this should fix *all* remaining visibility-related mastodon ostatus infoleaks. thanks to @csaurus@gnusocial.de for pointing out the infoleak.
		
			
				
	
	
		
			312 lines
		
	
	
		
			9.9 KiB
		
	
	
	
		
			Ruby
		
	
	
	
	
	
			
		
		
	
	
			312 lines
		
	
	
		
			9.9 KiB
		
	
	
	
		
			Ruby
		
	
	
	
	
	
| # frozen_string_literal: true
 | |
| # == Schema Information
 | |
| #
 | |
| # Table name: statuses
 | |
| #
 | |
| #  id                     :integer          not null, primary key
 | |
| #  uri                    :string
 | |
| #  text                   :text             default(""), not null
 | |
| #  created_at             :datetime         not null
 | |
| #  updated_at             :datetime         not null
 | |
| #  in_reply_to_id         :integer
 | |
| #  reblog_of_id           :integer
 | |
| #  url                    :string
 | |
| #  sensitive              :boolean          default(FALSE), not null
 | |
| #  visibility             :integer          default("public"), not null
 | |
| #  spoiler_text           :text             default(""), not null
 | |
| #  reply                  :boolean          default(FALSE), not null
 | |
| #  favourites_count       :integer          default(0), not null
 | |
| #  reblogs_count          :integer          default(0), not null
 | |
| #  language               :string
 | |
| #  conversation_id        :integer
 | |
| #  local                  :boolean
 | |
| #  account_id             :integer          not null
 | |
| #  application_id         :integer
 | |
| #  in_reply_to_account_id :integer
 | |
| #
 | |
| 
 | |
| class Status < ApplicationRecord
 | |
|   include Paginable
 | |
|   include Streamable
 | |
|   include Cacheable
 | |
|   include StatusThreadingConcern
 | |
| 
 | |
|   enum visibility: [:public, :unlisted, :private, :direct], _suffix: :visibility
 | |
| 
 | |
|   belongs_to :application, class_name: 'Doorkeeper::Application'
 | |
| 
 | |
|   belongs_to :account, inverse_of: :statuses, counter_cache: true, required: true
 | |
|   belongs_to :in_reply_to_account, foreign_key: 'in_reply_to_account_id', class_name: 'Account'
 | |
|   belongs_to :conversation
 | |
| 
 | |
|   belongs_to :thread, foreign_key: 'in_reply_to_id', class_name: 'Status', inverse_of: :replies
 | |
|   belongs_to :reblog, foreign_key: 'reblog_of_id', class_name: 'Status', inverse_of: :reblogs, counter_cache: :reblogs_count
 | |
| 
 | |
|   has_many :favourites, inverse_of: :status, dependent: :destroy
 | |
|   has_many :reblogs, foreign_key: 'reblog_of_id', class_name: 'Status', inverse_of: :reblog, dependent: :destroy
 | |
|   has_many :replies, foreign_key: 'in_reply_to_id', class_name: 'Status', inverse_of: :thread
 | |
|   has_many :mentions, dependent: :destroy
 | |
|   has_many :media_attachments, dependent: :destroy
 | |
| 
 | |
|   has_and_belongs_to_many :tags
 | |
|   has_and_belongs_to_many :preview_cards
 | |
| 
 | |
|   has_one :notification, as: :activity, dependent: :destroy
 | |
|   has_one :stream_entry, as: :activity, inverse_of: :status
 | |
| 
 | |
|   validates :uri, uniqueness: true, presence: true, unless: :local?
 | |
|   validates :text, presence: true, unless: :reblog?
 | |
|   validates_with StatusLengthValidator
 | |
|   validates :reblog, uniqueness: { scope: :account }, if: :reblog?
 | |
| 
 | |
|   default_scope { recent }
 | |
| 
 | |
|   scope :recent, -> { reorder(id: :desc) }
 | |
|   scope :remote, -> { where(local: false).or(where.not(uri: nil)) }
 | |
|   scope :local,  -> { where(local: true).or(where(uri: nil)) }
 | |
| 
 | |
|   scope :without_replies, -> { where('statuses.reply = FALSE OR statuses.in_reply_to_account_id = statuses.account_id') }
 | |
|   scope :without_reblogs, -> { where('statuses.reblog_of_id IS NULL') }
 | |
|   scope :with_public_visibility, -> { where(visibility: :public) }
 | |
|   scope :tagged_with, ->(tag) { joins(:statuses_tags).where(statuses_tags: { tag_id: tag }) }
 | |
|   scope :excluding_silenced_accounts, -> { left_outer_joins(:account).where(accounts: { silenced: false }) }
 | |
|   scope :including_silenced_accounts, -> { left_outer_joins(:account).where(accounts: { silenced: true }) }
 | |
