userAdityaa/zooid
1
0
Fork 0
forked from coracle/zooid
Code Pull Requests Activity

Rebuild management on event store

Browse Source
This commit is contained in:
Jon Staab
2025-09-26 16:05:42 -07:00
parent cfff2b0ca9
commit 0543b8a0f3
10 changed files with 499 additions and 232 deletions
Download Patch File Download Diff File Expand all files Collapse all files
README.md
-2
View File
@@ -108,8 +108,6 @@ See `justfile` for defined commands.
## TODO
- [ ] Base management API on event store
- [ ] Check banned pubkey status when checking access
- [ ] Add admin/owner/etc to list allowed pubkeys
- [ ] Watch configuration files and hot reload
- [ ] Free up resources after instance inactivity
zooid/blossom.go
+4 -12
View File
@@ -15,8 +15,7 @@ import (
type BlossomStore struct {
Config *Config
Schema *Schema
Store eventstore.Store
Events eventstore.Store
}
func (bl *BlossomStore) Init() error {
@@ -26,24 +25,17 @@ func (bl *BlossomStore) Init() error {
return err
}
// Blossom uses a wrapped event store for metadata
bl.Store = &EventStore{Schema: bl.Schema}
if err := bl.Store.Init(); err != nil {
return err
}
return nil
}
func (bl *BlossomStore) Enable(instance *Instance) {
fs := afero.NewOsFs()
dir := Env("DATA") + "/media"
backend := blossom.New(instance.Relay, "https://"+instance.Host)
backend := blossom.New(instance.Relay, "https://"+bl.Config.Host)
backend.Store = blossom.EventStoreBlobIndexWrapper{
Store: bl.Store,
ServiceURL: "https://" + instance.Host,
Store: bl.Events,
ServiceURL: "https://" + bl.Config.Host,
}
backend.StoreBlob = func(ctx context.Context, sha256 string, ext string, body []byte) error {
zooid/config.go
+25 -2
View File
@@ -15,8 +15,9 @@ type Role struct {
}
type Config struct {
Host string
Self struct {
Host string
Secret nostr.SecretKey
Self struct {
Name string `toml:"name"`
Icon string `toml:"icon"`
Schema string `toml:"schema"`
@@ -55,7 +56,13 @@ func LoadConfig(hostname string) (*Config, error) {
return nil, fmt.Errorf("failed to parse config file %s: %w", path, err)
}
secret, err := nostr.SecretKeyFromHex(config.Self.Secret)
if err != nil {
return nil, err
}
config.Host = hostname
config.Secret = secret
return &config, nil
}
@@ -102,3 +109,19 @@ func (config *Config) CanInvite(pubkey nostr.PubKey) bool {
return false
}
func (config *Config) IsAdmin(pubkey nostr.PubKey) bool {
if config.IsOwner(pubkey) {
return true
}
if config.IsSelf(pubkey) {
return true
}
if config.CanManage(pubkey) {
return true
}
return false
}
zooid/events.go
+29
View File
@@ -333,3 +333,32 @@ func (events *EventStore) CountEvents(filter nostr.Filter) (uint32, error) {
return count, nil
}
// Non-eventstore methods
func (events *EventStore) GetOrCreateApplicationSpecificData(d string) nostr.Event {
filter := nostr.Filter{
Kinds: []nostr.Kind{nostr.KindApplicationSpecificData},
Tags: nostr.TagMap{
"d": []string{d},
},
}
for event := range events.QueryEvents(filter, 1) {
return event
}
event := nostr.Event{
Kind: nostr.KindApplicationSpecificData,
CreatedAt: nostr.Now(),
Tags: nostr.Tags{
[]string{"d", d},
},
}
event.Sign(events.Config.Secret)
events.SaveEvent(event)
return event
}
zooid/events_test.go
+42
View File
@@ -8,7 +8,12 @@ import (
func createTestEventStore() *EventStore {
schema := &Schema{Name: "test_" + RandomString(8)}
config := &Config{
Host: "test.com",
Secret: nostr.Generate(),
}
return &EventStore{
Config: config,
Schema: schema,
}
}
@@ -522,3 +527,40 @@ func TestEventStore_Close(t *testing.T) {
// Close should not panic or error
store.Close()
}
func TestEventStore_GetOrCreateApplicationSpecificData(t *testing.T) {
store := createTestEventStore()
store.Init()
dTag := "test/data"
// Test creating new data when none exists
