dani
/
vroom
mirror of https://github.com/dani/vroom.git
1
0
Fork 0
Code Issues Releases Wiki Activity

Big code cleanup

Browse Source 
Inclusing removing old, unused API actions
master
Daniel Berteaud 9 years ago
parent f5d876455d
commit 49f3bfae11
2 changed files with 86 additions and 175 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 6
      lib/Vroom/Constants.pm
  2. 183
      vroom.pl

6
lib/Vroom/Constants.pm
Unescape View File

@ -105,12 +105,6 @@ use constant API_ACTIONS => {
}, },
owner => { owner => {
invite_email => 1, invite_email => 1,
lock_room => 1,
unlock_room => 1,
set_join_password => 1,
set_owner_password => 1,
set_ask_for_name => 1,
email_notification => 1,
promote_peer => 1, promote_peer => 1,
wipe_data => 1, wipe_data => 1,
delete_room => 1, delete_room => 1,

183
vroom.pl
Unescape View File

@ -1557,10 +1557,10 @@ any [ qw(GET POST) ] => '/invitation/:token' => { token => '' } => sub {
room => $room->{name}, room => $room->{name},
); );
} }
elsif ($self->req->method eq 'POST'){
my $response = $self->param('response') || 'decline'; my $response = $self->param('response') || 'decline';
my $message = $self->param('message') || ''; my $message = $self->param('message') || '';
if ($response !~ m/^(later|decline)$/ || !$self->respond_to_invitation($token, $response, $message)){ if ($response !~ m/^(later|decline)$/ ||
!$self->respond_to_invitation($token, $response, $message)){
return $self->render('error', return $self->render('error',
err => 'ERROR_INVITATION_INVALID', err => 'ERROR_INVITATION_INVALID',
msg => $self->l('ERROR_INVITATION_INVALID'), msg => $self->l('ERROR_INVITATION_INVALID'),
@ -1568,12 +1568,6 @@ any [ qw(GET POST) ] => '/invitation/:token' => { token => '' } => sub {
); );
} }
return $self->render('invitation_thanks'); return $self->render('invitation_thanks');
}
return $self->render('error',
err => 'ERROR_OCCURRED',
msg => $self->l('ERROR_OCCURRED'),
room => $room
);
}; };
# Create a json script which contains localization # Create a json script which contains localization
@ -1581,22 +1575,28 @@ get '/locales/(:lang).js' => sub {
my $self = shift; my $self = shift;
my $usr_lang = $self->languages; my $usr_lang = $self->languages;
my $req_lang = $self->stash('lang'); my $req_lang = $self->stash('lang');
# Force en if requested lang is not supported
$req_lang = 'en' unless grep { $_ eq $req_lang } $self->get_supported_lang; $req_lang = 'en' unless grep { $_ eq $req_lang } $self->get_supported_lang;
# Temporarily switch to the requested locale # Temporarily switch to the requested locale
# eg, we can be in en and ask for /locales/fr.js # eg, we can be in en and ask for /locales/fr.js
$self->languages($req_lang); $self->languages($req_lang);
my $strings = {}; my $strings = {};
my $fallback_strings = {};
foreach my $string (keys %Vroom::I18N::fr::Lexicon){ foreach my $string (keys %Vroom::I18N::fr::Lexicon){
next if $string eq ''; next if $string eq '';
# If the string is available in the requested locale, use it
if ($self->l($string) ne ''){ if ($self->l($string) ne ''){
$strings->{$string} = $self->l($string); $strings->{$string} = $self->l($string);
} }
else{ # Else, fallback to en
elsif ($req_lang ne 'en'){
$self->languages('en'); $self->languages('en');
$strings->{$string} = $self->l($string); $strings->{$string} = $self->l($string);
$self->languages($req_lang); $self->languages($req_lang);
} }
# NO localization available
else{
$strings->{$string} = $string;
}
} }
# Set the user locale back # Set the user locale back
$self->languages($usr_lang); $self->languages($usr_lang);
@ -1614,6 +1614,7 @@ any '/api' => sub {
my $token = $self->req->headers->header('X-VROOM-API-Key'); my $token = $self->req->headers->header('X-VROOM-API-Key');
my $req = Mojo::JSON::decode_json($self->param('req')); my $req = Mojo::JSON::decode_json($self->param('req'));
my $room; my $room;
# action and param are required for every API call
if (!$req->{action} || !$req->{param}){ if (!$req->{action} || !$req->{param}){
