repeatUrl=repeatUrl.split('?')[0]
- if '?page=' in self.path:
- pageNumberStr=self.path.split('?page=')[1]
- if '?' in pageNumberStr:
- pageNumberStr=pageNumberStr.split('?')[0]
- if pageNumberStr.isdigit():
- pageNumber=int(pageNumberStr)
- actor=self.path.split('?unrepeat=')[0]
- self.postToNickname=getNicknameFromActor(actor)
- if not self.postToNickname:
- print('WARN: unable to find nickname in '+actor)
- self.server.GETbusy=False
- self._redirect_headers(actor+'/inbox?page='+str(pageNumber),cookie)
- return
- if not self.server.session:
- self.server.session= \
- createSession(self.server.domain,self.server.port,self.server.useTor)
- undoAnnounceActor=self.server.httpPrefix+'://'+self.server.domainFull+'/users/'+self.postToNickname
- newUndoAnnounce = {
- "@context": "https://www.w3.org/ns/activitystreams",
- 'actor': undoAnnounceActor,
- 'type': 'Undo',
- 'cc': [undoAnnounceActor+'/followers'],
- 'to': ['https://www.w3.org/ns/activitystreams#Public'],
- 'object': {
- 'actor': undoAnnounceActor,
- 'cc': [undoAnnounceActor+'/followers'],
- 'object': repeatUrl,
- 'to': ['https://www.w3.org/ns/activitystreams#Public'],
- 'type': 'Announce'
- }
- }
- self._postToOutboxThread(newUndoAnnounce)
- self.server.GETbusy=False
- self._redirect_headers(actor+'/inbox?page='+str(pageNumber),cookie)
- return
- # send a follow request approval from the web interface
- if authorized and '/followapprove=' in self.path and self.path.startswith('/users/'):
- originPathStr=self.path.split('/followapprove=')[0]
- followerNickname=originPathStr.replace('/users/','')
- followingHandle=self.path.split('/followapprove=')[1]
- if '@' in followingHandle:
- if not self.server.session:
- self.server.session= \
- createSession(self.server.domain,self.server.port,self.server.useTor)
- manualApproveFollowRequest(self.server.session, \
- self.server.baseDir, \
- self.server.httpPrefix, \
- followerNickname,self.server.domain,self.server.port, \
- followingHandle, \
- self.server.federationList, \
- self.server.sendThreads, \
- self.server.postLog, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- self.server.acceptedCaps, \
- self.server.debug, \
- self.server.projectVersion)
- self._redirect_headers(originPathStr,cookie)
- self.server.GETbusy=False
- return
- # deny a follow request from the web interface
- if authorized and '/followdeny=' in self.path and self.path.startswith('/users/'):
- originPathStr=self.path.split('/followdeny=')[0]
- followerNickname=originPathStr.replace('/users/','')
- followingHandle=self.path.split('/followdeny=')[1]
- if '@' in followingHandle:
- manualDenyFollowRequest(self.server.session, \
- self.server.baseDir, \
- self.server.httpPrefix, \
- followerNickname,self.server.domain,self.server.port, \
- followingHandle, \
- self.server.federationList, \
- self.server.sendThreads, \
- self.server.postLog, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- self.server.debug, \
- self.server.projectVersion)
- self._redirect_headers(originPathStr,cookie)
- self.server.GETbusy=False
- return
- # like from the web interface icon
- if htmlGET and '?like=' in self.path and '/statuses/' in self.path:
- pageNumber=1
- likeUrl=self.path.split('?like=')[1]
- if '?' in likeUrl:
- likeUrl=likeUrl.split('?')[0]
- actor=self.path.split('?like=')[0]
- if '?page=' in self.path:
- pageNumberStr=self.path.split('?page=')[1]
- if '?' in pageNumberStr:
- pageNumberStr=pageNumberStr.split('?')[0]
- if pageNumberStr.isdigit():
- pageNumber=int(pageNumberStr)
-
- self.postToNickname=getNicknameFromActor(actor)
- if not self.postToNickname:
- print('WARN: unable to find nickname in '+actor)
- self.server.GETbusy=False
- self._redirect_headers(actor+'/inbox?page='+str(pageNumber),cookie)
- return
- if not self.server.session:
- self.server.session= \
- createSession(self.server.domain,self.server.port,self.server.useTor)
- likeActor=self.server.httpPrefix+'://'+self.server.domainFull+'/users/'+self.postToNickname
- actorLiked=likeUrl.split('/statuses/')[0]
- likeJson= {
- "@context": "https://www.w3.org/ns/activitystreams",
- 'type': 'Like',
- 'actor': likeActor,
- 'object': likeUrl
- }
- self._postToOutboxThread(likeJson)
- self.server.GETbusy=False
- self._redirect_headers(actor+'/inbox?page='+str(pageNumber),cookie)
- return
- # undo a like from the web interface icon
- if htmlGET and '?unlike=' in self.path and '/statuses/' in self.path:
- pageNumber=1
- likeUrl=self.path.split('?unlike=')[1]
- if '?' in likeUrl:
- likeUrl=likeUrl.split('?')[0]
- if '?page=' in self.path:
- pageNumberStr=self.path.split('?page=')[1]
- if '?' in pageNumberStr:
- pageNumberStr=pageNumberStr.split('?')[0]
- if pageNumberStr.isdigit():
- pageNumber=int(pageNumberStr)
- actor=self.path.split('?unlike=')[0]
- self.postToNickname=getNicknameFromActor(actor)
- if not self.postToNickname:
- print('WARN: unable to find nickname in '+actor)
- self.server.GETbusy=False
- self._redirect_headers(actor+'/inbox?page='+str(pageNumber),cookie)
- return
- if not self.server.session:
- self.server.session= \
- createSession(self.server.domain,self.server.port,self.server.useTor)
- undoActor=self.server.httpPrefix+'://'+self.server.domainFull+'/users/'+self.postToNickname
- actorLiked=likeUrl.split('/statuses/')[0]
- undoLikeJson= {
- "@context": "https://www.w3.org/ns/activitystreams",
- 'type': 'Undo',
- 'actor': undoActor,
- 'object': {
- 'type': 'Like',
- 'actor': undoActor,
- 'object': likeUrl
- }
- }
- self._postToOutboxThread(undoLikeJson)
- self.server.GETbusy=False
- self._redirect_headers(actor+'/inbox?page='+str(pageNumber),cookie)
- return
- # delete a post from the web interface icon
- if htmlGET and '?delete=' in self.path:
- pageNumber=1
- if '?page=' in self.path:
- pageNumberStr=self.path.split('?page=')[1]
- if '?' in pageNumberStr:
- pageNumberStr=pageNumberStr.split('?')[0]
- if pageNumberStr.isdigit():
- pageNumber=int(pageNumberStr)
- deleteUrl=self.path.split('?delete=')[1]
- if '?' in deleteUrl:
- deleteUrl=deleteUrl.split('?')[0]
- actor=self.server.httpPrefix+'://'+self.server.domainFull+self.path.split('?delete=')[0]
- if self.server.allowDeletion or \
- deleteUrl.startswith(actor):
- if self.server.debug:
- print('DEBUG: deleteUrl='+deleteUrl)
- print('DEBUG: actor='+actor)
- if actor not in deleteUrl:
- # You can only delete your own posts
- self.server.GETbusy=False
- self._redirect_headers(actor+'/inbox',cookie)
- return
- self.postToNickname=getNicknameFromActor(actor)
- if not self.postToNickname:
- print('WARN: unable to find nickname in '+actor)
- self.server.GETbusy=False
- self._redirect_headers(actor+'/inbox',cookie)
- return
- if not self.server.session:
- self.server.session= \
- createSession(self.server.domain,self.server.port, \
- self.server.useTor)
- deleteStr= \
- htmlDeletePost(self.server.translate,pageNumber, \
- self.server.session,self.server.baseDir, \
- deleteUrl,self.server.httpPrefix, \
- __version__,self.server.cachedWebfingers, \
- self.server.personCache)
- if deleteStr:
- self._set_headers('text/html',len(deleteStr),cookie)
- self.wfile.write(deleteStr.encode())
- self.server.GETbusy=False
- return
- self.server.GETbusy=False
- self._redirect_headers(actor+'/inbox',cookie)
- return
- # reply from the web interface icon
- inReplyToUrl=None
- replyWithDM=False
- replyToList=[]
- replyPageNumber=1
- shareDescription=None
- if htmlGET:
- # public reply
- if '?replyto=' in self.path:
- inReplyToUrl=self.path.split('?replyto=')[1]
- if '?' in inReplyToUrl:
- mentionsList=inReplyToUrl.split('?')
- for m in mentionsList:
- if m.startswith('mention='):
- replyToList.append(m.replace('mention=',''))
- if m.startswith('page='):
- replyPageStr=m.replace('page=','')
- if replyPageStr.isdigit():
- replyPageNumber=int(replyPageStr)
- inReplyToUrl=mentionsList[0]
- self.path=self.path.split('?replyto=')[0]+'/newpost'
- if self.server.debug:
- print('DEBUG: replyto path '+self.path)
- # reply to followers
- if '?replyfollowers=' in self.path:
- inReplyToUrl=self.path.split('?replyfollowers=')[1]
- if '?' in inReplyToUrl:
- mentionsList=inReplyToUrl.split('?')
- for m in mentionsList:
- if m.startswith('mention='):
- replyToList.append(m.replace('mention=',''))
- if m.startswith('page='):
- replyPageStr=m.replace('page=','')
- if replyPageStr.isdigit():
- replyPageNumber=int(replyPageStr)
- inReplyToUrl=mentionsList[0]
- self.path=self.path.split('?replyfollowers=')[0]+'/newfollowers'
- if self.server.debug:
- print('DEBUG: replyfollowers path '+self.path)
- # replying as a direct message, for moderation posts or the dm timeline
- if '?replydm=' in self.path:
- inReplyToUrl=self.path.split('?replydm=')[1]
- if '?' in inReplyToUrl:
- mentionsList=inReplyToUrl.split('?')
