flodgatt/src/main.rs

//! Streaming server for Mastodon
//!
//!
//! This server provides live, streaming updates for Mastodon clients.  Specifically, when a server
//! is running this sever, Mastodon clients can use either Server Sent Events or WebSockets to
//! connect to the server with the API described [in the public API
//! documentation](https://docs.joinmastodon.org/api/streaming/)
//!
//! # Notes on data flow
//! * **Client Request → Warp**:
//! Warp filters for valid requests and parses request data. Based on that data, it generates a `User`
//! representing the client that made the request.  The `User` is authenticated, if appropriate.  Warp
//! repeatedly polls the StreamManager for information relevant to the User.
//!
//! * **Warp → StreamManager**:
//! A new `StreamManager` is created for each request.  The `StreamManager` exists to manage concurrent
//! access to the (single) `Receiver`, which it can access behind an `Arc<Mutex>`.  The `StreamManager`
//! polles the `Receiver` for any updates relvant to the current client.  If there are updates, the
//! `StreamManager` filters them with the client's filters and passes any matching updates up to Warp.
//! The `StreamManager` is also responsible for sending `subscribe` commands to Redis (via the
//! `Receiver`) when necessary.
//!
//! * **StreamManger → Receiver**:
//! The Receiver receives data from Redis and stores it in a series of queues (one for each
//! StreamManager). When (asynchronously) polled by the StreamManager, it sends back the  messages
//! relevant to that StreamManager and removes them from the queue.

pub mod error;
pub mod query;
pub mod receiver;
pub mod redis_cmd;
pub mod stream;
pub mod timeline;
pub mod user;
pub mod ws;
use dotenv::dotenv;
use futures::stream::Stream;
use futures::Async;
use receiver::Receiver;
use std::env;
use std::net::SocketAddr;
use stream::StreamManager;
use user::{OauthScope::*, Scope, User};
use warp::path;
use warp::Filter as WarpFilter;

fn main() {
    pretty_env_logger::init();
    dotenv().ok();

    let redis_updates = StreamManager::new(Receiver::new());
    let redis_updates_sse = redis_updates.blank_copy();
    let redis_updates_ws = redis_updates.blank_copy();

    let routes = any_of!(
        // GET /api/v1/streaming/user/notification                     [private; notification filter]
        timeline::user_notifications(),
        // GET /api/v1/streaming/user                                  [private; language filter]
        timeline::user(),
        // GET /api/v1/streaming/public/local?only_media=true          [public; language filter]
        timeline::public_local_media(),
        // GET /api/v1/streaming/public?only_media=true                [public; language filter]
        timeline::public_media(),
        // GET /api/v1/streaming/public/local                          [public; language filter]
        timeline::public_local(),
        // GET /api/v1/streaming/public                                [public; language filter]
        timeline::public(),
        // GET /api/v1/streaming/direct                                [private; *no* filter]
        timeline::direct(),
        // GET /api/v1/streaming/hashtag?tag=:hashtag                  [public; no filter]
        timeline::hashtag(),
        // GET /api/v1/streaming/hashtag/local?tag=:hashtag            [public; no filter]
        timeline::hashtag_local(),
        // GET /api/v1/streaming/list?list=:list_id                    [private; no filter]
        timeline::list()
    )
    .untuple_one()
    .and(warp::sse())
    .map(move |timeline: String, user: User, sse: warp::sse::Sse| {
        let mut redis_stream = redis_updates_sse.configure_copy(&timeline, user);
        let event_stream = tokio::timer::Interval::new(
            std::time::Instant::now(),
            std::time::Duration::from_millis(100),
        )
        .filter_map(move |_| match redis_stream.poll() {
            Ok(Async::Ready(Some(json_value))) => Some((
                warp::sse::event(json_value["event"].clone().to_string()),
                warp::sse::data(json_value["payload"].clone()),
            )),
            _ => None,
        });
        sse.reply(warp::sse::keep(event_stream, None))
    })
    .with(warp::reply::with::header("Connection", "keep-alive"))
    .recover(error::handle_errors);