return $self->render( return $self->render(
json => { json => {
@ -1640,7 +1641,7 @@ any '/api' => sub {
); );
} }
# Now, lets check if the key can do the requested action # Now, lets check if the API key can do the requested action
my $res = $self->key_can_do_this({ my $res = $self->key_can_do_this({
token => $token, token => $token,
action => $req->{action}, action => $req->{action},
@ -1662,6 +1663,8 @@ any '/api' => sub {
); );
} }
# Now we know the action is allowed, but a few might not need to be logged
# so skip them now
if (!grep { $_ eq $req->{action} } API_NO_LOG){ if (!grep { $_ eq $req->{action} } API_NO_LOG){
$self->log_event({ $self->log_event({
event => 'api_action_allowed', event => 'api_action_allowed',
@ -1689,12 +1692,8 @@ any '/api' => sub {
elsif ($req->{action} eq 'get_event_list'){ elsif ($req->{action} eq 'get_event_list'){
my $start = $req->{param}->{start}; my $start = $req->{param}->{start};
my $end = $req->{param}->{end}; my $end = $req->{param}->{end};
if ($start eq ''){ $start = DateTime->now->ymd if $start eq '';
$start = DateTime->now->ymd; $end = DateTime->now->ymd if $end eq '';
}
if ($end eq ''){
$end = DateTime->now->ymd;
}
# Validate input # Validate input
if (!$self->valid_date($start) || !$self->valid_date($end)){ if (!$self->valid_date($start) || !$self->valid_date($end)){
return $self->render( return $self->render(
@ -1709,9 +1708,7 @@ any '/api' => sub {
foreach my $event (keys %{$events}){ foreach my $event (keys %{$events}){
# Init NULL values to empty strings # Init NULL values to empty strings
foreach (qw(date from_ip event user message)){ foreach (qw(date from_ip event user message)){
if (!$events->{$event}->{$_}){ $events->{$event}->{$_} = '' unless $events->{$event}->{$_};
$events->{$event}->{$_} = '';
}
} }
} }
# And send the list of event as a json object # And send the list of event as a json object
@ -1721,6 +1718,7 @@ any '/api' => sub {
} }
); );
} }
# And here anonymous method, which do not require an API Key # And here anonymous method, which do not require an API Key
elsif ($req->{action} eq 'create_room'){ elsif ($req->{action} eq 'create_room'){
$req->{param}->{room} ||= $self->get_random_name(); $req->{param}->{room} ||= $self->get_random_name();
@ -1749,6 +1747,7 @@ any '/api' => sub {
return $self->render(json => $json, status => 500); return $self->render(json => $json, status => 500);
} }
$json->{err} = ''; $json->{err} = '';
# The creator of the room is owner
$self->associate_key_to_room({ $self->associate_key_to_room({
room => $req->{param}->{room}, room => $req->{param}->{room},
key => $token, key => $token,
@ -1757,6 +1756,7 @@ any '/api' => sub {
return $self->render(json => $json); return $self->render(json => $json);
} }
# Ok now, every other API calls need a room name
if (!$req->{param}->{room}){ if (!$req->{param}->{room}){
return $self->render( return $self->render(
json => { json => {
@ -1766,7 +1766,7 @@ any '/api' => sub {
status => '400' status => '400'
); );
} }
# And it must be a valid room name
$room = $self->get_room_by_name($req->{param}->{room}); $room = $self->get_room_by_name($req->{param}->{room});
if (!$room){ if (!$room){
return $self->render( return $self->render(
@ -1778,18 +1778,22 @@ any '/api' => sub {
); );
} }
# Ok, now, we don't have to bother with authorization anymore # Now, we don't have to bother with authorization anymore
# key_can_do_this already checked this
if ($req->{action} eq 'authenticate'){ if ($req->{action} eq 'authenticate'){
my $pass = $req->{param}->{password}; my $pass = $req->{param}->{password};
my $role = $self->get_key_role($token, $room->{name}); my $role = $self->get_key_role($token, $room->{name});
my $reason; my $reason;
my $code = 401; my $code = 401;
# Is he owner pasword provided ?
if ($room->{owner_password} && Crypt::SaltedHash->validate($room->{owner_password}, $pass)){ if ($room->{owner_password} && Crypt::SaltedHash->validate($room->{owner_password}, $pass)){
$role = 'owner'; $role = 'owner';