- for m in mentionsList:
- if m.startswith('mention='):
- replyToList.append(m.replace('mention=',''))
- if m.startswith('page='):
- replyPageStr=m.replace('page=','')
- if replyPageStr.isdigit():
- replyPageNumber=int(replyPageStr)
- inReplyToUrl=mentionsList[0]
- if inReplyToUrl.startswith('sharedesc:'):
- shareDescription=inReplyToUrl.replace('sharedesc:','').replace('%20',' ').replace('%40','@').replace('%3A',':').replace('%23','#')
- self.path=self.path.split('?replydm=')[0]+'/newdm'
- if self.server.debug:
- print('DEBUG: replydm path '+self.path)
- # edit profile in web interface
- if '/users/' in self.path and self.path.endswith('/editprofile'):
- msg=htmlEditProfile(self.server.translate, \
- self.server.baseDir, \
- self.path,self.server.domain, \
- self.server.port).encode()
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- # Various types of new post in the web interface
- if '/users/' in self.path and \
- (self.path.endswith('/newpost') or \
- self.path.endswith('/newunlisted') or \
- self.path.endswith('/newfollowers') or \
- self.path.endswith('/newdm') or \
- self.path.endswith('/newreport') or \
- self.path.endswith('/newshare')):
- msg=htmlNewPost(self.server.translate, \
- self.server.baseDir, \
- self.path,inReplyToUrl, \
- replyToList, \
- shareDescription, \
- replyPageNumber).encode()
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- # get an individual post from the path /@nickname/statusnumber
- if '/@' in self.path:
- namedStatus=self.path.split('/@')[1]
- if '/' not in namedStatus:
- # show actor
- nickname=namedStatus
- else:
- postSections=namedStatus.split('/')
- if len(postSections)==2:
- nickname=postSections[0]
- statusNumber=postSections[1]
- if len(statusNumber)>10 and statusNumber.isdigit():
- postFilename= \
- self.server.baseDir+'/accounts/'+nickname+'@'+self.server.domain+'/outbox/'+ \
- self.server.httpPrefix+':##'+self.server.domainFull+'#users#'+nickname+'#statuses#'+statusNumber+'.json'
- if os.path.isfile(postFilename):
- postJsonObject={}
- with open(postFilename, 'r') as fp:
- postJsonObject=commentjson.load(fp)
- # Only authorized viewers get to see likes on posts
- # Otherwize marketers could gain more social graph info
- if not authorized:
- if postJsonObject.get('likes'):
- postJsonObject['likes']={'items': []}
- if self._requestHTTP():
- msg= \
- htmlIndividualPost(self.server.translate, \
- self.server.session, \
- self.server.cachedWebfingers,self.server.personCache, \
- nickname,self.server.domain,self.server.port, \
- authorized,postJsonObject, \
- self.server.httpPrefix, \
- self.server.projectVersion).encode('utf-8')
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- else:
- msg=json.dumps(postJsonObject).encode('utf-8')
- self._set_headers('application/json',len(msg),None)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- else:
- self._404()
- self.server.GETbusy=False
- return
- # get replies to a post /users/nickname/statuses/number/replies
- if self.path.endswith('/replies') or '/replies?page=' in self.path:
- if '/statuses/' in self.path and '/users/' in self.path:
- namedStatus=self.path.split('/users/')[1]
- if '/' in namedStatus:
- postSections=namedStatus.split('/')
- if len(postSections)>=4:
- if postSections[3].startswith('replies'):
- nickname=postSections[0]
- statusNumber=postSections[2]
- if len(statusNumber)>10 and statusNumber.isdigit():
- #get the replies file
- boxname='outbox'
- postDir=self.server.baseDir+'/accounts/'+nickname+'@'+self.server.domain+'/'+boxname
- postRepliesFilename= \
- postDir+'/'+ \
- self.server.httpPrefix+':##'+self.server.domainFull+'#users#'+nickname+'#statuses#'+statusNumber+'.replies'
- if not os.path.isfile(postRepliesFilename):
- # There are no replies, so show empty collection
- repliesJson = {
- '@context': 'https://www.w3.org/ns/activitystreams',
- 'first': self.server.httpPrefix+'://'+self.server.domainFull+'/users/'+nickname+'/statuses/'+statusNumber+'/replies?page=true',
- 'id': self.server.httpPrefix+'://'+self.server.domainFull+'/users/'+nickname+'/statuses/'+statusNumber+'/replies',
- 'last': self.server.httpPrefix+'://'+self.server.domainFull+'/users/'+nickname+'/statuses/'+statusNumber+'/replies?page=true',
- 'totalItems': 0,
- 'type': 'OrderedCollection'}
- if self._requestHTTP():
- if not self.server.session:
- if self.server.debug:
- print('DEBUG: creating new session')
- self.server.session= \
- createSession(self.server.domain,self.server.port,self.server.useTor)
- msg=htmlPostReplies(self.server.translate, \
- self.server.baseDir, \
- self.server.session, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- nickname, \
- self.server.domain, \
- self.server.port, \
- repliesJson, \
- self.server.httpPrefix, \
- self.server.projectVersion).encode('utf-8')
- self._set_headers('text/html',len(msg),cookie)
- print('----------------------------------------------------')
- pprint(repliesJson)
- self.wfile.write(msg)
- else:
- msg=json.dumps(repliesJson).encode('utf-8')
- self._set_headers('application/json',len(msg),None)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- else:
- # replies exist. Itterate through the text file containing message ids
- repliesJson = {
- '@context': 'https://www.w3.org/ns/activitystreams',
- 'id': self.server.httpPrefix+'://'+self.server.domainFull+'/users/'+nickname+'/statuses/'+statusNumber+'?page=true',
- 'orderedItems': [
- ],
- 'partOf': self.server.httpPrefix+'://'+self.server.domainFull+'/users/'+nickname+'/statuses/'+statusNumber,
- 'type': 'OrderedCollectionPage'}
- # populate the items list with replies
- populateRepliesJson(self.server.baseDir, \
- nickname, \
- self.server.domain, \
- postRepliesFilename, \
- authorized, \
- repliesJson)
- # send the replies json
- if self._requestHTTP():
- if not self.server.session:
- if self.server.debug:
- print('DEBUG: creating new session')
- self.server.session= \
- createSession(self.server.domain,self.server.port,self.server.useTor)
- msg=htmlPostReplies(self.server.translate, \
- self.server.baseDir, \
- self.server.session, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- nickname, \
- self.server.domain, \
- self.server.port, \
- repliesJson, \
- self.server.httpPrefix, \
- self.server.projectVersion).encode('utf-8')
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- else:
- msg=json.dumps(repliesJson).encode('utf-8')
- self._set_headers('application/json',len(msg),None)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- if self.path.endswith('/roles') and '/users/' in self.path:
- namedStatus=self.path.split('/users/')[1]
- if '/' in namedStatus:
- postSections=namedStatus.split('/')
- nickname=postSections[0]
- actorFilename=self.server.baseDir+'/accounts/'+nickname+'@'+self.server.domain+'.json'
- if os.path.isfile(actorFilename):
- with open(actorFilename, 'r') as fp:
- actorJson=commentjson.load(fp)
- if actorJson.get('roles'):
- if self._requestHTTP():
- getPerson = \
- personLookup(self.server.domain,self.path.replace('/roles',''), \
- self.server.baseDir)
- if getPerson:
- msg=htmlProfile(self.server.translate, \
- self.server.projectVersion, \
- self.server.baseDir, \
- self.server.httpPrefix, \
- True, \
- self.server.ocapAlways, \
- getPerson,'roles', \
- self.server.session, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- actorJson['roles'], \
- None,None).encode('utf-8')
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- else:
- msg=json.dumps(actorJson['roles']).encode('utf-8')
- self._set_headers('application/json',len(msg),None)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- # show skills on the profile page
- if self.path.endswith('/skills') and '/users/' in self.path:
- namedStatus=self.path.split('/users/')[1]
- if '/' in namedStatus:
- postSections=namedStatus.split('/')
- nickname=postSections[0]
- actorFilename=self.server.baseDir+'/accounts/'+nickname+'@'+self.server.domain+'.json'
- if os.path.isfile(actorFilename):
- with open(actorFilename, 'r') as fp:
- actorJson=commentjson.load(fp)
- if actorJson.get('skills'):
- if self._requestHTTP():
- getPerson = \
- personLookup(self.server.domain,self.path.replace('/skills',''), \
- self.server.baseDir)
- if getPerson:
- msg=htmlProfile(self.server.translate, \
- self.server.projectVersion, \
- self.server.baseDir, \
- self.server.httpPrefix, \
- True, \
- self.server.ocapAlways, \
- getPerson,'skills', \
- self.server.session, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- actorJson['skills'], \
- None,None).encode('utf-8')
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- else:
- msg=json.dumps(actorJson['skills']).encode('utf-8')
- self._set_headers('application/json',len(msg),None)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- actor=self.path.replace('/skills','')
- self._redirect_headers(actor,cookie)
- self.server.GETbusy=False
- return
- # get an individual post from the path /users/nickname/statuses/number
- if '/statuses/' in self.path and '/users/' in self.path:
- namedStatus=self.path.split('/users/')[1]
- if '/' in namedStatus:
- postSections=namedStatus.split('/')
- if len(postSections)>=3:
- nickname=postSections[0]
- statusNumber=postSections[2]
- if len(statusNumber)>10 and statusNumber.isdigit():
- postFilename= \
- self.server.baseDir+'/accounts/'+nickname+'@'+self.server.domain+'/outbox/'+ \
- self.server.httpPrefix+':##'+self.server.domainFull+'#users#'+nickname+'#statuses#'+statusNumber+'.json'
- if os.path.isfile(postFilename):
- postJsonObject={}
- readPost=False
- try:
- with open(postFilename, 'r') as fp:
- postJsonObject=commentjson.load(fp)
- readPost=True
- except Exception as e:
- print(e)
- if not readPost:
- self.send_response(429)
- self.end_headers()
- self.server.GETbusy=False
- return
- else:
- # Only authorized viewers get to see likes on posts
- # Otherwize marketers could gain more social graph info
- if not authorized:
- if postJsonObject.get('likes'):
- postJsonObject['likes']={'items': []}
- if self._requestHTTP():
- msg=htmlIndividualPost(self.server.translate, \
- self.server.baseDir, \
- self.server.session, \
- self.server.cachedWebfingers,self.server.personCache, \
- nickname,self.server.domain,self.server.port, \
- authorized,postJsonObject, \
- self.server.httpPrefix, \
- self.server.projectVersion).encode('utf-8')
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- else:
- msg=json.dumps(postJsonObject).encode('utf-8')
- self._set_headers('application/json',len(msg),None)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- else:
- self._404()
- self.server.GETbusy=False
- return
- # get the inbox for a given person
- if self.path.endswith('/inbox') or '/inbox?page=' in self.path:
- if '/users/' in self.path:
- if authorized:
- inboxFeed=personBoxJson(self.server.baseDir, \
- self.server.domain, \
- self.server.port, \
- self.path, \
- self.server.httpPrefix, \
- maxPostsInFeed, 'inbox', \
- True,self.server.ocapAlways)
- if inboxFeed:
- if self._requestHTTP():
- nickname=self.path.replace('/users/','').replace('/inbox','')
- pageNumber=1
- if '?page=' in nickname:
- pageNumber=nickname.split('?page=')[1]
- nickname=nickname.split('?page=')[0]
- if pageNumber.isdigit():
- pageNumber=int(pageNumber)
- else:
- pageNumber=1
- if 'page=' not in self.path:
- # if no page was specified then show the first
- inboxFeed=personBoxJson(self.server.baseDir, \
- self.server.domain, \
- self.server.port, \
- self.path+'?page=1', \
- self.server.httpPrefix, \
- maxPostsInFeed, 'inbox', \
- True,self.server.ocapAlways)
- msg=htmlInbox(self.server.translate, \
- pageNumber,maxPostsInFeed, \
- self.server.session, \
- self.server.baseDir, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- nickname, \
- self.server.domain, \
- self.server.port, \
- inboxFeed, \
- self.server.allowDeletion, \
- self.server.httpPrefix, \
- self.server.projectVersion).encode('utf-8')
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- else:
- msg=json.dumps(inboxFeed).encode('utf-8')
- self._set_headers('application/json',len(msg),None)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- else:
- if self.server.debug:
- nickname=self.path.replace('/users/','').replace('/inbox','')
- print('DEBUG: '+nickname+ \
- ' was not authorized to access '+self.path)
- if self.path!='/inbox':
- # not the shared inbox
- if self.server.debug:
- print('DEBUG: GET access to inbox is unauthorized')
- self.send_response(405)
- self.end_headers()
- self.server.GETbusy=False
- return
- # get the inbox for a given person
