logo

mastofe

My custom branche(s) on git.pleroma.social/pleroma/mastofe git clone https://hacktivis.me/git/mastofe.git

index.js (17358B)

    

  1. const os = require('os');

  2. const throng = require('throng');

  3. const dotenv = require('dotenv');

  4. const express = require('express');

  5. const http = require('http');

  6. const redis = require('redis');

  7. const pg = require('pg');

  8. const log = require('npmlog');

  9. const url = require('url');

  10. const WebSocket = require('uws');

  11. const uuid = require('uuid');

  12. 

  13. const env = process.env.NODE_ENV || 'development';

  14. 

  15. dotenv.config({

  16.   path: env === 'production' ? '.env.production' : '.env',

  17. });

  18. 

  19. log.level = process.env.LOG_LEVEL || 'verbose';

  20. 

  21. const dbUrlToConfig = (dbUrl) => {

  22.   if (!dbUrl) {

  23.     return {};

  24.   }

  25. 

  26.   const params = url.parse(dbUrl);

  27.   const config = {};

  28. 

  29.   if (params.auth) {

  30.     [config.user, config.password] = params.auth.split(':');

  31.   }

  32. 

  33.   if (params.hostname) {

  34.     config.host = params.hostname;

  35.   }

  36. 

  37.   if (params.port) {

  38.     config.port = params.port;

  39.   }

  40. 

  41.   if (params.pathname) {

  42.     config.database = params.pathname.split('/')[1];

  43.   }

  44. 

  45.   const ssl = params.query && params.query.ssl;

  46. 

  47.   if (ssl) {

  48.     config.ssl = ssl === 'true' || ssl === '1';

  49.   }

  50. 

  51.   return config;

  52. };

  53. 

  54. const redisUrlToClient = (defaultConfig, redisUrl) => {

  55.   const config = defaultConfig;

  56. 

  57.   if (!redisUrl) {

  58.     return redis.createClient(config);

  59.   }

  60. 

  61.   if (redisUrl.startsWith('unix://')) {

  62.     return redis.createClient(redisUrl.slice(7), config);

  63.   }

  64. 

  65.   return redis.createClient(Object.assign(config, {

  66.     url: redisUrl,

  67.   }));

  68. };

  69. 

  70. const numWorkers = +process.env.STREAMING_CLUSTER_NUM || (env === 'development' ? 1 : Math.max(os.cpus().length - 1, 1));

  71. 

  72. const startMaster = () => {

  73.   log.info(`Starting streaming API server master with ${numWorkers} workers`);

  74. };

  75. 

  76. const startWorker = (workerId) => {

  77.   log.info(`Starting worker ${workerId}`);

  78. 

  79.   const pgConfigs = {

  80.     development: {

  81.       user:     process.env.DB_USER || pg.defaults.user,

  82.       password: process.env.DB_PASS || pg.defaults.password,

  83.       database: process.env.DB_NAME || 'mastodon_development',

  84.       host:     process.env.DB_HOST || pg.defaults.host,

  85.       port:     process.env.DB_PORT || pg.defaults.port,

  86.       max:      10,

  87.     },

  88. 

  89.     production: {

  90.       user:     process.env.DB_USER || 'mastodon',

  91.       password: process.env.DB_PASS || '',

  92.       database: process.env.DB_NAME || 'mastodon_production',

  93.       host:     process.env.DB_HOST || 'localhost',

  94.       port:     process.env.DB_PORT || 5432,

  95.       max:      10,

  96.     },

  97.   };

  98. 

  99.   const app    = express();

  100.   app.set('trusted proxy', process.env.TRUSTED_PROXY_IP || 'loopback,uniquelocal');

  101. 

  102.   const pgPool = new pg.Pool(Object.assign(pgConfigs[env], dbUrlToConfig(process.env.DATABASE_URL)));

  103.   const server = http.createServer(app);

  104.   const redisNamespace = process.env.REDIS_NAMESPACE || null;

  105. 

  106.   const redisParams = {

  107.     host:     process.env.REDIS_HOST     || '127.0.0.1',

  108.     port:     process.env.REDIS_PORT     || 6379,

  109.     db:       process.env.REDIS_DB       || 0,

  110.     password: process.env.REDIS_PASSWORD,

  111.   };

  112. 

  113.   if (redisNamespace) {

  114.     redisParams.namespace = redisNamespace;

  115.   }

  116. 

  117.   const redisPrefix = redisNamespace ? `${redisNamespace}:` : '';

  118. 

  119.   const redisSubscribeClient = redisUrlToClient(redisParams, process.env.REDIS_URL);

  120.   const redisClient = redisUrlToClient(redisParams, process.env.REDIS_URL);

  121. 