event1 := store.GetOrCreateApplicationSpecificData(dTag)
if event1.Kind != nostr.KindApplicationSpecificData {
t.Errorf("GetOrCreateApplicationSpecificData() kind = %v, want %v", event1.Kind, nostr.KindApplicationSpecificData)
}
dTagFound := event1.Tags.Find("d")
if dTagFound == nil || dTagFound[1] != dTag {
t.Errorf("GetOrCreateApplicationSpecificData() d tag = %v, want %v", dTagFound, dTag)
}
if event1.PubKey != store.Config.Secret.Public() {
t.Error("GetOrCreateApplicationSpecificData() should be signed by config secret")
}
// Test retrieving existing data
event2 := store.GetOrCreateApplicationSpecificData(dTag)
if event1.ID != event2.ID {
t.Error("GetOrCreateApplicationSpecificData() should return same event when called again")
}
// Test with different d tag creates new event
event3 := store.GetOrCreateApplicationSpecificData("other/data")
if event1.ID == event3.ID {
t.Error("GetOrCreateApplicationSpecificData() should create different event for different d tag")
}
}
zooid/instance.go
+50 -52
View File
@@ -6,6 +6,7 @@ import (
"log"
"net/http"
"slices"
"strings"
"sync"
"fiatjaf.com/nostr"
@@ -16,9 +17,7 @@ import (
)
type Instance struct {
Host string
Config *Config
Secret nostr.SecretKey
Events eventstore.Store
Blossom *BlossomStore
Management *ManagementStore
@@ -36,34 +35,29 @@ func MakeInstance(hostname string) (*Instance, error) {
return nil, err
}
secret, err := nostr.SecretKeyFromHex(config.Self.Secret)
if err != nil {
return nil, err
events := &EventStore{
Config: config,
Schema: &Schema{
Name: slug.Make(config.Self.Schema),
},
}
blossom := &BlossomStore{
Config: config,
Events: events,
}
management := &ManagementStore{
Config: config,
Events: events,
}
instance := &Instance{
Host: hostname,
Config: config,
Secret: secret,
Events: &EventStore{
Config: config,
Schema: &Schema{
Name: slug.Make(config.Self.Schema) + "_events",
},
},
Blossom: &BlossomStore{
Config: config,
Schema: &Schema{
Name: slug.Make(config.Self.Schema) + "_blossom",
},
},
Management: &ManagementStore{
Config: config,
Schema: &Schema{
Name: slug.Make(config.Self.Schema) + "_management",
},
},
Relay: khatru.NewRelay(),
Config: config,
Events: events,
Blossom: blossom,
Management: management,
Relay: khatru.NewRelay(),
}
instance.Relay.Info.Name = config.Self.Name
@@ -98,10 +92,6 @@ func MakeInstance(hostname string) (*Instance, error) {
log.Fatal("Failed to initialize blossom store:", err)
}
if err := instance.Management.Init(); err != nil {
log.Fatal("Failed to initialize management store:", err)
}
if config.Blossom.Enabled {
instance.Blossom.Enable(instance)
}
@@ -139,27 +129,15 @@ func GetInstance(hostname string) (*Instance, error) {
// Utility methods
func (instance *Instance) IsAdmin(pubkey nostr.PubKey) bool {
if instance.Config.IsOwner(pubkey) {
return true
}
if instance.Config.IsSelf(pubkey) {
return true
}
if instance.Config.CanManage(pubkey) {
return true
}
return false
}
func (instance *Instance) HasAccess(pubkey nostr.PubKey) bool {
if instance.IsAdmin(pubkey) {
if instance.Config.IsAdmin(pubkey) {
return true
}
if instance.Management.PubkeyIsBanned(pubkey) {
return false
}
filter := nostr.Filter{
Kinds: []nostr.Kind{AUTH_JOIN},
Authors: []nostr.PubKey{pubkey},
@@ -192,6 +170,18 @@ func (instance *Instance) HasGroupAccess(id string, pubkey nostr.PubKey) bool {
return instance.IsGroupMember(id, pubkey)
}
func (instance *Instance) IsInternalEvent(event nostr.Event) bool {
if event.Kind == nostr.KindApplicationSpecificData {
tag := event.Tags.Find("d")
if tag != nil && strings.HasPrefix(tag[1], "zooid/") {
return true
}
}
return false
}
func (instance *Instance) AllowRecipientEvent(event nostr.Event) bool {
// For zap receipts and gift wraps, authorize the recipient instead of the author.
