123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299 |
- // @ts-check
- const os = require('os');
- const throng = require('throng');
- const dotenv = require('dotenv');
- const express = require('express');
- const http = require('http');
- const redis = require('redis');
- const pg = require('pg');
- const log = require('npmlog');
- const url = require('url');
- const uuid = require('uuid');
- const fs = require('fs');
- const WebSocket = require('ws');
- const { JSDOM } = require('jsdom');
- const env = process.env.NODE_ENV || 'development';
- const alwaysRequireAuth = process.env.LIMITED_FEDERATION_MODE === 'true' || process.env.WHITELIST_MODE === 'true' || process.env.AUTHORIZED_FETCH === 'true';
- dotenv.config({
- path: env === 'production' ? '.env.production' : '.env',
- });
- log.level = process.env.LOG_LEVEL || 'verbose';
- /**
- * @param {string} dbUrl
- * @return {Object.<string, any>}
- */
- const dbUrlToConfig = (dbUrl) => {
- if (!dbUrl) {
- return {};
- }
- const params = url.parse(dbUrl, true);
- const config = {};
- if (params.auth) {
- [config.user, config.password] = params.auth.split(':');
- }
- if (params.hostname) {
- config.host = params.hostname;
- }
- if (params.port) {
- config.port = params.port;
- }
- if (params.pathname) {
- config.database = params.pathname.split('/')[1];
- }
- const ssl = params.query && params.query.ssl;
- if (ssl && ssl === 'true' || ssl === '1') {
- config.ssl = true;
- }
- return config;
- };
- /**
- * @param {Object.<string, any>} defaultConfig
- * @param {string} redisUrl
- */
- const redisUrlToClient = async (defaultConfig, redisUrl) => {
- const config = defaultConfig;
- let client;
- if (!redisUrl) {
- client = redis.createClient(config);
- } else if (redisUrl.startsWith('unix://')) {
- client = redis.createClient(Object.assign(config, {
- socket: {
- path: redisUrl.slice(7),
- },
- }));
- } else {
- client = redis.createClient(Object.assign(config, {
- url: redisUrl,
- }));
- }
- client.on('error', (err) => log.error('Redis Client Error!', err));
- await client.connect();
- return client;
- };
- const numWorkers = +process.env.STREAMING_CLUSTER_NUM || (env === 'development' ? 1 : Math.max(os.cpus().length - 1, 1));
- /**
- * @param {string} json
- * @param {any} req
- * @return {Object.<string, any>|null}
- */
- const parseJSON = (json, req) => {
- try {
- return JSON.parse(json);
- } catch (err) {
- if (req.accountId) {
- log.warn(req.requestId, `Error parsing message from user ${req.accountId}: ${err}`);
- } else {
- log.silly(req.requestId, `Error parsing message from ${req.remoteAddress}: ${err}`);
- }
- return null;
- }
- };
- const startMaster = () => {
- if (!process.env.SOCKET && process.env.PORT && isNaN(+process.env.PORT)) {
- log.warn('UNIX domain socket is now supported by using SOCKET. Please migrate from PORT hack.');
- }
- log.warn(`Starting streaming API server master with ${numWorkers} workers`);
- };
- const startWorker = async (workerId) => {
- log.warn(`Starting worker ${workerId}`);
- const pgConfigs = {
- development: {
- user: process.env.DB_USER || pg.defaults.user,
- password: process.env.DB_PASS || pg.defaults.password,
- database: process.env.DB_NAME || 'mastodon_development',
- host: process.env.DB_HOST || pg.defaults.host,
- port: process.env.DB_PORT || pg.defaults.port,
- max: 10,
- },
- production: {
- user: process.env.DB_USER || 'mastodon',
- password: process.env.DB_PASS || '',
- database: process.env.DB_NAME || 'mastodon_production',
- host: process.env.DB_HOST || 'localhost',
- port: process.env.DB_PORT || 5432,
- max: 10,
- },
- };
- if (!!process.env.DB_SSLMODE && process.env.DB_SSLMODE !== 'disable') {
- pgConfigs.development.ssl = true;
- pgConfigs.production.ssl = true;
- }
- const app = express();
- app.set('trust proxy', process.env.TRUSTED_PROXY_IP ? process.env.TRUSTED_PROXY_IP.split(/(?:\s*,\s*|\s+)/) : 'loopback,uniquelocal');
- const pgPool = new pg.Pool(Object.assign(pgConfigs[env], dbUrlToConfig(process.env.DATABASE_URL)));
