Added block and rate limit errors in ActivityPub (#24370)

ref https://linear.app/ghost/issue/PROD-2261

- the infrastructure will return HTTP 429/empty body when a user is
rate-limited, and HTTP 403/empty body when a user is blocked
- added support for non-json error responses
- added toast error for rate-limits, when the user is performing an
action (e.g. liking a post)
- added general error screen for rate-limits and blocks when
reloading screens

---------

Co-authored-by: Sodbileg Gansukh <[email protected]>

Author: sagzy

apps/admin-x-activitypub/src/api/activitypub.ts

@@ -192,6 +192,22 @@ export interface PaginatedPostsResponse {
     next: string | null;
 }
 
+export type ApiError = {
+    message: string;
+    statusCode: number;
+};
+
+export const isApiError = (error: unknown): error is ApiError => {
+    return (
+        typeof error === 'object' &&
+        error !== null &&
+        'statusCode' in error &&
+        'message' in error &&
+        typeof error.statusCode === 'number' &&
+        typeof error.message === 'string'
+    );
+};
+
 export class ActivityPubAPI {
     constructor(
         private readonly apiUrl: URL,
@@ -230,17 +246,27 @@ export class ActivityPubAPI {
             return null;
         }
 
-        const json = await response.json();
-
         if (!response.ok) {
-            const error = {
-                message: json?.message || json?.error || 'Unexpected Error',
+            const error: ApiError = {
+                message: 'Something went wrong, please try again.',
                 statusCode: response.status
             };
+
+            try {
+                const json = await response.json();
+                const errorMessage = json.message || json.error;
+
+                if (errorMessage) {
+                    error.message = errorMessage;
+                }
+            } catch {
+                // Leave the default message
+            }
+
             throw error;
         }
 
-        return json;
+        return await response.json();
     }
 
     async blockDomain(domain: URL): Promise<boolean> {

apps/admin-x-activitypub/src/components/global/EmptyViewIndicator.tsx

@@ -7,9 +7,9 @@ export const EmptyViewIcon: React.FC<{children?: ReactNode}> = ({children}) => {
     );
 };
 
-export const EmptyViewIndicator: React.FC<{children?: ReactNode}> = ({children}) => {
+export const EmptyViewIndicator: React.FC<{children?: ReactNode; className?: string}> = ({children, className}) => {
     return (
-        <div className='mx-auto mt-[24vh] flex max-w-[500px] flex-col items-center gap-5 text-center text-gray-700'>
+        <div className={`mx-auto mt-[24vh] flex max-w-[500px] flex-col items-center gap-5 text-center text-gray-700 ${className || ''}`}>
             {children}
         </div>
     );

apps/admin-x-activitypub/src/components/layout/Error/Error.tsx

@@ -1,36 +1,64 @@
 import Layout from '@components/layout/Layout';
+import {Button, H4, LucideIcon} from '@tryghost/shade';
 import {EmptyViewIcon, EmptyViewIndicator} from '@src/components/global/EmptyViewIndicator';
-import {H3, LucideIcon} from '@tryghost/shade';
 import {useNavigate} from '@tryghost/admin-x-framework';
 import {useRouteError} from 'react-router';
 
-const Error = () => {
-    const error = useRouteError();
+const Error = ({statusCode}: {statusCode?: number}) => {
+    const routeError = useRouteError();
     const navigate = useNavigate();
 
     const toDashboard = (e: React.MouseEvent<HTMLElement>) => {
         e.preventDefault();
         navigate('/dashboard', {crossApp: true});
     };
 
-    return (
-        !error ? (
+    if (routeError) {
+        return (
             <Layout>
                 <EmptyViewIndicator>
                     <EmptyViewIcon><LucideIcon.SearchX /></EmptyViewIcon>
-                    <H3 className='-mb-3'>Oops, page not found!</H3>
+                    <H4 className='-mb-4'>Oops, page not found!</H4>
                     <div>We couldn&apos;t find the page you were looking for. It may have been moved, deleted, or never existed in the first place.</div>
                 </EmptyViewIndicator>
             </Layout>
-        ) : (
-            <div className="admin-x-container-error">
-                <div className="admin-x-error max-w-xl">
-                    <h1>Loading interrupted</h1>
-                    <p>They say life is a series of trials and tribulations. This moment right here? It&apos;s a tribulation. Our app was supposed to load, and yet here we are. Loadless. Click back to the dashboard to try again.</p>
-                    <a className='cursor-pointer text-green' onClick={toDashboard}>&larr; Back to the dashboard</a>
-                </div>
+        );
+    }
+
+    if (statusCode === 429) {
+        return (
+            <EmptyViewIndicator className='mt-[50vh] -translate-y-1/2'>
+                <EmptyViewIcon><LucideIcon.TriangleAlert /></EmptyViewIcon>
+                <H4 className='-mb-4'>Rate limit exceeded</H4>
+                <div>You&apos;ve made too many requests. Please try again in a moment.</div>
+                <Button asChild>
+                    <a href="https://ghost.org/help/social-web/" rel="noopener noreferrer" target="_blank">Learn more &rarr;</a>
+                </Button>
+            </EmptyViewIndicator>
+        );
+    }
+
+    if (statusCode === 403) {
+        return (
+            <EmptyViewIndicator className='mt-[50vh] -translate-y-1/2'>
+                <EmptyViewIcon><LucideIcon.Ban /></EmptyViewIcon>
+                <H4 className='-mb-4'>Account suspended</H4>
+                <div>Your account has been suspended due to policy violations.</div>
+                <Button asChild>
+                    <a href="https://ghost.org/help/social-web/" rel="noopener noreferrer" target="_blank">Learn more &rarr;</a>
+                </Button>
+            </EmptyViewIndicator>
+        );
+    }
+
+    return (
+        <div className="admin-x-container-error">
+            <div className="admin-x-error max-w-xl">
+                <h1>Loading interrupted</h1>
+                <p>They say life is a series of trials and tribulations. This moment right here? It&apos;s a tribulation. Our app was supposed to load, and yet here we are. Loadless. Click back to the dashboard to try again.</p>
+                <a className='cursor-pointer text-green' onClick={toDashboard}>&larr; Back to the dashboard</a>
             </div>
-        )
+        </div>
     );
 };
 

