@atproto/pds 0.5.11 → 0.5.14

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (322) hide show
  1. package/CHANGELOG.md +46 -0
  2. package/dist/api/app/bsky/notification/index.d.ts.map +1 -1
  3. package/dist/api/app/bsky/notification/index.js +2 -0
  4. package/dist/api/app/bsky/notification/index.js.map +1 -1
  5. package/dist/api/app/bsky/notification/unregisterPush.d.ts +4 -0
  6. package/dist/api/app/bsky/notification/unregisterPush.d.ts.map +1 -0
  7. package/dist/api/app/bsky/notification/unregisterPush.js +48 -0
  8. package/dist/api/app/bsky/notification/unregisterPush.js.map +1 -0
  9. package/package.json +42 -38
  10. package/build.templates.cjs +0 -22
  11. package/example.env +0 -42
  12. package/jest.config.cjs +0 -27
  13. package/src/account-manager/account-manager.ts +0 -916
  14. package/src/account-manager/db/index.ts +0 -21
  15. package/src/account-manager/db/migrations/001-init.ts +0 -115
  16. package/src/account-manager/db/migrations/002-account-deactivation.ts +0 -17
  17. package/src/account-manager/db/migrations/003-privileged-app-passwords.ts +0 -12
  18. package/src/account-manager/db/migrations/004-oauth.ts +0 -122
  19. package/src/account-manager/db/migrations/005-oauth-account-management.ts +0 -136
  20. package/src/account-manager/db/migrations/006-oauth-permission-sets.ts +0 -20
  21. package/src/account-manager/db/migrations/007-lexicon-failures-index.ts +0 -14
  22. package/src/account-manager/db/migrations/index.ts +0 -17
  23. package/src/account-manager/db/schema/account-device.ts +0 -14
  24. package/src/account-manager/db/schema/account.ts +0 -16
  25. package/src/account-manager/db/schema/actor.ts +0 -17
  26. package/src/account-manager/db/schema/app-password.ts +0 -13
  27. package/src/account-manager/db/schema/authorization-request.ts +0 -30
  28. package/src/account-manager/db/schema/authorized-client.ts +0 -23
  29. package/src/account-manager/db/schema/device.ts +0 -18
  30. package/src/account-manager/db/schema/email-token.ts +0 -19
  31. package/src/account-manager/db/schema/index.ts +0 -43
  32. package/src/account-manager/db/schema/invite-code.ts +0 -24
  33. package/src/account-manager/db/schema/lexicon.ts +0 -15
  34. package/src/account-manager/db/schema/refresh-token.ts +0 -11
  35. package/src/account-manager/db/schema/repo-root.ts +0 -12
  36. package/src/account-manager/db/schema/token.ts +0 -38
  37. package/src/account-manager/db/schema/used-refresh-token.ts +0 -13
  38. package/src/account-manager/helpers/account-device.ts +0 -63
  39. package/src/account-manager/helpers/account.ts +0 -355
  40. package/src/account-manager/helpers/auth.ts +0 -222
  41. package/src/account-manager/helpers/authorization-request.ts +0 -90
  42. package/src/account-manager/helpers/authorized-client.ts +0 -75
  43. package/src/account-manager/helpers/device.ts +0 -47
  44. package/src/account-manager/helpers/email-token.ts +0 -87
  45. package/src/account-manager/helpers/invite.ts +0 -263
  46. package/src/account-manager/helpers/lexicon.ts +0 -67
  47. package/src/account-manager/helpers/password.ts +0 -136
  48. package/src/account-manager/helpers/repo.ts +0 -24
  49. package/src/account-manager/helpers/scrypt.ts +0 -53
  50. package/src/account-manager/helpers/token.ts +0 -158
  51. package/src/account-manager/helpers/used-refresh-token.ts +0 -30
  52. package/src/account-manager/oauth-store.ts +0 -880
  53. package/src/account-manager/scope-reference-getter.ts +0 -106
  54. package/src/actor-store/actor-store-reader.ts +0 -45
  55. package/src/actor-store/actor-store-resources.ts +0 -8
  56. package/src/actor-store/actor-store-transactor.ts +0 -31
  57. package/src/actor-store/actor-store-writer.ts +0 -17