- if self.path.endswith('/dm') or '/dm?page=' in self.path:
- if '/users/' in self.path:
- if authorized:
- inboxDMFeed=personBoxJson(self.server.baseDir, \
- self.server.domain, \
- self.server.port, \
- self.path, \
- self.server.httpPrefix, \
- maxPostsInFeed, 'dm', \
- True,self.server.ocapAlways)
- if inboxDMFeed:
- if self._requestHTTP():
- nickname=self.path.replace('/users/','').replace('/dm','')
- pageNumber=1
- if '?page=' in nickname:
- pageNumber=nickname.split('?page=')[1]
- nickname=nickname.split('?page=')[0]
- if pageNumber.isdigit():
- pageNumber=int(pageNumber)
- else:
- pageNumber=1
- if 'page=' not in self.path:
- # if no page was specified then show the first
- inboxDMFeed=personBoxJson(self.server.baseDir, \
- self.server.domain, \
- self.server.port, \
- self.path+'?page=1', \
- self.server.httpPrefix, \
- maxPostsInFeed, 'dm', \
- True,self.server.ocapAlways)
- msg=htmlInboxDMs(self.server.translate, \
- pageNumber,maxPostsInFeed, \
- self.server.session, \
- self.server.baseDir, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- nickname, \
- self.server.domain, \
- self.server.port, \
- inboxDMFeed, \
- self.server.allowDeletion, \
- self.server.httpPrefix, \
- self.server.projectVersion).encode('utf-8')
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- else:
- msg=json.dumps(inboxDMFeed).encode('utf-8')
- self._set_headers('application/json',len(msg),None)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- else:
- if self.server.debug:
- nickname=self.path.replace('/users/','').replace('/dm','')
- print('DEBUG: '+nickname+ \
- ' was not authorized to access '+self.path)
- if self.path!='/dm':
- # not the DM inbox
- if self.server.debug:
- print('DEBUG: GET access to inbox is unauthorized')
- self.send_response(405)
- self.end_headers()
- self.server.GETbusy=False
- return
- # get outbox feed for a person
- outboxFeed=personBoxJson(self.server.baseDir,self.server.domain, \
- self.server.port,self.path, \
- self.server.httpPrefix, \
- maxPostsInFeed, 'outbox', \
- authorized, \
- self.server.ocapAlways)
- if outboxFeed:
- if self._requestHTTP():
- nickname=self.path.replace('/users/','').replace('/outbox','')
- pageNumber=1
- if '?page=' in nickname:
- pageNumber=nickname.split('?page=')[1]
- nickname=nickname.split('?page=')[0]
- if pageNumber.isdigit():
- pageNumber=int(pageNumber)
- else:
- pageNumber=1
- if 'page=' not in self.path:
- # if a page wasn't specified then show the first one
- outboxFeed=personBoxJson(self.server.baseDir,self.server.domain, \
- self.server.port,self.path+'?page=1', \
- self.server.httpPrefix, \
- maxPostsInFeed, 'outbox', \
- authorized, \
- self.server.ocapAlways)
- msg=htmlOutbox(self.server.translate, \
- pageNumber,maxPostsInFeed, \
- self.server.session, \
- self.server.baseDir, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- nickname, \
- self.server.domain, \
- self.server.port, \
- outboxFeed, \
- self.server.allowDeletion, \
- self.server.httpPrefix, \
- self.server.projectVersion).encode('utf-8')
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- else:
- msg=json.dumps(outboxFeed).encode('utf-8')
- self._set_headers('application/json',len(msg),None)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- # get the moderation feed for a moderator
- if self.path.endswith('/moderation') or '/moderation?page=' in self.path:
- if '/users/' in self.path:
- if authorized:
- moderationFeed= \
- personBoxJson(self.server.baseDir, \
- self.server.domain, \
- self.server.port, \
- self.path, \
- self.server.httpPrefix, \
- maxPostsInFeed, 'moderation', \
- True,self.server.ocapAlways)
- if moderationFeed:
- if self._requestHTTP():
- nickname=self.path.replace('/users/','').replace('/moderation','')
- pageNumber=1
- if '?page=' in nickname:
- pageNumber=nickname.split('?page=')[1]
- nickname=nickname.split('?page=')[0]
- if pageNumber.isdigit():
- pageNumber=int(pageNumber)
- else:
- pageNumber=1
- if 'page=' not in self.path:
- # if no page was specified then show the first
- moderationFeed= \
- personBoxJson(self.server.baseDir, \
- self.server.domain, \
- self.server.port, \
- self.path+'?page=1', \
- self.server.httpPrefix, \
- maxPostsInFeed, 'moderation', \
- True,self.server.ocapAlways)
- msg=htmlModeration(self.server.translate, \
- pageNumber,maxPostsInFeed, \
- self.server.session, \
- self.server.baseDir, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- nickname, \
- self.server.domain, \
- self.server.port, \
- moderationFeed, \
- True, \
- self.server.httpPrefix, \
- self.server.projectVersion).encode('utf-8')
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- else:
- msg=json.dumps(moderationFeed).encode('utf-8')
- self._set_headers('application/json',len(msg),None)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- else:
- if self.server.debug:
- nickname=self.path.replace('/users/','').replace('/moderation','')
- print('DEBUG: '+nickname+ \
- ' was not authorized to access '+self.path)
- if self.server.debug:
- print('DEBUG: GET access to moderation feed is unauthorized')
- self.send_response(405)
- self.end_headers()
- self.server.GETbusy=False
- return
-
- shares=getSharesFeedForPerson(self.server.baseDir, \
- self.server.domain, \
- self.server.port,self.path, \
- self.server.httpPrefix, \
- sharesPerPage)
- if shares:
- if self._requestHTTP():
- pageNumber=1
- if '?page=' not in self.path:
- searchPath=self.path
- # get a page of shares, not the summary
- shares=getSharesFeedForPerson(self.server.baseDir,self.server.domain, \
- self.server.port,self.path+'?page=true', \
- self.server.httpPrefix, \
- sharesPerPage)
- else:
- pageNumberStr=self.path.split('?page=')[1]
- if pageNumberStr.isdigit():
- pageNumber=int(pageNumberStr)
- searchPath=self.path.split('?page=')[0]
- getPerson = personLookup(self.server.domain,searchPath.replace('/shares',''), \
- self.server.baseDir)
- if getPerson:
- if not self.server.session:
- if self.server.debug:
- print('DEBUG: creating new session')
- self.server.session= \
- createSession(self.server.domain,self.server.port,self.server.useTor)
- msg=htmlProfile(self.server.translate, \
- self.server.projectVersion, \
- self.server.baseDir, \
- self.server.httpPrefix, \
- authorized, \
- self.server.ocapAlways, \
- getPerson,'shares', \
- self.server.session, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- shares, \
- pageNumber,sharesPerPage).encode('utf-8')
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- else:
- msg=json.dumps(shares).encode('utf-8')
- self._set_headers('application/json',len(msg),None)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- following=getFollowingFeed(self.server.baseDir,self.server.domain, \
- self.server.port,self.path, \
- self.server.httpPrefix, \
- authorized,followsPerPage)
- if following:
- if self._requestHTTP():
- pageNumber=1
- if '?page=' not in self.path:
- searchPath=self.path
- # get a page of following, not the summary
- following=getFollowingFeed(self.server.baseDir,self.server.domain, \
- self.server.port,self.path+'?page=true', \
- self.server.httpPrefix, \
- authorized,followsPerPage)
- else:
- pageNumberStr=self.path.split('?page=')[1]
- if pageNumberStr.isdigit():
- pageNumber=int(pageNumberStr)
- searchPath=self.path.split('?page=')[0]
- getPerson = personLookup(self.server.domain,searchPath.replace('/following',''), \
- self.server.baseDir)
- if getPerson:
- if not self.server.session:
- if self.server.debug:
- print('DEBUG: creating new session')
- self.server.session= \
- createSession(self.server.domain,self.server.port,self.server.useTor)
- msg=htmlProfile(self.server.translate, \
- self.server.projectVersion, \
- self.server.baseDir, \
- self.server.httpPrefix, \
- authorized, \
- self.server.ocapAlways, \
- getPerson,'following', \
- self.server.session, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- following, \
- pageNumber,followsPerPage).encode('utf-8')
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- else:
- msg=json.dumps(following).encode('utf-8')
- self._set_headers('application/json',len(msg),None)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- followers=getFollowingFeed(self.server.baseDir,self.server.domain, \
- self.server.port,self.path, \
- self.server.httpPrefix, \
- authorized,followsPerPage,'followers')
- if followers:
- if self._requestHTTP():
- pageNumber=1
- if '?page=' not in self.path:
- searchPath=self.path
- # get a page of followers, not the summary
- followers=getFollowingFeed(self.server.baseDir,self.server.domain, \
- self.server.port,self.path+'?page=1', \
- self.server.httpPrefix, \
- authorized,followsPerPage,'followers')
- else:
- pageNumberStr=self.path.split('?page=')[1]
- if pageNumberStr.isdigit():
- pageNumber=int(pageNumberStr)
- searchPath=self.path.split('?page=')[0]
- getPerson = personLookup(self.server.domain,searchPath.replace('/followers',''), \
- self.server.baseDir)
- if getPerson:
- if not self.server.session:
- if self.server.debug:
- print('DEBUG: creating new session')
- self.server.session= \
- createSession(self.server.domain,self.server.port,self.server.useTor)
- msg=htmlProfile(self.server.translate, \
- self.server.projectVersion, \
- self.server.baseDir, \
- self.server.httpPrefix, \
- authorized, \
- self.server.ocapAlways, \
- getPerson,'followers', \
- self.server.session, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- followers, \
- pageNumber,followsPerPage).encode('utf-8')
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- else:
- msg=json.dumps(followers).encode('utf-8')
- self._set_headers('application/json',len(msg),None)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- # look up a person
- getPerson = personLookup(self.server.domain,self.path, \
- self.server.baseDir)
- if getPerson:
- if self._requestHTTP():
- if not self.server.session:
- if self.server.debug:
- print('DEBUG: creating new session')
- self.server.session= \
- createSession(self.server.domain,self.server.port,self.server.useTor)
- msg=htmlProfile(self.server.translate, \
- self.server.projectVersion, \
- self.server.baseDir, \
- self.server.httpPrefix, \
- authorized, \
- self.server.ocapAlways, \
- getPerson,'posts',
- self.server.session, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- None,None).encode('utf-8')
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- else:
- msg=json.dumps(getPerson).encode('utf-8')
- self._set_headers('application/json',len(msg),None)
- self.wfile.write(msg)
- self.server.GETbusy=False
- return
- # check that a json file was requested
- if not self.path.endswith('.json'):
- if self.server.debug:
- print('DEBUG: GET Not json: '+self.path+' '+self.server.baseDir)
- self._404()
- self.server.GETbusy=False
- return
- # check that the file exists
- filename=self.server.baseDir+self.path
- if os.path.isfile(filename):
- with open(filename, 'r', encoding='utf-8') as File:
- content = File.read()
- contentJson=json.loads(content)
- msg=json.dumps(contentJson).encode('utf-8')
- self._set_headers('application/json',len(msg),None)
- self.wfile.write(msg)
- else:
- if self.server.debug:
- print('DEBUG: GET Unknown file')
- self._404()
- self.server.GETbusy=False
- def do_HEAD(self):
- self._set_headers('application/json',0,None)
- def _receiveNewPost(self,authorized: bool,postType: str) -> (int,int):
- # 0 = this is not a new post
- # 1 = new post success
- # -1 = new post failed
- # 2 = new post canceled
- pageNumber=1
- if authorized and '/users/' in self.path and '?'+postType+'?' in self.path:
- if '?page=' in self.path:
- pageNumberStr=self.path.split('?page=')[1]
- if '?' in pageNumberStr:
- pageNumberStr=pageNumberStr.split('?')[0]
- if pageNumberStr.isdigit():
- pageNumber=int(pageNumberStr)
- self.path=self.path.split('?page=')[0]
- if ' boundary=' in self.headers['Content-type']:
- nickname=None
- nicknameStr=self.path.split('/users/')[1]
- if '/' in nicknameStr:
- nickname=nicknameStr.split('/')[0]
- else:
- return -1,pageNumber
- length = int(self.headers['Content-length'])
- if length>self.server.maxPostLength:
- print('POST size too large')
- return -1,pageNumber
- boundary=self.headers['Content-type'].split('boundary=')[1]
- if ';' in boundary:
- boundary=boundary.split(';')[0]
- # Note: we don't use cgi here because it's due to be deprecated
- # in Python 3.8/3.10
- # Instead we use the multipart mime parser from the email module
- postBytes=self.rfile.read(length)
- msg = email.parser.BytesParser().parsebytes(postBytes)
- # why don't we just use msg.is_multipart(), rather than splitting?
