mastodon/app/controllers/api/base_controller.rb

# frozen_string_literal: true

class Api::BaseController < ApplicationController
  DEFAULT_STATUSES_LIMIT = 20
  DEFAULT_ACCOUNTS_LIMIT = 40

  include RateLimitHeaders

  skip_before_action :store_current_location
  skip_before_action :require_functional!

  before_action :require_authenticated_user!, if: :disallow_unauthenticated_api_access?
  before_action :set_cache_headers

  protect_from_forgery with: :null_session

  skip_around_action :set_locale

  rescue_from ActiveRecord::RecordInvalid, Mastodon::ValidationError do |e|
    render json: { error: e.to_s }, status: 422
  end

  rescue_from ActiveRecord::RecordNotUnique do
    render json: { error: 'Duplicate record' }, status: 422
  end

  rescue_from ActiveRecord::RecordNotFound do
    render json: { error: 'Record not found' }, status: 404
  end

  rescue_from HTTP::Error, Mastodon::UnexpectedResponseError do
    render json: { error: 'Remote data could not be fetched' }, status: 503
  end

  rescue_from OpenSSL::SSL::SSLError do
    render json: { error: 'Remote SSL certificate could not be verified' }, status: 503
  end

  rescue_from Mastodon::NotPermittedError do
    render json: { error: 'This action is not allowed' }, status: 403
  end

  rescue_from Mastodon::RaceConditionError do
    render json: { error: 'There was a temporary problem serving your request, please try again' }, status: 503
  end

  rescue_from ActionController::ParameterMissing do |e|
    render json: { error: e.to_s }, status: 400
  end

  def doorkeeper_unauthorized_render_options(error: nil)
    { json: { error: (error.try(:description) || 'Not authorized') } }
  end

  def doorkeeper_forbidden_render_options(*)
    { json: { error: 'This action is outside the authorized scopes' } }
  end

  protected

  def set_pagination_headers(next_path = nil, prev_path = nil)
    links = []
    links << [next_path, [%w(rel next)]] if next_path
    links << [prev_path, [%w(rel prev)]] if prev_path
    response.headers['Link'] = LinkHeader.new(links) unless links.empty?
  end

  def limit_param(default_limit)
    return default_limit unless params[:limit]
    [params[:limit].to_i.abs, default_limit * 2].min
  end

  def params_slice(*keys)
    params.slice(*keys).permit(*keys)
  end

  def current_resource_owner
    @current_user ||= User.find(doorkeeper_token.resource_owner_id) if doorkeeper_token
  end

  def current_user
    current_resource_owner || super
  rescue ActiveRecord::RecordNotFound
    nil
  end

  def require_authenticated_user!
    render json: { error: 'This API requires an authenticated user' }, status: 401 unless current_user
  end

  def require_user!
    if !current_user
      render json: { error: 'This method requires an authenticated user' }, status: 422
    elsif current_user.disabled?
      render json: { error: 'Your login is currently disabled' }, status: 403
    elsif !current_user.confirmed?
      render json: { error: 'Your login is missing a confirmed e-mail address' }, status: 403
    elsif !current_user.approved?
      render json: { error: 'Your login is currently pending approval' }, status: 403
    else
      set_user_activity
    end
  end

  def render_empty
    render json: {}, status: 200
  end

  def authorize_if_got_token!(*scopes)
    doorkeeper_authorize!(*scopes) if doorkeeper_token
  end

  def set_cache_headers
    response.headers['Cache-Control'] = 'no-cache, no-store, max-age=0, must-revalidate'
  end

  def disallow_unauthenticated_api_access?
    authorized_fetch_mode?
  end
end
Fix rubocop issues, introduce usage of frozen literal to improve performance 2016-11-15 16:56:29 +01:00			`# frozen_string_literal: true`

Clean up for api/base controller (#3629) * Move ApiController to Api/BaseController * API controllers inherit from Api::BaseController * Add coverage for various error cases in api/base controller 2017-06-07 14:09:25 -04:00			`class Api::BaseController < ApplicationController`
API pagination for all collections using Link header 2016-11-09 17:48:44 +01:00			`DEFAULT_STATUSES_LIMIT = 20`
			`DEFAULT_ACCOUNTS_LIMIT = 40`

Coverage improvement and concern extraction for rate limit headers in API controller (#3625) * Coverage for rate limit headers * Move rate limit headers methods to concern * Move throttle check to condition on before_action * Move match_data variable into method * Move utc timestamp to separate method * Move header setting into smaller methods * specs cleanup 2017-06-07 11:23:26 -04:00			`include RateLimitHeaders`

