glitch-social/streaming/index.js

import dotenv from 'dotenv'
import express from 'express'
import http from 'http'
import redis from 'redis'
import pg from 'pg'
import log from 'npmlog'
import url from 'url'
import WebSocket from 'ws'

const env = process.env.NODE_ENV || 'development'

dotenv.config({
  path: env === 'production' ? '.env.production' : '.env'
})

const pgConfigs = {
  development: {
    database: 'mastodon_development',
    host:     '/var/run/postgresql',
    max:      10
  },

  production: {
    user:     process.env.DB_USER || 'mastodon',
    password: process.env.DB_PASS || '',
    database: process.env.DB_NAME || 'mastodon_production',
    host:     process.env.DB_HOST || 'localhost',
    port:     process.env.DB_PORT || 5432,
    max:      10
  }
}

const app    = express()
const pgPool = new pg.Pool(pgConfigs[env])
const server = http.createServer(app)
const wss    = new WebSocket.Server({ server })

const allowCrossDomain = (req, res, next) => {
  res.header('Access-Control-Allow-Origin', '*')
  res.header('Access-Control-Allow-Headers', 'Authorization, Accept, Cache-Control')
  res.header('Access-Control-Allow-Methods', 'GET, OPTIONS')

  next()
}

const accountFromToken = (token, req, next) => {
  pgPool.connect((err, client, done) => {
    if (err) {
      return next(err)
    }

    client.query('SELECT oauth_access_tokens.resource_owner_id, users.account_id FROM oauth_access_tokens INNER JOIN users ON oauth_access_tokens.resource_owner_id = users.id WHERE oauth_access_tokens.token = $1 LIMIT 1', [token], (err, result) => {
      done()

      if (err) {
        return next(err)
      }

      if (result.rows.length === 0) {
        err = new Error('Invalid access token')
        err.statusCode = 401

        return next(err)
      }

      req.accountId = result.rows[0].account_id

      next()
    })
  })
}

const authenticationMiddleware = (req, res, next) => {
  if (req.method === 'OPTIONS') {
    return next()
  }

  const authorization = req.get('Authorization')

  if (!authorization) {
    const err = new Error('Missing access token')
    err.statusCode = 401

    return next(err)
  }

  const token = authorization.replace(/^Bearer /, '')

  accountFromToken(token, req, next)
}

const errorMiddleware = (err, req, res, next) => {
  log.error(err)
  res.writeHead(err.statusCode || 500, { 'Content-Type': 'application/json' })
  res.end(JSON.stringify({ error: err.statusCode ? `${err}` : 'An unexpected error occurred' }))
}

const placeholders = (arr, shift = 0) => arr.map((_, i) => `$${i + 1 + shift}`).join(', ');

const streamFrom = (redisClient, id, req, output, needsFiltering = false) => {
  log.verbose(`Starting stream from ${id} for ${req.accountId}`)

  redisClient.on('message', (channel, message) => {
    const { event, payload } = JSON.parse(message)

    // Only messages that may require filtering are statuses, since notifications
    // are already personalized and deletes do not matter
    if (needsFiltering && event === 'update') {
      pgPool.connect((err, client, done) => {
        if (err) {
          log.error(err)
          return
        }

        const unpackedPayload  = JSON.parse(payload)
        const targetAccountIds = [unpackedPayload.account.id].concat(unpackedPayload.mentions.map(item => item.id)).concat(unpackedPayload.reblog ? [unpackedPayload.reblog.account.id] : [])

        client.query(`SELECT target_account_id FROM blocks WHERE account_id = $1 AND target_account_id IN (${placeholders(targetAccountIds, 1)})`, [req.accountId].concat(targetAccountIds), (err, result) => {
          done()

          if (err) {
            log.error(err)
            return
          }

          if (result.rows.length > 0) {
            return
          }

          log.silly(`Transmitting for ${req.accountId}: ${event} ${payload}`)
          output(event, payload)
        })
      })
    } else {
      log.silly(`Transmitting for ${req.accountId}: ${event} ${payload}`)
      output(event, payload)
    }
  })

  redisClient.subscribe(id)
}

// Setup stream output to HTTP
const streamToHttp = (req, res, redisClient) => {
  res.setHeader('Content-Type', 'text/event-stream')
  res.setHeader('Transfer-Encoding', 'chunked')

  const heartbeat = setInterval(() => res.write(':thump\n'), 15000)

  req.on('close', () => {
    log.verbose(`Ending stream for ${req.accountId}`)
    clearInterval(heartbeat)
    redisClient.quit()
  })

  return (event, payload) => {
    res.write(`event: ${event}\n`)
    res.write(`data: ${payload}\n\n`)
  }
}

