1416 lines
37 KiB
Go
1416 lines
37 KiB
Go
//
|
|
// Copyright (c) 2019 Ted Unangst <tedu@tedunangst.com>
|
|
//
|
|
// Permission to use, copy, modify, and distribute this software for any
|
|
// purpose with or without fee is hereby granted, provided that the above
|
|
// copyright notice and this permission notice appear in all copies.
|
|
//
|
|
// THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
|
|
// WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
|
|
// MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
|
|
// ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
|
|
// WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
|
|
// ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
|
|
// OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
|
|
|
|
package main
|
|
|
|
import (
|
|
"bytes"
|
|
"crypto/rand"
|
|
"crypto/rsa"
|
|
"database/sql"
|
|
"fmt"
|
|
"html"
|
|
"html/template"
|
|
"io"
|
|
"log"
|
|
notrand "math/rand"
|
|
"net/http"
|
|
"os"
|
|
"sort"
|
|
"strconv"
|
|
"strings"
|
|
"sync"
|
|
"time"
|
|
|
|
"github.com/gorilla/mux"
|
|
"humungus.tedunangst.com/r/webs/image"
|
|
"humungus.tedunangst.com/r/webs/login"
|
|
"humungus.tedunangst.com/r/webs/templates"
|
|
)
|
|
|
|
type WhatAbout struct {
|
|
ID int64
|
|
Name string
|
|
Display string
|
|
About string
|
|
Key string
|
|
URL string
|
|
}
|
|
|
|
type Honk struct {
|
|
ID int64
|
|
UserID int64
|
|
Username string
|
|
What string
|
|
Honker string
|
|
XID string
|
|
RID string
|
|
Date time.Time
|
|
URL string
|
|
Noise string
|
|
Convoy string
|
|
Audience []string
|
|
Privacy string
|
|
HTML template.HTML
|
|
Donks []*Donk
|
|
}
|
|
|
|
type Donk struct {
|
|
FileID int64
|
|
XID string
|
|
Name string
|
|
URL string
|
|
Media string
|
|
Content []byte
|
|
}
|
|
|
|
type Honker struct {
|
|
ID int64
|
|
UserID int64
|
|
Name string
|
|
XID string
|
|
Flavor string
|
|
Combos []string
|
|
}
|
|
|
|
var serverName string
|
|
var iconName = "icon.png"
|
|
|
|
var readviews *templates.Template
|
|
|
|
func getInfo(r *http.Request) map[string]interface{} {
|
|
templinfo := make(map[string]interface{})
|
|
templinfo["StyleParam"] = getstyleparam("views/style.css")
|
|
templinfo["LocalStyleParam"] = getstyleparam("views/local.css")
|
|
templinfo["ServerName"] = serverName
|
|
templinfo["IconName"] = iconName
|
|
templinfo["UserInfo"] = login.GetUserInfo(r)
|
|
templinfo["LogoutCSRF"] = login.GetCSRF("logout", r)
|
|
return templinfo
|
|
}
|
|
|
|
func homepage(w http.ResponseWriter, r *http.Request) {
|
|
templinfo := getInfo(r)
|
|
u := login.GetUserInfo(r)
|
|
var honks []*Honk
|
|
if u != nil {
|
|
if r.URL.Path == "/atme" {
|
|
honks = gethonksforme(u.UserID)
|
|
} else {
|
|
honks = gethonksforuser(u.UserID)
|
|
}
|
|
templinfo["HonkCSRF"] = login.GetCSRF("honkhonk", r)
|
|
} else {
|
|
honks = getpublichonks()
|
|
}
|
|
|
|
var modtime time.Time
|
|
if len(honks) > 0 {
|
|
modtime = honks[0].Date
|
|
}
|
|
debug := false
|
|
getconfig("debug", &debug)
|
|
imh := r.Header.Get("If-Modified-Since")
|
|
if !debug && imh != "" && !modtime.IsZero() {
|
|
ifmod, err := time.Parse(http.TimeFormat, imh)
|
|
if err == nil && !modtime.After(ifmod) {
|
|
w.WriteHeader(http.StatusNotModified)
|
|
return
|
|
}
|
|
}
|
|
reverbolate(honks)
|
|
|
|
msg := "Things happen."
|
|
getconfig("servermsg", &msg)
|
|
templinfo["Honks"] = honks
|
|
templinfo["ShowRSS"] = true
|
|
templinfo["ServerMessage"] = msg
|
|
if u == nil {
|
|
w.Header().Set("Cache-Control", "max-age=60")
|
|
} else {
|
|
w.Header().Set("Cache-Control", "max-age=0")
|
|
}
|
|
w.Header().Set("Last-Modified", modtime.Format(http.TimeFormat))
|
|
err := readviews.Execute(w, "honkpage.html", templinfo)
|
|
if err != nil {
|
|
log.Print(err)
|
|
}
|
|
}
|
|
|
|
func showrss(w http.ResponseWriter, r *http.Request) {
|
|
name := mux.Vars(r)["name"]
|
|
|
|
var honks []*Honk
|
|
if name != "" {
|
|
honks = gethonksbyuser(name)
|
|
} else {
|
|
honks = getpublichonks()
|
|
}
|
|
reverbolate(honks)
|
|
|
|
home := fmt.Sprintf("https://%s/", serverName)
|
|
base := home
|
|
if name != "" {
|
|
home += "u/" + name
|
|
name += " "
|
|
}
|
|
feed := RssFeed{
|
|
Title: name + "honk",
|
|
Link: home,
|
|
Description: name + "honk rss",
|
|
FeedImage: &RssFeedImage{
|
|
URL: base + "icon.png",
|
|
Title: name + "honk rss",
|
|
Link: home,
|
|
},
|
|
}
|
|
var modtime time.Time
|
|
for _, honk := range honks {
|
|
desc := string(honk.HTML)
|
|
for _, d := range honk.Donks {
|
|
desc += fmt.Sprintf(`<p><a href="%sd/%s">Attachment: %s</a>`,
|
|
base, d.XID, html.EscapeString(d.Name))
|
|
}
|
|
|
|
feed.Items = append(feed.Items, &RssItem{
|
|
Title: fmt.Sprintf("%s %s %s", honk.Username, honk.What, honk.XID),
|
|
Description: RssCData{desc},
|
|
Link: honk.URL,
|
|
PubDate: honk.Date.Format(time.RFC1123),
|
|
})
|
|
if honk.Date.After(modtime) {
|
|
modtime = honk.Date
|
|
}
|
|
}
|
|
w.Header().Set("Cache-Control", "max-age=300")
|
|
w.Header().Set("Last-Modified", modtime.Format(http.TimeFormat))
|
|
|
|
err := feed.Write(w)
|
|
if err != nil {
|
|
log.Printf("error writing rss: %s", err)
|
|
}
|
|
}
|
|
|
|
func butwhatabout(name string) (*WhatAbout, error) {
|
|
row := stmtWhatAbout.QueryRow(name)
|
|
var user WhatAbout
|
|
err := row.Scan(&user.ID, &user.Name, &user.Display, &user.About, &user.Key)