- const server = http.createServer(app);
- const redisNamespace = process.env.REDIS_NAMESPACE || null;
- const redisParams = {
- socket: {
- host: process.env.REDIS_HOST || '127.0.0.1',
- port: process.env.REDIS_PORT || 6379,
- },
- database: process.env.REDIS_DB || 0,
- password: process.env.REDIS_PASSWORD || undefined,
- };
- if (redisNamespace) {
- redisParams.namespace = redisNamespace;
- }
- const redisPrefix = redisNamespace ? `${redisNamespace}:` : '';
- /**
- * @type {Object.<string, Array.<function(string): void>>}
- */
- const subs = {};
- const redisSubscribeClient = await redisUrlToClient(redisParams, process.env.REDIS_URL);
- const redisClient = await redisUrlToClient(redisParams, process.env.REDIS_URL);
- /**
- * @param {string[]} channels
- * @return {function(): void}
- */
- const subscriptionHeartbeat = channels => {
- const interval = 6 * 60;
- const tellSubscribed = () => {
- channels.forEach(channel => redisClient.set(`${redisPrefix}subscribed:${channel}`, '1', 'EX', interval * 3));
- };
- tellSubscribed();
- const heartbeat = setInterval(tellSubscribed, interval * 1000);
- return () => {
- clearInterval(heartbeat);
- };
- };
- /**
- * @param {string} message
- * @param {string} channel
- */
- const onRedisMessage = (message, channel) => {
- const callbacks = subs[channel];
- log.silly(`New message on channel ${channel}`);
- if (!callbacks) {
- return;
- }
- callbacks.forEach(callback => callback(message));
- };
- /**
- * @param {string} channel
- * @param {function(string): void} callback
- */
- const subscribe = (channel, callback) => {
- log.silly(`Adding listener for ${channel}`);
- subs[channel] = subs[channel] || [];
- if (subs[channel].length === 0) {
- log.verbose(`Subscribe ${channel}`);
- redisSubscribeClient.subscribe(channel, onRedisMessage);
- }
- subs[channel].push(callback);
- };
- /**
- * @param {string} channel
- */
- const unsubscribe = (channel, callback) => {
- log.silly(`Removing listener for ${channel}`);
- if (!subs[channel]) {
- return;
- }
- subs[channel] = subs[channel].filter(item => item !== callback);
- if (subs[channel].length === 0) {
- log.verbose(`Unsubscribe ${channel}`);
- redisSubscribeClient.unsubscribe(channel);
- delete subs[channel];
- }
- };
- const FALSE_VALUES = [
- false,
- 0,
- '0',
- 'f',
- 'F',
- 'false',
- 'FALSE',
- 'off',
- 'OFF',
- ];
- /**
- * @param {any} value
- * @return {boolean}
- */
- const isTruthy = value =>
- value && !FALSE_VALUES.includes(value);
- /**
- * @param {any} req
- * @param {any} res
- * @param {function(Error=): void}
- */
- const allowCrossDomain = (req, res, next) => {
- res.header('Access-Control-Allow-Origin', '*');
- res.header('Access-Control-Allow-Headers', 'Authorization, Accept, Cache-Control');
- res.header('Access-Control-Allow-Methods', 'GET, OPTIONS');
- next();
- };
- /**
- * @param {any} req
- * @param {any} res
- * @param {function(Error=): void}
- */
- const setRequestId = (req, res, next) => {
- req.requestId = uuid.v4();
- res.header('X-Request-Id', req.requestId);
- next();
- };
- /**
- * @param {any} req
- * @param {any} res
- * @param {function(Error=): void}
- */
- const setRemoteAddress = (req, res, next) => {
- req.remoteAddress = req.connection.remoteAddress;
- next();
- };
- /**
- * @param {any} req
- * @param {string[]} necessaryScopes
- * @return {boolean}
- */
- const isInScope = (req, necessaryScopes) =>
- req.scopes.some(scope => necessaryScopes.includes(scope));
- /**
- * @param {string} token
- * @param {any} req
- * @return {Promise.<void>}
- */
- const accountFromToken = (token, req) => new Promise((resolve, reject) => {
- pgPool.connect((err, client, done) => {
- if (err) {
- reject(err);
- return;
- }
- client.query('SELECT oauth_access_tokens.id, oauth_access_tokens.resource_owner_id, users.account_id, users.chosen_languages, oauth_access_tokens.scopes, devices.device_id FROM oauth_access_tokens INNER JOIN users ON oauth_access_tokens.resource_owner_id = users.id LEFT OUTER JOIN devices ON oauth_access_tokens.id = devices.access_token_id WHERE oauth_access_tokens.token = $1 AND oauth_access_tokens.revoked_at IS NULL LIMIT 1', [token], (err, result) => {
