foxhole/app/main.py

#!/usr/bin/env python3
"""Some application path."""
from typing import Any
import sys
import fastapi

from fastapi import FastAPI
from fastapi import Depends
from fastapi import Request
from fastapi import Response
from fastapi.exceptions import HTTPException
from fastapi.templating import Jinja2Templates
from starlette.responses import JSONResponse

from loguru import logger
from sqlalchemy import select

from app import models
from app.utils import precheck
from app.database import get_db_session
from app.config import DEBUG
from app.activitypub import ME
from app.config import BASE_URL, POST_TOKEN
from app.config import DOMAIN
from app.config import ID
from app.config import USERNAME
from app.config import VERSION
from app.database import AsyncSession
from app.boxes import save_incoming
from app.activitypub import VisibilityEnum
from app.boxes import _send_create
from app.orgpython import to_html
from app.hysql import get_index_status


def _check_0rtt_early_data(request: Request) -> None:
    """Disable TLS1.3 0-RTT requests for non-GET."""
    if request.headers.get("Early-Data", None) == "1" \
       and request.method != "GET":
        raise fastapi.HTTPException(status_code=425, detail="Too early")


app = FastAPI(
    docs_url=None, redoc_url=None,
    dependencies=[Depends(_check_0rtt_early_data)]
)

templates = Jinja2Templates(directory="templates")

logger.remove()
logger.add(sys.stdout, level="DEBUG" if DEBUG else "INFO")
logger.add("output.log", level="DEBUG")


# pylint: disable=too-few-public-methods
class ActivityPubResponse(JSONResponse):
    """Simple wrap JSONresponse return ActivityPub response."""
    media_type = "application/activity+json"


def is_ap_requested(req: Request) -> bool:
    """Check resquest is ActivityPub request."""
    accept_value = req.headers.get("accept")
    if not accept_value:
        return False
    for i in [
        "application/activity+json",
        "application/ld+json",
    ]:
        if accept_value.startswith(i):
            return True

    return False


@app.get("/")
async def index(
    request: Request,
    db_session: AsyncSession = Depends(get_db_session),
):
    """Return index page."""
    if is_ap_requested(request):
        return ActivityPubResponse(ME)

    statues = await get_index_status(db_session)

    return templates.TemplateResponse(
        request,
        "index.html",
        {
            "request": request,
            "statues": statues,
        },
    )


@app.post("/inbox")
async def inbox(
    request: Request,
    db_session: AsyncSession = Depends(get_db_session),
    httpsig_checker=Depends(precheck.inbox_prechecker),
) -> Response:
    """ActivityPub inbox endpoint."""
    payload = await request.json()

    if not httpsig_checker:
        return Response(status_code=401, content="invalid http-sig")

    if not await save_incoming(db_session, payload):
        return Response(status_code=401, content="invalid activitypub object")

    return Response(status_code=202)


@app.post("/outbox")
async def outbox(
        request: Request,
        db_session: AsyncSession = Depends(get_db_session),
) -> Response:
    """ActivityPub outbox endpoint, now only process client post request."""
    payload = await request.json()
    logger.info(payload)
    post_token = request.headers.get("Authorization")

    def _check_post_token() -> bool:
        if post_token is None:
            return False
        if POST_TOKEN != post_token.split(" ")[1]:
            return False

        return True

    if not _check_post_token():
        logger.warning("Non-valid post token!")
        return Response(status_code=406)

    logger.info("True token")
    note_content = to_html(payload["content"]).replace("\n", "")

    await _send_create(
        db_session,
        "Note",
        note_content,
        payload["visibility"]
    )
    return Response(status_code=200)


@app.get("/tail/{public_id}")
async def outbox_activity_by_public_id(
    public_id: str,
    db_session: AsyncSession = Depends(get_db_session),
) -> ActivityPubResponse:
    """Return note page."""
    outbox_object = (
        await db_session.execute(
            select(models.OutboxObject).where(
                models.OutboxObject.public_id == public_id,
                models.OutboxObject.is_deleted.is_(False),
            )
        )
    ).scalar_one_or_none()
    if not outbox_object:
        raise HTTPException(status_code=404)

    return ActivityPubResponse(outbox_object.ap_object)


@app.get("/.well-known/webfinger")
async def wellknown_webfinger(resource: str) -> JSONResponse:
    """Exposes/servers WebFinger data."""
    if resource not in [f"acct:{USERNAME}@{DOMAIN}", ID]:
        logger.info(f"Got invalid req for {resource}")
        raise HTTPException(status_code=404)

    response = {
        "subject": f"acct:{USERNAME}@{DOMAIN}",
        "aliases": [ID],
        "links": [
            {
                "rel": "http://webfinger.net/rel/profile-page",
                "type": "text/html",
                "href": ID + "/",
            },
            {"rel": "self", "type": "application/activity+json", "href": ID},
            {
                "rel": "http://ostatus.org/schema/1.0/subscribe",
                "template": BASE_URL + "/admin/lookup?query={uri}",
            },
        ],
    }

    return JSONResponse(
        response,
        media_type="application/jrd+json; charset=utf-8",
        headers={"Access-Control-Allow-Origin": "*"},
    )