  58. package/src/actor-store/actor-store.ts +0 -210
  59. package/src/actor-store/blob/reader.ts +0 -160
  60. package/src/actor-store/blob/transactor.ts +0 -383
  61. package/src/actor-store/db/index.ts +0 -20
  62. package/src/actor-store/db/migrations/001-init.ts +0 -105
  63. package/src/actor-store/db/migrations/index.ts +0 -5
  64. package/src/actor-store/db/schema/account-pref.ts +0 -11
  65. package/src/actor-store/db/schema/backlink.ts +0 -9
  66. package/src/actor-store/db/schema/blob.ts +0 -14
  67. package/src/actor-store/db/schema/index.ts +0 -23
  68. package/src/actor-store/db/schema/record-blob.ts +0 -8
  69. package/src/actor-store/db/schema/record.ts +0 -14
  70. package/src/actor-store/db/schema/repo-block.ts +0 -10
  71. package/src/actor-store/db/schema/repo-root.ts +0 -10
  72. package/src/actor-store/migrate.ts +0 -39
  73. package/src/actor-store/preference/reader.ts +0 -48
  74. package/src/actor-store/preference/transactor.ts +0 -55
  75. package/src/actor-store/preference/util.ts +0 -39
  76. package/src/actor-store/record/reader.ts +0 -374
  77. package/src/actor-store/record/transactor.ts +0 -111
  78. package/src/actor-store/repo/reader.ts +0 -31
  79. package/src/actor-store/repo/sql-repo-reader.ts +0 -150
  80. package/src/actor-store/repo/sql-repo-transactor.ts +0 -105
  81. package/src/actor-store/repo/transactor.ts +0 -227
  82. package/src/api/app/bsky/actor/getPreferences.ts +0 -57
  83. package/src/api/app/bsky/actor/getProfile.ts +0 -41
  84. package/src/api/app/bsky/actor/getProfiles.ts +0 -51
  85. package/src/api/app/bsky/actor/index.ts +0 -13
  86. package/src/api/app/bsky/actor/putPreferences.ts +0 -62
  87. package/src/api/app/bsky/feed/getActorLikes.ts +0 -63
  88. package/src/api/app/bsky/feed/getAuthorFeed.ts +0 -84
  89. package/src/api/app/bsky/feed/getFeed.ts +0 -47
  90. package/src/api/app/bsky/feed/getPostThread.ts +0 -251
  91. package/src/api/app/bsky/feed/getTimeline.ts +0 -50
  92. package/src/api/app/bsky/feed/index.ts +0 -15
  93. package/src/api/app/bsky/index.ts +0 -11
  94. package/src/api/app/bsky/notification/index.ts +0 -7
  95. package/src/api/app/bsky/notification/registerPush.ts +0 -71
  96. package/src/api/app/bsky/util/resolver.ts +0 -20
  97. package/src/api/com/atproto/admin/deleteAccount.ts +0 -22
  98. package/src/api/com/atproto/admin/disableAccountInvites.ts +0 -18
  99. package/src/api/com/atproto/admin/disableInviteCodes.ts +0 -21
  100. package/src/api/com/atproto/admin/enableAccountInvites.ts +0 -18
  101. package/src/api/com/atproto/admin/getAccountInfo.ts +0 -32
  102. package/src/api/com/atproto/admin/getAccountInfos.ts +0 -34
  103. package/src/api/com/atproto/admin/getInviteCodes.ts +0 -126
  104. package/src/api/com/atproto/admin/getSubjectStatus.ts +0 -76
  105. package/src/api/com/atproto/admin/index.ts +0 -31
  106. package/src/api/com/atproto/admin/sendEmail.ts +0 -47
  107. package/src/api/com/atproto/admin/updateAccountEmail.ts +0 -32
  108. package/src/api/com/atproto/admin/updateAccountHandle.ts +0 -47
  109. package/src/api/com/atproto/admin/updateAccountPassword.ts +0 -34
  110. package/src/api/com/atproto/admin/updateSubjectStatus.ts +0 -68
  111. package/src/api/com/atproto/admin/util.ts +0 -66
  112. package/src/api/com/atproto/identity/getRecommendedDidCredentials.ts +0 -50
  113. package/src/api/com/atproto/identity/index.ts +0 -17
  114. package/src/api/com/atproto/identity/requestPlcOperationSignature.ts +0 -59
  115. package/src/api/com/atproto/identity/resolveHandle.ts +0 -50
  116. package/src/api/com/atproto/identity/signPlcOperation.ts +0 -85
  117. package/src/api/com/atproto/identity/submitPlcOperation.ts +0 -65