  122.   const subs = {};

  123. 

  124.   redisSubscribeClient.on('message', (channel, message) => {

  125.     const callbacks = subs[channel];

  126. 

  127.     log.silly(`New message on channel ${channel}`);

  128. 

  129.     if (!callbacks) {

  130.       return;

  131.     }

  132. 

  133.     callbacks.forEach(callback => callback(message));

  134.   });

  135. 

  136.   const subscriptionHeartbeat = (channel) => {

  137.     const interval = 6*60;

  138.     const tellSubscribed = () => {

  139.       redisClient.set(`${redisPrefix}subscribed:${channel}`, '1', 'EX', interval*3);

  140.     };

  141.     tellSubscribed();

  142.     const heartbeat = setInterval(tellSubscribed, interval*1000);

  143.     return () => {

  144.       clearInterval(heartbeat);

  145.     };

  146.   };

  147. 

  148.   const subscribe = (channel, callback) => {

  149.     log.silly(`Adding listener for ${channel}`);

  150.     subs[channel] = subs[channel] || [];

  151.     if (subs[channel].length === 0) {

  152.       log.verbose(`Subscribe ${channel}`);

  153.       redisSubscribeClient.subscribe(channel);

  154.     }

  155.     subs[channel].push(callback);

  156.   };

  157. 

  158.   const unsubscribe = (channel, callback) => {

  159.     log.silly(`Removing listener for ${channel}`);

  160.     subs[channel] = subs[channel].filter(item => item !== callback);

  161.     if (subs[channel].length === 0) {

  162.       log.verbose(`Unsubscribe ${channel}`);

  163.       redisSubscribeClient.unsubscribe(channel);

  164.     }

  165.   };

  166. 

  167.   const allowCrossDomain = (req, res, next) => {

  168.     res.header('Access-Control-Allow-Origin', '*');

  169.     res.header('Access-Control-Allow-Headers', 'Authorization, Accept, Cache-Control');

  170.     res.header('Access-Control-Allow-Methods', 'GET, OPTIONS');

  171. 

  172.     next();

  173.   };

  174. 

  175.   const setRequestId = (req, res, next) => {

  176.     req.requestId = uuid.v4();

  177.     res.header('X-Request-Id', req.requestId);

  178. 

  179.     next();

  180.   };

  181. 

  182.   const setRemoteAddress = (req, res, next) => {

  183.     req.remoteAddress = req.connection.remoteAddress;

  184. 

  185.     next();

  186.   };

  187. 

  188.   const accountFromToken = (token, req, next) => {

  189.     pgPool.connect((err, client, done) => {

  190.       if (err) {

  191.         next(err);

  192.         return;

  193.       }

  194. 

  195.       client.query('SELECT oauth_access_tokens.resource_owner_id, users.account_id, users.filtered_languages FROM oauth_access_tokens INNER JOIN users ON oauth_access_tokens.resource_owner_id = users.id WHERE oauth_access_tokens.token = $1 AND oauth_access_tokens.revoked_at IS NULL LIMIT 1', [token], (err, result) => {

  196.         done();

  197. 

  198.         if (err) {

  199.           next(err);

  200.           return;

  201.         }

  202. 

  203.         if (result.rows.length === 0) {

  204.           err = new Error('Invalid access token');

  205.           err.statusCode = 401;

  206. 

  207.           next(err);

  208.           return;

  209.         }

  210. 

  211.         req.accountId = result.rows[0].account_id;

  212.         req.filteredLanguages = result.rows[0].filtered_languages;

  213. 

  214.         next();

  215.       });

  216.     });

  217.   };

  218. 

  219.   const accountFromRequest = (req, next, required = true) => {

  220.     const authorization = req.headers.authorization;

  221.     const location = url.parse(req.url, true);

  222.     const accessToken = location.query.access_token;

  223. 

  224.     if (!authorization && !accessToken) {

  225.       if (required) {

  226.         const err = new Error('Missing access token');

  227.         err.statusCode = 401;

  228. 

  229.         next(err);

  230.         return;

  231.       } else {

  232.         next();

  233.         return;

  234.       }

  235.     }

  236. 

  237.     const token = authorization ? authorization.replace(/^Bearer /, '') : accessToken;

  238. 

  239.     accountFromToken(token, req, next);

  240.   };

  241. 

  242.   const PUBLIC_STREAMS = [

  243.     'public',

  244.     'public:local',

  245.     'hashtag',

  246.     'hashtag:local',

  247.   ];

  248. 

