1
0

account.rb 18 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596
  1. # frozen_string_literal: true
  2. # == Schema Information
  3. #
  4. # Table name: accounts
  5. #
  6. # id :bigint(8) not null, primary key
  7. # username :string default(""), not null
  8. # domain :string
  9. # secret :string default(""), not null
  10. # private_key :text
  11. # public_key :text default(""), not null
  12. # remote_url :string default(""), not null
  13. # salmon_url :string default(""), not null
  14. # hub_url :string default(""), not null
  15. # created_at :datetime not null
  16. # updated_at :datetime not null
  17. # note :text default(""), not null
  18. # display_name :string default(""), not null
  19. # uri :string default(""), not null
  20. # url :string
  21. # avatar_file_name :string
  22. # avatar_content_type :string
  23. # avatar_file_size :integer
  24. # avatar_updated_at :datetime
  25. # header_file_name :string
  26. # header_content_type :string
  27. # header_file_size :integer
  28. # header_updated_at :datetime
  29. # avatar_remote_url :string
  30. # subscription_expires_at :datetime
  31. # locked :boolean default(FALSE), not null
  32. # header_remote_url :string default(""), not null
  33. # last_webfingered_at :datetime
  34. # inbox_url :string default(""), not null
  35. # outbox_url :string default(""), not null
  36. # shared_inbox_url :string default(""), not null
  37. # followers_url :string default(""), not null
  38. # protocol :integer default("ostatus"), not null
  39. # memorial :boolean default(FALSE), not null
  40. # moved_to_account_id :bigint(8)
  41. # featured_collection_url :string
  42. # fields :jsonb
  43. # actor_type :string
  44. # discoverable :boolean
  45. # also_known_as :string is an Array
  46. # silenced_at :datetime
  47. # suspended_at :datetime
  48. # trust_level :integer
  49. # hide_collections :boolean
  50. # avatar_storage_schema_version :integer
  51. # header_storage_schema_version :integer
  52. # devices_url :string
  53. # sensitized_at :datetime
  54. # suspension_origin :integer
  55. #
  56. class Account < ApplicationRecord
  57. USERNAME_RE = /[a-z0-9_]+([a-z0-9_\.-]+[a-z0-9_]+)?/i
  58. MENTION_RE = /(?<=^|[^\/[:word:]])@((#{USERNAME_RE})(?:@[[:word:]\.\-]+[a-z0-9]+)?)/i
  59. include AccountAssociations
  60. include AccountAvatar
  61. include AccountFinderConcern
  62. include AccountHeader
  63. include AccountInteractions
  64. include Attachmentable
  65. include Paginable
  66. include AccountCounters
  67. include DomainNormalizable
  68. TRUST_LEVELS = {
  69. untrusted: 0,
  70. trusted: 1,
  71. }.freeze
  72. enum protocol: [:ostatus, :activitypub]
  73. enum suspension_origin: [:local, :remote], _prefix: true
  74. validates :username, presence: true
  75. validates_with UniqueUsernameValidator, if: -> { will_save_change_to_username? }
  76. # Remote user validations
  77. validates :username, format: { with: /\A#{USERNAME_RE}\z/i }, if: -> { !local? && will_save_change_to_username? }
  78. # Local user validations
  79. validates :username, format: { with: /\A[a-z0-9_]+\z/i }, length: { maximum: 30 }, if: -> { local? && will_save_change_to_username? && actor_type != 'Application' }
  80. validates_with UnreservedUsernameValidator, if: -> { local? && will_save_change_to_username? }
  81. validates :display_name, length: { maximum: 30 }, if: -> { local? && will_save_change_to_display_name? }
  82. validates :note, note_length: { maximum: 500 }, if: -> { local? && will_save_change_to_note? }
  83. validates :fields, length: { maximum: 4 }, if: -> { local? && will_save_change_to_fields? }
  84. scope :remote, -> { where.not(domain: nil) }
  85. scope :local, -> { where(domain: nil) }