  118. package/src/api/com/atproto/identity/updateHandle.ts +0 -66
  119. package/src/api/com/atproto/index.ts +0 -19
  120. package/src/api/com/atproto/moderation/createReport.ts +0 -41
  121. package/src/api/com/atproto/moderation/index.ts +0 -7
  122. package/src/api/com/atproto/repo/applyWrites.ts +0 -226
  123. package/src/api/com/atproto/repo/createRecord.ts +0 -143
  124. package/src/api/com/atproto/repo/deleteRecord.ts +0 -122
  125. package/src/api/com/atproto/repo/describeRepo.ts +0 -43
  126. package/src/api/com/atproto/repo/getRecord.ts +0 -40
  127. package/src/api/com/atproto/repo/importRepo.ts +0 -101
  128. package/src/api/com/atproto/repo/index.ts +0 -25
  129. package/src/api/com/atproto/repo/listMissingBlobs.ts +0 -29
  130. package/src/api/com/atproto/repo/listRecords.ts +0 -36
  131. package/src/api/com/atproto/repo/putRecord.ts +0 -211
  132. package/src/api/com/atproto/repo/uploadBlob.ts +0 -60
  133. package/src/api/com/atproto/server/activateAccount.ts +0 -37
  134. package/src/api/com/atproto/server/checkAccountStatus.ts +0 -51
  135. package/src/api/com/atproto/server/confirmEmail.ts +0 -39
  136. package/src/api/com/atproto/server/createAccount.ts +0 -327
  137. package/src/api/com/atproto/server/createAppPassword.ts +0 -53
  138. package/src/api/com/atproto/server/createInviteCode.ts +0 -38
  139. package/src/api/com/atproto/server/createInviteCodes.ts +0 -42
  140. package/src/api/com/atproto/server/createSession.ts +0 -97
  141. package/src/api/com/atproto/server/deactivateAccount.ts +0 -41
  142. package/src/api/com/atproto/server/deleteAccount.ts +0 -85
  143. package/src/api/com/atproto/server/deleteSession.ts +0 -23
  144. package/src/api/com/atproto/server/describeServer.ts +0 -29
  145. package/src/api/com/atproto/server/getAccountInviteCodes.ts +0 -142
  146. package/src/api/com/atproto/server/getServiceAuth.ts +0 -111
  147. package/src/api/com/atproto/server/getSession.ts +0 -80
  148. package/src/api/com/atproto/server/index.ts +0 -55
  149. package/src/api/com/atproto/server/listAppPasswords.ts +0 -45
  150. package/src/api/com/atproto/server/refreshSession.ts +0 -72
  151. package/src/api/com/atproto/server/requestAccountDelete.ts +0 -66
  152. package/src/api/com/atproto/server/requestEmailConfirmation.ts +0 -68
  153. package/src/api/com/atproto/server/requestEmailUpdate.ts +0 -86
  154. package/src/api/com/atproto/server/requestPasswordReset.ts +0 -52
  155. package/src/api/com/atproto/server/reserveSigningKey.ts +0 -15
  156. package/src/api/com/atproto/server/resetPassword.ts +0 -50
  157. package/src/api/com/atproto/server/revokeAppPassword.ts +0 -42
  158. package/src/api/com/atproto/server/updateEmail.ts +0 -52
  159. package/src/api/com/atproto/server/util.ts +0 -136
  160. package/src/api/com/atproto/sync/deprecated/getCheckout.ts +0 -27
  161. package/src/api/com/atproto/sync/deprecated/getHead.ts +0 -33
  162. package/src/api/com/atproto/sync/getBlob.ts +0 -61
  163. package/src/api/com/atproto/sync/getBlocks.ts +0 -37
  164. package/src/api/com/atproto/sync/getLatestCommit.ts +0 -33
  165. package/src/api/com/atproto/sync/getRecord.ts +0 -49
  166. package/src/api/com/atproto/sync/getRepo.ts +0 -75
  167. package/src/api/com/atproto/sync/getRepoStatus.ts +0 -34
  168. package/src/api/com/atproto/sync/index.ts +0 -27
  169. package/src/api/com/atproto/sync/listBlobs.ts +0 -33
  170. package/src/api/com/atproto/sync/listRepos.ts +0 -74
  171. package/src/api/com/atproto/sync/subscribeRepos.ts +0 -73
  172. package/src/api/com/atproto/sync/util.ts +0 -37
  173. package/src/api/com/atproto/temp/checkSignupQueue.ts +0 -34
  174. package/src/api/com/atproto/temp/index.ts +0 -7
