1420 lines
38 KiB
Go
1420 lines
38 KiB
Go
//
|
|
// Copyright (c) 2019 Ted Unangst <tedu@tedunangst.com>
|
|
//
|
|
// Permission to use, copy, modify, and distribute this software for any
|
|
// purpose with or without fee is hereby granted, provided that the above
|
|
// copyright notice and this permission notice appear in all copies.
|
|
//
|
|
// THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
|
|
// WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
|
|
// MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
|
|
// ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
|
|
// WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
|
|
// ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
|
|
// OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
|
|
|
|
package main
|
|
|
|
import (
|
|
"bytes"
|
|
"crypto/rand"
|
|
"crypto/rsa"
|
|
"database/sql"
|
|
"fmt"
|
|
"html"
|
|
"html/template"
|
|
"io"
|
|
"log"
|
|
notrand "math/rand"
|
|
"net/http"
|
|
"os"
|
|
"sort"
|
|
"strconv"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/gorilla/mux"
|
|
"humungus.tedunangst.com/r/webs/image"
|
|
"humungus.tedunangst.com/r/webs/login"
|
|
"humungus.tedunangst.com/r/webs/rss"
|
|
"humungus.tedunangst.com/r/webs/templates"
|
|
)
|
|
|
|
type WhatAbout struct {
|
|
ID int64
|
|
Name string
|
|
Display string
|
|
About string
|
|
Key string
|
|
URL string
|
|
}
|
|
|
|
type Honk struct {
|
|
ID int64
|
|
UserID int64
|
|
Username string
|
|
What string
|
|
Honker string
|
|
Oonker string
|
|
XID string
|
|
RID string
|
|
Date time.Time
|
|
URL string
|
|
Noise string
|
|
Precis string
|
|
Convoy string
|
|
Audience []string
|
|
Privacy string
|
|
HTML template.HTML
|
|
Donks []*Donk
|
|
}
|
|
|
|
type Donk struct {
|
|
FileID int64
|
|
XID string
|
|
Name string
|
|
URL string
|
|
Media string
|
|
Content []byte
|
|
}
|
|
|
|
type Honker struct {
|
|
ID int64
|
|
UserID int64
|
|
Name string
|
|
XID string
|
|
Flavor string
|
|
Combos []string
|
|
}
|
|
|
|
var serverName string
|
|
var iconName = "icon.png"
|
|
|
|
var readviews *templates.Template
|
|
|
|
func getInfo(r *http.Request) map[string]interface{} {
|
|
templinfo := make(map[string]interface{})
|
|
templinfo["StyleParam"] = getstyleparam("views/style.css")
|
|
templinfo["LocalStyleParam"] = getstyleparam("views/local.css")
|
|
templinfo["ServerName"] = serverName
|
|
templinfo["IconName"] = iconName
|
|
templinfo["UserInfo"] = login.GetUserInfo(r)
|
|
return templinfo
|
|
}
|
|
|
|
func homepage(w http.ResponseWriter, r *http.Request) {
|
|
templinfo := getInfo(r)
|
|
u := login.GetUserInfo(r)
|
|
var honks []*Honk
|
|
if u != nil {
|
|
if r.URL.Path == "/atme" {
|
|
honks = gethonksforme(u.UserID)
|
|
} else {
|
|
honks = gethonksforuser(u.UserID)
|
|
}
|
|
templinfo["HonkCSRF"] = login.GetCSRF("honkhonk", r)
|
|
} else {
|
|
honks = getpublichonks()
|
|
}
|
|
|
|
var modtime time.Time
|
|
if len(honks) > 0 {
|
|
modtime = honks[0].Date
|
|
}
|
|
debug := false
|
|
getconfig("debug", &debug)
|
|
imh := r.Header.Get("If-Modified-Since")
|
|
if !debug && imh != "" && !modtime.IsZero() {
|
|
ifmod, err := time.Parse(http.TimeFormat, imh)
|
|
if err == nil && !modtime.After(ifmod) {
|
|
w.WriteHeader(http.StatusNotModified)
|
|
return
|
|
}
|
|
}
|
|
reverbolate(honks)
|
|
|
|
msg := "Things happen."
|
|
getconfig("servermsg", &msg)
|
|
templinfo["Honks"] = honks
|
|
templinfo["ShowRSS"] = true
|
|
templinfo["ServerMessage"] = msg
|
|
if u == nil {
|
|
w.Header().Set("Cache-Control", "max-age=60")
|
|
} else {
|
|
w.Header().Set("Cache-Control", "max-age=0")
|
|
}
|
|
w.Header().Set("Last-Modified", modtime.Format(http.TimeFormat))
|
|
err := readviews.Execute(w, "honkpage.html", templinfo)
|
|
if err != nil {
|
|
log.Print(err)
|
|
}
|
|
}
|
|
|
|
func showrss(w http.ResponseWriter, r *http.Request) {
|
|
name := mux.Vars(r)["name"]
|
|
|
|
var honks []*Honk
|
|
if name != "" {
|
|
honks = gethonksbyuser(name)
|
|
} else {
|
|
honks = getpublichonks()
|
|
}
|
|
reverbolate(honks)
|
|
|
|
home := fmt.Sprintf("https://%s/", serverName)
|
|
base := home
|
|
if name != "" {
|
|
home += "u/" + name
|
|
name += " "
|
|
}
|
|
feed := rss.Feed{
|
|
Title: name + "honk",
|
|
Link: home,
|
|
Description: name + "honk rss",
|
|
Image: &rss.Image{
|
|
URL: base + "icon.png",
|
|
Title: name + "honk rss",
|
|
Link: home,
|
|
},
|
|
}
|
|
var modtime time.Time
|
|
for _, honk := range honks {
|
|
desc := string(honk.HTML)
|
|
for _, d := range honk.Donks {
|
|
desc += fmt.Sprintf(`<p><a href="%sd/%s">Attachment: %s</a>`,
|
|
base, d.XID, html.EscapeString(d.Name))
|
|
}
|
|
|
|
feed.Items = append(feed.Items, &rss.Item{
|
|
Title: fmt.Sprintf("%s %s %s", honk.Username, honk.What, honk.XID),
|
|
Description: rss.CData{desc},
|
|
Link: honk.URL,
|
|
PubDate: honk.Date.Format(time.RFC1123),
|
|
Guid: &rss.Guid{IsPermaLink: true, Value: honk.URL},
|
|
})
|
|
if honk.Date.After(modtime) {
|
|
modtime = honk.Date
|
|
}
|
|
}
|
|
w.Header().Set("Cache-Control", "max-age=300")
|
|
w.Header().Set("Last-Modified", modtime.Format(http.TimeFormat))
|
|
|
|
err := feed.Write(w)
|
|
if err != nil {
|
|
log.Printf("error writing rss: %s", err)
|
|
}
|
|
}
|
|
|
|
func butwhatabout(name string) (*WhatAbout, error) {
|
|
row := stmtWhatAbout.QueryRow(name)
|
|
var user WhatAbout
|
|
err := row.Scan(&user.ID, &user.Name, &user.Display, &user.About, &user.Key)
|
|
user.URL = fmt.Sprintf("https://%s/u/%s", serverName, user.Name)
|
|
return &user, err
|
|
}
|
|
|
|
func crappola(j map[string]interface{}) bool {
|
|
t, _ := jsongetstring(j, "type")