  86. scope :expiring, ->(time) { remote.where.not(subscription_expires_at: nil).where('subscription_expires_at < ?', time) }
  87. scope :partitioned, -> { order(Arel.sql('row_number() over (partition by domain)')) }
  88. scope :silenced, -> { where.not(silenced_at: nil) }
  89. scope :suspended, -> { where.not(suspended_at: nil) }
  90. scope :sensitized, -> { where.not(sensitized_at: nil) }
  91. scope :without_suspended, -> { where(suspended_at: nil) }
  92. scope :without_silenced, -> { where(silenced_at: nil) }
  93. scope :recent, -> { reorder(id: :desc) }
  94. scope :bots, -> { where(actor_type: %w(Application Service)) }
  95. scope :groups, -> { where(actor_type: 'Group') }
  96. scope :alphabetic, -> { order(domain: :asc, username: :asc) }
  97. scope :by_domain_accounts, -> { group(:domain).select(:domain, 'COUNT(*) AS accounts_count').order('accounts_count desc') }
  98. scope :matches_username, ->(value) { where(arel_table[:username].matches("#{value}%")) }
  99. scope :matches_display_name, ->(value) { where(arel_table[:display_name].matches("#{value}%")) }
  100. scope :matches_domain, ->(value) { where(arel_table[:domain].matches("%#{value}%")) }
  101. scope :searchable, -> { without_suspended.where(moved_to_account_id: nil) }
  102. scope :discoverable, -> { searchable.without_silenced.where(discoverable: true).left_outer_joins(:account_stat) }
  103. scope :tagged_with, ->(tag) { joins(:accounts_tags).where(accounts_tags: { tag_id: tag }) }
  104. scope :by_recent_status, -> { order(Arel.sql('(case when account_stats.last_status_at is null then 1 else 0 end) asc, account_stats.last_status_at desc, accounts.id desc')) }
  105. scope :by_recent_sign_in, -> { order(Arel.sql('(case when users.current_sign_in_at is null then 1 else 0 end) asc, users.current_sign_in_at desc, accounts.id desc')) }
  106. scope :popular, -> { order('account_stats.followers_count desc') }
  107. scope :by_domain_and_subdomains, ->(domain) { where(domain: domain).or(where(arel_table[:domain].matches('%.' + domain))) }
  108. scope :not_excluded_by_account, ->(account) { where.not(id: account.excluded_from_timeline_account_ids) }
  109. scope :not_domain_blocked_by_account, ->(account) { where(arel_table[:domain].eq(nil).or(arel_table[:domain].not_in(account.excluded_from_timeline_domains))) }
  110. delegate :email,
  111. :unconfirmed_email,
  112. :current_sign_in_ip,
  113. :current_sign_in_at,
  114. :confirmed?,
  115. :approved?,
  116. :pending?,
  117. :disabled?,
  118. :unconfirmed_or_pending?,
  119. :role,
  120. :admin?,
  121. :moderator?,
  122. :staff?,
  123. :locale,
  124. :hides_network?,
  125. :shows_application?,
  126. to: :user,
  127. prefix: true,
  128. allow_nil: true
  129. delegate :chosen_languages, to: :user, prefix: false, allow_nil: true
  130. update_index('accounts#account', :self)
  131. def local?
  132. domain.nil?
  133. end
  134. def moved?
  135. moved_to_account_id.present?
  136. end
  137. def bot?
  138. %w(Application Service).include? actor_type
  139. end
  140. def instance_actor?
  141. id == -99
  142. end
  143. alias bot bot?
  144. def bot=(val)
  145. self.actor_type = ActiveModel::Type::Boolean.new.cast(val) ? 'Service' : 'Person'
  146. end
  147. def group?
  148. actor_type == 'Group'
  149. end
  150. alias group group?
  151. def acct
  152. local? ? username : "#{username}@#{domain}"
  153. end
  154. def pretty_acct
  155. local? ? username : "#{username}@#{Addressable::IDNA.to_unicode(domain)}"
  156. end
  157. def local_username_and_domain
  158. "#{username}@#{Rails.configuration.x.local_domain}"
  159. end
  160. def local_followers_count
  161. Follow.where(target_account_id: id).count
  162. end
  163. def to_webfinger_s
  164. "acct:#{local_username_and_domain}"
  165. end
  166. def subscribed?