  175. package/src/api/index.ts +0 -10
  176. package/src/api/proxy.ts +0 -44
  177. package/src/app-view.ts +0 -24
  178. package/src/auth-output.ts +0 -52
  179. package/src/auth-routes.ts +0 -64
  180. package/src/auth-scope.ts +0 -40
  181. package/src/auth-verifier.ts +0 -668
  182. package/src/background.ts +0 -65
  183. package/src/basic-routes.ts +0 -52
  184. package/src/bsky-app-view.ts +0 -33
  185. package/src/config/config.ts +0 -553
  186. package/src/config/env.ts +0 -167
  187. package/src/config/index.ts +0 -3
  188. package/src/config/secrets.ts +0 -54
  189. package/src/context.ts +0 -523
  190. package/src/crawlers.ts +0 -46
  191. package/src/db/cast.ts +0 -52
  192. package/src/db/db.ts +0 -140
  193. package/src/db/index.ts +0 -4
  194. package/src/db/migrator.ts +0 -40
  195. package/src/db/pagination.ts +0 -132
  196. package/src/db/tables/moderation.ts +0 -80
  197. package/src/db/util.ts +0 -108
  198. package/src/did-cache/db/index.ts +0 -21
  199. package/src/did-cache/db/migrations.ts +0 -17
  200. package/src/did-cache/db/schema.ts +0 -9
  201. package/src/did-cache/index.ts +0 -131
  202. package/src/disk-blobstore.ts +0 -172
  203. package/src/error.ts +0 -19
  204. package/src/handle/explicit-slurs.ts +0 -22
  205. package/src/handle/index.ts +0 -49
  206. package/src/handle/reserved.ts +0 -1059
  207. package/src/image/image-url-builder.ts +0 -16
  208. package/src/index.ts +0 -189
  209. package/src/lexicons.ts +0 -4
  210. package/src/logger.ts +0 -35
  211. package/src/mailer/index.ts +0 -111
  212. package/src/mailer/moderation.ts +0 -33
  213. package/src/mailer/templates/confirm-email.d.ts +0 -4
  214. package/src/mailer/templates/confirm-email.hbs +0 -158
  215. package/src/mailer/templates/delete-account.d.ts +0 -4
  216. package/src/mailer/templates/delete-account.hbs +0 -156
  217. package/src/mailer/templates/plc-operation.d.ts +0 -4
  218. package/src/mailer/templates/plc-operation.hbs +0 -153
  219. package/src/mailer/templates/reset-password.d.ts +0 -4
  220. package/src/mailer/templates/reset-password.hbs +0 -154
  221. package/src/mailer/templates/update-email.d.ts +0 -4
  222. package/src/mailer/templates/update-email.hbs +0 -153
  223. package/src/mailer/templates.ts +0 -17
  224. package/src/pipethrough.ts +0 -716
  225. package/src/rate-limits.ts +0 -59
  226. package/src/read-after-write/index.ts +0 -3
  227. package/src/read-after-write/types.ts +0 -35
  228. package/src/read-after-write/util.ts +0 -101
  229. package/src/read-after-write/viewer.ts +0 -290
  230. package/src/redis.ts +0 -25
  231. package/src/repo/index.ts +0 -2
  232. package/src/repo/prepare.ts +0 -266
  233. package/src/repo/types.ts +0 -65
  234. package/src/scripts/README.md +0 -40
  235. package/src/scripts/index.ts +0 -20
  236. package/src/scripts/publish-identity.ts +0 -60
  237. package/src/scripts/rebuild-repo.ts +0 -119
  238. package/src/scripts/rotate-keys.ts +0 -146
  239. package/src/scripts/sequencer-recovery/index.ts +0 -23
  240. package/src/scripts/sequencer-recovery/recoverer.ts +0 -297
  241. package/src/scripts/sequencer-recovery/recovery-db.ts +0 -65
  242. package/src/scripts/sequencer-recovery/repair-repos.ts +0 -49
  243. package/src/scripts/sequencer-recovery/user-queues.ts +0 -44
  244. package/src/scripts/util.ts +0 -7
  245. package/src/sequencer/db/index.ts +0 -21
  246. package/src/sequencer/db/migrations/001-init.ts +0 -35
  247. package/src/sequencer/db/migrations/index.ts +0 -5
  248. package/src/sequencer/db/schema.ts +0 -19
  249. package/src/sequencer/events.ts +0 -199
  250. package/src/sequencer/index.ts +0 -3
  251. package/src/sequencer/outbox.ts +0 -123