|
|
user.URL = fmt.Sprintf("https://%s/u/%s", serverName, user.Name)
|
|
return &user, err
|
|
}
|
|
|
|
func crappola(j map[string]interface{}) bool {
|
|
t, _ := jsongetstring(j, "type")
|
|
a, _ := jsongetstring(j, "actor")
|
|
o, _ := jsongetstring(j, "object")
|
|
if t == "Delete" && a == o {
|
|
log.Printf("crappola from %s", a)
|
|
return true
|
|
}
|
|
return false
|
|
}
|
|
|
|
func ping(user *WhatAbout, who string) {
|
|
box, err := getboxes(who)
|
|
if err != nil {
|
|
log.Printf("no inbox for ping: %s", err)
|
|
return
|
|
}
|
|
j := NewJunk()
|
|
j["@context"] = itiswhatitis
|
|
j["type"] = "Ping"
|
|
j["id"] = user.URL + "/ping/" + xfiltrate()
|
|
j["actor"] = user.URL
|
|
j["to"] = who
|
|
keyname, key := ziggy(user.Name)
|
|
err = PostJunk(keyname, key, box.In, j)
|
|
if err != nil {
|
|
log.Printf("can't send ping: %s", err)
|
|
return
|
|
}
|
|
log.Printf("sent ping to %s: %s", who, j["id"])
|
|
}
|
|
|
|
func pong(user *WhatAbout, who string, obj string) {
|
|
box, err := getboxes(who)
|
|
if err != nil {
|
|
log.Printf("no inbox for pong %s : %s", who, err)
|
|
return
|
|
}
|
|
j := NewJunk()
|
|
j["@context"] = itiswhatitis
|
|
j["type"] = "Pong"
|
|
j["id"] = user.URL + "/pong/" + xfiltrate()
|
|
j["actor"] = user.URL
|
|
j["to"] = who
|
|
j["object"] = obj
|
|
keyname, key := ziggy(user.Name)
|
|
err = PostJunk(keyname, key, box.In, j)
|
|
if err != nil {
|
|
log.Printf("can't send pong: %s", err)
|
|
return
|
|
}
|
|
}
|
|
|
|
func inbox(w http.ResponseWriter, r *http.Request) {
|
|
name := mux.Vars(r)["name"]
|
|
user, err := butwhatabout(name)
|
|
if err != nil {
|
|
http.NotFound(w, r)
|
|
return
|
|
}
|
|
var buf bytes.Buffer
|
|
io.Copy(&buf, r.Body)
|
|
payload := buf.Bytes()
|
|
j, err := ReadJunk(bytes.NewReader(payload))
|
|
if err != nil {
|
|
log.Printf("bad payload: %s", err)
|
|
io.WriteString(os.Stdout, "bad payload\n")
|
|
os.Stdout.Write(payload)
|
|
io.WriteString(os.Stdout, "\n")
|
|
return
|
|
}
|
|
if crappola(j) {
|
|
return
|
|
}
|
|
keyname, err := zag(r, payload)
|
|
if err != nil {
|
|
log.Printf("inbox message failed signature: %s", err)
|
|
if keyname != "" {
|
|
keyname, err = makeitworksomehowwithoutregardforkeycontinuity(keyname, r, payload)
|
|
}
|
|
if err != nil {
|
|
fd, _ := os.OpenFile("savedinbox.json", os.O_CREATE|os.O_WRONLY|os.O_APPEND, 0666)
|
|
io.WriteString(fd, "bad signature:\n")
|
|
WriteJunk(fd, j)
|
|
io.WriteString(fd, "\n")
|
|
fd.Close()
|
|
return
|
|
}
|
|
}
|
|
what, _ := jsongetstring(j, "type")
|
|
if what == "Like" {
|
|
return
|
|
}
|
|
who, _ := jsongetstring(j, "actor")
|
|
if !keymatch(keyname, who, what, user.ID) {
|
|
log.Printf("keyname actor mismatch: %s <> %s", keyname, who)
|
|
return
|
|
}
|
|
objid, _ := jsongetstring(j, "id")
|
|
if thoudostbitethythumb(user.ID, []string{who}, objid) {
|
|
log.Printf("ignoring thumb sucker %s", who)
|
|
return
|
|
}
|
|
fd, _ := os.OpenFile("savedinbox.json", os.O_CREATE|os.O_WRONLY|os.O_APPEND, 0666)
|
|
WriteJunk(fd, j)
|
|
io.WriteString(fd, "\n")
|
|
fd.Close()
|
|
switch what {
|
|
case "Ping":
|
|
obj, _ := jsongetstring(j, "id")
|
|
log.Printf("ping from %s: %s", who, obj)
|
|
pong(user, who, obj)
|
|
case "Pong":
|
|
obj, _ := jsongetstring(j, "object")
|
|
log.Printf("pong from %s: %s", who, obj)
|
|
case "Follow":
|
|
obj, _ := jsongetstring(j, "object")
|
|
if obj == user.URL {
|
|
log.Printf("updating honker follow: %s", who)
|
|
rubadubdub(user, j)
|
|
} else {
|
|
log.Printf("can't follow %s", obj)
|
|
}
|
|
case "Accept":
|
|
log.Printf("updating honker accept: %s", who)
|
|
_, err = stmtUpdateFlavor.Exec("sub", user.ID, who, "presub")
|
|
if err != nil {
|
|
log.Printf("error updating honker: %s", err)
|
|
return
|
|
}
|
|
case "Undo":
|
|
obj, ok := jsongetmap(j, "object")
|
|
if !ok {
|
|
log.Printf("unknown undo no object")
|
|
} else {
|
|
what, _ := jsongetstring(obj, "type")
|
|
switch what {
|
|
case "Follow":
|
|
log.Printf("updating honker undo: %s", who)
|
|
_, err = stmtUpdateFlavor.Exec("undub", user.ID, who, "dub")
|
|
if err != nil {
|
|
log.Printf("error updating honker: %s", err)
|
|
return
|
|
}
|
|
case "Like":
|
|
default:
|
|
log.Printf("unknown undo: %s", what)
|
|
}
|
|
}
|
|
default:
|
|
xonk := xonkxonk(user, j)
|
|
if xonk != nil {
|
|
savexonk(user, xonk)
|
|
}
|
|
}
|
|
}
|
|
|
|
func outbox(w http.ResponseWriter, r *http.Request) {
|
|
name := mux.Vars(r)["name"]
|
|
user, err := butwhatabout(name)
|
|
if err != nil {
|
|
http.NotFound(w, r)
|
|
return
|
|
}
|
|
honks := gethonksbyuser(name)
|
|
|
|
var jonks []map[string]interface{}
|
|
for _, h := range honks {
|
|
j, _ := jonkjonk(user, h)
|
|
jonks = append(jonks, j)
|
|
}
|
|
|
|
j := NewJunk()
|
|
j["@context"] = itiswhatitis
|
|
j["id"] = user.URL + "/outbox"
|
|
j["type"] = "OrderedCollection"
|
|
j["totalItems"] = len(jonks)
|
|
j["orderedItems"] = jonks
|
|
|
|
w.Header().Set("Cache-Control", "max-age=60")
|
|
w.Header().Set("Content-Type", theonetruename)
|
|
WriteJunk(w, j)
|
|
}
|
|
|
|
func emptiness(w http.ResponseWriter, r *http.Request) {
|
|
name := mux.Vars(r)["name"]
|
|
user, err := butwhatabout(name)
|
|
if err != nil {
|
|
http.NotFound(w, r)
|
|
return
|
|
}
|
|
colname := "/followers"
|
|
if strings.HasSuffix(r.URL.Path, "/following") {
|
|
colname = "/following"
|
|
}
|
|
j := NewJunk()
