447 lines
18 KiB
Rust
447 lines
18 KiB
Rust
use std::collections::HashMap;
|
|
|
|
use log::warn;
|
|
use serde::{Deserialize, Serialize};
|
|
use warp::{http::StatusCode, reply::Reply, reply::Response, Rejection};
|
|
|
|
use super::errors::Error;
|
|
use super::handlers;
|
|
use super::models;
|
|
use super::storage;
|
|
|
|
#[allow(dead_code)]
|
|
pub enum Mode {
|
|
FileServer,
|
|
OpenGroupServer,
|
|
}
|
|
|
|
#[derive(Deserialize, Serialize, Debug)]
|
|
pub struct RpcCall {
|
|
pub endpoint: String,
|
|
pub body: String,
|
|
pub method: String,
|
|
pub headers: HashMap<String, String>,
|
|
}
|
|
|
|
pub const MODE: Mode = Mode::OpenGroupServer;
|
|
|
|
pub async fn handle_rpc_call(rpc_call: RpcCall) -> Result<Response, Rejection> {
|
|
// Check that the endpoint is a valid URI and deconstruct it into a path
|
|
// and query parameters.
|
|
// Adding "http://placeholder.io" in front of the endpoint is a workaround
|
|
// for the fact that the URL crate doesn't accept relative URLs. There are
|
|
// other (cleaner) ways to fix this but they tend to be much more complex.
|
|
let raw_uri = format!("http://placeholder.io/{}", rpc_call.endpoint.trim_start_matches('/'));
|
|
let path: String = match raw_uri.parse::<http::Uri>() {
|
|
Ok(uri) => uri.path().trim_start_matches('/').to_string(),
|
|
Err(e) => {
|
|
warn!("Couldn't parse URI from: {} due to error: {}.", &raw_uri, e);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
};
|
|
let query_params: HashMap<String, String> = match url::Url::parse(&raw_uri) {
|
|
Ok(url) => url.query_pairs().into_owned().collect(),
|
|
Err(e) => {
|
|
warn!("Couldn't parse URL from: {} due to error: {}.", &raw_uri, e);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
};
|
|
// Get the auth token if possible
|
|
let auth_token = get_auth_token(&rpc_call);
|
|
// Get the room ID
|
|
let room_id_str = get_room_id(&rpc_call);
|
|
// Switch on the HTTP method
|
|
match rpc_call.method.as_ref() {
|
|
"GET" => {
|
|
return handle_get_request(room_id_str, rpc_call, &path, auth_token, query_params).await
|
|
}
|
|
"POST" => return handle_post_request(room_id_str, rpc_call, &path, auth_token).await,
|
|
"DELETE" => {
|
|
let pool = get_pool_for_room(&rpc_call)?;
|
|
return handle_delete_request(rpc_call, &path, auth_token, &pool).await;
|
|
}
|
|
_ => {
|
|
warn!("Ignoring RPC call with invalid or unused HTTP method: {}.", rpc_call.method);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
}
|
|
}
|
|
|
|
async fn handle_get_request(
|
|
room_id: Option<String>, rpc_call: RpcCall, path: &str, auth_token: Option<String>,
|
|
query_params: HashMap<String, String>,
|
|
) -> Result<Response, Rejection> {
|
|
// Handle routes that don't require authorization first
|
|
if path == "auth_token_challenge" {
|
|
reject_if_file_server_mode(path)?;
|
|
let pool = get_pool_for_room(&rpc_call)?;
|
|
let challenge = handlers::get_auth_token_challenge(query_params, &pool)?;
|
|
#[derive(Debug, Deserialize, Serialize)]
|
|
struct Response {
|
|
status_code: u16,
|
|
challenge: models::Challenge,
|
|
}
|
|
let response = Response { status_code: StatusCode::OK.as_u16(), challenge };
|
|
return Ok(warp::reply::json(&response).into_response());
|
|
} else if path.starts_with("rooms") {
|
|
reject_if_file_server_mode(path)?;
|
|
let components: Vec<&str> = path.split('/').collect(); // Split on subsequent slashes
|
|
if components.len() == 1 {
|
|
return handlers::get_all_rooms();
|
|
} else if components.len() == 2 {
|
|
let room_id = components[1];
|
|
return handlers::get_room(&room_id);
|
|
} else if components.len() == 3 && components[2] == "image" {
|
|
let room_id = components[1];
|
|
return handlers::get_group_image(&room_id).await;
