michael/pyfedi
1
0
Fork 0
mirror of https://codeberg.org/rimu/pyfedi synced 2025-01-23 19:36:56 -08:00
Code Issues Projects Releases Packages Wiki Activity Actions
pyfedi/app/shared/reply.py

719 lines
30 KiB
Python
Raw Normal View History

API: add post/save and comment/save routes (aka bookmarks)
2024-09-23 12:40:27 +00:00
from app import cache, db
API: support /comment endpoint for creating new post replies
2024-10-11 17:09:32 +00:00
from app.activitypub.signature import default_context, post_request_in_background, post_request
Add inital routes for API (with minimal changes to main codebase)
2024-09-20 16:06:08 +00:00
from app.community.util import send_to_remote_instance
API: process post/subscribe and comment/subscribe
2024-09-26 16:01:55 +00:00
from app.constants import *
API: support /comment/report
2024-10-27 10:20:38 +00:00
from app.models import Instance, Notification, NotificationSubscription, Post, PostReply, PostReplyBookmark, Report, Site, User, utcnow
API: support /comment endpoint for creating new post replies
2024-10-11 17:09:32 +00:00
from app.utils import gibberish, instance_banned, render_template, authorise_api_user, recently_upvoted_post_replies, recently_downvoted_post_replies, shorten_string, \
piefed_markdown_to_lemmy_markdown, markdown_to_html, ap_datetime
Add inital routes for API (with minimal changes to main codebase)
2024-09-20 16:06:08 +00:00
API: add post/save and comment/save routes (aka bookmarks)
2024-09-23 12:40:27 +00:00
from flask import abort, current_app, flash, redirect, request, url_for
from flask_babel import _
Add inital routes for API (with minimal changes to main codebase)
2024-09-20 16:06:08 +00:00
from flask_login import current_user
# would be in app/constants.py
SRC_WEB = 1
SRC_PUB = 2
SRC_API = 3
# function can be shared between WEB and API (only API calls it for now)
# comment_vote in app/post/routes would just need to do 'return vote_for_reply(reply_id, vote_direction, SRC_WEB)'
def vote_for_reply(reply_id: int, vote_direction, src, auth=None):
API: better error msg if Auth is missing from header
2024-10-05 05:53:53 +00:00
if src == SRC_API:
Add inital routes for API (with minimal changes to main codebase)
2024-09-20 16:06:08 +00:00
reply = PostReply.query.get(reply_id)
if not reply:
raise Exception('reply_not_found')
API: let exceptions bubble-up instead of unnecessary catch and raise
2024-10-08 03:26:40 +00:00
user = authorise_api_user(auth, return_type='model')
Add inital routes for API (with minimal changes to main codebase)
2024-09-20 16:06:08 +00:00
else:
API: support /comment endpoint for editing post replies
2024-10-12 19:16:02 +00:00
reply = PostReply.query.get_or_404(reply_id)
Add inital routes for API (with minimal changes to main codebase)
2024-09-20 16:06:08 +00:00
user = current_user
undo = reply.vote(user, vote_direction)
if not reply.community.local_only:
if undo:
action_json = {
'actor': user.public_url(not(reply.community.instance.votes_are_public() and user.vote_privately())),
'type': 'Undo',
'id': f"https://{current_app.config['SERVER_NAME']}/activities/undo/{gibberish(15)}",
'audience': reply.community.public_url(),
'object': {
'actor': user.public_url(not(reply.community.instance.votes_are_public() and user.vote_privately())),
'object': reply.public_url(),
'type': undo,
'id': f"https://{current_app.config['SERVER_NAME']}/activities/{undo.lower()}/{gibberish(15)}",
'audience': reply.community.public_url()
}
}
else:
action_type = 'Like' if vote_direction == 'upvote' else 'Dislike'
action_json = {
'actor': user.public_url(not(reply.community.instance.votes_are_public() and user.vote_privately())),
'object': reply.public_url(),
'type': action_type,
'id': f"https://{current_app.config['SERVER_NAME']}/activities/{action_type.lower()}/{gibberish(15)}",
'audience': reply.community.public_url()
}
if reply.community.is_local():
announce = {
"id": f"https://{current_app.config['SERVER_NAME']}/activities/announce/{gibberish(15)}",
"type": 'Announce',
"to": [
"https://www.w3.org/ns/activitystreams#Public"