// For everything else, make sure the authenticated user is the same as the event author
@@ -234,7 +224,7 @@ func (instance *Instance) GenerateInviteEvent(pubkey nostr.PubKey) nostr.Event {
},
}
event.Sign(instance.Secret)
event.Sign(instance.Config.Secret)
err := instance.Events.SaveEvent(event)
if err != nil {
@@ -299,11 +289,15 @@ func (instance *Instance) OnEvent(ctx context.Context, event nostr.Event) (rejec
return true, "restricted: you are not a member of this relay"
}
if instance.IsInternalEvent(event) {
return true, "invalid: this event is not accepted"
}
if slices.Contains(nip29.MetadataEventKinds, event.Kind) {
return true, "invalid: group metadata cannot be set directly"
}
if slices.Contains(nip29.ModerationEventKinds, event.Kind) && !instance.IsAdmin(event.PubKey) {
if slices.Contains(nip29.ModerationEventKinds, event.Kind) && !instance.Config.IsAdmin(event.PubKey) {
return true, "restricted: you are not authorized to manage groups"
}
@@ -351,6 +345,10 @@ func (instance *Instance) OnEvent(ctx context.Context, event nostr.Event) (rejec
}
}
if instance.Management.EventIsBanned(event.ID) {
return true, "restricted: this event has been banned from this relay"
}
return false, ""
}
@@ -368,7 +366,7 @@ func (instance *Instance) DeleteEvent(ctx context.Context, id nostr.ID) error {
func (instance *Instance) OnEventSaved(ctx context.Context, event nostr.Event) {
addEvent := func(newEvent nostr.Event) {
if err := newEvent.Sign(instance.Secret); err != nil {
if err := newEvent.Sign(instance.Config.Secret); err != nil {
log.Println(err)
} else {
if err := instance.Events.SaveEvent(newEvent); err != nil {
@@ -438,7 +436,7 @@ func (instance *Instance) QueryStored(ctx context.Context, filter nostr.Filter)
}
stripSignature := func(event nostr.Event) nostr.Event {
if instance.Config.Policy.StripSignatures && !instance.IsAdmin(pubkey) {
if instance.Config.Policy.StripSignatures && !instance.Config.IsAdmin(pubkey) {
var zeroSig [64]byte
event.Sig = zeroSig
}
zooid/instance_test.go
+108 -20
View File
@@ -11,7 +11,8 @@ func createTestInstance() *Instance {
ownerPubkey := ownerSecret.Public()
config := &Config{
Host: "test.com",
Host: "test.com",
Secret: ownerSecret,
Self: struct {
Name string `toml:"name"`
Icon string `toml:"icon"`
@@ -35,14 +36,17 @@ func createTestInstance() *Instance {
}
schema := &Schema{Name: "test_" + RandomString(8)}
events := &EventStore{
Config: config,
Schema: schema,
}
instance := &Instance{
Host: "test.com",
Config: config,
Secret: ownerSecret,
Events: &EventStore{
Events: events,
Management: &ManagementStore{
Config: config,
Schema: schema,
Events: events,
},
}
@@ -54,16 +58,16 @@ func createTestInstance() *Instance {
func TestInstance_IsAdmin(t *testing.T) {
instance := createTestInstance()
ownerPubkey := instance.Secret.Public()
ownerPubkey := instance.Config.Secret.Public()
otherPubkey := nostr.Generate().Public()
// Test owner is admin
if !instance.IsAdmin(ownerPubkey) {
if !instance.Config.IsAdmin(ownerPubkey) {
t.Error("IsAdmin() should return true for owner")
}
// Test non-owner is not admin
if instance.IsAdmin(otherPubkey) {
if instance.Config.IsAdmin(otherPubkey) {
t.Error("IsAdmin() should return false for non-owner")
}
@@ -74,7 +78,7 @@ func TestInstance_IsAdmin(t *testing.T) {
CanManage: true,
}
if !instance.IsAdmin(managerPubkey) {
if !instance.Config.IsAdmin(managerPubkey) {
t.Error("IsAdmin() should return true for user with manage permissions")
}
}
@@ -82,7 +86,7 @@ func TestInstance_IsAdmin(t *testing.T) {