  167. subscription_expires_at.present?
  168. end
  169. def searchable?
  170. !(suspended? || moved?)
  171. end
  172. def possibly_stale?
  173. last_webfingered_at.nil? || last_webfingered_at <= 1.day.ago
  174. end
  175. def trust_level
  176. self[:trust_level] || 0
  177. end
  178. def refresh!
  179. ResolveAccountService.new.call(acct) unless local?
  180. end
  181. def silenced?
  182. silenced_at.present?
  183. end
  184. def silence!(date = Time.now.utc)
  185. update!(silenced_at: date)
  186. end
  187. def unsilence!
  188. update!(silenced_at: nil)
  189. end
  190. def suspended?
  191. suspended_at.present?
  192. end
  193. def suspended_permanently?
  194. suspended? && deletion_request.nil?
  195. end
  196. def suspended_temporarily?
  197. suspended? && deletion_request.present?
  198. end
  199. def suspend!(date: Time.now.utc, origin: :local)
  200. transaction do
  201. create_deletion_request!
  202. update!(suspended_at: date, suspension_origin: origin)
  203. end
  204. end
  205. def unsuspend!
  206. transaction do
  207. deletion_request&.destroy!
  208. update!(suspended_at: nil, suspension_origin: nil)
  209. end
  210. end
  211. def sensitized?
  212. sensitized_at.present?
  213. end
  214. def sensitize!(date = Time.now.utc)
  215. update!(sensitized_at: date)
  216. end
  217. def unsensitize!
  218. update!(sensitized_at: nil)
  219. end
  220. def memorialize!
  221. update!(memorial: true)
  222. end
  223. def sign?
  224. true
  225. end
  226. def keypair
  227. @keypair ||= OpenSSL::PKey::RSA.new(private_key || public_key)
  228. end
  229. def tags_as_strings=(tag_names)
  230. hashtags_map = Tag.find_or_create_by_names(tag_names).each_with_object({}) { |tag, h| h[tag.name] = tag }
  231. # Remove hashtags that are to be deleted
  232. tags.each do |tag|
  233. if hashtags_map.key?(tag.name)
  234. hashtags_map.delete(tag.name)
  235. else
  236. transaction do
  237. tags.delete(tag)
  238. tag.decrement_count!(:accounts_count)
  239. end
  240. end
  241. end
  242. # Add hashtags that were so far missing
  243. hashtags_map.each_value do |tag|
  244. transaction do
  245. tags << tag
  246. tag.increment_count!(:accounts_count)
  247. end
  248. end
  249. end
  250. def also_known_as
  251. self[:also_known_as] || []
  252. end
  253. def fields
  254. (self[:fields] || []).map { |f| Field.new(self, f) }
  255. end
  256. def fields_attributes=(attributes)
  257. fields = []
  258. old_fields = self[:fields] || []
  259. old_fields = [] if old_fields.is_a?(Hash)
  260. if attributes.is_a?(Hash)
  261. attributes.each_value do |attr|
  262. next if attr[:name].blank?
  263. previous = old_fields.find { |item| item['value'] == attr[:value] }
  264. if previous && previous['verified_at'].present?
  265. attr[:verified_at] = previous['verified_at']
  266. end
  267. fields << attr
  268. end
  269. end
  270. self[:fields] = fields
  271. end
  272. DEFAULT_FIELDS_SIZE = 4
  273. def build_fields
  274. return if fields.size >= DEFAULT_FIELDS_SIZE
  275. tmp = self[:fields] || []
  276. tmp = [] if tmp.is_a?(Hash)
  277. (DEFAULT_FIELDS_SIZE - tmp.size).times do
  278. tmp << { name: '', value: '' }
  279. end
  280. self.fields = tmp
  281. end
  282. def save_with_optional_media!
  283. save!
  284. rescue ActiveRecord::RecordInvalid
  285. self.avatar = nil
  286. self.header = nil
  287. save!