} }
# Or the participant pasword ?
elsif (!$role && $room->{join_password} && Crypt::SaltedHash->validate($room->{join_password}, $pass)){ elsif (!$role && $room->{join_password} && Crypt::SaltedHash->validate($room->{join_password}, $pass)){
$role = 'participant'; $role = 'participant';
} }
# User has no role yet, but room is not protected, so grant him the participant role
elsif (!$role && !$room->{join_password} && !$room->{locked}){ elsif (!$role && !$room->{join_password} && !$room->{locked}){
$role = 'participant'; $role = 'participant';
} }
@ -1815,14 +1819,19 @@ any '/api' => sub {
} }
); );
} }
# If no role, give the user a reason
elsif ($room->{locked} && $room->{owner_password}){ elsif ($room->{locked} && $room->{owner_password}){
# When room is locked, but an owner password is set
# we can enter with this password
$reason = $self->l('ROOM_LOCKED_ENTER_OWNER_PASSWORD'); $reason = $self->l('ROOM_LOCKED_ENTER_OWNER_PASSWORD');
} }
elsif ($room->{locked}){ elsif ($room->{locked}){
# When room is locked, without owner passwod, there's nothing to do
$reason = sprintf($self->l('ERROR_ROOM_s_LOCKED'), $room->{name}); $reason = sprintf($self->l('ERROR_ROOM_s_LOCKED'), $room->{name});
$code = 403; $code = 403;
} }
elsif ((!$pass || $pass eq '') && $room->{join_password}){ elsif ((!$pass || $pass eq '') && $room->{join_password}){
# password not given, and acces require one
$reason = $self->l('A_PASSWORD_IS_NEEDED_TO_JOIN') $reason = $self->l('A_PASSWORD_IS_NEEDED_TO_JOIN')
} }
elsif ($room->{join_password}){ elsif ($room->{join_password}){
@ -1837,8 +1846,9 @@ any '/api' => sub {
} }
elsif ($req->{action} eq 'invite_email'){ elsif ($req->{action} eq 'invite_email'){
my $rcpts = $req->{param}->{rcpts}; my $rcpts = $req->{param}->{rcpts};
@$rcpts = grep { $_ ne '' } @$rcpts;
foreach my $addr (@$rcpts){ foreach my $addr (@$rcpts){
if (!$self->valid_email($addr) && $addr ne ''){ if (!$self->valid_email($addr)){
return $self->render( return $self->render(
json => { json => {
msg => $self->l('ERROR_MAIL_INVALID'), msg => $self->l('ERROR_MAIL_INVALID'),
@ -1874,6 +1884,7 @@ any '/api' => sub {
} }
$self->app->log->info("Email invitation to join room " . $req->{param}->{room} . " sent to " . $addr); $self->app->log->info("Email invitation to join room " . $req->{param}->{room} . " sent to " . $addr);
} }
# Mark the inviter as waiting for a reply
$peers->{$self->session('peer_id')}->{check_invitations} = 1; $peers->{$self->session('peer_id')}->{check_invitations} = 1;
return $self->render( return $self->render(
json => { json => {
@ -1881,33 +1892,14 @@ any '/api' => sub {
} }
); );
} }
# Handle room lock/unlock
elsif ($req->{action} =~ m/(un)?lock_room/){
$room->{locked} = ($req->{action} eq 'lock_room') ? '1':'0';
if ($self->modify_room($room)){
my $m = ($req->{action} eq 'lock_room') ? 'ROOM_LOCKED' : 'ROOM_UNLOCKED';
return $self->render(
json => {
msg => $self->l($m),
err => $m
}
);
}
return $self->render(
json => {
msg => $self->l('ERROR_OCCURRED'),
err => 'ERROR_OCCURRED',
},
status => 503
);
}
# Update room configuration # Update room configuration
elsif ($req->{action} eq 'update_room_conf'){ elsif ($req->{action} eq 'update_room_conf'){
$room->{locked} = ($req->{param}->{locked}) ? '1' : '0'; $room->{locked} = ($req->{param}->{locked}) ? '1' : '0';
$room->{ask_for_name} = ($req->{param}->{ask_for_name}) ? '1' : '0'; $room->{ask_for_name} = ($req->{param}->{ask_for_name}) ? '1' : '0';
$room->{max_members} = $req->{param}->{max_members}; $room->{max_members} = $req->{param}->{max_members};
