takahe/users/views/identity.py

import string

from django import forms
from django.conf import settings
from django.contrib.auth.decorators import login_required
from django.http import Http404, JsonResponse
from django.shortcuts import redirect
from django.utils.decorators import method_decorator
from django.views.decorators.csrf import csrf_exempt
from django.views.generic import FormView, TemplateView, View

from core.forms import FormHelper
from miniq.models import Task
from users.models import Identity
from users.shortcuts import by_handle_or_404


class ViewIdentity(TemplateView):

    template_name = "identity/view.html"

    def get_context_data(self, handle):
        identity = Identity.by_handle(handle=handle)
        statuses = identity.statuses.all()[:100]
        if identity.data_age > settings.IDENTITY_MAX_AGE:
            Task.submit("identity_fetch", identity.handle)
        return {
            "identity": identity,
            "statuses": statuses,
        }


@method_decorator(login_required, name="dispatch")
class SelectIdentity(TemplateView):

    template_name = "identity/select.html"

    def get_context_data(self):
        return {
            "identities": Identity.objects.filter(users__pk=self.request.user.pk),
        }


@method_decorator(login_required, name="dispatch")
class ActivateIdentity(View):
    def get(self, request, handle):
        identity = by_handle_or_404(request, handle)
        if not identity.users.filter(pk=request.user.pk).exists():
            raise Http404()
        request.session["identity_id"] = identity.id
        # Get next URL, not allowing offsite links
        next = request.GET.get("next") or "/"
        if ":" in next:
            next = "/"
        return redirect("/")


@method_decorator(login_required, name="dispatch")
class CreateIdentity(FormView):

    template_name = "identity/create.html"

    class form_class(forms.Form):
        handle = forms.CharField()
        name = forms.CharField()

        helper = FormHelper(submit_text="Create")

        def clean_handle(self):
            # Remove any leading @
            value = self.cleaned_data["handle"].lstrip("@")
            # Validate it's all ascii characters
            for character in value:
                if character not in string.ascii_letters + string.digits + "_-":
                    raise forms.ValidationError(
                        "Only the letters a-z, numbers 0-9, dashes and underscores are allowed."
                    )
            # Don't allow custom domains here quite yet
            if "@" in value:
                raise forms.ValidationError(
                    "You are not allowed an @ sign in your handle."
                )
            # Ensure there is a domain on the end
            if "@" not in value:
                value += "@" + settings.DEFAULT_DOMAIN
            # Check for existing users
            if Identity.objects.filter(handle=value).exists():
                raise forms.ValidationError("This handle is already taken")
            return value

    def form_valid(self, form):
        new_identity = Identity.objects.create(
            handle=form.cleaned_data["handle"],
            name=form.cleaned_data["name"],
            local=True,
        )
        new_identity.users.add(self.request.user)
        new_identity.generate_keypair()
        return redirect(new_identity.urls.view)


class Actor(View):
    """
    Returns the AP Actor object
    """

    def get(self, request, handle):
        identity = by_handle_or_404(self.request, handle)
        return JsonResponse(
            {
                "@context": [
                    "https://www.w3.org/ns/activitystreams",
                    "https://w3id.org/security/v1",
                ],
                "id": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.actor}",
                "type": "Person",
                "preferredUsername": identity.short_handle,
                "inbox": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.inbox}",
                "publicKey": {
                    "id": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.actor}#main-key",
                    "owner": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.actor}",
                    "publicKeyPem": identity.public_key,
                },
            }
        )


@method_decorator(csrf_exempt, name="dispatch")
class Inbox(View):
    """
    AP Inbox endpoint
    """

    def post(self, request, handle):
        # Validate the signature
        signature = request.META.get("HTTP_SIGNATURE")
        print(signature)
        print(request.body)


class Webfinger(View):
    """
    Services webfinger requests
    """

    def get(self, request):
        resource = request.GET.get("resource")
        if not resource.startswith("acct:"):
            raise Http404("Not an account resource")
        handle = resource[5:]
        identity = by_handle_or_404(request, handle)
        return JsonResponse(
            {
                "subject": f"acct:{identity.handle}",
                "aliases": [
                    f"https://{settings.DEFAULT_DOMAIN}/@{identity.short_handle}",
                ],
                "links": [
                    {
                        "rel": "http://webfinger.net/rel/profile-page",
                        "type": "text/html",
                        "href": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.view}",
                    },
                    {
                        "rel": "self",
                        "type": "application/activity+json",
                        "href": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.actor}",
                    },
                ],
            }
        )
Some user icon stuff 2022-11-06 02:10:39 +00:00			`import string`

Initial commit (users and statuses) 2022-11-05 20:17:27 +00:00			`from django import forms`
			`from django.conf import settings`
			`from django.contrib.auth.decorators import login_required`
			`from django.http import Http404, JsonResponse`
			`from django.shortcuts import redirect`
			`from django.utils.decorators import method_decorator`
Get Actor fetching and parsing working 2022-11-05 23:51:54 +00:00			`from django.views.decorators.csrf import csrf_exempt`
Initial commit (users and statuses) 2022-11-05 20:17:27 +00:00			`from django.views.generic import FormView, TemplateView, View`

			`from core.forms import FormHelper`
Queuing system and lazy profile fetch 2022-11-06 04:49:25 +00:00			`from miniq.models import Task`
Initial commit (users and statuses) 2022-11-05 20:17:27 +00:00			`from users.models import Identity`
			`from users.shortcuts import by_handle_or_404`