],
"actor": reply.community.ap_profile_id,
"cc": [
reply.community.ap_followers_url
],
'@context': default_context(),
'object': action_json
}
for instance in reply.community.following_instances():
if instance.inbox and not user.has_blocked_instance(instance.id) and not instance_banned(instance.domain):
send_to_remote_instance(instance.id, reply.community.id, announce)
else:
post_request_in_background(reply.community.ap_inbox_url, action_json, user.private_key,
user.public_url(not(reply.community.instance.votes_are_public() and user.vote_privately())) + '#main-key')
if src == SRC_API:
return user.id
else:
recently_upvoted = []
recently_downvoted = []
if vote_direction == 'upvote' and undo is None:
recently_upvoted = [reply_id]
elif vote_direction == 'downvote' and undo is None:
recently_downvoted = [reply_id]
cache.delete_memoized(recently_upvoted_post_replies, user.id)
cache.delete_memoized(recently_downvoted_post_replies, user.id)
return render_template('post/_reply_voting_buttons.html', comment=reply,
recently_upvoted_replies=recently_upvoted,
recently_downvoted_replies=recently_downvoted,
community=reply.community)
API: add post/save and comment/save routes (aka bookmarks)
2024-09-23 12:40:27 +00:00
# function can be shared between WEB and API (only API calls it for now)
# post_reply_bookmark in app/post/routes would just need to do 'return bookmark_the_post_reply(comment_id, SRC_WEB)'
def bookmark_the_post_reply(comment_id: int, src, auth=None):
API: better error msg if Auth is missing from header
2024-10-05 05:53:53 +00:00
if src == SRC_API:
API: add post/save and comment/save routes (aka bookmarks)
2024-09-23 12:40:27 +00:00
post_reply = PostReply.query.get(comment_id)
if not post_reply or post_reply.deleted:
raise Exception('comment_not_found')
API: let exceptions bubble-up instead of unnecessary catch and raise
2024-10-08 03:26:40 +00:00
user_id = authorise_api_user(auth)
API: add post/save and comment/save routes (aka bookmarks)
2024-09-23 12:40:27 +00:00
else:
post_reply = PostReply.query.get_or_404(comment_id)
if post_reply.deleted:
abort(404)
user_id = current_user.id
existing_bookmark = PostReplyBookmark.query.filter(PostReplyBookmark.post_reply_id == comment_id,
PostReplyBookmark.user_id == user_id).first()
if not existing_bookmark:
db.session.add(PostReplyBookmark(post_reply_id=comment_id, user_id=user_id))
db.session.commit()
if src == SRC_WEB:
flash(_('Bookmark added.'))
else:
if src == SRC_WEB:
flash(_('This comment has already been bookmarked'))
if src == SRC_API:
return user_id
else:
return redirect(url_for('activitypub.post_ap', post_id=post_reply.post_id, _anchor=f'comment_{comment_id}'))
Add inital routes for API (with minimal changes to main codebase)
2024-09-20 16:06:08 +00:00
API: add post/save and comment/save routes (aka bookmarks)
2024-09-23 12:40:27 +00:00
# function can be shared between WEB and API (only API calls it for now)
# post_reply_remove_bookmark in app/post/routes would just need to do 'return remove_the_bookmark_from_post_reply(comment_id, SRC_WEB)'
def remove_the_bookmark_from_post_reply(comment_id: int, src, auth=None):
API: better error msg if Auth is missing from header
2024-10-05 05:53:53 +00:00
if src == SRC_API:
API: add post/save and comment/save routes (aka bookmarks)
2024-09-23 12:40:27 +00:00
post_reply = PostReply.query.get(comment_id)
if not post_reply or post_reply.deleted:
raise Exception('comment_not_found')
API: let exceptions bubble-up instead of unnecessary catch and raise
2024-10-08 03:26:40 +00:00
user_id = authorise_api_user(auth)
API: add post/save and comment/save routes (aka bookmarks)
2024-09-23 12:40:27 +00:00
else:
post_reply = PostReply.query.get_or_404(comment_id)
if post_reply.deleted:
abort(404)
user_id = current_user.id
existing_bookmark = PostReplyBookmark.query.filter(PostReplyBookmark.post_reply_id == comment_id,
PostReplyBookmark.user_id == user_id).first()
if existing_bookmark:
db.session.delete(existing_bookmark)
db.session.commit()
if src == SRC_WEB:
flash(_('Bookmark has been removed.'))