|
|
j["@context"] = itiswhatitis
|
|
j["id"] = user.URL + colname
|
|
j["type"] = "OrderedCollection"
|
|
j["totalItems"] = 0
|
|
j["orderedItems"] = []interface{}{}
|
|
|
|
w.Header().Set("Cache-Control", "max-age=60")
|
|
w.Header().Set("Content-Type", theonetruename)
|
|
WriteJunk(w, j)
|
|
}
|
|
|
|
func showuser(w http.ResponseWriter, r *http.Request) {
|
|
name := mux.Vars(r)["name"]
|
|
user, err := butwhatabout(name)
|
|
if err != nil {
|
|
http.NotFound(w, r)
|
|
return
|
|
}
|
|
if friendorfoe(r.Header.Get("Accept")) {
|
|
j := asjonker(user)
|
|
w.Header().Set("Cache-Control", "max-age=600")
|
|
w.Header().Set("Content-Type", theonetruename)
|
|
WriteJunk(w, j)
|
|
return
|
|
}
|
|
honks := gethonksbyuser(name)
|
|
u := login.GetUserInfo(r)
|
|
honkpage(w, r, u, user, honks, "")
|
|
}
|
|
|
|
func showhonker(w http.ResponseWriter, r *http.Request) {
|
|
name := mux.Vars(r)["name"]
|
|
u := login.GetUserInfo(r)
|
|
honks := gethonksbyhonker(u.UserID, name)
|
|
honkpage(w, r, u, nil, honks, "honks by honker: "+name)
|
|
}
|
|
|
|
func showcombo(w http.ResponseWriter, r *http.Request) {
|
|
name := mux.Vars(r)["name"]
|
|
u := login.GetUserInfo(r)
|
|
honks := gethonksbycombo(u.UserID, name)
|
|
honkpage(w, r, u, nil, honks, "honks by combo: "+name)
|
|
}
|
|
func showconvoy(w http.ResponseWriter, r *http.Request) {
|
|
c := r.FormValue("c")
|
|
var userid int64 = -1
|
|
u := login.GetUserInfo(r)
|
|
if u != nil {
|
|
userid = u.UserID
|
|
}
|
|
honks := gethonksbyconvoy(userid, c)
|
|
honkpage(w, r, u, nil, honks, "honks in convoy: "+c)
|
|
}
|
|
|
|
func fingerlicker(w http.ResponseWriter, r *http.Request) {
|
|
orig := r.FormValue("resource")
|
|
|
|
log.Printf("finger lick: %s", orig)
|
|
|
|
if strings.HasPrefix(orig, "acct:") {
|
|
orig = orig[5:]
|
|
}
|
|
|
|
name := orig
|
|
idx := strings.LastIndexByte(name, '/')
|
|
if idx != -1 {
|
|
name = name[idx+1:]
|
|
if "https://"+serverName+"/u/"+name != orig {
|
|
log.Printf("foreign request rejected")
|
|
name = ""
|
|
}
|
|
} else {
|
|
idx = strings.IndexByte(name, '@')
|
|
if idx != -1 {
|
|
name = name[:idx]
|
|
if name+"@"+serverName != orig {
|
|
log.Printf("foreign request rejected")
|
|
name = ""
|
|
}
|
|
}
|
|
}
|
|
user, err := butwhatabout(name)
|
|
if err != nil {
|
|
http.NotFound(w, r)
|
|
return
|
|
}
|
|
|
|
j := NewJunk()
|
|
j["subject"] = fmt.Sprintf("acct:%s@%s", user.Name, serverName)
|
|
j["aliases"] = []string{user.URL}
|
|
var links []map[string]interface{}
|
|
l := NewJunk()
|
|
l["rel"] = "self"
|
|
l["type"] = `application/activity+json`
|
|
l["href"] = user.URL
|
|
links = append(links, l)
|
|
j["links"] = links
|
|
|
|
w.Header().Set("Cache-Control", "max-age=3600")
|
|
w.Header().Set("Content-Type", "application/jrd+json")
|
|
WriteJunk(w, j)
|
|
}
|
|
|
|
func showhonk(w http.ResponseWriter, r *http.Request) {
|
|
name := mux.Vars(r)["name"]
|
|
xid := mux.Vars(r)["xid"]
|
|
user, err := butwhatabout(name)
|
|
if err != nil {
|
|
http.NotFound(w, r)
|
|
return
|
|
}
|
|
h := getxonk(name, xid)
|
|
if h == nil {
|
|
http.NotFound(w, r)
|
|
return
|
|
}
|
|
if friendorfoe(r.Header.Get("Accept")) {
|
|
_, j := jonkjonk(user, h)
|
|
j["@context"] = itiswhatitis
|
|
w.Header().Set("Cache-Control", "max-age=3600")
|
|
w.Header().Set("Content-Type", theonetruename)
|
|
WriteJunk(w, j)
|
|
return
|
|
}
|
|
u := login.GetUserInfo(r)
|
|
honkpage(w, r, u, nil, []*Honk{h}, "one honk")
|
|
}
|
|
|
|
func honkpage(w http.ResponseWriter, r *http.Request, u *login.UserInfo, user *WhatAbout,
|
|
honks []*Honk, infomsg string) {
|
|
reverbolate(honks)
|
|
templinfo := getInfo(r)
|
|
if u != nil {
|
|
if user != nil && u.Username == user.Name {
|
|
templinfo["UserCSRF"] = login.GetCSRF("saveuser", r)
|
|
}
|
|
templinfo["HonkCSRF"] = login.GetCSRF("honkhonk", r)
|
|
}
|
|
if u == nil {
|
|
w.Header().Set("Cache-Control", "max-age=60")
|
|
}
|
|
if user != nil {
|
|
templinfo["Name"] = user.Name
|
|
whatabout := user.About
|
|
templinfo["RawWhatAbout"] = whatabout
|
|
whatabout = obfusbreak(whatabout)
|
|
templinfo["WhatAbout"] = cleanstring(whatabout)
|
|
}
|
|
templinfo["Honks"] = honks
|
|
templinfo["ServerMessage"] = infomsg
|
|
err := readviews.Execute(w, "honkpage.html", templinfo)
|
|
if err != nil {
|
|
log.Print(err)
|
|
}
|
|
}
|
|
|
|
func saveuser(w http.ResponseWriter, r *http.Request) {
|
|
whatabout := r.FormValue("whatabout")
|
|
u := login.GetUserInfo(r)
|
|
db := opendatabase()
|
|
_, err := db.Exec("update users set about = ? where username = ?", whatabout, u.Username)
|
|
if err != nil {
|
|
log.Printf("error bouting what: %s", err)
|
|
}
|
|
|
|
http.Redirect(w, r, "/u/"+u.Username, http.StatusSeeOther)
|
|
}
|
|
|
|
func gethonkers(userid int64) []*Honker {
|
|
rows, err := stmtHonkers.Query(userid)
|
|
if err != nil {
|
|
log.Printf("error querying honkers: %s", err)
|
|
return nil
|
|
}
|
|
defer rows.Close()
|
|
var honkers []*Honker
|
|
for rows.Next() {
|
|
var f Honker
|
|
var combos string
|
|
err = rows.Scan(&f.ID, &f.UserID, &f.Name, &f.XID, &f.Flavor, &combos)
|
|
f.Combos = strings.Split(strings.TrimSpace(combos), " ")
|
|
if err != nil {
|
|
log.Printf("error scanning honker: %s", err)
|
|
return nil
|
|
}
|
|
honkers = append(honkers, &f)
|
|
}
|
|
return honkers
|
|
}
|
|
|
|
func getdubs(userid int64) []*Honker {
|
|