- done();
- if (err) {
- reject(err);
- return;
- }
- if (result.rows.length === 0) {
- err = new Error('Invalid access token');
- err.status = 401;
- reject(err);
- return;
- }
- req.accessTokenId = result.rows[0].id;
- req.scopes = result.rows[0].scopes.split(' ');
- req.accountId = result.rows[0].account_id;
- req.chosenLanguages = result.rows[0].chosen_languages;
- req.deviceId = result.rows[0].device_id;
- resolve();
- });
- });
- });
- /**
- * @param {any} req
- * @param {boolean=} required
- * @return {Promise.<void>}
- */
- const accountFromRequest = (req, required = true) => new Promise((resolve, reject) => {
- const authorization = req.headers.authorization;
- const location = url.parse(req.url, true);
- const accessToken = location.query.access_token || req.headers['sec-websocket-protocol'];
- if (!authorization && !accessToken) {
- if (required) {
- const err = new Error('Missing access token');
- err.status = 401;
- reject(err);
- return;
- } else {
- resolve();
- return;
- }
- }
- const token = authorization ? authorization.replace(/^Bearer /, '') : accessToken;
- resolve(accountFromToken(token, req));
- });
- /**
- * @param {any} req
- * @return {string}
- */
- const channelNameFromPath = req => {
- const { path, query } = req;
- const onlyMedia = isTruthy(query.only_media);
- switch (path) {
- case '/api/v1/streaming/user':
- return 'user';
- case '/api/v1/streaming/user/notification':
- return 'user:notification';
- case '/api/v1/streaming/public':
- return onlyMedia ? 'public:media' : 'public';
- case '/api/v1/streaming/public/local':
- return onlyMedia ? 'public:local:media' : 'public:local';
- case '/api/v1/streaming/public/remote':
- return onlyMedia ? 'public:remote:media' : 'public:remote';
- case '/api/v1/streaming/hashtag':
- return 'hashtag';
- case '/api/v1/streaming/hashtag/local':
- return 'hashtag:local';
- case '/api/v1/streaming/direct':
- return 'direct';
- case '/api/v1/streaming/list':
- return 'list';
- default:
- return undefined;
- }
- };
- const PUBLIC_CHANNELS = [
- 'public',
- 'public:media',
- 'public:local',
- 'public:local:media',
- 'public:remote',
- 'public:remote:media',
- 'hashtag',
- 'hashtag:local',
- ];
- /**
- * @param {any} req
- * @param {string} channelName
- * @return {Promise.<void>}
- */
- const checkScopes = (req, channelName) => new Promise((resolve, reject) => {
- log.silly(req.requestId, `Checking OAuth scopes for ${channelName}`);
- // When accessing public channels, no scopes are needed
- if (PUBLIC_CHANNELS.includes(channelName)) {
- resolve();
- return;
- }
- // The `read` scope has the highest priority, if the token has it
- // then it can access all streams
- const requiredScopes = ['read'];
- // When accessing specifically the notifications stream,
- // we need a read:notifications, while in all other cases,
- // we can allow access with read:statuses. Mind that the
- // user stream will not contain notifications unless
- // the token has either read or read:notifications scope
- // as well, this is handled separately.
- if (channelName === 'user:notification') {
- requiredScopes.push('read:notifications');
- } else {
- requiredScopes.push('read:statuses');
- }
- if (req.scopes && requiredScopes.some(requiredScope => req.scopes.includes(requiredScope))) {
- resolve();
- return;
- }
- const err = new Error('Access token does not cover required scopes');
- err.status = 401;
- reject(err);
- });
- /**
- * @param {any} info
- * @param {function(boolean, number, string): void} callback
- */
- const wsVerifyClient = (info, callback) => {
- // When verifying the websockets connection, we no longer pre-emptively
- // check OAuth scopes and drop the connection if they're missing. We only
- // drop the connection if access without token is not allowed by environment
- // variables. OAuth scope checks are moved to the point of subscription
- // to a specific stream.