// Setup stream output to WebSockets
const streamToWs = (req, ws, redisClient) => {
  ws.on('close', () => {
    log.verbose(`Ending stream for ${req.accountId}`)
    redisClient.quit()
  })

  return (event, payload) => {
    ws.send(JSON.stringify({ event, payload }))
  }
}

// Get new redis connection
const getRedisClient = () => redis.createClient({
  host:     process.env.REDIS_HOST     || '127.0.0.1',
  port:     process.env.REDIS_PORT     || 6379,
  password: process.env.REDIS_PASSWORD
})

app.use(allowCrossDomain)
app.use(authenticationMiddleware)
app.use(errorMiddleware)

app.get('/api/v1/streaming/user', (req, res) => {
  const redisClient = getRedisClient()
  streamFrom(redisClient, `timeline:${req.accountId}`, req, streamToHttp(req, res, redisClient))
})

app.get('/api/v1/streaming/public', (req, res) => {
  const redisClient = getRedisClient()
  streamFrom(redisClient, 'timeline:public', req, streamToHttp(req, res, redisClient), true)
})

app.get('/api/v1/streaming/hashtag', (req, res) => {
  const redisClient = getRedisClient()
  streamFrom(redisClient, `timeline:hashtag:${req.params.tag}`, req, streamToHttp(req, res, redisClient), true)
})

wss.on('connection', ws => {
  const location = url.parse(ws.upgradeReq.url, true)
  const token    = location.query.access_token
  const req      = {}

  accountFromToken(token, req, err => {
    if (err) {
      log.error(err)
      ws.close()
      return
    }

    const redisClient = getRedisClient()

    switch(location.query.stream) {
    case 'user':
      streamFrom(redisClient, `timeline:${req.accountId}`, req, streamToWs(req, ws, redisClient))
      break;
    case 'public':
      streamFrom(redisClient, 'timeline:public', req, streamToWs(req, ws, redisClient), true)
      break;
    case 'hashtag':
      streamFrom(redisClient, `timeline:hashtag:${location.query.tag}`, req, streamToWs(req, ws, redisClient), true)
      break;
    default:
      ws.close()
    }
  })
})

server.listen(process.env.PORT || 4000, () => {
  log.level = process.env.LOG_LEVEL || 'verbose'
  log.info(`Starting streaming API server on port ${server.address().port}`)
})
Add streaming API in Node.js 2017-02-02 00:31:09 +00:00			`import dotenv from 'dotenv'`
			`import express from 'express'`
Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand. 2017-02-03 23:34:31 +00:00			`import http from 'http'`
Add streaming API in Node.js 2017-02-02 00:31:09 +00:00			`import redis from 'redis'`
			`import pg from 'pg'`
Add logging and filtering to the node.js streaming API 2017-02-02 12:56:14 +00:00			`import log from 'npmlog'`
Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand. 2017-02-03 23:34:31 +00:00			`import url from 'url'`
			`import WebSocket from 'ws'`
Add streaming API in Node.js 2017-02-02 00:31:09 +00:00
Make node read the right .env file 2017-02-02 15:11:36 +00:00			`const env = process.env.NODE_ENV \|\| 'development'`

			`dotenv.config({`
			`path: env === 'production' ? '.env.production' : '.env'`
			`})`
Add streaming API in Node.js 2017-02-02 00:31:09 +00:00
			`const pgConfigs = {`
			`development: {`
			`database: 'mastodon_development',`
			`host: '/var/run/postgresql',`
			`max: 10`
			`},`

			`production: {`
			`user: process.env.DB_USER \|\| 'mastodon',`
			`password: process.env.DB_PASS \|\| '',`
			`database: process.env.DB_NAME \|\| 'mastodon_production',`
			`host: process.env.DB_HOST \|\| 'localhost',`
			`port: process.env.DB_PORT \|\| 5432,`
			`max: 10`
			`}`
			`}`

Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand. 2017-02-03 23:34:31 +00:00			`const app = express()`
Add streaming API in Node.js 2017-02-02 00:31:09 +00:00			`const pgPool = new pg.Pool(pgConfigs[env])`
Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand. 2017-02-03 23:34:31 +00:00			`const server = http.createServer(app)`
			`const wss = new WebSocket.Server({ server })`
Add streaming API in Node.js 2017-02-02 00:31:09 +00:00
Add CORS to the streaming API 2017-02-03 17:27:42 +00:00			`const allowCrossDomain = (req, res, next) => {`
			`res.header('Access-Control-Allow-Origin', '*')`
			`res.header('Access-Control-Allow-Headers', 'Authorization, Accept, Cache-Control')`
			`res.header('Access-Control-Allow-Methods', 'GET, OPTIONS')`

