2019-05-05 05:20:38 +00:00
|
|
|
use super::*;
|
|
|
|
|
|
|
|
|
|
#[derive(Serialize, Deserialize)]
|
|
|
|
|
pub struct CreateComment {
|
|
|
|
|
content: String,
|
|
|
|
|
parent_id: Option<i32>,
|
2020-01-22 21:35:29 +00:00
|
|
|
edit_id: Option<i32>, // TODO this isn't used
|
2019-05-05 05:20:38 +00:00
|
|
|
pub post_id: i32,
|
2019-09-07 15:35:05 +00:00
|
|
|
auth: String,
|
2019-05-05 05:20:38 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(Serialize, Deserialize)]
|
|
|
|
|
pub struct EditComment {
|
|
|
|
|
content: String,
|
2020-01-22 21:35:29 +00:00
|
|
|
parent_id: Option<i32>, // TODO why are the parent_id, creator_id, post_id, etc fields required? They aren't going to change
|
2019-05-05 05:20:38 +00:00
|
|
|
edit_id: i32,
|
|
|
|
|
creator_id: i32,
|
|
|
|
|
pub post_id: i32,
|
|
|
|
|
removed: Option<bool>,
|
|
|
|
|
deleted: Option<bool>,
|
|
|
|
|
reason: Option<String>,
|
|
|
|
|
read: Option<bool>,
|
2019-09-07 15:35:05 +00:00
|
|
|
auth: String,
|
2019-05-05 05:20:38 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(Serialize, Deserialize)]
|
|
|
|
|
pub struct SaveComment {
|
|
|
|
|
comment_id: i32,
|
|
|
|
|
save: bool,
|
2019-09-07 15:35:05 +00:00
|
|
|
auth: String,
|
2019-05-05 05:20:38 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(Serialize, Deserialize, Clone)]
|
|
|
|
|
pub struct CommentResponse {
|
2019-09-07 15:35:05 +00:00
|
|
|
pub comment: CommentView,
|
2020-02-01 01:02:20 +00:00
|
|
|
pub recipient_ids: Vec<i32>,
|
2019-05-05 05:20:38 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(Serialize, Deserialize)]
|
|
|
|
|
pub struct CreateCommentLike {
|
|
|
|
|
comment_id: i32,
|
|
|
|
|
pub post_id: i32,
|
|
|
|
|
score: i16,
|
2019-09-07 15:35:05 +00:00
|
|
|
auth: String,
|
2019-05-05 05:20:38 +00:00
|
|
|
}
|
|
|
|
|
|
2020-02-08 04:05:15 +00:00
|
|
|
#[derive(Serialize, Deserialize)]
|
|
|
|
|
pub struct GetComments {
|
|
|
|
|
type_: String,
|
|
|
|
|
sort: String,
|
|
|
|
|
page: Option<i64>,
|
|
|
|
|
limit: Option<i64>,
|
|
|
|
|
pub community_id: Option<i32>,
|
|
|
|
|
auth: Option<String>,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(Serialize, Deserialize)]
|
|
|
|
|
pub struct GetCommentsResponse {
|
|
|
|
|
comments: Vec<CommentView>,
|
|
|
|
|
}
|
|
|
|
|
|
2019-05-05 05:20:38 +00:00
|
|
|
impl Perform<CommentResponse> for Oper<CreateComment> {
|
2020-04-19 22:08:25 +00:00
|
|
|
fn perform(
|
|
|
|
|
&self,
|
|
|
|
|
pool: Pool<ConnectionManager<PgConnection>>,
|
|
|
|
|
websocket_info: Option<WebsocketInfo>,
|
|
|
|
|
rate_limit_info: Option<RateLimitInfo>,
|
|
|
|
|
) -> Result<CommentResponse, Error> {
|
2019-05-05 16:20:30 +00:00
|
|
|
let data: &CreateComment = &self.data;
|
2019-05-05 05:20:38 +00:00
|
|
|
|
|
|
|
|
let claims = match Claims::decode(&data.auth) {
|
|
|
|
|
Ok(claims) => claims.claims,
|
2020-01-16 14:39:08 +00:00
|
|
|
Err(_e) => return Err(APIError::err("not_logged_in").into()),
|
2019-05-05 05:20:38 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
let user_id = claims.id;
|
|
|
|
|
|