- accountFromRequest(info.req, alwaysRequireAuth).then(() => {
- callback(true, undefined, undefined);
- }).catch(err => {
- log.error(info.req.requestId, err.toString());
- callback(false, 401, 'Unauthorized');
- });
- };
- /**
- * @typedef SystemMessageHandlers
- * @property {function(): void} onKill
- */
- /**
- * @param {any} req
- * @param {SystemMessageHandlers} eventHandlers
- * @return {function(string): void}
- */
- const createSystemMessageListener = (req, eventHandlers) => {
- return message => {
- const json = parseJSON(message, req);
- if (!json) return;
- const { event } = json;
- log.silly(req.requestId, `System message for ${req.accountId}: ${event}`);
- if (event === 'kill') {
- log.verbose(req.requestId, `Closing connection for ${req.accountId} due to expired access token`);
- eventHandlers.onKill();
- } else if (event === 'filters_changed') {
- log.verbose(req.requestId, `Invalidating filters cache for ${req.accountId}`);
- req.cachedFilters = null;
- }
- };
- };
- /**
- * @param {any} req
- * @param {any} res
- */
- const subscribeHttpToSystemChannel = (req, res) => {
- const accessTokenChannelId = `timeline:access_token:${req.accessTokenId}`;
- const systemChannelId = `timeline:system:${req.accountId}`;
- const listener = createSystemMessageListener(req, {
- onKill() {
- res.end();
- },
- });
- res.on('close', () => {
- unsubscribe(`${redisPrefix}${accessTokenChannelId}`, listener);
- unsubscribe(`${redisPrefix}${systemChannelId}`, listener);
- });
- subscribe(`${redisPrefix}${accessTokenChannelId}`, listener);
- subscribe(`${redisPrefix}${systemChannelId}`, listener);
- };
- /**
- * @param {any} req
- * @param {any} res
- * @param {function(Error=): void} next
- */
- const authenticationMiddleware = (req, res, next) => {
- if (req.method === 'OPTIONS') {
- next();
- return;
- }
- accountFromRequest(req, alwaysRequireAuth).then(() => checkScopes(req, channelNameFromPath(req))).then(() => {
- subscribeHttpToSystemChannel(req, res);
- }).then(() => {
- next();
- }).catch(err => {
- next(err);
- });
- };
- /**
- * @param {Error} err
- * @param {any} req
- * @param {any} res
- * @param {function(Error=): void} next
- */
- const errorMiddleware = (err, req, res, next) => {
- log.error(req.requestId, err.toString());
- if (res.headersSent) {
- next(err);
- return;
- }
- res.writeHead(err.status || 500, { 'Content-Type': 'application/json' });
- res.end(JSON.stringify({ error: err.status ? err.toString() : 'An unexpected error occurred' }));
- };
- /**
- * @param {array} arr
- * @param {number=} shift
- * @return {string}
- */
- const placeholders = (arr, shift = 0) => arr.map((_, i) => `$${i + 1 + shift}`).join(', ');
- /**
- * @param {string} listId
- * @param {any} req
- * @return {Promise.<void>}
- */
- const authorizeListAccess = (listId, req) => new Promise((resolve, reject) => {
- const { accountId } = req;
- pgPool.connect((err, client, done) => {
- if (err) {
- reject();
- return;
- }
- client.query('SELECT id, account_id FROM lists WHERE id = $1 LIMIT 1', [listId], (err, result) => {
- done();
- if (err || result.rows.length === 0 || result.rows[0].account_id !== accountId) {
- reject();
- return;
- }
- resolve();
- });
- });
- });
- /**
- * @param {string[]} ids
- * @param {any} req
- * @param {function(string, string): void} output
- * @param {function(string[], function(string): void): void} attachCloseHandler
- * @param {boolean=} needsFiltering
- * @return {function(string): void}
- */
- const streamFrom = (ids, req, output, attachCloseHandler, needsFiltering = false) => {
- const accountId = req.accountId || req.remoteAddress;
- log.verbose(req.requestId, `Starting stream from ${ids.join(', ')} for ${accountId}`);
- const listener = message => {
- const json = parseJSON(message, req);
- if (!json) return;
- const { event, payload, queued_at } = json;
- const transmit = () => {
- const now = new Date().getTime();
- const delta = now - queued_at;
- const encodedPayload = typeof payload === 'object' ? JSON.stringify(payload) : payload;
- log.silly(req.requestId, `Transmitting for ${accountId}: ${event} ${encodedPayload} Delay: ${delta}ms`);
- output(event, encodedPayload);
- };