# Room persistence can only be set by admins # Room persistence can only be set by admins
if ($req->{param}->{persistent} ne '' && $self->key_can_do_this({token => $token, action => 'set_persistent'})){ if ($req->{param}->{persistent} ne '' &&
$self->key_can_do_this({token => $token, action => 'set_persistent'})){
$room->{persistent} = ($req->{param}->{persistent} eq Mojo::JSON::true) ? '1' : '0'; $room->{persistent} = ($req->{param}->{persistent} eq Mojo::JSON::true) ? '1' : '0';
} }
foreach my $pass (qw/join_password owner_password/){ foreach my $pass (qw/join_password owner_password/){
@ -1918,7 +1910,8 @@ any '/api' => sub {
$room->{$pass} = Crypt::SaltedHash->new(algorithm => 'SHA-256')->add($req->{param}->{$pass})->generate; $room->{$pass} = Crypt::SaltedHash->new(algorithm => 'SHA-256')->add($req->{param}->{$pass})->generate;
} }
} }
if ($self->modify_room($room) && $self->update_email_notifications($room->{name},$req->{param}->{emails})){ if ($self->modify_room($room) &&
$self->update_email_notifications($room->{name}, $req->{param}->{emails})){
return $self->render( return $self->render(
json => { json => {
msg => $self->l('ROOM_CONFIG_UPDATED') msg => $self->l('ROOM_CONFIG_UPDATED')
@ -1933,91 +1926,9 @@ any '/api' => sub {
staus => 503 staus => 503
); );
} }
# Handle password (join and owner)
elsif ($req->{action} eq 'set_join_password'){
$room->{join_password} = ($req->{param}->{password} && $req->{param}->{password} ne '') ?
Crypt::SaltedHash->new(algorithm => 'SHA-256')->add($req->{param}->{password})->generate : undef;
if ($self->modify_room($room)){
return $self->render(
json => {
msg => $self->l(($req->{param}->{password}) ? 'PASSWORD_PROTECT_SET' : 'PASSWORD_PROTECT_UNSET'),
}
);
}
return $self->render(
json => {
msg => $self->('ERROR_OCCURRED'),
err => 'ERROR_OCCURRED',
},
status => 503
);
}
elsif ($req->{action} eq 'set_owner_password'){
if (grep { $req->{param}->{room} eq $_ } (split /[,;]/, $config->{'rooms.common_names'})){
return $self->render(
json => {
msg => $self->l('ERROR_COMMON_ROOM_NAME'),
err => 'ERROR_COMMON_ROOM_NAME'
},
status => 406
);
}
$room->{owner_password} = ($req->{param}->{password} && $req->{param}->{password} ne '') ?
Crypt::SaltedHash->new(algorithm => 'SHA-256')->add($req->{param}->{password})->generate : undef;
if ($self->modify_room($room)){
return $self->render(
json => {
msg => $self->l(($req->{param}->{password}) ? 'ROOM_NOW_RESERVED' : 'ROOM_NO_MORE_RESERVED'),
}
);
}
return $self->render(
json => {
msg => $self->('ERROR_OCCURRED'),
err => 'ERROR_OCCURRED',
},
status => 503
);
}
elsif ($req->{action} eq 'set_persistent'){
my $set = $self->param('set');
$room->{persistent} = ($set eq 'on') ? 1 : 0;
if ($self->modify_room($room)){
return $self->render(
json => {
msg => $self->l(($set eq 'on') ? 'ROOM_NOW_PERSISTENT' : 'ROOM_NO_MORE_PERSISTENT')
}
);
}
return $self->render(
json => {
msg => $self->l('ERROR_OCCURRED'),
err => 'ERROR_OCCURRED',
},
status => 503
);
}
# Set/unset askForName
elsif ($req->{action} eq 'set_ask_for_name'){
my $set = $req->{param}->{set};
$room->{ask_for_name} = ($set eq 'on') ? 1 : 0;
if ($self->modify_room($room)){
return $self->render(
json => {
msg => $self->l(($set eq 'on') ? 'FORCE_DISPLAY_NAME' : 'NAME_WONT_BE_ASKED')
}
);
}
return $self->render(
json => {
msg => $self->l('ERROR_OCCURRED'),
err => 'ERROR_OCCURRED',
},
status => 503
);
}
# Return configuration for SimpleWebRTC # Return configuration for SimpleWebRTC
elsif ($req->{action} eq 'get_rtc_conf'){ elsif ($req->{action} eq 'get_rtc_conf'){
# Build a SimpleWebRTC configuration object
my $resp = { my $resp = {
url => Mojo::URL->new($self->url_for('/')->to_abs)->scheme('https'), url => Mojo::URL->new($self->url_for('/')->to_abs)->scheme('https'),