2020-01-02 21:55:54 +00:00
|
|
|
let hostname = &format!("https://{}", Settings::get().hostname);
|
|
|
|
|
|
2020-04-19 22:08:25 +00:00
|
|
|
if let Some(rl) = rate_limit_info {
|
|
|
|
|
rl.rate_limiter
|
|
|
|
|
.lock()
|
|
|
|
|
.unwrap()
|
|
|
|
|
.check_rate_limit_message(&rl.ip, false)?;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let conn = pool.get()?;
|
|
|
|
|
|
2019-05-05 05:20:38 +00:00
|
|
|
// Check for a community ban
|
|
|
|
|
let post = Post::read(&conn, data.post_id)?;
|
|
|
|
|
if CommunityUserBanView::get(&conn, user_id, post.community_id).is_ok() {
|
2020-01-16 14:39:08 +00:00
|
|
|
return Err(APIError::err("community_ban").into());
|
2019-05-05 05:20:38 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check for a site ban
|
|
|
|
|
if UserView::read(&conn, user_id)?.banned {
|
2020-01-16 14:39:08 +00:00
|
|
|
return Err(APIError::err("site_ban").into());
|
2019-05-05 05:20:38 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let content_slurs_removed = remove_slurs(&data.content.to_owned());
|
|
|
|
|
|
|
|
|
|
let comment_form = CommentForm {
|
|
|
|
|
content: content_slurs_removed,
|
|
|
|
|
parent_id: data.parent_id.to_owned(),
|
|
|
|
|
post_id: data.post_id,
|
|
|
|
|
creator_id: user_id,
|
|
|
|
|
removed: None,
|
|
|
|
|
deleted: None,
|
|
|
|
|
read: None,
|
2019-09-07 15:35:05 +00:00
|
|
|
updated: None,
|
2019-05-05 05:20:38 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
let inserted_comment = match Comment::create(&conn, &comment_form) {
|
|
|
|
|
Ok(comment) => comment,
|
2020-01-16 14:39:08 +00:00
|
|
|
Err(_e) => return Err(APIError::err("couldnt_create_comment").into()),
|
2019-05-05 05:20:38 +00:00
|
|
|
};
|
|
|
|
|
|
2020-02-01 01:02:20 +00:00
|
|
|
let mut recipient_ids = Vec::new();
|
|
|
|
|
|
2019-10-20 00:46:29 +00:00
|
|
|
// Scan the comment for user mentions, add those rows
|
|
|
|
|
let extracted_usernames = extract_usernames(&comment_form.content);
|
|
|
|
|
|
|
|
|
|
for username_mention in &extracted_usernames {
|
2020-01-02 21:55:54 +00:00
|
|
|
if let Ok(mention_user) = User_::read_from_name(&conn, (*username_mention).to_string()) {
|
2019-10-20 00:46:29 +00:00
|
|
|
// You can't mention yourself
|
|
|
|
|
// At some point, make it so you can't tag the parent creator either
|
|
|
|
|
// This can cause two notifications, one for reply and the other for mention
|
2020-01-02 21:55:54 +00:00
|
|
|
if mention_user.id != user_id {
|
2020-02-01 01:02:20 +00:00
|
|
|
recipient_ids.push(mention_user.id);
|
|
|
|
|
|
2019-10-20 00:46:29 +00:00
|
|
|
let user_mention_form = UserMentionForm {
|
2020-01-02 21:55:54 +00:00
|
|
|
recipient_id: mention_user.id,
|
2019-10-20 00:46:29 +00:00
|
|
|
comment_id: inserted_comment.id,
|
|
|
|
|
read: None,
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
// Allow this to fail softly, since comment edits might re-update or replace it
|
|
|
|
|
// Let the uniqueness handle this fail
|
|
|
|
|
match UserMention::create(&conn, &user_mention_form) {
|
|
|
|
|
Ok(_mention) => (),
|
2020-03-13 15:08:42 +00:00