|
|
a, _ := jsongetstring(j, "actor")
|
|
o, _ := jsongetstring(j, "object")
|
|
if t == "Delete" && a == o {
|
|
log.Printf("crappola from %s", a)
|
|
return true
|
|
}
|
|
return false
|
|
}
|
|
|
|
func ping(user *WhatAbout, who string) {
|
|
box, err := getboxes(who)
|
|
if err != nil {
|
|
log.Printf("no inbox for ping: %s", err)
|
|
return
|
|
}
|
|
j := NewJunk()
|
|
j["@context"] = itiswhatitis
|
|
j["type"] = "Ping"
|
|
j["id"] = user.URL + "/ping/" + xfiltrate()
|
|
j["actor"] = user.URL
|
|
j["to"] = who
|
|
keyname, key := ziggy(user.Name)
|
|
err = PostJunk(keyname, key, box.In, j)
|
|
if err != nil {
|
|
log.Printf("can't send ping: %s", err)
|
|
return
|
|
}
|
|
log.Printf("sent ping to %s: %s", who, j["id"])
|
|
}
|
|
|
|
func pong(user *WhatAbout, who string, obj string) {
|
|
box, err := getboxes(who)
|
|
if err != nil {
|
|
log.Printf("no inbox for pong %s : %s", who, err)
|
|
return
|
|
}
|
|
j := NewJunk()
|
|
j["@context"] = itiswhatitis
|
|
j["type"] = "Pong"
|
|
j["id"] = user.URL + "/pong/" + xfiltrate()
|
|
j["actor"] = user.URL
|
|
j["to"] = who
|
|
j["object"] = obj
|
|
keyname, key := ziggy(user.Name)
|
|
err = PostJunk(keyname, key, box.In, j)
|
|
if err != nil {
|
|
log.Printf("can't send pong: %s", err)
|
|
return
|
|
}
|
|
}
|
|
|
|
func inbox(w http.ResponseWriter, r *http.Request) {
|
|
name := mux.Vars(r)["name"]
|
|
user, err := butwhatabout(name)
|
|
if err != nil {
|
|
http.NotFound(w, r)
|
|
return
|
|
}
|
|
var buf bytes.Buffer
|
|
io.Copy(&buf, r.Body)
|
|
payload := buf.Bytes()
|
|
j, err := ReadJunk(bytes.NewReader(payload))
|
|
if err != nil {
|
|
log.Printf("bad payload: %s", err)
|
|
io.WriteString(os.Stdout, "bad payload\n")
|
|
os.Stdout.Write(payload)
|
|
io.WriteString(os.Stdout, "\n")
|
|
return
|
|
}
|
|
if crappola(j) {
|
|
return
|
|
}
|
|
keyname, err := zag(r, payload)
|
|
if err != nil {
|
|
log.Printf("inbox message failed signature: %s", err)
|
|
if keyname != "" {
|
|
keyname, err = makeitworksomehowwithoutregardforkeycontinuity(keyname, r, payload)
|
|
}
|
|
if err != nil {
|
|
return
|
|
}
|
|
}
|
|
what, _ := jsongetstring(j, "type")
|
|
if what == "Like" {
|
|
return
|
|
}
|
|
who, _ := jsongetstring(j, "actor")
|
|
if !keymatch(keyname, who, what, user.ID) {
|
|
log.Printf("keyname actor mismatch: %s <> %s", keyname, who)
|
|
return
|
|
}
|
|
objid, _ := jsongetstring(j, "id")
|
|
if thoudostbitethythumb(user.ID, []string{who}, objid) {
|
|
log.Printf("ignoring thumb sucker %s", who)
|
|
return
|
|
}
|
|
switch what {
|
|
case "Ping":
|
|
obj, _ := jsongetstring(j, "id")
|
|
log.Printf("ping from %s: %s", who, obj)
|
|
pong(user, who, obj)
|
|
case "Pong":
|
|
obj, _ := jsongetstring(j, "object")
|
|
log.Printf("pong from %s: %s", who, obj)
|
|
case "Follow":
|
|
obj, _ := jsongetstring(j, "object")
|
|
if obj == user.URL {
|
|
log.Printf("updating honker follow: %s", who)
|
|
rubadubdub(user, j)
|
|
} else {
|
|
log.Printf("can't follow %s", obj)
|
|
}
|
|
case "Accept":
|
|
log.Printf("updating honker accept: %s", who)
|
|
_, err = stmtUpdateFlavor.Exec("sub", user.ID, who, "presub")
|
|
if err != nil {
|
|
log.Printf("error updating honker: %s", err)
|
|
return
|
|
}
|
|
case "Undo":
|
|
obj, ok := jsongetmap(j, "object")
|
|
if !ok {
|
|
log.Printf("unknown undo no object")
|
|
} else {
|
|
what, _ := jsongetstring(obj, "type")
|
|
switch what {
|
|
case "Follow":
|
|
log.Printf("updating honker undo: %s", who)
|
|
_, err = stmtUpdateFlavor.Exec("undub", user.ID, who, "dub")
|
|
if err != nil {
|
|
log.Printf("error updating honker: %s", err)
|
|
return
|
|
}
|
|
case "Like":
|
|
case "Announce":
|
|
default:
|
|
log.Printf("unknown undo: %s", what)
|
|
}
|
|
}
|
|
default:
|
|
xonk := xonkxonk(user, j)
|
|
if xonk != nil {
|
|
savexonk(user, xonk)
|
|
}
|
|
}
|
|
}
|
|
|
|
func outbox(w http.ResponseWriter, r *http.Request) {
|
|
name := mux.Vars(r)["name"]
|
|
user, err := butwhatabout(name)
|
|
if err != nil {
|
|
http.NotFound(w, r)
|
|
return
|
|
}
|
|
honks := gethonksbyuser(name)
|
|
|
|
var jonks []map[string]interface{}
|
|
for _, h := range honks {
|
|
j, _ := jonkjonk(user, h)
|
|
jonks = append(jonks, j)
|
|
}
|
|
|
|
j := NewJunk()
|
|
j["@context"] = itiswhatitis
|
|
j["id"] = user.URL + "/outbox"
|
|
j["type"] = "OrderedCollection"
|
|
j["totalItems"] = len(jonks)
|
|
j["orderedItems"] = jonks
|
|
|
|
w.Header().Set("Cache-Control", "max-age=60")
|
|
w.Header().Set("Content-Type", theonetruename)
|
|
WriteJunk(w, j)
|
|
}
|
|
|
|
func emptiness(w http.ResponseWriter, r *http.Request) {
|
|
name := mux.Vars(r)["name"]
|
|
user, err := butwhatabout(name)
|
|
if err != nil {
|
|
http.NotFound(w, r)
|
|
return
|
|
}
|
|
colname := "/followers"
|
|
if strings.HasSuffix(r.URL.Path, "/following") {
|
|
colname = "/following"
|
|
}
|
|
j := NewJunk()
|
|
j["@context"] = itiswhatitis
|
|
j["id"] = user.URL + colname
|
|
j["type"] = "OrderedCollection"
|
|
j["totalItems"] = 0
|
|
j["orderedItems"] = []interface{}{}
|
|
|
|
w.Header().Set("Cache-Control", "max-age=60")
|
|
w.Header().Set("Content-Type", theonetruename)
|
|
WriteJunk(w, j)
|
|
}
|
|
|
|
func showuser(w http.ResponseWriter, r *http.Request) {
|
|
name := mux.Vars(r)["name"]
|
|
user, err := butwhatabout(name)
|
|
if err != nil {
|
|
http.NotFound(w, r)
|
|
return
|
|
}
|
|
if friendorfoe(r.Header.Get("Accept")) {
|
|
j := asjonker(user)
|
|
w.Header().Set("Cache-Control", "max-age=600")
|
|
w.Header().Set("Content-Type", theonetruename)
|
|
WriteJunk(w, j)
|
|
return
|
|
}
|
|
honks := gethonksbyuser(name)
|
|
u := login.GetUserInfo(r)
|
|