- // Only messages that may require filtering are statuses, since notifications
- // are already personalized and deletes do not matter
- if (!needsFiltering || event !== 'update') {
- transmit();
- return;
- }
- const unpackedPayload = payload;
- const targetAccountIds = [unpackedPayload.account.id].concat(unpackedPayload.mentions.map(item => item.id));
- const accountDomain = unpackedPayload.account.acct.split('@')[1];
- if (Array.isArray(req.chosenLanguages) && unpackedPayload.language !== null && req.chosenLanguages.indexOf(unpackedPayload.language) === -1) {
- log.silly(req.requestId, `Message ${unpackedPayload.id} filtered by language (${unpackedPayload.language})`);
- return;
- }
- // When the account is not logged in, it is not necessary to confirm the block or mute
- if (!req.accountId) {
- transmit();
- return;
- }
- pgPool.connect((err, client, done) => {
- if (err) {
- log.error(err);
- return;
- }
- const queries = [
- client.query(`SELECT 1
- FROM blocks
- WHERE (account_id = $1 AND target_account_id IN (${placeholders(targetAccountIds, 2)}))
- OR (account_id = $2 AND target_account_id = $1)
- UNION
- SELECT 1
- FROM mutes
- WHERE account_id = $1
- AND target_account_id IN (${placeholders(targetAccountIds, 2)})`, [req.accountId, unpackedPayload.account.id].concat(targetAccountIds)),
- ];
- if (accountDomain) {
- queries.push(client.query('SELECT 1 FROM account_domain_blocks WHERE account_id = $1 AND domain = $2', [req.accountId, accountDomain]));
- }
- if (!unpackedPayload.filtered && !req.cachedFilters) {
- queries.push(client.query('SELECT filter.id AS id, filter.phrase AS title, filter.context AS context, filter.expires_at AS expires_at, filter.action AS filter_action, keyword.keyword AS keyword, keyword.whole_word AS whole_word FROM custom_filter_keywords keyword JOIN custom_filters filter ON keyword.custom_filter_id = filter.id WHERE filter.account_id = $1 AND (filter.expires_at IS NULL OR filter.expires_at > NOW())', [req.accountId]));
- }
- Promise.all(queries).then(values => {
- done();
- if (values[0].rows.length > 0 || (accountDomain && values[1].rows.length > 0)) {
- return;
- }
- if (!unpackedPayload.filtered && !req.cachedFilters) {
- const filterRows = values[accountDomain ? 2 : 1].rows;
- req.cachedFilters = filterRows.reduce((cache, row) => {
- if (cache[row.id]) {
- cache[row.id].keywords.push([row.keyword, row.whole_word]);
- } else {
- cache[row.id] = {
- keywords: [[row.keyword, row.whole_word]],
- expires_at: row.expires_at,
- repr: {
- id: row.id,
- title: row.title,
- context: row.context,
- expires_at: row.expires_at,
- filter_action: ['warn', 'hide'][row.filter_action],
- },
- };
- }
- return cache;
- }, {});
- Object.keys(req.cachedFilters).forEach((key) => {
- req.cachedFilters[key].regexp = new RegExp(req.cachedFilters[key].keywords.map(([keyword, whole_word]) => {
- let expr = keyword.replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
- if (whole_word) {
- if (/^[\w]/.test(expr)) {
- expr = `\\b${expr}`;
- }
- if (/[\w]$/.test(expr)) {
- expr = `${expr}\\b`;
- }
- }
- return expr;
- }).join('|'), 'i');
- });
- }
- // Check filters
- if (req.cachedFilters && !unpackedPayload.filtered) {
- const status = unpackedPayload;
- const searchContent = ([status.spoiler_text || '', status.content].concat((status.poll && status.poll.options) ? status.poll.options.map(option => option.title) : [])).concat(status.media_attachments.map(att => att.description)).join('\n\n').replace(/<br\s*\/?>/g, '\n').replace(/<\/p><p>/g, '\n\n');
- const searchIndex = JSDOM.fragment(searchContent).textContent;
- const now = new Date();
- payload.filtered = [];
- Object.values(req.cachedFilters).forEach((cachedFilter) => {
- if ((cachedFilter.expires_at === null || cachedFilter.expires_at > now)) {
- const keyword_matches = searchIndex.match(cachedFilter.regexp);
- if (keyword_matches) {
- payload.filtered.push({
- filter: cachedFilter.repr,
- keyword_matches,
- });
- }
- }
- });
- }
- transmit();
- }).catch(err => {
- log.error(err);
- done();
- });
- });
- };
- ids.forEach(id => {
- subscribe(`${redisPrefix}${id}`, listener);
- });
- if (attachCloseHandler) {
- attachCloseHandler(ids.map(id => `${redisPrefix}${id}`), listener);