    //let redis_updates_ws = StreamManager::new(Receiver::new());
    let websocket = path!("api" / "v1" / "streaming")
        .and(Scope::Public.get_access_token())
        .and_then(|token| User::from_access_token(token, Scope::Public))
        .and(warp::query())
        .and(query::Media::to_filter())
        .and(query::Hashtag::to_filter())
        .and(query::List::to_filter())
        .and(warp::ws2())
        .and_then(
            move |mut user: User,
                  q: query::Stream,
                  m: query::Media,
                  h: query::Hashtag,
                  l: query::List,
                  ws: warp::ws::Ws2| {
                let scopes = user.scopes.clone();
                let timeline = match q.stream.as_ref() {
                    // Public endpoints:
                    tl @ "public" | tl @ "public:local" if m.is_truthy() => format!("{}:media", tl),
                    tl @ "public:media" | tl @ "public:local:media" => tl.to_string(),
                    tl @ "public" | tl @ "public:local" => tl.to_string(),
                    // Hashtag endpoints:
                    // TODO: handle missing query
                    tl @ "hashtag" | tl @ "hashtag:local" => format!("{}:{}", tl, h.tag),
                    // Private endpoints: User
                    "user"
                        if user.id > 0
                            && (scopes.contains(&Read) || scopes.contains(&ReadStatuses)) =>
                    {
                        format!("{}", user.id)
                    }
                    "user:notification"
                        if user.id > 0
                            && (scopes.contains(&Read) || scopes.contains(&ReadNotifications)) =>
                    {
                        user = user.with_notification_filter();
                        format!("{}", user.id)
                    }
                    // List endpoint:
                    // TODO: handle missing query
                    "list"
                        if user.authorized_for_list(l.list).is_ok()
                            && (scopes.contains(&Read) || scopes.contains(&ReadList)) =>
                    {
                        format!("list:{}", l.list)
                    }

                    // Direct endpoint:
                    "direct"
                        if user.id > 0
                            && (scopes.contains(&Read) || scopes.contains(&ReadStatuses)) =>
                    {
                        "direct".to_string()
                    }
                    // Reject unathorized access attempts for private endpoints
                    "user" | "user:notification" | "direct" | "list" => {
                        return Err(warp::reject::custom("Error: Invalid Access Token"))
                    }
                    // Other endpoints don't exist:
                    _ => return Err(warp::reject::custom("Error: Nonexistent WebSocket query")),
                };
                let token = user.access_token.clone();
                let stream = redis_updates_ws.configure_copy(&timeline, user);

                Ok((
                    ws.on_upgrade(move |socket| ws::send_replies(socket, stream)),
                    token,
                ))
            },
        )
        .map(|(reply, token)| warp::reply::with_header(reply, "sec-websocket-protocol", token));

    let address: SocketAddr = env::var("SERVER_ADDR")
        .unwrap_or("127.0.0.1:4000".to_owned())
        .parse()
        .expect("static string");
    let cors = warp::cors()
        .allow_any_origin()
        .allow_methods(vec!["GET", "OPTIONS"])
        .allow_headers(vec!["Authorization", "Accept", "Cache-Control"]);
    warp::serve(websocket.or(routes).with(cors)).run(address);
}
Add unit tests, (some) integration tests, and documentation 2019-05-01 00:41:13 +02:00			`//! Streaming server for Mastodon`
			`//!`
			`//!`
			`//! This server provides live, streaming updates for Mastodon clients. Specifically, when a server`
			`//! is running this sever, Mastodon clients can use either Server Sent Events or WebSockets to`
			`//! connect to the server with the API described [in the public API`
			`//! documentation](https://docs.joinmastodon.org/api/streaming/)`
			`//!`
			`//! # Notes on data flow`
			`//! * Client Request → Warp:`
Basic WebSocket support 2019-05-09 17:52:05 +02:00			//! Warp filters for valid requests and parses request data. Based on that data, it generates a `User`
			//! representing the client that made the request. The `User` is authenticated, if appropriate. Warp
			`//! repeatedly polls the StreamManager for information relevant to the User.`
Add unit tests, (some) integration tests, and documentation 2019-05-01 00:41:13 +02:00			`//!`
			`//! * Warp → StreamManager:`
Basic WebSocket support 2019-05-09 17:52:05 +02:00			//! A new `StreamManager` is created for each request. The `StreamManager` exists to manage concurrent
			//! access to the (single) `Receiver`, which it can access behind an `Arc<Mutex>`. The `StreamManager`
			//! polles the `Receiver` for any updates relvant to the current client. If there are updates, the
			//! `StreamManager` filters them with the client's filters and passes any matching updates up to Warp.
			//! The `StreamManager` is also responsible for sending `subscribe` commands to Redis (via the
			//! `Receiver`) when necessary.
Add unit tests, (some) integration tests, and documentation 2019-05-01 00:41:13 +02:00			`//!`
			`//! * StreamManger → Receiver:`
			`//! The Receiver receives data from Redis and stores it in a series of queues (one for each`
			`//! StreamManager). When (asynchronously) polled by the StreamManager, it sends back the messages`
			`//! relevant to that StreamManager and removes them from the queue.`

