@atproto/pds 0.5.12 → 0.5.15

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (326) hide show
  1. package/CHANGELOG.md +53 -0
  2. package/dist/api/app/bsky/notification/index.d.ts.map +1 -1
  3. package/dist/api/app/bsky/notification/index.js +2 -0
  4. package/dist/api/app/bsky/notification/index.js.map +1 -1
  5. package/dist/api/app/bsky/notification/unregisterPush.d.ts +4 -0
  6. package/dist/api/app/bsky/notification/unregisterPush.d.ts.map +1 -0
  7. package/dist/api/app/bsky/notification/unregisterPush.js +48 -0
  8. package/dist/api/app/bsky/notification/unregisterPush.js.map +1 -0
  9. package/dist/lexicons/app/bsky/actor/defs.defs.d.ts +6 -0
  10. package/dist/lexicons/app/bsky/actor/defs.defs.d.ts.map +1 -1
  11. package/dist/lexicons/app/bsky/actor/defs.defs.js +1 -0
  12. package/dist/lexicons/app/bsky/actor/defs.defs.js.map +1 -1
  13. package/package.json +42 -38
  14. package/build.templates.cjs +0 -22
  15. package/example.env +0 -42
  16. package/jest.config.cjs +0 -27
  17. package/src/account-manager/account-manager.ts +0 -916
  18. package/src/account-manager/db/index.ts +0 -21
  19. package/src/account-manager/db/migrations/001-init.ts +0 -115
  20. package/src/account-manager/db/migrations/002-account-deactivation.ts +0 -17
  21. package/src/account-manager/db/migrations/003-privileged-app-passwords.ts +0 -12
  22. package/src/account-manager/db/migrations/004-oauth.ts +0 -122
  23. package/src/account-manager/db/migrations/005-oauth-account-management.ts +0 -136
  24. package/src/account-manager/db/migrations/006-oauth-permission-sets.ts +0 -20
  25. package/src/account-manager/db/migrations/007-lexicon-failures-index.ts +0 -14
  26. package/src/account-manager/db/migrations/index.ts +0 -17
  27. package/src/account-manager/db/schema/account-device.ts +0 -14
  28. package/src/account-manager/db/schema/account.ts +0 -16
  29. package/src/account-manager/db/schema/actor.ts +0 -17
  30. package/src/account-manager/db/schema/app-password.ts +0 -13
  31. package/src/account-manager/db/schema/authorization-request.ts +0 -30
  32. package/src/account-manager/db/schema/authorized-client.ts +0 -23
  33. package/src/account-manager/db/schema/device.ts +0 -18
  34. package/src/account-manager/db/schema/email-token.ts +0 -19
  35. package/src/account-manager/db/schema/index.ts +0 -43
  36. package/src/account-manager/db/schema/invite-code.ts +0 -24
  37. package/src/account-manager/db/schema/lexicon.ts +0 -15
  38. package/src/account-manager/db/schema/refresh-token.ts +0 -11
  39. package/src/account-manager/db/schema/repo-root.ts +0 -12
  40. package/src/account-manager/db/schema/token.ts +0 -38
  41. package/src/account-manager/db/schema/used-refresh-token.ts +0 -13
  42. package/src/account-manager/helpers/account-device.ts +0 -63
  43. package/src/account-manager/helpers/account.ts +0 -355
  44. package/src/account-manager/helpers/auth.ts +0 -222
  45. package/src/account-manager/helpers/authorization-request.ts +0 -90
  46. package/src/account-manager/helpers/authorized-client.ts +0 -75
  47. package/src/account-manager/helpers/device.ts +0 -47
  48. package/src/account-manager/helpers/email-token.ts +0 -87
  49. package/src/account-manager/helpers/invite.ts +0 -263
  50. package/src/account-manager/helpers/lexicon.ts +0 -67
  51. package/src/account-manager/helpers/password.ts +0 -136
  52. package/src/account-manager/helpers/repo.ts +0 -24
  53. package/src/account-manager/helpers/scrypt.ts +0 -53
  54. package/src/account-manager/helpers/token.ts +0 -158
  55. package/src/account-manager/helpers/used-refresh-token.ts +0 -30
  56. package/src/account-manager/oauth-store.ts +0 -880
  57. package/src/account-manager/scope-reference-getter.ts +0 -106
