closed-social
/
mastodon
3
0
Fork 2
Code Issues 5 Pull Requests 0 Projects 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3565 Commits
4 Branches
567 MiB
Tree: 0c7c188c45
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '0c7c188c45'
${ noResults }
mastodon/app/models/web/push_subscription.rb

190 lines
6.1 KiB
Raw Normal View History

Web Push Notifications (#3243) * feat: Register push subscription * feat: Notify when mentioned * feat: Boost, favourite, reply, follow, follow request * feat: Notification interaction * feat: Handle change of public key * feat: Unsubscribe if things go wrong * feat: Do not send normal notifications if push is enabled * feat: Focus client if open * refactor: Move push logic to WebPushSubscription * feat: Better title and body * feat: Localize messages * chore: Fix lint errors * feat: Settings * refactor: Lazy load * fix: Check if push settings exist * feat: Device-based preferences * refactor: Simplify logic * refactor: Pull request feedback * refactor: Pull request feedback * refactor: Create /api/web/push_subscriptions endpoint * feat: Spec PushSubscriptionController * refactor: WebPushSubscription => Web::PushSubscription * feat: Spec Web::PushSubscription * feat: Display first media attachment * feat: Support direction * fix: Stuff broken while rebasing * refactor: Integration with session activations * refactor: Cleanup * refactor: Simplify implementation * feat: Set VAPID keys via environment * chore: Comments * fix: Crash when no alerts * fix: Set VAPID keys in testing environment * fix: Follow link * feat: Notification actions * fix: Delete previous subscription * chore: Temporary logs * refactor: Move migration to a later date * fix: Fetch the correct session activation and misc bugs * refactor: Move migration to a later date * fix: Remove follow request (no notifications) * feat: Send administrator contact to push service * feat: Set time-to-live * fix: Do not show sensitive images * fix: Reducer crash in error handling * feat: Add badge * chore: Fix lint error * fix: Checkbox label overlap * fix: Check for payload support * fix: Rename action "type" (crash in latest Chrome) * feat: Action to expand notification * fix: Lint errors * fix: Unescape notification body * fix: Do not allow boosting if the status is hidden * feat: Add VAPID keys to the production sample environment * fix: Strip HTML tags from status * refactor: Better error messages * refactor: Handle browser not implementing the VAPID protocol (Samsung Internet) * fix: Error when target_status is nil * fix: Handle lack of image * fix: Delete reference to invalid subscriptions * feat: Better error handling * fix: Unescape HTML characters after tags are striped * refactor: Simpify code * fix: Modify to work with #4091 * Sort strings alphabetically * i18n: Updated Polish translation it annoys me that it's not fully localized :P * refactor: Use current_session in PushSubscriptionController * fix: Rebase mistake * fix: Set cacheName to mastodon * refactor: Pull request feedback * refactor: Remove logging statements * chore(yarn): Fix conflicts with master * chore(yarn): Copy latest from master * chore(yarn): Readd offline-plugin * refactor: Use save! and update! * refactor: Send notifications async * fix: Allow retry when push fails * fix: Save track for failed pushes * fix: Minify sw.js * fix: Remove account_id from fabricator
6 years ago
 
  1. # frozen_string_literal: true
  2. # == Schema Information
  3. #
  4. # Table name: web_push_subscriptions
  5. #
  6. #  id         :integer          not null, primary key
  7. #  endpoint   :string           not null
  8. #  key_p256dh :string           not null
  9. #  key_auth   :string           not null
  10. #  data       :json
  11. #  created_at :datetime         not null
  12. #  updated_at :datetime         not null
  13. #
  14. 

  15. class Web::PushSubscription < ApplicationRecord
  16.   include RoutingHelper
  17.   include StreamEntriesHelper
  18.   include ActionView::Helpers::TranslationHelper
  19.   include ActionView::Helpers::SanitizeHelper
  20. 

  21.   has_one :session_activation
  22. 

  23.   before_create :send_welcome_notification
  24. 

  25.   def push(notification)
  26.     return unless pushable? notification
  27. 

  28.     name = display_name notification.from_account
  29.     title = title_str(name, notification)
  30.     body = body_str notification
  31.     dir = dir_str body
  32.     url = url_str notification
  33.     image = image_str notification
  34.     actions = actions_arr notification
  35. 

  36.     access_token = actions.empty? ? nil : find_or_create_access_token(notification).token
  37.     nsfw = notification.target_status.nil? || notification.target_status.spoiler_text.empty? ? nil : notification.target_status.spoiler_text
  38. 

  39.     # TODO: Make sure that the payload does not exceed 4KB - Webpush::PayloadTooLarge
  40.     # TODO: Queue the requests - Webpush::TooManyRequests
  41.     Webpush.payload_send(
  42.       message: JSON.generate(
  43.         title: title,
  44.         dir: dir,
  45.         image: image,
  46.         badge: full_asset_url('badge.png'),
  47.         tag: notification.id,
  48.         timestamp: notification.created_at,
  49.         icon: notification.from_account.avatar_static_url,
  50.         data: {
  51.           content: decoder.decode(strip_tags(body)),
  52.           nsfw: nsfw.nil? ? nil : decoder.decode(strip_tags(nsfw)),
  53.           url: url,
  54.           actions: actions,
  55.           access_token: access_token,
  56.         }
  57.       ),
  58.       endpoint: endpoint,
  59.       p256dh: key_p256dh,
  60.       auth: key_auth,
  61.       vapid: {
  62.         # subject: "mailto:#{Setting.site_contact_email}",
  63.         private_key: Rails.configuration.x.vapid_private_key,
  64.         public_key: Rails.configuration.x.vapid_public_key,
  65.       },
  66.       ttl: 40 * 60 * 60 # 48 hours
  67.     )
  68.   end
  69. 