			`pub mod error;`
			`pub mod query;`
			`pub mod receiver;`
Revised WebSocket implementation 2019-05-10 07:47:29 +02:00			`pub mod redis_cmd;`
Add unit tests, (some) integration tests, and documentation 2019-05-01 00:41:13 +02:00			`pub mod stream;`
			`pub mod timeline;`
			`pub mod user;`
Basic WebSocket support 2019-05-09 17:52:05 +02:00			`pub mod ws;`
Add dotenv configuration 2019-05-10 12:22:26 +02:00			`use dotenv::dotenv;`
Implement basic Server Sent Events with Warp This commit rolls up several days of work that took place in a side repo which was originally intended to be a test/proof-of-concept repo but that grew into a full implementation. This implementation switches to Warp as the framework for the primary web server (in large part because Warp offers built-in support for SSE and several other advantages). This implementation relies on a custom Redis interface built on Tokio (because the current Redis Rust crate does not support asnyc PubSub). Using a custom interface should also be faster, since it does not contain logic for anything other than pubsub—which is all we need. Finally, I note that the SSE support is currently as feature-complete as it is possible to be without having yet added the Postgress interface this means that all of the endpoints are present and are accessible on localhost. However, none of the endpoints have authentication yet, and the endpoints that should provide user-specific data (e.g., `/api/v1/streaming/user`) are currently hard-coded to provide data for user 1 (the admin). Other than those limitations, however, the SSE implementation is feature complete. 2019-04-15 20:22:44 +02:00			`use futures::stream::Stream;`
Revised WebSocket implementation 2019-05-10 07:47:29 +02:00			`use futures::Async;`
Share a single Redis connection This commit revises the code structure to share a single connection to Redis (with multiple subscriptions on that connection) rather than mutiple connections (each with one subscription). It also simplifies the code based on that change. 2019-04-30 15:44:51 +02:00			`use receiver::Receiver;`
Add dotenv configuration 2019-05-10 12:22:26 +02:00			`use std::env;`
			`use std::net::SocketAddr;`
Add ability for multiple clients to connect to the same pub/sub connection 2019-04-28 23:28:57 +02:00			`use stream::StreamManager;`
Check oauth scopes and reject unauthorized requests 2019-07-04 19:27:11 +02:00			`use user::{OauthScope::*, Scope, User};`
Basic WebSocket support 2019-05-09 17:52:05 +02:00			`use warp::path;`
Add unit tests, (some) integration tests, and documentation 2019-05-01 00:41:13 +02:00			`use warp::Filter as WarpFilter;`
Added structures for env variables 2019-02-19 20:29:32 +01:00
Implement basic Server Sent Events with Warp This commit rolls up several days of work that took place in a side repo which was originally intended to be a test/proof-of-concept repo but that grew into a full implementation. This implementation switches to Warp as the framework for the primary web server (in large part because Warp offers built-in support for SSE and several other advantages). This implementation relies on a custom Redis interface built on Tokio (because the current Redis Rust crate does not support asnyc PubSub). Using a custom interface should also be faster, since it does not contain logic for anything other than pubsub—which is all we