Skip to content

Refactored account retrieval to use AccountView #505

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
mike182uk merged 15 commits into from
Apr 23, 2025
Merged

Refactored account retrieval to use AccountView #505

Show file tree
Hide file tree
Changes from 12 commits
Commits
Show all changes
15 commits
Select commit Hold shift + click to select a range
aebe9fc
Refactored account retrieval to use `AccountView`
mike182uk Apr 9, 2025
b153afa
Injected AccountView instead of instantiating it
mike182uk Apr 10, 2025
e67df95
Returned 404 when Account cannot be retrieved
mike182uk Apr 10, 2025
731f134
Used site default account for context instead of site
mike182uk Apr 10, 2025
ddca23d
404'd if actor cannot be resolved from fediverse
mike182uk Apr 10, 2025
35a88dd
Misc refactoring
mike182uk Apr 10, 2025
fe3d513
Ensure custom fields are populated
mike182uk Apr 10, 2025
54555d6
Merge branch 'main' into refactor-get-account-to-use-view
mike182uk Apr 11, 2025
a54b9f1
Fix failing test
mike182uk Apr 11, 2025
4e57973
Merge branch 'main' into refactor-get-account-to-use-view
mike182uk Apr 14, 2025
0a05e1b
Ensured requested rejected stepdef can only be used for client errors
mike182uk Apr 14, 2025
556b54a
Merge branch 'main' into refactor-get-account-to-use-view
mike182uk Apr 14, 2025
b931ec9
Merge branch 'main' into refactor-get-account-to-use-view
mike182uk Apr 17, 2025
f275ae0
Added integration tests
mike182uk Apr 18, 2025
f5f5617
Merge branch 'main' into refactor-get-account-to-use-view
mike182uk Apr 23, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 2 additions & 2 deletions features/account.feature
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,8 +20,8 @@ Feature: Account API

Scenario: Get non-existent account
When an authenticated "get" request is made to "/.ghost/activitypub/account/@nonexistent@fake-external-activitypub"
Then the request is rejected with a 500
Copy link
Collaborator

@allouis allouis Apr 14, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

😬 Yeah I think we should never have an explicit 500 check here.

I think we should update that stepdef to throw an error if a 5xx error is passed as the expected status code - what do you think?

Copy link
Member Author

@mike182uk mike182uk Apr 14, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeh I don't think it makes sense to expect an internal server error 😅 I'll add a check into the stepdef 👍

Copy link
Member Author

@mike182uk mike182uk Apr 14, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

updated in 0a05e1b

Then the request is rejected with a 404

Scenario: Get account without authentication
When an unauthenticated request is made to "/.ghost/activitypub/account/me"
Then the request is rejected with a 403
Then the request is rejected with a 403
4 changes: 4 additions & 0 deletions features/step_definitions/stepdefs.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1482,6 +1482,10 @@ Then('the request is rejected', function () {
});

Then('the request is rejected with a {int}', function (statusCode) {
assert(
statusCode < 500,
`Expected to check for a client error, got a server error ${statusCode}`,
);
assert(!this.response.ok);
assert.equal(this.response.status, statusCode);
});
Expand Down
6 changes: 3 additions & 3 deletions src/app.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -113,6 +113,7 @@ import {
handleWebhookSiteChanged,
} from './http/api';
import { AccountFollowsView } from './http/api/views/account.follows.view';
import { AccountView } from './http/api/views/account.view';
import { spanWrapper } from './instrumentation';
import { KnexKvStore } from './knex.kvstore';
import { scopeKvStore } from './kv-helpers';
Expand Down Expand Up @@ -267,6 +268,7 @@ const postService = new PostService(
fedifyContextFactory,
);