  58. package/src/actor-store/actor-store-reader.ts +0 -45
  59. package/src/actor-store/actor-store-resources.ts +0 -8
  60. package/src/actor-store/actor-store-transactor.ts +0 -31
  61. package/src/actor-store/actor-store-writer.ts +0 -17
  62. package/src/actor-store/actor-store.ts +0 -210
  63. package/src/actor-store/blob/reader.ts +0 -160
  64. package/src/actor-store/blob/transactor.ts +0 -383
  65. package/src/actor-store/db/index.ts +0 -20
  66. package/src/actor-store/db/migrations/001-init.ts +0 -105
  67. package/src/actor-store/db/migrations/index.ts +0 -5
  68. package/src/actor-store/db/schema/account-pref.ts +0 -11
  69. package/src/actor-store/db/schema/backlink.ts +0 -9
  70. package/src/actor-store/db/schema/blob.ts +0 -14
  71. package/src/actor-store/db/schema/index.ts +0 -23
  72. package/src/actor-store/db/schema/record-blob.ts +0 -8
  73. package/src/actor-store/db/schema/record.ts +0 -14
  74. package/src/actor-store/db/schema/repo-block.ts +0 -10
  75. package/src/actor-store/db/schema/repo-root.ts +0 -10
  76. package/src/actor-store/migrate.ts +0 -39
  77. package/src/actor-store/preference/reader.ts +0 -48
  78. package/src/actor-store/preference/transactor.ts +0 -55
  79. package/src/actor-store/preference/util.ts +0 -39
  80. package/src/actor-store/record/reader.ts +0 -374
  81. package/src/actor-store/record/transactor.ts +0 -111
  82. package/src/actor-store/repo/reader.ts +0 -31
  83. package/src/actor-store/repo/sql-repo-reader.ts +0 -150
  84. package/src/actor-store/repo/sql-repo-transactor.ts +0 -105
  85. package/src/actor-store/repo/transactor.ts +0 -227
  86. package/src/api/app/bsky/actor/getPreferences.ts +0 -57
  87. package/src/api/app/bsky/actor/getProfile.ts +0 -41
  88. package/src/api/app/bsky/actor/getProfiles.ts +0 -51
  89. package/src/api/app/bsky/actor/index.ts +0 -13
  90. package/src/api/app/bsky/actor/putPreferences.ts +0 -62
  91. package/src/api/app/bsky/feed/getActorLikes.ts +0 -63
  92. package/src/api/app/bsky/feed/getAuthorFeed.ts +0 -84
  93. package/src/api/app/bsky/feed/getFeed.ts +0 -47
  94. package/src/api/app/bsky/feed/getPostThread.ts +0 -251
  95. package/src/api/app/bsky/feed/getTimeline.ts +0 -50
  96. package/src/api/app/bsky/feed/index.ts +0 -15
  97. package/src/api/app/bsky/index.ts +0 -11
  98. package/src/api/app/bsky/notification/index.ts +0 -7
  99. package/src/api/app/bsky/notification/registerPush.ts +0 -71
  100. package/src/api/app/bsky/util/resolver.ts +0 -20
  101. package/src/api/com/atproto/admin/deleteAccount.ts +0 -22
  102. package/src/api/com/atproto/admin/disableAccountInvites.ts +0 -18
  103. package/src/api/com/atproto/admin/disableInviteCodes.ts +0 -21
  104. package/src/api/com/atproto/admin/enableAccountInvites.ts +0 -18
  105. package/src/api/com/atproto/admin/getAccountInfo.ts +0 -32
  106. package/src/api/com/atproto/admin/getAccountInfos.ts +0 -34
  107. package/src/api/com/atproto/admin/getInviteCodes.ts +0 -126
  108. package/src/api/com/atproto/admin/getSubjectStatus.ts +0 -76
  109. package/src/api/com/atproto/admin/index.ts +0 -31
  110. package/src/api/com/atproto/admin/sendEmail.ts +0 -47
  111. package/src/api/com/atproto/admin/updateAccountEmail.ts +0 -32
  112. package/src/api/com/atproto/admin/updateAccountHandle.ts +0 -47
  113. package/src/api/com/atproto/admin/updateAccountPassword.ts +0 -34
  114. package/src/api/com/atproto/admin/updateSubjectStatus.ts +0 -68
  115. package/src/api/com/atproto/admin/util.ts +0 -66
  116. package/src/api/com/atproto/identity/getRecommendedDidCredentials.ts +0 -50
  117. package/src/api/com/atproto/identity/index.ts +0 -17
  118. package/src/api/com/atproto/identity/requestPlcOperationSignature.ts +0 -59