need. Finally, I note that the SSE support is currently as feature-complete as it is possible to be without having yet added the Postgress interface this means that all of the endpoints are present and are accessible on localhost. However, none of the endpoints have authentication yet, and the endpoints that should provide user-specific data (e.g., `/api/v1/streaming/user`) are currently hard-coded to provide data for user 1 (the admin). Other than those limitations, however, the SSE implementation is feature complete. 2019-04-15 20:22:44 +02:00			`fn main() {`
Add logging with `pretty_env_log` This commit adds basic logging at both the `info` level (for establishing a new stream) and at the `debug` level (for streaming JSON). 2019-04-18 16:10:01 +02:00			`pretty_env_logger::init();`
Add dotenv configuration 2019-05-10 12:22:26 +02:00			`dotenv().ok();`
Added all endpoints 2019-02-11 18:58:51 +01:00
Basic WebSocket support 2019-05-09 17:52:05 +02:00			`let redis_updates = StreamManager::new(Receiver::new());`
Revised WebSocket implementation 2019-05-10 07:47:29 +02:00			`let redis_updates_sse = redis_updates.blank_copy();`
			`let redis_updates_ws = redis_updates.blank_copy();`
Add unit tests, (some) integration tests, and documentation 2019-05-01 00:41:13 +02:00
Basic WebSocket support 2019-05-09 17:52:05 +02:00			`let routes = any_of!(`
			`// GET /api/v1/streaming/user/notification [private; notification filter]`
			`timeline::user_notifications(),`
			`// GET /api/v1/streaming/user [private; language filter]`
			`timeline::user(),`
			`// GET /api/v1/streaming/public/local?only_media=true [public; language filter]`
			`timeline::public_local_media(),`
			`// GET /api/v1/streaming/public?only_media=true [public; language filter]`
			`timeline::public_media(),`
			`// GET /api/v1/streaming/public/local [public; language filter]`
			`timeline::public_local(),`
			`// GET /api/v1/streaming/public [public; language filter]`
			`timeline::public(),`
			`// GET /api/v1/streaming/direct [private; no filter]`
			`timeline::direct(),`
			`// GET /api/v1/streaming/hashtag?tag=:hashtag [public; no filter]`
			`timeline::hashtag(),`
			`// GET /api/v1/streaming/hashtag/local?tag=:hashtag [public; no filter]`
			`timeline::hashtag_local(),`
			`// GET /api/v1/streaming/list?list=:list_id [private; no filter]`
			`timeline::list()`
			`)`
			`.untuple_one()`
			`.and(warp::sse())`
Revised WebSocket implementation 2019-05-10 07:47:29 +02:00			`.map(move \|timeline: String, user: User, sse: warp::sse::Sse\| {`
			`let mut redis_stream = redis_updates_sse.configure_copy(&timeline, user);`
			`let event_stream = tokio::timer::Interval::new(`
			`std::time::Instant::now(),`
			`std::time::Duration::from_millis(100),`
			`)`
			`.filter_map(move \|_\| match redis_stream.poll() {`
			`Ok(Async::Ready(Some(json_value))) => Some((`
			`warp::sse::event(json_value["event"].clone().to_string()),`
			`warp::sse::data(json_value["payload"].clone()),`
			`)),`
			`_ => None,`
			`});`
			`sse.reply(warp::sse::keep(event_stream, None))`
			`})`
Basic WebSocket support 2019-05-09 17:52:05 +02:00			`.with(warp::reply::with::header("Connection", "keep-alive"))`
			`.recover(error::handle_errors);`
Add ability for multiple clients to connect to the same pub/sub connection 2019-04-28 23:28:57 +02:00