apps/admin-x-activitypub/src/hooks/use-activity-pub-queries.ts

@@ -47,6 +47,20 @@ function createActivityPubAPI(handle: string, siteUrl: string) {
     );
 }
 
+function renderRateLimitError(
+    title = 'Rate limit exceeded',
+    description = 'You\'ve made too many requests. Please try again later.'
+) {
+    toast.error(title, {description});
+}
+
+function renderBlockedError(
+    title = 'Action failed',
+    description = 'This user has restricted who can interact with their account.'
+) {
+    toast.error(title, {description});
+}
+
 const QUERY_KEYS = {
     outbox: (handle: string) => ['outbox', handle],
     liked: (handle: string) => ['liked', handle],
@@ -559,9 +573,11 @@ export function useLikeMutationForUser(handle: string) {
             updateNotificationsLikedCache(queryClient, handle, id, false);
 
             if (error.statusCode === 403) {
-                toast.error('Action failed', {
-                    description: 'This user has restricted who can interact with their account.'
-                });
+                renderBlockedError();
+            }
+
+            if (error.statusCode === 429) {
+                renderRateLimitError();
             }
         }
     });
@@ -581,6 +597,11 @@ export function useUnlikeMutationForUser(handle: string) {
             updateLikeCache(queryClient, handle, id, false);
             updateLikeCacheOnce(queryClient, id, false);
             updateNotificationsLikedCache(queryClient, handle, id, false);
+        },
+        onError(error: {message: string, statusCode: number}) {
+            if (error.statusCode === 429) {
+                renderRateLimitError();
+            }
         }
     });
 }
@@ -613,6 +634,11 @@ export function useBlockDomainMutationForUser(handle: string) {
                     };
                 }
             );
+        },
+        onError(error: {message: string, statusCode: number}) {
+            if (error.statusCode === 429) {
+                renderRateLimitError();
+            }
         }
     });
 }
@@ -643,6 +669,11 @@ export function useUnblockDomainMutationForUser(handle: string) {
                     };
                 }
             );
+        },
+        onError(error: {message: string, statusCode: number}) {
+            if (error.statusCode === 429) {
+                renderRateLimitError();
+            }
         }
     });
 }
@@ -674,6 +705,11 @@ export function useBlockMutationForUser(handle: string) {
             );
             queryClient.invalidateQueries({queryKey: QUERY_KEYS.feed});
             queryClient.invalidateQueries({queryKey: QUERY_KEYS.inbox});
+        },
+        onError(error: {message: string, statusCode: number}) {
+            if (error.statusCode === 429) {
+                renderRateLimitError();
+            }
         }
     });
 }
@@ -701,6 +737,11 @@ export function useUnblockMutationForUser(handle: string) {
                     };
                 }
             );
+        },
+        onError(error: {message: string, statusCode: number}) {
+            if (error.statusCode === 429) {
+                renderRateLimitError();
+            }
         }
     });
 }
@@ -806,9 +847,10 @@ export function useRepostMutationForUser(handle: string) {
             updateRepostCacheOnce(queryClient, id, false);
             updateNotificationsRepostCache(queryClient, handle, id, false);
             if (error.statusCode === 403) {
-                toast.error('Action failed', {
-                    description: 'This user has restricted who can interact with their account.'
-                });
+                renderBlockedError();
+            }
+            if (error.statusCode === 429) {
+                renderRateLimitError();
             }
         }
     });
@@ -828,6 +870,11 @@ export function useDerepostMutationForUser(handle: string) {
             updateRepostCache(queryClient, handle, id, false);
             updateRepostCacheOnce(queryClient, id, false);
             updateNotificationsRepostCache(queryClient, handle, id, false);
+        },
+        onError(error: {message: string, statusCode: number}) {
+            if (error.statusCode === 429) {
+                renderRateLimitError();
+            }
         }
     });
 }
@@ -1010,7 +1057,12 @@ export function useUnfollowMutationForUser(handle: string, onSuccess: () => void
 
             onSuccess();
         },
-        onError
+        onError: (error: {message: string, statusCode: number}) => {
+            if (error.statusCode === 429) {
+                renderRateLimitError();
+            }
+            onError();
+        }
     });
 }
 