|
|
|
Err(_e) => error!("{}", &_e),
|
2020-01-02 21:55:54 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
// Send an email to those users that have notifications on
|
|
|
|
|
if mention_user.send_notifications_to_email {
|
|
|
|
|
if let Some(mention_email) = mention_user.email {
|
|
|
|
|
let subject = &format!(
|
|
|
|
|
"{} - Mentioned by {}",
|
|
|
|
|
Settings::get().hostname,
|
|
|
|
|
claims.username
|
|
|
|
|
);
|
|
|
|
|
let html = &format!(
|
|
|
|
|
"<h1>User Mention</h1><br><div>{} - {}</div><br><a href={}/inbox>inbox</a>",
|
|
|
|
|
claims.username, comment_form.content, hostname
|
|
|
|
|
);
|
|
|
|
|
match send_email(subject, &mention_email, &mention_user.name, html) {
|
|
|
|
|
Ok(_o) => _o,
|
2020-03-13 15:08:42 +00:00
|
|
|
Err(e) => error!("{}", e),
|
2020-01-02 21:55:54 +00:00
|
|
|
};
|
|
|
|
|
}
|
2019-10-20 00:46:29 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-02 21:55:54 +00:00
|
|
|
// Send notifs to the parent commenter / poster
|
|
|
|
|
match data.parent_id {
|
|
|
|
|
Some(parent_id) => {
|
|
|
|
|
let parent_comment = Comment::read(&conn, parent_id)?;
|
2020-01-03 18:12:19 +00:00
|
|
|
if parent_comment.creator_id != user_id {
|
|
|
|
|
let parent_user = User_::read(&conn, parent_comment.creator_id)?;
|
2020-02-01 01:02:20 +00:00
|
|
|
recipient_ids.push(parent_user.id);
|
|
|
|
|
|
2020-01-03 18:12:19 +00:00
|
|
|
if parent_user.send_notifications_to_email {
|
|
|
|
|
if let Some(comment_reply_email) = parent_user.email {
|
|
|
|
|
let subject = &format!(
|
|
|
|
|
"{} - Reply from {}",
|
|
|
|
|
Settings::get().hostname,
|
|
|
|
|
claims.username
|
|
|
|
|
);
|
|
|
|
|
let html = &format!(
|
|
|
|
|
"<h1>Comment Reply</h1><br><div>{} - {}</div><br><a href={}/inbox>inbox</a>",
|
|
|
|
|
claims.username, comment_form.content, hostname
|
|
|
|
|
);
|
|
|
|
|
match send_email(subject, &comment_reply_email, &parent_user.name, html) {
|
|
|
|
|
Ok(_o) => _o,
|
2020-03-13 15:08:42 +00:00
|
|
|
Err(e) => error!("{}", e),
|
2020-01-03 18:12:19 +00:00
|
|
|
};
|
|
|
|
|
}
|
2020-01-02 21:55:54 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
// Its a post
|
|
|
|
|
None => {
|
2020-01-03 18:12:19 +00:00
|
|
|
if post.creator_id != user_id {
|
|
|
|
|
let parent_user = User_::read(&conn, post.creator_id)?;
|
2020-02-01 01:02:20 +00:00
|
|
|
recipient_ids.push(parent_user.id);
|
|
|
|
|
|
2020-01-03 18:12:19 +00:00
|
|
|
if parent_user.send_notifications_to_email {
|
|
|
|
|
if let Some(post_reply_email) = parent_user.email {
|
|
|
|
|
let subject = &format!(
|
|
|
|
|
"{} - Reply from {}",
|
|
|
|
|
Settings::get().hostname,
|
|
|
|
|
claims.username
|
|
|
|
|
);
|
|
|
|
|
let html = &format!(
|
|
|
|
|
"<h1>Post Reply</h1><br><div>{} - {}</div><br><a href={}/inbox>inbox</a>",
|
|
|
|
|
claims.username, comment_form.content, hostname
|
|
|
|
|
);
|
|
|
|
|
match send_email(subject, &post_reply_email, &parent_user.name, html) {
|
|
|
|
|
Ok(_o) => _o,
|
2020-03-13 15:08:42 +00:00
|
|
|
Err(e) => error!("{}", e),
|
2020-01-03 18:12:19 +00:00
|
|
|
};
|
|
|