if src == SRC_API:
return user_id
else:
return redirect(url_for('activitypub.post_ap', post_id=post_reply.post_id))
API: process post/subscribe and comment/subscribe
2024-09-26 16:01:55 +00:00
# function can be shared between WEB and API (only API calls it for now)
# post_reply_notification in app/post/routes would just need to do 'return toggle_post_reply_notification(post_reply_id, SRC_WEB)'
def toggle_post_reply_notification(post_reply_id: int, src, auth=None):
# Toggle whether the current user is subscribed to notifications about replies to this reply or not
API: better error msg if Auth is missing from header
2024-10-05 05:53:53 +00:00
if src == SRC_API:
API: process post/subscribe and comment/subscribe
2024-09-26 16:01:55 +00:00
post_reply = PostReply.query.get(post_reply_id)
if not post_reply or post_reply.deleted:
raise Exception('comment_not_found')
API: let exceptions bubble-up instead of unnecessary catch and raise
2024-10-08 03:26:40 +00:00
user_id = authorise_api_user(auth)
API: process post/subscribe and comment/subscribe
2024-09-26 16:01:55 +00:00
else:
post_reply = PostReply.query.get_or_404(post_reply_id)
if post_reply.deleted:
abort(404)
user_id = current_user.id
existing_notification = NotificationSubscription.query.filter(NotificationSubscription.entity_id == post_reply.id,
NotificationSubscription.user_id == user_id,
NotificationSubscription.type == NOTIF_REPLY).first()
if existing_notification:
db.session.delete(existing_notification)
db.session.commit()
else: # no subscription yet, so make one
new_notification = NotificationSubscription(name=shorten_string(_('Replies to my comment on %(post_title)s',
API: support /comment endpoint for creating new post replies
2024-10-11 17:09:32 +00:00
post_title=post_reply.post.title)), user_id=user_id, entity_id=post_reply.id,
API: process post/subscribe and comment/subscribe
2024-09-26 16:01:55 +00:00
type=NOTIF_REPLY)
db.session.add(new_notification)
db.session.commit()
if src == SRC_API:
return user_id
else:
return render_template('post/_reply_notification_toggle.html', comment={'comment': post_reply})
API: support /comment endpoint for creating new post replies
2024-10-11 17:09:32 +00:00
# there are undoubtedly better algos for this
def basic_rate_limit_check(user):
weeks_active = int((utcnow() - user.created).days / 7)
score = user.post_reply_count * weeks_active
if score > 100:
score = 10
else:
score = int(score/10)
# a user with a 10-week old account, who has made 10 replies, will score 10, so their rate limit will be 0
# a user with a new account, and/or has made zero replies, will score 0 (so will have to wait 10 minutes between each new comment)
# other users will score from 1-9, so their rate limits will be between 9 and 1 minutes.
rate_limit = (10-score)*60
recent_reply = cache.get(f'{user.id} has recently replied')
if not recent_reply:
cache.set(f'{user.id} has recently replied', True, timeout=rate_limit)
return True
else:
return False
def make_reply(input, post, parent_id, src, auth=None):
if src == SRC_API:
user = authorise_api_user(auth, return_type='model')
if not basic_rate_limit_check(user):
raise Exception('rate_limited')
content = input['body']
notify_author = input['notify_author']
language_id = input['language_id']
else:
user = current_user
content = input.body.data
notify_author = input.notify_author.data
language_id = input.language_id.data
if parent_id:
parent_reply = PostReply.query.get(parent_id)
if not parent_reply:
raise Exception('parent_reply_not_found')
else:
parent_reply = None
# WEBFORM would call 'make_reply' in a try block, so any exception from 'new' would bubble-up for it to handle
reply = PostReply.new(user, post, in_reply_to=parent_reply, body=piefed_markdown_to_lemmy_markdown(content),
body_html=markdown_to_html(content), notify_author=notify_author,
language_id=language_id)
user.language_id = language_id
reply.ap_id = reply.profile_id()
db.session.commit()
API: support /comment endpoint for editing post replies
2024-10-12 19:16:02 +00:00
if src == SRC_WEB:
input.body.data = ''
flash('Your comment has been added.')