honkpage(w, r, u, user, honks, "")
|
|
}
|
|
|
|
func showhonker(w http.ResponseWriter, r *http.Request) {
|
|
name := mux.Vars(r)["name"]
|
|
u := login.GetUserInfo(r)
|
|
honks := gethonksbyhonker(u.UserID, name)
|
|
honkpage(w, r, u, nil, honks, "honks by honker: "+name)
|
|
}
|
|
|
|
func showcombo(w http.ResponseWriter, r *http.Request) {
|
|
name := mux.Vars(r)["name"]
|
|
u := login.GetUserInfo(r)
|
|
honks := gethonksbycombo(u.UserID, name)
|
|
honkpage(w, r, u, nil, honks, "honks by combo: "+name)
|
|
}
|
|
func showconvoy(w http.ResponseWriter, r *http.Request) {
|
|
c := r.FormValue("c")
|
|
var userid int64 = -1
|
|
u := login.GetUserInfo(r)
|
|
if u != nil {
|
|
userid = u.UserID
|
|
}
|
|
honks := gethonksbyconvoy(userid, c)
|
|
honkpage(w, r, u, nil, honks, "honks in convoy: "+c)
|
|
}
|
|
|
|
func showhonk(w http.ResponseWriter, r *http.Request) {
|
|
name := mux.Vars(r)["name"]
|
|
xid := mux.Vars(r)["xid"]
|
|
user, err := butwhatabout(name)
|
|
if err != nil {
|
|
http.NotFound(w, r)
|
|
return
|
|
}
|
|
h := getxonk(user.ID, xid)
|
|
if h == nil {
|
|
http.NotFound(w, r)
|
|
return
|
|
}
|
|
if friendorfoe(r.Header.Get("Accept")) {
|
|
donksforhonks([]*Honk{h})
|
|
_, j := jonkjonk(user, h)
|
|
j["@context"] = itiswhatitis
|
|
w.Header().Set("Cache-Control", "max-age=3600")
|
|
w.Header().Set("Content-Type", theonetruename)
|
|
WriteJunk(w, j)
|
|
return
|
|
}
|
|
honks := gethonksbyconvoy(-1, h.Convoy)
|
|
for _, hh := range honks {
|
|
if hh.XID != h.XID {
|
|
hh.Privacy = "limited"
|
|
}
|
|
}
|
|
u := login.GetUserInfo(r)
|
|
honkpage(w, r, u, nil, honks, "one honk maybe more")
|
|
}
|
|
|
|
func honkpage(w http.ResponseWriter, r *http.Request, u *login.UserInfo, user *WhatAbout,
|
|
honks []*Honk, infomsg string) {
|
|
reverbolate(honks)
|
|
templinfo := getInfo(r)
|
|
if u != nil {
|
|
templinfo["HonkCSRF"] = login.GetCSRF("honkhonk", r)
|
|
}
|
|
if u == nil {
|
|
w.Header().Set("Cache-Control", "max-age=60")
|
|
}
|
|
if user != nil {
|
|
templinfo["Name"] = user.Name
|
|
whatabout := user.About
|
|
whatabout = obfusbreak(user.About)
|
|
templinfo["WhatAbout"] = cleanstring(whatabout)
|
|
}
|
|
templinfo["Honks"] = honks
|
|
templinfo["ServerMessage"] = infomsg
|
|
err := readviews.Execute(w, "honkpage.html", templinfo)
|
|
if err != nil {
|
|
log.Print(err)
|
|
}
|
|
}
|
|
|
|
func saveuser(w http.ResponseWriter, r *http.Request) {
|
|
whatabout := r.FormValue("whatabout")
|
|
u := login.GetUserInfo(r)
|
|
db := opendatabase()
|
|
_, err := db.Exec("update users set about = ? where username = ?", whatabout, u.Username)
|
|
if err != nil {
|
|
log.Printf("error bouting what: %s", err)
|
|
}
|
|
|
|
http.Redirect(w, r, "/account", http.StatusSeeOther)
|
|
}
|
|
|
|
func gethonkers(userid int64) []*Honker {
|
|
rows, err := stmtHonkers.Query(userid)
|
|
if err != nil {
|
|
log.Printf("error querying honkers: %s", err)
|
|
return nil
|
|
}
|
|
defer rows.Close()
|
|
var honkers []*Honker
|
|
for rows.Next() {
|
|
var f Honker
|
|
var combos string
|
|
err = rows.Scan(&f.ID, &f.UserID, &f.Name, &f.XID, &f.Flavor, &combos)
|
|
f.Combos = strings.Split(strings.TrimSpace(combos), " ")
|
|
if err != nil {
|
|
log.Printf("error scanning honker: %s", err)
|
|
return nil
|
|
}
|
|
honkers = append(honkers, &f)
|
|
}
|
|
return honkers
|
|
}
|
|
|
|
func getdubs(userid int64) []*Honker {
|
|
rows, err := stmtDubbers.Query(userid)
|
|
if err != nil {
|
|
log.Printf("error querying dubs: %s", err)
|
|
return nil
|
|
}
|
|
defer rows.Close()
|
|
var honkers []*Honker
|
|
for rows.Next() {
|
|
var f Honker
|
|
err = rows.Scan(&f.ID, &f.UserID, &f.Name, &f.XID, &f.Flavor)
|
|
if err != nil {
|
|
log.Printf("error scanning honker: %s", err)
|
|
return nil
|
|
}
|
|
honkers = append(honkers, &f)
|
|
}
|
|
return honkers
|
|
}
|
|
|
|
func getxonk(userid int64, xid string) *Honk {
|
|
h := new(Honk)
|
|
var dt, aud string
|
|
row := stmtOneXonk.QueryRow(userid, xid)
|
|
err := row.Scan(&h.ID, &h.UserID, &h.Username, &h.What, &h.Honker, &h.Oonker, &h.XID, &h.RID,
|
|
&dt, &h.URL, &aud, &h.Noise, &h.Precis, &h.Convoy)
|
|
if err != nil {
|
|
if err != sql.ErrNoRows {
|
|
log.Printf("error scanning xonk: %s", err)
|
|
}
|
|
return nil
|
|
}
|
|
h.Date, _ = time.Parse(dbtimeformat, dt)
|
|
h.Audience = strings.Split(aud, " ")
|
|
return h
|
|
}
|
|
|
|
func getpublichonks() []*Honk {
|
|
dt := time.Now().UTC().Add(-7 * 24 * time.Hour).Format(dbtimeformat)
|
|
rows, err := stmtPublicHonks.Query(dt)
|
|
return getsomehonks(rows, err)
|
|
}
|
|
func gethonksbyuser(name string) []*Honk {
|
|
dt := time.Now().UTC().Add(-7 * 24 * time.Hour).Format(dbtimeformat)
|
|
rows, err := stmtUserHonks.Query(name, dt)
|
|
return getsomehonks(rows, err)
|
|
}
|
|
func gethonksforuser(userid int64) []*Honk {
|
|
dt := time.Now().UTC().Add(-7 * 24 * time.Hour).Format(dbtimeformat)
|
|
rows, err := stmtHonksForUser.Query(userid, dt, userid, userid)
|
|
return getsomehonks(rows, err)
|
|
}
|
|
func gethonksforme(userid int64) []*Honk {
|
|
dt := time.Now().UTC().Add(-7 * 24 * time.Hour).Format(dbtimeformat)
|
|
rows, err := stmtHonksForMe.Query(userid, dt, userid)
|
|
return getsomehonks(rows, err)
|
|
}
|
|
func gethonksbyhonker(userid int64, honker string) []*Honk {
|
|
rows, err := stmtHonksByHonker.Query(userid, honker, userid)
|
|
return getsomehonks(rows, err)
|
|
}
|
|
func gethonksbycombo(userid int64, combo string) []*Honk {
|
|
combo = "% " + combo + " %"
|
|
rows, err := stmtHonksByCombo.Query(userid, combo, userid)
|
|
return getsomehonks(rows, err)
|
|
}
|
|
func gethonksbyconvoy(userid int64, convoy string) []*Honk {