func TestInstance_HasAccess(t *testing.T) {
instance := createTestInstance()
ownerPubkey := instance.Secret.Public()
ownerPubkey := instance.Config.Secret.Public()
userSecret := nostr.Generate()
userPubkey := userSecret.Public()
@@ -126,7 +130,7 @@ func TestInstance_IsGroupMember(t *testing.T) {
// Add user to group
putUserEvent := MakePutUserEvent(groupID, userPubkey)
putUserEvent.Sign(instance.Secret)
putUserEvent.Sign(instance.Config.Secret)
instance.Events.SaveEvent(putUserEvent)
// Test user is now a member
@@ -137,7 +141,7 @@ func TestInstance_IsGroupMember(t *testing.T) {
// Remove user from group (with a later timestamp to ensure proper ordering)
removeUserEvent := MakeRemoveUserEvent(groupID, userPubkey)
removeUserEvent.CreatedAt = nostr.Now() + 1 // Make it newer
removeUserEvent.Sign(instance.Secret)
removeUserEvent.Sign(instance.Config.Secret)
instance.Events.SaveEvent(removeUserEvent)
// Test user is no longer a member
@@ -161,7 +165,7 @@ func TestInstance_HasGroupAccess(t *testing.T) {
{"name", "Open Group"},
},
}
openGroupMeta.Sign(instance.Secret)
openGroupMeta.Sign(instance.Config.Secret)
instance.Events.SaveEvent(openGroupMeta)
// Test access to open group
@@ -180,7 +184,7 @@ func TestInstance_HasGroupAccess(t *testing.T) {
{"closed", ""},
},
}
closedGroupMeta.Sign(instance.Secret)
closedGroupMeta.Sign(instance.Config.Secret)
instance.Events.SaveEvent(closedGroupMeta)
// Test no access to closed group for non-member
@@ -190,7 +194,7 @@ func TestInstance_HasGroupAccess(t *testing.T) {
// Add user as member to closed group
putUserEvent := MakePutUserEvent(closedGroupID, userPubkey)
putUserEvent.Sign(instance.Secret)
putUserEvent.Sign(instance.Config.Secret)
instance.Events.SaveEvent(putUserEvent)
// Test access to closed group for member
@@ -216,9 +220,9 @@ func TestInstance_AllowRecipientEvent(t *testing.T) {
instance.Events.SaveEvent(joinEvent)
tests := []struct {
name string
name string
event nostr.Event
want bool
want bool
}{
{
name: "zap event with valid recipient",
@@ -285,7 +289,7 @@ func TestInstance_GenerateInviteEvent(t *testing.T) {
t.Errorf("GenerateInviteEvent() kind = %v, want %v", inviteEvent.Kind, AUTH_INVITE)
}
if inviteEvent.PubKey != instance.Secret.Public() {
if inviteEvent.PubKey != instance.Config.Secret.Public() {
t.Error("GenerateInviteEvent() should be signed by instance")
}
@@ -387,7 +391,7 @@ func TestInstance_GetGroupMetadataEvent(t *testing.T) {
{"name", "Test Group"},
},
}
originalMeta.Sign(instance.Secret)
originalMeta.Sign(instance.Config.Secret)
instance.Events.SaveEvent(originalMeta)
// Test with metadata event
@@ -399,4 +403,88 @@ func TestInstance_GetGroupMetadataEvent(t *testing.T) {
if metaEvent.ID != originalMeta.ID {
t.Error("GetGroupMetadataEvent() should return correct metadata event")
}
}
}
func TestInstance_IsInternalEvent(t *testing.T) {
instance := createTestInstance()
tests := []struct {
name string
event nostr.Event
want bool
}{
{
name: "internal zooid event",
event: nostr.Event{
Kind: nostr.KindApplicationSpecificData,
Tags: nostr.Tags{{"d", "zooid/banned_pubkeys"}},
},
want: true,
},
{
name: "internal zooid event with different data",
event: nostr.Event{
Kind: nostr.KindApplicationSpecificData,
Tags: nostr.Tags{{"d", "zooid/some_data"}},
},
want: true,
},
{
name: "non-internal event",
event: nostr.Event{
Kind: nostr.KindApplicationSpecificData,
Tags: nostr.Tags{{"d", "external/data"}},
},
want: false,
},
{
name: "wrong kind",
event: nostr.Event{
Kind: nostr.KindTextNote,