|
|
}
|
2020-01-02 21:55:54 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
};
|
|
|
|
|
|
2019-05-05 05:20:38 +00:00
|
|
|
// You like your own comment by default
|
|
|
|
|
let like_form = CommentLikeForm {
|
|
|
|
|
comment_id: inserted_comment.id,
|
|
|
|
|
post_id: data.post_id,
|
2019-12-09 19:08:19 +00:00
|
|
|
user_id,
|
2019-09-07 15:35:05 +00:00
|
|
|
score: 1,
|
2019-05-05 05:20:38 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
let _inserted_like = match CommentLike::like(&conn, &like_form) {
|
|
|
|
|
Ok(like) => like,
|
2020-01-16 14:39:08 +00:00
|
|
|
Err(_e) => return Err(APIError::err("couldnt_like_comment").into()),
|
2019-05-05 05:20:38 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
let comment_view = CommentView::read(&conn, inserted_comment.id, Some(user_id))?;
|
|
|
|
|
|
2020-04-19 22:08:25 +00:00
|
|
|
let mut res = CommentResponse {
|
2019-09-07 15:35:05 +00:00
|
|
|
comment: comment_view,
|
2020-02-01 01:02:20 +00:00
|
|
|
recipient_ids,
|
2020-04-19 22:08:25 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
if let Some(ws) = websocket_info {
|
|
|
|
|
ws.chatserver.do_send(SendComment {
|
|
|
|
|
op: UserOperation::CreateComment,
|
|
|
|
|
comment: res.clone(),
|
|
|
|
|
my_id: ws.id,
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
// strip out the recipient_ids, so that
|
|
|
|
|
// users don't get double notifs
|
|
|
|
|
res.recipient_ids = Vec::new();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Ok(res)
|
2019-05-05 05:20:38 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl Perform<CommentResponse> for Oper<EditComment> {
|
2020-04-19 22:08:25 +00:00
|
|
|
fn perform(
|
|
|
|
|
&self,
|
|
|
|
|
pool: Pool<ConnectionManager<PgConnection>>,
|
|
|
|
|
websocket_info: Option<WebsocketInfo>,
|
|
|
|
|
rate_limit_info: Option<RateLimitInfo>,
|
|
|
|
|
) -> Result<CommentResponse, Error> {
|
2019-05-05 16:20:30 +00:00
|
|
|
let data: &EditComment = &self.data;
|
2019-05-05 05:20:38 +00:00
|
|
|
|
|
|
|
|
let claims = match Claims::decode(&data.auth) {
|
|
|
|
|
Ok(claims) => claims.claims,
|
2020-01-16 14:39:08 +00:00
|
|
|
Err(_e) => return Err(APIError::err("not_logged_in").into()),
|
2019-05-05 05:20:38 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
let user_id = claims.id;
|
|
|
|
|
|
2020-04-19 22:08:25 +00:00
|
|
|
if let Some(rl) = rate_limit_info {
|
|
|
|
|
rl.rate_limiter
|
|
|
|
|
.lock()
|
|
|
|
|
.unwrap()
|
|
|
|
|
.check_rate_limit_message(&rl.ip, false)?;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let conn = pool.get()?;
|
|
|
|
|
|
2019-05-05 05:20:38 +00:00
|
|
|
let orig_comment = CommentView::read(&conn, data.edit_id, None)?;
|
|
|
|
|
|
|
|
|
|
// You are allowed to mark the comment as read even if you're banned.
|
|
|
|
|
if data.read.is_none() {
|
|
|
|
|
// Verify its the creator or a mod, or an admin
|
|
|
|
|
let mut editors: Vec<i32> = vec![data.creator_id];
|
|
|
|
|
editors.append(
|
2019-09-07 15:35:05 +00:00
|
|
|
&mut CommunityModeratorView::for_community(&conn, orig_comment.community_id)?
