2017-07-10 15:52:41 +02:00
|
|
|
// Copyright 2017 Vector Creations Ltd
|
|
|
|
//
|
|
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
// you may not use this file except in compliance with the License.
|
|
|
|
// You may obtain a copy of the License at
|
|
|
|
//
|
|
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
//
|
|
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
// See the License for the specific language governing permissions and
|
|
|
|
// limitations under the License.
|
|
|
|
|
2017-10-11 19:16:53 +02:00
|
|
|
package routing
|
2017-07-10 15:52:41 +02:00
|
|
|
|
|
|
|
import (
|
2018-08-06 15:09:25 +02:00
|
|
|
"context"
|
2017-07-10 15:52:41 +02:00
|
|
|
"net/http"
|
2018-08-06 15:09:25 +02:00
|
|
|
"time"
|
2017-07-10 15:52:41 +02:00
|
|
|
|
2018-08-20 11:45:17 +02:00
|
|
|
appserviceAPI "github.com/matrix-org/dendrite/appservice/api"
|
2017-07-25 17:10:59 +02:00
|
|
|
"github.com/matrix-org/dendrite/clientapi/auth/authtypes"
|
2017-07-10 15:52:41 +02:00
|
|
|
"github.com/matrix-org/dendrite/clientapi/auth/storage/accounts"
|
|
|
|
"github.com/matrix-org/dendrite/clientapi/httputil"
|
|
|
|
"github.com/matrix-org/dendrite/clientapi/jsonerror"
|
2017-07-11 15:14:06 +02:00
|
|
|
"github.com/matrix-org/dendrite/clientapi/producers"
|
2017-08-22 12:12:51 +02:00
|
|
|
"github.com/matrix-org/dendrite/common"
|
2017-07-25 17:10:59 +02:00
|
|
|
"github.com/matrix-org/dendrite/common/config"
|
|
|
|
"github.com/matrix-org/dendrite/roomserver/api"
|
|
|
|
"github.com/matrix-org/gomatrixserverlib"
|
2017-07-11 15:14:06 +02:00
|
|
|
|
2019-08-06 18:02:12 +02:00
|
|
|
"github.com/matrix-org/gomatrix"
|
2017-07-10 15:52:41 +02:00
|
|
|
"github.com/matrix-org/util"
|
|
|
|
)
|
|
|
|
|
|
|
|
// GetProfile implements GET /profile/{userID}
|
|
|
|
func GetProfile(
|
2019-08-06 18:02:12 +02:00
|
|
|
req *http.Request, accountDB *accounts.Database, cfg *config.Dendrite,
|
|
|
|
userID string,
|
|
|
|
asAPI appserviceAPI.AppServiceQueryAPI,
|
|
|
|
federation *gomatrixserverlib.FederationClient,
|
2017-07-10 15:52:41 +02:00
|
|
|
) util.JSONResponse {
|
2019-08-06 18:02:12 +02:00
|
|
|
profile, err := getProfile(req.Context(), accountDB, cfg, userID, asAPI, federation)
|
2017-07-10 15:52:41 +02:00
|
|
|
if err != nil {
|
2019-08-06 18:02:12 +02:00
|
|
|
if err == common.ErrProfileNoExists {
|
|
|
|
return util.JSONResponse{
|
|
|
|
Code: http.StatusNotFound,
|
|
|
|
JSON: jsonerror.NotFound("The user does not exist or does not have a profile"),
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2018-08-20 11:45:17 +02:00
|
|
|
return httputil.LogThenError(req, err)
|
2017-07-10 15:52:41 +02:00
|
|
|
}
|
2018-07-03 15:57:52 +02:00
|
|
|
|
2017-07-10 15:52:41 +02:00
|
|
|
return util.JSONResponse{
|
2018-03-13 16:55:45 +01:00
|
|
|
Code: http.StatusOK,
|
2019-08-06 18:02:12 +02:00
|
|
|
JSON: common.ProfileResponse{
|
|
|
|
AvatarURL: profile.AvatarURL,
|
|
|
|
DisplayName: profile.DisplayName,
|
|
|
|
},
|
2017-07-10 15:52:41 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2018-07-03 15:57:52 +02:00
|
|
|
// GetAvatarURL implements GET /profile/{userID}/avatar_url
|
|
|
|
func GetAvatarURL(
|
2019-08-06 18:02:12 +02:00
|
|
|
req *http.Request, accountDB *accounts.Database, cfg *config.Dendrite,
