diff options
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/mix/tasks/pleroma/database.ex | 24 | ||||
| -rw-r--r-- | lib/pleroma/activity_expiration.ex | 12 | ||||
| -rw-r--r-- | lib/pleroma/user.ex | 28 | ||||
| -rw-r--r-- | lib/pleroma/web/auth/ldap_authenticator.ex | 43 | 
4 files changed, 73 insertions, 34 deletions
| diff --git a/lib/mix/tasks/pleroma/database.ex b/lib/mix/tasks/pleroma/database.ex index 82e2abdcb..d57e59b11 100644 --- a/lib/mix/tasks/pleroma/database.ex +++ b/lib/mix/tasks/pleroma/database.ex @@ -10,6 +10,7 @@ defmodule Mix.Tasks.Pleroma.Database do    alias Pleroma.User    require Logger    require Pleroma.Constants +  import Ecto.Query    import Mix.Pleroma    use Mix.Task @@ -53,8 +54,6 @@ defmodule Mix.Tasks.Pleroma.Database do    end    def run(["prune_objects" | args]) do -    import Ecto.Query -      {options, [], []} =        OptionParser.parse(          args, @@ -94,8 +93,6 @@ defmodule Mix.Tasks.Pleroma.Database do    end    def run(["fix_likes_collections"]) do -    import Ecto.Query -      start_pleroma()      from(object in Object, @@ -130,4 +127,23 @@ defmodule Mix.Tasks.Pleroma.Database do      Maintenance.vacuum(args)    end + +  def run(["ensure_expiration"]) do +    start_pleroma() +    days = Pleroma.Config.get([:mrf_activity_expiration, :days], 365) + +    Pleroma.Activity +    |> join(:left, [a], u in assoc(a, :expiration)) +    |> where(local: true) +    |> where([a, u], is_nil(u)) +    |> Pleroma.RepoStreamer.chunk_stream(100) +    |> Stream.each(fn activities -> +      Enum.each(activities, fn activity -> +        expires_at = Timex.shift(activity.inserted_at, days: days) + +        Pleroma.ActivityExpiration.create(activity, expires_at, false) +      end) +    end) +    |> Stream.run() +  end  end diff --git a/lib/pleroma/activity_expiration.ex b/lib/pleroma/activity_expiration.ex index db9c88d84..7cc9668b3 100644 --- a/lib/pleroma/activity_expiration.ex +++ b/lib/pleroma/activity_expiration.ex @@ -20,11 +20,11 @@ defmodule Pleroma.ActivityExpiration do      field(:scheduled_at, :naive_datetime)    end -  def changeset(%ActivityExpiration{} = expiration, attrs) do +  def changeset(%ActivityExpiration{} = expiration, attrs, validate_scheduled_at) do      expiration      |> cast(attrs, [:scheduled_at])      |> validate_required([:scheduled_at]) -    |> validate_scheduled_at() +    |> validate_scheduled_at(validate_scheduled_at)    end    def get_by_activity_id(activity_id) do @@ -33,9 +33,9 @@ defmodule Pleroma.ActivityExpiration do      |> Repo.one()    end -  def create(%Activity{} = activity, scheduled_at) do +  def create(%Activity{} = activity, scheduled_at, validate_scheduled_at \\ true) do      %ActivityExpiration{activity_id: activity.id} -    |> changeset(%{scheduled_at: scheduled_at}) +    |> changeset(%{scheduled_at: scheduled_at}, validate_scheduled_at)      |> Repo.insert()    end @@ -49,7 +49,9 @@ defmodule Pleroma.ActivityExpiration do      |> Repo.all()    end -  def validate_scheduled_at(changeset) do +  def validate_scheduled_at(changeset, false), do: changeset + +  def validate_scheduled_at(changeset, true) do      validate_change(changeset, :scheduled_at, fn _, scheduled_at ->        if not expires_late_enough?(scheduled_at) do          [scheduled_at: "an ephemeral activity must live for at least one hour"] diff --git a/lib/pleroma/user.ex b/lib/pleroma/user.ex index 09e606b37..d1436a688 100644 --- a/lib/pleroma/user.ex +++ b/lib/pleroma/user.ex @@ -638,6 +638,34 @@ defmodule Pleroma.User do    @spec force_password_reset(User.t()) :: {:ok, User.t()} | {:error, Ecto.Changeset.t()}    def force_password_reset(user), do: update_password_reset_pending(user, true) +  # Used to auto-register LDAP accounts which won't have a password hash stored locally +  def register_changeset_ldap(struct, params = %{password: password}) +      when is_nil(password) do +    params = Map.put_new(params, :accepts_chat_messages, true) + +    params = +      if Map.has_key?