c96bc36fed
* fix: fix improper authorization when accessing with third-party application
* refactor: refactor type definitions
* fix: get rid of unnecessary access limitation
* enhance: サードパーティアプリケーションがWebsocket APIを使えるように
* fix: add missing parentheses
* Revert "fix(backend): add missing kind definition for admin endpoints to improve security"
This reverts commit 5150053275.
* frontend: 翻訳の抜けを訂正, read:adminとwrite:adminはアクセス発行トークンのデフォルトでは非表示にする
* enhance(test): misskey-ghsa-7pxq-6xx9-xpgmに関するテストを追加
* enhance(test): Websocket APIに対するテストも追加
* enhance(refactor): `@/misc/api-permissions.ts`を`misskey-js/permissions`に統合
* fix(frontend): アクセストークン発行UIで全ての権限を有効にした際、管理者用APIへのアクセスも許可してしまう問題を修正
* enhance(backend): Websocketの接続に最低限必要な権限を変更
* fix(backend): `/api/admin/meta`をサードパーティアプリケーションからはアクセスできないように
* fix(backend): エンドポイントにアクセスするために必要な権限を変更
* fix(frontend/locale): Add missing type declaration
* chore: update `misskey-js/src/autogen`
---------
Co-authored-by: tamaina <tamaina@hotmail.co.jp>
84 lines
2.4 KiB
TypeScript
84 lines
2.4 KiB
TypeScript
/*
|
|
* SPDX-FileCopyrightText: syuilo and other misskey contributors
|
|
* SPDX-License-Identifier: AGPL-3.0-only
|
|
*/
|
|
|
|
import { Injectable } from '@nestjs/common';
|
|
import { isUserRelated } from '@/misc/is-user-related.js';
|
|
import { NoteEntityService } from '@/core/entities/NoteEntityService.js';
|
|
import { bindThis } from '@/decorators.js';
|
|
import type { GlobalEvents } from '@/core/GlobalEventService.js';
|
|
import Channel, { type MiChannelService } from '../channel.js';
|
|
|
|
class AntennaChannel extends Channel {
|
|
public readonly chName = 'antenna';
|
|
public static shouldShare = false;
|
|
public static requireCredential = true as const;
|
|
public static kind = 'read:account';
|
|
private antennaId: string;
|
|
|
|
constructor(
|
|
private noteEntityService: NoteEntityService,
|
|
|
|
id: string,
|
|
connection: Channel['connection'],
|
|
) {
|
|
super(id, connection);
|
|
//this.onEvent = this.onEvent.bind(this);
|
|
}
|
|
|
|
@bindThis
|
|
public async init(params: any) {
|
|
this.antennaId = params.antennaId as string;
|
|
|
|
// Subscribe stream
|
|
this.subscriber.on(`antennaStream:${this.antennaId}`, this.onEvent);
|
|
}
|
|
|
|
@bindThis
|
|
private async onEvent(data: GlobalEvents['antenna']['payload']) {
|
|
if (data.type === 'note') {
|
|
const note = await this.noteEntityService.pack(data.body.id, this.user, { detail: true });
|
|
|
|
// 流れてきたNoteがミュートしているユーザーが関わるものだったら無視する
|
|
if (isUserRelated(note, this.userIdsWhoMeMuting)) return;
|
|
// 流れてきたNoteがブロックされているユーザーが関わるものだったら無視する
|
|
if (isUserRelated(note, this.userIdsWhoBlockingMe)) return;
|
|
|
|
if (note.renote && !note.text && isUserRelated(note, this.userIdsWhoMeMutingRenotes)) return;
|
|
|
|
this.connection.cacheNote(note);
|
|
|
|
this.send('note', note);
|
|
} else {
|
|
this.send(data.type, data.body);
|
|
}
|
|
}
|
|
|
|
@bindThis
|
|
public dispose() {
|
|
// Unsubscribe events
|
|
this.subscriber.off(`antennaStream:${this.antennaId}`, this.onEvent);
|
|
}
|
|
}
|
|
|
|
@Injectable()
|
|
export class AntennaChannelService implements MiChannelService<true> {
|
|
public readonly shouldShare = AntennaChannel.shouldShare;
|
|
public readonly requireCredential = AntennaChannel.requireCredential;
|
|
public readonly kind = AntennaChannel.kind;
|
|
|
|
constructor(
|
|
private noteEntityService: NoteEntityService,
|
|
) {
|
|
}
|
|
|
|
@bindThis
|
|
public create(id: string, connection: Channel['connection']): AntennaChannel {
|
|
return new AntennaChannel(
|
|
this.noteEntityService,
|
|
id,
|
|
connection,
|
|
);
|
|
}
|
|
}
|