- }
- return listener;
- };
- /**
- * @param {any} req
- * @param {any} res
- * @return {function(string, string): void}
- */
- const streamToHttp = (req, res) => {
- const accountId = req.accountId || req.remoteAddress;
- res.setHeader('Content-Type', 'text/event-stream');
- res.setHeader('Cache-Control', 'no-store');
- res.setHeader('Transfer-Encoding', 'chunked');
- res.write(':)\n');
- const heartbeat = setInterval(() => res.write(':thump\n'), 15000);
- req.on('close', () => {
- log.verbose(req.requestId, `Ending stream for ${accountId}`);
- clearInterval(heartbeat);
- });
- return (event, payload) => {
- res.write(`event: ${event}\n`);
- res.write(`data: ${payload}\n\n`);
- };
- };
- /**
- * @param {any} req
- * @param {function(): void} [closeHandler]
- * @return {function(string[]): void}
- */
- const streamHttpEnd = (req, closeHandler = undefined) => (ids) => {
- req.on('close', () => {
- ids.forEach(id => {
- unsubscribe(id);
- });
- if (closeHandler) {
- closeHandler();
- }
- });
- };
- /**
- * @param {any} req
- * @param {any} ws
- * @param {string[]} streamName
- * @return {function(string, string): void}
- */
- const streamToWs = (req, ws, streamName) => (event, payload) => {
- if (ws.readyState !== ws.OPEN) {
- log.error(req.requestId, 'Tried writing to closed socket');
- return;
- }
- ws.send(JSON.stringify({ stream: streamName, event, payload }));
- };
- /**
- * @param {any} res
- */
- const httpNotFound = res => {
- res.writeHead(404, { 'Content-Type': 'application/json' });
- res.end(JSON.stringify({ error: 'Not found' }));
- };
- app.use(setRequestId);
- app.use(setRemoteAddress);
- app.use(allowCrossDomain);
- app.get('/api/v1/streaming/health', (req, res) => {
- res.writeHead(200, { 'Content-Type': 'text/plain' });
- res.end('OK');
- });
- app.use(authenticationMiddleware);
- app.use(errorMiddleware);
- app.get('/api/v1/streaming/*', (req, res) => {
- channelNameToIds(req, channelNameFromPath(req), req.query).then(({ channelIds, options }) => {
- const onSend = streamToHttp(req, res);
- const onEnd = streamHttpEnd(req, subscriptionHeartbeat(channelIds));
- streamFrom(channelIds, req, onSend, onEnd, options.needsFiltering);
- }).catch(err => {
- log.verbose(req.requestId, 'Subscription error:', err.toString());
- httpNotFound(res);
- });
- });
- const wss = new WebSocket.Server({ server, verifyClient: wsVerifyClient });
- /**
- * @typedef StreamParams
- * @property {string} [tag]
- * @property {string} [list]
- * @property {string} [only_media]
- */
- /**
- * @param {any} req
- * @return {string[]}
- */
- const channelsForUserStream = req => {
- const arr = [`timeline:${req.accountId}`];
- if (isInScope(req, ['crypto']) && req.deviceId) {
- arr.push(`timeline:${req.accountId}:${req.deviceId}`);
- }
- if (isInScope(req, ['read', 'read:notifications'])) {
- arr.push(`timeline:${req.accountId}:notifications`);
- }
- return arr;
- };
- /**
- * See app/lib/ascii_folder.rb for the canon definitions
- * of these constants
- */
- const NON_ASCII_CHARS = 'ÀÁÂÃÄÅàáâãäåĀāĂ㥹ÇçĆćĈĉĊċČčÐðĎďĐđÈÉÊËèéêëĒēĔĕĖėĘęĚěĜĝĞğĠġĢģĤĥĦħÌÍÎÏìíîïĨĩĪīĬĭĮįİıĴĵĶķĸĹĺĻļĽľĿŀŁłÑñŃńŅņŇňʼnŊŋÒÓÔÕÖØòóôõöøŌōŎŏŐőŔŕŖŗŘřŚśŜŝŞşŠšſŢţŤťŦŧÙÚÛÜùúûüŨũŪūŬŭŮůŰűŲųŴŵÝýÿŶŷŸŹźŻżŽž';
- const EQUIVALENT_ASCII_CHARS = 'AAAAAAaaaaaaAaAaAaCcCcCcCcCcDdDdDdEEEEeeeeEeEeEeEeEeGgGgGgGgHhHhIIIIiiiiIiIiIiIiIiJjKkkLlLlLlLlLlNnNnNnNnnNnOOOOOOooooooOoOoOoRrRrRrSsSsSsSssTtTtTtUUUUuuuuUuUuUuUuUuUuWwYyyYyYZzZzZz';
- /**
- * @param {string} str
- * @return {string}
- */
- const foldToASCII = str => {
- const regex = new RegExp(NON_ASCII_CHARS.split('').join('|'), 'g');
- return str.replace(regex, match => {
- const index = NON_ASCII_CHARS.indexOf(match);
- return EQUIVALENT_ASCII_CHARS[index];
- });
- };
- /**
- * @param {string} str
- * @return {string}
- */
- const normalizeHashtag = str => {
- return foldToASCII(str.normalize('NFKC').toLowerCase()).replace(/[^\p{L}\p{N}_\u00b7\u200c]/gu, '');
- };
- /**
- * @param {any} req
- * @param {string} name
- * @param {StreamParams} params
- * @return {Promise.<{ channelIds: string[], options: { needsFiltering: boolean } }>}
- */
- const channelNameToIds = (req, name, params) => new Promise((resolve, reject) => {