|
|
|
|
userID string, asAPI appserviceAPI.AppServiceQueryAPI,
|
|
|
|
federation *gomatrixserverlib.FederationClient,
|
2018-07-03 15:57:52 +02:00
|
|
|
) util.JSONResponse {
|
2019-08-06 18:02:12 +02:00
|
|
|
profile, err := getProfile(req.Context(), accountDB, cfg, userID, asAPI, federation)
|
2017-07-10 15:52:41 +02:00
|
|
|
if err != nil {
|
2019-08-06 18:02:12 +02:00
|
|
|
if err == common.ErrProfileNoExists {
|
|
|
|
return util.JSONResponse{
|
|
|
|
Code: http.StatusNotFound,
|
|
|
|
JSON: jsonerror.NotFound("The user does not exist or does not have a profile"),
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2018-08-20 11:45:17 +02:00
|
|
|
return httputil.LogThenError(req, err)
|
2017-07-10 15:52:41 +02:00
|
|
|
}
|
2018-07-03 15:57:52 +02:00
|
|
|
|
2017-07-10 15:52:41 +02:00
|
|
|
return util.JSONResponse{
|
2018-03-13 16:55:45 +01:00
|
|
|
Code: http.StatusOK,
|
2019-08-06 18:02:12 +02:00
|
|
|
JSON: common.AvatarURL{
|
|
|
|
AvatarURL: profile.AvatarURL,
|
|
|
|
},
|
2017-07-10 15:52:41 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// SetAvatarURL implements PUT /profile/{userID}/avatar_url
|
|
|
|
func SetAvatarURL(
|
2017-07-25 17:10:59 +02:00
|
|
|
req *http.Request, accountDB *accounts.Database, device *authtypes.Device,
|
|
|
|
userID string, producer *producers.UserUpdateProducer, cfg *config.Dendrite,
|
|
|
|
rsProducer *producers.RoomserverProducer, queryAPI api.RoomserverQueryAPI,
|
2017-07-10 15:52:41 +02:00
|
|
|
) util.JSONResponse {
|
2017-07-25 17:10:59 +02:00
|
|
|
if userID != device.UserID {
|
|
|
|
return util.JSONResponse{
|
2018-03-13 16:55:45 +01:00
|
|
|
Code: http.StatusForbidden,
|
2017-07-25 17:10:59 +02:00
|
|
|
JSON: jsonerror.Forbidden("userID does not match the current user"),
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
changedKey := "avatar_url"
|
|
|
|
|
2017-11-05 19:03:54 +01:00
|
|
|
var r common.AvatarURL
|
2017-07-10 15:52:41 +02:00
|
|
|
if resErr := httputil.UnmarshalJSONRequest(req, &r); resErr != nil {
|
|
|
|
return *resErr
|
|
|
|
}
|
|
|
|
if r.AvatarURL == "" {
|
|
|
|
return util.JSONResponse{
|
2018-03-13 16:55:45 +01:00
|
|
|
Code: http.StatusBadRequest,
|
2017-07-10 15:52:41 +02:00
|
|
|
JSON: jsonerror.BadJSON("'avatar_url' must be supplied."),
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2017-07-25 17:10:59 +02:00
|
|
|
localpart, _, err := gomatrixserverlib.SplitID('@', userID)
|
|
|
|
if err != nil {
|
|
|
|
return httputil.LogThenError(req, err)
|
|
|
|
}
|
2017-07-11 15:14:06 +02:00
|
|
|
|
2018-08-22 14:40:25 +02:00
|
|
|
evTime, err := httputil.ParseTSParam(req)
|
|
|
|
if err != nil {
|
|
|
|
return util.JSONResponse{
|
|
|
|
Code: http.StatusBadRequest,
|
|
|
|
JSON: jsonerror.InvalidArgumentValue(err.Error()),
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2017-09-18 15:15:27 +02:00
|
|
|
oldProfile, err := accountDB.GetProfileByLocalpart(req.Context(), localpart)
|
2017-07-11 15:14:06 +02:00
|
|
|
if err != nil {
|
|
|
|
return httputil.LogThenError(req, err)
|
|
|
|
}
|
|
|
|
|
2017-09-18 15:15:27 +02:00
|
|
|
if err = accountDB.SetAvatarURL(req.Context(), localpart, r.AvatarURL); err != nil {
|
2017-07-10 15:52:41 +02:00
|
|
|