rows, err := stmtDubbers.Query(userid)
|
|
if err != nil {
|
|
log.Printf("error querying dubs: %s", err)
|
|
return nil
|
|
}
|
|
defer rows.Close()
|
|
var honkers []*Honker
|
|
for rows.Next() {
|
|
var f Honker
|
|
err = rows.Scan(&f.ID, &f.UserID, &f.Name, &f.XID, &f.Flavor)
|
|
if err != nil {
|
|
log.Printf("error scanning honker: %s", err)
|
|
return nil
|
|
}
|
|
honkers = append(honkers, &f)
|
|
}
|
|
return honkers
|
|
}
|
|
|
|
func getxonk(name, xid string) *Honk {
|
|
var h Honk
|
|
var dt, aud string
|
|
row := stmtOneXonk.QueryRow(xid)
|
|
err := row.Scan(&h.ID, &h.UserID, &h.Username, &h.What, &h.Honker, &h.XID, &h.RID,
|
|
&dt, &h.URL, &aud, &h.Noise, &h.Convoy)
|
|
if err != nil {
|
|
if err != sql.ErrNoRows {
|
|
log.Printf("error scanning xonk: %s", err)
|
|
}
|
|
return nil
|
|
}
|
|
if name != "" && h.Username != name {
|
|
log.Printf("user xonk mismatch")
|
|
return nil
|
|
}
|
|
h.Date, _ = time.Parse(dbtimeformat, dt)
|
|
h.Audience = strings.Split(aud, " ")
|
|
donksforhonks([]*Honk{&h})
|
|
return &h
|
|
}
|
|
|
|
func getpublichonks() []*Honk {
|
|
dt := time.Now().UTC().Add(-2 * 24 * time.Hour).Format(dbtimeformat)
|
|
rows, err := stmtPublicHonks.Query(dt)
|
|
return getsomehonks(rows, err)
|
|
}
|
|
func gethonksbyuser(name string) []*Honk {
|
|
dt := time.Now().UTC().Add(-2 * 24 * time.Hour).Format(dbtimeformat)
|
|
rows, err := stmtUserHonks.Query(name, dt)
|
|
return getsomehonks(rows, err)
|
|
}
|
|
func gethonksforuser(userid int64) []*Honk {
|
|
dt := time.Now().UTC().Add(-2 * 24 * time.Hour).Format(dbtimeformat)
|
|
rows, err := stmtHonksForUser.Query(userid, dt, userid)
|
|
return getsomehonks(rows, err)
|
|
}
|
|
func gethonksforme(userid int64) []*Honk {
|
|
dt := time.Now().UTC().Add(-4 * 24 * time.Hour).Format(dbtimeformat)
|
|
rows, err := stmtHonksForMe.Query(userid, dt, userid)
|
|
return getsomehonks(rows, err)
|
|
}
|
|
func gethonksbyhonker(userid int64, honker string) []*Honk {
|
|
rows, err := stmtHonksByHonker.Query(userid, honker, userid)
|
|
return getsomehonks(rows, err)
|
|
}
|
|
func gethonksbycombo(userid int64, combo string) []*Honk {
|
|
combo = "% " + combo + " %"
|
|
rows, err := stmtHonksByCombo.Query(userid, combo, userid)
|
|
return getsomehonks(rows, err)
|
|
}
|
|
func gethonksbyconvoy(userid int64, convoy string) []*Honk {
|
|
rows, err := stmtHonksByConvoy.Query(userid, convoy)
|
|
return getsomehonks(rows, err)
|
|
}
|
|
|
|
func getsomehonks(rows *sql.Rows, err error) []*Honk {
|
|
if err != nil {
|
|
log.Printf("error querying honks: %s", err)
|
|
return nil
|
|
}
|
|
defer rows.Close()
|
|
var honks []*Honk
|
|
for rows.Next() {
|
|
var h Honk
|
|
var dt, aud string
|
|
err = rows.Scan(&h.ID, &h.UserID, &h.Username, &h.What, &h.Honker, &h.XID, &h.RID,
|
|
&dt, &h.URL, &aud, &h.Noise, &h.Convoy)
|
|
if err != nil {
|
|
log.Printf("error scanning honks: %s", err)
|
|
return nil
|
|
}
|
|
h.Date, _ = time.Parse(dbtimeformat, dt)
|
|
h.Audience = strings.Split(aud, " ")
|
|
honks = append(honks, &h)
|
|
}
|
|
rows.Close()
|
|
donksforhonks(honks)
|
|
return honks
|
|
}
|
|
|
|
func donksforhonks(honks []*Honk) {
|
|
db := opendatabase()
|
|
var ids []string
|
|
hmap := make(map[int64]*Honk)
|
|
for _, h := range honks {
|
|
ids = append(ids, fmt.Sprintf("%d", h.ID))
|
|
hmap[h.ID] = h
|
|
}
|
|
q := fmt.Sprintf("select honkid, donks.fileid, xid, name, url, media from donks join files on donks.fileid = files.fileid where honkid in (%s)", strings.Join(ids, ","))
|
|
rows, err := db.Query(q)
|
|
if err != nil {
|
|
log.Printf("error querying donks: %s", err)
|
|
return
|
|
}
|
|
defer rows.Close()
|
|
for rows.Next() {
|
|
var hid int64
|
|
var d Donk
|
|
err = rows.Scan(&hid, &d.FileID, &d.XID, &d.Name, &d.URL, &d.Media)
|
|
if err != nil {
|
|
log.Printf("error scanning donk: %s", err)
|
|
continue
|
|
}
|
|
h := hmap[hid]
|
|
h.Donks = append(h.Donks, &d)
|
|
}
|
|
}
|
|
|
|
func savebonk(w http.ResponseWriter, r *http.Request) {
|
|
xid := r.FormValue("xid")
|
|
|
|
log.Printf("bonking %s", xid)
|
|
|
|
xonk := getxonk("", xid)
|
|
if xonk == nil {
|
|
return
|
|
}
|
|
if xonk.Honker == "" {
|
|
xonk.XID = fmt.Sprintf("https://%s/u/%s/h/%s", serverName, xonk.Username, xonk.XID)
|
|
}
|
|
convoy := xonk.Convoy
|
|
|
|
userinfo := login.GetUserInfo(r)
|
|
|
|
dt := time.Now().UTC()
|
|
bonk := Honk{
|
|
UserID: userinfo.UserID,
|
|
Username: userinfo.Username,
|
|
Honker: xonk.Honker,
|
|
What: "bonk",
|
|
XID: xonk.XID,
|
|
Date: dt,
|
|
Noise: xonk.Noise,
|
|
Convoy: convoy,
|
|
Donks: xonk.Donks,
|
|
Audience: oneofakind(prepend(thewholeworld, xonk.Audience)),
|
|
}
|
|
|
|
user, _ := butwhatabout(userinfo.Username)
|
|
|
|
aud := strings.Join(bonk.Audience, " ")
|
|
whofore := 0
|
|
if strings.Contains(aud, user.URL) {
|
|
whofore = 1
|
|
}
|
|
res, err := stmtSaveHonk.Exec(userinfo.UserID, "bonk", "", xid, "",
|
|
dt.Format(dbtimeformat), "", aud, bonk.Noise, bonk.Convoy, whofore)
|
|
if err != nil {
|
|
log.Printf("error saving bonk: %s", err)
|
|
return
|
|
}
|
|
bonk.ID, _ = res.LastInsertId()
|
|
for _, d := range bonk.Donks {
|
|
_, err = stmtSaveDonk.Exec(bonk.ID, d.FileID)
|
|
if err != nil {
|
|
log.Printf("err saving donk: %s", err)
|
|
return
|
|
}
|
|
}
|
|
|
|
go honkworldwide(user, &bonk)
|
|
|
|
}
|
|
|
|
func zonkit(w http.ResponseWriter, r *http.Request) {