  252. package/src/sequencer/sequencer.ts +0 -290
  253. package/src/util/compression.ts +0 -16
  254. package/src/util/debug.ts +0 -10
  255. package/src/util/http.ts +0 -31
  256. package/src/util/types.ts +0 -7
  257. package/src/well-known.ts +0 -30
  258. package/test.env +0 -2
  259. package/tests/__snapshots__/takedown-appeal.test.ts.snap +0 -43
  260. package/tests/_oauth_client_assets_middleware.ts +0 -23
  261. package/tests/_puppeteer.ts +0 -147
  262. package/tests/_types.d.ts +0 -16
  263. package/tests/_util.ts +0 -191
  264. package/tests/account-deactivation.test.ts +0 -204
  265. package/tests/account-deletion.test.ts +0 -300
  266. package/tests/account-manager.test.ts +0 -462
  267. package/tests/account-migration.test.ts +0 -221
  268. package/tests/account-status.test.ts +0 -206
  269. package/tests/account.test.ts +0 -595
  270. package/tests/app-passwords.test.ts +0 -262
  271. package/tests/auth.test.ts +0 -405
  272. package/tests/blob-deletes.test.ts +0 -204
  273. package/tests/create-post.test.ts +0 -79
  274. package/tests/crud.test.ts +0 -1595
  275. package/tests/db.test.ts +0 -170
  276. package/tests/email-confirmation.test.ts +0 -227
  277. package/tests/entryway-mock.ts +0 -323
  278. package/tests/entryway.test.ts +0 -145
  279. package/tests/file-uploads.test.ts +0 -301
  280. package/tests/get-service-auth.test.ts +0 -81
  281. package/tests/handle-validation.test.ts +0 -56
  282. package/tests/handles.test.ts +0 -274
  283. package/tests/invite-codes.test.ts +0 -367
  284. package/tests/invites-admin.test.ts +0 -252
  285. package/tests/moderation.test.ts +0 -280
  286. package/tests/moderator-auth.test.ts +0 -177
  287. package/tests/oauth.test.ts +0 -334
  288. package/tests/plc-operations.test.ts +0 -239
  289. package/tests/preferences.test.ts +0 -352
  290. package/tests/proxied/__snapshots__/admin.test.ts.snap +0 -516
  291. package/tests/proxied/__snapshots__/feedgen.test.ts.snap +0 -215
  292. package/tests/proxied/__snapshots__/views.test.ts.snap +0 -4456
  293. package/tests/proxied/admin.test.ts +0 -340
  294. package/tests/proxied/feedgen.test.ts +0 -66
  295. package/tests/proxied/notif.test.ts +0 -85
  296. package/tests/proxied/procedures.test.ts +0 -175
  297. package/tests/proxied/proxy-catchall.test.ts +0 -256
  298. package/tests/proxied/proxy-header.test.ts +0 -239
  299. package/tests/proxied/proxy-oauth-aud.test.ts +0 -182
  300. package/tests/proxied/read-after-write.test.ts +0 -382
  301. package/tests/proxied/views.test.ts +0 -608
  302. package/tests/races.test.ts +0 -89
  303. package/tests/rate-limits.test.ts +0 -70
  304. package/tests/recovery.test.ts +0 -180
  305. package/tests/seeds/basic.ts +0 -165
  306. package/tests/seeds/follows.ts +0 -57
  307. package/tests/seeds/likes.ts +0 -14
  308. package/tests/seeds/reposts.ts +0 -18
  309. package/tests/seeds/thread.ts +0 -40
  310. package/tests/seeds/users-bulk.ts +0 -246
  311. package/tests/seeds/users.ts +0 -67
  312. package/tests/sequencer.test.ts +0 -251
  313. package/tests/server.test.ts +0 -151
  314. package/tests/sync/invertible-ops.test.ts +0 -99
  315. package/tests/sync/list.test.ts +0 -43
  316. package/tests/sync/subscribe-repos.test.ts +0 -672
  317. package/tests/sync/sync.test.ts +0 -316
  318. package/tests/takedown-appeal.test.ts +0 -166
  319. package/tsconfig.build.json +0 -9
  320. package/tsconfig.build.tsbuildinfo +0 -1
  321. package/tsconfig.json +0 -7
  322. package/tsconfig.tests.json +0 -8
@@ -1,211 +0,0 @@
1
- import { atUri } from '@atproto/lex'
2
- import {
3
- LegacyBlobRef,
4
- LexMap,
5
- TypedBlobRef,
6
- isLegacyBlobRef,
7
- parseCid,
8
- } from '@atproto/lex-data'
