Inicio Explorar Ayuda
Iniciar sesión
RISCI_ATOM
/
mastodon
espejo de https://github.com/tootsuite/mastodon.git
1
0
Fork 0
Archivos Incidencias 8 Wiki
Árbol: 3598c2e1db
Ramas Etiquetas
mastodon
/
app
/
models
/
account
/
field.rb

field.rb 2.2 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687 
  1. # frozen_string_literal: true
    2. 

  2. 

  3. class Account::Field < ActiveModelSerializers::Model
    4. 

  4.   MAX_CHARACTERS_LOCAL  = 255
    5. 

  5.   MAX_CHARACTERS_COMPAT = 2_047
    6. 

  6.   ACCEPTED_SCHEMES      = %w(https).freeze
    7. 

  7. 

  8.   attributes :name, :value, :verified_at, :account
    9. 

  9. 

  10.   def initialize(account, attributes)
    11. 

  11.     # Keeping this as reference allows us to update the field on the account
    12. 

  12.     # from methods in this class, so that changes can be saved.
    13. 

  13.     @original_field = attributes
    14. 

  14.     @account        = account
    15. 

  15. 

  16.     super(
    17. 

  17.       name: sanitize(attributes['name']),
    18. 

  18.       value: sanitize(attributes['value']),
    19. 

  19.       verified_at: attributes['verified_at']&.to_datetime,
    20. 

  20.     )
    21. 

  21.   end
    22. 

  22. 

  23.   def verified?
    24. 

  24.     verified_at.present?
    25. 

  25.   end
    26. 

  26. 

  27.   def value_for_verification
    28. 

  28.     @value_for_verification ||= if account.local?
    29. 

  29.                                   value
    30. 

  30.                                 else
    31. 

  31.                                   extract_url_from_html
    32. 

  32.                                 end
    33. 

  33.   end
    34. 

  34. 

  35.   def verifiable?
    36. 

  36.     return false if value_for_verification.blank?
    37. 

  37. 

  38.     # This is slower than checking through a regular expression, but we
    39. 

  39.     # need to confirm that it's not an IDN domain.
    40. 

  40. 

  41.     parsed_url = Addressable::URI.parse(value_for_verification)
    42. 

  42. 

  43.     ACCEPTED_SCHEMES.include?(parsed_url.scheme) &&
    44. 

  44.       parsed_url.user.nil? &&
    45. 

  45.       parsed_url.password.nil? &&
    46. 

  46.       parsed_url.host.present? &&
    47. 

  47.       parsed_url.normalized_host == parsed_url.host &&
    48. 

  48.       (parsed_url.path.empty? || parsed_url.path == parsed_url.normalized_path)
    49. 

  49.   rescue Addressable::URI::InvalidURIError, IDN::Idna::IdnaError
    50. 

  50.     false
    51. 

  51.   end
    52. 

  52. 

  53.   def requires_verification?
    54. 

  54.     !verified? && verifiable?
    55. 

  55.   end
    56. 

  56. 

  57.   def mark_verified!
    58. 

  58.     @original_field['verified_at'] = self.verified_at = Time.now.utc
    59. 

  59.   end
    60. 

  60. 

  61.   def to_h
    62. 

  62.     { name: name, value: value, verified_at: verified_at }
    63. 

  63.   end
    64. 

  64. 

  65.   private
    66. 

  66. 

  67.   def sanitize(str)
    68. 

  68.     str.strip[0, character_limit]
    69. 

  69.   end
    70. 

  70. 

  71.   def character_limit
    72. 

  72.     account.local? ? MAX_CHARACTERS_LOCAL : MAX_CHARACTERS_COMPAT
    73. 

  73.   end
    74. 

  74. 

  75.   def extract_url_from_html
    76. 

  76.     doc = Nokogiri::HTML(value).at_xpath('//body')
    77. 

  77. 

  78.     return if doc.nil?
    79. 

  79.     return if doc.children.size > 1
    80. 

  80. 

  81.     element = doc.children.first
    82. 

  82. 

  83.     return if element.name != 'a' || element['href'] != element.text
    84. 

  84. 

  85.     element['href']
    86. 

  86.   end
    87. 

  87. end
    88.