|
|
} else {
|
|
warn!("Invalid endpoint: {}.", rpc_call.endpoint);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
} else if path.starts_with("session_version") {
|
|
match MODE {
|
|
Mode::OpenGroupServer => {
|
|
warn!("Ignoring RPC call with invalid or unused endpoint: {}.", path);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
Mode::FileServer => (),
|
|
}
|
|
let platform = query_params
|
|
.get("platform")
|
|
.ok_or_else(|| warp::reject::custom(Error::InvalidRpcCall))?;
|
|
let version = handlers::get_session_version(platform).await?;
|
|
let response = handlers::GenericStringResponse {
|
|
status_code: StatusCode::OK.as_u16(),
|
|
result: version,
|
|
};
|
|
return Ok(warp::reply::json(&response).into_response());
|
|
}
|
|
// This route requires auth in open group server mode, but not in file server mode
|
|
let pool = get_pool_for_room(&rpc_call)?;
|
|
if path.starts_with("files") {
|
|
let components: Vec<&str> = path.split('/').collect(); // Split on subsequent slashes
|
|
if components.len() != 2 {
|
|
warn!("Invalid endpoint: {}.", rpc_call.endpoint);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
let file_id: u64 = match components[1].parse() {
|
|
Ok(file_id) => file_id,
|
|
Err(_) => {
|
|
warn!("Invalid endpoint: {}.", rpc_call.endpoint);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
};
|
|
return handlers::get_file(room_id, file_id, auth_token, &pool)
|
|
.await
|
|
.map(|json| warp::reply::json(&json).into_response());
|
|
}
|
|
// Handle routes that require authorization
|
|
let auth_token = auth_token.ok_or_else(|| warp::reject::custom(Error::NoAuthToken))?;
|
|
match path {
|
|
"messages" => {
|
|
reject_if_file_server_mode(path)?;
|
|
let messages = handlers::get_messages(query_params, &auth_token, &pool)?;
|
|
#[derive(Debug, Deserialize, Serialize)]
|
|
struct Response {
|
|
status_code: u16,
|
|
messages: Vec<models::Message>,
|
|
}
|
|
let response = Response { status_code: StatusCode::OK.as_u16(), messages };
|
|
return Ok(warp::reply::json(&response).into_response());
|
|
}
|
|
"deleted_messages" => {
|
|
reject_if_file_server_mode(path)?;
|
|
let deletions = handlers::get_deleted_messages(query_params, &auth_token, &pool)?;
|
|
#[derive(Debug, Deserialize, Serialize)]
|
|
struct Response {
|
|
status_code: u16,
|
|
ids: Vec<models::DeletedMessage>,
|
|
}
|
|
let response = Response { status_code: StatusCode::OK.as_u16(), ids: deletions };
|
|
return Ok(warp::reply::json(&response).into_response());
|
|
}
|
|
"moderators" => {
|
|
reject_if_file_server_mode(path)?;
|
|
let public_keys = handlers::get_moderators(&auth_token, &pool)?;
|
|
#[derive(Debug, Deserialize, Serialize)]
|
|
struct Response {
|
|
status_code: u16,
|
|
moderators: Vec<String>,
|
|
}
|
|
let response =
|
|
Response { status_code: StatusCode::OK.as_u16(), moderators: public_keys };
|
|
return Ok(warp::reply::json(&response).into_response());
|
|
}
|
|
"block_list" => {
|
|
reject_if_file_server_mode(path)?;
|
|
return handlers::get_banned_public_keys(&auth_token, &pool);
|
|
}
|
|
"member_count" => {
|
|
reject_if_file_server_mode(path)?;
|
|
return handlers::get_member_count(&auth_token, &pool);
|
|
}
|
|
_ => {
|
|
warn!("Ignoring RPC call with invalid or unused endpoint: {}.", rpc_call.endpoint);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
}
|
|
}
|
|
|
|
async fn handle_post_request(
|
|
room_id: Option<String>, rpc_call: RpcCall, path: &str, auth_token: Option<String>,
|
|
) -> Result<Response, Rejection> {
|
|
// Handle routes that don't require authorization first
|
|
// The compact poll endpoint expects the auth token to be in the request body; not
|
|
// in the headers.