return httputil.LogThenError(req, err)
|
|
|
|
}
|
2017-07-11 15:14:06 +02:00
|
|
|
|
2017-09-18 15:15:27 +02:00
|
|
|
memberships, err := accountDB.GetMembershipsByLocalpart(req.Context(), localpart)
|
2017-07-25 17:10:59 +02:00
|
|
|
if err != nil {
|
|
|
|
return httputil.LogThenError(req, err)
|
|
|
|
}
|
|
|
|
|
|
|
|
newProfile := authtypes.Profile{
|
|
|
|
Localpart: localpart,
|
|
|
|
DisplayName: oldProfile.DisplayName,
|
|
|
|
AvatarURL: r.AvatarURL,
|
|
|
|
}
|
|
|
|
|
2018-08-06 15:09:25 +02:00
|
|
|
events, err := buildMembershipEvents(
|
2018-08-22 14:40:25 +02:00
|
|
|
req.Context(), memberships, newProfile, userID, cfg, evTime, queryAPI,
|
2018-08-06 15:09:25 +02:00
|
|
|
)
|
2017-07-25 17:10:59 +02:00
|
|
|
if err != nil {
|
|
|
|
return httputil.LogThenError(req, err)
|
|
|
|
}
|
|
|
|
|
2018-05-26 13:03:35 +02:00
|
|
|
if _, err := rsProducer.SendEvents(req.Context(), events, cfg.Matrix.ServerName, nil); err != nil {
|
2017-07-25 17:10:59 +02:00
|
|
|
return httputil.LogThenError(req, err)
|
|
|
|
}
|
|
|
|
|
|
|
|
if err := producer.SendUpdate(userID, changedKey, oldProfile.AvatarURL, r.AvatarURL); err != nil {
|
2017-07-11 15:14:06 +02:00
|
|
|
return httputil.LogThenError(req, err)
|
|
|
|
}
|
|
|
|
|
2017-07-10 15:52:41 +02:00
|
|
|
return util.JSONResponse{
|
2018-03-13 16:55:45 +01:00
|
|
|
Code: http.StatusOK,
|
2017-07-10 15:52:41 +02:00
|
|
|
JSON: struct{}{},
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// GetDisplayName implements GET /profile/{userID}/displayname
|
|
|
|
func GetDisplayName(
|
2019-08-06 18:02:12 +02:00
|
|
|
req *http.Request, accountDB *accounts.Database, cfg *config.Dendrite,
|
|
|
|
userID string, asAPI appserviceAPI.AppServiceQueryAPI,
|
|
|
|
federation *gomatrixserverlib.FederationClient,
|
2017-07-10 15:52:41 +02:00
|
|
|
) util.JSONResponse {
|
2019-08-06 18:02:12 +02:00
|
|
|
profile, err := getProfile(req.Context(), accountDB, cfg, userID, asAPI, federation)
|
2017-07-25 17:10:59 +02:00
|
|
|
if err != nil {
|
2019-08-06 18:02:12 +02:00
|
|
|
if err == common.ErrProfileNoExists {
|
|
|
|
return util.JSONResponse{
|
|
|
|
Code: http.StatusNotFound,
|
|
|
|
JSON: jsonerror.NotFound("The user does not exist or does not have a profile"),
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2018-08-20 11:45:17 +02:00
|
|
|
return httputil.LogThenError(req, err)
|
2017-07-25 17:10:59 +02:00
|
|
|
}
|
2019-08-06 18:02:12 +02:00
|
|
|
|
2017-07-10 15:52:41 +02:00
|
|
|
return util.JSONResponse{
|
2018-03-13 16:55:45 +01:00
|
|
|
Code: http.StatusOK,
|
2019-08-06 18:02:12 +02:00
|
|
|
JSON: common.DisplayName{
|
|
|
|
DisplayName: profile.DisplayName,
|
|
|
|
},
|
2017-07-10 15:52:41 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// SetDisplayName implements PUT /profile/{userID}/displayname
|
|
|
|
func SetDisplayName(
|
2017-07-25 17:10:59 +02:00
|
|
|
req *http.Request, accountDB *accounts.Database, device *authtypes.Device,
|
|
|
|
userID string, producer *producers.UserUpdateProducer, cfg *config.Dendrite,
|
|
|
|
rsProducer *producers.RoomserverProducer, queryAPI api.RoomserverQueryAPI,
|
2017-07-10 15:52:41 +02:00
|
|
|
) util.JSONResponse {
|
2017-07-25 17:10:59 +02:00
|
|
|
if userID != device.UserID {
|
|
|
|