  288. end
  289. def hides_followers?
  290. hide_collections? || user_hides_network?
  291. end
  292. def hides_following?
  293. hide_collections? || user_hides_network?
  294. end
  295. def object_type
  296. :person
  297. end
  298. def to_param
  299. username
  300. end
  301. def excluded_from_timeline_account_ids
  302. Rails.cache.fetch("exclude_account_ids_for:#{id}") { blocking.pluck(:target_account_id) + blocked_by.pluck(:account_id) + muting.pluck(:target_account_id) }
  303. end
  304. def excluded_from_timeline_domains
  305. Rails.cache.fetch("exclude_domains_for:#{id}") { domain_blocks.pluck(:domain) }
  306. end
  307. def preferred_inbox_url
  308. shared_inbox_url.presence || inbox_url
  309. end
  310. def synchronization_uri_prefix
  311. return 'local' if local?
  312. @synchronization_uri_prefix ||= uri[/http(s?):\/\/[^\/]+\//]
  313. end
  314. class Field < ActiveModelSerializers::Model
  315. attributes :name, :value, :verified_at, :account, :errors
  316. def initialize(account, attributes)
  317. @account = account
  318. @attributes = attributes
  319. @name = attributes['name'].strip[0, string_limit]
  320. @value = attributes['value'].strip[0, string_limit]
  321. @verified_at = attributes['verified_at']&.to_datetime
  322. @errors = {}
  323. end
  324. def verified?
  325. verified_at.present?
  326. end
  327. def value_for_verification
  328. @value_for_verification ||= begin
  329. if account.local?
  330. value
  331. else
  332. ActionController::Base.helpers.strip_tags(value)
  333. end
  334. end
  335. end
  336. def verifiable?
  337. value_for_verification.present? && value_for_verification.start_with?('http://', 'https://')
  338. end
  339. def mark_verified!
  340. @verified_at = Time.now.utc
  341. @attributes['verified_at'] = @verified_at
  342. end
  343. def to_h
  344. { name: @name, value: @value, verified_at: @verified_at }
  345. end
  346. private
  347. def string_limit
  348. if account.local?
  349. 255
  350. else
  351. 2047
  352. end
  353. end
  354. end
  355. class << self
  356. def readonly_attributes
  357. super - %w(statuses_count following_count followers_count)
  358. end
  359. def domains
  360. reorder(nil).pluck(Arel.sql('distinct accounts.domain'))
  361. end
  362. def inboxes
  363. urls = reorder(nil).where(protocol: :activitypub).pluck(Arel.sql("distinct coalesce(nullif(accounts.shared_inbox_url, ''), accounts.inbox_url)"))
  364. DeliveryFailureTracker.without_unavailable(urls)
  365. end
  366. def search_for(terms, limit = 10, offset = 0)
  367. textsearch, query = generate_query_for_search(terms)
  368. sql = <<-SQL.squish
  369. SELECT
  370. accounts.*,
  371. ts_rank_cd(#{textsearch}, #{query}, 32) AS rank
  372. FROM accounts
  373. WHERE #{query} @@ #{textsearch}
  374. AND accounts.suspended_at IS NULL
  375. AND accounts.moved_to_account_id IS NULL
  376. ORDER BY rank DESC
  377. LIMIT ? OFFSET ?
  378. SQL
  379. records = find_by_sql([sql, limit, offset])
  380. ActiveRecord::Associations::Preloader.new.preload(records, :account_stat)
  381. records
  382. end
  383. def advanced_search_for(terms, account, limit = 10, following = false, offset = 0)
  384. textsearch, query = generate_query_for_search(terms)
  385. if following
  386. sql = <<-SQL.squish
  387. WITH first_degree AS (
  388. SELECT target_account_id
  389. FROM follows
  390. WHERE account_id = ?
  391. UNION ALL
  392. SELECT ?
  393. )