@app.get("/.well-known/nodeinfo")
async def well_known_nodeinfo() -> dict[str, Any]:
    """Exposes nodeinfo path."""
    return {
        "links": [
            {
                "rel": "http://nodeinfo.diaspora.software/ns/schema/2.0",
                "href": f"{BASE_URL}/nodeinfo/2.0",
            }
        ]
    }


@app.get("/nodeinfo/2.0")
async def nodeinfo():
    """Return site nodeinfo."""
    return JSONResponse(
        {
            "version": "2.0",
            "software": {
                "name": "foxhole",
                "version": VERSION,
            },
            "protocols": ["activitypub"],
            "services": {"inbound": [], "outbound": []},
            "usage": {"users": {"total": 1}, "localPosts": 0},  # TODO
            "openRegistrations": False,
            "metadata": {},
        },
    )
app/base 2022-11-16 10:29:44 +01:00			`#!/usr/bin/env python3`
[lint] main.py 2023-07-29 12:22:16 +02:00			`"""Some application path."""`
			`from typing import Any`
[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00			`import sys`
app/base 2022-11-16 10:29:44 +01:00			`import fastapi`

			`from fastapi import FastAPI`
			`from fastapi import Depends`
			`from fastapi import Request`
[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00			`from fastapi import Response`
			`from fastapi.exceptions import HTTPException`
[feat] show note in index 2023-07-30 14:48:50 +02:00			`from fastapi.templating import Jinja2Templates`
[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00			`from starlette.responses import JSONResponse`

			`from loguru import logger`
[lint] main.py 2023-07-29 12:22:16 +02:00			`from sqlalchemy import select`
[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00
[lint] main.py 2023-07-29 12:22:16 +02:00			`from app import models`
feat/add deletc activiyt precheck && refactor precheck 2023-03-19 05:51:20 +01:00			`from app.utils import precheck`
[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00			`from app.database import get_db_session`
refactor/httpsig check 2023-03-17 10:59:29 +01:00			`from app.config import DEBUG`
[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00			`from app.activitypub import ME`
feat/send note via HTTP post 2023-04-02 09:14:37 +02:00			`from app.config import BASE_URL, POST_TOKEN`
[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00			`from app.config import DOMAIN`
			`from app.config import ID`
			`from app.config import USERNAME`
feat/show version close #5 2023-03-18 06:08:17 +01:00			`from app.config import VERSION`
[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00			`from app.database import AsyncSession`
refactor/httpsig check 2023-03-17 10:59:29 +01:00			`from app.boxes import save_incoming`
[lint] main.py 2023-07-29 12:22:16 +02:00			`from app.activitypub import VisibilityEnum`
			`from app.boxes import _send_create`
			`from app.orgpython import to_html`
[feat] add FOLLOWERS_ONLY visibility support 2024-03-17 09:46:03 +01:00			`from app.hysql import get_index_status`
app/base 2022-11-16 10:29:44 +01:00
feat/show public object fix outbox public id 2023-04-01 18:34:46 +02:00
app/base 2022-11-16 10:29:44 +01:00			`def _check_0rtt_early_data(request: Request) -> None:`
			`"""Disable TLS1.3 0-RTT requests for non-GET."""`
[lint] main.py 2023-07-29 14:49:12 +02:00			`if request.headers.get("Early-Data", None) == "1" \`
			`and request.method != "GET":`
app/base 2022-11-16 10:29:44 +01:00			`raise fastapi.HTTPException(status_code=425, detail="Too early")`

[lint] main.py 2023-07-29 14:49:12 +02:00
app/base 2022-11-16 10:29:44 +01:00			`app = FastAPI(`
[lint] main.py 2023-07-29 14:49:12 +02:00			`docs_url=None, redoc_url=None,`
			`dependencies=[Depends(_check_0rtt_early_data)]`
app/base 2022-11-16 10:29:44 +01:00			`)`

[feat] show note in index 2023-07-30 14:48:50 +02:00			`templates = Jinja2Templates(directory="templates")`

[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00			`logger.remove()`
			`logger.add(sys.stdout, level="DEBUG" if DEBUG else "INFO")`
chores/output log file 2023-03-18 15:39:46 +01:00			`logger.add("output.log", level="DEBUG")`
[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00
[lint] main.py 2023-07-29 14:49:12 +02:00
			`# pylint: disable=too-few-public-methods`
			`class ActivityPubResponse(JSONResponse):`
[lint] main.py 2023-07-29 12:22:16 +02:00			`"""Simple wrap JSONresponse return ActivityPub response."""`
feat/show public object fix outbox public id 2023-04-01 18:34:46 +02:00			`media_type = "application/activity+json"`