|   scope :not_excluded_by_account, ->(account) { where.not(account_id: account.excluded_from_timeline_account_ids) }
 | |
|   scope :not_domain_blocked_by_account, ->(account) { account.excluded_from_timeline_domains.blank? ? left_outer_joins(:account) : left_outer_joins(:account).where('accounts.domain IS NULL OR accounts.domain NOT IN (?)', account.excluded_from_timeline_domains) }
 | |
| 
 | |
|   cache_associated :account, :application, :media_attachments, :tags, :stream_entry, mentions: :account, reblog: [:account, :application, :stream_entry, :tags, :media_attachments, mentions: :account], thread: :account
 | |
| 
 | |
|   delegate :domain, to: :account, prefix: true
 | |
| 
 | |
|   def reply?
 | |
|     !in_reply_to_id.nil? || attributes['reply']
 | |
|   end
 | |
| 
 | |
|   def local?
 | |
|     attributes['local'] || uri.nil?
 | |
|   end
 | |
| 
 | |
|   def reblog?
 | |
|     !reblog_of_id.nil?
 | |
|   end
 | |
| 
 | |
|   def verb
 | |
|     if destroyed?
 | |
|       :delete
 | |
|     else
 | |
|       reblog? ? :share : :post
 | |
|     end
 | |
|   end
 | |
| 
 | |
|   def object_type
 | |
|     reply? ? :comment : :note
 | |
|   end
 | |
| 
 | |
|   def proper
 | |
|     reblog? ? reblog : self
 | |
|   end
 | |
| 
 | |
|   def content
 | |
|     proper.text
 | |
|   end
 | |
| 
 | |
|   def target
 | |
|     reblog
 | |
|   end
 | |
| 
 | |
|   def title
 | |
|     if destroyed?
 | |
|       "#{account.acct} deleted status"
 | |
|     else
 | |
|       reblog? ? "#{account.acct} shared a status by #{reblog.account.acct}" : "New status by #{account.acct}"
 | |
|     end
 | |
|   end
 | |
| 
 | |
|   def hidden?
 | |
|     private_visibility? || direct_visibility?
 | |
|   end
 | |
| 
 | |
|   def non_sensitive_with_media?
 | |
|     !sensitive? && media_attachments.any?
 | |
|   end
 | |
| 
 | |
|   def emojis
 | |
|     CustomEmoji.from_text([spoiler_text, text].join(' '), account.domain)
 | |
|   end
 | |
| 
 | |
|   after_create_commit :store_uri, if: :local?
 | |
| 
 | |
|   around_create Mastodon::Snowflake::Callbacks
 | |
| 
 | |
|   before_validation :prepare_contents, if: :local?
 | |
|   before_validation :set_reblog
 | |
|   before_validation :set_visibility
 | |
|   before_validation :set_conversation
 | |
|   before_validation :set_sensitivity
 | |
|   before_validation :set_local
 | |
| 
 | |
|   class << self
 | |
|     def not_in_filtered_languages(account)
 | |
|       where(language: nil).or where.not(language: account.filtered_languages)
 | |
|     end
 | |
| 
 | |
|     def as_home_timeline(account)
 | |
|       where(account: [account] + account.following).where(visibility: [:public, :unlisted, :private])
 | |
|     end
 | |
| 
 | |
|     def as_public_timeline(account = nil, local_only = false)
 | |
|       query = timeline_scope(local_only).without_replies
 | |
| 
 | |
|       apply_timeline_filters(query, account, local_only)
 | |
|     end
 | |
| 
 | |
|     def as_tag_timeline(tag, account = nil, local_only = false)
 | |
|       query = timeline_scope(local_only).tagged_with(tag)
 | |
| 
 | |
|       apply_timeline_filters(query, account, local_only)
 | |
|     end
 | |
| 
 | |
|     def as_outbox_timeline(account)
 | |
|       where(account: account, visibility: :public)
 | |
|     end
 | |
| 
 | |
|     def favourites_map(status_ids, account_id)
 | |
|       Favourite.select('status_id').where(status_id: status_ids).where(account_id: account_id).map { |f| [f.status_id, true] }.to_h
 | |
|     end
 | |
| 
 | |
|     def reblogs_map(status_ids, account_id)
 | |
|       select('reblog_of_id').where(reblog_of_id: status_ids).where(account_id: account_id).reorder(nil).map { |s| [s.reblog_of_id, true] }.to_h
 | |
|     end
 | |
| 
 | |
|     def mutes_map(conversation_ids, account_id)
 | |
|       ConversationMute.select('conversation_id').where(conversation_id: conversation_ids).where(account_id: account_id).map { |m| [m.conversation_id, true] }.to_h
 | |
|     end
 | |
| 
 | |
|     def pins_map(status_ids, account_id)
 | |
|       StatusPin.select('status_id').where(status_id: status_ids).where(account_id: account_id).map { |p| [p.status_id, true] }.to_h
 | |
|     end
 | |
| 
 | |
|     def reload_stale_associations!(cached_items)
 | |