  119. package/src/api/com/atproto/identity/resolveHandle.ts +0 -50
  120. package/src/api/com/atproto/identity/signPlcOperation.ts +0 -85
  121. package/src/api/com/atproto/identity/submitPlcOperation.ts +0 -65
  122. package/src/api/com/atproto/identity/updateHandle.ts +0 -66
  123. package/src/api/com/atproto/index.ts +0 -19
  124. package/src/api/com/atproto/moderation/createReport.ts +0 -41
  125. package/src/api/com/atproto/moderation/index.ts +0 -7
  126. package/src/api/com/atproto/repo/applyWrites.ts +0 -226
  127. package/src/api/com/atproto/repo/createRecord.ts +0 -143
  128. package/src/api/com/atproto/repo/deleteRecord.ts +0 -122
  129. package/src/api/com/atproto/repo/describeRepo.ts +0 -43
  130. package/src/api/com/atproto/repo/getRecord.ts +0 -40
  131. package/src/api/com/atproto/repo/importRepo.ts +0 -101
  132. package/src/api/com/atproto/repo/index.ts +0 -25
  133. package/src/api/com/atproto/repo/listMissingBlobs.ts +0 -29
  134. package/src/api/com/atproto/repo/listRecords.ts +0 -36
  135. package/src/api/com/atproto/repo/putRecord.ts +0 -211
  136. package/src/api/com/atproto/repo/uploadBlob.ts +0 -60
  137. package/src/api/com/atproto/server/activateAccount.ts +0 -37
  138. package/src/api/com/atproto/server/checkAccountStatus.ts +0 -51
  139. package/src/api/com/atproto/server/confirmEmail.ts +0 -39
  140. package/src/api/com/atproto/server/createAccount.ts +0 -327
  141. package/src/api/com/atproto/server/createAppPassword.ts +0 -53
  142. package/src/api/com/atproto/server/createInviteCode.ts +0 -38
  143. package/src/api/com/atproto/server/createInviteCodes.ts +0 -42
  144. package/src/api/com/atproto/server/createSession.ts +0 -97
  145. package/src/api/com/atproto/server/deactivateAccount.ts +0 -41
  146. package/src/api/com/atproto/server/deleteAccount.ts +0 -85
  147. package/src/api/com/atproto/server/deleteSession.ts +0 -23
  148. package/src/api/com/atproto/server/describeServer.ts +0 -29
  149. package/src/api/com/atproto/server/getAccountInviteCodes.ts +0 -142
  150. package/src/api/com/atproto/server/getServiceAuth.ts +0 -111
  151. package/src/api/com/atproto/server/getSession.ts +0 -80
  152. package/src/api/com/atproto/server/index.ts +0 -55
  153. package/src/api/com/atproto/server/listAppPasswords.ts +0 -45
  154. package/src/api/com/atproto/server/refreshSession.ts +0 -72
  155. package/src/api/com/atproto/server/requestAccountDelete.ts +0 -66
  156. package/src/api/com/atproto/server/requestEmailConfirmation.ts +0 -68
  157. package/src/api/com/atproto/server/requestEmailUpdate.ts +0 -86
  158. package/src/api/com/atproto/server/requestPasswordReset.ts +0 -52
  159. package/src/api/com/atproto/server/reserveSigningKey.ts +0 -15
  160. package/src/api/com/atproto/server/resetPassword.ts +0 -50
  161. package/src/api/com/atproto/server/revokeAppPassword.ts +0 -42
  162. package/src/api/com/atproto/server/updateEmail.ts +0 -52
  163. package/src/api/com/atproto/server/util.ts +0 -136
  164. package/src/api/com/atproto/sync/deprecated/getCheckout.ts +0 -27
  165. package/src/api/com/atproto/sync/deprecated/getHead.ts +0 -33
  166. package/src/api/com/atproto/sync/getBlob.ts +0 -61
  167. package/src/api/com/atproto/sync/getBlocks.ts +0 -37
  168. package/src/api/com/atproto/sync/getLatestCommit.ts +0 -33
  169. package/src/api/com/atproto/sync/getRecord.ts +0 -49
  170. package/src/api/com/atproto/sync/getRepo.ts +0 -75
  171. package/src/api/com/atproto/sync/getRepoStatus.ts +0 -34
  172. package/src/api/com/atproto/sync/index.ts +0 -27
  173. package/src/api/com/atproto/sync/listBlobs.ts +0 -33
  174. package/src/api/com/atproto/sync/listRepos.ts +0 -74
  175. package/src/api/com/atproto/sync/subscribeRepos.ts +0 -73