|
|
if path == "compact_poll" {
|
|
reject_if_file_server_mode(path)?;
|
|
#[derive(Debug, Deserialize, Serialize)]
|
|
struct CompactPollRequestBodyWrapper {
|
|
requests: Vec<models::CompactPollRequestBody>,
|
|
}
|
|
let wrapper: CompactPollRequestBodyWrapper = match serde_json::from_str(&rpc_call.body) {
|
|
Ok(bodies) => bodies,
|
|
Err(e) => {
|
|
warn!(
|
|
"Couldn't parse compact poll request body wrapper from: {} due to error: {}.",
|
|
rpc_call.body, e
|
|
);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
};
|
|
return handlers::compact_poll(wrapper.requests);
|
|
}
|
|
// This route requires auth in open group server mode, but not in file server mode
|
|
let pool = get_pool_for_room(&rpc_call)?;
|
|
if path == "files" {
|
|
#[derive(Debug, Deserialize)]
|
|
struct JSON {
|
|
file: String,
|
|
}
|
|
let json: JSON = match serde_json::from_str(&rpc_call.body) {
|
|
Ok(json) => json,
|
|
Err(e) => {
|
|
warn!("Couldn't parse JSON from: {} due to error: {}.", rpc_call.body, e);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
};
|
|
return handlers::store_file(room_id, &json.file, auth_token, &pool).await;
|
|
}
|
|
// Handle routes that require authorization
|
|
let auth_token = auth_token.ok_or_else(|| warp::reject::custom(Error::NoAuthToken))?;
|
|
if path.starts_with("rooms") {
|
|
reject_if_file_server_mode(path)?;
|
|
let components: Vec<&str> = path.split('/').collect(); // Split on subsequent slashes
|
|
if components.len() == 3 && components[2] == "image" {
|
|
#[derive(Debug, Deserialize)]
|
|
struct JSON {
|
|
file: String,
|
|
}
|
|
let json: JSON = match serde_json::from_str(&rpc_call.body) {
|
|
Ok(json) => json,
|
|
Err(e) => {
|
|
warn!("Couldn't parse JSON from: {} due to error: {}.", rpc_call.body, e);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
};
|
|
let room_id = components[1];
|
|
return handlers::set_group_image(&json.file, &room_id, &auth_token, &pool).await;
|
|
} else {
|
|
warn!("Invalid endpoint: {}.", rpc_call.endpoint);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
}
|
|
match path {
|
|
"messages" => {
|
|
reject_if_file_server_mode(path)?;
|
|
let message = match serde_json::from_str(&rpc_call.body) {
|
|
Ok(message) => message,
|
|
Err(e) => {
|
|
warn!("Couldn't parse message from: {} due to error: {}.", rpc_call.body, e);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
};
|
|
return handlers::insert_message(message, &auth_token, &pool);
|
|
}
|
|
"block_list" => {
|
|
reject_if_file_server_mode(path)?;
|
|
#[derive(Debug, Deserialize)]
|
|
struct JSON {
|
|
public_key: String,
|
|
}
|
|
let json: JSON = match serde_json::from_str(&rpc_call.body) {
|
|
Ok(json) => json,
|
|
Err(e) => {
|
|
warn!("Couldn't parse JSON from: {} due to error: {}.", rpc_call.body, e);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
};
|
|
return handlers::ban(&json.public_key, &auth_token, &pool);
|
|
}
|
|
"ban_and_delete_all" => {
|
|
reject_if_file_server_mode(path)?;
|
|
#[derive(Debug, Deserialize)]
|
|
struct JSON {
|
|
public_key: String,
|
|
}
|
|
let json: JSON = match serde_json::from_str(&rpc_call.body) {
|
|
Ok(json) => json,
|
|
Err(e) => {
|
|
warn!("Couldn't parse JSON from: {} due to error: {}.", rpc_call.body, e);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
};
|
|
return handlers::ban_and_delete_all_messages(&json.public_key, &auth_token, &pool);
|
|
}
|
|
"claim_auth_token" => {
|
|
reject_if_file_server_mode(path)?;
|
|
#[derive(Debug, Deserialize)]
|
|
struct JSON {
|
|
public_key: String,
|
|
}
|
|
let json: JSON = match serde_json::from_str(&rpc_call.body) {
|
|
Ok(json) => json,
|
|
Err(e) => {
|
|
warn!("Couldn't parse JSON from: {} due to error: {}.", rpc_call.body, e);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
};
|
|
return handlers::claim_auth_token(&json.public_key, &auth_token, &pool);
|
|
}
|
|
"moderators" => {
|
|
reject_if_file_server_mode(path)?;
|
|
let body: models::ChangeModeratorRequestBody =
|
|
match serde_json::from_str(&rpc_call.body) {
|
|
Ok(body) => body,
|
|
Err(e) => {
|
|
warn!("Couldn't parse JSON from: {} due to error: {}.", rpc_call.body, e);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
};
|
|
return handlers::add_moderator_public(body, &auth_token).await;
|
|
}
|
|
"delete_messages" => {