|       account_ids = []
 | |
| 
 | |
|       cached_items.each do |item|
 | |
|         account_ids << item.account_id
 | |
|         account_ids << item.reblog.account_id if item.reblog?
 | |
|       end
 | |
| 
 | |
|       account_ids.uniq!
 | |
| 
 | |
|       return if account_ids.empty?
 | |
| 
 | |
|       accounts = Account.where(id: account_ids).map { |a| [a.id, a] }.to_h
 | |
| 
 | |
|       cached_items.each do |item|
 | |
|         item.account = accounts[item.account_id]
 | |
|         item.reblog.account = accounts[item.reblog.account_id] if item.reblog?
 | |
|       end
 | |
|     end
 | |
| 
 | |
|     def permitted_for(target_account, account)
 | |
|       visibility = [:public, :unlisted]
 | |
| 
 | |
|       if account.nil?
 | |
|         where(visibility: visibility)
 | |
|       elsif target_account.blocking?(account) # get rid of blocked peeps
 | |
|         none
 | |
|       elsif account.id == target_account.id # author can see own stuff
 | |
|         all
 | |
|       else
 | |
|         # followers can see followers-only stuff, but also things they are mentioned in.
 | |
|         # non-followers can see everything that isn't private/direct, but can see stuff they are mentioned in.
 | |
|         visibility.push(:private) if account.following?(target_account)
 | |
| 
 | |
|         where(visibility: visibility).or(where(id: account.mentions.select(:status_id)))
 | |
|       end
 | |
|     end
 | |
| 
 | |
|     private
 | |
| 
 | |
|     def timeline_scope(local_only = false)
 | |
|       starting_scope = local_only ? Status.local : Status
 | |
|       starting_scope
 | |
|         .with_public_visibility
 | |
|         .without_reblogs
 | |
|     end
 | |
| 
 | |
|     def apply_timeline_filters(query, account, local_only)
 | |
|       if account.nil?
 | |
|         filter_timeline_default(query)
 | |
|       else
 | |
|         filter_timeline_for_account(query, account, local_only)
 | |
|       end
 | |
|     end
 | |
| 
 | |
|     def filter_timeline_for_account(query, account, local_only)
 | |
|       query = query.not_excluded_by_account(account)
 | |
|       query = query.not_domain_blocked_by_account(account) unless local_only
 | |
|       query = query.not_in_filtered_languages(account) if account.filtered_languages.present?
 | |
|       query.merge(account_silencing_filter(account))
 | |
|     end
 | |
| 
 | |
|     def filter_timeline_default(query)
 | |
|       query.excluding_silenced_accounts
 | |
|     end
 | |
| 
 | |
|     def account_silencing_filter(account)
 | |
|       if account.silenced?
 | |
|         including_silenced_accounts
 | |
|       else
 | |
|         excluding_silenced_accounts
 | |
|       end
 | |
|     end
 | |
|   end
 | |
| 
 | |
|   private
 | |
| 
 | |
|   def store_uri
 | |
|     update_attribute(:uri, ActivityPub::TagManager.instance.uri_for(self)) if uri.nil?
 | |
|   end
 | |
| 
 | |
|   def prepare_contents
 | |
|     text&.strip!
 | |
|     spoiler_text&.strip!
 | |
|   end
 | |
| 
 | |
|   def set_reblog
 | |
|     self.reblog = reblog.reblog if reblog? && reblog.reblog?
 | |
|   end
 | |
| 
 | |
|   def set_visibility
 | |
|     self.visibility = (account.locked? ? :private : :public) if visibility.nil?
 | |
|     self.visibility = reblog.visibility if reblog?
 | |
|     self.sensitive  = false if sensitive.nil?
 | |
|   end
 | |
| 
 | |
|   def set_sensitivity
 | |
|     self.sensitive = sensitive || spoiler_text.present?
 | |
|   end
 | |
| 
 | |
|   def set_conversation
 | |
|     self.reply = !(in_reply_to_id.nil? && thread.nil?) unless reply
 | |
| 
 | |
|     if reply? && !thread.nil?
 | |
|       self.in_reply_to_account_id = carried_over_reply_to_account_id
 | |
|       self.conversation_id        = thread.conversation_id if conversation_id.nil?
 | |
|     elsif conversation_id.nil?
 | |
|       create_conversation
 | |
|     end
 | |
|   end
 | |
| 
 | |
|   def carried_over_reply_to_account_id
 | |
|     if thread.account_id == account_id && thread.reply?
 | |
|       thread.in_reply_to_account_id
 | |
|     else
 | |
|       thread.account_id
 | |
|     end
 | |
|   end
 | |
| 
 | |
|   def set_local
 | |
|     self.local = account.local?
 | |
|   end
 | |
| end
 |