Revised WebSocket implementation 2019-05-10 07:47:29 +02:00			`//let redis_updates_ws = StreamManager::new(Receiver::new());`
Working WS implemetation, but not cleaned up 2019-05-09 05:02:01 +02:00			`let websocket = path!("api" / "v1" / "streaming")`
Support passing access tokens via Sec-WebSocket-Protocol header Previously, the access token needed to be passed via the query string; with this commit, the token can be passed either through the query string or the Sec-WebSocket-Protocol header. This was done to correspond to the changes made to the streaming.js version in [Improve streaming server security](https://github.com/tootsuite/mastodon/pull/10818). However, I am not sure that it does increase security; as explained at <https://support.ably.io/support/solutions/articles/3000075120-is-it-secure-to-send-the-access-token-as-part-of-the-websocket-url-query-params->, there is generally no security advantage to passing sensitive information via websocket headers instead of the query string—the entire connection is encrypted and is not stored in the browser history, so the typical reasons to keep sensitive info out of the query string don't apply. I would welcome any corrections on this/reasons this change improves security. 2019-07-04 16:57:15 +02:00			`.and(Scope::Public.get_access_token())`
Working WS implemetation, but not cleaned up 2019-05-09 05:02:01 +02:00			`.and_then(\|token\| User::from_access_token(token, Scope::Public))`
			`.and(warp::query())`
			`.and(query::Media::to_filter())`
			`.and(query::Hashtag::to_filter())`
			`.and(query::List::to_filter())`
			`.and(warp::ws2())`
			`.and_then(`
Revised WebSocket implementation 2019-05-10 07:47:29 +02:00			`move \|mut user: User,`
			`q: query::Stream,`
			`m: query::Media,`
			`h: query::Hashtag,`
			`l: query::List,`
			`ws: warp::ws::Ws2\| {`
Check oauth scopes and reject unauthorized requests 2019-07-04 19:27:11 +02:00			`let scopes = user.scopes.clone();`
Working WS implemetation, but not cleaned up 2019-05-09 05:02:01 +02:00			`let timeline = match q.stream.as_ref() {`
			`// Public endpoints:`
			`tl @ "public" \| tl @ "public:local" if m.is_truthy() => format!("{}:media", tl),`
Basic WebSocket support 2019-05-09 17:52:05 +02:00			`tl @ "public:media" \| tl @ "public:local:media" => tl.to_string(),`
			`tl @ "public" \| tl @ "public:local" => tl.to_string(),`
Working WS implemetation, but not cleaned up 2019-05-09 05:02:01 +02:00			`// Hashtag endpoints:`
			`// TODO: handle missing query`
			`tl @ "hashtag" \| tl @ "hashtag:local" => format!("{}:{}", tl, h.tag),`
Check oauth scopes and reject unauthorized requests 2019-07-04 19:27:11 +02:00			`// Private endpoints: User`
			`"user"`
			`if user.id > 0`
			`&& (scopes.contains(&Read) \|\| scopes.contains(&ReadStatuses)) =>`
			`{`
			`format!("{}", user.id)`
			`}`
			`"user:notification"`
			`if user.id > 0`
			`&& (scopes.contains(&Read) \|\| scopes.contains(&ReadNotifications)) =>`
			`{`
			`user = user.with_notification_filter();`
			`format!("{}", user.id)`
			`}`
Working WS implemetation, but not cleaned up 2019-05-09 05:02:01 +02:00			`// List endpoint:`
			`// TODO: handle missing query`
Check oauth scopes and reject unauthorized requests 2019-07-04 19:27:11 +02:00			`"list"`
			`if user.authorized_for_list(l.list).is_ok()`
			`&& (scopes.contains(&Read) \|\| scopes.contains(&ReadList)) =>`
			`{`
			`format!("list:{}", l.list)`
			`}`