|
|
rows, err := stmtHonksByConvoy.Query(userid, convoy)
|
|
honks := getsomehonks(rows, err)
|
|
for i, j := 0, len(honks)-1; i < j; i, j = i+1, j-1 {
|
|
honks[i], honks[j] = honks[j], honks[i]
|
|
}
|
|
return honks
|
|
}
|
|
|
|
func getsomehonks(rows *sql.Rows, err error) []*Honk {
|
|
if err != nil {
|
|
log.Printf("error querying honks: %s", err)
|
|
return nil
|
|
}
|
|
defer rows.Close()
|
|
var honks []*Honk
|
|
for rows.Next() {
|
|
var h Honk
|
|
var dt, aud string
|
|
err = rows.Scan(&h.ID, &h.UserID, &h.Username, &h.What, &h.Honker, &h.Oonker,
|
|
&h.XID, &h.RID, &dt, &h.URL, &aud, &h.Noise, &h.Precis, &h.Convoy)
|
|
if err != nil {
|
|
log.Printf("error scanning honks: %s", err)
|
|
return nil
|
|
}
|
|
h.Date, _ = time.Parse(dbtimeformat, dt)
|
|
h.Audience = strings.Split(aud, " ")
|
|
h.Privacy = "limited"
|
|
for _, a := range h.Audience {
|
|
if a == thewholeworld {
|
|
h.Privacy = ""
|
|
break
|
|
}
|
|
}
|
|
honks = append(honks, &h)
|
|
}
|
|
rows.Close()
|
|
donksforhonks(honks)
|
|
return honks
|
|
}
|
|
|
|
func donksforhonks(honks []*Honk) {
|
|
db := opendatabase()
|
|
var ids []string
|
|
hmap := make(map[int64]*Honk)
|
|
for _, h := range honks {
|
|
ids = append(ids, fmt.Sprintf("%d", h.ID))
|
|
hmap[h.ID] = h
|
|
}
|
|
q := fmt.Sprintf("select honkid, donks.fileid, xid, name, url, media from donks join files on donks.fileid = files.fileid where honkid in (%s)", strings.Join(ids, ","))
|
|
rows, err := db.Query(q)
|
|
if err != nil {
|
|
log.Printf("error querying donks: %s", err)
|
|
return
|
|
}
|
|
defer rows.Close()
|
|
for rows.Next() {
|
|
var hid int64
|
|
var d Donk
|
|
err = rows.Scan(&hid, &d.FileID, &d.XID, &d.Name, &d.URL, &d.Media)
|
|
if err != nil {
|
|
log.Printf("error scanning donk: %s", err)
|
|
continue
|
|
}
|
|
h := hmap[hid]
|
|
h.Donks = append(h.Donks, &d)
|
|
}
|
|
}
|
|
|
|
func savebonk(w http.ResponseWriter, r *http.Request) {
|
|
xid := r.FormValue("xid")
|
|
userinfo := login.GetUserInfo(r)
|
|
|
|
log.Printf("bonking %s", xid)
|
|
|
|
xonk := getxonk(userinfo.UserID, xid)
|
|
if xonk == nil {
|
|
return
|
|
}
|
|
donksforhonks([]*Honk{xonk})
|
|
if xonk.Honker == "" {
|
|
xonk.XID = fmt.Sprintf("https://%s/u/%s/h/%s", serverName, xonk.Username, xonk.XID)
|
|
}
|
|
|
|
dt := time.Now().UTC()
|
|
bonk := Honk{
|
|
UserID: userinfo.UserID,
|
|
Username: userinfo.Username,
|
|
What: "bonk",
|
|
XID: xonk.XID,
|
|
Date: dt,
|
|
Donks: xonk.Donks,
|
|
Audience: []string{thewholeworld},
|
|
}
|
|
|
|
user, _ := butwhatabout(userinfo.Username)
|
|
|
|
aud := strings.Join(bonk.Audience, " ")
|
|
whofore := 0
|
|
if strings.Contains(aud, user.URL) {
|
|
whofore = 1
|
|
}
|
|
res, err := stmtSaveHonk.Exec(userinfo.UserID, "bonk", "", xid, "",
|
|
dt.Format(dbtimeformat), "", aud, xonk.Noise, xonk.Convoy, whofore, "html", xonk.Precis, xonk.Honker)
|
|
if err != nil {
|
|
log.Printf("error saving bonk: %s", err)
|
|
return
|
|
}
|
|
bonk.ID, _ = res.LastInsertId()
|
|
for _, d := range bonk.Donks {
|
|
_, err = stmtSaveDonk.Exec(bonk.ID, d.FileID)
|
|
if err != nil {
|
|
log.Printf("err saving donk: %s", err)
|
|
return
|
|
}
|
|
}
|
|
|
|
go honkworldwide(user, &bonk)
|
|
}
|
|
|
|
func zonkit(w http.ResponseWriter, r *http.Request) {
|
|
wherefore := r.FormValue("wherefore")
|
|
var what string
|
|
switch wherefore {
|
|
case "this honk":
|
|
what = r.FormValue("honk")
|
|
wherefore = "zonk"
|
|
case "this honker":
|
|
what = r.FormValue("honker")
|
|
wherefore = "zonker"
|
|
case "this convoy":
|
|
what = r.FormValue("convoy")
|
|
wherefore = "zonvoy"
|
|
}
|
|
if what == "" {
|
|
return
|
|
}
|
|
|
|
log.Printf("zonking %s %s", wherefore, what)
|
|
userinfo := login.GetUserInfo(r)
|
|
if wherefore == "zonk" {
|
|
xonk := getxonk(userinfo.UserID, what)
|
|
if xonk != nil {
|
|
stmtZonkDonks.Exec(xonk.ID)
|
|
stmtZonkIt.Exec(userinfo.UserID, what)
|
|
if xonk.Honker == "" {
|
|
zonk := Honk{
|
|
What: "zonk",
|
|
XID: xonk.XID,
|
|
Date: time.Now().UTC(),
|
|
Audience: oneofakind(xonk.Audience),
|
|
}
|
|
|
|
user, _ := butwhatabout(userinfo.Username)
|
|
log.Printf("announcing deleted honk: %s", what)
|
|
go honkworldwide(user, &zonk)
|
|
}
|
|
}
|
|
} else {
|
|
_, err := stmtSaveZonker.Exec(userinfo.UserID, what, wherefore)
|
|
if err != nil {
|
|
log.Printf("error saving zonker: %s", err)
|
|
return
|
|
}
|
|
}
|
|
}
|
|
|
|
func savehonk(w http.ResponseWriter, r *http.Request) {
|
|
rid := r.FormValue("rid")
|
|
noise := r.FormValue("noise")
|
|
|
|
userinfo := login.GetUserInfo(r)
|
|
|
|
dt := time.Now().UTC()
|
|
xid := xfiltrate()
|
|
what := "honk"
|
|
if rid != "" {
|
|
what = "tonk"
|
|
}
|
|
honk := Honk{
|
|
UserID: userinfo.UserID,
|
|
Username: userinfo.Username,
|
|
What: "honk",
|
|
XID: xid,
|
|
Date: dt,
|
|
}
|
|
if strings.HasPrefix(noise, "DZ:") {
|
|
idx := strings.Index(noise, "\n")
|
|
if idx == -1 {
|
|
honk.Precis = noise
|
|
noise = ""
|
|
} else {
|
|
honk.Precis = noise[:idx]
|
|
noise = noise[idx+1:]
|
|
}
|
|
}
|
|
noise = strings.TrimSpace(noise)
|
|
honk.Precis = strings.TrimSpace(honk.Precis)
|
|
|
|
if noise != "" && noise[0] == '@' {
|
|
honk.Audience = append(grapevine(noise), thewholeworld)
|
|
} else {
|
|
honk.Audience = prepend(thewholeworld, grapevine(noise))
|
|
}
|
|
var convoy string
|
|
if rid != "" {
|
|
xonk := getxonk(userinfo.UserID, rid)
|
|
if xonk != nil {
|
|
if xonk.Honker == "" {
|
|
xonk.Honker = "https://" + serverName + "/u/" + xonk.Username
|
|
rid = xonk.Honker + "/h/" + rid
|
|
}
|
|
honk.Audience = append(honk.Audience, xonk.Audience...)
