2023-03-12 16:00:57 +01:00
// GoToSocial
// Copyright (C) GoToSocial Authors admin@gotosocial.org
// SPDX-License-Identifier: AGPL-3.0-or-later
//
// This program is free software: you can redistribute it and/or modify
// it under the terms of the GNU Affero General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// This program is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU Affero General Public License for more details.
//
// You should have received a copy of the GNU Affero General Public License
// along with this program. If not, see <http://www.gnu.org/licenses/>.
2022-06-23 16:54:54 +02:00
2021-06-23 16:35:57 +02:00
package instance
import (
2022-06-08 20:38:03 +02:00
"errors"
2022-11-08 18:11:06 +01:00
"fmt"
2021-06-23 16:35:57 +02:00
"net/http"
"github.com/gin-gonic/gin"
2023-01-02 13:10:50 +01:00
apimodel "github.com/superseriousbusiness/gotosocial/internal/api/model"
apiutil "github.com/superseriousbusiness/gotosocial/internal/api/util"
2022-11-08 18:11:06 +01:00
"github.com/superseriousbusiness/gotosocial/internal/config"
2022-06-08 20:38:03 +02:00
"github.com/superseriousbusiness/gotosocial/internal/gtserror"
2021-06-23 16:35:57 +02:00
"github.com/superseriousbusiness/gotosocial/internal/oauth"
)
2021-08-02 19:06:44 +02:00
// InstanceUpdatePATCHHandler swagger:operation PATCH /api/v1/instance instanceUpdate
//
// Update your instance information and/or upload a new avatar/header for the instance.
//
// This requires admin permissions on the instance.
//
2022-09-28 19:30:40 +02:00
// ---
// tags:
// - instance
2021-08-02 19:06:44 +02:00
//
2022-09-28 19:30:40 +02:00
// consumes:
// - multipart/form-data
2021-08-02 19:06:44 +02:00
//
2022-09-28 19:30:40 +02:00
// produces:
// - application/json
2021-08-02 19:06:44 +02:00
//
2022-09-28 19:30:40 +02:00
// parameters:
// -
// name: title
// in: formData
// description: Title to use for the instance.
// type: string
2024-03-06 18:05:45 +01:00
// maxLength: 40
2022-09-28 19:30:40 +02:00
// allowEmptyValue: true
// -
// name: contact_username
// in: formData
// description: >-
// Username of the contact account.
// This must be the username of an instance admin.
// type: string
// allowEmptyValue: true
// -
// name: contact_email
// in: formData
// description: Email address to use as the instance contact.
// type: string
// allowEmptyValue: true
// -
// name: short_description
// in: formData
// description: Short description of the instance.
// type: string
2024-03-06 18:05:45 +01:00
// maxLength: 500
2022-09-28 19:30:40 +02:00
// allowEmptyValue: true
// -
// name: description
// in: formData
// description: Longer description of the instance.
// type: string
2024-03-06 18:05:45 +01:00
// maxLength: 5000
2022-09-28 19:30:40 +02:00
// allowEmptyValue: true
// -
// name: terms
// in: formData
// description: Terms and conditions of the instance.
// type: string
2024-03-06 18:05:45 +01:00
// maxLength: 5000
2022-09-28 19:30:40 +02:00
// allowEmptyValue: true
// -
2022-11-08 18:11:06 +01:00
// name: thumbnail
2022-09-28 19:30:40 +02:00
// in: formData
2022-11-08 18:11:06 +01:00
// description: Thumbnail image to use for the instance.
2022-09-28 19:30:40 +02:00
// type: file
// -
2022-11-08 18:11:06 +01:00
// name: thumbnail_description
// in: formData
// description: Image description of the submitted instance thumbnail.
// type: string
// -
2022-09-28 19:30:40 +02:00
// name: header
// in: formData
2022-11-08 18:11:06 +01:00
// description: Header image to use for the instance.
2022-09-28 19:30:40 +02:00
// type: file
2021-08-02 19:06:44 +02:00
//
2022-09-28 19:30:40 +02:00
// security:
// - OAuth2 Bearer:
// - admin
2021-08-02 19:06:44 +02:00
//
2022-09-28 19:30:40 +02:00
// responses:
// '200':
// description: "The newly updated instance."