Working WS implemetation, but not cleaned up 2019-05-09 05:02:01 +02:00			`// Direct endpoint:`
Check oauth scopes and reject unauthorized requests 2019-07-04 19:27:11 +02:00			`"direct"`
			`if user.id > 0`
			`&& (scopes.contains(&Read) \|\| scopes.contains(&ReadStatuses)) =>`
			`{`
			`"direct".to_string()`
			`}`
			`// Reject unathorized access attempts for private endpoints`
			`"user" \| "user:notification" \| "direct" \| "list" => {`
			`return Err(warp::reject::custom("Error: Invalid Access Token"))`
			`}`
Working WS implemetation, but not cleaned up 2019-05-09 05:02:01 +02:00			`// Other endpoints don't exist:`
			`_ => return Err(warp::reject::custom("Error: Nonexistent WebSocket query")),`
			`};`
Support passing access tokens via Sec-WebSocket-Protocol header Previously, the access token needed to be passed via the query string; with this commit, the token can be passed either through the query string or the Sec-WebSocket-Protocol header. This was done to correspond to the changes made to the streaming.js version in [Improve streaming server security](https://github.com/tootsuite/mastodon/pull/10818). However, I am not sure that it does increase security; as explained at <https://support.ably.io/support/solutions/articles/3000075120-is-it-secure-to-send-the-access-token-as-part-of-the-websocket-url-query-params->, there is generally no security advantage to passing sensitive information via websocket headers instead of the query string—the entire connection is encrypted and is not stored in the browser history, so the typical reasons to keep sensitive info out of the query string don't apply. I would welcome any corrections on this/reasons this change improves security. 2019-07-04 16:57:15 +02:00			`let token = user.access_token.clone();`
Revised WebSocket implementation 2019-05-10 07:47:29 +02:00			`let stream = redis_updates_ws.configure_copy(&timeline, user);`
Working WS implemetation, but not cleaned up 2019-05-09 05:02:01 +02:00
Support passing access tokens via Sec-WebSocket-Protocol header Previously, the access token needed to be passed via the query string; with this commit, the token can be passed either through the query string or the Sec-WebSocket-Protocol header. This was done to correspond to the changes made to the streaming.js version in [Improve streaming server security](https://github.com/tootsuite/mastodon/pull/10818). However, I am not sure that it does increase security; as explained at <https://support.ably.io/support/solutions/articles/3000075120-is-it-secure-to-send-the-access-token-as-part-of-the-websocket-url-query-params->, there is generally no security advantage to passing sensitive information via websocket headers instead of the query string—the entire connection is encrypted and is not stored in the browser history, so the typical reasons to keep sensitive info out of the query string don't apply. I would welcome any corrections on this/reasons this change improves security. 2019-07-04 16:57:15 +02:00			`Ok((`
			`ws.on_upgrade(move \|socket\| ws::send_replies(socket, stream)),`
			`token,`
			`))`
Working WS implemetation, but not cleaned up 2019-05-09 05:02:01 +02:00			`},`
Add hard-coded "sec-websocket-protocol" response header 2019-07-04 15:33:50 +02:00			`)`
Support passing access tokens via Sec-WebSocket-Protocol header Previously, the access token needed to be passed via the query string; with this commit, the token can be passed either through the query string or the Sec-WebSocket-Protocol header. This was done to correspond to the changes made to the streaming.js version in [Improve streaming server security](https://github.com/tootsuite/mastodon/pull/10818). However, I am not sure that it does increase security; as explained at <https://support.ably.io/support/solutions/articles/3000075120-is-it-secure-to-send-the-access-token-as-part-of-the-websocket-url-query-params->, there is generally no security advantage to passing sensitive information via websocket headers instead of the query string—the entire connection is encrypted and is not stored in the browser history, so the typical reasons to keep sensitive info out of the query string don't apply. I would welcome any corrections on this/reasons this change improves security. 2019-07-04 16:57:15 +02:00			`.map(\|(reply, token)\| warp::reply::with_header(reply, "sec-websocket-protocol", token));`
Working WS implemetation, but not cleaned up 2019-05-09 05:02:01 +02:00
Add dotenv configuration 2019-05-10 12:22:26 +02:00			`let address: SocketAddr = env::var("SERVER_ADDR")`
			`.unwrap_or("127.0.0.1:4000".to_owned())`
			`.parse()`
			`.expect("static string");`
Add CORS support Cross-Origin requests were already implicitly allowed, but this commit allows them explicitly and prohibits request methods other than GET. 2019-07-04 20:00:35 +02:00			`let cors = warp::cors()`
			`.allow_any_origin()`
			`.allow_methods(vec!["GET", "OPTIONS"])`
			`.allow_headers(vec!["Authorization", "Accept", "Cache-Control"]);`
			`warp::serve(websocket.or(routes).with(cors)).run(address);`
Initial project files 2019-02-11 09:45:14 +01:00			`}`