  249.   const wsVerifyClient = (info, cb) => {

  250.     const location = url.parse(info.req.url, true);

  251.     const authRequired = !PUBLIC_STREAMS.some(stream => stream === location.query.stream);

  252. 

  253.     accountFromRequest(info.req, err => {

  254.       if (!err) {

  255.         cb(true, undefined, undefined);

  256.       } else {

  257.         log.error(info.req.requestId, err.toString());

  258.         cb(false, 401, 'Unauthorized');

  259.       }

  260.     }, authRequired);

  261.   };

  262. 

  263.   const PUBLIC_ENDPOINTS = [

  264.     '/api/v1/streaming/public',

  265.     '/api/v1/streaming/public/local',

  266.     '/api/v1/streaming/hashtag',

  267.     '/api/v1/streaming/hashtag/local',

  268.   ];

  269. 

  270.   const authenticationMiddleware = (req, res, next) => {

  271.     if (req.method === 'OPTIONS') {

  272.       next();

  273.       return;

  274.     }

  275. 

  276.     const authRequired = !PUBLIC_ENDPOINTS.some(endpoint => endpoint === req.path);

  277.     accountFromRequest(req, next, authRequired);

  278.   };

  279. 

  280.   const errorMiddleware = (err, req, res, {}) => {

  281.     log.error(req.requestId, err.toString());

  282.     res.writeHead(err.statusCode || 500, { 'Content-Type': 'application/json' });

  283.     res.end(JSON.stringify({ error: err.statusCode ? err.toString() : 'An unexpected error occurred' }));

  284.   };

  285. 

  286.   const placeholders = (arr, shift = 0) => arr.map((_, i) => `$${i + 1 + shift}`).join(', ');

  287. 

  288.   const authorizeListAccess = (id, req, next) => {

  289.     pgPool.connect((err, client, done) => {

  290.       if (err) {

  291.         next(false);

  292.         return;

  293.       }

  294. 

  295.       client.query('SELECT id, account_id FROM lists WHERE id = $1 LIMIT 1', [id], (err, result) => {

  296.         done();

  297. 

  298.         if (err || result.rows.length === 0 || result.rows[0].account_id !== req.accountId) {

  299.           next(false);

  300.           return;

  301.         }

  302. 

  303.         next(true);

  304.       });

  305.     });

  306.   };

  307. 

  308.   const streamFrom = (id, req, output, attachCloseHandler, needsFiltering = false, notificationOnly = false) => {

  309.     const accountId = req.accountId || req.remoteAddress;

  310. 

  311.     const streamType = notificationOnly ? ' (notification)' : '';

  312.     log.verbose(req.requestId, `Starting stream from ${id} for ${accountId}${streamType}`);

  313. 

  314.     const listener = message => {

  315.       const { event, payload, queued_at } = JSON.parse(message);

  316. 

  317.       const transmit = () => {

  318.         const now            = new Date().getTime();

  319.         const delta          = now - queued_at;

  320.         const encodedPayload = typeof payload === 'object' ? JSON.stringify(payload) : payload;

  321. 

  322.         log.silly(req.requestId, `Transmitting for ${accountId}: ${event} ${encodedPayload} Delay: ${delta}ms`);

  323.         output(event, encodedPayload);

  324.       };

  325. 

  326.       if (notificationOnly && event !== 'notification') {

  327.         return;

  328.       }

  329. 

  330.       // Only messages that may require filtering are statuses, since notifications

  331.       // are already personalized and deletes do not matter

  332.       if (needsFiltering && event === 'update') {

  333.         pgPool.connect((err, client, done) => {

  334.           if (err) {

  335.             log.error(err);

  336.             return;

  337.           }

  338. 

  339.           const unpackedPayload  = payload;

  340.           const targetAccountIds = [unpackedPayload.account.id].concat(unpackedPayload.mentions.map(item => item.id));

  341.           const accountDomain    = unpackedPayload.account.acct.split('@')[1];

  342. 

  343.           if (Array.isArray(req.filteredLanguages) && req.filteredLanguages.indexOf(unpackedPayload.language) !== -1) {

  344.             log.silly(req.requestId, `Message ${unpackedPayload.id} filtered by language (${unpackedPayload.language})`);

  345.             done();

  346.             return;

  347.           }

  348. 

  349.           if (req.accountId) {

  350.             const queries = [

  351.               client.query(`SELECT 1 FROM blocks WHERE (account_id = $1 AND target_account_id IN (${placeholders(targetAccountIds, 2)})) OR (account_id = $2 AND target_account_id = $1) UNION SELECT 1 FROM mutes WHERE account_id = $1 AND target_account_id IN (${placeholders(targetAccountIds, 2)})`, [req.accountId, unpackedPayload.account.id].concat(targetAccountIds)),

  352.             ];

  353. 