|
|
|
|
|
.into_iter()
|
|
|
|
|
.map(|m| m.user_id)
|
|
|
|
|
.collect(),
|
|
|
|
|
);
|
|
|
|
|
editors.append(&mut UserView::admins(&conn)?.into_iter().map(|a| a.id).collect());
|
2019-05-05 05:20:38 +00:00
|
|
|
|
|
|
|
|
if !editors.contains(&user_id) {
|
2020-01-16 14:39:08 +00:00
|
|
|
return Err(APIError::err("no_comment_edit_allowed").into());
|
2019-05-05 05:20:38 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check for a community ban
|
|
|
|
|
if CommunityUserBanView::get(&conn, user_id, orig_comment.community_id).is_ok() {
|
2020-01-16 14:39:08 +00:00
|
|
|
return Err(APIError::err("community_ban").into());
|
2019-05-05 05:20:38 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check for a site ban
|
|
|
|
|
if UserView::read(&conn, user_id)?.banned {
|
2020-01-16 14:39:08 +00:00
|
|
|
return Err(APIError::err("site_ban").into());
|
2019-05-05 05:20:38 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let content_slurs_removed = remove_slurs(&data.content.to_owned());
|
|
|
|
|
|
|
|
|
|
let comment_form = CommentForm {
|
|
|
|
|
content: content_slurs_removed,
|
|
|
|
|
parent_id: data.parent_id,
|
|
|
|
|
post_id: data.post_id,
|
|
|
|
|
creator_id: data.creator_id,
|
|
|
|
|
removed: data.removed.to_owned(),
|
|
|
|
|
deleted: data.deleted.to_owned(),
|
|
|
|
|
read: data.read.to_owned(),
|
2019-09-07 15:35:05 +00:00
|
|
|
updated: if data.read.is_some() {
|
|
|
|
|
orig_comment.updated
|
|
|
|
|
} else {
|
|
|
|
|
Some(naive_now())
|
|
|
|
|
},
|
2019-05-05 05:20:38 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
let _updated_comment = match Comment::update(&conn, data.edit_id, &comment_form) {
|
|
|
|
|
Ok(comment) => comment,
|
2020-01-16 14:39:08 +00:00
|
|
|
Err(_e) => return Err(APIError::err("couldnt_update_comment").into()),
|
2019-05-05 05:20:38 +00:00
|
|
|
};
|
|
|
|
|
|
2020-02-01 01:02:20 +00:00
|
|
|
let mut recipient_ids = Vec::new();
|
|
|
|
|
|
2019-10-20 00:46:29 +00:00
|
|
|
// Scan the comment for user mentions, add those rows
|
|
|
|
|
let extracted_usernames = extract_usernames(&comment_form.content);
|
|
|
|
|
|
|
|
|
|
for username_mention in &extracted_usernames {
|
2020-01-02 11:30:00 +00:00
|
|
|
let mention_user = User_::read_from_name(&conn, (*username_mention).to_string());
|
2019-10-20 00:46:29 +00:00
|
|
|
|
|
|
|
|
if mention_user.is_ok() {
|
|
|
|
|
let mention_user_id = mention_user?.id;
|
|
|
|
|
|
|
|
|
|
// You can't mention yourself
|
|
|
|
|
// At some point, make it so you can't tag the parent creator either
|
|
|
|
|
// This can cause two notifications, one for reply and the other for mention
|
|
|
|
|
if mention_user_id != user_id {
|
2020-02-01 01:02:20 +00:00
|
|
|
recipient_ids.push(mention_user_id);
|
|
|
|
|
|
2019-10-20 00:46:29 +00:00
|
|
|
let user_mention_form = UserMentionForm {
|
|
|
|
|
recipient_id: mention_user_id,
|
|
|
|
|
comment_id: data.edit_id,
|
|
|
|
|
read: None,
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
// Allow this to fail softly, since comment edits might re-update or replace it
|
|
|
|
|
// Let the uniqueness handle this fail
|
|
|
|
|
match UserMention::create(&conn, &user_mention_form) {
|
|
|
|
|
Ok(_mention) => (),
|
2020-03-13 15:08:42 +00:00
|
|
|
Err(_e) => error!("{}", &_e),
|
2019-10-20 00:46:29 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-02-01 01:02:20 +00:00
|
|
|
// Add to recipient ids
|
|
|
|
|
match data.parent_id {
|
|
|
|
|
Some(parent_id) => {
|
|
|
|
|
let parent_comment = Comment::read(&conn, parent_id)?;