@@ -1176,10 +1228,12 @@ export function useFollowMutationForUser(handle: string, onSuccess: () => void,
         onError(error: {message: string, statusCode: number}) {
             onError();
 
+            if (error.statusCode === 429) {
+                renderRateLimitError();
+            }
+
             if (error.statusCode === 403) {
-                toast.error('Action failed', {
-                    description: 'This user has restricted who can interact with their account.'
-                });
+                renderBlockedError();
             }
         }
     });
@@ -1368,10 +1422,13 @@ export function useReplyMutationForUser(handle: string, actorProps?: ActorProper
             // in the thread as this is handled locally in the ArticleModal component
 
             if (error.statusCode === 403) {
-                return toast.error('Action failed', {
-                    description: 'This user has restricted who can interact with their account.'
-                });
+                renderBlockedError();
+            }
+
+            if (error.statusCode === 429) {
+                renderRateLimitError();
             }
+
             toast.error('An error occurred while sending your reply.');
         }
     });
@@ -1419,14 +1476,18 @@ export function useNoteMutationForUser(handle: string, actorProps?: ActorPropert
             updateActivityInPaginatedCollection(queryClient, queryKeyOutbox, 'data', context?.id ?? '', () => activity);
             updateActivityInPaginatedCollection(queryClient, queryKeyPostsByAccount, 'posts', context?.id ?? '', () => activity);
         },
-        onError(error, _variables, context) {
+        onError(error: {message: string, statusCode: number}, _variables, context) {
             // eslint-disable-next-line no-console
             console.error(error);
 
             removeActivityFromPaginatedCollection(queryClient, queryKeyFeed, 'posts', context?.id ?? '');
             removeActivityFromPaginatedCollection(queryClient, queryKeyOutbox, 'data', context?.id ?? '');
             removeActivityFromPaginatedCollection(queryClient, queryKeyPostsByAccount, 'posts', context?.id ?? '');
 
+            if (error.statusCode === 429) {
+                renderRateLimitError();
+            }
+
             toast.error('An error occurred while posting your note.');
         }
     });
@@ -2280,7 +2341,7 @@ function useFilteredAccountsFromJSON(options: {
     }, [followingIds, blockedAccountIds, blockedDomains, excludeFollowing, excludeCurrentUser, currentUser]);
 
     const isLoading = isLoadingFollowing || isLoadingBlockedAccounts || isLoadingBlockedDomains || isLoadingCurrentUser;
-    
+
     // Track if we have finished loading all following data
     const isFollowingDataComplete = !isLoadingFollowing && !hasNextPage;
 

apps/admin-x-activitypub/src/views/Feed/Feed.tsx

@@ -1,20 +1,24 @@
+import Error from '@components/layout/Error';
 import FeedList from './components/FeedList';
 import React from 'react';
+import {isApiError} from '@src/api/activitypub';
 import {
     useFeedForUser,
     useUserDataForUser
 } from '@hooks/use-activity-pub-queries';
 
 const Feed: React.FC = () => {
     const {feedQuery} = useFeedForUser({enabled: true});
-
-    const feedQueryData = feedQuery;
-    const {data, fetchNextPage, hasNextPage, isFetchingNextPage, isLoading} = feedQueryData;
+    const {data, error, fetchNextPage, hasNextPage, isFetchingNextPage, isLoading} = feedQuery;
 
     const activities = (data?.pages.flatMap(page => page.posts) ?? Array.from({length: 5}, (_, index) => ({id: `placeholder-${index}`, object: {}})));
 
     const {data: user} = useUserDataForUser('index');
 
+    if (error && isApiError(error)) {
+        return <Error statusCode={error.statusCode}/>;
+    }
+
     return <FeedList
         activities={activities}
         fetchNextPage={fetchNextPage}

apps/admin-x-activitypub/src/views/Inbox/Inbox.tsx

@@ -1,14 +1,20 @@
+import Error from '@components/layout/Error';
 import InboxList from './components/InboxList';
 import React from 'react';
+import {isApiError} from '@src/api/activitypub';
 import {useInboxForUser} from '@hooks/use-activity-pub-queries';
 
 const Inbox: React.FC = () => {
     const {inboxQuery} = useInboxForUser({enabled: true});
     const feedQueryData = inboxQuery;
-    const {data, fetchNextPage, hasNextPage, isFetchingNextPage, isLoading} = feedQueryData;
+    const {data, error, fetchNextPage, hasNextPage, isFetchingNextPage, isLoading} = feedQueryData;
 
     const activities = (data?.pages.flatMap(page => page.posts) ?? Array.from({length: 5}, (_, index) => ({id: `placeholder-${index}`, object: {}})));
 
+    if (error && isApiError(error)) {
+        return <Error statusCode={error.statusCode}/>;
+    }
+
     return <InboxList
         activities={activities}
         fetchNextPage={fetchNextPage}