Do not store last visited URL from API controllers (#1330) Sign-in redirects you back to last visited URL, but in case of API requests, this sometimes redirected users to an API URL that, of course, greeted them with an {"error":"The access token is invalid"} 2017-04-09 22:21:52 +02:00			`skip_before_action :store_current_location`
Change unconfirmed user login behaviour (#11375) Allow access to account settings, 2FA, authorized applications, and account deletions to unconfirmed and pending users, as well as users who had their accounts disabled. Suspended users cannot update their e-mail or password or delete their account. Display account status on account settings page, for example, when an account is frozen, limited, unconfirmed or pending review. After sign up, login users straight away and show a simple page that tells them the status of their account with links to account settings and logout, to reduce onboarding friction and allow users to correct wrongly typed e-mail addresses. Move the final sign-up step of SSO integrations to be the same as above to reduce code duplication. 2019-07-22 10:48:50 +02:00			`skip_before_action :require_functional!`
Allow mods to disable login, improve message when login disabled (#8329) * Allow moderators to disable/enable login * Instead of rejecting login, show forbidden error when login disabled Avoid confusion because when login is rejected, the message is that the account is not activated, which is wrong. * Fix tests 2018-08-23 23:26:29 +02:00
Add whitelist mode (#11291) 2019-07-30 11:10:46 +02:00			`before_action :require_authenticated_user!, if: :disallow_unauthenticated_api_access?`
Explicitly disable storage of REST API results (#10655) Fixes #10652 2019-05-03 20:39:19 +02:00			`before_action :set_cache_headers`

Refactor /api/web APIs to use the centralized axios instance (#6223) Also adds the ability to decouple the centralized axios logic from the state dispatcher 2018-01-08 14:01:33 -05:00			`protect_from_forgery with: :null_session`
Adding doorkeeper, adding a REST API POST /api/statuses Params: status (text contents), in_reply_to_id (optional) GET /api/statuses/:id POST /api/statuses/:id/reblog GET /api/accounts/:id GET /api/accounts/:id/following GET /api/accounts/:id/followers POST /api/accounts/:id/follow POST /api/accounts/:id/unfollow POST /api/follows Params: uri (e.g. user@domain) OAuth authentication is currently disabled, but the API can be used with HTTP Auth. 2016-03-07 12:42:33 +01:00
Fix ActivityPub and REST API queries setting cookies and preventing caching (#11539) Regression from #8657 2019-08-11 22:59:40 +02:00			`skip_around_action :set_locale`

Add validation of media attachments, clean up mastodon-own exception classes 2017-02-26 23:23:06 +01:00			`rescue_from ActiveRecord::RecordInvalid, Mastodon::ValidationError do \|e\|`
Meaningful validation errors in API response 2016-09-30 22:31:16 +02:00			`render json: { error: e.to_s }, status: 422`
The frontend will now be an OAuth app, auto-authorized. The frontend will use an access token for API requests Adding better errors for the API controllers, posting a simple status works from the frontend now 2016-08-26 19:12:19 +02:00			`end`

Fix generic HTTP 500 error on duplicate records (#12563) Fix #12551 Fix #12547 2019-12-06 22:40:06 +01:00			`rescue_from ActiveRecord::RecordNotUnique do`
			`render json: { error: 'Duplicate record' }, status: 422`
			`end`

The frontend will now be an OAuth app, auto-authorized. The frontend will use an access token for API requests Adding better errors for the API controllers, posting a simple status works from the frontend now 2016-08-26 19:12:19 +02:00			`rescue_from ActiveRecord::RecordNotFound do`
			`render json: { error: 'Record not found' }, status: 404`
			`end`

Fix webfinger retries (#4275) * Do not raise unretryable exceptions in ResolveRemoteAccountService * Removed fatal exceptions from ResolveRemoteAccountService Exceptions that cannot be retried should not be raised. New exception class for those that can be retried (Mastodon::UnexpectedResponseError) 2017-07-20 01:59:07 +02:00			`rescue_from HTTP::Error, Mastodon::UnexpectedResponseError do`
Improved error handling for FollowRemoteService 2016-09-17 17:03:36 +02:00			`render json: { error: 'Remote data could not be fetched' }, status: 503`
			`end`

Catching more exceptions that slipped through, removing AR logging from production as it's very verbose and not very useful 2016-10-05 13:26:44 +02:00			`rescue_from OpenSSL::SSL::SSLError do`
			`render json: { error: 'Remote SSL certificate could not be verified' }, status: 503`
			`end`