  176. package/src/api/com/atproto/sync/util.ts +0 -37
  177. package/src/api/com/atproto/temp/checkSignupQueue.ts +0 -34
  178. package/src/api/com/atproto/temp/index.ts +0 -7
  179. package/src/api/index.ts +0 -10
  180. package/src/api/proxy.ts +0 -44
  181. package/src/app-view.ts +0 -24
  182. package/src/auth-output.ts +0 -52
  183. package/src/auth-routes.ts +0 -64
  184. package/src/auth-scope.ts +0 -40
  185. package/src/auth-verifier.ts +0 -668
  186. package/src/background.ts +0 -65
  187. package/src/basic-routes.ts +0 -52
  188. package/src/bsky-app-view.ts +0 -33
  189. package/src/config/config.ts +0 -553
  190. package/src/config/env.ts +0 -167
  191. package/src/config/index.ts +0 -3
  192. package/src/config/secrets.ts +0 -54
  193. package/src/context.ts +0 -523
  194. package/src/crawlers.ts +0 -46
  195. package/src/db/cast.ts +0 -52
  196. package/src/db/db.ts +0 -140
  197. package/src/db/index.ts +0 -4
  198. package/src/db/migrator.ts +0 -40
  199. package/src/db/pagination.ts +0 -132
  200. package/src/db/tables/moderation.ts +0 -80
  201. package/src/db/util.ts +0 -108
  202. package/src/did-cache/db/index.ts +0 -21
  203. package/src/did-cache/db/migrations.ts +0 -17
  204. package/src/did-cache/db/schema.ts +0 -9
  205. package/src/did-cache/index.ts +0 -131
  206. package/src/disk-blobstore.ts +0 -172
  207. package/src/error.ts +0 -19
  208. package/src/handle/explicit-slurs.ts +0 -22
  209. package/src/handle/index.ts +0 -49
  210. package/src/handle/reserved.ts +0 -1059
  211. package/src/image/image-url-builder.ts +0 -16
  212. package/src/index.ts +0 -189
  213. package/src/lexicons.ts +0 -4
  214. package/src/logger.ts +0 -35
  215. package/src/mailer/index.ts +0 -111
  216. package/src/mailer/moderation.ts +0 -33
  217. package/src/mailer/templates/confirm-email.d.ts +0 -4
  218. package/src/mailer/templates/confirm-email.hbs +0 -158
  219. package/src/mailer/templates/delete-account.d.ts +0 -4
  220. package/src/mailer/templates/delete-account.hbs +0 -156
  221. package/src/mailer/templates/plc-operation.d.ts +0 -4
  222. package/src/mailer/templates/plc-operation.hbs +0 -153
  223. package/src/mailer/templates/reset-password.d.ts +0 -4
  224. package/src/mailer/templates/reset-password.hbs +0 -154
  225. package/src/mailer/templates/update-email.d.ts +0 -4
  226. package/src/mailer/templates/update-email.hbs +0 -153
  227. package/src/mailer/templates.ts +0 -17
  228. package/src/pipethrough.ts +0 -716
  229. package/src/rate-limits.ts +0 -59
  230. package/src/read-after-write/index.ts +0 -3
  231. package/src/read-after-write/types.ts +0 -35
  232. package/src/read-after-write/util.ts +0 -101
  233. package/src/read-after-write/viewer.ts +0 -290
  234. package/src/redis.ts +0 -25
  235. package/src/repo/index.ts +0 -2
  236. package/src/repo/prepare.ts +0 -266
  237. package/src/repo/types.ts +0 -65
  238. package/src/scripts/README.md +0 -40
  239. package/src/scripts/index.ts +0 -20
  240. package/src/scripts/publish-identity.ts +0 -60
  241. package/src/scripts/rebuild-repo.ts +0 -119
  242. package/src/scripts/rotate-keys.ts +0 -146
  243. package/src/scripts/sequencer-recovery/index.ts +0 -23
  244. package/src/scripts/sequencer-recovery/recoverer.ts +0 -297
  245. package/src/scripts/sequencer-recovery/recovery-db.ts +0 -65
  246. package/src/scripts/sequencer-recovery/repair-repos.ts +0 -49
  247. package/src/scripts/sequencer-recovery/user-queues.ts +0 -44
  248. package/src/scripts/util.ts +0 -7
  249. package/src/sequencer/db/index.ts +0 -21
  250. package/src/sequencer/db/migrations/001-init.ts +0 -35
  251. package/src/sequencer/db/migrations/index.ts +0 -5
  252. package/src/sequencer/db/schema.ts +0 -19