- switch (name) {
- case 'user':
- resolve({
- channelIds: channelsForUserStream(req),
- options: { needsFiltering: false },
- });
- break;
- case 'user:notification':
- resolve({
- channelIds: [`timeline:${req.accountId}:notifications`],
- options: { needsFiltering: false },
- });
- break;
- case 'public':
- resolve({
- channelIds: ['timeline:public'],
- options: { needsFiltering: true },
- });
- break;
- case 'public:local':
- resolve({
- channelIds: ['timeline:public:local'],
- options: { needsFiltering: true },
- });
- break;
- case 'public:remote':
- resolve({
- channelIds: ['timeline:public:remote'],
- options: { needsFiltering: true },
- });
- break;
- case 'public:media':
- resolve({
- channelIds: ['timeline:public:media'],
- options: { needsFiltering: true },
- });
- break;
- case 'public:local:media':
- resolve({
- channelIds: ['timeline:public:local:media'],
- options: { needsFiltering: true },
- });
- break;
- case 'public:remote:media':
- resolve({
- channelIds: ['timeline:public:remote:media'],
- options: { needsFiltering: true },
- });
- break;
- case 'direct':
- resolve({
- channelIds: [`timeline:direct:${req.accountId}`],
- options: { needsFiltering: false },
- });
- break;
- case 'hashtag':
- if (!params.tag || params.tag.length === 0) {
- reject('No tag for stream provided');
- } else {
- resolve({
- channelIds: [`timeline:hashtag:${normalizeHashtag(params.tag)}`],
- options: { needsFiltering: true },
- });
- }
- break;
- case 'hashtag:local':
- if (!params.tag || params.tag.length === 0) {
- reject('No tag for stream provided');
- } else {
- resolve({
- channelIds: [`timeline:hashtag:${normalizeHashtag(params.tag)}:local`],
- options: { needsFiltering: true },
- });
- }
- break;
- case 'list':
- authorizeListAccess(params.list, req).then(() => {
- resolve({
- channelIds: [`timeline:list:${params.list}`],
- options: { needsFiltering: false },
- });
- }).catch(() => {
- reject('Not authorized to stream this list');
- });
- break;
- default:
- reject('Unknown stream type');
- }
- });
- /**
- * @param {string} channelName
- * @param {StreamParams} params
- * @return {string[]}
- */
- const streamNameFromChannelName = (channelName, params) => {
- if (channelName === 'list') {
- return [channelName, params.list];
- } else if (['hashtag', 'hashtag:local'].includes(channelName)) {
- return [channelName, params.tag];
- } else {
- return [channelName];
- }
- };
- /**
- * @typedef WebSocketSession
- * @property {any} socket
- * @property {any} request
- * @property {Object.<string, { listener: function(string): void, stopHeartbeat: function(): void }>} subscriptions
- */
- /**
- * @param {WebSocketSession} session
- * @param {string} channelName
- * @param {StreamParams} params
- */
- const subscribeWebsocketToChannel = ({ socket, request, subscriptions }, channelName, params) =>
- checkScopes(request, channelName).then(() => channelNameToIds(request, channelName, params)).then(({
- channelIds,
- options,
- }) => {
- if (subscriptions[channelIds.join(';')]) {
- return;
- }
- const onSend = streamToWs(request, socket, streamNameFromChannelName(channelName, params));
- const stopHeartbeat = subscriptionHeartbeat(channelIds);
- const listener = streamFrom(channelIds, request, onSend, undefined, options.needsFiltering);
- subscriptions[channelIds.join(';')] = {
- listener,
- stopHeartbeat,
- };
- }).catch(err => {
- log.verbose(request.requestId, 'Subscription error:', err.toString());
- socket.send(JSON.stringify({ error: err.toString() }));
- });
- /**
- * @param {WebSocketSession} session
- * @param {string} channelName
- * @param {StreamParams} params
- */
- const unsubscribeWebsocketFromChannel = ({ socket, request, subscriptions }, channelName, params) =>
- channelNameToIds(request, channelName, params).then(({ channelIds }) => {
- log.verbose(request.requestId, `Ending stream from ${channelIds.join(', ')} for ${request.accountId}`);
- const subscription = subscriptions[channelIds.join(';')];
- if (!subscription) {
- return;
- }
- const { listener, stopHeartbeat } = subscription;
- channelIds.forEach(channelId => {
- unsubscribe(`${redisPrefix}${channelId}`, listener);
- });
- stopHeartbeat();
