afb6304979
* fix: handle regex exceptions for word mutes * add i18n strings Co-authored-by: rinsuki <428rinsuki+git@gmail.com> * stricter input validation in backend * add migration for hard mutes * fix * use correct regex library in migration * use query builder to avoid SQL injection Co-authored-by: Robin B <robflop98@outlook.com> Co-authored-by: rinsuki <428rinsuki+git@gmail.com>
45 lines
1.0 KiB
TypeScript
45 lines
1.0 KiB
TypeScript
const RE2 = require('re2');
|
|
import { Note } from '@/models/entities/note';
|
|
import { User } from '@/models/entities/user';
|
|
|
|
type NoteLike = {
|
|
userId: Note['userId'];
|
|
text: Note['text'];
|
|
};
|
|
|
|
type UserLike = {
|
|
id: User['id'];
|
|
};
|
|
|
|
export async function checkWordMute(note: NoteLike, me: UserLike | null | undefined, mutedWords: Array<string | string[]>): Promise<boolean> {
|
|
// 自分自身
|
|
if (me && (note.userId === me.id)) return false;
|
|
|
|
if (mutedWords.length > 0) {
|
|
if (note.text == null) return false;
|
|
|
|
const matched = mutedWords.some(filter => {
|
|
if (Array.isArray(filter)) {
|
|
return filter.every(keyword => note.text!.includes(keyword));
|
|
} else {
|
|
// represents RegExp
|
|
const regexp = filter.match(/^\/(.+)\/(.*)$/);
|
|
|
|
// This should never happen due to input sanitisation.
|
|
if (!regexp) return false;
|
|
|
|
try {
|
|
return new RE2(regexp[1], regexp[2]).test(note.text!);
|
|
} catch (err) {
|
|
// This should never happen due to input sanitisation.
|
|
return false;
|
|
}
|
|
}
|
|
});
|
|
|
|
if (matched) return true;
|
|
}
|
|
|
|
return false;
|
|
}
|