  253. package/src/sequencer/events.ts +0 -199
  254. package/src/sequencer/index.ts +0 -3
  255. package/src/sequencer/outbox.ts +0 -123
  256. package/src/sequencer/sequencer.ts +0 -290
  257. package/src/util/compression.ts +0 -16
  258. package/src/util/debug.ts +0 -10
  259. package/src/util/http.ts +0 -31
  260. package/src/util/types.ts +0 -7
  261. package/src/well-known.ts +0 -30
  262. package/test.env +0 -2
  263. package/tests/__snapshots__/takedown-appeal.test.ts.snap +0 -43
  264. package/tests/_oauth_client_assets_middleware.ts +0 -23
  265. package/tests/_puppeteer.ts +0 -147
  266. package/tests/_types.d.ts +0 -16
  267. package/tests/_util.ts +0 -191
  268. package/tests/account-deactivation.test.ts +0 -204
  269. package/tests/account-deletion.test.ts +0 -300
  270. package/tests/account-manager.test.ts +0 -462
  271. package/tests/account-migration.test.ts +0 -221
  272. package/tests/account-status.test.ts +0 -206
  273. package/tests/account.test.ts +0 -595
  274. package/tests/app-passwords.test.ts +0 -262
  275. package/tests/auth.test.ts +0 -405
  276. package/tests/blob-deletes.test.ts +0 -204
  277. package/tests/create-post.test.ts +0 -79
  278. package/tests/crud.test.ts +0 -1595
  279. package/tests/db.test.ts +0 -170
  280. package/tests/email-confirmation.test.ts +0 -227
  281. package/tests/entryway-mock.ts +0 -323
  282. package/tests/entryway.test.ts +0 -145
  283. package/tests/file-uploads.test.ts +0 -301
  284. package/tests/get-service-auth.test.ts +0 -81
  285. package/tests/handle-validation.test.ts +0 -56
  286. package/tests/handles.test.ts +0 -274
  287. package/tests/invite-codes.test.ts +0 -367
  288. package/tests/invites-admin.test.ts +0 -252
  289. package/tests/moderation.test.ts +0 -280
  290. package/tests/moderator-auth.test.ts +0 -177
  291. package/tests/oauth.test.ts +0 -334
  292. package/tests/plc-operations.test.ts +0 -239
  293. package/tests/preferences.test.ts +0 -352
  294. package/tests/proxied/__snapshots__/admin.test.ts.snap +0 -516
  295. package/tests/proxied/__snapshots__/feedgen.test.ts.snap +0 -215
  296. package/tests/proxied/__snapshots__/views.test.ts.snap +0 -4456
  297. package/tests/proxied/admin.test.ts +0 -340
  298. package/tests/proxied/feedgen.test.ts +0 -66
  299. package/tests/proxied/notif.test.ts +0 -85
  300. package/tests/proxied/procedures.test.ts +0 -175
  301. package/tests/proxied/proxy-catchall.test.ts +0 -256
  302. package/tests/proxied/proxy-header.test.ts +0 -239
  303. package/tests/proxied/proxy-oauth-aud.test.ts +0 -182
  304. package/tests/proxied/read-after-write.test.ts +0 -382
  305. package/tests/proxied/views.test.ts +0 -608
  306. package/tests/races.test.ts +0 -89
  307. package/tests/rate-limits.test.ts +0 -70
  308. package/tests/recovery.test.ts +0 -180
  309. package/tests/seeds/basic.ts +0 -165
  310. package/tests/seeds/follows.ts +0 -57
  311. package/tests/seeds/likes.ts +0 -14
  312. package/tests/seeds/reposts.ts +0 -18
  313. package/tests/seeds/thread.ts +0 -40
  314. package/tests/seeds/users-bulk.ts +0 -246
  315. package/tests/seeds/users.ts +0 -67
  316. package/tests/sequencer.test.ts +0 -251
  317. package/tests/server.test.ts +0 -151
  318. package/tests/sync/invertible-ops.test.ts +0 -99
  319. package/tests/sync/list.test.ts +0 -43
  320. package/tests/sync/subscribe-repos.test.ts +0 -672
  321. package/tests/sync/sync.test.ts +0 -316
  322. package/tests/takedown-appeal.test.ts +0 -166
  323. package/tsconfig.build.json +0 -9
  324. package/tsconfig.build.tsbuildinfo +0 -1
  325. package/tsconfig.json +0 -7
  326. package/tsconfig.tests.json +0 -8
@@ -1,211 +0,0 @@
1
- import { atUri } from '@atproto/lex'
2
- import {
3
- LegacyBlobRef,
4
- LexMap,
5