[tests] add index tests 2023-04-03 09:16:46 +02:00			`def is_ap_requested(req: Request) -> bool:`
[lint] main.py 2023-07-29 12:22:16 +02:00			`"""Check resquest is ActivityPub request."""`
[tests] add index tests 2023-04-03 09:16:46 +02:00			`accept_value = req.headers.get("accept")`
			`if not accept_value:`
			`return False`
[lint] main.py 2023-07-29 12:22:16 +02:00			`for i in [`
[tests] add index tests 2023-04-03 09:16:46 +02:00			`"application/activity+json",`
			`"application/ld+json",`
[lint] main.py 2023-07-29 12:22:16 +02:00			`]:`
[tests] add index tests 2023-04-03 09:16:46 +02:00			`if accept_value.startswith(i):`
			`return True`

			`return False`


app/base 2022-11-16 10:29:44 +01:00			`@app.get("/")`
[tests] add index tests 2023-04-03 09:16:46 +02:00			`async def index(`
[refactor] format code & rename var 2023-08-01 16:25:02 +02:00			`request: Request,`
			`db_session: AsyncSession = Depends(get_db_session),`
[tests] add index tests 2023-04-03 09:16:46 +02:00			`):`
[lint] main.py 2023-07-29 12:22:16 +02:00			`"""Return index page."""`
[tests] add index tests 2023-04-03 09:16:46 +02:00			`if is_ap_requested(request):`
			`return ActivityPubResponse(ME)`

[feat] add FOLLOWERS_ONLY visibility support 2024-03-17 09:46:03 +01:00			`statues = await get_index_status(db_session)`
[feat] show note in index 2023-07-30 14:48:50 +02:00
			`return templates.TemplateResponse(`
[feat/test] use pytest-dotenv 2024-02-26 14:12:20 +01:00			`request,`
[feat] show note in index 2023-07-30 14:48:50 +02:00			`"index.html",`
			`{`
			`"request": request,`
			`"statues": statues,`
[refactor] format code & rename var 2023-08-01 16:25:02 +02:00			`},`
[feat] show note in index 2023-07-30 14:48:50 +02:00			`)`
[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00
[lint] main.py 2023-07-29 12:22:16 +02:00
[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00			`@app.post("/inbox")`
			`async def inbox(`
[refactor] format code & rename var 2023-08-01 16:25:02 +02:00			`request: Request,`
			`db_session: AsyncSession = Depends(get_db_session),`
			`httpsig_checker=Depends(precheck.inbox_prechecker),`
[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00			`) -> Response:`
[lint] main.py 2023-07-29 12:22:16 +02:00			`"""ActivityPub inbox endpoint."""`
[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00			`payload = await request.json()`
feat/verify http signature 2023-03-17 09:49:09 +01:00
[lint] main.py 2023-07-29 12:22:16 +02:00			`if not httpsig_checker:`
[perf] change response http code 2023-08-02 11:47:27 +02:00			`return Response(status_code=401, content="invalid http-sig")`
[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00
[lint] main.py 2023-07-29 12:22:16 +02:00			`if not await save_incoming(db_session, payload):`
[perf] change response http code 2023-08-02 11:47:27 +02:00			`return Response(status_code=401, content="invalid activitypub object")`
[lint] main.py 2023-07-29 12:22:16 +02:00
			`return Response(status_code=202)`

feat/show public object fix outbox public id 2023-04-01 18:34:46 +02:00
feat/send note via HTTP post 2023-04-02 09:14:37 +02:00			`@app.post("/outbox")`
			`async def outbox(`
			`request: Request,`
			`db_session: AsyncSession = Depends(get_db_session),`
			`) -> Response:`
[lint] main.py 2023-07-29 12:22:16 +02:00			`"""ActivityPub outbox endpoint, now only process client post request."""`
[feat] support unlisted visibility note 2024-03-04 13:57:57 +01:00			`payload = await request.json()`
			`logger.info(payload)`
fix/token header 2023-04-02 09:48:17 +02:00			`post_token = request.headers.get("Authorization")`
feat/send note via HTTP post 2023-04-02 09:14:37 +02:00
[lint] main.py 2023-07-29 14:49:12 +02:00			`def _check_post_token() -> bool:`
			`if post_token is None:`
			`return False`
			`if POST_TOKEN != post_token.split(" ")[1]:`
			`return False`