return util.JSONResponse{
|
2018-03-13 16:55:45 +01:00
|
|
|
Code: http.StatusForbidden,
|
2017-07-25 17:10:59 +02:00
|
|
|
JSON: jsonerror.Forbidden("userID does not match the current user"),
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
changedKey := "displayname"
|
|
|
|
|
2017-11-05 19:03:54 +01:00
|
|
|
var r common.DisplayName
|
2017-07-10 15:52:41 +02:00
|
|
|
if resErr := httputil.UnmarshalJSONRequest(req, &r); resErr != nil {
|
|
|
|
return *resErr
|
|
|
|
}
|
|
|
|
if r.DisplayName == "" {
|
|
|
|
return util.JSONResponse{
|
2018-03-13 16:55:45 +01:00
|
|
|
Code: http.StatusBadRequest,
|
2017-07-10 15:52:41 +02:00
|
|
|
JSON: jsonerror.BadJSON("'displayname' must be supplied."),
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2017-07-25 17:10:59 +02:00
|
|
|
localpart, _, err := gomatrixserverlib.SplitID('@', userID)
|
|
|
|
if err != nil {
|
|
|
|
return httputil.LogThenError(req, err)
|
|
|
|
}
|
2017-07-11 15:14:06 +02:00
|
|
|
|
2018-08-22 14:40:25 +02:00
|
|
|
evTime, err := httputil.ParseTSParam(req)
|
|
|
|
if err != nil {
|
|
|
|
return util.JSONResponse{
|
|
|
|
Code: http.StatusBadRequest,
|
|
|
|
JSON: jsonerror.InvalidArgumentValue(err.Error()),
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2017-09-18 15:15:27 +02:00
|
|
|
oldProfile, err := accountDB.GetProfileByLocalpart(req.Context(), localpart)
|
2017-07-11 15:14:06 +02:00
|
|
|
if err != nil {
|
|
|
|
return httputil.LogThenError(req, err)
|
|
|
|
}
|
|
|
|
|
2017-09-18 15:15:27 +02:00
|
|
|
if err = accountDB.SetDisplayName(req.Context(), localpart, r.DisplayName); err != nil {
|
2017-07-10 15:52:41 +02:00
|
|
|
return httputil.LogThenError(req, err)
|
|
|
|
}
|
2017-07-11 15:14:06 +02:00
|
|
|
|
2017-09-18 15:15:27 +02:00
|
|
|
memberships, err := accountDB.GetMembershipsByLocalpart(req.Context(), localpart)
|
2017-07-25 17:10:59 +02:00
|
|
|
if err != nil {
|
|
|
|
return httputil.LogThenError(req, err)
|
|
|
|
}
|
|
|
|
|
|
|
|
newProfile := authtypes.Profile{
|
|
|
|
Localpart: localpart,
|
|
|
|
DisplayName: r.DisplayName,
|
|
|
|
AvatarURL: oldProfile.AvatarURL,
|
|
|
|
}
|
|
|
|
|
2018-08-06 15:09:25 +02:00
|
|
|
events, err := buildMembershipEvents(
|
2018-08-22 14:40:25 +02:00
|
|
|
req.Context(), memberships, newProfile, userID, cfg, evTime, queryAPI,
|
2018-08-06 15:09:25 +02:00
|
|
|
)
|
2017-07-25 17:10:59 +02:00
|
|
|
if err != nil {
|
|
|
|
return httputil.LogThenError(req, err)
|
|
|
|
}
|
|
|
|
|
2018-05-26 13:03:35 +02:00
|
|
|
if _, err := rsProducer.SendEvents(req.Context(), events, cfg.Matrix.ServerName, nil); err != nil {
|
2017-07-25 17:10:59 +02:00
|
|
|
return httputil.LogThenError(req, err)
|
|
|
|
}
|
|
|
|
|
|
|
|
if err := producer.SendUpdate(userID, changedKey, oldProfile.DisplayName, r.DisplayName); err != nil {
|
2017-07-11 15:14:06 +02:00
|
|
|
return httputil.LogThenError(req, err)
|
|
|
|
}
|
|
|
|
|
2017-07-10 15:52:41 +02:00
|
|
|
return util.JSONResponse{
|
2018-03-13 16:55:45 +01:00
|
|
|
Code: http.StatusOK,
|
2017-07-10 15:52:41 +02:00
|
|
|
JSON: struct{}{},
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2019-08-06 18:02:12 +02:00
|
|
|
// getProfile gets the full profile of a user by querying the database or a
|
|
|
|
// remote homeserver.