- TypedBlobRef,
6
- isLegacyBlobRef,
7
- parseCid,
8
- } from '@atproto/lex-data'
9
- import {
10
- AuthRequiredError,
11
- InvalidRequestError,
12
- Server,
13
- } from '@atproto/xrpc-server'
14
- import { ActorStoreTransactor } from '../../../../actor-store/actor-store-transactor.js'
15
- import { AppContext } from '../../../../context.js'
16
- import { app, com } from '../../../../lexicons/index.js'
17
- import { dbLogger } from '../../../../logger.js'
18
- import {
19
- BadCommitSwapError,
20
- BadRecordSwapError,
21
- InvalidRecordError,
22
- PreparedCreate,
23
- PreparedUpdate,
24
- prepareCreate,
25
- prepareUpdate,
26
- } from '../../../../repo/index.js'
27
-
28
- export default function (server: Server, ctx: AppContext) {
29
- server.add(com.atproto.repo.putRecord, {
30
- auth: ctx.authVerifier.authorization({
31
- // @NOTE the "checkTakedown" and "checkDeactivated" checks are typically
32
- // performed during auth. However, since this method's "repo" parameter
33
- // can be a handle, we will need to fetch the account again to ensure that
34
- // the handle matches the DID from the request's credentials. In order to
35
- // avoid fetching the account twice (during auth, and then again in the
36
- // controller), the checks are disabled here:
37
-
38
- // checkTakedown: true,
39
- // checkDeactivated: true,
40
- authorize: () => {
41
- // Performed in the handler as it requires the request body
42
- },
43
- }),
44
- rateLimit: [
45
- {
46
- name: 'repo-write-hour',
47
- calcKey: ({ auth }) => auth.credentials.did,
48
- calcPoints: () => 2,
49
- },
50
- {
51
- name: 'repo-write-day',
52
- calcKey: ({ auth }) => auth.credentials.did,
53
- calcPoints: () => 2,
54
- },
55
- ],
56
- opts: {
57
- jsonLimit: 1_000_000,
58
- },
59
- handler: async ({ auth, input }) => {
60
- const {
61
- repo,
62
- collection,
63
- rkey,
64
- record,
65
- validate,
66
- swapCommit,
67
- swapRecord,
68
- } = input.body
69
-
70
- const account = await ctx.authVerifier.findAccount(repo, {
71
- checkDeactivated: true,
72
- checkTakedown: true,
73
- })
74
-
75
- const did = account.did
76
- if (did !== auth.credentials.did) {
77
- throw new AuthRequiredError()
78
- }
79
-
80
- // We can't compute permissions based on the request payload ("input") in
81
- // the 'auth' phase, so we do it here.
82
- if (auth.credentials.type === 'oauth') {
83
- auth.credentials.permissions.assertRepo({
84
- action: 'create',
85
- collection,
86
- })
87
- auth.credentials.permissions.assertRepo({
88
- action: 'update',
89
- collection,
90
- })
91
- }
92
-
93
- const uri = atUri(did, collection, rkey)
94
- const swapCommitCid = swapCommit ? parseCid(swapCommit) : undefined
95
- const swapRecordCid =
96
- typeof swapRecord === 'string' ? parseCid(swapRecord) : swapRecord
97
-
98
- const { commit, write } = await ctx.actorStore.transact(
99
- did,
100
- async (actorTxn) => {
101
- const current = await actorTxn.record.getRecord(uri, null, true)
102
- const isUpdate = current !== null
103
-
104
- // @TODO temporaray hack for legacy blob refs in profiles - remove after migrating legacy blobs
105
- if (isUpdate && collection === app.bsky.actor.profile.$type) {
106
- await updateProfileLegacyBlobRef(actorTxn, record)
107
- }
108
-
109
- const writeInfo = {
110
- did,
111
- collection,
112
- rkey,
113
- record,
114
- swapCid: swapRecordCid,
115
- validate,
116
- }
117
-
118
- let write: PreparedCreate | PreparedUpdate
119
- try {
120
- write = isUpdate
121
- ? await prepareUpdate(writeInfo)
122
- : await prepareCreate(writeInfo)
123
- } catch (err) {
124
- if (err instanceof InvalidRecordError) {
125
- throw new InvalidRequestError(err.message)
126
- }
127
- throw err
128
- }
129
-
130
- // no-op
131