|
|
wherefore := r.FormValue("wherefore")
|
|
var what string
|
|
switch wherefore {
|
|
case "this honk":
|
|
what = r.FormValue("honk")
|
|
wherefore = "zonk"
|
|
case "this honker":
|
|
what = r.FormValue("honker")
|
|
wherefore = "zonker"
|
|
case "this convoy":
|
|
what = r.FormValue("convoy")
|
|
wherefore = "zonvoy"
|
|
}
|
|
if what == "" {
|
|
return
|
|
}
|
|
|
|
log.Printf("zonking %s %s", wherefore, what)
|
|
userinfo := login.GetUserInfo(r)
|
|
if wherefore == "zonk" {
|
|
xonk := getxonk(userinfo.Username, what)
|
|
stmtZonkIt.Exec(userinfo.UserID, what)
|
|
if xonk != nil && xonk.Honker == "" {
|
|
zonk := Honk{
|
|
What: "zonk",
|
|
XID: xonk.XID,
|
|
Date: time.Now().UTC(),
|
|
Audience: oneofakind(xonk.Audience),
|
|
}
|
|
|
|
user, _ := butwhatabout(userinfo.Username)
|
|
log.Printf("announcing deleted honk: %s", what)
|
|
go honkworldwide(user, &zonk)
|
|
}
|
|
} else {
|
|
_, err := stmtSaveZonker.Exec(userinfo.UserID, what, wherefore)
|
|
if err != nil {
|
|
log.Printf("error saving zonker: %s", err)
|
|
return
|
|
}
|
|
}
|
|
}
|
|
|
|
func savehonk(w http.ResponseWriter, r *http.Request) {
|
|
rid := r.FormValue("rid")
|
|
noise := r.FormValue("noise")
|
|
|
|
userinfo := login.GetUserInfo(r)
|
|
|
|
dt := time.Now().UTC()
|
|
xid := xfiltrate()
|
|
what := "honk"
|
|
if rid != "" {
|
|
what = "tonk"
|
|
}
|
|
honk := Honk{
|
|
UserID: userinfo.UserID,
|
|
Username: userinfo.Username,
|
|
What: "honk",
|
|
XID: xid,
|
|
Date: dt,
|
|
}
|
|
if noise != "" && noise[0] == '@' {
|
|
honk.Audience = append(grapevine(noise), thewholeworld)
|
|
} else {
|
|
honk.Audience = prepend(thewholeworld, grapevine(noise))
|
|
}
|
|
var convoy string
|
|
if rid != "" {
|
|
xonk := getxonk("", rid)
|
|
if xonk != nil {
|
|
if xonk.Honker == "" {
|
|
rid = "https://" + serverName + "/u/" + xonk.Username + "/h/" + rid
|
|
}
|
|
honk.Audience = append(honk.Audience, xonk.Audience...)
|
|
convoy = xonk.Convoy
|
|
} else {
|
|
xonkaud, c := whosthere(rid)
|
|
honk.Audience = append(honk.Audience, xonkaud...)
|
|
convoy = c
|
|
}
|
|
honk.RID = rid
|
|
}
|
|
if convoy == "" {
|
|
convoy = "data:,electrichonkytonk-" + xfiltrate()
|
|
}
|
|
butnottooloud(honk.Audience)
|
|
honk.Audience = oneofakind(honk.Audience)
|
|
noise = obfusbreak(noise)
|
|
honk.Noise = noise
|
|
honk.Convoy = convoy
|
|
|
|
file, filehdr, err := r.FormFile("donk")
|
|
if err == nil {
|
|
var buf bytes.Buffer
|
|
io.Copy(&buf, file)
|
|
file.Close()
|
|
data := buf.Bytes()
|
|
xid := xfiltrate()
|
|
var media, name string
|
|
img, err := image.Vacuum(&buf)
|
|
if err == nil {
|
|
data = img.Data
|
|
format := img.Format
|
|
media = "image/" + format
|
|
if format == "jpeg" {
|
|
format = "jpg"
|
|
}
|
|
name = xid + "." + format
|
|
xid = name
|
|
} else {
|
|
maxsize := 100000
|
|
if len(data) > maxsize {
|
|
log.Printf("bad image: %s too much text: %d", err, len(data))
|
|
http.Error(w, "didn't like your attachment", http.StatusUnsupportedMediaType)
|
|
return
|
|
}
|
|
for i := 0; i < len(data); i++ {
|
|
if data[i] < 32 && data[i] != '\t' && data[i] != '\r' && data[i] != '\n' {
|
|
log.Printf("bad image: %s not text: %d", err, data[i])
|
|
http.Error(w, "didn't like your attachment", http.StatusUnsupportedMediaType)
|
|
return
|
|
}
|
|
}
|
|
media = "text/plain"
|
|
name = filehdr.Filename
|
|
if name == "" {
|
|
name = xid + ".txt"
|
|
}
|
|
xid += ".txt"
|
|
}
|
|
url := fmt.Sprintf("https://%s/d/%s", serverName, xid)
|
|
res, err := stmtSaveFile.Exec(xid, name, url, media, data)
|
|
if err != nil {
|
|
log.Printf("unable to save image: %s", err)
|
|
return
|
|
}
|
|
var d Donk
|
|
d.FileID, _ = res.LastInsertId()
|
|
d.XID = name
|
|
d.Name = name
|
|
d.Media = media
|
|
d.URL = url
|
|
honk.Donks = append(honk.Donks, &d)
|
|
}
|
|
herd := herdofemus(honk.Noise)
|
|
for _, e := range herd {
|
|
donk := savedonk(e.ID, e.Name, "image/png")
|
|
if donk != nil {
|
|
donk.Name = e.Name
|
|
honk.Donks = append(honk.Donks, donk)
|
|
}
|
|
}
|
|
|
|
user, _ := butwhatabout(userinfo.Username)
|
|
|
|
aud := strings.Join(honk.Audience, " ")
|
|
whofore := 0
|
|
if strings.Contains(aud, user.URL) {
|
|
whofore = 1
|
|
}
|
|
res, err := stmtSaveHonk.Exec(userinfo.UserID, what, "", xid, rid,
|
|
dt.Format(dbtimeformat), "", aud, noise, convoy, whofore)
|
|
if err != nil {
|
|
log.Printf("error saving honk: %s", err)
|
|
return
|
|
}
|
|
honk.ID, _ = res.LastInsertId()
|
|
for _, d := range honk.Donks {
|
|
_, err = stmtSaveDonk.Exec(honk.ID, d.FileID)
|
|
if err != nil {
|
|
log.Printf("err saving donk: %s", err)
|
|
return
|
|
}
|
|
}
|
|
|
|
go honkworldwide(user, &honk)
|
|
|
|
http.Redirect(w, r, "/", http.StatusSeeOther)
|
|
}
|
|
|
|
func showhonkers(w http.ResponseWriter, r *http.Request) {
|
|
userinfo := login.GetUserInfo(r)
|
|
templinfo := getInfo(r)
|
|
templinfo["Honkers"] = gethonkers(userinfo.UserID)
|
|
templinfo["HonkerCSRF"] = login.GetCSRF("savehonker", r)
|
|
err := readviews.Execute(w, "honkers.html", templinfo)
|
|
if err != nil {
|
|
log.Print(err)
|
|
}
|
|
}
|
|
|
|
func showcombos(w http.ResponseWriter, r *http.Request) {
|
|
userinfo := login.GetUserInfo(r)
|
|
templinfo := getInfo(r)
|
|
honkers := gethonkers(userinfo.UserID)
|
|
var combos []string
|
|
for _, h := range honkers {
|
|
combos = append(combos, h.Combos...)
