GoBlog/webmention.go

202 lines
5.1 KiB
Go

package main
import (
"database/sql"
"errors"
"fmt"
"net/http"
"net/http/httptest"
"strconv"
"strings"
"time"
"github.com/go-chi/chi"
)
type webmentionStatus string
const (
webmentionStatusNew webmentionStatus = "new"
webmentionStatusRenew webmentionStatus = "renew"
webmentionStatusVerified webmentionStatus = "verified"
webmentionStatusApproved webmentionStatus = "approved"
)
type mention struct {
ID int
Source string
Target string
Created int64
Title string
Content string
Author string
}
func initWebmention() {
startWebmentionVerifier()
}
func handleWebmention(w http.ResponseWriter, r *http.Request) {
m, err := extractMention(r)
if err != nil {
http.Error(w, err.Error(), http.StatusBadRequest)
return
}
if !isAllowedHost(httptest.NewRequest(http.MethodGet, m.Target, nil), r.URL.Host, appConfig.Server.Domain) {
http.Error(w, "target not allowed", http.StatusBadRequest)
return
}
if err = createWebmention(m.Source, m.Target); err != nil {
http.Error(w, err.Error(), http.StatusInternalServerError)
return
}
w.WriteHeader(http.StatusAccepted)
_, _ = fmt.Fprint(w, "Webmention accepted")
}
func extractMention(r *http.Request) (*mention, error) {
if !strings.Contains(r.Header.Get(contentType), contentTypeWWWForm) {
return nil, errors.New("Unsupported Content-Type")
}
err := r.ParseForm()
if err != nil {
return nil, err
}
source := r.Form.Get("source")
target := r.Form.Get("target")
if source == "" || target == "" || !isAbsoluteURL(source) || !isAbsoluteURL(target) {
return nil, errors.New("Invalid request")
}
return &mention{
Source: source,
Target: target,
}, nil
}
func webmentionAdmin(w http.ResponseWriter, r *http.Request) {
verified, err := getWebmentions(&webmentionsRequestConfig{
status: webmentionStatusVerified,
})
if err != nil {
http.Error(w, err.Error(), http.StatusInternalServerError)
return
}
approved, err := getWebmentions(&webmentionsRequestConfig{
status: webmentionStatusApproved,
})
if err != nil {
http.Error(w, err.Error(), http.StatusInternalServerError)
return
}
render(w, "webmentionadmin", &renderData{
Data: map[string][]*mention{
"Verified": verified,
"Approved": approved,
},
})
}
func webmentionAdminDelete(w http.ResponseWriter, r *http.Request) {
id, err := strconv.Atoi(chi.URLParam(r, "id"))
if err != nil {
http.Error(w, err.Error(), http.StatusBadRequest)
return
}
err = deleteWebmention(id)
if err != nil {
http.Error(w, err.Error(), http.StatusInternalServerError)
return
}
http.Redirect(w, r, "/webmention/admin", http.StatusFound)
return
}
func webmentionAdminApprove(w http.ResponseWriter, r *http.Request) {
id, err := strconv.Atoi(chi.URLParam(r, "id"))
if err != nil {
http.Error(w, err.Error(), http.StatusBadRequest)
return
}
err = approveWebmention(id)
if err != nil {
http.Error(w, err.Error(), http.StatusInternalServerError)
return
}
http.Redirect(w, r, "/webmention/admin", http.StatusFound)
return
}
func webmentionExists(source, target string) bool {
result := 0
row, err := appDbQueryRow("select exists(select 1 from webmentions where source = ? and target = ?)", source, target)
if err != nil {
return false
}
if err = row.Scan(&result); err != nil {
return false
}
return result == 1
}
func createWebmention(source, target string) (err error) {
if webmentionExists(source, target) {
_, err = appDbExec("update webmentions set status = ? where source = ? and target = ?", webmentionStatusRenew, source, target)
} else {
_, err = appDbExec("insert into webmentions (source, target, created) values (?, ?, ?)", source, target, time.Now().Unix())
}
return err
}
func deleteWebmention(id int) error {
_, err := appDbExec("delete from webmentions where id = ?", id)
return err
}
func approveWebmention(id int) error {
_, err := appDbExec("update webmentions set status = ? where id = ?", webmentionStatusApproved, id)
return err
}
type webmentionsRequestConfig struct {
target string
status webmentionStatus
asc bool
}
func getWebmentions(config *webmentionsRequestConfig) ([]*mention, error) {
mentions := []*mention{}
var rows *sql.Rows
var err error
args := []interface{}{}
filter := ""
if config != nil {
if config.target != "" && config.status != "" {
filter = "where target = @target and status = @status"
args = append(args, sql.Named("target", config.target), sql.Named("status", config.status))
} else if config.target != "" {
filter = "where target = @target"
args = append(args, sql.Named("target", config.target))
} else if config.status != "" {
filter = "where status = @status"
args = append(args, sql.Named("status", config.status))
}
}
order := "desc"
if config.asc {
order = "asc"
}
rows, err = appDbQuery("select id, source, target, created, title, content, author from webmentions "+filter+" order by created "+order, args...)
if err != nil {
return nil, err
}
for rows.Next() {
m := &mention{}
err = rows.Scan(&m.ID, &m.Source, &m.Target, &m.Created, &m.Title, &m.Content, &m.Author)
if err != nil {
return nil, err
}
mentions = append(mentions, m)
}
return mentions, nil
}