|
|
|
|
|
if parent_comment.creator_id != user_id {
|
|
|
|
|
let parent_user = User_::read(&conn, parent_comment.creator_id)?;
|
|
|
|
|
recipient_ids.push(parent_user.id);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
None => {
|
|
|
|
|
let post = Post::read(&conn, data.post_id)?;
|
|
|
|
|
recipient_ids.push(post.creator_id);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2019-05-05 05:20:38 +00:00
|
|
|
// Mod tables
|
|
|
|
|
if let Some(removed) = data.removed.to_owned() {
|
|
|
|
|
let form = ModRemoveCommentForm {
|
|
|
|
|
mod_user_id: user_id,
|
|
|
|
|
comment_id: data.edit_id,
|
|
|
|
|
removed: Some(removed),
|
|
|
|
|
reason: data.reason.to_owned(),
|
|
|
|
|
};
|
|
|
|
|
ModRemoveComment::create(&conn, &form)?;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let comment_view = CommentView::read(&conn, data.edit_id, Some(user_id))?;
|
|
|
|
|
|
2020-04-19 22:08:25 +00:00
|
|
|
let mut res = CommentResponse {
|
2019-09-07 15:35:05 +00:00
|
|
|
comment: comment_view,
|
2020-02-01 01:02:20 +00:00
|
|
|
recipient_ids,
|
2020-04-19 22:08:25 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
if let Some(ws) = websocket_info {
|
|
|
|
|
ws.chatserver.do_send(SendComment {
|
|
|
|
|
op: UserOperation::EditComment,
|
|
|
|
|
comment: res.clone(),
|
|
|
|
|
my_id: ws.id,
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
// strip out the recipient_ids, so that
|
|
|
|
|
// users don't get double notifs
|
|
|
|
|
res.recipient_ids = Vec::new();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Ok(res)
|
2019-05-05 05:20:38 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl Perform<CommentResponse> for Oper<SaveComment> {
|
2020-04-19 22:08:25 +00:00
|
|
|
fn perform(
|
|
|
|
|
&self,
|
|
|
|
|
pool: Pool<ConnectionManager<PgConnection>>,
|
|
|
|
|
_websocket_info: Option<WebsocketInfo>,
|
|
|
|
|
rate_limit_info: Option<RateLimitInfo>,
|
|
|
|
|
) -> Result<CommentResponse, Error> {
|
2019-05-05 16:20:30 +00:00
|
|
|
let data: &SaveComment = &self.data;
|
2019-05-05 05:20:38 +00:00
|
|
|
|
|
|
|
|
let claims = match Claims::decode(&data.auth) {
|
|
|
|
|
Ok(claims) => claims.claims,
|
2020-01-16 14:39:08 +00:00
|
|
|
Err(_e) => return Err(APIError::err("not_logged_in").into()),
|
2019-05-05 05:20:38 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
let user_id = claims.id;
|
|
|
|
|
|
|
|
|
|
let comment_saved_form = CommentSavedForm {
|
|
|
|
|
comment_id: data.comment_id,
|
2019-12-09 19:08:19 +00:00
|
|
|
user_id,
|
2019-05-05 05:20:38 +00:00
|
|
|
};
|
|
|
|
|
|
2020-04-19 22:08:25 +00:00
|
|
|
if let Some(rl) = rate_limit_info {
|
|
|
|
|
rl.rate_limiter
|
|
|
|
|
.lock()
|
|
|
|
|
.unwrap()
|
|
|
|
|
.check_rate_limit_message(&rl.ip, false)?;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let conn = pool.get()?;
|
|
|
|
|
|
2019-05-05 05:20:38 +00:00
|
|
|
if data.save {
|
|
|
|
|
match CommentSaved::save(&conn, &comment_saved_form) {
|
|
|
|
|
Ok(comment) => comment,
|
2020-01-16 14:39:08 +00:00
|
|
|
Err(_e) => return Err(APIError::err("couldnt_save_comment").into()),
|
2019-05-05 05:20:38 +00:00
|
|
|
};
|
|
|
|
|
} else {
|
|
|
|
|
match CommentSaved::unsave(&conn, &comment_saved_form) {
|
|
|
|
|
Ok(comment) => comment,
|
2020-01-16 14:39:08 +00:00
|
|
|
Err(_e) => return Err(APIError::err("couldnt_save_comment").into()),
|
2019-05-05 05:20:38 +00:00
|
|
|
};
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let comment_view = CommentView::read(&conn, data.comment_id, Some(user_id))?;
|