- # TL;DR it doesn't work for this use case because we're not using
- # email style encoding message/rfc822
- messageFields=msg.get_payload(decode=False).split(boundary)
- fields={}
- filename=None
- attachmentMediaType=None
- for f in messageFields:
- if f=='--':
- continue
- if ' name="' in f:
- postStr=f.split(' name="',1)[1]
- if '"' in postStr:
- postKey=postStr.split('"',1)[0]
- postValueStr=postStr.split('"',1)[1]
- if ';' not in postValueStr:
- if '\r\n' in postValueStr:
- postLines=postValueStr.split('\r\n')
- postValue=''
- if len(postLines)>2:
- for line in range(2,len(postLines)-1):
- if line>2:
- postValue+='\n'
- postValue+=postLines[line]
- fields[postKey]=postValue
- else:
- # directly search the binary array for the beginning
- # of an image
- extensionList=['png','jpeg','gif','mp4','webm','ogv','mp3','ogg']
- for extension in extensionList:
- searchStr=b'Content-Type: image/png'
- if extension=='jpeg':
- searchStr=b'Content-Type: image/jpeg'
- elif extension=='gif':
- searchStr=b'Content-Type: image/gif'
- elif extension=='mp4':
- searchStr=b'Content-Type: video/mp4'
- elif extension=='ogv':
- searchStr=b'Content-Type: video/ogv'
- elif extension=='mp3':
- searchStr=b'Content-Type: audio/mpeg'
- elif extension=='ogg':
- searchStr=b'Content-Type: audio/ogg'
- imageLocation=postBytes.find(searchStr)
- filenameBase=self.server.baseDir+'/accounts/'+nickname+'@'+self.server.domain+'/upload'
- if imageLocation>-1:
- if extension=='jpeg':
- extension='jpg'
- if extension=='mpeg':
- extension='mp3'
- filename=filenameBase+'.'+extension
- attachmentMediaType=searchStr.decode().split('/')[0].replace('Content-Type: ','')
- break
- if filename and imageLocation>-1:
- # locate the beginning of the image, after any
- # carriage returns
- startPos=imageLocation+len(searchStr)
- for offset in range(1,8):
- if postBytes[startPos+offset]!=10:
- if postBytes[startPos+offset]!=13:
- startPos+=offset
- break
- fd = open(filename, 'wb')
- fd.write(postBytes[startPos:])
- fd.close()
- else:
- filename=None
- # send the post
- if not fields.get('message') and not fields.get('imageDescription'):
- return -1,pageNumber
- if fields.get('submitPost'):
- if fields['submitPost']!='Submit':
- return -1,pageNumber
- else:
- return 2,pageNumber
- if not fields.get('imageDescription'):
- fields['imageDescription']=None
- if not fields.get('subject'):
- fields['subject']=None
- if not fields.get('replyTo'):
- fields['replyTo']=None
- if postType=='newpost':
- messageJson= \
- createPublicPost(self.server.baseDir, \
- nickname, \
- self.server.domain,self.server.port, \
- self.server.httpPrefix, \
- fields['message'],False,False,False, \
- filename,attachmentMediaType,fields['imageDescription'],True, \
- fields['replyTo'], fields['replyTo'],fields['subject'])
- if messageJson:
- self.postToNickname=nickname
- if self._postToOutbox(messageJson,__version__):
- populateReplies(self.server.baseDir, \
- self.server.httpPrefix, \
- self.server.domainFull, \
- messageJson, \
- self.server.maxReplies, \
- self.server.debug)
- return 1,pageNumber
- else:
- return -1,pageNumber
- if postType=='newunlisted':
- messageJson= \
- createUnlistedPost(self.server.baseDir, \
- nickname, \
- self.server.domain,self.server.port, \
- self.server.httpPrefix, \
- fields['message'],False,False,False, \
- filename,attachmentMediaType,fields['imageDescription'],True, \
- fields['replyTo'], fields['replyTo'],fields['subject'])
- if messageJson:
- self.postToNickname=nickname
- if self._postToOutbox(messageJson,__version__):
- populateReplies(self.server.baseDir, \
- self.server.httpPrefix, \
- self.server.domain, \
- messageJson, \
- self.server.maxReplies, \
- self.server.debug)
- return 1,pageNumber
- else:
- return -1,pageNumber
- if postType=='newfollowers':
- messageJson= \
- createFollowersOnlyPost(self.server.baseDir, \
- nickname, \
- self.server.domain,self.server.port, \
- self.server.httpPrefix, \
- fields['message'],True,False,False, \
- filename,attachmentMediaType,fields['imageDescription'],True, \
- fields['replyTo'], fields['replyTo'],fields['subject'])
- if messageJson:
- self.postToNickname=nickname
- if self._postToOutbox(messageJson,__version__):
- populateReplies(self.server.baseDir, \
- self.server.httpPrefix, \
- self.server.domain, \
- messageJson, \
- self.server.maxReplies, \
- self.server.debug)
- return 1,pageNumber
- else:
- return -1,pageNumber
- if postType=='newdm':
- messageJson=None
- if '@' in fields['message']:
- messageJson= \
- createDirectMessagePost(self.server.baseDir, \
- nickname, \
- self.server.domain,self.server.port, \
- self.server.httpPrefix, \
- fields['message'],True,False,False, \
- filename,attachmentMediaType, \
- fields['imageDescription'],True, \
- fields['replyTo'],fields['replyTo'], \
- fields['subject'], \
- self.server.debug)
- if messageJson:
- self.postToNickname=nickname
- if self.server.debug:
- print('DEBUG: new DM to '+str(messageJson['object']['to']))
- if self._postToOutbox(messageJson,__version__):
- populateReplies(self.server.baseDir, \
- self.server.httpPrefix, \
- self.server.domain, \
- messageJson, \
- self.server.maxReplies, \
- self.server.debug)
- return 1,pageNumber
- else:
- return -1,pageNumber
- if postType=='newreport':
- if attachmentMediaType:
- if attachmentMediaType!='image':
- return -1,pageNumber
- # So as to be sure that this only goes to moderators
- # and not accounts being reported we disable any
- # included fediverse addresses by replacing '@' with '-at-'
- fields['message']=fields['message'].replace('@','-at-')
- messageJson= \
- createReportPost(self.server.baseDir, \
- nickname, \
- self.server.domain,self.server.port, \
- self.server.httpPrefix, \
- fields['message'],True,False,False, \
- filename,attachmentMediaType, \
- fields['imageDescription'],True, \
- self.server.debug,fields['subject'])
- if messageJson:
- self.postToNickname=nickname
- if self._postToOutbox(messageJson,__version__):
- return 1,pageNumber
- else:
- return -1,pageNumber
- if postType=='newshare':
- if not fields.get('itemType'):
- return -1,pageNumber
- if not fields.get('category'):
- return -1,pageNumber
- if not fields.get('location'):
- return -1,pageNumber
- if not fields.get('duration'):
- return -1,pageNumber
- if attachmentMediaType:
- if attachmentMediaType!='image':
- return -1,pageNumber
- addShare(self.server.baseDir, \
- self.server.httpPrefix, \
- nickname, \
- self.server.domain,self.server.port, \
- fields['subject'], \
- fields['message'], \
- filename, \
- fields['itemType'], \
- fields['category'], \
- fields['location'], \
- fields['duration'],
- self.server.debug)
- if filename:
- if os.path.isfile(filename):
- os.remove(filename)
- self.postToNickname=nickname
- return 1,pageNumber
- return -1,pageNumber
- else:
- return 0,pageNumber
-
- def do_POST(self):
- if not self.server.session:
- self.server.session= \
- createSession(self.server.domain,self.server.port,self.server.useTor)
- if self.server.debug:
- print('DEBUG: POST to from '+self.server.baseDir+ \
- ' path: '+self.path+' busy: '+ \
- str(self.server.POSTbusy))
- if self.server.POSTbusy:
- currTimePOST=int(time.time())
- if currTimePOST-self.server.lastPOST==0:
- self.send_response(429)
- self.end_headers()
- return
- self.server.lastPOST=currTimePOST
-
- self.server.POSTbusy=True
- if not self.headers.get('Content-type'):
- print('Content-type header missing')
- self.send_response(400)
- self.end_headers()
- self.server.POSTbusy=False
- return
- # remove any trailing slashes from the path
- if not self.path.endswith('confirm'):
- self.path=self.path.replace('/outbox/','/outbox').replace('/inbox/','/inbox').replace('/shares/','/shares').replace('/sharedInbox/','/sharedInbox')
- cookie=None
- if self.headers.get('Cookie'):
- cookie=self.headers['Cookie']
- # check authorization
- authorized = self._isAuthorized()
- if authorized:
- if self.server.debug:
- print('POST Authorization granted')
- else:
- if self.server.debug:
- print('POST Not authorized')
- print(str(self.headers))
- # if this is a POST to teh outbox then check authentication
- self.outboxAuthenticated=False
- self.postToNickname=None
- if self.path.startswith('/login'):
- # get the contents of POST containing login credentials
- length = int(self.headers['Content-length'])
- if length>512:
- print('Login failed - credentials too long')
- self.send_response(401)
- self.end_headers()
- self.server.POSTbusy=False
- return
- loginParams=self.rfile.read(length).decode('utf-8')
- loginNickname,loginPassword,register=htmlGetLoginCredentials(loginParams,self.server.lastLoginTime)
- if loginNickname:
- self.server.lastLoginTime=int(time.time())
- if register:
- if not registerAccount(self.server.baseDir,self.server.httpPrefix, \
- self.server.domain,self.server.port, \
- loginNickname,loginPassword):
- self.server.POSTbusy=False
- self._redirect_headers('/login',cookie)
- return
- authHeader=createBasicAuthHeader(loginNickname,loginPassword)
- if not authorizeBasic(self.server.baseDir,'/users/'+loginNickname+'/outbox',authHeader,False):
- print('Login failed: '+loginNickname)
- # remove any token
- if self.server.tokens.get(loginNickname):
- del self.server.tokensLookup[self.server.tokens[loginNickname]]
- del self.server.tokens[loginNickname]
- del self.server.salts[loginNickname]
- self.send_response(303)
- self.send_header('Content-Length', '0')
- self.send_header('Set-Cookie', 'epicyon=; SameSite=Strict')
- self.send_header('Location', '/login')
- self.send_header('X-Robots-Tag','noindex')
- self.end_headers()
- self.server.POSTbusy=False
- return
- else:
- if isSuspended(self.server.baseDir,loginNickname):
- msg=htmlSuspended(self.server.baseDir).encode('utf-8')
- self._login_headers('text/html',len(msg))
- self.wfile.write(msg)
- self.server.POSTbusy=False
- return
- # login success - redirect with authorization
- print('Login success: '+loginNickname)
- self.send_response(303)
- # This produces a deterministic token based on nick+password+salt
- # But notice that the salt is ephemeral, so a server reboot changes them.
- # This allows you to be logged in on two or more devices with the
- # same token, but also ensures that if an adversary obtains the token
- # then rebooting the server is sufficient to thwart them, without
- # any password changes.
