288 lines
6.6 KiB
PHP
288 lines
6.6 KiB
PHP
<?php
|
|
/**
|
|
* Users collection file.
|
|
*
|
|
* @package Activitypub
|
|
*/
|
|
|
|
namespace Activitypub\Collection;
|
|
|
|
use WP_Error;
|
|
use WP_User_Query;
|
|
use Activitypub\Model\User;
|
|
use Activitypub\Model\Blog;
|
|
use Activitypub\Model\Application;
|
|
|
|
use function Activitypub\object_to_uri;
|
|
use function Activitypub\normalize_url;
|
|
use function Activitypub\normalize_host;
|
|
use function Activitypub\url_to_authorid;
|
|
use function Activitypub\is_user_disabled;
|
|
|
|
/**
|
|
* Users collection.
|
|
*/
|
|
class Users {
|
|
/**
|
|
* The ID of the Blog User.
|
|
*
|
|
* @var int
|
|
*/
|
|
const BLOG_USER_ID = 0;
|
|
|
|
/**
|
|
* The ID of the Application User.
|
|
*
|
|
* @var int
|
|
*/
|
|
const APPLICATION_USER_ID = -1;
|
|
|
|
/**
|
|
* Get the User by ID.
|
|
*
|
|
* @param int $user_id The User-ID.
|
|
*
|
|
* @return User|Blog|Application|WP_Error The User or WP_Error if user not found.
|
|
*/
|
|
public static function get_by_id( $user_id ) {
|
|
if ( is_string( $user_id ) || is_numeric( $user_id ) ) {
|
|
$user_id = (int) $user_id;
|
|
}
|
|
|
|
if ( is_user_disabled( $user_id ) ) {
|
|
return new WP_Error(
|
|
'activitypub_user_not_found',
|
|
\__( 'User not found', 'activitypub' ),
|
|
array( 'status' => 404 )
|
|
);
|
|
}
|
|
|
|
if ( self::BLOG_USER_ID === $user_id ) {
|
|
return new Blog();
|
|
} elseif ( self::APPLICATION_USER_ID === $user_id ) {
|
|
return new Application();
|
|
} elseif ( $user_id > 0 ) {
|
|
return User::from_wp_user( $user_id );
|
|
}
|
|
|
|
return new WP_Error(
|
|
'activitypub_user_not_found',
|
|
\__( 'User not found', 'activitypub' ),
|
|
array( 'status' => 404 )
|
|
);
|
|
}
|
|
|
|
/**
|
|
* Get the User by username.
|
|
*
|
|
* @param string $username The User-Name.
|
|
*
|
|
* @return User|Blog|Application|WP_Error The User or WP_Error if user not found.
|
|
*/
|
|
public static function get_by_username( $username ) {
|
|
// Check for blog user.
|
|
if ( Blog::get_default_username() === $username ) {
|
|
return new Blog();
|
|
}
|
|
|
|
if ( get_option( 'activitypub_blog_identifier' ) === $username ) {
|
|
return new Blog();
|
|
}
|
|
|
|
// Check for application user.
|
|
if ( 'application' === $username ) {
|
|
return new Application();
|
|
}
|
|
|
|
// Check for 'activitypub_username' meta.
|
|
$user = new WP_User_Query(
|
|
array(
|
|
'count_total' => false,
|
|
'number' => 1,
|
|
'hide_empty' => true,
|
|
'fields' => 'ID',
|
|
// phpcs:ignore WordPress.DB.SlowDBQuery.slow_db_query_meta_query
|
|
'meta_query' => array(
|
|
'relation' => 'OR',
|
|
array(
|
|
'key' => 'activitypub_user_identifier',
|
|
'value' => $username,
|
|
'compare' => 'LIKE',
|
|
),
|
|
),
|
|
)
|
|
);
|
|
|
|
if ( $user->results ) {
|
|
return self::get_by_id( $user->results[0] );
|
|
}
|
|
|
|
$username = str_replace( array( '*', '%' ), '', $username );
|
|
|
|
// Check for login or nicename.
|
|
$user = new WP_User_Query(
|
|
array(
|
|
'count_total' => false,
|
|
'search' => $username,
|
|
'search_columns' => array( 'user_login', 'user_nicename' ),
|
|
'number' => 1,
|
|
'hide_empty' => true,
|
|
'fields' => 'ID',
|
|
)
|
|
);
|
|
|
|
if ( $user->results ) {
|
|
return self::get_by_id( $user->results[0] );
|
|
}
|
|
|
|
return new WP_Error(
|
|
'activitypub_user_not_found',
|
|
\__( 'User not found', 'activitypub' ),
|
|
array( 'status' => 404 )
|
|
);
|
|
}
|
|
|
|
/**
|
|
* Get the User by resource.
|
|
*
|
|
* @param string $uri The User-Resource.
|
|
*
|
|
* @return User|WP_Error The User or WP_Error if user not found.