9
- import {
10
- AuthRequiredError,
11
- InvalidRequestError,
12
- Server,
13
- } from '@atproto/xrpc-server'
14
- import { ActorStoreTransactor } from '../../../../actor-store/actor-store-transactor.js'
15
- import { AppContext } from '../../../../context.js'
16
- import { app, com } from '../../../../lexicons/index.js'
17
- import { dbLogger } from '../../../../logger.js'
18
- import {
19
- BadCommitSwapError,
20
- BadRecordSwapError,
21
- InvalidRecordError,
22
- PreparedCreate,
23
- PreparedUpdate,
24
- prepareCreate,
25
- prepareUpdate,
26
- } from '../../../../repo/index.js'
27
-
28
- export default function (server: Server, ctx: AppContext) {
29
- server.add(com.atproto.repo.putRecord, {
30
- auth: ctx.authVerifier.authorization({
31
- // @NOTE the "checkTakedown" and "checkDeactivated" checks are typically
32
- // performed during auth. However, since this method's "repo" parameter
33
- // can be a handle, we will need to fetch the account again to ensure that
34
- // the handle matches the DID from the request's credentials. In order to
35
- // avoid fetching the account twice (during auth, and then again in the
36
- // controller), the checks are disabled here:
37
-
38
- // checkTakedown: true,
39
- // checkDeactivated: true,
40
- authorize: () => {
41
- // Performed in the handler as it requires the request body
42
- },
43
- }),
44
- rateLimit: [
45
- {
46
- name: 'repo-write-hour',
47
- calcKey: ({ auth }) => auth.credentials.did,
48
- calcPoints: () => 2,
49
- },
50
- {
51
- name: 'repo-write-day',
52
- calcKey: ({ auth }) => auth.credentials.did,
53
- calcPoints: () => 2,
54
- },
55
- ],
56
- opts: {
57
- jsonLimit: 1_000_000,
58
- },
59
- handler: async ({ auth, input }) => {
60
- const {
61
- repo,
62
- collection,
63
- rkey,
64
- record,
65
- validate,
66
- swapCommit,
67
- swapRecord,
68
- } = input.body
69
-
70
- const account = await ctx.authVerifier.findAccount(repo, {
71
- checkDeactivated: true,
72
- checkTakedown: true,
73
- })
74
-
75
- const did = account.did
76
- if (did !== auth.credentials.did) {
77
- throw new AuthRequiredError()
78
- }
79
-
80
- // We can't compute permissions based on the request payload ("input") in
81
- // the 'auth' phase, so we do it here.
82
- if (auth.credentials.type === 'oauth') {
83
- auth.credentials.permissions.assertRepo({
84
- action: 'create',
85
- collection,
86
- })
87
- auth.credentials.permissions.assertRepo({
88
- action: 'update',
89
- collection,
90
- })
91
- }
92
-
93
- const uri = atUri(did, collection, rkey)
94
- const swapCommitCid = swapCommit ? parseCid(swapCommit) : undefined
95
- const swapRecordCid =
96
- typeof swapRecord === 'string' ? parseCid(swapRecord) : swapRecord
97
-
98
- const { commit, write } = await ctx.actorStore.transact(
99
- did,
100
- async (actorTxn) => {
101
- const current = await actorTxn.record.getRecord(uri, null, true)
102
- const isUpdate = current !== null
103
-
104
- // @TODO temporaray hack for legacy blob refs in profiles - remove after migrating legacy blobs
105
- if (isUpdate && collection === app.bsky.actor.profile.$type) {
106
- await updateProfileLegacyBlobRef(actorTxn, record)
107
- }
108
-
109
- const writeInfo = {
110
- did,
111
- collection,
112
- rkey,
113
- record,
114
- swapCid: swapRecordCid,
115
- validate,
116
- }
117
-
118
- let write: PreparedCreate | PreparedUpdate
119
- try {
120
- write = isUpdate
121
- ? await prepareUpdate(writeInfo)
122
- : await prepareCreate(writeInfo)
123
- } catch (err) {
124
- if (err instanceof InvalidRecordError) {
125
- throw new InvalidRequestError(err.message)
126
- }
127
- throw err
128
- }
129
-
130
- // no-op
131
- if (current && current.cid === write.cid.toString()) {