- if not self.server.salts.get(loginNickname):
- self.server.salts[loginNickname]=createPassword(32)
- self.server.tokens[loginNickname]=sha256((loginNickname+loginPassword+self.server.salts[loginNickname]).encode('utf-8')).hexdigest()
- self.server.tokensLookup[self.server.tokens[loginNickname]]=loginNickname
- self.send_header('Set-Cookie', 'epicyon='+self.server.tokens[loginNickname]+'; SameSite=Strict')
- self.send_header('Location', '/users/'+loginNickname+'/inbox')
- self.send_header('Content-Length', '0')
- self.send_header('X-Robots-Tag','noindex')
- self.end_headers()
- self.server.POSTbusy=False
- return
- self.send_response(200)
- self.end_headers()
- self.server.POSTbusy=False
- return
- # update of profile/avatar from web interface
- if authorized and self.path.endswith('/profiledata'):
- if ' boundary=' in self.headers['Content-type']:
- boundary=self.headers['Content-type'].split('boundary=')[1]
- if ';' in boundary:
- boundary=boundary.split(';')[0]
- actorStr=self.path.replace('/profiledata','').replace('/editprofile','')
- nickname=getNicknameFromActor(actorStr)
- if not nickname:
- print('WARN: nickname not found in '+actorStr)
- self._redirect_headers(actorStr,cookie)
- self.server.POSTbusy=False
- return
- length = int(self.headers['Content-length'])
- if length>self.server.maxPostLength:
- print('Maximum profile data length exceeded '+str(length))
- self._redirect_headers(actorStr,cookie)
- self.server.POSTbusy=False
- return
- postBytes=self.rfile.read(length)
- msg = email.parser.BytesParser().parsebytes(postBytes)
- messageFields=msg.get_payload(decode=False).split(boundary)
- fields={}
- filename=None
- lastImageLocation=0
- for f in messageFields:
- if f=='--':
- continue
- if ' name="' in f:
- postStr=f.split(' name="',1)[1]
- if '"' in postStr:
- postKey=postStr.split('"',1)[0]
- postValueStr=postStr.split('"',1)[1]
- if ';' not in postValueStr:
- if '\r\n' in postValueStr:
- postLines=postValueStr.split('\r\n')
- postValue=''
- if len(postLines)>2:
- for line in range(2,len(postLines)-1):
- if line>2:
- postValue+='\n'
- postValue+=postLines[line]
- fields[postKey]=postValue
- else:
- if 'filename="' not in postStr:
- continue
- filenameStr=postStr.split('filename="')[1]
- if '"' not in filenameStr:
- continue
- postImageFilename=filenameStr.split('"')[0]
- if '.' not in postImageFilename:
- continue
- # directly search the binary array for the beginning
- # of an image
- searchStr=b'Content-Type: image/png'
- imageLocation=postBytes.find(searchStr,lastImageLocation)
- filenameBase=self.server.baseDir+'/accounts/'+nickname+'@'+self.server.domain+'/'+postKey
- # Note: a .temp extension is used here so that at no time is
- # an image with metadata publicly exposed, even for a few mS
- if imageLocation>-1:
- filename=filenameBase+'.png.temp'
- else:
- searchStr=b'Content-Type: image/jpeg'
- imageLocation=postBytes.find(searchStr,lastImageLocation)
- if imageLocation>-1:
- filename=filenameBase+'.jpg.temp'
- else:
- searchStr=b'Content-Type: image/gif'
- imageLocation=postBytes.find(searchStr,lastImageLocation)
- if imageLocation>-1:
- filename=filenameBase+'.gif.temp'
- if filename and imageLocation>-1:
- # locate the beginning of the image, after any
- # carriage returns
- startPos=imageLocation+len(searchStr)
- for offset in range(1,8):
- if postBytes[startPos+offset]!=10:
- if postBytes[startPos+offset]!=13:
- startPos+=offset
- break
- # look for the end of the image
- imageLocationEnd=postBytes.find(b'-------',imageLocation+1)
- fd = open(filename, 'wb')
- if imageLocationEnd>-1:
- fd.write(postBytes[startPos:][:imageLocationEnd-startPos])
- else:
- fd.write(postBytes[startPos:])
- fd.close()
- # remove exif/metadata
- removeMetaData(filename,filename.replace('.temp',''))
- os.remove(filename)
- lastImageLocation=imageLocation+1
-
- actorFilename=self.server.baseDir+'/accounts/'+nickname+'@'+self.server.domain+'.json'
- if os.path.isfile(actorFilename):
- with open(actorFilename, 'r') as fp:
- actorJson=commentjson.load(fp)
- actorChanged=False
- skillCtr=1
- newSkills={}
- while skillCtr<10:
- skillName=fields.get('skillName'+str(skillCtr))
- if not skillName:
- skillCtr+=1
- continue
- skillValue=fields.get('skillValue'+str(skillCtr))
- if not skillValue:
- skillCtr+=1
- continue
- if not actorJson['skills'].get(skillName):
- actorChanged=True
- else:
- if actorJson['skills'][skillName]!=int(skillValue):
- actorChanged=True
- newSkills[skillName]=int(skillValue)
- skillCtr+=1
- if len(actorJson['skills'].items())!=len(newSkills.items()):
- actorChanged=True
- actorJson['skills']=newSkills
- if fields.get('displayNickname'):
- if fields['displayNickname']!=actorJson['name']:
- actorJson['name']=fields['displayNickname']
- actorChanged=True
- if fields.get('bio'):
- if fields['bio']!=actorJson['summary']:
- actorTags={}
- actorJson['summary']= \
- addHtmlTags(self.server.baseDir, \
- self.server.httpPrefix, \
- nickname, \
- self.server.domainFull, \
- fields['bio'],[],actorTags)
- if actorTags:
- actorJson['tag']=[]
- for tagName,tag in actorTags.items():
- actorJson['tag'].append(tag)
- actorChanged=True
- if fields.get('moderators'):
- adminNickname=getConfigParam(self.server.baseDir,'admin')
- if self.path.startswith('/users/'+adminNickname+'/'):
- moderatorsFile=self.server.baseDir+'/accounts/moderators.txt'
- clearModeratorStatus(self.server.baseDir)
- if ',' in fields['moderators']:
- # if the list was given as comma separated
- modFile=open(moderatorsFile,"w+")
- for modNick in fields['moderators'].split(','):
- modNick=modNick.strip()
- if os.path.isdir(self.server.baseDir+'/accounts/'+modNick+'@'+self.server.domain):
- modFile.write(modNick+'\n')
- modFile.close()
- for modNick in fields['moderators'].split(','):
- modNick=modNick.strip()
- if os.path.isdir(self.server.baseDir+'/accounts/'+modNick+'@'+self.server.domain):
- setRole(self.server.baseDir,modNick,self.server.domain,'instance','moderator')
- else:
- # nicknames on separate lines
- modFile=open(moderatorsFile,"w+")
- for modNick in fields['moderators'].split('\n'):
- modNick=modNick.strip()
- if os.path.isdir(self.server.baseDir+'/accounts/'+modNick+'@'+self.server.domain):
- modFile.write(modNick+'\n')
- modFile.close()
- for modNick in fields['moderators'].split('\n'):
- modNick=modNick.strip()
- if os.path.isdir(self.server.baseDir+'/accounts/'+modNick+'@'+self.server.domain):
- setRole(self.server.baseDir,modNick,self.server.domain,'instance','moderator')
-
- approveFollowers=False
- if fields.get('approveFollowers'):
- if fields['approveFollowers']=='on':
- approveFollowers=True
- if approveFollowers!=actorJson['manuallyApprovesFollowers']:
- actorJson['manuallyApprovesFollowers']=approveFollowers
- actorChanged=True
- if fields.get('isBot'):
- if fields['isBot']=='on':
- if actorJson['type']!='Service':
- actorJson['type']='Service'
- actorChanged=True
- else:
- if actorJson['type']!='Person':
- actorJson['type']='Person'
- actorChanged=True
- # save filtered words list
- filterFilename=self.server.baseDir+'/accounts/'+nickname+'@'+self.server.domain+'/filters.txt'
- if fields.get('filteredWords'):
- with open(filterFilename, "w") as filterfile:
- filterfile.write(fields['filteredWords'])
- else:
- if os.path.isfile(filterFilename):
- os.remove(filterFilename)
- # save blocked accounts list
- blockedFilename=self.server.baseDir+'/accounts/'+nickname+'@'+self.server.domain+'/blocking.txt'
- if fields.get('blocked'):
- with open(blockedFilename, "w") as blockedfile:
- blockedfile.write(fields['blocked'])
- else:
- if os.path.isfile(blockedFilename):
- os.remove(blockedFilename)
- # save allowed instances list
- allowedInstancesFilename=self.server.baseDir+'/accounts/'+nickname+'@'+self.server.domain+'/allowedinstances.txt'
- if fields.get('allowedInstances'):
- with open(allowedInstancesFilename, "w") as allowedInstancesFile:
- allowedInstancesFile.write(fields['allowedInstances'])
- else:
- if os.path.isfile(allowedInstancesFilename):
- os.remove(allowedInstancesFilename)
- # save actor json file within accounts
- if actorChanged:
- with open(actorFilename, 'w') as fp:
- commentjson.dump(actorJson, fp, indent=4, sort_keys=False)
- # also copy to the actors cache and personCache in memory
- storePersonInCache(self.server.baseDir,actorJson['id'],actorJson,self.server.personCache)
- actorCacheFilename=self.server.baseDir+'/cache/actors/'+actorJson['id'].replace('/','#')+'.json'
- with open(actorCacheFilename, 'w') as fp:
- commentjson.dump(actorJson, fp, indent=4, sort_keys=False)
- # send actor update to followers
- updateActorJson={
- 'type': 'Update',
- 'actor': actorJson['id'],
- 'to': ['https://www.w3.org/ns/activitystreams#Public'],
- 'cc': [actorJson['id']+'/followers'],
- 'object': actorJson
- }
- self.postToNickname=nickname
- self._postToOutboxThread(updateActorJson)
- self._redirect_headers(actorStr,cookie)
- self.server.POSTbusy=False
- return
- # moderator action buttons
- if authorized and '/users/' in self.path and \
- self.path.endswith('/moderationaction'):
- actorStr=self.path.replace('/moderationaction','')
- length = int(self.headers['Content-length'])
- moderationParams=self.rfile.read(length).decode('utf-8')
- print('moderationParams: '+moderationParams)
- if '&' in moderationParams:
- moderationText=None
- moderationButton=None
- for moderationStr in moderationParams.split('&'):
- print('moderationStr: '+moderationStr)
- if moderationStr.startswith('moderationAction'):
- if '=' in moderationStr:
- moderationText=moderationStr.split('=')[1].strip()
- moderationText=moderationText.replace('+',' ').replace('%40','@').replace('%3A',':').replace('%23','#').strip()
- elif moderationStr.startswith('submitInfo'):
- msg=htmlModerationInfo(self.server.translate, \
- self.server.baseDir).encode('utf-8')
- self._login_headers('text/html',len(msg))
- self.wfile.write(msg)
- self.server.POSTbusy=False
- return
- elif moderationStr.startswith('submitBlock'):
- moderationButton='block'
- elif moderationStr.startswith('submitUnblock'):
- moderationButton='unblock'
- elif moderationStr.startswith('submitSuspend'):
- moderationButton='suspend'
- elif moderationStr.startswith('submitUnsuspend'):
- moderationButton='unsuspend'
- elif moderationStr.startswith('submitRemove'):
- moderationButton='remove'
- if moderationButton and moderationText:
- if self.server.debug:
- print('moderationButton: '+moderationButton)
- print('moderationText: '+moderationText)
- nickname=moderationText
- if nickname.startswith('http') or \
- nickname.startswith('dat'):
- nickname=getNicknameFromActor(nickname)
- if '@' in nickname:
- nickname=nickname.split('@')[0]
- if moderationButton=='suspend':
- suspendAccount(self.server.baseDir,nickname,self.server.salts)
- if moderationButton=='unsuspend':
- unsuspendAccount(self.server.baseDir,nickname)
- if moderationButton=='block':
- fullBlockDomain=None
- if moderationText.startswith('http') or \
- moderationText.startswith('dat'):
- blockDomain,blockPort=getDomainFromActor(moderationText)
- fullBlockDomain=blockDomain
- if blockPort:
- if blockPort!=80 and blockPort!=443:
- if ':' not in blockDomain:
- fullBlockDomain=blockDomain+':'+str(blockPort)
- if '@' in moderationText:
- fullBlockDomain=moderationText.split('@')[1]
- if fullBlockDomain or nickname.startswith('#'):
- addGlobalBlock(self.server.baseDir, \
- nickname,fullBlockDomain)
- if moderationButton=='unblock':
- fullBlockDomain=None
- if moderationText.startswith('http') or \
- moderationText.startswith('dat'):
- blockDomain,blockPort=getDomainFromActor(moderationText)