|
|
}
|
|
combos = oneofakind(combos)
|
|
sort.Strings(combos)
|
|
templinfo["Combos"] = combos
|
|
err := readviews.Execute(w, "combos.html", templinfo)
|
|
if err != nil {
|
|
log.Print(err)
|
|
}
|
|
}
|
|
|
|
var handfull = make(map[string]string)
|
|
var handlock sync.Mutex
|
|
|
|
func gofish(name string) string {
|
|
if name[0] == '@' {
|
|
name = name[1:]
|
|
}
|
|
m := strings.Split(name, "@")
|
|
if len(m) != 2 {
|
|
log.Printf("bad fish name: %s", name)
|
|
return ""
|
|
}
|
|
handlock.Lock()
|
|
ref, ok := handfull[name]
|
|
handlock.Unlock()
|
|
if ok {
|
|
return ref
|
|
}
|
|
j, err := GetJunk(fmt.Sprintf("https://%s/.well-known/webfinger?resource=acct:%s", m[1], name))
|
|
handlock.Lock()
|
|
defer handlock.Unlock()
|
|
if err != nil {
|
|
log.Printf("failed to go fish %s: %s", name, err)
|
|
handfull[name] = ""
|
|
return ""
|
|
}
|
|
links, _ := jsongetarray(j, "links")
|
|
for _, l := range links {
|
|
href, _ := jsongetstring(l, "href")
|
|
rel, _ := jsongetstring(l, "rel")
|
|
t, _ := jsongetstring(l, "type")
|
|
if rel == "self" && friendorfoe(t) {
|
|
handfull[name] = href
|
|
return href
|
|
}
|
|
}
|
|
handfull[name] = ""
|
|
return ""
|
|
}
|
|
|
|
func savehonker(w http.ResponseWriter, r *http.Request) {
|
|
u := login.GetUserInfo(r)
|
|
name := r.FormValue("name")
|
|
url := r.FormValue("url")
|
|
peep := r.FormValue("peep")
|
|
combos := r.FormValue("combos")
|
|
honkerid, _ := strconv.ParseInt(r.FormValue("honkerid"), 10, 0)
|
|
|
|
if honkerid > 0 {
|
|
goodbye := r.FormValue("goodbye")
|
|
if goodbye == "goodbye" {
|
|
db := opendatabase()
|
|
row := db.QueryRow("select xid from honkers where honkerid = ? and userid = ?",
|
|
honkerid, u.UserID)
|
|
var xid string
|
|
err := row.Scan(&xid)
|
|
if err != nil {
|
|
log.Printf("can't get honker xid: %s", err)
|
|
return
|
|
}
|
|
log.Printf("unsubscribing from %s", xid)
|
|
user, _ := butwhatabout(u.Username)
|
|
err = itakeitallback(user, xid)
|
|
if err != nil {
|
|
log.Printf("can't take it back: %s", err)
|
|
} else {
|
|
_, err = stmtUpdateFlavor.Exec("unsub", u.UserID, xid, "sub")
|
|
if err != nil {
|
|
log.Printf("error updating honker: %s", err)
|
|
return
|
|
}
|
|
}
|
|
|
|
http.Redirect(w, r, "/honkers", http.StatusSeeOther)
|
|
return
|
|
}
|
|
combos = " " + strings.TrimSpace(combos) + " "
|
|
_, err := stmtUpdateCombos.Exec(combos, honkerid, u.UserID)
|
|
if err != nil {
|
|
log.Printf("update honker err: %s", err)
|
|
return
|
|
}
|
|
http.Redirect(w, r, "/honkers", http.StatusSeeOther)
|
|
}
|
|
|
|
flavor := "presub"
|
|
if peep == "peep" {
|
|
flavor = "peep"
|
|
}
|
|
if url == "" {
|
|
return
|
|
}
|
|
if url[0] == '@' {
|
|
url = gofish(url)
|
|
}
|
|
if url == "" {
|
|
return
|
|
}
|
|
_, err := stmtSaveHonker.Exec(u.UserID, name, url, flavor, combos)
|
|
if err != nil {
|
|
log.Print(err)
|
|
return
|
|
}
|
|
if flavor == "presub" {
|
|
user, _ := butwhatabout(u.Username)
|
|
go subsub(user, url)
|
|
}
|
|
http.Redirect(w, r, "/honkers", http.StatusSeeOther)
|
|
}
|
|
|
|
type Zonker struct {
|
|
ID int64
|
|
Name string
|
|
Wherefore string
|
|
}
|
|
|
|
func killzone(w http.ResponseWriter, r *http.Request) {
|
|
db := opendatabase()
|
|
userinfo := login.GetUserInfo(r)
|
|
rows, err := db.Query("select zonkerid, name, wherefore from zonkers where userid = ?", userinfo.UserID)
|
|
if err != nil {
|
|
log.Printf("err: %s", err)
|
|
return
|
|
}
|
|
var zonkers []Zonker
|
|
for rows.Next() {
|
|
var z Zonker
|
|
rows.Scan(&z.ID, &z.Name, &z.Wherefore)
|
|
zonkers = append(zonkers, z)
|
|
}
|
|
templinfo := getInfo(r)
|
|
templinfo["Zonkers"] = zonkers
|
|
templinfo["KillCSRF"] = login.GetCSRF("killitwithfire", r)
|
|
err = readviews.Execute(w, "zonkers.html", templinfo)
|
|
if err != nil {
|
|
log.Print(err)
|
|
}
|
|
}
|
|
|
|
func killitwithfire(w http.ResponseWriter, r *http.Request) {
|
|
userinfo := login.GetUserInfo(r)
|
|
itsok := r.FormValue("itsok")
|
|
if itsok == "iforgiveyou" {
|
|
zonkerid, _ := strconv.ParseInt(r.FormValue("zonkerid"), 10, 0)
|
|
db := opendatabase()
|
|
db.Exec("delete from zonkers where userid = ? and zonkerid = ?",
|
|
userinfo.UserID, zonkerid)
|
|
bitethethumbs()
|
|
http.Redirect(w, r, "/killzone", http.StatusSeeOther)
|
|
return
|
|
}
|
|
wherefore := r.FormValue("wherefore")
|
|
name := r.FormValue("name")
|
|
if name == "" {
|
|
return
|
|
}
|
|
switch wherefore {
|
|
case "zonker":
|
|
case "zurl":
|
|
case "zonvoy":
|
|
default:
|
|
return
|
|
}
|
|
db := opendatabase()
|
|
db.Exec("insert into zonkers (userid, name, wherefore) values (?, ?, ?)",
|
|
userinfo.UserID, name, wherefore)
|
|
if wherefore == "zonker" || wherefore == "zurl" {
|
|
bitethethumbs()
|
|
}
|
|
|
|
http.Redirect(w, r, "/killzone", http.StatusSeeOther)
|
|
}
|
|
|
|
func somedays() string {
|
|
secs := 432000 + notrand.Int63n(432000)
|
|
return fmt.Sprintf("%d", secs)
|
|
}
|
|
|
|
func avatate(w http.ResponseWriter, r *http.Request) {
|
|
n := r.FormValue("a")
|
|
a := avatar(n)
|
|
w.Header().Set("Cache-Control", "max-age="+somedays())
|
|
w.Write(a)
|
|
}
|
|
|
|