  70.   def as_payload
  71.     payload = {
  72.       id: id,
  73.       endpoint: endpoint,
  74.     }
  75. 

  76.     payload[:alerts] = data['alerts'] if data && data.key?('alerts')
  77. 

  78.     payload
  79.   end
  80. 

  81.   private
  82. 

  83.   def title_str(name, notification)
  84.     case notification.type
  85.     when :mention then translate('push_notifications.mention.title', name: name)
  86.     when :follow then translate('push_notifications.follow.title', name: name)
  87.     when :favourite then translate('push_notifications.favourite.title', name: name)
  88.     when :reblog then translate('push_notifications.reblog.title', name: name)
  89.     end
  90.   end
  91. 

  92.   def body_str(notification)
  93.     case notification.type
  94.     when :mention then notification.target_status.text
  95.     when :follow then notification.from_account.note
  96.     when :favourite then notification.target_status.text
  97.     when :reblog then notification.target_status.text
  98.     end
  99.   end
  100. 

  101.   def url_str(notification)
  102.     case notification.type
  103.     when :mention then web_url("statuses/#{notification.target_status.id}")
  104.     when :follow then web_url("accounts/#{notification.from_account.id}")
  105.     when :favourite then web_url("statuses/#{notification.target_status.id}")
  106.     when :reblog then web_url("statuses/#{notification.target_status.id}")
  107.     end
  108.   end
  109. 

  110.   def actions_arr(notification)
  111.     actions =
  112.       case notification.type
  113.       when :mention then [
  114.         {
  115.           title: translate('push_notifications.mention.action_favourite'),
  116.           icon: full_asset_url('emoji/2764.png'),
  117.           todo: 'request',
  118.           method: 'POST',
  119.           action: "/api/v1/statuses/#{notification.target_status.id}/favourite",
  120.         },
  121.       ]
  122.       else []
  123.       end
  124. 

  125.     should_hide = notification.type.equal?(:mention) && !notification.target_status.nil? && (notification.target_status.sensitive || !notification.target_status.spoiler_text.empty?)
  126.     can_boost = notification.type.equal?(:mention) && !notification.target_status.nil? && !notification.target_status.hidden?
  127. 

  128.     if should_hide
  129.       actions.insert(0, title: translate('push_notifications.mention.action_expand'), icon: full_asset_url('emoji/1f441.png'), todo: 'expand', action: 'expand')
  130.     end
  131. 

  132.     if can_boost
  133.       actions << { title: translate('push_notifications.mention.action_boost'), icon: full_asset_url('emoji/1f504.png'), todo: 'request', method: 'POST', action: "/api/v1/statuses/#{notification.target_status.id}/reblog" }
  134.     end
  135. 

  136.     actions
  137.   end
  138. 

  139.   def image_str(notification)
  140.     return nil if notification.target_status.nil? || notification.target_status.media_attachments.empty?
  141. 

  142.     full_asset_url(notification.target_status.media_attachments.first.file.url(:small))
  143.   end
  144. 

  145.   def dir_str(body)
  146.     rtl?(body) ? 'rtl' : 'ltr'
  147.   end
  148. 

  149.   def pushable?(notification)
  150.     data && data.key?('alerts') && data['alerts'][notification.type.to_s]
  151.   end
  152. 

  153.   def send_welcome_notification
  154.     Webpush.payload_send(
  155.       message: JSON.generate(
  156.         title: translate('push_notifications.subscribed.title'),
  157.         icon: full_asset_url('android-chrome-192x192.png'),
  158.         badge: full_asset_url('badge.png'),
  159.         data: {
  160.           content: translate('push_notifications.subscribed.body'),
  161.           actions: [],
  162.           url: web_url('notifications'),
  163.         }
  164.       ),
  165.       endpoint: endpoint,
  166.       p256dh: key_p256dh,
  167.       auth: key_auth,
  168.       vapid: {
  169.         # subject: "mailto:#{Setting.site_contact_email}",
  170.         private_key: Rails.configuration.x.vapid_private_key,
  171.         public_key: Rails.configuration.x.vapid_public_key,
  172.       },
  173.       ttl: 5 * 60 # 5 minutes
  174.     )
  175.   end
  176. 

  177.   def find_or_create_access_token(notification)
  178.     Doorkeeper::AccessToken.find_or_create_for(
  179.       Doorkeeper::Application.find_by(superapp: true),
  180.       notification.account.user.id,
  181.       Doorkeeper::OAuth::Scopes.from_string('read write follow'),
  182.       Doorkeeper.configuration.access_token_expires_in,
  183.       Doorkeeper.configuration.refresh_token_enabled?
  184.     )
  185.   end
  186. 

  187.   def decoder
  188.     @decoder ||= HTMLEntities.new
  189.   end
  190. end