|
|
convoy = xonk.Convoy
|
|
} else {
|
|
xonkaud, c := whosthere(rid)
|
|
honk.Audience = append(honk.Audience, xonkaud...)
|
|
convoy = c
|
|
}
|
|
honk.RID = rid
|
|
}
|
|
if convoy == "" {
|
|
convoy = "data:,electrichonkytonk-" + xfiltrate()
|
|
}
|
|
butnottooloud(honk.Audience)
|
|
honk.Audience = oneofakind(honk.Audience)
|
|
noise = obfusbreak(noise)
|
|
honk.Noise = noise
|
|
honk.Convoy = convoy
|
|
|
|
file, filehdr, err := r.FormFile("donk")
|
|
if err == nil {
|
|
var buf bytes.Buffer
|
|
io.Copy(&buf, file)
|
|
file.Close()
|
|
data := buf.Bytes()
|
|
xid := xfiltrate()
|
|
var media, name string
|
|
img, err := image.Vacuum(&buf)
|
|
if err == nil {
|
|
data = img.Data
|
|
format := img.Format
|
|
media = "image/" + format
|
|
if format == "jpeg" {
|
|
format = "jpg"
|
|
}
|
|
name = xid + "." + format
|
|
xid = name
|
|
} else {
|
|
maxsize := 100000
|
|
if len(data) > maxsize {
|
|
log.Printf("bad image: %s too much text: %d", err, len(data))
|
|
http.Error(w, "didn't like your attachment", http.StatusUnsupportedMediaType)
|
|
return
|
|
}
|
|
for i := 0; i < len(data); i++ {
|
|
if data[i] < 32 && data[i] != '\t' && data[i] != '\r' && data[i] != '\n' {
|
|
log.Printf("bad image: %s not text: %d", err, data[i])
|
|
http.Error(w, "didn't like your attachment", http.StatusUnsupportedMediaType)
|
|
return
|
|
}
|
|
}
|
|
media = "text/plain"
|
|
name = filehdr.Filename
|
|
if name == "" {
|
|
name = xid + ".txt"
|
|
}
|
|
xid += ".txt"
|
|
}
|
|
url := fmt.Sprintf("https://%s/d/%s", serverName, xid)
|
|
res, err := stmtSaveFile.Exec(xid, name, url, media, data)
|
|
if err != nil {
|
|
log.Printf("unable to save image: %s", err)
|
|
return
|
|
}
|
|
var d Donk
|
|
d.FileID, _ = res.LastInsertId()
|
|
d.XID = name
|
|
d.Name = name
|
|
d.Media = media
|
|
d.URL = url
|
|
honk.Donks = append(honk.Donks, &d)
|
|
}
|
|
herd := herdofemus(honk.Noise)
|
|
for _, e := range herd {
|
|
donk := savedonk(e.ID, e.Name, "image/png")
|
|
if donk != nil {
|
|
donk.Name = e.Name
|
|
honk.Donks = append(honk.Donks, donk)
|
|
}
|
|
}
|
|
|
|
user, _ := butwhatabout(userinfo.Username)
|
|
|
|
aud := strings.Join(honk.Audience, " ")
|
|
whofore := 0
|
|
if strings.Contains(aud, user.URL) {
|
|
whofore = 1
|
|
}
|
|
res, err := stmtSaveHonk.Exec(userinfo.UserID, what, "", xid, rid,
|
|
dt.Format(dbtimeformat), "", aud, noise, convoy, whofore, "html", honk.Precis, honk.Oonker)
|
|
if err != nil {
|
|
log.Printf("error saving honk: %s", err)
|
|
return
|
|
}
|
|
honk.ID, _ = res.LastInsertId()
|
|
for _, d := range honk.Donks {
|
|
_, err = stmtSaveDonk.Exec(honk.ID, d.FileID)
|
|
if err != nil {
|
|
log.Printf("err saving donk: %s", err)
|
|
return
|
|
}
|
|
}
|
|
|
|
go honkworldwide(user, &honk)
|
|
|
|
http.Redirect(w, r, "/", http.StatusSeeOther)
|
|
}
|
|
|
|
func showhonkers(w http.ResponseWriter, r *http.Request) {
|
|
userinfo := login.GetUserInfo(r)
|
|
templinfo := getInfo(r)
|
|
templinfo["Honkers"] = gethonkers(userinfo.UserID)
|
|
templinfo["HonkerCSRF"] = login.GetCSRF("savehonker", r)
|
|
err := readviews.Execute(w, "honkers.html", templinfo)
|
|
if err != nil {
|
|
log.Print(err)
|
|
}
|
|
}
|
|
|
|
func showcombos(w http.ResponseWriter, r *http.Request) {
|
|
userinfo := login.GetUserInfo(r)
|
|
templinfo := getInfo(r)
|
|
honkers := gethonkers(userinfo.UserID)
|
|
var combos []string
|
|
for _, h := range honkers {
|
|
combos = append(combos, h.Combos...)