peerConnectionConfig => { peerConnectionConfig => {
@ -2047,6 +1958,7 @@ any '/api' => sub {
muted => Mojo::JSON::true muted => Mojo::JSON::true
} }
}; };
# Stun and turn server can be a simple url or an array
if ($config->{'turn.stun_server'}){ if ($config->{'turn.stun_server'}){
if (ref $config->{'turn.stun_server'} ne 'ARRAY'){ if (ref $config->{'turn.stun_server'} ne 'ARRAY'){
$config->{'turn.stun_server'} = [ $config->{'turn.stun_server'} ]; $config->{'turn.stun_server'} = [ $config->{'turn.stun_server'} ];
@ -2071,12 +1983,13 @@ any '/api' => sub {
} }
); );
} }
# Return just room config # Return room config
elsif ($req->{action} eq 'get_room_conf'){ elsif ($req->{action} eq 'get_room_conf'){
my $resp = $self->get_room_conf($room); my $resp = $self->get_room_conf($room);
my $role = $self->get_key_role($token,$room->{name}); my $role = $self->get_key_role($token,$room->{name});
if (!$role || $role !~ m/^admin|owner$/){ if (!$role || $role !~ m/^admin|owner$/){
$self->app->log->debug("API Key $token is not admin, nor owner of room " . $room->{name} . ", blanking out sensible data"); $self->app->log->debug("API Key $token is not admin, nor owner of room " .
$room->{name} . ", blanking out sensible data");
$resp->{notif} = {}; $resp->{notif} = {};
} }
return $self->render( return $self->render(
@ -2139,10 +2052,12 @@ any '/api' => sub {
elsif ($req->{action} eq 'join'){ elsif ($req->{action} eq 'join'){
my $name = $req->{param}->{name} || ''; my $name = $req->{param}->{name} || '';
my $peer_id = $req->{param}->{peer_id}; my $peer_id = $req->{param}->{peer_id};
my $subj = sprintf($self->l('s_JOINED_ROOM_s'), ($name eq '') ? $self->l('SOMEONE') : $name, $room->{name}); my $subj = sprintf($self->l('s_JOINED_ROOM_s'), ($name eq '') ?
$self->l('SOMEONE') : $name, $room->{name});
# Send notifications # Send notifications
my $recipients = $self->get_email_notifications($room->{name}); my $recipients = $self->get_email_notifications($room->{name});
foreach my $rcpt (keys %{$recipients}){ foreach my $rcpt (keys %{$recipients}){
# TODO: log an event
$self->app->log->debug('Sending an email to ' . $recipients->{$rcpt}->{email}); $self->app->log->debug('Sending an email to ' . $recipients->{$rcpt}->{email});
my $sent = $self->mail( my $sent = $self->mail(
to => $recipients->{$rcpt}->{email}, to => $recipients->{$rcpt}->{email},
@ -2186,7 +2101,8 @@ any '/api' => sub {
} }
# Wipe room data (chat history and etherpad content) # Wipe room data (chat history and etherpad content)
elsif ($req->{action} eq 'wipe_data'){ elsif ($req->{action} eq 'wipe_data'){
if (!$optf->{etherpad} || ($optf->{etherpad}->delete_pad($room->{etherpad_group} . '$' . $room->{name}) && if (!$optf->{etherpad} ||
($optf->{etherpad}->delete_pad($room->{etherpad_group} . '$' . $room->{name}) &&
$self->create_pad($room->{name}) && $self->create_pad($room->{name}) &&
$self->create_etherpad_session($room->{name}))){ $self->create_etherpad_session($room->{name}))){
return $self->render( return $self->render(
@ -2217,7 +2133,7 @@ any '/api' => sub {
msg => $self->l('ERROR_OCCURRED'), msg => $self->l('ERROR_OCCURRED'),
err => 'ERROR_OCCURRED', err => 'ERROR_OCCURRED',
}, },
styaus => 503 status => 503
); );
} }
# Delete a room # Delete a room
@ -2364,6 +2280,7 @@ get '/:room' => sub {
); );
}; };
# use the templates defined in the config # use the templates defined in the config
push @{app->renderer->paths}, 'templates/' . $config->{'interface.template'}; push @{app->renderer->paths}, 'templates/' . $config->{'interface.template'};

Write Preview
Loading…
Cancel
Save