132
- return {
133
- commit: null,
134
- write,
135
- }
136
- }
137
-
138
- const commit = await actorTxn.repo
139
- .processWrites([write], swapCommitCid)
140
- .catch((err) => {
141
- if (
142
- err instanceof BadCommitSwapError ||
143
- err instanceof BadRecordSwapError
144
- ) {
145
- throw new InvalidRequestError(err.message, 'InvalidSwap')
146
- } else {
147
- throw err
148
- }
149
- })
150
-
151
- await ctx.sequencer.sequenceCommit(did, commit)
152
-
153
- return { commit, write }
154
- },
155
- )
156
-
157
- if (commit !== null) {
158
- await ctx.accountManager
159
- .updateRepoRoot(did, commit.cid, commit.rev)
160
- .catch((err) => {
161
- dbLogger.error(
162
- { err, did, cid: commit.cid, rev: commit.rev },
163
- 'failed to update account root',
164
- )
165
- })
166
- }
167
-
168
- return {
169
- encoding: 'application/json',
170
- body: {
171
- uri: write.uri.toString(),
172
- cid: write.cid.toString(),
173
- commit: commit
174
- ? {
175
- cid: commit.cid.toString(),
176
- rev: commit.rev,
177
- }
178
- : undefined,
179
- validationStatus: write.validationStatus,
180
- },
181
- }
182
- },
183
- })
184
- }
185
-
186
- // WARNING: mutates object
187
- async function updateProfileLegacyBlobRef(
188
- actorStore: ActorStoreTransactor,
189
- record: LexMap,
190
- ): Promise<void> {
191
- if (isLegacyBlobRef(record.avatar)) {
192
- record.avatar = await upgradeLegacyBlob(actorStore, record.avatar)
193
- }
194
- if (isLegacyBlobRef(record.banner)) {
195
- record.banner = await upgradeLegacyBlob(actorStore, record.banner)
196
- }
197
- }
198
-
199
- async function upgradeLegacyBlob(
200
- actorStore: ActorStoreTransactor,
201
- legacyBlob: LegacyBlobRef,
202
- ): Promise<TypedBlobRef> {
203
- const ref = parseCid(legacyBlob.cid)
204
- const blob = await actorStore.repo.blob.getBlobMetadata(ref)
205
- return {
206
- $type: 'blob',
207
- mimeType: legacyBlob.mimeType,
208
- ref,
209
- size: blob.size,
210
- }
211
- }
@@ -1,60 +0,0 @@
1
- import { DAY } from '@atproto/common'
2
- import {
3
- Server,
4
- UpstreamTimeoutError,
5
- parseReqEncoding,
6
- } from '@atproto/xrpc-server'
7
- import { AppContext } from '../../../../context.js'
8
- import { com } from '../../../../lexicons/index.js'
9
-
10
- export default function (server: Server, ctx: AppContext) {
11
- server.add(com.atproto.repo.uploadBlob, {
12
- auth: ctx.authVerifier.authorizationOrUserServiceAuth({
13
- checkTakedown: true,
14
- authorize: (permissions, { req }) => {
15
- const encoding = parseReqEncoding(req)
16
- permissions.assertBlob({ mime: encoding })
17
- },
18
- }),
19
- rateLimit: {
20
- durationMs: DAY,
21
- points: 1000,
22
- },
23
- handler: async ({ auth, input }) => {
24
- const requester = auth.credentials.did
25
-
26
- const blob = await ctx.actorStore.writeNoTransaction(
27
- requester,
28
- async (store) => {
29
- const metadata = await store.repo.blob
30
- .uploadBlobAndGetMetadata(input.encoding, input.body)
31
- .catch(throwAbortAsUpstreamError)
32
-
33
- return store.transact(async (actorTxn) => {
34
- const blobRef =
35
- await actorTxn.repo.blob.trackUntetheredBlob(metadata)
36
-
37
- // make the blob permanent if an associated record is already indexed
38
- if (await actorTxn.repo.blob.hasRecordsForBlob(blobRef.ref)) {
39
- await actorTxn.repo.blob.verifyBlobAndMakePermanent(blobRef)
40
- }
41
-
42
- return blobRef
43
- })
44
- },
45
- )
46
-
47
- return {
48
- encoding: 'application/json' as const,
49
- body: { blob },
50
- }
51
- },
52
- })
53
- }
54
-
55
- function throwAbortAsUpstreamError(err: unknown): never {
56
- if (err?.['name'] === 'AbortError') {
57
- throw new UpstreamTimeoutError('Operation timed out, please try again.')
