continuwuity/src/service/rooms/alias/mod.rs

use conduit::Server;
use database::KeyValueDatabase;

mod data;

use std::sync::Arc;

use data::Data;
use ruma::{
	api::client::error::ErrorKind,
	events::{
		room::power_levels::{RoomPowerLevels, RoomPowerLevelsEventContent},
		StateEventType,
	},
	OwnedRoomAliasId, OwnedRoomId, RoomAliasId, RoomId, UserId,
};

use crate::{services, Error, Result};

pub struct Service {
	pub db: Data,
}

impl Service {
	pub fn build(_server: &Arc<Server>, db: &Arc<KeyValueDatabase>) -> Result<Self> {
		Ok(Self {
			db: Data::new(db),
		})
	}

	#[tracing::instrument(skip(self))]
	pub fn set_alias(&self, alias: &RoomAliasId, room_id: &RoomId, user_id: &UserId) -> Result<()> {
		if alias == services().globals.admin_alias && user_id != services().globals.server_user {
			Err(Error::BadRequest(
				ErrorKind::forbidden(),
				"Only the server user can set this alias",
			))
		} else {
			self.db.set_alias(alias, room_id, user_id)
		}
	}

	#[tracing::instrument(skip(self))]
	pub async fn remove_alias(&self, alias: &RoomAliasId, user_id: &UserId) -> Result<()> {
		if self.user_can_remove_alias(alias, user_id).await? {
			self.db.remove_alias(alias)
		} else {
			Err(Error::BadRequest(
				ErrorKind::forbidden(),
				"User is not permitted to remove this alias.",
			))
		}
	}

	#[tracing::instrument(skip(self))]
	pub fn resolve_local_alias(&self, alias: &RoomAliasId) -> Result<Option<OwnedRoomId>> {
		self.db.resolve_local_alias(alias)
	}

	#[tracing::instrument(skip(self))]
	pub fn local_aliases_for_room<'a>(
		&'a self, room_id: &RoomId,
	) -> Box<dyn Iterator<Item = Result<OwnedRoomAliasId>> + 'a> {
		self.db.local_aliases_for_room(room_id)
	}

	#[tracing::instrument(skip(self))]
	pub fn all_local_aliases<'a>(&'a self) -> Box<dyn Iterator<Item = Result<(OwnedRoomId, String)>> + 'a> {
		self.db.all_local_aliases()
	}

	async fn user_can_remove_alias(&self, alias: &RoomAliasId, user_id: &UserId) -> Result<bool> {
		let Some(room_id) = self.resolve_local_alias(alias)? else {
			return Err(Error::BadRequest(ErrorKind::NotFound, "Alias not found."));
		};

		let server_user = &services().globals.server_user;

		// The creator of an alias can remove it
		if self
            .db
            .who_created_alias(alias)?
            .is_some_and(|user| user == user_id)
            // Server admins can remove any local alias
            || services().admin.user_is_admin(user_id).await?
            // Always allow the server service account to remove the alias, since there may not be an admin room
            || server_user == user_id
		{
			Ok(true)
		// Checking whether the user is able to change canonical aliases of the
		// room
		} else if let Some(event) =
			services()
				.rooms
				.state_accessor
				.room_state_get(&room_id, &StateEventType::RoomPowerLevels, "")?
		{
			serde_json::from_str(event.content.get())
				.map_err(|_| Error::bad_database("Invalid event content for m.room.power_levels"))
				.map(|content: RoomPowerLevelsEventContent| {
					RoomPowerLevels::from(content).user_can_send_state(user_id, StateEventType::RoomCanonicalAlias)
				})
		// If there is no power levels event, only the room creator can change
		// canonical aliases
		} else if let Some(event) =
			services()
				.rooms
				.state_accessor
				.room_state_get(&room_id, &StateEventType::RoomCreate, "")?
		{
			Ok(event.sender == user_id)
		} else {
			Err(Error::bad_database("Room has no m.room.create event"))
		}
	}
}
devirtualize service Data traits Signed-off-by: Jason Volk <jason@zemos.net> 2024-05-27 03:17:20 +00:00			`use conduit::Server;`
			`use database::KeyValueDatabase;`