- if (current && current.cid === write.cid.toString()) {
132
- return {
133
- commit: null,
134
- write,
135
- }
136
- }
137
-
138
- const commit = await actorTxn.repo
139
- .processWrites([write], swapCommitCid)
140
- .catch((err) => {
141
- if (
142
- err instanceof BadCommitSwapError ||
143
- err instanceof BadRecordSwapError
144
- ) {
145
- throw new InvalidRequestError(err.message, 'InvalidSwap')
146
- } else {
147
- throw err
148
- }
149
- })
150
-
151
- await ctx.sequencer.sequenceCommit(did, commit)
152
-
153
- return { commit, write }
154
- },
155
- )
156
-
157
- if (commit !== null) {
158
- await ctx.accountManager
159
- .updateRepoRoot(did, commit.cid, commit.rev)
160
- .catch((err) => {
161
- dbLogger.error(
162
- { err, did, cid: commit.cid, rev: commit.rev },
163
- 'failed to update account root',
164
- )
165
- })
166
- }
167
-
168
- return {
169
- encoding: 'application/json',
170
- body: {
171
- uri: write.uri.toString(),
172
- cid: write.cid.toString(),
173
- commit: commit
174
- ? {
175
- cid: commit.cid.toString(),
176
- rev: commit.rev,
177
- }
178
- : undefined,
179
- validationStatus: write.validationStatus,
180
- },
181
- }
182
- },
183
- })
184
- }
185
-
186
- // WARNING: mutates object
187
- async function updateProfileLegacyBlobRef(
188
- actorStore: ActorStoreTransactor,
189
- record: LexMap,
190
- ): Promise<void> {
191
- if (isLegacyBlobRef(record.avatar)) {
192
- record.avatar = await upgradeLegacyBlob(actorStore, record.avatar)
193
- }
194
- if (isLegacyBlobRef(record.banner)) {
195
- record.banner = await upgradeLegacyBlob(actorStore, record.banner)
196
- }
197
- }
198
-
199
- async function upgradeLegacyBlob(
200
- actorStore: ActorStoreTransactor,
201
- legacyBlob: LegacyBlobRef,
202
- ): Promise<TypedBlobRef> {
203
- const ref = parseCid(legacyBlob.cid)
204
- const blob = await actorStore.repo.blob.getBlobMetadata(ref)
205
- return {
206
- $type: 'blob',
207
- mimeType: legacyBlob.mimeType,
208
- ref,
209
- size: blob.size,
210
- }
211
- }
@@ -1,60 +0,0 @@
1
- import { DAY } from '@atproto/common'
2
- import {
3
- Server,
4
- UpstreamTimeoutError,
5
- parseReqEncoding,
6
- } from '@atproto/xrpc-server'
7
- import { AppContext } from '../../../../context.js'
8
- import { com } from '../../../../lexicons/index.js'
9
-
10
- export default function (server: Server, ctx: AppContext) {
11
- server.add(com.atproto.repo.uploadBlob, {
12
- auth: ctx.authVerifier.authorizationOrUserServiceAuth({
13
- checkTakedown: true,
14
- authorize: (permissions, { req }) => {
15
- const encoding = parseReqEncoding(req)
16
- permissions.assertBlob({ mime: encoding })
17
- },
18
- }),
19
- rateLimit: {
20
- durationMs: DAY,
21
- points: 1000,
22
- },
23
- handler: async ({ auth, input }) => {
24
- const requester = auth.credentials.did
25
-
26
- const blob = await ctx.actorStore.writeNoTransaction(
27
- requester,
28
- async (store) => {
29
- const metadata = await store.repo.blob
30
- .uploadBlobAndGetMetadata(input.encoding, input.body)
31
- .catch(throwAbortAsUpstreamError)
32
-
33
- return store.transact(async (actorTxn) => {
34
- const blobRef =
35
- await actorTxn.repo.blob.trackUntetheredBlob(metadata)
36
-
37
- // make the blob permanent if an associated record is already indexed
38
- if (await actorTxn.repo.blob.hasRecordsForBlob(blobRef.ref)) {
39
- await actorTxn.repo.blob.verifyBlobAndMakePermanent(blobRef)
40
- }
41
-
42
- return blobRef
43
- })
44
- },
45
- )
46
-
47
- return {
48
- encoding: 'application/json' as const,
49
- body: { blob },
50
- }
51
- },
52
- })
53
- }
54
-
55
- function throwAbortAsUpstreamError(err: unknown): never {
56
- if (err?.['name'] === 'AbortError') {
57
- throw new UpstreamTimeoutError('Operation timed out, please try again.')