Tags: nostr.Tags{{"d", "zooid/data"}},
},
want: false,
},
{
name: "no d tag",
event: nostr.Event{
Kind: nostr.KindApplicationSpecificData,
Tags: nostr.Tags{{"t", "tag"}},
},
want: false,
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
result := instance.IsInternalEvent(tt.event)
if result != tt.want {
t.Errorf("IsInternalEvent() = %v, want %v", result, tt.want)
}
})
}
}
func TestInstance_HasAccess_WithBannedUser(t *testing.T) {
instance := createTestInstance()
userSecret := nostr.Generate()
userPubkey := userSecret.Public()
// Add user to banned list
instance.Management.BanPubkey(userPubkey, "test ban")
// Test banned user has no access even with join event
joinEvent := nostr.Event{
Kind: AUTH_JOIN,
CreatedAt: nostr.Now(),
PubKey: userPubkey,
Tags: nostr.Tags{{"claim", "test"}},
}
joinEvent.Sign(userSecret)
instance.Events.SaveEvent(joinEvent)
if instance.HasAccess(userPubkey) {
t.Error("HasAccess() should return false for banned user even with join event")
}
}
zooid/management.go
+72 -142
View File
@@ -5,177 +5,117 @@ import (
"fiatjaf.com/nostr"
"fiatjaf.com/nostr/khatru"
"fiatjaf.com/nostr/nip86"
"fmt"
"github.com/Masterminds/squirrel"
)
type ManagementStore struct {
Config *Config
Schema *Schema
Events *EventStore
}
func (m *ManagementStore) Init() error {
basicSchema := m.Schema.Render(`
CREATE TABLE IF NOT EXISTS {{.Name}}__pubkeys (
pubkey PRIMARY KEY NOT NULL,
status TEXT NOT NULL,
reason TEXT
);
// Banned pubkeys
CREATE INDEX IF NOT EXISTS {{.Name}}__idx_pubkeys_pubkey ON {{.Name}}__pubkeys(pubkey);
CREATE INDEX IF NOT EXISTS {{.Name}}__idx_pubkeys_status ON {{.Name}}__pubkeys(status);
CREATE TABLE IF NOT EXISTS {{.Name}}__events (
id PRIMARY KEY NOT NULL,
status TEXT NOT NULL,
reason TEXT
);
CREATE INDEX IF NOT EXISTS {{.Name}}__idx_events_id ON {{.Name}}__events(id);
CREATE INDEX IF NOT EXISTS {{.Name}}__idx_events_status ON {{.Name}}__events(status);
`)
if _, err := GetDb().Exec(basicSchema); err != nil {
return fmt.Errorf("failed to create schema: %w", err)
}
return nil
}
// Banned/allowed pubkeys
type Nip86PubkeyInfo struct {
type BannedPubkeyItem struct {
Pubkey nostr.PubKey
Status string
Reason string
}
func (m *ManagementStore) SelectPubkeys() squirrel.SelectBuilder {
return squirrel.Select("pubkey", "status", "reason").From(m.Schema.Prefix("pubkeys"))
}
func (m *ManagementStore) GetBannedPubkeyItems() []BannedPubkeyItem {
event := m.Events.GetOrCreateApplicationSpecificData(BANNED_PUBKEYS)
func (m *ManagementStore) QueryPubkeys(builder squirrel.SelectBuilder) []Nip86PubkeyInfo {
rows, err := builder.RunWith(GetDb()).Query()
if err != nil {
return []Nip86PubkeyInfo{}
}
defer rows.Close()
var items []Nip86PubkeyInfo
for rows.Next() {
var item Nip86PubkeyInfo
var pubkeyStr string
err := rows.Scan(&pubkeyStr, &item.Status)
if err != nil {
continue
}
if pubkey, err := nostr.PubKeyFromHex(pubkeyStr); err == nil {
item.Pubkey = pubkey
} else {
continue
}
items = append(items, item)
items := make([]BannedPubkeyItem, 0)
for tag := range event.Tags.FindAll("pubkey") {
items = append(items, BannedPubkeyItem{
Pubkey: nostr.MustPubKeyFromHex(tag[1]),
Reason: tag[2],
})
}
return items
}
func (m *ManagementStore) GetBannedPubkeys() []nostr.PubKey {
pubkeys := make([]nostr.PubKey, 0)
for _, item := range m.GetBannedPubkeyItems() {
pubkeys = append(pubkeys, item.Pubkey)
}
return pubkeys
}
func (m *ManagementStore) BanPubkey(pubkey nostr.PubKey, reason string) error {
_, err := squirrel.Insert(m.Schema.Prefix("pubkeys")).