|
|
}
|
|
for i, c := range combos {
|
|
if c == "-" {
|
|
combos[i] = ""
|
|
}
|
|
}
|
|
combos = oneofakind(combos)
|
|
sort.Strings(combos)
|
|
templinfo["Combos"] = combos
|
|
err := readviews.Execute(w, "combos.html", templinfo)
|
|
if err != nil {
|
|
log.Print(err)
|
|
}
|
|
}
|
|
|
|
func savehonker(w http.ResponseWriter, r *http.Request) {
|
|
u := login.GetUserInfo(r)
|
|
name := r.FormValue("name")
|
|
url := r.FormValue("url")
|
|
peep := r.FormValue("peep")
|
|
combos := r.FormValue("combos")
|
|
honkerid, _ := strconv.ParseInt(r.FormValue("honkerid"), 10, 0)
|
|
|
|
if honkerid > 0 {
|
|
goodbye := r.FormValue("goodbye")
|
|
if goodbye == "goodbye" {
|
|
db := opendatabase()
|
|
row := db.QueryRow("select xid from honkers where honkerid = ? and userid = ?",
|
|
honkerid, u.UserID)
|
|
var xid string
|
|
err := row.Scan(&xid)
|
|
if err != nil {
|
|
log.Printf("can't get honker xid: %s", err)
|
|
return
|
|
}
|
|
log.Printf("unsubscribing from %s", xid)
|
|
user, _ := butwhatabout(u.Username)
|
|
err = itakeitallback(user, xid)
|
|
if err != nil {
|
|
log.Printf("can't take it back: %s", err)
|
|
} else {
|
|
_, err = stmtUpdateFlavor.Exec("unsub", u.UserID, xid, "sub")
|
|
if err != nil {
|
|
log.Printf("error updating honker: %s", err)
|
|
return
|
|
}
|
|
}
|
|
|
|
http.Redirect(w, r, "/honkers", http.StatusSeeOther)
|
|
return
|
|
}
|
|
combos = " " + strings.TrimSpace(combos) + " "
|
|
_, err := stmtUpdateCombos.Exec(combos, honkerid, u.UserID)
|
|
if err != nil {
|
|
log.Printf("update honker err: %s", err)
|
|
return
|
|
}
|
|
http.Redirect(w, r, "/honkers", http.StatusSeeOther)
|
|
}
|
|
|
|
flavor := "presub"
|
|
if peep == "peep" {
|
|
flavor = "peep"
|
|
}
|
|
if url == "" {
|
|
return
|
|
}
|
|
if url[0] == '@' {
|
|
url = gofish(url)
|
|
}
|
|
if url == "" {
|
|
return
|
|
}
|
|
_, err := stmtSaveHonker.Exec(u.UserID, name, url, flavor, combos)
|
|
if err != nil {
|
|
log.Print(err)
|
|
return
|
|
}
|
|
if flavor == "presub" {
|
|
user, _ := butwhatabout(u.Username)
|
|
go subsub(user, url)
|
|
}
|
|
http.Redirect(w, r, "/honkers", http.StatusSeeOther)
|
|
}
|
|
|
|
type Zonker struct {
|
|
ID int64
|
|
Name string
|
|
Wherefore string
|
|
}
|
|
|
|
func killzone(w http.ResponseWriter, r *http.Request) {
|
|
db := opendatabase()
|
|
userinfo := login.GetUserInfo(r)
|
|
rows, err := db.Query("select zonkerid, name, wherefore from zonkers where userid = ?", userinfo.UserID)
|
|
if err != nil {
|
|
log.Printf("err: %s", err)
|
|
return
|
|
}
|
|
var zonkers []Zonker
|
|
for rows.Next() {
|
|
var z Zonker
|
|
rows.Scan(&z.ID, &z.Name, &z.Wherefore)
|
|
zonkers = append(zonkers, z)
|
|
}
|
|
templinfo := getInfo(r)
|
|
templinfo["Zonkers"] = zonkers
|
|
templinfo["KillCSRF"] = login.GetCSRF("killitwithfire", r)
|
|
err = readviews.Execute(w, "zonkers.html", templinfo)
|
|
if err != nil {
|
|
log.Print(err)
|
|
}
|
|
}
|
|
|
|
func killitwithfire(w http.ResponseWriter, r *http.Request) {
|
|
userinfo := login.GetUserInfo(r)
|
|
itsok := r.FormValue("itsok")
|
|
if itsok == "iforgiveyou" {
|
|
zonkerid, _ := strconv.ParseInt(r.FormValue("zonkerid"), 10, 0)
|
|
db := opendatabase()
|
|
db.Exec("delete from zonkers where userid = ? and zonkerid = ?",
|
|
userinfo.UserID, zonkerid)
|
|
bitethethumbs()
|
|
http.Redirect(w, r, "/killzone", http.StatusSeeOther)
|
|
return
|
|
}
|
|
wherefore := r.FormValue("wherefore")
|
|
name := r.FormValue("name")
|
|
if name == "" {
|
|
return
|
|
}
|
|
switch wherefore {
|
|
case "zonker":
|
|
case "zurl":
|
|
case "zonvoy":
|
|
default:
|
|
return
|
|
}
|
|
db := opendatabase()
|
|
db.Exec("insert into zonkers (userid, name, wherefore) values (?, ?, ?)",
|
|
userinfo.UserID, name, wherefore)
|
|
if wherefore == "zonker" || wherefore == "zurl" {
|
|
bitethethumbs()
|
|
}
|
|
|
|
http.Redirect(w, r, "/killzone", http.StatusSeeOther)
|
|
}
|
|
|
|
func accountpage(w http.ResponseWriter, r *http.Request) {
|
|
u := login.GetUserInfo(r)
|
|
user, _ := butwhatabout(u.Username)
|
|
templinfo := getInfo(r)
|
|
templinfo["UserCSRF"] = login.GetCSRF("saveuser", r)
|
|
templinfo["LogoutCSRF"] = login.GetCSRF("logout", r)
|
|
templinfo["WhatAbout"] = user.About
|
|
err := readviews.Execute(w, "account.html", templinfo)
|
|
if err != nil {
|
|
log.Print(err)
|
|
}
|
|
}
|
|
|
|
func dochpass(w http.ResponseWriter, r *http.Request) {
|
|
err := login.ChangePassword(w, r)
|
|
if err != nil {
|
|
log.Printf("error changing password: %s", err)
|
|
}
|
|
http.Redirect(w, r, "/account", http.StatusSeeOther)
|
|
}
|
|
|
|
func fingerlicker(w http.ResponseWriter, r *http.Request) {
|
|
orig := r.FormValue("resource")
|
|
|
|
log.Printf("finger lick: %s", orig)
|
|
|
|
if strings.HasPrefix(orig, "acct:") {
|
|
orig = orig[5:]
|
|
}
|
|
|
|
name := orig
|
|
idx := strings.LastIndexByte(name, '/')
|
|
if idx != -1 {
|
|
name = name[idx+1:]
|
|
if "https://"+serverName+"/u/"+name != orig {
|
|
log.Printf("foreign request rejected")
|
|
name = ""
|
|
}
|
|
} else {
|
|
idx = strings.IndexByte(name, '@')
|
|
if idx != -1 {
|
|
name = name[:idx]
|
|
if name+"@"+serverName != orig {
|
|
log.Printf("foreign request rejected")
|
|
name = ""
|
|
}
|
|
}
|
|
}
|
|
user, err := butwhatabout(name)
|
|
if err != nil {
|
|
http.NotFound(w, r)
|
|
return
|
|
}
|
|
|
|
j := NewJunk()
|
|
j["subject"] = fmt.Sprintf("acct:%s@%s", user.Name, serverName)
|
|
j["aliases"] = []string{user.URL}
|
|
var links []map[string]interface{}
|
|
l := NewJunk()
|
|
l["rel"] = "self"
|
|
l["type"] = `application/activity+json`
|
|
l["href"] = user.URL
|
|
links = append(links, l)
|
|
j["links"] = links
|
|
|
|
w.Header().Set("Cache-Control", "max-age=3600")