|
|
|
|
// Returns an error when something goes wrong or specifically
|
|
|
|
// common.ErrProfileNoExists when the profile doesn't exist.
|
|
|
|
func getProfile(
|
|
|
|
ctx context.Context, accountDB *accounts.Database, cfg *config.Dendrite,
|
|
|
|
userID string,
|
|
|
|
asAPI appserviceAPI.AppServiceQueryAPI,
|
|
|
|
federation *gomatrixserverlib.FederationClient,
|
|
|
|
) (*authtypes.Profile, error) {
|
|
|
|
localpart, domain, err := gomatrixserverlib.SplitID('@', userID)
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
if domain != cfg.Matrix.ServerName {
|
|
|
|
profile, fedErr := federation.LookupProfile(ctx, domain, userID, "")
|
|
|
|
if fedErr != nil {
|
|
|
|
if x, ok := fedErr.(gomatrix.HTTPError); ok {
|
|
|
|
if x.Code == http.StatusNotFound {
|
|
|
|
return nil, common.ErrProfileNoExists
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return nil, fedErr
|
|
|
|
}
|
|
|
|
|
|
|
|
return &authtypes.Profile{
|
|
|
|
Localpart: localpart,
|
|
|
|
DisplayName: profile.DisplayName,
|
|
|
|
AvatarURL: profile.AvatarURL,
|
|
|
|
}, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
profile, err := appserviceAPI.RetrieveUserProfile(ctx, userID, asAPI, accountDB)
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
return profile, nil
|
|
|
|
}
|
|
|
|
|
2017-07-25 17:10:59 +02:00
|
|
|
func buildMembershipEvents(
|
2018-08-06 15:09:25 +02:00
|
|
|
ctx context.Context,
|
2017-09-07 13:50:39 +02:00
|
|
|
memberships []authtypes.Membership,
|
2017-07-25 17:10:59 +02:00
|
|
|
newProfile authtypes.Profile, userID string, cfg *config.Dendrite,
|
2018-08-06 15:09:25 +02:00
|
|
|
evTime time.Time, queryAPI api.RoomserverQueryAPI,
|
2017-07-25 17:10:59 +02:00
|
|
|
) ([]gomatrixserverlib.Event, error) {
|
|
|
|
evs := []gomatrixserverlib.Event{}
|
|
|
|
|
|
|
|
for _, membership := range memberships {
|
|
|
|
builder := gomatrixserverlib.EventBuilder{
|
|
|
|
Sender: userID,
|
|
|
|
RoomID: membership.RoomID,
|
|
|
|
Type: "m.room.member",
|
|
|
|
StateKey: &userID,
|
|
|
|
}
|
|
|
|
|
2019-08-15 19:45:11 +02:00
|
|
|
content := gomatrixserverlib.MemberContent{
|
2019-08-06 16:07:36 +02:00
|
|
|
Membership: gomatrixserverlib.Join,
|
2017-07-25 17:10:59 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
content.DisplayName = newProfile.DisplayName
|
|
|
|
content.AvatarURL = newProfile.AvatarURL
|
|
|
|
|
|
|
|
if err := builder.SetContent(content); err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
2020-02-11 12:18:12 +01:00
|
|
|
event, err := common.BuildEvent(ctx, &builder, cfg, evTime, queryAPI, nil)
|
2017-07-25 17:10:59 +02:00
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
2017-08-04 17:32:10 +02:00
|
|
|
evs = append(evs, *event)
|
2017-07-10 15:52:41 +02:00
|
|
|
}
|
|
|
|
|
2017-07-25 17:10:59 +02:00
|
|
|
return evs, nil
|
2017-07-10 15:52:41 +02:00
|
|
|
}
|