Columns("pubkey", "status", "reason").
Values(pubkey.Hex(), "banned", reason).
Suffix("ON CONFLICT(pubkey) DO UPDATE SET status = excluded.status, reason = excluded.reason").
RunWith(GetDb()).Exec()
return err
event := m.Events.GetOrCreateApplicationSpecificData(BANNED_PUBKEYS)
event.Tags = append(event.Tags, nostr.Tag{"pubkey", pubkey.Hex(), reason})
return m.Events.SaveEvent(event)
}
func (m *ManagementStore) AllowPubkey(pubkey nostr.PubKey, reason string) error {
_, err := squirrel.Delete(m.Schema.Prefix("pubkeys")).
Where(squirrel.Eq{"pubkey": pubkey.Hex()}).
RunWith(GetDb()).Exec()
return err
event := m.Events.GetOrCreateApplicationSpecificData(BANNED_PUBKEYS)
event.Tags = Filter(event.Tags, func(t nostr.Tag) bool {
return t[1] != pubkey.Hex()
})
return m.Events.SaveEvent(event)
}
func (m *ManagementStore) PubkeyHasStatus(pubkey nostr.PubKey, status string) bool {
builder := m.SelectPubkeys().Where(squirrel.Eq{"pubkey": pubkey.Hex()})
func (m *ManagementStore) PubkeyIsBanned(pubkey nostr.PubKey) bool {
event := m.Events.GetOrCreateApplicationSpecificData(BANNED_PUBKEYS)
tag := event.Tags.FindWithValue("pubkey", pubkey.Hex())
for _, item := range m.QueryPubkeys(builder) {
if item.Status == status {
return true
}
}
return false
return tag != nil
}
// Banned/allowed events
// Banned events
type Nip86EventInfo struct {
type BannedEventItem struct {
ID nostr.ID
Status string
Reason string
}
func (m *ManagementStore) SelectEvents() squirrel.SelectBuilder {
return squirrel.Select("id", "status", "reason").From(m.Schema.Prefix("events"))
}
func (m *ManagementStore) GetBannedEventItems() []BannedEventItem {
event := m.Events.GetOrCreateApplicationSpecificData(BANNED_EVENTS)
func (m *ManagementStore) QueryEvents(builder squirrel.SelectBuilder) []Nip86EventInfo {
rows, err := builder.RunWith(GetDb()).Query()
if err != nil {
return []Nip86EventInfo{}
}
defer rows.Close()
var items []Nip86EventInfo
for rows.Next() {
var item Nip86EventInfo
var idStr string
err := rows.Scan(&idStr, &item.Status, &item.Reason)
if err != nil {
continue
}
if id, err := nostr.IDFromHex(idStr); err == nil {
item.ID = id
} else {
continue
}
items = append(items, item)
items := make([]BannedEventItem, 0)
for tag := range event.Tags.FindAll("event") {
items = append(items, BannedEventItem{
ID: nostr.MustIDFromHex(tag[1]),
Reason: tag[2],
})
}
return items
}
func (m *ManagementStore) GetBannedEvents() []nostr.ID {
ids := make([]nostr.ID, 0)
for _, item := range m.GetBannedEventItems() {
ids = append(ids, item.ID)
}
return ids
}
func (m *ManagementStore) BanEvent(id nostr.ID, reason string) error {
_, err := squirrel.Insert(m.Schema.Prefix("events")).