- fullBlockDomain=blockDomain
- if blockPort:
- if blockPort!=80 and blockPort!=443:
- if ':' not in blockDomain:
- fullBlockDomain=blockDomain+':'+str(blockPort)
- if '@' in moderationText:
- fullBlockDomain=moderationText.split('@')[1]
- if fullBlockDomain or nickname.startswith('#'):
- removeGlobalBlock(self.server.baseDir, \
- nickname,fullBlockDomain)
- if moderationButton=='remove':
- if '/statuses/' not in moderationText:
- removeAccount(self.server.baseDir, \
- nickname, \
- self.server.domain, \
- self.server.port)
- else:
- # remove a post or thread
- postFilename= \
- locatePost(self.server.baseDir, \
- nickname,self.server.domain, \
- moderationText)
- if postFilename:
- if canRemovePost(self.server.baseDir, \
- nickname, \
- self.server.domain, \
- self.server.port, \
- moderationText):
- deletePost(self.server.baseDir, \
- self.server.httpPrefix, \
- nickname,self.server.omain, \
- postFilename, \
- self.server.debug)
- self._redirect_headers(actorStr+'/moderation',cookie)
- self.server.POSTbusy=False
- return
- searchForEmoji=False
- if self.path.endswith('/searchhandleemoji'):
- searchForEmoji=True
- self.path=self.path.replace('/searchhandleemoji','/searchhandle')
- if self.server.debug:
- print('DEBUG: searching for emoji')
- print('authorized: '+str(authorized))
- # a vote/question/poll is posted
- if authorized and \
- (self.path.endswith('/question') or '/question?page=' in self.path):
- pageNumber=1
- if '?page=' in self.path:
- pageNumberStr=self.path.split('?page=')[1]
- if pageNumberStr.isdigit():
- pageNumber=int(pageNumberStr)
- self.path=self.path.split('?page=')[0]
- # the actor who votes
- actor=self.server.httpPrefix+'://'+self.server.domainFull+self.path.replace('/question','')
- nickname=getNicknameFromActor(actor)
- if not nickname:
- self._redirect_headers(actor+'/inbox?page='+str(pageNumber),cookie)
- self.server.POSTbusy=False
- return
- # get the parameters
- length = int(self.headers['Content-length'])
- questionParams=self.rfile.read(length).decode('utf-8')
- questionParams=questionParams.replace('+',' ').replace('%40','@').replace('%3A',':').replace('%23','#').strip()
- # post being voted on
- messageId=None
- if 'messageId=' in questionParams:
- messageId=searchParams.split('messageId=')[1]
- if '&' in messageId:
- messageId=messageId.split('&')[0]
- answer=None
- if 'answer=' in questionParams:
- answer=searchParams.split('answer=')[1]
- if '&' in answer:
- answer=answer.split('&')[0]
- print('Voting on message '+messageId)
- print('Vote for: '+answer)
- messageJson= \
- createPublicPost(self.server.baseDir, \
- nickname, \
- self.server.domain,self.server.port, \
- self.server.httpPrefix, \
- answer,False,False,False, \
- filename,attachmentMediaType,None,True, \
- messageId,messageId,None)
- if messageJson:
- self.postToNickname=nickname
- if self._postToOutbox(messageJson,__version__):
- populateReplies(self.server.baseDir, \
- self.server.httpPrefix, \
- self.server.domainFull, \
- messageJson, \
- self.server.maxReplies, \
- self.server.debug)
- self._redirect_headers(actor+'/inbox?page='+str(pageNumber),cookie)
- self.server.POSTbusy=False
- return
- # a search was made
- if (authorized or searchForEmoji) and \
- (self.path.endswith('/searchhandle') or '/searchhandle?page=' in self.path):
- # get the page number
- pageNumber=1
- if '/searchhandle?page=' in self.path:
- pageNumberStr=self.path.split('/searchhandle?page=')[1]
- if pageNumberStr.isdigit():
- pageNumber=int(pageNumberStr)
- self.path=self.path.split('?page=')[0]
- actorStr=self.server.httpPrefix+'://'+self.server.domainFull+self.path.replace('/searchhandle','')
- length = int(self.headers['Content-length'])
- searchParams=self.rfile.read(length).decode('utf-8')
- if 'searchtext=' in searchParams:
- searchStr=searchParams.split('searchtext=')[1]
- if '&' in searchStr:
- searchStr=searchStr.split('&')[0]
- searchStr=searchStr.replace('+',' ').replace('%40','@').replace('%3A',':').replace('%23','#').replace('%2F','/').strip()
- if self.server.debug:
- print('searchStr: '+searchStr)
- if searchForEmoji:
- searchStr=':'+searchStr+':'
- if searchStr.startswith('#'):
- # hashtag search
- hashtagStr= \
- htmlHashtagSearch(self.server.translate, \
- self.server.baseDir,searchStr[1:],1, \
- maxPostsInFeed,self.server.session, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- self.server.httpPrefix, \
- self.server.projectVersion)
- if hashtagStr:
- msg=hashtagStr.encode('utf-8')
- self._login_headers('text/html',len(msg))
- self.wfile.write(msg)
- self.server.POSTbusy=False
- return
- elif searchStr.startswith('*'):
- # skill search
- searchStr=searchStr.replace('*','').strip()
- skillStr= \
- htmlSkillsSearch(self.server.translate, \
- self.server.baseDir,searchStr, \
- self.server.instanceOnlySkillsSearch, \
- 64)
- if skillStr:
- msg=skillStr.encode('utf-8')
- self._login_headers('text/html',len(msg))
- self.wfile.write(msg)
- self.server.POSTbusy=False
- return
- elif '@' in searchStr:
- # profile search
- nickname=getNicknameFromActor(self.path)
- if not self.server.session:
- self.server.session= \
- createSession(self.server.domain, \
- self.server.port, \
- self.server.useTor)
- profileStr= \
- htmlProfileAfterSearch(self.server.translate, \
- self.server.baseDir, \
- self.path.replace('/searchhandle',''), \
- self.server.httpPrefix, \
- nickname, \
- self.server.domain,self.server.port, \
- searchStr, \
- self.server.session, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- self.server.debug, \
- self.server.projectVersion)
- if profileStr:
- msg=profileStr.encode('utf-8')
- self._login_headers('text/html',len(msg))
- self.wfile.write(msg)
- self.server.POSTbusy=False
- return
- else:
- self._redirect_headers(actorStr+'/search',cookie)
- self.server.POSTbusy=False
- return
- elif searchStr.startswith(':') or \
- searchStr.lower().strip('\n').endswith(' emoji'):
- # eg. "cat emoji"
- if searchStr.lower().strip('\n').endswith(' emoji'):
- searchStr=searchStr.lower().strip('\n').replace(' emoji','')
- # emoji search
- emojiStr= \
- htmlSearchEmoji(self.server.translate,self.server.baseDir,searchStr)
- if emojiStr:
- msg=emojiStr.encode('utf-8')
- self._login_headers('text/html',len(msg))
- self.wfile.write(msg)
- self.server.POSTbusy=False
- return
- else:
- # shared items search
- sharedItemsStr= \
- htmlSearchSharedItems(self.server.translate, \
- self.server.baseDir, \
- searchStr,pageNumber, \
- maxPostsInFeed, \
- self.server.httpPrefix, \
- self.server.domainFull, \
- actorStr)
- if sharedItemsStr:
- msg=sharedItemsStr.encode('utf-8')
- self._login_headers('text/html',len(msg))
- self.wfile.write(msg)
- self.server.POSTbusy=False
- return
- self._redirect_headers(actorStr+'/inbox',cookie)
- self.server.POSTbusy=False
- return
- # removes a shared item
- if authorized and self.path.endswith('/rmshare'):
- originPathStr=self.path.split('/rmshare')[0]
- length = int(self.headers['Content-length'])
- removeShareConfirmParams=self.rfile.read(length).decode('utf-8')
- if '&submitYes=' in removeShareConfirmParams:
- removeShareConfirmParams=removeShareConfirmParams.replace('%3A',':').replace('%2F','/')
- shareActor=removeShareConfirmParams.split('actor=')[1]
- if '&' in shareActor:
- shareActor=shareActor.split('&')[0]
- shareName=removeShareConfirmParams.split('shareName=')[1]
- if '&' in shareName:
- shareName=shareName.split('&')[0]
- shareNickname=getNicknameFromActor(shareActor)
- if shareNickname:
- shareDomain,sharePort=getDomainFromActor(shareActor)
- removeShare(self.server.baseDir,shareNickname,shareDomain,shareName)
- self._redirect_headers(originPathStr+'/inbox',cookie)
- self.server.POSTbusy=False
- return
- # removes a post
- if authorized and self.path.endswith('/rmpost'):
- pageNumber=1
- originPathStr=self.path.split('/rmpost')[0]
- length = int(self.headers['Content-length'])
- removePostConfirmParams=self.rfile.read(length).decode('utf-8')
- if '&submitYes=' in removePostConfirmParams:
- removePostConfirmParams=removePostConfirmParams.replace('%3A',':').replace('%2F','/')
- removeMessageId=removePostConfirmParams.split('messageId=')[1]
- if '&' in removeMessageId:
- removeMessageId=removeMessageId.split('&')[0]
- if 'pageNumber=' in removePostConfirmParams:
- pageNumberStr=removePostConfirmParams.split('pageNumber=')[1]
- if '&' in pageNumberStr:
- pageNumberStr=pageNumberStr.split('&')[0]
- if pageNumberStr.isdigit():
- pageNumber=int(pageNumberStr)
- if '/statuses/' in removeMessageId:
- removePostActor=removeMessageId.split('/statuses/')[0]
- if originPathStr in removePostActor:
- deleteJson= {
- "@context": "https://www.w3.org/ns/activitystreams",
- 'actor': removePostActor,
- 'object': removeMessageId,
- 'to': ['https://www.w3.org/ns/activitystreams#Public',removePostActor],
- 'cc': [removePostActor+'/followers'],
- 'type': 'Delete'
- }
- if self.server.debug:
- pprint(deleteJson)
- self.postToNickname=getNicknameFromActor(removePostActor)
- if self.postToNickname:
- self._postToOutboxThread(deleteJson)
- if pageNumber==1:
- self._redirect_headers(originPathStr+'/outbox',cookie)
- else:
- self._redirect_headers(originPathStr+'/outbox?page='+str(pageNumber),cookie)
- self.server.POSTbusy=False
- return
- # decision to follow in the web interface is confirmed
- if authorized and self.path.endswith('/followconfirm'):
- originPathStr=self.path.split('/followconfirm')[0]
- followerNickname=getNicknameFromActor(originPathStr)
- length = int(self.headers['Content-length'])
- followConfirmParams=self.rfile.read(length).decode('utf-8')
- if '&submitYes=' in followConfirmParams:
- followingActor=followConfirmParams.replace('%3A',':').replace('%2F','/').split('actor=')[1]
- if '&' in followingActor:
- followingActor=followingActor.split('&')[0]
- followingNickname=getNicknameFromActor(followingActor)
- followingDomain,followingPort=getDomainFromActor(followingActor)
- if followerNickname==followingNickname and \
- followingDomain==self.server.domain and \
- followingPort==self.server.port:
- if self.server.debug:
- print('You cannot follow yourself!')
- else:
- if self.server.debug:
- print('Sending follow request from '+followerNickname+' to '+followingActor)
- sendFollowRequest(self.server.session, \
- self.server.baseDir, \
- followerNickname, \
- self.server.domain,self.server.port, \
- self.server.httpPrefix, \
- followingNickname, \
- followingDomain, \
- followingPort,self.server.httpPrefix, \
- False,self.server.federationList, \
- self.server.sendThreads, \
- self.server.postLog, \
- self.server.cachedWebfingers, \
- self.server.personCache, \
- self.server.debug, \
- self.server.projectVersion)
- self._redirect_headers(originPathStr,cookie)
- self.server.POSTbusy=False
- return
- # decision to unfollow in the web interface is confirmed
- if authorized and self.path.endswith('/unfollowconfirm'):
- originPathStr=self.path.split('/unfollowconfirm')[0]
- followerNickname=getNicknameFromActor(originPathStr)
- length = int(self.headers['Content-length'])
- followConfirmParams=self.rfile.read(length).decode('utf-8')
- if '&submitYes=' in followConfirmParams:
- followingActor=followConfirmParams.replace('%3A',':').replace('%2F','/').split('actor=')[1]
- if '&' in followingActor:
- followingActor=followingActor.split('&')[0]
- followingNickname=getNicknameFromActor(followingActor)
- followingDomain,followingPort=getDomainFromActor(followingActor)
- if followerNickname==followingNickname and \
- followingDomain==self.server.domain and \
- followingPort==self.server.port:
- if self.server.debug:
- print('You cannot unfollow yourself!')