|
|
|
|
|
2019-09-07 15:35:05 +00:00
|
|
|
Ok(CommentResponse {
|
|
|
|
|
comment: comment_view,
|
2020-02-01 01:02:20 +00:00
|
|
|
recipient_ids: Vec::new(),
|
2019-09-07 15:35:05 +00:00
|
|
|
})
|
2019-05-05 05:20:38 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl Perform<CommentResponse> for Oper<CreateCommentLike> {
|
2020-04-19 22:08:25 +00:00
|
|
|
fn perform(
|
|
|
|
|
&self,
|
|
|
|
|
pool: Pool<ConnectionManager<PgConnection>>,
|
|
|
|
|
websocket_info: Option<WebsocketInfo>,
|
|
|
|
|
rate_limit_info: Option<RateLimitInfo>,
|
|
|
|
|
) -> Result<CommentResponse, Error> {
|
2019-05-05 16:20:30 +00:00
|
|
|
let data: &CreateCommentLike = &self.data;
|
2019-05-05 05:20:38 +00:00
|
|
|
|
|
|
|
|
let claims = match Claims::decode(&data.auth) {
|
|
|
|
|
Ok(claims) => claims.claims,
|
2020-01-16 14:39:08 +00:00
|
|
|
Err(_e) => return Err(APIError::err("not_logged_in").into()),
|
2019-05-05 05:20:38 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
let user_id = claims.id;
|
|
|
|
|
|
2020-02-01 01:02:20 +00:00
|
|
|
let mut recipient_ids = Vec::new();
|
|
|
|
|
|
2020-04-19 22:08:25 +00:00
|
|
|
if let Some(rl) = rate_limit_info {
|
|
|
|
|
rl.rate_limiter
|
|
|
|
|
.lock()
|
|
|
|
|
.unwrap()
|
|
|
|
|
.check_rate_limit_message(&rl.ip, false)?;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let conn = pool.get()?;
|
|
|
|
|
|
2019-12-11 20:21:47 +00:00
|
|
|
// Don't do a downvote if site has downvotes disabled
|
|
|
|
|
if data.score == -1 {
|
|
|
|
|
let site = SiteView::read(&conn)?;
|
2020-01-02 11:30:00 +00:00
|
|
|
if !site.enable_downvotes {
|
2020-01-16 14:39:08 +00:00
|
|
|
return Err(APIError::err("downvotes_disabled").into());
|
2019-12-11 20:21:47 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2019-05-05 05:20:38 +00:00
|
|
|
// Check for a community ban
|
|
|
|
|
let post = Post::read(&conn, data.post_id)?;
|
|
|
|
|
if CommunityUserBanView::get(&conn, user_id, post.community_id).is_ok() {
|
2020-01-16 14:39:08 +00:00
|
|
|
return Err(APIError::err("community_ban").into());
|
2019-05-05 05:20:38 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check for a site ban
|
|
|
|
|
if UserView::read(&conn, user_id)?.banned {
|
2020-01-16 14:39:08 +00:00
|
|
|
return Err(APIError::err("site_ban").into());
|
2019-05-05 05:20:38 +00:00
|
|
|
}
|
|
|
|
|
|
2020-02-01 01:02:20 +00:00
|
|
|
let comment = Comment::read(&conn, data.comment_id)?;
|
|
|
|
|
|
|
|
|
|
// Add to recipient ids
|
|
|
|
|
match comment.parent_id {
|
|
|
|
|
Some(parent_id) => {
|
|
|
|
|
let parent_comment = Comment::read(&conn, parent_id)?;
|
|
|
|
|
if parent_comment.creator_id != user_id {
|
|
|
|
|
let parent_user = User_::read(&conn, parent_comment.creator_id)?;
|
|
|
|
|
recipient_ids.push(parent_user.id);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
None => {
|
|
|
|
|
recipient_ids.push(post.creator_id);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2019-05-05 05:20:38 +00:00
|
|
|
let like_form = CommentLikeForm {
|
|
|
|
|
comment_id: data.comment_id,
|
|
|
|
|
post_id: data.post_id,
|
2019-12-09 19:08:19 +00:00
|
|
|
user_id,
|
2019-09-07 15:35:05 +00:00
|
|
|
score: data.score,
|
2019-05-05 05:20:38 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
// Remove any likes first
|
|
|
|
|
CommentLike::remove(&conn, &like_form)?;
|
|
|
|
|
|
|
|
|
|
// Only add the like if the score isnt 0
|
2019-12-19 21:59:13 +00:00
|
|
|
let do_add = like_form.score != 0 && (like_form.score == 1 || like_form.score == -1);
|
