406adfca27
* Fix 2FA/sign-in token sessions being valid after password change (#14802) If someone tries logging in to an account and is prompted for a 2FA code or sign-in token, even if the account's password or e-mail is updated in the meantime, the session will show the prompt and allow the login process to complete with a valid 2FA code or sign-in token * Fix Move handler not being triggered when failing to fetch target (#15107) When failing to fetch the target account, the ProcessingWorker fails as expected, but since it hasn't cleared the `move_in_progress` flag, the next attempt at processing skips the `Move` activity altogether. This commit changes it to clear the flag when encountering any unexpected error on fetching the target account. This is likely to occur because, of, e.g., a timeout, when many instances query the same actor at the same time. * Fix slow distinct queries where grouped queries are faster (#15287) About 2x speed-up on inboxes query * Fix possible inconsistencies in tag search (#14906) Do not downcase the queried tag before passing it to postgres when searching: - tags are not downcased on creation - `arel_table[:name].lower.matches(pattern)` generates an ILIKE anyway - if Postgres and Rails happen to use different case-folding rules, downcasing before query but not before insertion may mean that some tags with some casings are not searchable * Fix updating account counters when account_stat is not yet created (#15108) * Fix account processing failing because of large collections (#15027) Fixes #15025 * Fix downloading remote media files when server returns empty filename (#14867) Fixes #14817 * Fix webfinger redirect handling in ResolveAccountService (#15187) * Fix webfinger redirect handling in ResolveAccountService ResolveAccountService#process_webfinger! handled a one-step webfinger redirection, but only accepting the result if it matched the exact URI passed as input, defeating the point of a redirection check. Instead, use the same logic as in `ActivityPub::FetchRemoteAccountService`, updating the resulting `acct:` URI with the result of the first webfinger query. * Add tests * Remove dependency on unused and unmaintained http_parser.rb gem (#14574) It seems that years ago, the “http” gem dependend on the “http_parser.rb” gem (it now depends on the “http-parser” gem), and, still years ago, we pulled it from git in order to benefit from a bugfix that wasn't released yet (#7467). * Add tootctl maintenance fix-duplicates (#14860, #15201, #15264, #15349, #15359) * Fix old migration script not being able to run if it fails midway (#15361) * Fix old migration script not being able to run if it fails midway Improve the robustness of a migration script likely to fail because of database corruption so it can run again once database corruptions are fixed. * Display a specific error message in case of index corruption Co-authored-by: Eugen Rochko <eugen@zeonfederated.com> Co-authored-by: Claire <claire.github-309c@sitedethib.com> Co-authored-by: Eugen Rochko <eugen@zeonfederated.com> Co-authored-by: Claire <claire.github-309c@sitedethib.com>
150 lines
5.3 KiB
Ruby
150 lines
5.3 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
require 'thor'
|
|
require_relative 'mastodon/media_cli'
|
|
require_relative 'mastodon/emoji_cli'
|
|
require_relative 'mastodon/accounts_cli'
|
|
require_relative 'mastodon/feeds_cli'
|
|
require_relative 'mastodon/search_cli'
|
|
require_relative 'mastodon/settings_cli'
|
|
require_relative 'mastodon/statuses_cli'
|
|
require_relative 'mastodon/domains_cli'
|
|
require_relative 'mastodon/preview_cards_cli'
|
|
require_relative 'mastodon/cache_cli'
|
|
require_relative 'mastodon/upgrade_cli'
|
|
require_relative 'mastodon/email_domain_blocks_cli'
|
|
require_relative 'mastodon/ip_blocks_cli'
|
|
require_relative 'mastodon/maintenance_cli'
|
|
require_relative 'mastodon/version'
|
|
|
|
module Mastodon
|
|
class CLI < Thor
|
|
def self.exit_on_failure?