|
|
reject_if_file_server_mode(path)?;
|
|
#[derive(Debug, Deserialize)]
|
|
struct JSON {
|
|
ids: Vec<i64>,
|
|
}
|
|
let json: JSON = match serde_json::from_str(&rpc_call.body) {
|
|
Ok(json) => json,
|
|
Err(e) => {
|
|
warn!("Couldn't parse JSON from: {} due to error: {}.", rpc_call.body, e);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
};
|
|
return handlers::delete_messages(json.ids, &auth_token, &pool);
|
|
}
|
|
_ => {
|
|
warn!("Ignoring RPC call with invalid or unused endpoint: {}.", path);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
}
|
|
}
|
|
|
|
async fn handle_delete_request(
|
|
rpc_call: RpcCall, path: &str, auth_token: Option<String>,
|
|
pool: &storage::DatabaseConnectionPool,
|
|
) -> Result<Response, Rejection> {
|
|
// Check that the auth token is present
|
|
let auth_token = auth_token.ok_or_else(|| warp::reject::custom(Error::NoAuthToken))?;
|
|
// DELETE /messages/:server_id
|
|
if path.starts_with("messages") {
|
|
reject_if_file_server_mode(path)?;
|
|
let components: Vec<&str> = path.split('/').collect(); // Split on subsequent slashes
|
|
if components.len() != 2 {
|
|
warn!("Invalid endpoint: {}.", path);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
let server_id: i64 = match components[1].parse() {
|
|
Ok(server_id) => server_id,
|
|
Err(_) => {
|
|
warn!("Invalid endpoint: {}.", path);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
};
|
|
return handlers::delete_message(server_id, &auth_token, pool);
|
|
}
|
|
// DELETE /block_list/:public_key
|
|
if path.starts_with("block_list") {
|
|
reject_if_file_server_mode(path)?;
|
|
let components: Vec<&str> = path.split('/').collect(); // Split on subsequent slashes
|
|
if components.len() != 2 {
|
|
warn!("Invalid endpoint: {}.", path);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
let public_key = components[1].to_string();
|
|
return handlers::unban(&public_key, &auth_token, pool);
|
|
}
|
|
// DELETE /auth_token
|
|
if path == "auth_token" {
|
|
reject_if_file_server_mode(path)?;
|
|
return handlers::delete_auth_token(&auth_token, pool);
|
|
}
|
|
// DELETE /moderators/:public_key
|
|
if path.starts_with("moderators") {
|
|
reject_if_file_server_mode(path)?;
|
|
let components: Vec<&str> = path.split('/').collect(); // Split on subsequent slashes
|
|
if components.len() != 2 {
|
|
warn!("Invalid endpoint: {}.", path);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
let public_key = components[1].to_string();
|
|
let room_id = match get_room_id(&rpc_call) {
|
|
Some(room_id) => room_id,
|
|
None => {
|
|
warn!("Missing room ID.");
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
};
|
|
let body = models::ChangeModeratorRequestBody { public_key, room_id };
|
|
return handlers::delete_moderator_public(body, &auth_token).await;
|
|
}
|
|
// Unrecognized endpoint
|
|
warn!("Ignoring RPC call with invalid or unused endpoint: {}.", path);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
|
|
// Utilities
|
|
|
|
fn get_pool_for_room(rpc_call: &RpcCall) -> Result<storage::DatabaseConnectionPool, Rejection> {
|
|
let room_id = get_room_id(&rpc_call).ok_or(Error::ValidationFailed)?;
|
|
return Ok(storage::pool_by_room_id(
|
|
&storage::RoomId::new(&room_id).ok_or(Error::ValidationFailed)?,
|
|
));
|
|
}
|
|
|
|
fn get_auth_token(rpc_call: &RpcCall) -> Option<String> {
|
|
if rpc_call.headers.is_empty() {
|
|
return None;
|
|
}
|
|
return rpc_call.headers.get("Authorization").map(|s| s.to_string());
|
|
}
|
|
|
|
fn get_room_id(rpc_call: &RpcCall) -> Option<String> {
|
|
match MODE {
|
|
// In file server mode we don't have a concept of rooms, but for convenience (i.e. so
|
|
// we can use the same database structure) we just always use the main room
|
|
Mode::FileServer => return Some("main".to_string()),
|
|
Mode::OpenGroupServer => {
|
|
if rpc_call.headers.is_empty() {
|
|
return None;
|
|
}
|
|
return rpc_call.headers.get("Room").map(|s| s.to_string());
|
|
}
|
|
}
|
|
}
|
|
|
|
fn reject_if_file_server_mode(path: &str) -> Result<(), Rejection> {
|
|
match MODE {
|
|
Mode::FileServer => {
|
|
warn!("Ignoring RPC call with invalid or unused endpoint: {}.", path);
|
|
return Err(warp::reject::custom(Error::InvalidRpcCall));
|
|
}
|
|
Mode::OpenGroupServer => return Ok(()),
|
|
}
|
|
}
|