  354.             if (accountDomain) {

  355.               queries.push(client.query('SELECT 1 FROM account_domain_blocks WHERE account_id = $1 AND domain = $2', [req.accountId, accountDomain]));

  356.             }

  357. 

  358.             Promise.all(queries).then(values => {

  359.               done();

  360. 

  361.               if (values[0].rows.length > 0 || (values.length > 1 && values[1].rows.length > 0)) {

  362.                 return;

  363.               }

  364. 

  365.               transmit();

  366.             }).catch(err => {

  367.               done();

  368.               log.error(err);

  369.             });

  370.           } else {

  371.             done();

  372.             transmit();

  373.           }

  374.         });

  375.       } else {

  376.         transmit();

  377.       }

  378.     };

  379. 

  380.     subscribe(`${redisPrefix}${id}`, listener);

  381.     attachCloseHandler(`${redisPrefix}${id}`, listener);

  382.   };

  383. 

  384.   // Setup stream output to HTTP

  385.   const streamToHttp = (req, res) => {

  386.     const accountId = req.accountId || req.remoteAddress;

  387. 

  388.     res.setHeader('Content-Type', 'text/event-stream');

  389.     res.setHeader('Transfer-Encoding', 'chunked');

  390. 

  391.     const heartbeat = setInterval(() => res.write(':thump\n'), 15000);

  392. 

  393.     req.on('close', () => {

  394.       log.verbose(req.requestId, `Ending stream for ${accountId}`);

  395.       clearInterval(heartbeat);

  396.     });

  397. 

  398.     return (event, payload) => {

  399.       res.write(`event: ${event}\n`);

  400.       res.write(`data: ${payload}\n\n`);

  401.     };

  402.   };

  403. 

  404.   // Setup stream end for HTTP

  405.   const streamHttpEnd = (req, closeHandler = false) => (id, listener) => {

  406.     req.on('close', () => {

  407.       unsubscribe(id, listener);

  408.       if (closeHandler) {

  409.         closeHandler();

  410.       }

  411.     });

  412.   };

  413. 

  414.   // Setup stream output to WebSockets

  415.   const streamToWs = (req, ws) => (event, payload) => {

  416.     if (ws.readyState !== ws.OPEN) {

  417.       log.error(req.requestId, 'Tried writing to closed socket');

  418.       return;

  419.     }

  420. 

  421.     ws.send(JSON.stringify({ event, payload }));

  422.   };

  423. 

  424.   // Setup stream end for WebSockets

  425.   const streamWsEnd = (req, ws, closeHandler = false) => (id, listener) => {

  426.     const accountId = req.accountId || req.remoteAddress;

  427. 

  428.     ws.on('close', () => {

  429.       log.verbose(req.requestId, `Ending stream for ${accountId}`);

  430.       unsubscribe(id, listener);

  431.       if (closeHandler) {

  432.         closeHandler();

  433.       }

  434.     });

  435. 

  436.     ws.on('error', () => {

  437.       log.verbose(req.requestId, `Ending stream for ${accountId}`);

  438.       unsubscribe(id, listener);

  439.       if (closeHandler) {

  440.         closeHandler();

  441.       }

  442.     });

  443.   };

  444. 

  445.   app.use(setRequestId);

  446.   app.use(setRemoteAddress);

  447.   app.use(allowCrossDomain);

  448.   app.use(authenticationMiddleware);

  449.   app.use(errorMiddleware);

  450. 

  451.   app.get('/api/v1/streaming/user', (req, res) => {

  452.     const channel = `timeline:${req.accountId}`;

  453.     streamFrom(channel, req, streamToHttp(req, res), streamHttpEnd(req, subscriptionHeartbeat(channel)));

  454.   });

  455. 

  456.   app.get('/api/v1/streaming/user/notification', (req, res) => {

  457.     streamFrom(`timeline:${req.accountId}`, req, streamToHttp(req, res), streamHttpEnd(req), false, true);

  458.   });

  459. 

  460.   app.get('/api/v1/streaming/public', (req, res) => {

  461.     streamFrom('timeline:public', req, streamToHttp(req, res), streamHttpEnd(req), true);

  462.   });

  463. 

  464.   app.get('/api/v1/streaming/public/local', (req, res) => {

  465.     streamFrom('timeline:public:local', req, streamToHttp(req, res), streamHttpEnd(req), true);

  466.   });

  467. 

  468.   app.get('/api/v1/streaming/hashtag', (req, res) => {

  469.     streamFrom(`timeline:hashtag:${req.query.tag.toLowerCase()}`, req, streamToHttp(req, res), streamHttpEnd(req), true);

  470.   });

  471. 