|
|
true
|
|
end
|
|
|
|
desc 'media SUBCOMMAND ...ARGS', 'Manage media files'
|
|
subcommand 'media', Mastodon::MediaCLI
|
|
|
|
desc 'emoji SUBCOMMAND ...ARGS', 'Manage custom emoji'
|
|
subcommand 'emoji', Mastodon::EmojiCLI
|
|
|
|
desc 'accounts SUBCOMMAND ...ARGS', 'Manage accounts'
|
|
subcommand 'accounts', Mastodon::AccountsCLI
|
|
|
|
desc 'feeds SUBCOMMAND ...ARGS', 'Manage feeds'
|
|
subcommand 'feeds', Mastodon::FeedsCLI
|
|
|
|
desc 'search SUBCOMMAND ...ARGS', 'Manage the search engine'
|
|
subcommand 'search', Mastodon::SearchCLI
|
|
|
|
desc 'settings SUBCOMMAND ...ARGS', 'Manage dynamic settings'
|
|
subcommand 'settings', Mastodon::SettingsCLI
|
|
|
|
desc 'statuses SUBCOMMAND ...ARGS', 'Manage statuses'
|
|
subcommand 'statuses', Mastodon::StatusesCLI
|
|
|
|
desc 'domains SUBCOMMAND ...ARGS', 'Manage account domains'
|
|
subcommand 'domains', Mastodon::DomainsCLI
|
|
|
|
desc 'preview_cards SUBCOMMAND ...ARGS', 'Manage preview cards'
|
|
subcommand 'preview_cards', Mastodon::PreviewCardsCLI
|
|
|
|
desc 'cache SUBCOMMAND ...ARGS', 'Manage cache'
|
|
subcommand 'cache', Mastodon::CacheCLI
|
|
|
|
desc 'upgrade SUBCOMMAND ...ARGS', 'Various version upgrade utilities'
|
|
subcommand 'upgrade', Mastodon::UpgradeCLI
|
|
|
|
desc 'email_domain_blocks SUBCOMMAND ...ARGS', 'Manage e-mail domain blocks'
|
|
subcommand 'email_domain_blocks', Mastodon::EmailDomainBlocksCLI
|
|
|
|
desc 'ip_blocks SUBCOMMAND ...ARGS', 'Manage IP blocks'
|
|
subcommand 'ip_blocks', Mastodon::IpBlocksCLI
|
|
|
|
desc 'maintenance SUBCOMMAND ...ARGS', 'Various maintenance utilities'
|
|
subcommand 'maintenance', Mastodon::MaintenanceCLI
|
|
|
|
option :dry_run, type: :boolean
|
|
desc 'self-destruct', 'Erase the server from the federation'
|
|
long_desc <<~LONG_DESC
|
|
Erase the server from the federation by broadcasting account delete
|
|
activities to all known other servers. This allows a "clean exit" from
|
|
running a Mastodon server, as it leaves next to no cache behind on
|
|
other servers.
|
|
|
|
This command is always interactive and requires confirmation twice.
|
|
|
|
No local data is actually deleted, because emptying the
|
|
database or removing files is much faster through other, external
|
|
means, such as e.g. deleting the entire VPS. However, because other
|
|
servers will delete data about local users, but no local data will be
|
|
updated (such as e.g. followers), there will be a state mismatch
|
|
that will lead to glitches and issues if you then continue to run and use
|
|
the server.
|
|
|
|
So either you know exactly what you are doing, or you are starting
|
|
from a blank slate afterwards by manually clearing out all the local
|
|
data!
|
|
LONG_DESC
|
|
def self_destruct
|
|
require 'tty-prompt'
|
|
|
|
prompt = TTY::Prompt.new
|
|
|
|
exit(1) unless prompt.ask('Type in the domain of the server to confirm:', required: true) == Rails.configuration.x.local_domain
|
|
|
|
prompt.warn('This operation WILL NOT be reversible. It can also take a long time.')
|
|
prompt.warn('While the data won\'t be erased locally, the server will be in a BROKEN STATE afterwards.')
|
|
prompt.warn('A running Sidekiq process is required. Do not shut it down until queues clear.')
|
|
|
|
exit(1) if prompt.no?('Are you sure you want to proceed?')
|
|
|
|
inboxes = Account.inboxes
|
|
processed = 0
|
|
dry_run = options[:dry_run] ? ' (DRY RUN)' : ''
|
|
|
|
if inboxes.empty?
|
|
prompt.ok('It seems like your server has not federated with anything')
|
|
prompt.ok('You can shut it down and delete it any time')
|
|
return
|
|
end
|
|
|
|
prompt.warn('Do NOT interrupt this process...')
|
|
|
|
Setting.registrations_mode = 'none'
|
|
|
|
Account.local.without_suspended.find_each do |account|
|
|
payload = ActiveModelSerializers::SerializableResource.new(
|
|
account,
|
|
serializer: ActivityPub::DeleteActorSerializer,
|
|
adapter: ActivityPub::Adapter
|
|
).as_json
|
|
|
|
json = Oj.dump(ActivityPub::LinkedDataSignature.new(payload).sign!(account))
|
|
|
|
unless options[:dry_run]
|
|
ActivityPub::DeliveryWorker.push_bulk(inboxes) do |inbox_url|
|
|
[json, account.id, inbox_url]
|
|
end
|
|
|
|
account.suspend!
|
|
end
|
|
|
|
processed += 1
|
|
end
|
|
|
|
prompt.ok("Queued #{inboxes.size * processed} items into Sidekiq for #{processed} accounts#{dry_run}")
|
|
prompt.ok('Wait until Sidekiq processes all items, then you can shut everything down and delete the data')
|
|
rescue TTY::Reader::InputInterrupt
|
|
exit(1)
|
|
end
|
|
|
|
map %w(--version -v) => :version
|
|
|
|
desc 'version', 'Show version'
|
|
def version
|
|
say(Mastodon::Version.to_s)
|
|
end
|
|
end
|
|
end
|