2019-05-15 16:46:39 +00:00
|
|
|
if do_add {
|
2019-05-05 05:20:38 +00:00
|
|
|
let _inserted_like = match CommentLike::like(&conn, &like_form) {
|
|
|
|
|
Ok(like) => like,
|
2020-01-16 14:39:08 +00:00
|
|
|
Err(_e) => return Err(APIError::err("couldnt_like_comment").into()),
|
2019-05-05 05:20:38 +00:00
|
|
|
};
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Have to refetch the comment to get the current state
|
|
|
|
|
let liked_comment = CommentView::read(&conn, data.comment_id, Some(user_id))?;
|
|
|
|
|
|
2020-04-19 22:08:25 +00:00
|
|
|
let mut res = CommentResponse {
|
2019-09-07 15:35:05 +00:00
|
|
|
comment: liked_comment,
|
2020-02-01 01:02:20 +00:00
|
|
|
recipient_ids,
|
2020-04-19 22:08:25 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
if let Some(ws) = websocket_info {
|
|
|
|
|
ws.chatserver.do_send(SendComment {
|
|
|
|
|
op: UserOperation::CreateCommentLike,
|
|
|
|
|
comment: res.clone(),
|
|
|
|
|
my_id: ws.id,
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
// strip out the recipient_ids, so that
|
|
|
|
|
// users don't get double notifs
|
|
|
|
|
res.recipient_ids = Vec::new();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Ok(res)
|
2019-05-05 05:20:38 +00:00
|
|
|
}
|
|
|
|
|
}
|
2020-02-08 04:05:15 +00:00
|
|
|
|
|
|
|
|
impl Perform<GetCommentsResponse> for Oper<GetComments> {
|
2020-04-19 22:08:25 +00:00
|
|
|
fn perform(
|
|
|
|
|
&self,
|
|
|
|
|
pool: Pool<ConnectionManager<PgConnection>>,
|
|
|
|
|
websocket_info: Option<WebsocketInfo>,
|
|
|
|
|
rate_limit_info: Option<RateLimitInfo>,
|
|
|
|
|
) -> Result<GetCommentsResponse, Error> {
|
2020-02-08 04:05:15 +00:00
|
|
|
let data: &GetComments = &self.data;
|
|
|
|
|
|
|
|
|
|
let user_claims: Option<Claims> = match &data.auth {
|
|
|
|
|
Some(auth) => match Claims::decode(&auth) {
|
|
|
|
|
Ok(claims) => Some(claims.claims),
|
|
|
|
|
Err(_e) => None,
|
|
|
|
|
},
|
|
|
|
|
None => None,
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
let user_id = match &user_claims {
|
|
|
|
|
Some(claims) => Some(claims.id),
|
|
|
|
|
None => None,
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
let type_ = ListingType::from_str(&data.type_)?;
|
|
|
|
|
let sort = SortType::from_str(&data.sort)?;
|
|
|
|
|
|
2020-04-19 22:08:25 +00:00
|
|
|
if let Some(rl) = rate_limit_info {
|
|
|
|
|
rl.rate_limiter
|
|
|
|
|
.lock()
|
|
|
|
|
.unwrap()
|
|
|
|
|
.check_rate_limit_message(&rl.ip, false)?;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let conn = pool.get()?;
|
|
|
|
|
|
2020-02-08 04:05:15 +00:00
|
|
|
let comments = match CommentQueryBuilder::create(&conn)
|
|
|
|
|
.listing_type(type_)
|
|
|
|
|
.sort(&sort)
|
|
|
|
|
.for_community_id(data.community_id)
|
|
|
|
|
.my_user_id(user_id)
|
|
|
|
|
.page(data.page)
|
|
|
|
|
.limit(data.limit)
|
|
|
|
|
.list()
|
|
|
|
|
{
|
|
|
|
|
Ok(comments) => comments,
|
|
|
|
|
Err(_e) => return Err(APIError::err("couldnt_get_comments").into()),
|
|
|
|
|
};
|
|
|
|
|
|
2020-04-19 22:08:25 +00:00
|
|
|
if let Some(ws) = websocket_info {
|
|
|
|
|
// You don't need to join the specific community room, bc this is already handled by
|
|
|
|
|
// GetCommunity
|
|
|
|
|
if data.community_id.is_none() {
|
|
|
|
|
if let Some(id) = ws.id {
|
|
|
|
|
// 0 is the "all" community
|
|
|
|
|
ws.chatserver.do_send(JoinCommunityRoom {
|
|
|
|
|
community_id: 0,
|
|
|
|
|
id,
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-02-08 04:05:15 +00:00
|
|
|
Ok(GetCommentsResponse { comments })
|
|
|
|
|
}
|
|
|
|
|
}
|