API: support /comment endpoint for creating new post replies
2024-10-11 17:09:32 +00:00
# federation
if parent_id:
in_reply_to = parent_reply
else:
in_reply_to = post
if not post.community.local_only:
reply_json = {
'type': 'Note',
'id': reply.public_url(),
'attributedTo': user.public_url(),
'to': [
'https://www.w3.org/ns/activitystreams#Public'
],
'cc': [
post.community.public_url(),
in_reply_to.author.public_url()
],
'content': reply.body_html,
'inReplyTo': in_reply_to.profile_id(),
'url': reply.profile_id(),
'mediaType': 'text/html',
'source': {'content': reply.body, 'mediaType': 'text/markdown'},
'published': ap_datetime(utcnow()),
'distinguished': False,
'audience': post.community.public_url(),
'contentMap': {
'en': reply.body_html
API: support /comment endpoint for editing post replies
2024-10-12 19:16:02 +00:00
},
'language': {
'identifier': reply.language_code(),
'name': reply.language_name()
API: support /comment endpoint for creating new post replies
2024-10-11 17:09:32 +00:00
}
}
create_json = {
'@context': default_context(),
'type': 'Create',
'actor': user.public_url(),
'audience': post.community.public_url(),
'to': [
'https://www.w3.org/ns/activitystreams#Public'
],
'cc': [
post.community.public_url(),
in_reply_to.author.public_url()
],
'object': reply_json,
'id': f"https://{current_app.config['SERVER_NAME']}/activities/create/{gibberish(15)}"
}
if in_reply_to.notify_author and in_reply_to.author.ap_id is not None:
reply_json['tag'] = [
{
'href': in_reply_to.author.public_url(),
'name': in_reply_to.author.mention_tag(),
'type': 'Mention'
}
]
create_json['tag'] = [
{
'href': in_reply_to.author.public_url(),
'name': in_reply_to.author.mention_tag(),
'type': 'Mention'
}
]
if not post.community.is_local(): # this is a remote community, send it to the instance that hosts it
success = post_request(post.community.ap_inbox_url, create_json, user.private_key,
user.public_url() + '#main-key')
API: support /comment endpoint for editing post replies
2024-10-12 19:16:02 +00:00
if src == SRC_WEB:
API: support /comment endpoint for creating new post replies
2024-10-11 17:09:32 +00:00
if success is False or isinstance(success, str):
flash('Failed to send reply', 'error')
else: # local community - send it to followers on remote instances
del create_json['@context']
announce = {
'id': f"https://{current_app.config['SERVER_NAME']}/activities/announce/{gibberish(15)}",
'type': 'Announce',
'to': [
'https://www.w3.org/ns/activitystreams#Public'
],
'actor': post.community.public_url(),
'cc': [
post.community.ap_followers_url
],
'@context': default_context(),
'object': create_json
}
for instance in post.community.following_instances():
if instance.inbox and not user.has_blocked_instance(instance.id) and not instance_banned(instance.domain):
send_to_remote_instance(instance.id, post.community.id, announce)
# send copy of Note to comment author (who won't otherwise get it if no-one else on their instance is subscribed to the community)
if not in_reply_to.author.is_local() and in_reply_to.author.ap_domain != reply.community.ap_domain:
if not post.community.is_local() or (post.community.is_local and not post.community.has_followers_from_domain(in_reply_to.author.ap_domain)):
success = post_request(in_reply_to.author.ap_inbox_url, create_json, user.private_key, user.public_url() + '#main-key')
if success is False or isinstance(success, str):
# sending to shared inbox is good enough for Mastodon, but Lemmy will reject it the local community has no followers
personal_inbox = in_reply_to.author.public_url() + '/inbox'
post_request(personal_inbox, create_json, user.private_key, user.public_url() + '#main-key')
if src == SRC_API:
return user.id, reply
else:
return reply
API: support /comment endpoint for editing post replies
2024-10-12 19:16:02 +00:00
def edit_reply(input, reply, post, src, auth=None):
if src == SRC_API:
API: ensure only reply owner can edit the reply
2024-10-13 12:52:20 +00:00
user = authorise_api_user(auth, return_type='model', id_match=reply.user_id)
API: support /comment endpoint for editing post replies
2024-10-12 19:16:02 +00:00
content = input['body']
notify_author = input['notify_author']
language_id = input['language_id']
else:
user = current_user
content = input.body.data
notify_author = input.notify_author.data
language_id = input.language_id.data
reply.body = piefed_markdown_to_lemmy_markdown(content)
reply.body_html = markdown_to_html(content)
reply.notify_author = notify_author
reply.community.last_active = utcnow()
reply.edited_at = utcnow()
reply.language_id = language_id
db.session.commit()
if src == SRC_WEB:
flash(_('Your changes have been saved.'), 'success')
if reply.parent_id:
in_reply_to = PostReply.query.get(reply.parent_id)
else:
in_reply_to = post
# federate edit
if not post.community.local_only:
reply_json = {
'type': 'Note',
'id': reply.public_url(),
'attributedTo': user.public_url(),
'to': [
'https://www.w3.org/ns/activitystreams#Public'
],
'cc': [
post.community.public_url(),
in_reply_to.author.public_url()
],
'content': reply.body_html,
'inReplyTo': in_reply_to.profile_id(),
'url': reply.public_url(),
'mediaType': 'text/html',
'source': {'content': reply.body, 'mediaType': 'text/markdown'},
'published': ap_datetime(reply.posted_at),
'updated': ap_datetime(reply.edited_at),
'distinguished': False,
'audience': post.community.public_url(),
'contentMap': {
'en': reply.body_html
},
'language': {
'identifier': reply.language_code(),
'name': reply.language_name()
}
}
update_json = {
'@context': default_context(),
'type': 'Update',
'actor': user.public_url(),
'audience': post.community.public_url(),
'to': [
'https://www.w3.org/ns/activitystreams#Public'
],
'cc': [
post.community.public_url(),
in_reply_to.author.public_url()
],
'object': reply_json,
'id': f"https://{current_app.config['SERVER_NAME']}/activities/update/{gibberish(15)}"
}
if in_reply_to.notify_author and in_reply_to.author.ap_id is not None:
reply_json['tag'] = [
{
'href': in_reply_to.author.public_url(),
'name': in_reply_to.author.mention_tag(),
'type': 'Mention'
}
]
update_json['tag'] = [
{
'href': in_reply_to.author.public_url(),
'name': in_reply_to.author.mention_tag(),
'type': 'Mention'
}
]
if not post.community.is_local(): # this is a remote community, send it to the instance that hosts it
success = post_request(post.community.ap_inbox_url, update_json, user.private_key,
user.public_url() + '#main-key')
if src == SRC_WEB:
if success is False or isinstance(success, str):
flash('Failed to send send edit to remote server', 'error')
else: # local community - send it to followers on remote instances
del update_json['@context']
announce = {
'id': f"https://{current_app.config['SERVER_NAME']}/activities/announce/{gibberish(15)}",
'type': 'Announce',
'to': [
'https://www.w3.org/ns/activitystreams#Public'
],
'actor': post.community.public_url(),
'cc': [
post.community.ap_followers_url
],
'@context': default_context(),
'object': update_json
}
for instance in post.community.following_instances():
if instance.inbox and not user.has_blocked_instance(instance.id) and not instance_banned(instance.domain):
send_to_remote_instance(instance.id, post.community.id, announce)
# send copy of Note to post author (who won't otherwise get it if no-one else on their instance is subscribed to the community)
if not in_reply_to.author.is_local() and in_reply_to.author.ap_domain != reply.community.ap_domain:
if not post.community.is_local() or (post.community.is_local and not post.community.has_followers_from_domain(in_reply_to.author.ap_domain)):
success = post_request(in_reply_to.author.ap_inbox_url, update_json, user.private_key, user.public_url() + '#main-key')
if success is False or isinstance(success, str):
# sending to shared inbox is good enough for Mastodon, but Lemmy will reject it the local community has no followers
personal_inbox = in_reply_to.author.public_url() + '/inbox'
post_request(personal_inbox, update_json, user.private_key, user.public_url() + '#main-key')
if src == SRC_API:
return user.id, reply
else:
return
API: support /comment/delete for user reply delete/restore
2024-10-14 04:28:36 +00:00
# just for deletes by owner (mod deletes are classed as 'remove')
# just for API for now, as WEB version needs attention to ensure that replies can be 'undeleted'
def delete_reply(reply_id, src, auth):
if src == SRC_API:
reply = PostReply.query.filter_by(id=reply_id, deleted=False).one()
post = Post.query.filter_by(id=reply.post_id).one()
user = authorise_api_user(auth, return_type='model', id_match=reply.user_id)
else:
reply = PostReply.query.get_or_404(reply_id)
post = Post.query.get_or_404(reply.post_id)
user = current_user
reply.deleted = True
reply.deleted_by = user.id
# everything else (votes, body, reports, bookmarks, subscriptions, etc) only wants deleting when it's properly purged after 7 days
# reply_view will return '' in body if reply.deleted == True
if not reply.author.bot:
post.reply_count -= 1
reply.author.post_reply_count -= 1
db.session.commit()
if src == SRC_WEB:
flash(_('Comment deleted.'))
# federate delete
if not post.community.local_only:
delete_json = {
'id': f"https://{current_app.config['SERVER_NAME']}/activities/delete/{gibberish(15)}",
'type': 'Delete',
'actor': user.public_url(),
'audience': post.community.public_url(),
'to': [
'https://www.w3.org/ns/activitystreams#Public'
],
'published': ap_datetime(utcnow()),
'cc': [
post.community.public_url(),
user.followers_url()
],
'object': reply.ap_id,
'@context': default_context()
}
if not post.community.is_local(): # this is a remote community, send it to the instance that hosts it
success = post_request(post.community.ap_inbox_url, delete_json, user.private_key,
user.public_url() + '#main-key')
if src == SRC_WEB:
if success is False or isinstance(success, str):
flash('Failed to send delete to remote server', 'error')
else: # local community - send it to followers on remote instances
del delete_json['@context']
announce = {
'id': f"https://{current_app.config['SERVER_NAME']}/activities/announce/{gibberish(15)}",
'type': 'Announce',
'to': [
'https://www.w3.org/ns/activitystreams#Public'
],
'actor': post.community.public_url(),
'cc': [
post.community.public_url() + '/followers'
],
'@context': default_context(),
'object': delete_json
}
for instance in post.community.following_instances():
if instance.inbox:
send_to_remote_instance(instance.id, post.community.id, announce)
if src == SRC_API:
return user.id, reply
else:
return
def restore_reply(reply_id, src, auth):
if src == SRC_API:
reply = PostReply.query.filter_by(id=reply_id, deleted=True).one()
post = Post.query.filter_by(id=reply.post_id).one()
user = authorise_api_user(auth, return_type='model', id_match=reply.user_id)
if reply.deleted_by and reply.user_id != reply.deleted_by:
raise Exception('incorrect_login')
else:
reply = PostReply.query.get_or_404(reply_id)
post = Post.query.get_or_404(reply.post_id)
user = current_user
reply.deleted = False
reply.deleted_by = None
if not reply.author.bot:
post.reply_count += 1
reply.author.post_reply_count += 1
db.session.commit()
if src == SRC_WEB:
flash(_('Comment restored.'))
