# Pleroma: A lightweight social networking server # Copyright © 2017-2022 Pleroma Authors # SPDX-License-Identifier: AGPL-3.0-only defmodule Pleroma.Web.AdminAPI.ReportController do use Pleroma.Web, :controller import Pleroma.Web.ControllerHelper, only: [json_response: 3] alias Pleroma.Activity alias Pleroma.ModerationLog alias Pleroma.ReportNote alias Pleroma.Web.ActivityPub.Utils alias Pleroma.Web.AdminAPI alias Pleroma.Web.AdminAPI.Report alias Pleroma.Web.CommonAPI alias Pleroma.Web.Plugs.OAuthScopesPlug require Logger plug(Pleroma.Web.ApiSpec.CastAndValidate, replace_params: false) plug(OAuthScopesPlug, %{scopes: ["admin:read:reports"]} when action in [:index, :show]) plug( OAuthScopesPlug, %{scopes: ["admin:write:reports"]} when action in [:update, :notes_create, :notes_delete] ) action_fallback(AdminAPI.FallbackController) defdelegate open_api_operation(action), to: Pleroma.Web.ApiSpec.Admin.ReportOperation def index(%{private: %{open_api_spex: %{params: params}}} = conn, _) do reports = Utils.get_reports(params, params.page, params.page_size) render(conn, "index.json", reports: reports) end def show(%{private: %{open_api_spex: %{params: %{id: id}}}} = conn, _) do with %Activity{} = report <- Activity.get_report(id) do render(conn, "show.json", Report.extract_report_info(report)) else _ -> {:error, :not_found} end end def update( %{ assigns: %{user: admin}, private: %{open_api_spex: %{body_params: %{reports: reports}}} } = conn, _ ) do result = Enum.map(reports, fn report -> case CommonAPI.update_report_state(report.id, report.state) do {:ok, activity} -> report = Activity.get_by_id_with_user_actor(activity.id) ModerationLog.insert_log(%{ action: "report_update", actor: admin, subject: activity, subject_actor: report.user_actor }) activity {:error, message} -> %{id: report.id, error: message} end end) if Enum.any?(result, &Map.has_key?(&1, :error)) do json_response(conn, :bad_request, result) else json_response(conn, :no_content, "") end end def notes_create( %{ assigns: %{user: user}, private: %{open_api_spex: %{body_params: %{content: content}, params: %{id: report_id}}} } = conn, _ ) do with {:ok, _} <- ReportNote.create(user.id, report_id, content), report <- Activity.get_by_id_with_user_actor(report_id) do ModerationLog.insert_log(%{ action: "report_note", actor: user, subject: report, subject_actor: report.user_actor, text: content }) json_response(conn, :no_content, "") else _ -> json_response(conn, :bad_request, "") end end def notes_delete( %{ assigns: %{user: user}, private: %{ open_api_spex: %{ params: %{ id: note_id, report_id: report_id } } } } = conn, _ ) do with {:ok, note} <- ReportNote.destroy(note_id), report <- Activity.get_by_id_with_user_actor(report_id) do ModerationLog.insert_log(%{ action: "report_note_delete", actor: user, subject: report, subject_actor: report.user_actor, text: note.content }) json_response(conn, :no_content, "") else _ -> json_response(conn, :bad_request, "") end end end