Work on rooms/state, database, alias, directory, edus services, event_handler, lazy_loading, metadata, outlier, and pdu_metadata 2022-06-25 16:12:23 +02:00			`mod data;`
cargo fix 2022-10-08 13:04:55 +02:00
Hot-Reloading Refactor Signed-off-by: Jason Volk <jason@zemos.net> 2024-05-09 15:59:08 -07:00			`use std::sync::Arc;`

dissolve key_value/* Signed-off-by: Jason Volk <jason@zemos.net> 2024-05-26 21:29:19 +00:00			`use data::Data;`
fix: restrict who can remove aliases Previously, anyone could remove any local alias, meaning that someone could re-route a popular alias elsewhere Now, only the creator of the alias, users who can set canonical aliases for the room, server admins and the server user can delete aliases added some additional changes/fixes to adapt to our codebase Co-authored-by: strawberry <strawberry@puppygock.gay> Signed-off-by: strawberry <strawberry@puppygock.gay> 2024-06-12 01:42:39 -04:00			`use ruma::{`
			`api::client::error::ErrorKind,`
			`events::{`
			`room::power_levels::{RoomPowerLevels, RoomPowerLevelsEventContent},`
			`StateEventType,`
			`},`
			`OwnedRoomAliasId, OwnedRoomId, RoomAliasId, RoomId, UserId,`
			`};`
Fixed more compile time errors 2022-09-07 13:25:51 +02:00
fix: restrict who can remove aliases Previously, anyone could remove any local alias, meaning that someone could re-route a popular alias elsewhere Now, only the creator of the alias, users who can set canonical aliases for the room, server admins and the server user can delete aliases added some additional changes/fixes to adapt to our codebase Co-authored-by: strawberry <strawberry@puppygock.gay> Signed-off-by: strawberry <strawberry@puppygock.gay> 2024-06-12 01:42:39 -04:00			`use crate::{services, Error, Result};`
Work on rooms/state, database, alias, directory, edus services, event_handler, lazy_loading, metadata, outlier, and pdu_metadata 2022-06-25 16:12:23 +02:00
Hot-Reloading Refactor Signed-off-by: Jason Volk <jason@zemos.net> 2024-05-09 15:59:08 -07:00			`pub struct Service {`
devirtualize service Data traits Signed-off-by: Jason Volk <jason@zemos.net> 2024-05-27 03:17:20 +00:00			`pub db: Data,`
Work on rooms/state, database, alias, directory, edus services, event_handler, lazy_loading, metadata, outlier, and pdu_metadata 2022-06-25 16:12:23 +02:00			`}`

messing with trait objects 2022-10-05 12:45:54 +02:00			`impl Service {`
devirtualize service Data traits Signed-off-by: Jason Volk <jason@zemos.net> 2024-05-27 03:17:20 +00:00			`pub fn build(_server: &Arc<Server>, db: &Arc<KeyValueDatabase>) -> Result<Self> {`
			`Ok(Self {`
			`db: Data::new(db),`
			`})`
			`}`