func servecss(w http.ResponseWriter, r *http.Request) {
|
|
w.Header().Set("Cache-Control", "max-age=7776000")
|
|
http.ServeFile(w, r, "views"+r.URL.Path)
|
|
}
|
|
func servehtml(w http.ResponseWriter, r *http.Request) {
|
|
templinfo := getInfo(r)
|
|
err := readviews.Execute(w, r.URL.Path[1:]+".html", templinfo)
|
|
if err != nil {
|
|
log.Print(err)
|
|
}
|
|
}
|
|
func serveemu(w http.ResponseWriter, r *http.Request) {
|
|
xid := mux.Vars(r)["xid"]
|
|
w.Header().Set("Cache-Control", "max-age="+somedays())
|
|
http.ServeFile(w, r, "emus/"+xid)
|
|
}
|
|
|
|
func servefile(w http.ResponseWriter, r *http.Request) {
|
|
xid := mux.Vars(r)["xid"]
|
|
row := stmtFileData.QueryRow(xid)
|
|
var media string
|
|
var data []byte
|
|
err := row.Scan(&media, &data)
|
|
if err != nil {
|
|
log.Printf("error loading file: %s", err)
|
|
http.NotFound(w, r)
|
|
return
|
|
}
|
|
w.Header().Set("Content-Type", media)
|
|
w.Header().Set("X-Content-Type-Options", "nosniff")
|
|
w.Header().Set("Cache-Control", "max-age="+somedays())
|
|
w.Write(data)
|
|
}
|
|
|
|
func serve() {
|
|
db := opendatabase()
|
|
login.Init(db)
|
|
|
|
listener, err := openListener()
|
|
if err != nil {
|
|
log.Fatal(err)
|
|
}
|
|
go redeliverator()
|
|
|
|
debug := false
|
|
getconfig("debug", &debug)
|
|
readviews = templates.Load(debug,
|
|
"views/honkpage.html",
|
|
"views/honkers.html",
|
|
"views/zonkers.html",
|
|
"views/combos.html",
|
|
"views/honkform.html",
|
|
"views/honk.html",
|
|
"views/login.html",
|
|
"views/header.html",
|
|
)
|
|
if !debug {
|
|
s := "views/style.css"
|
|
savedstyleparams[s] = getstyleparam(s)
|
|
s = "views/local.css"
|
|
savedstyleparams[s] = getstyleparam(s)
|
|
}
|
|
|
|
bitethethumbs()
|
|
|
|
mux := mux.NewRouter()
|
|
mux.Use(login.Checker)
|
|
|
|
posters := mux.Methods("POST").Subrouter()
|
|
getters := mux.Methods("GET").Subrouter()
|
|
|
|
getters.HandleFunc("/", homepage)
|
|
getters.HandleFunc("/rss", showrss)
|
|
getters.HandleFunc("/u/{name:[[:alnum:]]+}", showuser)
|
|
getters.HandleFunc("/u/{name:[[:alnum:]]+}/h/{xid:[[:alnum:]]+}", showhonk)
|
|
getters.HandleFunc("/u/{name:[[:alnum:]]+}/rss", showrss)
|
|
posters.HandleFunc("/u/{name:[[:alnum:]]+}/inbox", inbox)
|
|
getters.HandleFunc("/u/{name:[[:alnum:]]+}/outbox", outbox)
|
|
getters.HandleFunc("/u/{name:[[:alnum:]]+}/followers", emptiness)
|
|
getters.HandleFunc("/u/{name:[[:alnum:]]+}/following", emptiness)
|
|
getters.HandleFunc("/a", avatate)
|
|
getters.HandleFunc("/t", showconvoy)
|
|
getters.HandleFunc("/d/{xid:[[:alnum:].]+}", servefile)
|
|
getters.HandleFunc("/emu/{xid:[[:alnum:]_.]+}", serveemu)
|
|
getters.HandleFunc("/.well-known/webfinger", fingerlicker)
|
|
|
|
getters.HandleFunc("/style.css", servecss)
|
|
getters.HandleFunc("/local.css", servecss)
|
|
getters.HandleFunc("/login", servehtml)
|
|
posters.HandleFunc("/dologin", login.LoginFunc)
|
|
getters.HandleFunc("/logout", login.LogoutFunc)
|
|
|
|
loggedin := mux.NewRoute().Subrouter()
|
|
loggedin.Use(login.Required)
|
|
loggedin.HandleFunc("/atme", homepage)
|
|
loggedin.HandleFunc("/killzone", killzone)
|
|
loggedin.Handle("/honk", login.CSRFWrap("honkhonk", http.HandlerFunc(savehonk)))
|
|
loggedin.Handle("/bonk", login.CSRFWrap("honkhonk", http.HandlerFunc(savebonk)))
|
|
loggedin.Handle("/zonkit", login.CSRFWrap("honkhonk", http.HandlerFunc(zonkit)))
|
|
loggedin.Handle("/killitwithfire", login.CSRFWrap("killitwithfire", http.HandlerFunc(killitwithfire)))
|
|
loggedin.Handle("/saveuser", login.CSRFWrap("saveuser", http.HandlerFunc(saveuser)))
|
|
loggedin.HandleFunc("/honkers", showhonkers)
|
|
loggedin.HandleFunc("/h/{name:[[:alnum:]]+}", showhonker)
|
|
loggedin.HandleFunc("/c/{name:[[:alnum:]]+}", showcombo)
|
|
loggedin.HandleFunc("/c", showcombos)
|
|
loggedin.Handle("/savehonker", login.CSRFWrap("savehonker", http.HandlerFunc(savehonker)))
|
|
|
|
err = http.Serve(listener, mux)
|
|
if err != nil {
|
|
log.Fatal(err)
|
|
}
|
|
}
|
|
|
|
var stmtHonkers, stmtDubbers, stmtSaveHonker, stmtUpdateFlavor, stmtUpdateCombos *sql.Stmt
|
|
var stmtOneXonk, stmtPublicHonks, stmtUserHonks, stmtHonksByCombo, stmtHonksByConvoy *sql.Stmt
|
|
var stmtHonksForUser, stmtHonksForMe, stmtSaveDub *sql.Stmt
|
|
var stmtHonksByHonker, stmtSaveHonk, stmtFileData, stmtWhatAbout *sql.Stmt
|
|
var stmtFindXonk, stmtSaveDonk, stmtFindFile, stmtSaveFile *sql.Stmt
|
|
var stmtAddDoover, stmtGetDoovers, stmtLoadDoover, stmtZapDoover *sql.Stmt
|
|
var stmtHasHonker, stmtThumbBiters, stmtZonkIt, stmtSaveZonker *sql.Stmt
|
|
var stmtGetBoxes, stmtSaveBoxes *sql.Stmt
|
|
|
|
func preparetodie(db *sql.DB, s string) *sql.Stmt {
|
|
stmt, err := db.Prepare(s)
|
|
if err != nil {
|
|
log.Fatalf("error %s: %s", err, s)
|
|
}
|
|
return stmt
|
|
}
|
|
|
|
func prepareStatements(db *sql.DB) {
|
|
stmtHonkers = preparetodie(db, "select honkerid, userid, name, xid, flavor, combos from honkers where userid = ? and (flavor = 'sub' or flavor = 'peep' or flavor = 'unsub') order by name")
|
|
stmtSaveHonker = preparetodie(db, "insert into honkers (userid, name, xid, flavor, combos) values (?, ?, ?, ?, ?)")
