mirror of
https://github.com/LemmyNet/lemmy.git
synced 2024-06-02 21:49:22 +00:00
f858d8cbce
* Remove explicit auth params (ref #3725) Only take auth via header or cookie. This requires a new version of lemmy-js-client for api tests to pass. * rework api_crud * remove remaining auth params, move logic to session middleware * fmt, fix test * update js client * remove auth param from api tests * Pass auth as header * add ! * url vars, setHeader * cleanup * fmt * update * Updating for new lemmy-js-client. --------- Co-authored-by: Dessalines <tyhou13@gmx.com> Co-authored-by: Dessalines <dessalines@users.noreply.github.com>
121 lines
3.5 KiB
Rust
121 lines
3.5 KiB
Rust
use activitypub_federation::config::Data;
|
|
use actix_web::web::Json;
|
|
use lemmy_api_common::{
|
|
build_response::build_post_response,
|
|
context::LemmyContext,
|
|
post::{EditPost, PostResponse},
|
|
request::fetch_site_data,
|
|
send_activity::{ActivityChannel, SendActivityData},
|
|
utils::{check_community_ban, local_site_to_slur_regex, sanitize_html_api_opt},
|
|
};
|
|
use lemmy_db_schema::{
|
|
source::{
|
|
actor_language::CommunityLanguage,
|
|
local_site::LocalSite,
|
|
post::{Post, PostUpdateForm},
|
|
},
|
|
traits::Crud,
|
|
utils::{diesel_option_overwrite, naive_now},
|
|
};
|
|
use lemmy_db_views::structs::LocalUserView;
|
|
use lemmy_utils::{
|
|
error::{LemmyError, LemmyErrorExt, LemmyErrorType},
|
|
utils::{
|
|
slurs::check_slurs_opt,
|
|
validation::{check_url_scheme, clean_url_params, is_valid_body_field, is_valid_post_title},
|
|
},
|
|
};
|
|
use std::ops::Deref;
|
|
|
|
#[tracing::instrument(skip(context))]
|
|
pub async fn update_post(
|
|
data: Json<EditPost>,
|
|
context: Data<LemmyContext>,
|
|
local_user_view: LocalUserView,
|
|
) -> Result<Json<PostResponse>, LemmyError> {
|
|
let local_site = LocalSite::read(&mut context.pool()).await?;
|
|
|
|
let data_url = data.url.as_ref();
|
|
|
|
// TODO No good way to handle a clear.
|
|
// Issue link: https://github.com/LemmyNet/lemmy/issues/2287
|
|
let url = Some(data_url.map(clean_url_params).map(Into::into));
|
|
|
|
let slur_regex = local_site_to_slur_regex(&local_site);
|
|
check_slurs_opt(&data.name, &slur_regex)?;
|
|
check_slurs_opt(&data.body, &slur_regex)?;
|
|
|
|
if let Some(name) = &data.name {
|
|
is_valid_post_title(name)?;
|
|
}
|
|
|
|
is_valid_body_field(&data.body, true)?;
|
|
check_url_scheme(&data.url)?;
|
|
|
|
let post_id = data.post_id;
|
|
let orig_post = Post::read(&mut context.pool(), post_id).await?;
|
|
|
|
check_community_ban(
|
|
local_user_view.person.id,
|
|
orig_post.community_id,
|
|
&mut context.pool(),
|
|
)
|
|
.await?;
|
|
|
|
// Verify that only the creator can edit
|
|
if !Post::is_post_creator(local_user_view.person.id, orig_post.creator_id) {
|
|
Err(LemmyErrorType::NoPostEditAllowed)?
|
|
}
|
|
|
|
// Fetch post links and Pictrs cached image
|
|
let data_url = data.url.as_ref();
|
|
let (metadata_res, thumbnail_url) =
|
|
fetch_site_data(context.client(), context.settings(), data_url, true).await;
|
|
let (embed_title, embed_description, embed_video_url) = metadata_res
|
|
.map(|u| (Some(u.title), Some(u.description), Some(u.embed_video_url)))
|
|
.unwrap_or_default();
|
|
|
|
let name = sanitize_html_api_opt(&data.name);
|
|
let body = sanitize_html_api_opt(&data.body);
|
|
let body = diesel_option_overwrite(body);
|
|
let embed_title = embed_title.map(|e| sanitize_html_api_opt(&e));
|
|
let embed_description = embed_description.map(|e| sanitize_html_api_opt(&e));
|
|
|
|
let language_id = data.language_id;
|
|
CommunityLanguage::is_allowed_community_language(
|
|
&mut context.pool(),
|
|
language_id,
|
|
orig_post.community_id,
|
|
)
|
|
.await?;
|
|
|
|
let post_form = PostUpdateForm {
|
|
name,
|
|
url,
|
|
body,
|
|
nsfw: data.nsfw,
|
|
embed_title,
|
|
embed_description,
|
|
embed_video_url,
|
|
language_id: data.language_id,
|
|
thumbnail_url: Some(thumbnail_url),
|
|
updated: Some(Some(naive_now())),
|
|
..Default::default()
|
|
};
|
|
|
|
let post_id = data.post_id;
|
|
let updated_post = Post::update(&mut context.pool(), post_id, &post_form)
|
|
.await
|
|
.with_lemmy_type(LemmyErrorType::CouldntUpdatePost)?;
|
|
|
|
ActivityChannel::submit_activity(SendActivityData::UpdatePost(updated_post), &context).await?;
|
|
|
|
build_post_response(
|
|
context.deref(),
|
|
orig_post.community_id,
|
|
local_user_view.person.id,
|
|
post_id,
|
|
)
|
|
.await
|
|
}
|