- else:
- if self.server.debug:
- print(followerNickname+' stops following '+followingActor)
- followActor=self.server.httpPrefix+'://'+self.server.domainFull+'/users/'+followerNickname
- statusNumber,published = getStatusNumber()
- followId=followActor+'/statuses/'+str(statusNumber)
- unfollowJson = {
- '@context': 'https://www.w3.org/ns/activitystreams',
- 'id': followId+'/undo',
- 'type': 'Undo',
- 'actor': followActor,
- 'object': {
- 'id': followId,
- 'type': 'Follow',
- 'actor': followActor,
- 'object': followingActor
- }
- }
- pathUsersSection=self.path.split('/users/')[1]
- self.postToNickname=pathUsersSection.split('/')[0]
- self._postToOutboxThread(unfollowJson)
- self._redirect_headers(originPathStr,cookie)
- self.server.POSTbusy=False
- return
- # decision to unblock in the web interface is confirmed
- if authorized and self.path.endswith('/unblockconfirm'):
- originPathStr=self.path.split('/unblockconfirm')[0]
- blockerNickname=getNicknameFromActor(originPathStr)
- if not blockerNickname:
- print('WARN: unable to find nickname in '+originPathStr)
- self._redirect_headers(originPathStr,cookie)
- self.server.POSTbusy=False
- return
- length = int(self.headers['Content-length'])
- blockConfirmParams=self.rfile.read(length).decode('utf-8')
- if '&submitYes=' in blockConfirmParams:
- blockingActor=blockConfirmParams.replace('%3A',':').replace('%2F','/').split('actor=')[1]
- if '&' in blockingActor:
- blockingActor=blockingActor.split('&')[0]
- blockingNickname=getNicknameFromActor(blockingActor)
- if not blockingNickname:
- print('WARN: unable to find nickname in '+blockingActor)
- self._redirect_headers(originPathStr,cookie)
- self.server.POSTbusy=False
- return
- blockingDomain,blockingPort=getDomainFromActor(blockingActor)
- blockingDomainFull=blockingDomain
- if blockingPort:
- if blockingPort!=80 and blockingPort!=443:
- if ':' not in blockingDomain:
- blockingDomainFull=blockingDomain+':'+str(blockingPort)
- if blockerNickname==blockingNickname and \
- blockingDomain==self.server.domain and \
- blockingPort==self.server.port:
- if self.server.debug:
- print('You cannot unblock yourself!')
- else:
- if self.server.debug:
- print(blockerNickname+' stops blocking '+blockingActor)
- removeBlock(self.server.baseDir,blockerNickname,self.server.domain, \
- blockingNickname,blockingDomainFull)
- self._redirect_headers(originPathStr,cookie)
- self.server.POSTbusy=False
- return
- # decision to block in the web interface is confirmed
- if authorized and self.path.endswith('/blockconfirm'):
- originPathStr=self.path.split('/blockconfirm')[0]
- blockerNickname=getNicknameFromActor(originPathStr)
- if not blockerNickname:
- print('WARN: unable to find nickname in '+originPathStr)
- self._redirect_headers(originPathStr,cookie)
- self.server.POSTbusy=False
- return
- length = int(self.headers['Content-length'])
- blockConfirmParams=self.rfile.read(length).decode('utf-8')
- if '&submitYes=' in blockConfirmParams:
- blockingActor=blockConfirmParams.replace('%3A',':').replace('%2F','/').split('actor=')[1]
- if '&' in blockingActor:
- blockingActor=blockingActor.split('&')[0]
- blockingNickname=getNicknameFromActor(blockingActor)
- if not blockingNickname:
- print('WARN: unable to find nickname in '+blockingActor)
- self._redirect_headers(originPathStr,cookie)
- self.server.POSTbusy=False
- return
- blockingDomain,blockingPort=getDomainFromActor(blockingActor)
- blockingDomainFull=blockingDomain
- if blockingPort:
- if blockingPort!=80 and blockingPort!=443:
- if ':' not in blockingDomain:
- blockingDomainFull=blockingDomain+':'+str(blockingPort)
- if blockerNickname==blockingNickname and \
- blockingDomain==self.server.domain and \
- blockingPort==self.server.port:
- if self.server.debug:
- print('You cannot block yourself!')
- else:
- if self.server.debug:
- print('Adding block by '+blockerNickname+' of '+blockingActor)
- addBlock(self.server.baseDir,blockerNickname,self.server.domain, \
- blockingNickname,blockingDomainFull)
- self._redirect_headers(originPathStr,cookie)
- self.server.POSTbusy=False
- return
- # an option was chosen from person options screen
- # view/follow/block/report
- if authorized and self.path.endswith('/personoptions'):
- pageNumber=1
- originPathStr=self.path.split('/personoptions')[0]
- chooserNickname=getNicknameFromActor(originPathStr)
- if not chooserNickname:
- print('WARN: unable to find nickname in '+originPathStr)
- self._redirect_headers(originPathStr,cookie)
- self.server.POSTbusy=False
- return
- length = int(self.headers['Content-length'])
- optionsConfirmParams=self.rfile.read(length).decode('utf-8').replace('%3A',':').replace('%2F','/')
- # page number to return to
- if 'pageNumber=' in optionsConfirmParams:
- pageNumberStr=optionsConfirmParams.split('pageNumber=')[1]
- if '&' in pageNumberStr:
- pageNumberStr=pageNumberStr.split('&')[0]
- if pageNumberStr.isdigit():
- pageNumber=int(pageNumberStr)
- # actor for the person
- optionsActor=optionsConfirmParams.split('actor=')[1]
- if '&' in optionsActor:
- optionsActor=optionsActor.split('&')[0]
- # url of the avatar
- optionsAvatarUrl=optionsConfirmParams.split('avatarUrl=')[1]
- if '&' in optionsAvatarUrl:
- optionsAvatarUrl=optionsAvatarUrl.split('&')[0]
- # link to a post, which can then be included in reports
- postUrl=None
- if 'postUrl' in optionsConfirmParams:
- postUrl=optionsConfirmParams.split('postUrl=')[1]
- if '&' in postUrl:
- postUrl=postUrl.split('&')[0]
-
- optionsNickname=getNicknameFromActor(optionsActor)
- if not optionsNickname:
- print('WARN: unable to find nickname in '+optionsActor)
- self._redirect_headers(originPathStr,cookie)
- self.server.POSTbusy=False
- return
- optionsDomain,optionsPort=getDomainFromActor(optionsActor)
- optionsDomainFull=optionsDomain
- if optionsPort:
- if optionsPort!=80 and optionsPort!=443:
- if ':' not in optionsDomain:
- optionsDomainFull=optionsDomain+':'+str(optionsPort)
- if chooserNickname==optionsNickname and \
- optionsDomain==self.server.domain and \
- optionsPort==self.server.port:
- if self.server.debug:
- print('You cannot perform an option action on yourself')
- if '&submitView=' in optionsConfirmParams:
- if self.server.debug:
- print('Viewing '+optionsActor)
- self._redirect_headers(optionsActor,cookie)
- self.server.POSTbusy=False
- return
- if '&submitBlock=' in optionsConfirmParams:
- if self.server.debug:
- print('Adding block by '+chooserNickname+' of '+optionsActor)
- addBlock(self.server.baseDir,chooserNickname,self.server.domain, \
- optionsNickname,optionsDomainFull)
- if '&submitUnblock=' in optionsConfirmParams:
- if self.server.debug:
- print('Unblocking '+optionsActor)
- msg=htmlUnblockConfirm(self.server.translate, \
- self.server.baseDir, \
- originPathStr, \
- optionsActor, \
- optionsAvatarUrl).encode()
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- self.server.POSTbusy=False
- return
- if '&submitFollow=' in optionsConfirmParams:
- if self.server.debug:
- print('Following '+optionsActor)
- msg=htmlFollowConfirm(self.server.translate, \
- self.server.baseDir, \
- originPathStr, \
- optionsActor, \
- optionsAvatarUrl).encode()
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- self.server.POSTbusy=False
- return
- if '&submitUnfollow=' in optionsConfirmParams:
- if self.server.debug:
- print('Unfollowing '+optionsActor)
- msg=htmlUnfollowConfirm(self.server.translate, \
- self.server.baseDir, \
- originPathStr, \
- optionsActor, \
- optionsAvatarUrl).encode()
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- self.server.POSTbusy=False
- return
- if '&submitDM=' in optionsConfirmParams:
- if self.server.debug:
- print('Sending DM to '+optionsActor)
- reportPath=self.path.replace('/personoptions','')+'/newdm'
- msg=htmlNewPost(self.server.translate, \
- self.server.baseDir, \
- reportPath,None, \
- [optionsActor],None, \
- pageNumber).encode()
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- self.server.POSTbusy=False
- return
- if '&submitReport=' in optionsConfirmParams:
- if self.server.debug:
- print('Reporting '+optionsActor)
- reportPath=self.path.replace('/personoptions','')+'/newreport'
- msg=htmlNewPost(self.server.translate, \
- self.server.baseDir, \
- reportPath,None,[], \
- postUrl,pageNumber).encode()
- self._set_headers('text/html',len(msg),cookie)
- self.wfile.write(msg)
- self.server.POSTbusy=False
- return
- self._redirect_headers(originPathStr,cookie)
- self.server.POSTbusy=False
- return
- postState,pageNumber=self._receiveNewPost(authorized,'newpost')
- if postState!=0:
- nickname=self.path.split('/users/')[1]
- if '/' in nickname:
- nickname=nickname.split('/')[0]
- self._redirect_headers('/users/'+nickname+'/inbox?page='+str(pageNumber),cookie)
- self.server.POSTbusy=False
- return
- postState,pageNumber=self._receiveNewPost(authorized,'newunlisted')
- if postState!=0:
- nickname=self.path.split('/users/')[1]
- if '/' in nickname:
- nickname=nickname.split('/')[0]
- self._redirect_headers('/users/'+nickname+'/inbox?page='+str(pageNumber),cookie)
- self.server.POSTbusy=False
- return
- postState,pageNumber=self._receiveNewPost(authorized,'newfollowers')
- if postState!=0:
- nickname=self.path.split('/users/')[1]
- if '/' in nickname:
- nickname=nickname.split('/')[0]
- self._redirect_headers('/users/'+nickname+'/inbox?page='+str(pageNumber),cookie)
- self.server.POSTbusy=False
- return
- postState,pageNumber=self._receiveNewPost(authorized,'newdm')
- if postState!=0:
- nickname=self.path.split('/users/')[1]
- if '/' in nickname:
- nickname=nickname.split('/')[0]
- self._redirect_headers('/users/'+nickname+'/inbox?page='+str(pageNumber),cookie)
- self.server.POSTbusy=False
- return
- postState,pageNumber=self._receiveNewPost(authorized,'newreport')
- if postState!=0:
- nickname=self.path.split('/users/')[1]
- if '/' in nickname:
- nickname=nickname.split('/')[0]
- self._redirect_headers('/users/'+nickname+'/inbox?page='+str(pageNumber),cookie)
- self.server.POSTbusy=False
- return
- postState,pageNumber=self._receiveNewPost(authorized,'newshare')
- if postState!=0:
- nickname=self.path.split('/users/')[1]
- if '/' in nickname:
- nickname=nickname.split('/')[0]
- self._redirect_headers('/users/'+nickname+'/shares?page='+str(pageNumber),cookie)
- self.server.POSTbusy=False
- return
- if self.path.endswith('/outbox') or self.path.endswith('/shares'):
- if '/users/' in self.path:
- if authorized:
- self.outboxAuthenticated=True
- pathUsersSection=self.path.split('/users/')[1]
- self.postToNickname=pathUsersSection.split('/')[0]
- if not self.outboxAuthenticated:
- self.send_response(405)
- self.end_headers()
- self.server.POSTbusy=False
- return
- # check that the post is to an expected path