Add validation of media attachments, clean up mastodon-own exception classes 2017-02-26 23:23:06 +01:00			`rescue_from Mastodon::NotPermittedError do`
Add "locked" flag to accounts, prevent blocked users from following, force-unfollow blocked users 2016-12-22 21:34:19 +01:00			`render json: { error: 'This action is not allowed' }, status: 403`
			`end`

Fix uncaught parameter missing exceptions and missing error templates (#11702) 2019-08-30 01:34:47 +02:00			`rescue_from Mastodon::RaceConditionError do`
			`render json: { error: 'There was a temporary problem serving your request, please try again' }, status: 503`
			`end`

			`rescue_from ActionController::ParameterMissing do \|e\|`
			`render json: { error: e.to_s }, status: 400`
			`end`

Better error message in doorkeeper json response 2016-11-21 16:19:35 +01:00			`def doorkeeper_unauthorized_render_options(error: nil)`
			`{ json: { error: (error.try(:description) \|\| 'Not authorized') } }`
Adding OAuth access scopes, fixing OAuth authorization UI, adding rate limiting to the API 2016-10-22 19:38:47 +02:00			`end`

			`def doorkeeper_forbidden_render_options(*)`
			`{ json: { error: 'This action is outside the authorized scopes' } }`
			`end`

Adding doorkeeper, adding a REST API POST /api/statuses Params: status (text contents), in_reply_to_id (optional) GET /api/statuses/:id POST /api/statuses/:id/reblog GET /api/accounts/:id GET /api/accounts/:id/following GET /api/accounts/:id/followers POST /api/accounts/:id/follow POST /api/accounts/:id/unfollow POST /api/follows Params: uri (e.g. user@domain) OAuth authentication is currently disabled, but the API can be used with HTTP Auth. 2016-03-07 12:42:33 +01:00			`protected`

API pagination for all collections using Link header 2016-11-09 17:48:44 +01:00			`def set_pagination_headers(next_path = nil, prev_path = nil)`
			`links = []`
Fix rubocop issues, introduce usage of frozen literal to improve performance 2016-11-15 16:56:29 +01:00			`links << [next_path, [%w(rel next)]] if next_path`
			`links << [prev_path, [%w(rel prev)]] if prev_path`
Don't send Link header when don't know prev and next links (#4633) 2017-08-18 17:42:59 +09:00			`response.headers['Link'] = LinkHeader.new(links) unless links.empty?`
API pagination for all collections using Link header 2016-11-09 17:48:44 +01:00			`end`

API now respects ?limit param as long as it's within 2x default limit 2017-01-24 04:22:10 +01:00			`def limit_param(default_limit)`
			`return default_limit unless params[:limit]`
			`[params[:limit].to_i.abs, default_limit * 2].min`
			`end`

Support min_id-based pagination in REST API (#8736) * Allow min_id pagination in Feed#get * Add min_id pagination to home and list timeline APIs * Add min_id pagination to account statuses, public and tag APIs * Remove unused stub in reports API * Use min_id pagination in notifications, favourites, and fix order * Fix HomeFeed#from_database not using paginate_by_id 2018-09-28 02:23:45 +02:00			`def params_slice(*keys)`
			`params.slice(keys).permit(keys)`
			`end`

Adding doorkeeper, adding a REST API POST /api/statuses Params: status (text contents), in_reply_to_id (optional) GET /api/statuses/:id POST /api/statuses/:id/reblog GET /api/accounts/:id GET /api/accounts/:id/following GET /api/accounts/:id/followers POST /api/accounts/:id/follow POST /api/accounts/:id/unfollow POST /api/follows Params: uri (e.g. user@domain) OAuth authentication is currently disabled, but the API can be used with HTTP Auth. 2016-03-07 12:42:33 +01:00			`def current_resource_owner`
Rename "publish" to "toot" in english locale, fix lightbox showing old image before loading new one, cache notifications API, fix missing follow button on public profiles 2016-11-23 09:20:34 +01:00			`@current_user \|\|= User.find(doorkeeper_token.resource_owner_id) if doorkeeper_token`
Adding doorkeeper, adding a REST API POST /api/statuses Params: status (text contents), in_reply_to_id (optional) GET /api/statuses/:id POST /api/statuses/:id/reblog GET /api/accounts/:id GET /api/accounts/:id/following GET /api/accounts/:id/followers POST /api/accounts/:id/follow POST /api/accounts/:id/unfollow POST /api/follows Params: uri (e.g. user@domain) OAuth authentication is currently disabled, but the API can be used with HTTP Auth. 2016-03-07 12:42:33 +01:00			`end`