|
|
stmtUpdateFlavor = preparetodie(db, "update honkers set flavor = ? where userid = ? and xid = ? and flavor = ?")
|
|
stmtUpdateCombos = preparetodie(db, "update honkers set combos = ? where honkerid = ? and userid = ?")
|
|
stmtHasHonker = preparetodie(db, "select honkerid from honkers where xid = ? and userid = ?")
|
|
stmtDubbers = preparetodie(db, "select honkerid, userid, name, xid, flavor from honkers where userid = ? and flavor = 'dub'")
|
|
|
|
selecthonks := "select honkid, honks.userid, username, what, honker, honks.xid, rid, dt, url, audience, noise, convoy from honks join users on honks.userid = users.userid "
|
|
limit := " order by honkid desc limit 250"
|
|
butnotthose := " and convoy not in (select name from zonkers where userid = ? and wherefore = 'zonvoy' order by zonkerid desc limit 100)"
|
|
stmtOneXonk = preparetodie(db, selecthonks+"where xid = ?")
|
|
stmtPublicHonks = preparetodie(db, selecthonks+"where honker = '' and dt > ?"+limit)
|
|
stmtUserHonks = preparetodie(db, selecthonks+"where honker = '' and username = ? and dt > ?"+limit)
|
|
stmtHonksForUser = preparetodie(db, selecthonks+"where honks.userid = ? and dt > ?"+butnotthose+limit)
|
|
stmtHonksForMe = preparetodie(db, selecthonks+"where honks.userid = ? and dt > ? and whofore = 1"+butnotthose+limit)
|
|
stmtHonksByHonker = preparetodie(db, selecthonks+"join honkers on honkers.xid = honks.honker where honks.userid = ? and honkers.name = ?"+butnotthose+limit)
|
|
stmtHonksByCombo = preparetodie(db, selecthonks+"join honkers on honkers.xid = honks.honker where honks.userid = ? and honkers.combos like ?"+butnotthose+limit)
|
|
stmtHonksByConvoy = preparetodie(db, selecthonks+"where (honks.userid = ? or honker = '') and convoy = ?"+limit)
|
|
|
|
stmtSaveHonk = preparetodie(db, "insert into honks (userid, what, honker, xid, rid, dt, url, audience, noise, convoy, whofore) values (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)")
|
|
stmtFileData = preparetodie(db, "select media, content from files where xid = ?")
|
|
stmtFindXonk = preparetodie(db, "select honkid from honks where userid = ? and xid = ?")
|
|
stmtSaveDonk = preparetodie(db, "insert into donks (honkid, fileid) values (?, ?)")
|
|
stmtZonkIt = preparetodie(db, "delete from honks where userid = ? and xid = ?")
|
|
stmtFindFile = preparetodie(db, "select fileid from files where url = ?")
|
|
stmtSaveFile = preparetodie(db, "insert into files (xid, name, url, media, content) values (?, ?, ?, ?, ?)")
|
|
stmtWhatAbout = preparetodie(db, "select userid, username, displayname, about, pubkey from users where username = ?")
|
|
stmtSaveDub = preparetodie(db, "insert into honkers (userid, name, xid, flavor) values (?, ?, ?, ?)")
|
|
stmtAddDoover = preparetodie(db, "insert into doovers (dt, tries, username, rcpt, msg) values (?, ?, ?, ?, ?)")
|
|
stmtGetDoovers = preparetodie(db, "select dooverid, dt from doovers")
|
|
stmtLoadDoover = preparetodie(db, "select tries, username, rcpt, msg from doovers where dooverid = ?")
|
|
stmtZapDoover = preparetodie(db, "delete from doovers where dooverid = ?")
|
|
stmtThumbBiters = preparetodie(db, "select userid, name, wherefore from zonkers where (wherefore = 'zonker' or wherefore = 'zurl')")
|
|
stmtSaveZonker = preparetodie(db, "insert into zonkers (userid, name, wherefore) values (?, ?, ?)")
|
|
stmtGetBoxes = preparetodie(db, "select ibox, obox, sbox from xonkers where xid = ?")
|
|
stmtSaveBoxes = preparetodie(db, "insert into xonkers (xid, ibox, obox, sbox, pubkey) values (?, ?, ?, ?, ?)")
|
|
}
|
|
|
|
func ElaborateUnitTests() {
|
|
}
|
|
|
|
func finishusersetup() error {
|
|
db := opendatabase()
|
|
k, err := rsa.GenerateKey(rand.Reader, 2048)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
pubkey, err := zem(&k.PublicKey)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
seckey, err := zem(k)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
_, err = db.Exec("update users set displayname = username, about = ?, pubkey = ?, seckey = ? where userid = 1", "what about me?", pubkey, seckey)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func main() {
|
|
cmd := "run"
|
|
if len(os.Args) > 1 {
|
|
cmd = os.Args[1]
|
|
}
|
|
switch cmd {
|
|
case "init":
|
|
initdb()
|
|
case "upgrade":
|
|
upgradedb()
|
|
}
|
|
db := opendatabase()
|
|
dbversion := 0
|
|
getconfig("dbversion", &dbversion)
|
|
if dbversion != myVersion {
|
|
log.Fatal("incorrect database version. run upgrade.")
|
|
}
|
|
getconfig("servername", &serverName)
|
|
prepareStatements(db)
|
|
switch cmd {
|
|
case "ping":
|
|
if len(os.Args) < 4 {
|
|
fmt.Printf("usage: honk ping from to\n")
|
|
return
|
|
}
|
|
name := os.Args[2]
|
|
targ := os.Args[3]
|
|
user, err := butwhatabout(name)
|
|
if err != nil {
|
|
log.Printf("unknown user")
|
|
return
|
|
}
|
|
ping(user, targ)
|
|
case "peep":
|
|
peeppeep()
|
|
case "run":
|
|
serve()
|
|
case "test":
|
|
ElaborateUnitTests()
|
|
default:
|
|
log.Fatal("unknown command")
|
|
}
|
|
}
|