58
- }
59
- throw err
60
- }
@@ -1,37 +0,0 @@
1
- import { ForbiddenError, Server } from '@atproto/xrpc-server'
2
- import { ACCESS_FULL } from '../../../../auth-scope.js'
3
- import { AppContext } from '../../../../context.js'
4
- import { com } from '../../../../lexicons/index.js'
5
-
6
- export default function (server: Server, ctx: AppContext) {
7
- const { entrywayClient } = ctx
8
-
9
- const auth = ctx.authVerifier.authorization({
10
- scopes: ACCESS_FULL,
11
- authorize: () => {
12
- throw new ForbiddenError(
13
- 'OAuth credentials are not supported for this endpoint',
14
- )
15
- },
16
- })
17
-
18
- if (entrywayClient) {
19
- // in the case of entryway, the full flow is activateAccount (PDS) -> activateAccount (Entryway) -> updateSubjectStatus(PDS)
20
- server.add(com.atproto.server.activateAccount, {
21
- auth,
22
- handler: async ({ req }) => {
23
- const { headers } = ctx.entrywayPassthruHeaders(req)
24
- await entrywayClient.xrpc(com.atproto.server.activateAccount, {
25
- headers,
26
- })
27
- },
28
- })
29
- } else {
30
- server.add(com.atproto.server.activateAccount, {
31
- auth,
32
- handler: async ({ auth }) => {
33
- await ctx.accountManager.activateAccount(auth.credentials.did)
34
- },
35
- })
36
- }
37
- }
@@ -1,51 +0,0 @@
1
- import { Server } from '@atproto/xrpc-server'
2
- import { AppContext } from '../../../../context.js'
3
- import { com } from '../../../../lexicons/index.js'
4
- import { isValidDidDocForService } from './util.js'
5
-
6
- export default function (server: Server, ctx: AppContext) {
7
- server.add(com.atproto.server.checkAccountStatus, {
8
- auth: ctx.authVerifier.authorization({
9
- authorize: () => {
10
- // always allow
11
- },
12
- }),
13
- handler: async ({ auth }) => {
14
- const requester = auth.credentials.did
15
- const [
16
- repoRoot,
17
- repoBlocks,
18
- indexedRecords,
19
- importedBlobs,
20
- expectedBlobs,
21
- ] = await ctx.actorStore.read(requester, async (store) => {
22
- return await Promise.all([
23
- store.repo.storage.getRootDetailed(),
24
- store.repo.storage.countBlocks(),
25
- store.record.recordCount(),
26
- store.repo.blob.blobCount(),
27
- store.repo.blob.recordBlobCount(),
28
- ])
29
- })
30
- const [activated, validDid] = await Promise.all([
31
- ctx.accountManager.isAccountActivated(requester),
32
- isValidDidDocForService(ctx, requester),
33
- ])
34
-
35
- return {
36
- encoding: 'application/json' as const,
37
- body: {
38
- activated,
39
- validDid,
40
- repoCommit: repoRoot.cid.toString(),
41
- repoRev: repoRoot.rev,
42
- repoBlocks,
43
- indexedRecords,
44
- privateStateValues: 0,
45
- expectedBlobs,
46
- importedBlobs,
47
- },
48
- }
49
- },
50
- })
51
- }
@@ -1,39 +0,0 @@
1
- import { Server } from '@atproto/xrpc-server'
2
- import { AppContext } from '../../../../context.js'
3
- import { com } from '../../../../lexicons/index.js'
4
- import { requestEmailConfirmationAuth } from './requestEmailConfirmation.js'
5
-
6
- export default function (server: Server, ctx: AppContext) {
7
- const { entrywayClient } = ctx
8
-
9
- // @NOTE Ensure that both endpoints use the same authentication logic
10
- const auth = requestEmailConfirmationAuth(ctx)
11
-
12
- if (entrywayClient) {
13
- server.add(com.atproto.server.confirmEmail, {
14
- auth,
15
- handler: async ({ auth, input: { body }, req }) => {
16
- const { headers } = await ctx.entrywayAuthHeaders(
17
- req,
18
- auth.credentials.did,
19
- com.atproto.server.confirmEmail.$lxm,
20
- )
21
- await entrywayClient.xrpc(com.atproto.server.confirmEmail, {
22
- headers,
23
- body,
24
- })
25
- },
26
- })
27
- } else {
28
- server.add(com.atproto.server.confirmEmail, {
29
- auth,
30
- handler: async ({ auth, input: { body } }) => {
31
- await ctx.accountManager.confirmEmail(
32
- auth.credentials.did,
33
- body.email,
34
- body.token,
35
- )
36
- },
37
- })
38
- }
39
- }