# federate undelete
if not post.community.local_only:
delete_json = {
'id': f"https://{current_app.config['SERVER_NAME']}/activities/delete/{gibberish(15)}",
'type': 'Delete',
'actor': user.public_url(),
'audience': post.community.public_url(),
'to': [
'https://www.w3.org/ns/activitystreams#Public'
],
'published': ap_datetime(utcnow()),
'cc': [
post.community.public_url(),
user.followers_url()
],
'object': reply.ap_id
}
undo_json = {
'id': f"https://{current_app.config['SERVER_NAME']}/activities/undo/{gibberish(15)}",
'type': 'Undo',
'actor': user.public_url(),
'audience': post.community.public_url(),
'to': [
'https://www.w3.org/ns/activitystreams#Public'
],
'cc': [
post.community.public_url(),
user.followers_url()
],
'object': delete_json,
'@context': default_context()
}
if not post.community.is_local(): # this is a remote community, send it to the instance that hosts it
success = post_request(post.community.ap_inbox_url, undo_json, user.private_key,
user.public_url() + '#main-key')
if src == SRC_WEB:
if success is False or isinstance(success, str):
flash('Failed to send delete to remote server', 'error')
else: # local community - send it to followers on remote instances
del undo_json['@context']
announce = {
'id': f"https://{current_app.config['SERVER_NAME']}/activities/announce/{gibberish(15)}",
'type': 'Announce',
'to': [
'https://www.w3.org/ns/activitystreams#Public'
],
'actor': post.community.public_url(),
'cc': [
post.community.public_url() + '/followers'
],
'@context': default_context(),
'object': undo_json
}
for instance in post.community.following_instances():
if instance.inbox:
send_to_remote_instance(instance.id, post.community.id, announce)
if src == SRC_API:
return user.id, reply
else:
return
API: support /comment/report
2024-10-27 10:20:38 +00:00
def report_reply(reply_id, input, src, auth=None):
if src == SRC_API:
reply = PostReply.query.filter_by(id=reply_id).one()
user = authorise_api_user(auth, return_type='model')
reason = input['reason']
description = input['description']
report_remote = input['report_remote']
else:
reply = PostReply.query.get_or_404(reply_id)
user = current_user
reason = input.reasons_to_string(input.reasons.data)
description = input.description.data
report_remote = input.report_remote.data
if reply.reports == -1: # When a mod decides to ignore future reports, reply.reports is set to -1
if src == SRC_API:
raise Exception('already_reported')
else:
flash(_('Comment has already been reported, thank you!'))
return
report = Report(reasons=reason, description=description, type=2, reporter_id=user.id, suspect_post_id=reply.post.id, suspect_community_id=reply.community.id,
suspect_user_id=reply.author.id, suspect_post_reply_id=reply.id, in_community_id=reply.community.id, source_instance_id=1)
db.session.add(report)
# Notify moderators
already_notified = set()
for mod in reply.community.moderators():
moderator = User.query.get(mod.user_id)
if moderator and moderator.is_local():
notification = Notification(user_id=mod.user_id, title=_('A comment has been reported'),
url=f"https://{current_app.config['SERVER_NAME']}/comment/{reply.id}",
author_id=user.id)
db.session.add(notification)
already_notified.add(mod.user_id)
reply.reports += 1
# todo: only notify admins for certain types of report
for admin in Site.admins():
if admin.id not in already_notified:
notify = Notification(title='Suspicious content', url='/admin/reports', user_id=admin.id, author_id=user.id)
db.session.add(notify)
admin.unread_notifications += 1
db.session.commit()
# federate report to originating instance
if not reply.community.is_local() and report_remote:
summary = reason
if description:
summary += ' - ' + description
report_json = {
'actor': user.public_url(),
'audience': reply.community.public_url(),
'content': None,
'id': f"https://{current_app.config['SERVER_NAME']}/activities/flag/{gibberish(15)}",
'object': reply.ap_id,
'summary': summary,
'to': [
reply.community.public_url()
],
'type': 'Flag'
}
instance = Instance.query.get(reply.community.instance_id)
if reply.community.ap_inbox_url and not user.has_blocked_instance(instance.id) and not instance_banned(instance.domain):
success = post_request(reply.community.ap_inbox_url, report_json, user.private_key, user.public_url() + '#main-key')
if success is False or isinstance(success, str):
if src == SRC_WEB:
flash('Failed to send report to remote server', 'error')
if src == SRC_API:
return user.id, report
else:
return
Reference in a new issue Copy permalink