fix: some compile time errors Only 174 errors left! 2022-09-06 23:15:09 +02:00			`#[tracing::instrument(skip(self))]`
fix: restrict who can remove aliases Previously, anyone could remove any local alias, meaning that someone could re-route a popular alias elsewhere Now, only the creator of the alias, users who can set canonical aliases for the room, server admins and the server user can delete aliases added some additional changes/fixes to adapt to our codebase Co-authored-by: strawberry <strawberry@puppygock.gay> Signed-off-by: strawberry <strawberry@puppygock.gay> 2024-06-12 01:42:39 -04:00			`pub fn set_alias(&self, alias: &RoomAliasId, room_id: &RoomId, user_id: &UserId) -> Result<()> {`
fix: only allow the server user to set the admin alias Should make it safer to move the alias if the admin room broke on a public server. Signed-off-by: strawberry <strawberry@puppygock.gay> 2024-06-12 02:13:27 -04:00			`if alias == services().globals.admin_alias && user_id != services().globals.server_user {`
			`Err(Error::BadRequest(`
			`ErrorKind::forbidden(),`
			`"Only the server user can set this alias",`
			`))`
			`} else {`
			`self.db.set_alias(alias, room_id, user_id)`
			`}`
fix: restrict who can remove aliases Previously, anyone could remove any local alias, meaning that someone could re-route a popular alias elsewhere Now, only the creator of the alias, users who can set canonical aliases for the room, server admins and the server user can delete aliases added some additional changes/fixes to adapt to our codebase Co-authored-by: strawberry <strawberry@puppygock.gay> Signed-off-by: strawberry <strawberry@puppygock.gay> 2024-06-12 01:42:39 -04:00			`}`
add rustfmt.toml, format entire codebase Signed-off-by: strawberry <strawberry@puppygock.gay> 2024-03-05 19:48:54 -05:00
fix: some compile time errors Only 174 errors left! 2022-09-06 23:15:09 +02:00			`#[tracing::instrument(skip(self))]`
fix: restrict who can remove aliases Previously, anyone could remove any local alias, meaning that someone could re-route a popular alias elsewhere Now, only the creator of the alias, users who can set canonical aliases for the room, server admins and the server user can delete aliases added some additional changes/fixes to adapt to our codebase Co-authored-by: strawberry <strawberry@puppygock.gay> Signed-off-by: strawberry <strawberry@puppygock.gay> 2024-06-12 01:42:39 -04:00			`pub async fn remove_alias(&self, alias: &RoomAliasId, user_id: &UserId) -> Result<()> {`
			`if self.user_can_remove_alias(alias, user_id).await? {`
			`self.db.remove_alias(alias)`
			`} else {`
			`Err(Error::BadRequest(`
			`ErrorKind::forbidden(),`
			`"User is not permitted to remove this alias.",`
			`))`
			`}`
			`}`
add rustfmt.toml, format entire codebase Signed-off-by: strawberry <strawberry@puppygock.gay> 2024-03-05 19:48:54 -05:00
feat: add threadpool for iterator threads, bug fixes, tracing_flame support 2021-07-29 08:36:01 +02:00			`#[tracing::instrument(skip(self))]`
Hot-Reloading Refactor Signed-off-by: Jason Volk <jason@zemos.net> 2024-05-09 15:59:08 -07:00			`pub fn resolve_local_alias(&self, alias: &RoomAliasId) -> Result<Option<OwnedRoomId>> {`
Fixed more compile time errors 2022-09-07 13:25:51 +02:00			`self.db.resolve_local_alias(alias)`
feat: room visibility and aliases 2020-05-25 23:24:13 +02:00			`}`
add rustfmt.toml, format entire codebase Signed-off-by: strawberry <strawberry@puppygock.gay> 2024-03-05 19:48:54 -05:00
feat: add threadpool for iterator threads, bug fixes, tracing_flame support 2021-07-29 08:36:01 +02:00			`#[tracing::instrument(skip(self))]`
Hot-Reloading Refactor Signed-off-by: Jason Volk <jason@zemos.net> 2024-05-09 15:59:08 -07:00			`pub fn local_aliases_for_room<'a>(`
feat: swappable database backend 2021-06-08 18:10:00 +02:00			`&'a self, room_id: &RoomId,`
Bump ruma 2022-10-09 17:25:06 +02:00			`) -> Box<dyn Iterator<Item = Result<OwnedRoomAliasId>> + 'a> {`
Work on rooms/state, database, alias, directory, edus services, event_handler, lazy_loading, metadata, outlier, and pdu_metadata 2022-06-25 16:12:23 +02:00			`self.db.local_aliases_for_room(room_id)`
feat: room visibility and aliases 2020-05-25 23:24:13 +02:00			`}`
add rustfmt.toml, format entire codebase Signed-off-by: strawberry <strawberry@puppygock.gay> 2024-03-05 19:48:54 -05:00
Admin room alias commands - room alias set - room alias remove - room alias which - room alias list 2023-10-03 20:42:31 -07:00			`#[tracing::instrument(skip(self))]`
Hot-Reloading Refactor Signed-off-by: Jason Volk <jason@zemos.net> 2024-05-09 15:59:08 -07:00			`pub fn all_local_aliases<'a>(&'a self) -> Box<dyn Iterator<Item = Result<(OwnedRoomId, String)>> + 'a> {`
Admin room alias commands - room alias set - room alias remove - room alias which - room alias list 2023-10-03 20:42:31 -07:00			`self.db.all_local_aliases()`
			`}`
fix: restrict who can remove aliases Previously, anyone could remove any local alias, meaning that someone could re-route a popular alias elsewhere Now, only the creator of the alias, users who can set canonical aliases for the room, server admins and the server user can delete aliases added some additional changes/fixes to adapt to our codebase Co-authored-by: strawberry <strawberry@puppygock.gay> Signed-off-by: strawberry <strawberry@puppygock.gay> 2024-06-12 01:42:39 -04:00
			`async fn user_can_remove_alias(&self, alias: &RoomAliasId, user_id: &UserId) -> Result<bool> {`
			`let Some(room_id) = self.resolve_local_alias(alias)? else {`
			`return Err(Error::BadRequest(ErrorKind::NotFound, "Alias not found."));`
			`};`