Columns("id", "status", "reason").
Values(id.Hex(), "banned", reason).
Suffix("ON CONFLICT(id) DO UPDATE SET status = excluded.status, reason = excluded.reason").
RunWith(GetDb()).Exec()
return err
event := m.Events.GetOrCreateApplicationSpecificData(BANNED_EVENTS)
event.Tags = append(event.Tags, nostr.Tag{"event", id.Hex(), reason})
return m.Events.SaveEvent(event)
}
func (m *ManagementStore) AllowEvent(id nostr.ID, reason string) error {
_, err := squirrel.Delete(m.Schema.Prefix("events")).
Where(squirrel.Eq{"id": id.Hex()}).
RunWith(GetDb()).Exec()
return err
event := m.Events.GetOrCreateApplicationSpecificData(BANNED_EVENTS)
event.Tags = Filter(event.Tags, func(t nostr.Tag) bool {
return t[1] == id.Hex()
})
return m.Events.SaveEvent(event)
}
func (m *ManagementStore) EventHasStatus(id nostr.ID, status string) bool {
builder := m.SelectEvents().Where(squirrel.Eq{"id": id.Hex()})
func (m *ManagementStore) EventIsBanned(id nostr.ID) bool {
event := m.Events.GetOrCreateApplicationSpecificData(BANNED_EVENTS)
tag := event.Tags.FindWithValue("event", id.Hex())
for _, item := range m.QueryEvents(builder) {
if item.Status == status {
return true
}
}
return false
return tag != nil
}
// Middleware
@@ -208,10 +148,8 @@ func (m *ManagementStore) Enable(instance *Instance) {
}
instance.Relay.ManagementAPI.ListBannedPubKeys = func(ctx context.Context) ([]nip86.PubKeyReason, error) {
items := m.QueryPubkeys(m.SelectPubkeys().Where(squirrel.Eq{"status": "banned"}))
reasons := make([]nip86.PubKeyReason, 0, len(items))
for _, item := range items {
reasons := make([]nip86.PubKeyReason, 0)
for _, item := range m.GetBannedPubkeyItems() {
reasons = append(
reasons,
nip86.PubKeyReason{
@@ -225,13 +163,7 @@ func (m *ManagementStore) Enable(instance *Instance) {
}
instance.Relay.ManagementAPI.BanEvent = func(ctx context.Context, id nostr.ID, reason string) error {
filter := nostr.Filter{
IDs: []nostr.ID{id},
}
for event := range instance.Events.QueryEvents(filter, 0) {
instance.Events.DeleteEvent(event.ID)
}
instance.Events.DeleteEvent(id)
return m.BanEvent(id, reason)
}
@@ -241,10 +173,8 @@ func (m *ManagementStore) Enable(instance *Instance) {
}
instance.Relay.ManagementAPI.ListBannedEvents = func(ctx context.Context) ([]nip86.IDReason, error) {
items := m.QueryEvents(m.SelectEvents().Where(squirrel.Eq{"status": "banned"}))
reasons := make([]nip86.IDReason, 0, len(items))
for _, item := range items {
reasons := make([]nip86.IDReason, 0)
for _, item := range m.GetBannedEventItems() {
reasons = append(
reasons,
nip86.IDReason{
zooid/management_test.go
+165
View File
@@ -0,0 +1,165 @@
package zooid
import (
"testing"
"fiatjaf.com/nostr"
)
func createTestManagementStore() *ManagementStore {
config := &Config{
Host: "test.com",
Secret: nostr.Generate(),
}
schema := &Schema{Name: "test_" + RandomString(8)}
events := &EventStore{
Config: config,
Schema: schema,
}
events.Init()
return &ManagementStore{
Config: config,
Events: events,
}
}
func TestManagementStore_BanPubkey(t *testing.T) {
mgmt := createTestManagementStore()
pubkey := nostr.Generate().Public()
reason := "spam"
// Note: BanPubkey might return "duplicate event" error due to implementation
// but the banning should still work