const accountView = new AccountView(client, fedifyContextFactory);
const accountFollowsView = new AccountFollowsView(client, fedifyContextFactory);
const siteService = new SiteService(client, accountService, {
getSiteSettings: getSiteSettings,
Expand Down Expand Up @@ -959,9 +961,7 @@ app.get(
app.get(
'/.ghost/activitypub/account/:handle',
requireRole(GhostRole.Owner, GhostRole.Administrator),
spanWrapper(
createGetAccountHandler(accountService, accountRepository, fedify),
),
spanWrapper(createGetAccountHandler(accountView, accountRepository)),
);
app.get(
'/.ghost/activitypub/posts/:handle',
Expand Down
80 changes: 26 additions & 54 deletions src/http/api/account.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,15 +7,12 @@ import type { AppContext, ContextData } from 'app';
import { isHandle } from 'helpers/activitypub/actor';
import { lookupAPIdByHandle } from 'lookup-helpers';
import type { GetProfileDataResult, PostService } from 'post/post.service';
import {
getAccountDTOByHandle,
getAccountDTOFromAccount,
} from './helpers/account';
import type { AccountDTO } from './types';
import type {
AccountFollows,
AccountFollowsView,
} from './views/account.follows.view';
import type { AccountView } from './views/account.view';

/**
* Default number of posts to return in a profile
Expand All @@ -27,78 +24,53 @@ const DEFAULT_POSTS_LIMIT = 20;
*/
const MAX_POSTS_LIMIT = 100;

/**
* Keyword to indicate a request is for the current user
*/
const CURRENT_USER_KEYWORD = 'me';

/**
* Create a handler to handle a request for an account
*
* @param accountService Account service instance
*/
export function createGetAccountHandler(
accountService: AccountService,
accountView: AccountView,
accountRepository: KnexAccountRepository,
fedify: Federation<ContextData>,
) {
/**
* Handle a request for an account
*
* @param ctx App context
*/
return async function handleGetAccount(ctx: AppContext) {
const logger = ctx.get('logger');
const site = ctx.get('site');
let account: Account | null = null;
const db = ctx.get('db');
const handle = ctx.req.param('handle');

const apCtx = fedify.createContext(ctx.req.raw as Request, {
db,
globaldb: ctx.get('globaldb'),
logger,
});
if (handle !== CURRENT_USER_KEYWORD && !isHandle(handle)) {
return new Response(null, { status: 404 });
}

const defaultAccount = await accountRepository.getBySite(
const siteDefaultAccount = await accountRepository.getBySite(
ctx.get('site'),
);

const handle = ctx.req.param('handle');
// We are using the keyword 'me', if we want to get the account of teh current user
if (handle === 'me') {
account = defaultAccount;
} else {
if (!isHandle(handle)) {
return new Response(null, { status: 404 });
}

const apId = await lookupAPIdByHandle(apCtx, handle);
if (apId) {
account = await accountRepository.getByApId(new URL(apId));
}
}
let accountDto: AccountDTO | null = null;

let accountDto: AccountDTO;
const viewContext = {
requestUserAccount: siteDefaultAccount,
};

try {
//If we found the account in our db and it's an internal account, do an internal lookup
if (account?.isInternal) {
accountDto = await getAccountDTOFromAccount(
account,
defaultAccount,
accountService,
);
} else {
//Otherwise, do a remote lookup to fetch the updated data
accountDto = await getAccountDTOByHandle(
handle,
apCtx,
site,
accountService,
);
}
} catch (error) {
logger.error('Error getting account: {error}', { error });
if (handle === CURRENT_USER_KEYWORD) {
accountDto = await accountView.viewById(
siteDefaultAccount.id!,
viewContext,
);
} else {
accountDto = await accountView.viewByHandle(handle, viewContext);
}

return new Response(null, { status: 500 });
if (accountDto === null) {
return new Response(null, { status: 404 });
}

// Return response
return new Response(JSON.stringify(accountDto), {
Copy link
Collaborator

@allouis allouis Apr 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We don't check for the accountDto being null here - I think we wanna 404 in that case probs

Copy link
Member Author

@mike182uk mike182uk Apr 10, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

updated in e67df95

headers: {
'Content-Type': 'application/json',
Expand Down
Loading