|
|
w.Header().Set("Content-Type", "application/jrd+json")
|
|
WriteJunk(w, j)
|
|
}
|
|
|
|
func somedays() string {
|
|
secs := 432000 + notrand.Int63n(432000)
|
|
return fmt.Sprintf("%d", secs)
|
|
}
|
|
|
|
func avatate(w http.ResponseWriter, r *http.Request) {
|
|
n := r.FormValue("a")
|
|
a := avatar(n)
|
|
w.Header().Set("Cache-Control", "max-age="+somedays())
|
|
w.Write(a)
|
|
}
|
|
|
|
func servecss(w http.ResponseWriter, r *http.Request) {
|
|
w.Header().Set("Cache-Control", "max-age=7776000")
|
|
http.ServeFile(w, r, "views"+r.URL.Path)
|
|
}
|
|
func servehtml(w http.ResponseWriter, r *http.Request) {
|
|
templinfo := getInfo(r)
|
|
err := readviews.Execute(w, r.URL.Path[1:]+".html", templinfo)
|
|
if err != nil {
|
|
log.Print(err)
|
|
}
|
|
}
|
|
func serveemu(w http.ResponseWriter, r *http.Request) {
|
|
xid := mux.Vars(r)["xid"]
|
|
w.Header().Set("Cache-Control", "max-age="+somedays())
|
|
http.ServeFile(w, r, "emus/"+xid)
|
|
}
|
|
|
|
func servefile(w http.ResponseWriter, r *http.Request) {
|
|
xid := mux.Vars(r)["xid"]
|
|
row := stmtFileData.QueryRow(xid)
|
|
var media string
|
|
var data []byte
|
|
err := row.Scan(&media, &data)
|
|
if err != nil {
|
|
log.Printf("error loading file: %s", err)
|
|
http.NotFound(w, r)
|
|
return
|
|
}
|
|
w.Header().Set("Content-Type", media)
|
|
w.Header().Set("X-Content-Type-Options", "nosniff")
|
|
w.Header().Set("Cache-Control", "max-age="+somedays())
|
|
w.Write(data)
|
|
}
|
|
|
|
func serve() {
|
|
db := opendatabase()
|
|
login.Init(db)
|
|
|
|
listener, err := openListener()
|
|
if err != nil {
|
|
log.Fatal(err)
|
|
}
|
|
go redeliverator()
|
|
|
|
debug := false
|
|
getconfig("debug", &debug)
|
|
readviews = templates.Load(debug,
|
|
"views/honkpage.html",
|
|
"views/honkers.html",
|
|
"views/zonkers.html",
|
|
"views/combos.html",
|
|
"views/honkform.html",
|
|
"views/honk.html",
|
|
"views/account.html",
|
|
"views/login.html",
|
|
"views/header.html",
|
|
)
|
|
if !debug {
|
|
s := "views/style.css"
|
|
savedstyleparams[s] = getstyleparam(s)
|
|
s = "views/local.css"
|
|
savedstyleparams[s] = getstyleparam(s)
|
|
}
|
|
|
|
bitethethumbs()
|
|
|
|
mux := mux.NewRouter()
|
|
mux.Use(login.Checker)
|
|
|
|
posters := mux.Methods("POST").Subrouter()
|
|
getters := mux.Methods("GET").Subrouter()
|
|
|
|
getters.HandleFunc("/", homepage)
|
|
getters.HandleFunc("/rss", showrss)
|
|
getters.HandleFunc("/u/{name:[[:alnum:]]+}", showuser)
|
|
getters.HandleFunc("/u/{name:[[:alnum:]]+}/h/{xid:[[:alnum:]]+}", showhonk)
|
|
getters.HandleFunc("/u/{name:[[:alnum:]]+}/rss", showrss)
|
|
posters.HandleFunc("/u/{name:[[:alnum:]]+}/inbox", inbox)
|
|
getters.HandleFunc("/u/{name:[[:alnum:]]+}/outbox", outbox)
|
|
getters.HandleFunc("/u/{name:[[:alnum:]]+}/followers", emptiness)
|
|
getters.HandleFunc("/u/{name:[[:alnum:]]+}/following", emptiness)
|
|
getters.HandleFunc("/a", avatate)
|
|
getters.HandleFunc("/t", showconvoy)
|
|
getters.HandleFunc("/d/{xid:[[:alnum:].]+}", servefile)
|
|
getters.HandleFunc("/emu/{xid:[[:alnum:]_.]+}", serveemu)
|
|
getters.HandleFunc("/.well-known/webfinger", fingerlicker)
|
|
|
|
getters.HandleFunc("/style.css", servecss)
|
|
getters.HandleFunc("/local.css", servecss)
|
|
getters.HandleFunc("/login", servehtml)
|
|
posters.HandleFunc("/dologin", login.LoginFunc)
|
|
getters.HandleFunc("/logout", login.LogoutFunc)
|
|
|
|
loggedin := mux.NewRoute().Subrouter()
|
|
loggedin.Use(login.Required)
|
|
loggedin.HandleFunc("/account", accountpage)
|
|
loggedin.HandleFunc("/chpass", dochpass)
|
|
loggedin.HandleFunc("/atme", homepage)
|
|
loggedin.HandleFunc("/killzone", killzone)
|
|
loggedin.Handle("/honk", login.CSRFWrap("honkhonk", http.HandlerFunc(savehonk)))
|
|
loggedin.Handle("/bonk", login.CSRFWrap("honkhonk", http.HandlerFunc(savebonk)))
|
|
loggedin.Handle("/zonkit", login.CSRFWrap("honkhonk", http.HandlerFunc(zonkit)))
|
|
loggedin.Handle("/killitwithfire", login.CSRFWrap("killitwithfire", http.HandlerFunc(killitwithfire)))
|
|
loggedin.Handle("/saveuser", login.CSRFWrap("saveuser", http.HandlerFunc(saveuser)))
|
|
loggedin.HandleFunc("/honkers", showhonkers)
|
|
loggedin.HandleFunc("/h/{name:[[:alnum:]]+}", showhonker)
|
|
loggedin.HandleFunc("/c/{name:[[:alnum:]]+}", showcombo)
|
|
loggedin.HandleFunc("/c", showcombos)
|
|
loggedin.Handle("/savehonker", login.CSRFWrap("savehonker", http.HandlerFunc(savehonker)))
|
|
|
|
err = http.Serve(listener, mux)
|
|
if err != nil {
|
|
log.Fatal(err)
|
|
}
|
|
}
|
|
|
|
var stmtHonkers, stmtDubbers, stmtSaveHonker, stmtUpdateFlavor, stmtUpdateCombos *sql.Stmt
|
|
var stmtOneXonk, stmtPublicHonks, stmtUserHonks, stmtHonksByCombo, stmtHonksByConvoy *sql.Stmt
|
|
var stmtHonksForUser, stmtHonksForMe, stmtSaveDub *sql.Stmt
|
|
var stmtHonksByHonker, stmtSaveHonk, stmtFileData, stmtWhatAbout *sql.Stmt
|
|
var stmtFindXonk, stmtSaveDonk, stmtFindFile, stmtSaveFile *sql.Stmt
|
|
var stmtAddDoover, stmtGetDoovers, stmtLoadDoover, stmtZapDoover *sql.Stmt
|
|
var stmtHasHonker, stmtThumbBiters, stmtZonkIt, stmtZonkDonks, stmtSaveZonker *sql.Stmt
|
|
var stmtGetBoxes, stmtSaveBoxes *sql.Stmt
|
|
|
|
func preparetodie(db *sql.DB, s string) *sql.Stmt {
|
|
stmt, err := db.Prepare(s)
|
|
if err != nil {
|
|
log.Fatalf("error %s: %s", err, s)
|
|
}
|
|
return stmt
|
|
}
|
|
|
|
func prepareStatements(db *sql.DB) {
|
|
stmtHonkers = preparetodie(db, "select honkerid, userid, name, xid, flavor, combos from honkers where userid = ? and (flavor = 'sub' or flavor = 'peep' or flavor = 'unsub') order by name")
|
|
stmtSaveHonker = preparetodie(db, "insert into honkers (userid, name, xid, flavor, combos) values (?, ?, ?, ?, ?)")