cleanup+refactor admin room alias and server account accessing to globals Signed-off-by: strawberry <strawberry@puppygock.gay> 2024-06-12 02:10:59 -04:00			`let server_user = &services().globals.server_user;`
fix: restrict who can remove aliases Previously, anyone could remove any local alias, meaning that someone could re-route a popular alias elsewhere Now, only the creator of the alias, users who can set canonical aliases for the room, server admins and the server user can delete aliases added some additional changes/fixes to adapt to our codebase Co-authored-by: strawberry <strawberry@puppygock.gay> Signed-off-by: strawberry <strawberry@puppygock.gay> 2024-06-12 01:42:39 -04:00
			`// The creator of an alias can remove it`
			`if self`
			`.db`
			`.who_created_alias(alias)?`
			`.is_some_and(\|user\| user == user_id)`
			`// Server admins can remove any local alias`
			`\|\| services().admin.user_is_admin(user_id).await?`
			`// Always allow the server service account to remove the alias, since there may not be an admin room`
			`\|\| server_user == user_id`
			`{`
			`Ok(true)`
			`// Checking whether the user is able to change canonical aliases of the`
			`// room`
			`} else if let Some(event) =`
			`services()`
			`.rooms`
			`.state_accessor`
			`.room_state_get(&room_id, &StateEventType::RoomPowerLevels, "")?`
			`{`
			`serde_json::from_str(event.content.get())`
			`.map_err(\|_\| Error::bad_database("Invalid event content for m.room.power_levels"))`
			`.map(\|content: RoomPowerLevelsEventContent\| {`
			`RoomPowerLevels::from(content).user_can_send_state(user_id, StateEventType::RoomCanonicalAlias)`
			`})`
			`// If there is no power levels event, only the room creator can change`
			`// canonical aliases`
			`} else if let Some(event) =`
			`services()`
			`.rooms`
			`.state_accessor`
			`.room_state_get(&room_id, &StateEventType::RoomCreate, "")?`
			`{`
			`Ok(event.sender == user_id)`
			`} else {`
			`Err(Error::bad_database("Room has no m.room.create event"))`
			`}`
			`}`
Work on rooms/state, database, alias, directory, edus services, event_handler, lazy_loading, metadata, outlier, and pdu_metadata 2022-06-25 16:12:23 +02:00			`}`