oleg
/
pixelfed
mirrorاز https://github.com/pixelfed/pixelfed.git


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146
							<?php

namespace App\Http\Controllers\Api\V1\Admin;

use Illuminate\Http\Request;
use Illuminate\Validation\Rule;
use App\Http\Controllers\Api\ApiController;
use App\Instance;
use App\Services\InstanceService;
use App\Http\Resources\MastoApi\Admin\DomainBlockResource;

class DomainBlocksController extends ApiController {

  public function __construct() {
    $this->middleware(['auth:api', 'api.admin', 'scope:admin:read,admin:read:domain_blocks'])->only(['index', 'show']);
    $this->middleware(['auth:api', 'api.admin', 'scope:admin:write,admin:write:domain_blocks'])->only(['create', 'update', 'delete']);
  }

  public function index(Request $request) {
    $this->validate($request, [
      'limit' => 'sometimes|integer|max:100|min:1',
    ]);

    $limit = $request->input('limit', 100);

    $res = Instance::moderated()
      ->orderBy('id')
      ->cursorPaginate($limit)
      ->withQueryString();

    return $this->json(DomainBlockResource::collection($res), [
      'Link' => $this->linksForCollection($res)
    ]);
  }

  public function show(Request $request, $id) {
    $domain_block = Instance::moderated()->find($id);

    if (!$domain_block) {
      return $this->json([ 'error' => 'Record not found'], [], 404);
    }

    return $this->json(new DomainBlockResource($domain_block));
  }

  public function create(Request $request) {
    $this->validate($request, [
      'domain' => 'required|string|min:1|max:120',
      'severity' => [
        'sometimes',
        Rule::in(['noop', 'silence', 'suspend'])
      ],
      'reject_media' => 'sometimes|required|boolean',
      'reject_reports' => 'sometimes|required|boolean',
      'private_comment' => 'sometimes|string|min:1|max:1000',
      'public_comment' => 'sometimes|string|min:1|max:1000',
      'obfuscate' => 'sometimes|required|boolean'
    ]);
    
    $domain = $request->input('domain');
    $severity = $request->input('severity');
    $private_comment = $request->input('private_comment');

		abort_if(!strpos($domain, '.'), 400, 'Invalid domain');
		abort_if(!filter_var($domain, FILTER_VALIDATE_DOMAIN), 400, 'Invalid domain');

    $parts = explode('.', $domain);

    if ($parts[0] == '*') {
      // If we only have two parts, e.g., "*", "example", then we want to fail:
      abort_if(count($parts) <= 2, 400, 'Invalid domain: This API does not support wildcard domain blocks yet');

      // Otherwise we convert the *.foo.example to foo.example
      $domain = implode('.', array_slice($parts, 1));
    }

    // Double check we definitely haven't let anything through:
    abort_if(str_contains($domain, '*'), 400, 'Invalid domain');

    $existing_domain_block = Instance::moderated()->whereDomain($domain)->first();

    if ($existing_domain_block) {
      return $this->json([
        'error' => 'A domain block already exists for this domain',
        'existing_domain_block' => new DomainBlockResource($existing_domain_block)
      ], [], 422);
    }

    $domain_block = Instance::updateOrCreate(
      [ 'domain' => $domain ],
      [ 'banned' => $severity === 'suspend', 'unlisted' => $severity === 'silence', 'notes' => [$private_comment]]
    );

    InstanceService::refresh();

    return $this->json(new DomainBlockResource($domain_block));
  }

  public function update(Request $request, $id) {
    $this->validate($request, [
      'severity' => [
        'sometimes',
        Rule::in(['noop', 'silence', 'suspend'])
      ],
      'reject_media' => 'sometimes|required|boolean',
      'reject_reports' => 'sometimes|required|boolean',
      'private_comment' => 'sometimes|string|min:1|max:1000',
      'public_comment' => 'sometimes|string|min:1|max:1000',
      'obfuscate' => 'sometimes|required|boolean'
    ]);
    
    $severity = $request->input('severity');
    $private_comment = $request->input('private_comment');

    $domain_block = Instance::moderated()->find($id);

    if (!$domain_block) {
      return $this->json([ 'error' => 'Record not found'], [], 404);
    }

    $domain_block->banned = $severity === 'suspend';
    $domain_block->unlisted = $severity === 'silence';
    $domain_block->notes = [$private_comment];
    $domain_block->save();

    InstanceService::refresh();

    return $this->json(new DomainBlockResource($domain_block));
  }

  public function delete(Request $request, $id) {
    $domain_block = Instance::moderated()->find($id);

    if (!$domain_block) {
      return $this->json([ 'error' => 'Record not found'], [], 404);
    }

    $domain_block->banned = false;
    $domain_block->unlisted = false;
    $domain_block->save();

    InstanceService::refresh();

    return $this->json(null, [], 200);
  }
}