  394. SELECT
  395. accounts.*,
  396. (count(f.id) + 1) * ts_rank_cd(#{textsearch}, #{query}, 32) AS rank
  397. FROM accounts
  398. LEFT OUTER JOIN follows AS f ON (accounts.id = f.account_id AND f.target_account_id = ?)
  399. WHERE accounts.id IN (SELECT * FROM first_degree)
  400. AND #{query} @@ #{textsearch}
  401. AND accounts.suspended_at IS NULL
  402. AND accounts.moved_to_account_id IS NULL
  403. GROUP BY accounts.id
  404. ORDER BY rank DESC
  405. LIMIT ? OFFSET ?
  406. SQL
  407. records = find_by_sql([sql, account.id, account.id, account.id, limit, offset])
  408. else
  409. sql = <<-SQL.squish
  410. SELECT
  411. accounts.*,
  412. (count(f.id) + 1) * ts_rank_cd(#{textsearch}, #{query}, 32) AS rank
  413. FROM accounts
  414. LEFT OUTER JOIN follows AS f ON (accounts.id = f.account_id AND f.target_account_id = ?) OR (accounts.id = f.target_account_id AND f.account_id = ?)
  415. WHERE #{query} @@ #{textsearch}
  416. AND accounts.suspended_at IS NULL
  417. AND accounts.moved_to_account_id IS NULL
  418. GROUP BY accounts.id
  419. ORDER BY rank DESC
  420. LIMIT ? OFFSET ?
  421. SQL
  422. records = find_by_sql([sql, account.id, account.id, limit, offset])
  423. end
  424. ActiveRecord::Associations::Preloader.new.preload(records, :account_stat)
  425. records
  426. end
  427. def from_text(text)
  428. return [] if text.blank?
  429. text.scan(MENTION_RE).map { |match| match.first.split('@', 2) }.uniq.map do |(username, domain)|
  430. domain = begin
  431. if TagManager.instance.local_domain?(domain)
  432. nil
  433. else
  434. TagManager.instance.normalize_domain(domain)
  435. end
  436. end
  437. EntityCache.instance.mention(username, domain)
  438. end.compact
  439. end
  440. private
  441. def generate_query_for_search(terms)
  442. terms = Arel.sql(connection.quote(terms.gsub(/['?\\:]/, ' ')))
  443. textsearch = "(setweight(to_tsvector('simple', accounts.display_name), 'A') || setweight(to_tsvector('simple', accounts.username), 'B') || setweight(to_tsvector('simple', coalesce(accounts.domain, '')), 'C'))"
  444. query = "to_tsquery('simple', ''' ' || #{terms} || ' ''' || ':*')"
  445. [textsearch, query]
  446. end
  447. end
  448. def emojis
  449. @emojis ||= CustomEmoji.from_text(emojifiable_text, domain)
  450. end
  451. before_create :generate_keys
  452. before_validation :prepare_contents, if: :local?
  453. before_validation :prepare_username, on: :create
  454. before_destroy :clean_feed_manager
  455. private
  456. def prepare_contents
  457. display_name&.strip!
  458. note&.strip!
  459. end
  460. def prepare_username
  461. username&.squish!
  462. end
  463. def generate_keys
  464. return unless local? && private_key.blank? && public_key.blank?
  465. keypair = OpenSSL::PKey::RSA.new(2048)
  466. self.private_key = keypair.to_pem
  467. self.public_key = keypair.public_key.to_pem
  468. end
  469. def normalize_domain
  470. return if local?
  471. super
  472. end
  473. def emojifiable_text
  474. [note, display_name, fields.map(&:name), fields.map(&:value)].join(' ')
  475. end
  476. def clean_feed_manager
  477. reblog_key = FeedManager.instance.key(:home, id, 'reblogs')
  478. reblogged_id_set = Redis.current.zrange(reblog_key, 0, -1)
  479. Redis.current.pipelined do
  480. Redis.current.del(FeedManager.instance.key(:home, id))
  481. Redis.current.del(reblog_key)
  482. reblogged_id_set.each do |reblogged_id|
  483. reblog_set_key = FeedManager.instance.key(:home, id, "reblogs:#{reblogged_id}")
  484. Redis.current.del(reblog_set_key)
  485. end
  486. end
  487. end
  488. end