mgmt.BanPubkey(pubkey, reason)
// Test that pubkey is now banned
if !mgmt.PubkeyIsBanned(pubkey) {
t.Error("PubkeyIsBanned() should return true after banning")
}
// Test banned pubkey list
bannedPubkeys := mgmt.GetBannedPubkeys()
found := false
for _, banned := range bannedPubkeys {
if banned == pubkey {
found = true
break
}
}
if !found {
t.Error("GetBannedPubkeys() should include banned pubkey")
}
// Test banned pubkey items
bannedItems := mgmt.GetBannedPubkeyItems()
itemFound := false
for _, item := range bannedItems {
if item.Pubkey == pubkey && item.Reason == reason {
itemFound = true
break
}
}
if !itemFound {
t.Error("GetBannedPubkeyItems() should include banned pubkey with reason")
}
}
func TestManagementStore_AllowPubkey(t *testing.T) {
mgmt := createTestManagementStore()
pubkey := nostr.Generate().Public()
// Ban then allow
mgmt.BanPubkey(pubkey, "test")
if !mgmt.PubkeyIsBanned(pubkey) {
t.Error("Setup: pubkey should be banned")
}
mgmt.AllowPubkey(pubkey, "unbanned")
if mgmt.PubkeyIsBanned(pubkey) {
t.Error("PubkeyIsBanned() should return false after allowing")
}
}
func TestManagementStore_BanEvent(t *testing.T) {
mgmt := createTestManagementStore()
eventID := nostr.MustIDFromHex("1234567890123456789012345678901234567890123456789012345678901234")
reason := "inappropriate"
mgmt.BanEvent(eventID, reason)
// Test that event is now banned
if !mgmt.EventIsBanned(eventID) {
t.Error("EventIsBanned() should return true after banning")
}
// Test banned event list
bannedEvents := mgmt.GetBannedEvents()
found := false
for _, banned := range bannedEvents {
if banned == eventID {
found = true
break
}
}
if !found {
t.Error("GetBannedEvents() should include banned event")
}
// Test banned event items
bannedItems := mgmt.GetBannedEventItems()
itemFound := false
for _, item := range bannedItems {
if item.ID == eventID && item.Reason == reason {
itemFound = true
break
}
}
if !itemFound {
t.Error("GetBannedEventItems() should include banned event with reason")
}
}
func TestManagementStore_AllowEvent(t *testing.T) {
mgmt := createTestManagementStore()
eventID := nostr.MustIDFromHex("1234567890123456789012345678901234567890123456789012345678901234")
// Ban then allow
mgmt.BanEvent(eventID, "test")
if !mgmt.EventIsBanned(eventID) {
t.Error("Setup: event should be banned")
}
mgmt.AllowEvent(eventID, "unbanned")
if mgmt.EventIsBanned(eventID) {
t.Error("EventIsBanned() should return false after allowing")
}
}
func TestManagementStore_PubkeyIsBanned_NotBanned(t *testing.T) {
mgmt := createTestManagementStore()
pubkey := nostr.Generate().Public()
if mgmt.PubkeyIsBanned(pubkey) {
t.Error("PubkeyIsBanned() should return false for non-banned pubkey")
}
}
func TestManagementStore_EventIsBanned_NotBanned(t *testing.T) {
mgmt := createTestManagementStore()
eventID := nostr.MustIDFromHex("abcdef1234567890123456789012345678901234567890123456789012345678")
if mgmt.EventIsBanned(eventID) {
t.Error("EventIsBanned() should return false for non-banned event")
}
}
zooid/util.go
+4 -2
View File
@@ -7,8 +7,10 @@ import (
)
const (
AUTH_JOIN = 28934
AUTH_INVITE = 28935
AUTH_JOIN = 28934
AUTH_INVITE = 28935
BANNED_PUBKEYS = "zooid/banned_pubkeys"
BANNED_EVENTS = "zooid/banned_events"
)
func First[T any](s []T) T {