			`next()`
			`}`

Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand. 2017-02-03 23:34:31 +00:00			`const accountFromToken = (token, req, next) => {`
Add streaming API in Node.js 2017-02-02 00:31:09 +00:00			`pgPool.connect((err, client, done) => {`
			`if (err) {`
			`return next(err)`
			`}`

Fix potential resource leaks in streaming server 2017-02-02 14:20:31 +00:00			`client.query('SELECT oauth_access_tokens.resource_owner_id, users.account_id FROM oauth_access_tokens INNER JOIN users ON oauth_access_tokens.resource_owner_id = users.id WHERE oauth_access_tokens.token = $1 LIMIT 1', [token], (err, result) => {`
Add streaming API in Node.js 2017-02-02 00:31:09 +00:00			`done()`

			`if (err) {`
			`return next(err)`
			`}`

			`if (result.rows.length === 0) {`
			`err = new Error('Invalid access token')`
			`err.statusCode = 401`

			`return next(err)`
			`}`

			`req.accountId = result.rows[0].account_id`

			`next()`
			`})`
			`})`
			`}`

Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand. 2017-02-03 23:34:31 +00:00			`const authenticationMiddleware = (req, res, next) => {`
			`if (req.method === 'OPTIONS') {`
			`return next()`
			`}`

			`const authorization = req.get('Authorization')`

			`if (!authorization) {`
			`const err = new Error('Missing access token')`
			`err.statusCode = 401`

			`return next(err)`
			`}`

			`const token = authorization.replace(/^Bearer /, '')`

			`accountFromToken(token, req, next)`
			`}`

Add streaming API in Node.js 2017-02-02 00:31:09 +00:00			`const errorMiddleware = (err, req, res, next) => {`
Fix streaming API queries 2017-02-02 16:10:59 +00:00			`log.error(err)`
Add streaming API in Node.js 2017-02-02 00:31:09 +00:00			`res.writeHead(err.statusCode \|\| 500, { 'Content-Type': 'application/json' })`
Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand. 2017-02-03 23:34:31 +00:00			res.end(JSON.stringify({ error: err.statusCode ? `${err}` : 'An unexpected error occurred' }))
Add streaming API in Node.js 2017-02-02 00:31:09 +00:00			`}`

Fix streaming API queries 2017-02-02 16:10:59 +00:00			const placeholders = (arr, shift = 0) => arr.map((_, i) => `$${i + 1 + shift}`).join(', ');

Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand. 2017-02-03 23:34:31 +00:00			`const streamFrom = (redisClient, id, req, output, needsFiltering = false) => {`
Add logging and filtering to the node.js streaming API 2017-02-02 12:56:14 +00:00			log.verbose(`Starting stream from ${id} for ${req.accountId}`)

Add streaming API in Node.js 2017-02-02 00:31:09 +00:00			`redisClient.on('message', (channel, message) => {`
			`const { event, payload } = JSON.parse(message)`

Adding documentation for streaming API. Fixing filtering bug 2017-02-02 15:35:06 +00:00			`// Only messages that may require filtering are statuses, since notifications`
			`// are already personalized and deletes do not matter`
			`if (needsFiltering && event === 'update') {`
Add logging and filtering to the node.js streaming API 2017-02-02 12:56:14 +00:00			`pgPool.connect((err, client, done) => {`
			`if (err) {`
			`log.error(err)`
			`return`
			`}`

			`const unpackedPayload = JSON.parse(payload)`
Fix streaming API queries 2017-02-02 16:10:59 +00:00			`const targetAccountIds = [unpackedPayload.account.id].concat(unpackedPayload.mentions.map(item => item.id)).concat(unpackedPayload.reblog ? [unpackedPayload.reblog.account.id] : [])`
Add logging and filtering to the node.js streaming API 2017-02-02 12:56:14 +00:00
Fix streaming API queries 2017-02-02 16:10:59 +00:00			client.query(`SELECT target_account_id FROM blocks WHERE account_id = $1 AND target_account_id IN (${placeholders(targetAccountIds, 1)})`, [req.accountId].concat(targetAccountIds), (err, result) => {
Add logging and filtering to the node.js streaming API 2017-02-02 12:56:14 +00:00			`done()`

			`if (err) {`
			`log.error(err)`
			`return`
			`}`

			`if (result.rows.length > 0) {`
			`return`
			`}`

Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand. 2017-02-03 23:34:31 +00:00			log.silly(`Transmitting for ${req.accountId}: ${event} ${payload}`)
			`output(event, payload)`
Add logging and filtering to the node.js streaming API 2017-02-02 12:56:14 +00:00			`})`
			`})`
			`} else {`
Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand. 2017-02-03 23:34:31 +00:00			log.silly(`Transmitting for ${req.accountId}: ${event} ${payload}`)
			`output(event, payload)`
Add logging and filtering to the node.js streaming API 2017-02-02 12:56:14 +00:00			`}`
Add streaming API in Node.js 2017-02-02 00:31:09 +00:00			`})`

Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand. 2017-02-03 23:34:31 +00:00			`redisClient.subscribe(id)`
			`}`

			`// Setup stream output to HTTP`
			`const streamToHttp = (req, res, redisClient) => {`
			`res.setHeader('Content-Type', 'text/event-stream')`
			`res.setHeader('Transfer-Encoding', 'chunked')`

Fix potential resource leaks in streaming server 2017-02-02 14:20:31 +00:00			`const heartbeat = setInterval(() => res.write(':thump\n'), 15000)`

			`req.on('close', () => {`
Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand. 2017-02-03 23:34:31 +00:00			log.verbose(`Ending stream for ${req.accountId}`)
Fix potential resource leaks in streaming server 2017-02-02 14:20:31 +00:00			`clearInterval(heartbeat)`
			`redisClient.quit()`
			`})`
Add streaming API in Node.js 2017-02-02 00:31:09 +00:00
Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand. 2017-02-03 23:34:31 +00:00			`return (event, payload) => {`
			res.write(`event: ${event}\n`)
			res.write(`data: ${payload}\n\n`)
			`}`
			`}`

			`// Setup stream output to WebSockets`
			`const streamToWs = (req, ws, redisClient) => {`
			`ws.on('close', () => {`
			log.verbose(`Ending stream for ${req.accountId}`)
			`redisClient.quit()`
			`})`

			`return (event, payload) => {`
			`ws.send(JSON.stringify({ event, payload }))`
			`}`
Add streaming API in Node.js 2017-02-02 00:31:09 +00:00			`}`

Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand. 2017-02-03 23:34:31 +00:00			`// Get new redis connection`
			`const getRedisClient = () => redis.createClient({`
			`host: process.env.REDIS_HOST \|\| '127.0.0.1',`
			`port: process.env.REDIS_PORT \|\| 6379,`
			`password: process.env.REDIS_PASSWORD`
			`})`

Add CORS to the streaming API 2017-02-03 17:27:42 +00:00			`app.use(allowCrossDomain)`
Add streaming API in Node.js 2017-02-02 00:31:09 +00:00			`app.use(authenticationMiddleware)`
			`app.use(errorMiddleware)`

Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand. 2017-02-03 23:34:31 +00:00			`app.get('/api/v1/streaming/user', (req, res) => {`
			`const redisClient = getRedisClient()`
			streamFrom(redisClient, `timeline:${req.accountId}`, req, streamToHttp(req, res, redisClient))
			`})`

			`app.get('/api/v1/streaming/public', (req, res) => {`
			`const redisClient = getRedisClient()`
			`streamFrom(redisClient, 'timeline:public', req, streamToHttp(req, res, redisClient), true)`
			`})`

			`app.get('/api/v1/streaming/hashtag', (req, res) => {`
			`const redisClient = getRedisClient()`
			streamFrom(redisClient, `timeline:hashtag:${req.params.tag}`, req, streamToHttp(req, res, redisClient), true)
			`})`
Add logging and filtering to the node.js streaming API 2017-02-02 12:56:14 +00:00
Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand. 2017-02-03 23:34:31 +00:00			`wss.on('connection', ws => {`
			`const location = url.parse(ws.upgradeReq.url, true)`
			`const token = location.query.access_token`
			`const req = {}`
Add streaming API in Node.js 2017-02-02 00:31:09 +00:00
Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand. 2017-02-03 23:34:31 +00:00			`accountFromToken(token, req, err => {`
			`if (err) {`
			`log.error(err)`
			`ws.close()`
			`return`
			`}`

			`const redisClient = getRedisClient()`

			`switch(location.query.stream) {`
			`case 'user':`
			streamFrom(redisClient, `timeline:${req.accountId}`, req, streamToWs(req, ws, redisClient))
			`break;`
			`case 'public':`
			`streamFrom(redisClient, 'timeline:public', req, streamToWs(req, ws, redisClient), true)`
			`break;`
			`case 'hashtag':`
			streamFrom(redisClient, `timeline:hashtag:${location.query.tag}`, req, streamToWs(req, ws, redisClient), true)
			`break;`
			`default:`
			`ws.close()`
			`}`
			`})`
			`})`

			`server.listen(process.env.PORT \|\| 4000, () => {`
			`log.level = process.env.LOG_LEVEL \|\| 'verbose'`
			log.info(`Starting streaming API server on port ${server.address().port}`)
			`})`