			`class ViewIdentity(TemplateView):`

			`template_name = "identity/view.html"`

			`def get_context_data(self, handle):`
Queuing system and lazy profile fetch 2022-11-06 04:49:25 +00:00			`identity = Identity.by_handle(handle=handle)`
Initial commit (users and statuses) 2022-11-05 20:17:27 +00:00			`statuses = identity.statuses.all()[:100]`
Queuing system and lazy profile fetch 2022-11-06 04:49:25 +00:00			`if identity.data_age > settings.IDENTITY_MAX_AGE:`
			`Task.submit("identity_fetch", identity.handle)`
Initial commit (users and statuses) 2022-11-05 20:17:27 +00:00			`return {`
			`"identity": identity,`
			`"statuses": statuses,`
			`}`


			`@method_decorator(login_required, name="dispatch")`
			`class SelectIdentity(TemplateView):`

			`template_name = "identity/select.html"`

			`def get_context_data(self):`
			`return {`
			`"identities": Identity.objects.filter(users__pk=self.request.user.pk),`
			`}`


Some user icon stuff 2022-11-06 02:10:39 +00:00			`@method_decorator(login_required, name="dispatch")`
			`class ActivateIdentity(View):`
			`def get(self, request, handle):`
			`identity = by_handle_or_404(request, handle)`
			`if not identity.users.filter(pk=request.user.pk).exists():`
			`raise Http404()`
			`request.session["identity_id"] = identity.id`
			`# Get next URL, not allowing offsite links`
			`next = request.GET.get("next") or "/"`
			`if ":" in next:`
			`next = "/"`
			`return redirect("/")`


Initial commit (users and statuses) 2022-11-05 20:17:27 +00:00			`@method_decorator(login_required, name="dispatch")`
			`class CreateIdentity(FormView):`

			`template_name = "identity/create.html"`

			`class form_class(forms.Form):`
			`handle = forms.CharField()`
			`name = forms.CharField()`

			`helper = FormHelper(submit_text="Create")`

			`def clean_handle(self):`
			`# Remove any leading @`
			`value = self.cleaned_data["handle"].lstrip("@")`
Some user icon stuff 2022-11-06 02:10:39 +00:00			`# Validate it's all ascii characters`
			`for character in value:`
			`if character not in string.ascii_letters + string.digits + "_-":`
			`raise forms.ValidationError(`
			`"Only the letters a-z, numbers 0-9, dashes and underscores are allowed."`
			`)`
Initial commit (users and statuses) 2022-11-05 20:17:27 +00:00			`# Don't allow custom domains here quite yet`
			`if "@" in value:`
			`raise forms.ValidationError(`
Some user icon stuff 2022-11-06 02:10:39 +00:00			`"You are not allowed an @ sign in your handle."`
Initial commit (users and statuses) 2022-11-05 20:17:27 +00:00			`)`
			`# Ensure there is a domain on the end`
			`if "@" not in value:`
			`value += "@" + settings.DEFAULT_DOMAIN`
			`# Check for existing users`
			`if Identity.objects.filter(handle=value).exists():`
			`raise forms.ValidationError("This handle is already taken")`
			`return value`

			`def form_valid(self, form):`
			`new_identity = Identity.objects.create(`
			`handle=form.cleaned_data["handle"],`
			`name=form.cleaned_data["name"],`
			`local=True,`
			`)`
			`new_identity.users.add(self.request.user)`
			`new_identity.generate_keypair()`
			`return redirect(new_identity.urls.view)`


			`class Actor(View):`
			`"""`
			`Returns the AP Actor object`
			`"""`

			`def get(self, request, handle):`
			`identity = by_handle_or_404(self.request, handle)`
			`return JsonResponse(`
			`{`
			`"@context": [`
			`"https://www.w3.org/ns/activitystreams",`
			`"https://w3id.org/security/v1",`
			`],`
			`"id": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.actor}",`
			`"type": "Person",`
Get Actor fetching and parsing working 2022-11-05 23:51:54 +00:00			`"preferredUsername": identity.short_handle,`
Initial commit (users and statuses) 2022-11-05 20:17:27 +00:00			`"inbox": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.inbox}",`
			`"publicKey": {`
			`"id": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.actor}#main-key",`
			`"owner": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.actor}",`
			`"publicKeyPem": identity.public_key,`
			`},`
			`}`
			`)`


Get Actor fetching and parsing working 2022-11-05 23:51:54 +00:00			`@method_decorator(csrf_exempt, name="dispatch")`
			`class Inbox(View):`
			`"""`
			`AP Inbox endpoint`
			`"""`

			`def post(self, request, handle):`
			`# Validate the signature`
			`signature = request.META.get("HTTP_SIGNATURE")`
			`print(signature)`
			`print(request.body)`


Initial commit (users and statuses) 2022-11-05 20:17:27 +00:00			`class Webfinger(View):`
			`"""`
			`Services webfinger requests`
			`"""`

			`def get(self, request):`
			`resource = request.GET.get("resource")`
			`if not resource.startswith("acct:"):`
			`raise Http404("Not an account resource")`
			`handle = resource[5:]`
			`identity = by_handle_or_404(request, handle)`
			`return JsonResponse(`
			`{`
			`"subject": f"acct:{identity.handle}",`
			`"aliases": [`
			`f"https://{settings.DEFAULT_DOMAIN}/@{identity.short_handle}",`
			`],`
			`"links": [`
			`{`
			`"rel": "http://webfinger.net/rel/profile-page",`
			`"type": "text/html",`
			`"href": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.view}",`
			`},`
			`{`
			`"rel": "self",`
			`"type": "application/activity+json",`
			`"href": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.actor}",`
			`},`
			`],`
			`}`
			`)`