58
- }
59
- throw err
60
- }
@@ -1,37 +0,0 @@
1
- import { ForbiddenError, Server } from '@atproto/xrpc-server'
2
- import { ACCESS_FULL } from '../../../../auth-scope.js'
3
- import { AppContext } from '../../../../context.js'
4
- import { com } from '../../../../lexicons/index.js'
5
-
6
- export default function (server: Server, ctx: AppContext) {
7
- const { entrywayClient } = ctx
8
-
9
- const auth = ctx.authVerifier.authorization({
10
- scopes: ACCESS_FULL,
11
- authorize: () => {
12
- throw new ForbiddenError(
13
- 'OAuth credentials are not supported for this endpoint',
14
- )
15
- },
16
- })
17
-
18
- if (entrywayClient) {
19
- // in the case of entryway, the full flow is activateAccount (PDS) -> activateAccount (Entryway) -> updateSubjectStatus(PDS)
20
- server.add(com.atproto.server.activateAccount, {
21
- auth,
22
- handler: async ({ req }) => {
23
- const { headers } = ctx.entrywayPassthruHeaders(req)
24
- await entrywayClient.xrpc(com.atproto.server.activateAccount, {
25
- headers,
26
- })
27
- },
28
- })
29
- } else {
30
- server.add(com.atproto.server.activateAccount, {
31
- auth,
32
- handler: async ({ auth }) => {
33
- await ctx.accountManager.activateAccount(auth.credentials.did)
34
- },
35
- })
36
- }
37
- }
@@ -1,51 +0,0 @@
1
- import { Server } from '@atproto/xrpc-server'
2
- import { AppContext } from '../../../../context.js'
3
- import { com } from '../../../../lexicons/index.js'
4
- import { isValidDidDocForService } from './util.js'
5
-
6
- export default function (server: Server, ctx: AppContext) {
7
- server.add(com.atproto.server.checkAccountStatus, {
8
- auth: ctx.authVerifier.authorization({
9
- authorize: () => {
10
- // always allow
11
- },
12
- }),
13
- handler: async ({ auth }) => {
14
- const requester = auth.credentials.did
15
- const [
16
- repoRoot,
17
- repoBlocks,
18
- indexedRecords,
19
- importedBlobs,
20
- expectedBlobs,
21
- ] = await ctx.actorStore.read(requester, async (store) => {
22
- return await Promise.all([
23
- store.repo.storage.getRootDetailed(),
24
- store.repo.storage.countBlocks(),
25
- store.record.recordCount(),
26
- store.repo.blob.blobCount(),
27
- store.repo.blob.recordBlobCount(),
28
- ])
29
- })
30
- const [activated, validDid] = await Promise.all([
31
- ctx.accountManager.isAccountActivated(requester),
32
- isValidDidDocForService(ctx, requester),
33
- ])
34
-
35
- return {
36
- encoding: 'application/json' as const,
37
- body: {
38
- activated,
39
- validDid,
40
- repoCommit: repoRoot.cid.toString(),
41
- repoRev: repoRoot.rev,
42
- repoBlocks,
43
- indexedRecords,
44
- privateStateValues: 0,
45
- expectedBlobs,
46
- importedBlobs,
47
- },
48
- }
49
- },
50
- })
51
- }
@@ -1,39 +0,0 @@
1
- import { Server } from '@atproto/xrpc-server'
2
- import { AppContext } from '../../../../context.js'
3
- import { com } from '../../../../lexicons/index.js'
4
- import { requestEmailConfirmationAuth } from './requestEmailConfirmation.js'
5
-
6
- export default function (server: Server, ctx: AppContext) {
7
- const { entrywayClient } = ctx
8
-
9
- // @NOTE Ensure that both endpoints use the same authentication logic
10
- const auth = requestEmailConfirmationAuth(ctx)
11
-
12
- if (entrywayClient) {
13
- server.add(com.atproto.server.confirmEmail, {
14
- auth,
15
- handler: async ({ auth, input: { body }, req }) => {
16
- const { headers } = await ctx.entrywayAuthHeaders(
17
- req,
18
- auth.credentials.did,
19
- com.atproto.server.confirmEmail.$lxm,
20
- )
21
- await entrywayClient.xrpc(com.atproto.server.confirmEmail, {
22
- headers,
23
- body,
24
- })
25
- },
26
- })
27
- } else {
28
- server.add(com.atproto.server.confirmEmail, {
29
- auth,
30
- handler: async ({ auth, input: { body } }) => {
31
- await ctx.accountManager.confirmEmail(
32
- auth.credentials.did,
33
- body.email,
34
- body.token,
35
- )
36
- },
37
- })
38
- }
39
- }