  472.   app.get('/api/v1/streaming/hashtag/local', (req, res) => {

  473.     streamFrom(`timeline:hashtag:${req.query.tag.toLowerCase()}:local`, req, streamToHttp(req, res), streamHttpEnd(req), true);

  474.   });

  475. 

  476.   app.get('/api/v1/streaming/list', (req, res) => {

  477.     const listId = req.query.list;

  478. 

  479.     authorizeListAccess(listId, req, authorized => {

  480.       if (!authorized) {

  481.         res.writeHead(404, { 'Content-Type': 'application/json' });

  482.         res.end(JSON.stringify({ error: 'Not found' }));

  483.         return;

  484.       }

  485. 

  486.       const channel = `timeline:list:${listId}`;

  487.       streamFrom(channel, req, streamToHttp(req, res), streamHttpEnd(req, subscriptionHeartbeat(channel)));

  488.     });

  489.   });

  490. 

  491.   const wss = new WebSocket.Server({ server, verifyClient: wsVerifyClient });

  492. 

  493.   wss.on('connection', ws => {

  494.     const req      = ws.upgradeReq;

  495.     const location = url.parse(req.url, true);

  496.     req.requestId  = uuid.v4();

  497.     req.remoteAddress = ws._socket.remoteAddress;

  498. 

  499.     ws.isAlive = true;

  500. 

  501.     ws.on('pong', () => {

  502.       ws.isAlive = true;

  503.     });

  504. 

  505.     switch(location.query.stream) {

  506.     case 'user':

  507.       const channel = `timeline:${req.accountId}`;

  508.       streamFrom(channel, req, streamToWs(req, ws), streamWsEnd(req, ws, subscriptionHeartbeat(channel)));

  509.       break;

  510.     case 'user:notification':

  511.       streamFrom(`timeline:${req.accountId}`, req, streamToWs(req, ws), streamWsEnd(req, ws), false, true);

  512.       break;

  513.     case 'public':

  514.       streamFrom('timeline:public', req, streamToWs(req, ws), streamWsEnd(req, ws), true);

  515.       break;

  516.     case 'public:local':

  517.       streamFrom('timeline:public:local', req, streamToWs(req, ws), streamWsEnd(req, ws), true);

  518.       break;

  519.     case 'hashtag':

  520.       streamFrom(`timeline:hashtag:${location.query.tag.toLowerCase()}`, req, streamToWs(req, ws), streamWsEnd(req, ws), true);

  521.       break;

  522.     case 'hashtag:local':

  523.       streamFrom(`timeline:hashtag:${location.query.tag.toLowerCase()}:local`, req, streamToWs(req, ws), streamWsEnd(req, ws), true);

  524.       break;

  525.     case 'list':

  526.       const listId = location.query.list;

  527. 

  528.       authorizeListAccess(listId, req, authorized => {

  529.         if (!authorized) {

  530.           ws.close();

  531.           return;

  532.         }

  533. 

  534.         const channel = `timeline:list:${listId}`;

  535.         streamFrom(channel, req, streamToWs(req, ws), streamWsEnd(req, ws, subscriptionHeartbeat(channel)));

  536.       });

  537.       break;

  538.     default:

  539.       ws.close();

  540.     }

  541.   });

  542. 

  543.   setInterval(() => {

  544.     wss.clients.forEach(ws => {

  545.       if (ws.isAlive === false) {

  546.         ws.terminate();

  547.         return;

  548.       }

  549. 

  550.       ws.isAlive = false;

  551.       ws.ping('', false, true);

  552.     });

  553.   }, 30000);

  554. 

  555.   server.listen(process.env.PORT || 4000, process.env.BIND || '0.0.0.0', () => {

  556.     log.info(`Worker ${workerId} now listening on ${server.address().address}:${server.address().port}`);

  557.   });

  558. 

  559.   const onExit = () => {

  560.     log.info(`Worker ${workerId} exiting, bye bye`);

  561.     server.close();

  562.     process.exit(0);

  563.   };

  564. 

  565.   const onError = (err) => {

  566.     log.error(err);

  567.     server.close();

  568.     process.exit(0);

  569.   };

  570. 

  571.   process.on('SIGINT', onExit);

  572.   process.on('SIGTERM', onExit);

  573.   process.on('exit', onExit);

  574.   process.on('uncaughtException', onError);

  575. };

  576. 

  577. throng({

  578.   workers: numWorkers,

  579.   lifetime: Infinity,

  580.   start: startWorker,

  581.   master: startMaster,

  582. });