// schema:
2024-03-06 18:05:45 +01:00
// "$ref": "#/definitions/instanceV1"
2022-09-28 19:30:40 +02:00
// '400':
// description: bad request
// '401':
// description: unauthorized
// '403':
// description: forbidden
// '404':
// description: not found
// '406':
// description: not acceptable
// '500':
// description: internal server error
2021-06-23 16:35:57 +02:00
func ( m * Module ) InstanceUpdatePATCHHandler ( c * gin . Context ) {
authed , err := oauth . Authed ( c , true , true , true , true )
if err != nil {
2023-02-02 14:08:13 +01:00
apiutil . ErrorHandler ( c , gtserror . NewErrorUnauthorized ( err , err . Error ( ) ) , m . processor . InstanceGetV1 )
2021-06-23 16:35:57 +02:00
return
}
2023-01-02 13:10:50 +01:00
if _ , err := apiutil . NegotiateAccept ( c , apiutil . JSONAcceptHeaders ... ) ; err != nil {
2023-02-02 14:08:13 +01:00
apiutil . ErrorHandler ( c , gtserror . NewErrorNotAcceptable ( err , err . Error ( ) ) , m . processor . InstanceGetV1 )
2021-12-11 17:50:00 +01:00
return
}
2022-08-15 12:35:05 +02:00
if ! * authed . User . Admin {
2022-06-08 20:38:03 +02:00
err := errors . New ( "user is not an admin so cannot update instance settings" )
2023-02-02 14:08:13 +01:00
apiutil . ErrorHandler ( c , gtserror . NewErrorForbidden ( err , err . Error ( ) ) , m . processor . InstanceGetV1 )
2021-06-23 16:35:57 +02:00
return
}
2024-03-13 13:53:29 +01:00
if authed . Account . IsMoving ( ) {
apiutil . ForbiddenAfterMove ( c )
return
}
2023-01-02 13:10:50 +01:00
form := & apimodel . InstanceSettingsUpdateRequest { }
2022-06-08 20:38:03 +02:00
if err := c . ShouldBind ( & form ) ; err != nil {
2023-02-02 14:08:13 +01:00
apiutil . ErrorHandler ( c , gtserror . NewErrorBadRequest ( err , err . Error ( ) ) , m . processor . InstanceGetV1 )
2021-06-23 16:35:57 +02:00
return
}
2022-11-08 18:11:06 +01:00
if err := validateInstanceUpdate ( form ) ; err != nil {
2023-02-02 14:08:13 +01:00
apiutil . ErrorHandler ( c , gtserror . NewErrorBadRequest ( err , err . Error ( ) ) , m . processor . InstanceGetV1 )
2021-06-23 16:35:57 +02:00
return
}
2021-08-25 15:34:33 +02:00
i , errWithCode := m . processor . InstancePatch ( c . Request . Context ( ) , form )
2021-06-23 16:35:57 +02:00
if errWithCode != nil {
2023-02-02 14:08:13 +01:00
apiutil . ErrorHandler ( c , errWithCode , m . processor . InstanceGetV1 )
2021-06-23 16:35:57 +02:00
return
}
2023-11-27 15:00:57 +01:00
apiutil . JSON ( c , http . StatusOK , i )
2021-06-23 16:35:57 +02:00
}
2022-11-08 18:11:06 +01:00
2023-01-02 13:10:50 +01:00
func validateInstanceUpdate ( form * apimodel . InstanceSettingsUpdateRequest ) error {
2022-11-08 18:11:06 +01:00
if form . Title == nil &&
form . ContactUsername == nil &&
form . ContactEmail == nil &&
form . ShortDescription == nil &&
form . Description == nil &&
2024-12-02 12:24:48 +01:00
form . CustomCSS == nil &&
2022-11-08 18:11:06 +01:00
form . Terms == nil &&
form . Avatar == nil &&
form . AvatarDescription == nil &&
form . Header == nil {
return errors . New ( "empty form submitted" )
}
2023-02-04 15:53:11 +01:00
if form . AvatarDescription != nil {
maxDescriptionChars := config . GetMediaDescriptionMaxChars ( )
if length := len ( [ ] rune ( * form . AvatarDescription ) ) ; length > maxDescriptionChars {
return fmt . Errorf ( "avatar description length must be less than %d characters (inclusive), but provided avatar description was %d chars" , maxDescriptionChars , length )
2022-11-08 18:11:06 +01:00
}
}
return nil
}