- if not (self.path.endswith('/outbox') or \
- self.path.endswith('/inbox') or \
- self.path.endswith('/shares') or \
- self.path.endswith('/moderationaction') or \
- self.path.endswith('/caps/new') or \
- self.path=='/sharedInbox'):
- print('Attempt to POST to invalid path '+self.path)
- self.send_response(400)
- self.end_headers()
- self.server.POSTbusy=False
- return
- # read the message and convert it into a python dictionary
- length = int(self.headers['Content-length'])
- if self.server.debug:
- print('DEBUG: content-length: '+str(length))
- if not self.headers['Content-type'].startswith('image/') and \
- not self.headers['Content-type'].startswith('video/') and \
- not self.headers['Content-type'].startswith('audio/'):
- if length>self.server.maxMessageLength:
- print('Maximum message length exceeded '+str(length))
- self.send_response(400)
- self.end_headers()
- self.server.POSTbusy=False
- return
- else:
- if length>self.server.maxMediaSize:
- print('Maximum media size exceeded '+str(length))
- self.send_response(400)
- self.end_headers()
- self.server.POSTbusy=False
- return
- # receive images to the outbox
- if self.headers['Content-type'].startswith('image/') and \
- '/users/' in self.path:
- if not self.outboxAuthenticated:
- if self.server.debug:
- print('DEBUG: unauthenticated attempt to post image to outbox')
- self.send_response(403)
- self.end_headers()
- self.server.POSTbusy=False
- return
- pathUsersSection=self.path.split('/users/')[1]
- if '/' not in pathUsersSection:
- self.send_response(404)
- self.end_headers()
- self.server.POSTbusy=False
- return
- self.postFromNickname=pathUsersSection.split('/')[0]
- accountsDir=self.server.baseDir+'/accounts/'+self.postFromNickname+'@'+self.server.domain
- if not os.path.isdir(accountsDir):
- self.send_response(404)
- self.end_headers()
- self.server.POSTbusy=False
- return
- mediaBytes=self.rfile.read(length)
- mediaFilenameBase=accountsDir+'/upload'
- mediaFilename=mediaFilenameBase+'.png'
- if self.headers['Content-type'].endswith('jpeg'):
- mediaFilename=mediaFilenameBase+'.jpg'
- if self.headers['Content-type'].endswith('gif'):
- mediaFilename=mediaFilenameBase+'.gif'
- with open(mediaFilename, 'wb') as avFile:
- avFile.write(mediaBytes)
- if self.server.debug:
- print('DEBUG: image saved to '+mediaFilename)
- self.send_response(201)
- self.end_headers()
- self.server.POSTbusy=False
- return
- # refuse to receive non-json content
- if self.headers['Content-type'] != 'application/json' and \
- self.headers['Content-type'] != 'application/activity+json':
- print("POST is not json: "+self.headers['Content-type'])
- if self.server.debug:
- print(str(self.headers))
- length = int(self.headers['Content-length'])
- if length<self.server.maxPostLength:
- unknownPost=self.rfile.read(length).decode('utf-8')
- print(str(unknownPost))
- self.send_response(400)
- self.end_headers()
- self.server.POSTbusy=False
- return
- if self.server.debug:
- print('DEBUG: Reading message')
- messageBytes=self.rfile.read(length)
- messageJson=json.loads(messageBytes)
-
- # https://www.w3.org/TR/activitypub/#object-without-create
- if self.outboxAuthenticated:
- if self._postToOutbox(messageJson,__version__):
- if messageJson.get('id'):
- self.headers['Location']= \
- messageJson['id'].replace('/activity','').replace('/undo','')
- self.send_response(201)
- self.end_headers()
- self.server.POSTbusy=False
- return
- else:
- if self.server.debug:
- print('Failed to post to outbox')
- self.send_response(403)
- self.end_headers()
- self.server.POSTbusy=False
- return
- # check the necessary properties are available
- if self.server.debug:
- print('DEBUG: Check message has params')
- if self.path.endswith('/inbox') or \
- self.path=='/sharedInbox':
- if not inboxMessageHasParams(messageJson):
- if self.server.debug:
- pprint(messageJson)
- print("DEBUG: inbox message doesn't have the required parameters")
- self.send_response(403)
- self.end_headers()
- self.server.POSTbusy=False
- return
- if not inboxPermittedMessage(self.server.domain, \
- messageJson, \
- self.server.federationList):
- if self.server.debug:
- # https://www.youtube.com/watch?v=K3PrSj9XEu4
- print('DEBUG: Ah Ah Ah')
- self.send_response(403)
- self.end_headers()
- self.server.POSTbusy=False
- return
- if self.server.debug:
- pprint(messageJson)
- if not self.headers.get('signature'):
- if 'keyId=' not in self.headers['signature']:
- if self.server.debug:
- print('DEBUG: POST to inbox has no keyId in header signature parameter')
- self.send_response(403)
- self.end_headers()
- self.server.POSTbusy=False
- return
-
- if self.server.debug:
- print('DEBUG: POST saving to inbox queue')
- if '/users/' in self.path:
- pathUsersSection=self.path.split('/users/')[1]
- if '/' not in pathUsersSection:
- if self.server.debug:
- print('DEBUG: This is not a users endpoint')
- else:
- self.postToNickname=pathUsersSection.split('/')[0]
- if self.postToNickname:
- queueStatus=self._updateInboxQueue(self.postToNickname,messageJson,messageBytes)
- if queueStatus==0:
- self.send_response(200)
- self.end_headers()
- self.server.POSTbusy=False
- return
- if queueStatus==1:
- self.send_response(503)
- self.end_headers()
- self.server.POSTbusy=False
- return
- if self.server.debug:
- print('_updateInboxQueue exited without doing anything')
- else:
- if self.server.debug:
- print('self.postToNickname is None')
- self.send_response(403)
- self.end_headers()
- self.server.POSTbusy=False
- return
- else:
- if self.path == '/sharedInbox' or self.path == '/inbox':
- print('DEBUG: POST to shared inbox')
- queueStatus=self._updateInboxQueue('inbox',messageJson,messageBytes)
- if queueStatus==0:
- self.send_response(200)
- self.end_headers()
- self.server.POSTbusy=False
- return
- if queueStatus==1:
- self.send_response(503)
- self.end_headers()
- self.server.POSTbusy=False
- return
- self.send_response(200)
- self.end_headers()
- self.server.POSTbusy=False
- class PubServerUnitTest(PubServer):
- protocol_version = 'HTTP/1.0'
-
- def runDaemon(projectVersion, \
- instanceId,clientToServer: bool, \
- baseDir: str,domain: str, \
- port=80,proxyPort=80,httpPrefix='https', \
- fedList=[],noreply=False,nolike=False,nopics=False, \
- noannounce=False,cw=False,ocapAlways=False, \
- useTor=False,maxReplies=64, \
- domainMaxPostsPerDay=8640,accountMaxPostsPerDay=8640, \
- allowDeletion=False,debug=False,unitTest=False, \
- instanceOnlySkillsSearch=False) -> None:
- if len(domain)==0:
- domain='localhost'
- if '.' not in domain:
- if domain != 'localhost':
- print('Invalid domain: ' + domain)
- return
- serverAddress = ('', proxyPort)
- if unitTest:
- httpd = ThreadingHTTPServer(serverAddress, PubServerUnitTest)
- else:
- httpd = ThreadingHTTPServer(serverAddress, PubServer)
- # load translations dictionary
- httpd.translate={}
- if not unitTest:
- if not os.path.isdir(baseDir+'/translations'):
- print('ERROR: translations directory not found')
- return
- systemLanguage=locale.getdefaultlocale()[0]
- if '_' in systemLanguage:
- systemLanguage=systemLanguage.split('_')[0]
- if '.' in systemLanguage:
- systemLanguage=systemLanguage.split('.')[0]
- translationsFile=baseDir+'/translations/'+systemLanguage+'.json'
- if not os.path.isfile(translationsFile):
- systemLanguage='en'
- translationsFile=baseDir+'/translations/'+systemLanguage+'.json'
- print('System language: '+systemLanguage)
- with open(translationsFile, 'r') as fp:
- httpd.translate=commentjson.load(fp)
- httpd.outboxThread={}
- httpd.projectVersion=projectVersion
- # max POST size of 30M
- httpd.maxPostLength=1024*1024*30
- httpd.maxMediaSize=httpd.maxPostLength
- httpd.maxMessageLength=5000
- httpd.maxPostsInBox=1024
- httpd.domain=domain
- httpd.port=port
- httpd.domainFull=domain
- if port:
- if port!=80 and port!=443:
- if ':' not in domain:
- httpd.domainFull=domain+':'+str(port)
- httpd.httpPrefix=httpPrefix
- httpd.debug=debug
- httpd.federationList=fedList.copy()
- httpd.baseDir=baseDir
- httpd.instanceId=instanceId
- httpd.personCache={}
- httpd.cachedWebfingers={}
- httpd.useTor=useTor
- httpd.session = None
- httpd.sessionLastUpdate=0
- httpd.lastGET=0
- httpd.lastPOST=0
- httpd.GETbusy=False
- httpd.POSTbusy=False
- httpd.receivedMessage=False
- httpd.inboxQueue=[]
- httpd.sendThreads=[]
- httpd.postLog=[]
- httpd.maxQueueLength=16
- httpd.ocapAlways=ocapAlways
- httpd.allowDeletion=allowDeletion
- httpd.lastLoginTime=0
- httpd.maxReplies=maxReplies
- httpd.salts={}
- httpd.tokens={}
- httpd.tokensLookup={}
- httpd.instanceOnlySkillsSearch=instanceOnlySkillsSearch
- httpd.acceptedCaps=["inbox:write","objects:read"]
- if noreply:
- httpd.acceptedCaps.append('inbox:noreply')
- if nolike:
- httpd.acceptedCaps.append('inbox:nolike')
- if nopics:
- httpd.acceptedCaps.append('inbox:nopics')
- if noannounce:
- httpd.acceptedCaps.append('inbox:noannounce')
- if cw:
- httpd.acceptedCaps.append('inbox:cw')
- if not os.path.isdir(baseDir+'/accounts/inbox@'+domain):
- print('Creating shared inbox: inbox@'+domain)
- createSharedInbox(baseDir,'inbox',domain,port,httpPrefix)
- if not os.path.isdir(baseDir+'/cache'):
- os.mkdir(baseDir+'/cache')
- if not os.path.isdir(baseDir+'/cache/actors'):
- print('Creating actors cache')
- os.mkdir(baseDir+'/cache/actors')
- if not os.path.isdir(baseDir+'/cache/announce'):
- print('Creating announce cache')
- os.mkdir(baseDir+'/cache/announce')
- if not os.path.isdir(baseDir+'/cache/avatars'):
- print('Creating avatars cache')
- os.mkdir(baseDir+'/cache/avatars')
- archiveDir=baseDir+'/archive'
- if not os.path.isdir(archiveDir):
- print('Creating archive')
- os.mkdir(archiveDir)
-
- print('Creating cache expiry thread')
- httpd.thrCache= \
- threadWithTrace(target=expireCache, \
- args=(baseDir,httpd.personCache, \
- httpd.httpPrefix, \
- archiveDir, \
- httpd.maxPostsInBox),daemon=True)
- httpd.thrCache.start()
- print('Creating inbox queue')
- httpd.thrInboxQueue= \
- threadWithTrace(target=runInboxQueue, \
- args=(projectVersion, \
- baseDir,httpPrefix,httpd.sendThreads, \
- httpd.postLog,httpd.cachedWebfingers, \
- httpd.personCache,httpd.inboxQueue, \
- domain,port,useTor,httpd.federationList, \
- httpd.ocapAlways,maxReplies, \
- domainMaxPostsPerDay,accountMaxPostsPerDay, \
- allowDeletion,debug,httpd.acceptedCaps),daemon=True)
- if not unitTest:
- httpd.thrWatchdog= \
- threadWithTrace(target=runInboxQueueWatchdog, \
- args=(projectVersion,httpd),daemon=True)
- httpd.thrWatchdog.start()
- else:
- httpd.thrInboxQueue.start()
- if clientToServer:
- print('Running ActivityPub client on ' + domain + ' port ' + str(proxyPort))
- else:
- print('Running ActivityPub server on ' + domain + ' port ' + str(proxyPort))
- httpd.serve_forever()
|