			`return True`

			`if not _check_post_token():`
[lint] main.py 2023-07-29 12:22:16 +02:00			`logger.warning("Non-valid post token!")`
			`return Response(status_code=406)`
feat/send note via HTTP post 2023-04-02 09:14:37 +02:00
[lint] main.py 2023-07-29 12:22:16 +02:00			`logger.info("True token")`
[feat] support unlisted visibility note 2024-03-04 13:57:57 +01:00			`note_content = to_html(payload["content"]).replace("\n", "")`
feat/send note via HTTP post 2023-04-02 09:14:37 +02:00
[lint] main.py 2023-07-29 12:22:16 +02:00			`await _send_create(`
			`db_session,`
			`"Note",`
[feat] support unlisted visibility note 2024-03-04 13:57:57 +01:00			`note_content,`
			`payload["visibility"]`
[lint] main.py 2023-07-29 12:22:16 +02:00			`)`
			`return Response(status_code=200)`
feat/send note via HTTP post 2023-04-02 09:14:37 +02:00

feat/show public object fix outbox public id 2023-04-01 18:34:46 +02:00			`@app.get("/tail/{public_id}")`
			`async def outbox_activity_by_public_id(`
			`public_id: str,`
			`db_session: AsyncSession = Depends(get_db_session),`
			`) -> ActivityPubResponse:`
[lint] main.py 2023-07-29 12:22:16 +02:00			`"""Return note page."""`
feat/show public object fix outbox public id 2023-04-01 18:34:46 +02:00			`outbox_object = (`
			`await db_session.execute(`
			`select(models.OutboxObject).where(`
			`models.OutboxObject.public_id == public_id,`
			`models.OutboxObject.is_deleted.is_(False),`
			`)`
			`)`
			`).scalar_one_or_none()`
			`if not outbox_object:`
			`raise HTTPException(status_code=404)`

			`return ActivityPubResponse(outbox_object.ap_object)`


[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00			`@app.get("/.well-known/webfinger")`
			`async def wellknown_webfinger(resource: str) -> JSONResponse:`
			`"""Exposes/servers WebFinger data."""`
			`if resource not in [f"acct:{USERNAME}@{DOMAIN}", ID]:`
			`logger.info(f"Got invalid req for {resource}")`
			`raise HTTPException(status_code=404)`

[refactor] format code & rename var 2023-08-01 16:25:02 +02:00			`response = {`
[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00			`"subject": f"acct:{USERNAME}@{DOMAIN}",`
			`"aliases": [ID],`
			`"links": [`
			`{`
			`"rel": "http://webfinger.net/rel/profile-page",`
			`"type": "text/html",`
			`"href": ID + "/",`
			`},`
			`{"rel": "self", "type": "application/activity+json", "href": ID},`
			`{`
			`"rel": "http://ostatus.org/schema/1.0/subscribe",`
			`"template": BASE_URL + "/admin/lookup?query={uri}",`
			`},`
			`],`
			`}`

			`return JSONResponse(`
[refactor] format code & rename var 2023-08-01 16:25:02 +02:00			`response,`
[WIP]WIP - init profile - receive ap_object 2022-11-22 18:06:19 +01:00			`media_type="application/jrd+json; charset=utf-8",`
			`headers={"Access-Control-Allow-Origin": "*"},`
			`)`
feat/show nodeinfo close #4 2023-03-18 05:56:54 +01:00
[lint] main.py 2023-07-29 12:22:16 +02:00
feat/show nodeinfo close #4 2023-03-18 05:56:54 +01:00			`@app.get("/.well-known/nodeinfo")`
			`async def well_known_nodeinfo() -> dict[str, Any]:`
[lint] main.py 2023-07-29 12:22:16 +02:00			`"""Exposes nodeinfo path."""`
feat/show nodeinfo close #4 2023-03-18 05:56:54 +01:00			`return {`
			`"links": [`
			`{`
			`"rel": "http://nodeinfo.diaspora.software/ns/schema/2.0",`
			`"href": f"{BASE_URL}/nodeinfo/2.0",`
			`}`
			`]`
			`}`


			`@app.get("/nodeinfo/2.0")`
[lint] main.py 2023-07-29 12:22:16 +02:00			`async def nodeinfo():`
			`"""Return site nodeinfo."""`
feat/show nodeinfo close #4 2023-03-18 05:56:54 +01:00			`return JSONResponse(`
			`{`
			`"version": "2.0",`
			`"software": {`
			`"name": "foxhole",`
feat/show version close #5 2023-03-18 06:08:17 +01:00			`"version": VERSION,`
feat/show nodeinfo close #4 2023-03-18 05:56:54 +01:00			`},`
			`"protocols": ["activitypub"],`
			`"services": {"inbound": [], "outbound": []},`
[lint] main.py 2023-07-29 14:49:12 +02:00			`"usage": {"users": {"total": 1}, "localPosts": 0}, # TODO`
feat/show nodeinfo close #4 2023-03-18 05:56:54 +01:00			`"openRegistrations": False,`
			`"metadata": {},`
			`},`
			`)`