|
|
stmtUpdateFlavor = preparetodie(db, "update honkers set flavor = ? where userid = ? and xid = ? and flavor = ?")
|
|
stmtUpdateCombos = preparetodie(db, "update honkers set combos = ? where honkerid = ? and userid = ?")
|
|
stmtHasHonker = preparetodie(db, "select honkerid from honkers where xid = ? and userid = ?")
|
|
stmtDubbers = preparetodie(db, "select honkerid, userid, name, xid, flavor from honkers where userid = ? and flavor = 'dub'")
|
|
|
|
selecthonks := "select honkid, honks.userid, username, what, honker, oonker, honks.xid, rid, dt, url, audience, noise, precis, convoy from honks join users on honks.userid = users.userid "
|
|
limit := " order by honkid desc limit 250"
|
|
butnotthose := " and convoy not in (select name from zonkers where userid = ? and wherefore = 'zonvoy' order by zonkerid desc limit 100)"
|
|
stmtOneXonk = preparetodie(db, selecthonks+"where honks.userid = ? and xid = ?")
|
|
stmtPublicHonks = preparetodie(db, selecthonks+"where honker = '' and dt > ?"+limit)
|
|
stmtUserHonks = preparetodie(db, selecthonks+"where honker = '' and username = ? and dt > ?"+limit)
|
|
stmtHonksForUser = preparetodie(db, selecthonks+"where honks.userid = ? and dt > ? and honker in (select xid from honkers where userid = ? and flavor = 'sub' and combos not like '% - %')"+butnotthose+limit)
|
|
stmtHonksForMe = preparetodie(db, selecthonks+"where honks.userid = ? and dt > ? and whofore = 1"+butnotthose+limit)
|
|
stmtHonksByHonker = preparetodie(db, selecthonks+"join honkers on honkers.xid = honks.honker where honks.userid = ? and honkers.name = ?"+butnotthose+limit)
|
|
stmtHonksByCombo = preparetodie(db, selecthonks+"join honkers on honkers.xid = honks.honker where honks.userid = ? and honkers.combos like ?"+butnotthose+limit)
|
|
stmtHonksByConvoy = preparetodie(db, selecthonks+"where (honks.userid = ? or honker = '') and convoy = ?"+limit)
|
|
|
|
stmtSaveHonk = preparetodie(db, "insert into honks (userid, what, honker, xid, rid, dt, url, audience, noise, convoy, whofore, format, precis, oonker) values (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)")
|
|
stmtFileData = preparetodie(db, "select media, content from files where xid = ?")
|
|
stmtFindXonk = preparetodie(db, "select honkid from honks where userid = ? and xid = ?")
|
|
stmtSaveDonk = preparetodie(db, "insert into donks (honkid, fileid) values (?, ?)")
|
|
stmtZonkIt = preparetodie(db, "delete from honks where userid = ? and xid = ?")
|
|
stmtZonkDonks = preparetodie(db, "delete from donks where honkid = ?")
|
|
stmtFindFile = preparetodie(db, "select fileid from files where url = ?")
|
|
stmtSaveFile = preparetodie(db, "insert into files (xid, name, url, media, content) values (?, ?, ?, ?, ?)")
|
|
stmtWhatAbout = preparetodie(db, "select userid, username, displayname, about, pubkey from users where username = ?")
|
|
stmtSaveDub = preparetodie(db, "insert into honkers (userid, name, xid, flavor) values (?, ?, ?, ?)")
|
|
stmtAddDoover = preparetodie(db, "insert into doovers (dt, tries, username, rcpt, msg) values (?, ?, ?, ?, ?)")
|
|
stmtGetDoovers = preparetodie(db, "select dooverid, dt from doovers")
|
|
stmtLoadDoover = preparetodie(db, "select tries, username, rcpt, msg from doovers where dooverid = ?")
|
|
stmtZapDoover = preparetodie(db, "delete from doovers where dooverid = ?")
|
|
stmtThumbBiters = preparetodie(db, "select userid, name, wherefore from zonkers where (wherefore = 'zonker' or wherefore = 'zurl')")
|
|
stmtSaveZonker = preparetodie(db, "insert into zonkers (userid, name, wherefore) values (?, ?, ?)")
|
|
stmtGetBoxes = preparetodie(db, "select ibox, obox, sbox from xonkers where xid = ?")
|
|
stmtSaveBoxes = preparetodie(db, "insert into xonkers (xid, ibox, obox, sbox, pubkey) values (?, ?, ?, ?, ?)")
|
|
}
|
|
|
|
func ElaborateUnitTests() {
|
|
}
|
|
|
|
func finishusersetup() error {
|
|
db := opendatabase()
|
|
k, err := rsa.GenerateKey(rand.Reader, 2048)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
pubkey, err := zem(&k.PublicKey)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
seckey, err := zem(k)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
_, err = db.Exec("update users set displayname = username, about = ?, pubkey = ?, seckey = ? where userid = 1", "what about me?", pubkey, seckey)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func main() {
|
|
cmd := "run"
|
|
if len(os.Args) > 1 {
|
|
cmd = os.Args[1]
|
|
}
|
|
switch cmd {
|
|
case "init":
|
|
initdb()
|
|
case "upgrade":
|
|
upgradedb()
|
|
}
|
|
db := opendatabase()
|
|
dbversion := 0
|
|
getconfig("dbversion", &dbversion)
|
|
if dbversion != myVersion {
|
|
log.Fatal("incorrect database version. run upgrade.")
|
|
}
|
|
getconfig("servername", &serverName)
|
|
prepareStatements(db)
|
|
switch cmd {
|
|
case "ping":
|
|
if len(os.Args) < 4 {
|
|
fmt.Printf("usage: honk ping from to\n")
|
|
return
|
|
}
|
|
name := os.Args[2]
|
|
targ := os.Args[3]
|
|
user, err := butwhatabout(name)
|
|
if err != nil {
|
|
log.Printf("unknown user")
|
|
return
|
|
}
|
|
ping(user, targ)
|
|
case "peep":
|
|
peeppeep()
|
|
case "run":
|
|
serve()
|
|
case "test":
|
|
ElaborateUnitTests()
|
|
default:
|
|
log.Fatal("unknown command")
|
|
}
|
|
}
|