|
|
*/
|
|
public static function get_by_resource( $uri ) {
|
|
$uri = object_to_uri( $uri );
|
|
|
|
$scheme = 'acct';
|
|
$match = array();
|
|
// Try to extract the scheme and the host.
|
|
if ( preg_match( '/^([a-zA-Z^:]+):(.*)$/i', $uri, $match ) ) {
|
|
// Extract the scheme.
|
|
$scheme = \esc_attr( $match[1] );
|
|
}
|
|
|
|
switch ( $scheme ) {
|
|
// Check for http(s) URIs.
|
|
case 'http':
|
|
case 'https':
|
|
$resource_path = \wp_parse_url( $uri, PHP_URL_PATH );
|
|
|
|
if ( $resource_path ) {
|
|
$blog_path = \wp_parse_url( \home_url(), PHP_URL_PATH );
|
|
|
|
if ( $blog_path ) {
|
|
$resource_path = \str_replace( $blog_path, '', $resource_path );
|
|
}
|
|
|
|
$resource_path = \trim( $resource_path, '/' );
|
|
|
|
// Check for http(s)://blog.example.com/@username.
|
|
if ( str_starts_with( $resource_path, '@' ) ) {
|
|
$identifier = \str_replace( '@', '', $resource_path );
|
|
$identifier = \trim( $identifier, '/' );
|
|
|
|
return self::get_by_username( $identifier );
|
|
}
|
|
}
|
|
|
|
// Check for http(s)://blog.example.com/author/username.
|
|
$user_id = url_to_authorid( $uri );
|
|
|
|
if ( $user_id ) {
|
|
return self::get_by_id( $user_id );
|
|
}
|
|
|
|
// Check for http(s)://blog.example.com/.
|
|
if (
|
|
normalize_url( site_url() ) === normalize_url( $uri ) ||
|
|
normalize_url( home_url() ) === normalize_url( $uri )
|
|
) {
|
|
return self::get_by_id( self::BLOG_USER_ID );
|
|
}
|
|
|
|
return new WP_Error(
|
|
'activitypub_no_user_found',
|
|
\__( 'User not found', 'activitypub' ),
|
|
array( 'status' => 404 )
|
|
);
|
|
// Check for acct URIs.
|
|
case 'acct':
|
|
$uri = \str_replace( 'acct:', '', $uri );
|
|
$identifier = \substr( $uri, 0, \strrpos( $uri, '@' ) );
|
|
$host = normalize_host( \substr( \strrchr( $uri, '@' ), 1 ) );
|
|
$blog_host = normalize_host( \wp_parse_url( \home_url( '/' ), \PHP_URL_HOST ) );
|
|
|
|
if ( $blog_host !== $host ) {
|
|
return new WP_Error(
|
|
'activitypub_wrong_host',
|
|
\__( 'Resource host does not match blog host', 'activitypub' ),
|
|
array( 'status' => 404 )
|
|
);
|
|
}
|
|
|
|
// Prepare wildcards https://github.com/mastodon/mastodon/issues/22213.
|
|
if ( in_array( $identifier, array( '_', '*', '' ), true ) ) {
|
|
return self::get_by_id( self::BLOG_USER_ID );
|
|
}
|
|
|
|
return self::get_by_username( $identifier );
|
|
default:
|
|
return new WP_Error(
|
|
'activitypub_wrong_scheme',
|
|
\__( 'Wrong scheme', 'activitypub' ),
|
|
array( 'status' => 404 )
|
|
);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Get the User by resource.
|
|
*
|
|
* @param string $id The User-Resource.
|
|
*
|
|
* @return User|Blog|Application|WP_Error The User or WP_Error if user not found.
|
|
*/
|
|
public static function get_by_various( $id ) {
|
|
$user = null;
|
|
|
|
if ( is_numeric( $id ) ) {
|
|
$user = self::get_by_id( $id );
|
|
} elseif (
|
|
// Is URL.
|
|
filter_var( $id, FILTER_VALIDATE_URL ) ||
|
|
// Is acct.
|
|
str_starts_with( $id, 'acct:' ) ||
|
|
// Is email.
|
|
filter_var( $id, FILTER_VALIDATE_EMAIL )
|
|
) {
|
|
$user = self::get_by_resource( $id );
|
|
}
|
|
|
|
if ( $user && ! is_wp_error( $user ) ) {
|
|
return $user;
|
|
}
|
|
|
|
return self::get_by_username( $id );
|
|
}
|
|
|
|
/**
|
|
* Get the User collection.
|
|
*
|
|
* @return array The User collection.
|
|
*/
|
|
public static function get_collection() {
|
|
$users = \get_users(
|
|
array(
|
|
'capability__in' => array( 'activitypub' ),
|
|
)
|
|
);
|
|
|
|
$return = array();
|
|
|
|
foreach ( $users as $user ) {
|
|
$return[] = User::from_wp_user( $user->ID );
|
|
}
|
|
|
|
return $return;
|
|
}
|
|
}
|