			`def current_user`
Avoid dynamic methods due to processing speed (#2080) 2017-04-18 22:57:46 +09:00			`current_resource_owner \|\| super`
Move timelines API from statuses to its own controller, add a check for resources that require a user context vs those that don't (such as public timeline) /api/v1/statuses/public -> /api/v1/timelines/public /api/v1/statuses/home -> /api/v1/timelines/home /api/v1/statuses/mentions -> /api/v1/timelines/mentions /api/v1/statuses/tag/:tag -> /api/v1/timelines/tag/:tag 2016-11-08 23:22:44 +01:00			`rescue ActiveRecord::RecordNotFound`
			`nil`
			`end`

Add whitelist mode (#11291) 2019-07-30 11:10:46 +02:00			`def require_authenticated_user!`
			`render json: { error: 'This API requires an authenticated user' }, status: 401 unless current_user`
			`end`

Move timelines API from statuses to its own controller, add a check for resources that require a user context vs those that don't (such as public timeline) /api/v1/statuses/public -> /api/v1/timelines/public /api/v1/statuses/home -> /api/v1/timelines/home /api/v1/statuses/mentions -> /api/v1/timelines/mentions /api/v1/statuses/tag/:tag -> /api/v1/timelines/tag/:tag 2016-11-08 23:22:44 +01:00			`def require_user!`
Add error message with invalid email confirmation (#9625) 2018-12-26 03:35:26 +09:00			`if !current_user`
			`render json: { error: 'This method requires an authenticated user' }, status: 422`
			`elsif current_user.disabled?`
Disable API access when login is disabled (#7289) 2018-04-30 09:13:14 +02:00			`render json: { error: 'Your login is currently disabled' }, status: 403`
Add error message with invalid email confirmation (#9625) 2018-12-26 03:35:26 +09:00			`elsif !current_user.confirmed?`
Admission-based registrations mode (#10250) Fix #6856 Fix #6951 2019-03-14 05:28:30 +01:00			`render json: { error: 'Your login is missing a confirmed e-mail address' }, status: 403`
			`elsif !current_user.approved?`
			`render json: { error: 'Your login is currently pending approval' }, status: 403`
Fix require_user! behavior when not logged in (#4604) 2017-08-15 21:14:12 +09:00			`else`
Add error message with invalid email confirmation (#9625) 2018-12-26 03:35:26 +09:00			`set_user_activity`
Fix require_user! behavior when not logged in (#4604) 2017-08-15 21:14:12 +09:00			`end`
Adding doorkeeper, adding a REST API POST /api/statuses Params: status (text contents), in_reply_to_id (optional) GET /api/statuses/:id POST /api/statuses/:id/reblog GET /api/accounts/:id GET /api/accounts/:id/following GET /api/accounts/:id/followers POST /api/accounts/:id/follow POST /api/accounts/:id/unfollow POST /api/follows Params: uri (e.g. user@domain) OAuth authentication is currently disabled, but the API can be used with HTTP Auth. 2016-03-07 12:42:33 +01:00			`end`
Replace logo, fix #57 - delete/unreblog/unfavourite API, fix #45 - app registration API 2016-09-26 23:55:21 +02:00
			`def render_empty`
			`render json: {}, status: 200`
			`end`
Add more granular OAuth scopes (#7929) * Add more granular OAuth scopes * Add human-readable descriptions of the new scopes * Ensure new scopes look good on the app UI * Add tests * Group scopes in screen and color-code dangerous ones * Fix wrong extra scope 2018-07-05 18:31:35 +02:00
			`def authorize_if_got_token!(*scopes)`
			`doorkeeper_authorize!(*scopes) if doorkeeper_token`
			`end`
Explicitly disable storage of REST API results (#10655) Fixes #10652 2019-05-03 20:39:19 +02:00
			`def set_cache_headers`
			`response.headers['Cache-Control'] = 'no-cache, no-store, max-age=0, must-revalidate'`
			`end`
Add whitelist mode (#11291) 2019-07-30 11:10:46 +02:00
			`def disallow_unauthenticated_api_access?`
			`authorized_fetch_mode?`
			`end`
Fixing some bugs, adding pending test examples 2016-03-05 12:50:59 +01:00			`end`