(params, :email) do +        Map.put_new(params, :email, params[:email]) +      else +        params +      end + +    struct +    |> cast(params, [ +      :name, +      :nickname, +      :email, +      :accepts_chat_messages +    ]) +    |> validate_required([:name, :nickname]) +    |> unique_constraint(:nickname) +    |> validate_exclusion(:nickname, Config.get([User, :restricted_nicknames])) +    |> validate_format(:nickname, local_nickname_regex()) +    |> put_ap_id() +    |> unique_constraint(:ap_id) +    |> put_following_and_follower_address() +  end +    def register_changeset(struct, params \\ %{}, opts \\ []) do      bio_limit = Config.get([:instance, :user_bio_length], 5000)      name_limit = Config.get([:instance, :user_name_length], 100) diff --git a/lib/pleroma/web/auth/ldap_authenticator.ex b/lib/pleroma/web/auth/ldap_authenticator.ex index f63a66c03..402ab428b 100644 --- a/lib/pleroma/web/auth/ldap_authenticator.ex +++ b/lib/pleroma/web/auth/ldap_authenticator.ex @@ -28,10 +28,6 @@ defmodule Pleroma.Web.Auth.LDAPAuthenticator do           %User{} = user <- ldap_user(name, password) do        {:ok, user}      else -      {:error, {:ldap_connection_error, _}} -> -        # When LDAP is unavailable, try default authenticator -        @base.get_user(conn) -        {:ldap, _} ->          @base.get_user(conn) @@ -92,7 +88,7 @@ defmodule Pleroma.Web.Auth.LDAPAuthenticator do              user            _ -> -            register_user(connection, base, uid, name, password) +            register_user(connection, base, uid, name)          end        error -> @@ -100,34 +96,31 @@ defmodule Pleroma.Web.Auth.LDAPAuthenticator do      end    end -  defp register_user(connection, base, uid, name, password) do +  defp register_user(connection, base, uid, name) do      case :eldap.search(connection, [             {:base, to_charlist(base)},             {:filter, :eldap.equalityMatch(to_charlist(uid), to_charlist(name))},             {:scope, :eldap.wholeSubtree()}, -           {:attributes, ['mail', 'email']},             {:timeout, @search_timeout}           ]) do        {:ok, {:eldap_search_result, [{:eldap_entry, _, attributes}], _}} -> -        with {_, [mail]} <- List.keyfind(attributes, 'mail', 0) do -          params = %{ -            email: :erlang.list_to_binary(mail), -            name: name, -            nickname: name, -            password: password, -            password_confirmation: password -          } - -          changeset = User.register_changeset(%User{}, params) - -          case User.register(changeset) do -            {:ok, user} -> user -            error -> error +        params = %{ +          name: name, +          nickname: name, +          password: nil +        } + +        params = +          case List.keyfind(attributes, 'mail', 0) do +            {_, [mail]} -> Map.put_new(params, :email, :erlang.list_to_binary(mail)) +            _ -> params            end -        else -          _ -> -            Logger.error("Could not find LDAP attribute mail: #{inspect(attributes)}") -            {:error, :ldap_registration_missing_attributes} + +        changeset = User.register_changeset_ldap(%User{}, params) + +        case User.register(changeset) do +          {:ok, user} -> user +          error -> error          end        error -> | 