- delete subscriptions[channelIds.join(';')];
- }).catch(err => {
- log.verbose(request.requestId, 'Unsubscription error:', err);
- socket.send(JSON.stringify({ error: err.toString() }));
- });
- /**
- * @param {WebSocketSession} session
- */
- const subscribeWebsocketToSystemChannel = ({ socket, request, subscriptions }) => {
- const accessTokenChannelId = `timeline:access_token:${request.accessTokenId}`;
- const systemChannelId = `timeline:system:${request.accountId}`;
- const listener = createSystemMessageListener(request, {
- onKill() {
- socket.close();
- },
- });
- subscribe(`${redisPrefix}${accessTokenChannelId}`, listener);
- subscribe(`${redisPrefix}${systemChannelId}`, listener);
- subscriptions[accessTokenChannelId] = {
- listener,
- stopHeartbeat: () => {
- },
- };
- subscriptions[systemChannelId] = {
- listener,
- stopHeartbeat: () => {
- },
- };
- };
- /**
- * @param {string|string[]} arrayOrString
- * @return {string}
- */
- const firstParam = arrayOrString => {
- if (Array.isArray(arrayOrString)) {
- return arrayOrString[0];
- } else {
- return arrayOrString;
- }
- };
- wss.on('connection', (ws, req) => {
- const location = url.parse(req.url, true);
- req.requestId = uuid.v4();
- req.remoteAddress = ws._socket.remoteAddress;
- ws.isAlive = true;
- ws.on('pong', () => {
- ws.isAlive = true;
- });
- /**
- * @type {WebSocketSession}
- */
- const session = {
- socket: ws,
- request: req,
- subscriptions: {},
- };
- const onEnd = () => {
- const keys = Object.keys(session.subscriptions);
- keys.forEach(channelIds => {
- const { listener, stopHeartbeat } = session.subscriptions[channelIds];
- channelIds.split(';').forEach(channelId => {
- unsubscribe(`${redisPrefix}${channelId}`, listener);
- });
- stopHeartbeat();
- });
- };
- ws.on('close', onEnd);
- ws.on('error', onEnd);
- ws.on('message', data => {
- const json = parseJSON(data, session.request);
- if (!json) return;
- const { type, stream, ...params } = json;
- if (type === 'subscribe') {
- subscribeWebsocketToChannel(session, firstParam(stream), params);
- } else if (type === 'unsubscribe') {
- unsubscribeWebsocketFromChannel(session, firstParam(stream), params);
- } else {
- // Unknown action type
- }
- });
- subscribeWebsocketToSystemChannel(session);
- if (location.query.stream) {
- subscribeWebsocketToChannel(session, firstParam(location.query.stream), location.query);
- }
- });
- setInterval(() => {
- wss.clients.forEach(ws => {
- if (ws.isAlive === false) {
- ws.terminate();
- return;
- }
- ws.isAlive = false;
- ws.ping('', false);
- });
- }, 30000);
- attachServerWithConfig(server, address => {
- log.warn(`Worker ${workerId} now listening on ${address}`);
- });
- const onExit = () => {
- log.warn(`Worker ${workerId} exiting`);
- server.close();
- process.exit(0);
- };
- const onError = (err) => {
- log.error(err);
- server.close();
- process.exit(0);
- };
- process.on('SIGINT', onExit);
- process.on('SIGTERM', onExit);
- process.on('exit', onExit);
- process.on('uncaughtException', onError);
- };
- /**
- * @param {any} server
- * @param {function(string): void} [onSuccess]
- */
- const attachServerWithConfig = (server, onSuccess) => {
- if (process.env.SOCKET || process.env.PORT && isNaN(+process.env.PORT)) {
- server.listen(process.env.SOCKET || process.env.PORT, () => {
- if (onSuccess) {
- fs.chmodSync(server.address(), 0o666);
- onSuccess(server.address());
- }
- });
- } else {
- server.listen(+process.env.PORT || 4000, process.env.BIND || '127.0.0.1', () => {
- if (onSuccess) {
- onSuccess(`${server.address().address}:${server.address().port}`);
- }
- });
- }
- };
- /**
- * @param {function(Error=): void} onSuccess
- */
- const onPortAvailable = onSuccess => {
- const testServer = http.createServer();
- testServer.once('error', err => {
- onSuccess(err);
- });
- testServer.once('listening', () => {
- testServer.once('close', () => onSuccess());
- testServer.close();
- });
- attachServerWithConfig(testServer);
- };
- onPortAvailable(err => {
- if (err) {
- log.error('Could not start server, the port or socket is in use');
- return;
- }
- throng({
- workers: numWorkers,
- lifetime: Infinity,
- start: startWorker,
- master: startMaster,
- });
- });
|