2018-11-09 02:08:03 +00:00
require " crypto/bcrypt/password "
2019-07-07 19:00:42 +00:00
# Materialized views may not be defined using bound parameters (`$1` as used elsewhere)
2019-07-09 14:34:19 +00:00
MATERIALIZED_VIEW_SQL = - > ( email : String ) { " SELECT cv.* FROM channel_videos cv WHERE EXISTS (SELECT subscriptions FROM users u WHERE cv.ucid = ANY (u.subscriptions) AND u.email = E' #{ email . gsub ( { '\'' = > " \\ ' " , '\\' = > " \\ \\ " } ) } ') ORDER BY published DESC " }
2019-07-07 19:00:42 +00:00
2019-03-29 21:30:02 +00:00
struct User
2018-08-04 20:30:44 +00:00
module PreferencesConverter
def self . from_rs ( rs )
begin
Preferences . from_json ( rs . read ( String ) )
rescue ex
2019-03-28 18:43:40 +00:00
Preferences . from_json ( " {} " )
2018-08-04 20:30:44 +00:00
end
end
end
2019-04-03 16:35:58 +00:00
db_mapping ( {
2018-08-04 20:30:44 +00:00
updated : Time ,
notifications : Array ( String ) ,
subscriptions : Array ( String ) ,
email : String ,
preferences : {
type : Preferences ,
converter : PreferencesConverter ,
} ,
2019-06-01 15:19:18 +00:00
password : String ?,
token : String ,
watched : Array ( String ) ,
feed_needs_update : Bool ?,
2018-08-04 20:30:44 +00:00
} )
end
2019-03-28 18:43:40 +00:00
struct Preferences
2019-06-08 21:04:55 +00:00
module ProcessString
2019-05-30 23:32:47 +00:00
def self . to_json ( value : String , json : JSON :: Builder )
json . string value
end
def self . from_json ( value : JSON :: PullParser ) : String
2019-06-08 21:04:55 +00:00
HTML . escape ( value . read_string [ 0 , 100 ] )
2019-05-30 23:32:47 +00:00
end
def self . to_yaml ( value : String , yaml : YAML :: Nodes :: Builder )
yaml . scalar value
end
def self . from_yaml ( ctx : YAML :: ParseContext , node : YAML :: Nodes :: Node ) : String
2019-06-08 21:04:55 +00:00
HTML . escape ( node . value [ 0 , 100 ] )
end
end
module ClampInt
def self . to_json ( value : Int32 , json : JSON :: Builder )
json . number value
end
def self . from_json ( value : JSON :: PullParser ) : Int32
value . read_int . clamp ( 0 , MAX_ITEMS_PER_PAGE ) . to_i32
end
def self . to_yaml ( value : Int32 , yaml : YAML :: Nodes :: Builder )
yaml . scalar value
end
def self . from_yaml ( ctx : YAML :: ParseContext , node : YAML :: Nodes :: Node ) : Int32
node . value . clamp ( 0 , MAX_ITEMS_PER_PAGE )
2019-05-30 23:32:47 +00:00
end
end
2019-03-28 18:43:40 +00:00
json_mapping ( {
2019-05-01 04:39:04 +00:00
annotations : { type : Bool , default : CONFIG . default_user_preferences . annotations } ,
annotations_subscribed : { type : Bool , default : CONFIG . default_user_preferences . annotations_subscribed } ,
autoplay : { type : Bool , default : CONFIG . default_user_preferences . autoplay } ,
2019-08-15 16:29:55 +00:00
captions : { type : Array ( String ) , default : CONFIG . default_user_preferences . captions , converter : ConfigPreferences :: StringToArray } ,
comments : { type : Array ( String ) , default : CONFIG . default_user_preferences . comments , converter : ConfigPreferences :: StringToArray } ,
2019-05-01 04:39:04 +00:00
continue : { type : Bool , default : CONFIG . default_user_preferences . continue } ,
continue_autoplay : { type : Bool , default : CONFIG . default_user_preferences . continue_autoplay } ,
2019-08-15 16:29:55 +00:00
dark_mode : { type : String , default : CONFIG . default_user_preferences . dark_mode , converter : ConfigPreferences :: BoolToString } ,
2019-05-01 04:39:04 +00:00
latest_only : { type : Bool , default : CONFIG . default_user_preferences . latest_only } ,
listen : { type : Bool , default : CONFIG . default_user_preferences . listen } ,
local : { type : Bool , default : CONFIG . default_user_preferences . local } ,
2019-06-08 21:04:55 +00:00
locale : { type : String , default : CONFIG . default_user_preferences . locale , converter : ProcessString } ,
max_results : { type : Int32 , default : CONFIG . default_user_preferences . max_results , converter : ClampInt } ,
2019-05-01 04:39:04 +00:00
notifications_only : { type : Bool , default : CONFIG . default_user_preferences . notifications_only } ,
2019-08-09 00:00:22 +00:00
player_style : { type : String , default : CONFIG . default_user_preferences . player_style , converter : ProcessString } ,
2019-06-08 21:04:55 +00:00
quality : { type : String , default : CONFIG . default_user_preferences . quality , converter : ProcessString } ,
2019-10-21 00:42:18 +00:00
default_home : { type : String , default : CONFIG . default_user_preferences . default_home } ,
feed_menu : { type : Array ( String ) , default : CONFIG . default_user_preferences . feed_menu } ,
2019-05-01 04:39:04 +00:00
related_videos : { type : Bool , default : CONFIG . default_user_preferences . related_videos } ,
2019-06-08 21:04:55 +00:00
sort : { type : String , default : CONFIG . default_user_preferences . sort , converter : ProcessString } ,
2019-05-01 04:39:04 +00:00
speed : { type : Float32 , default : CONFIG . default_user_preferences . speed } ,
thin_mode : { type : Bool , default : CONFIG . default_user_preferences . thin_mode } ,
unseen_only : { type : Bool , default : CONFIG . default_user_preferences . unseen_only } ,
video_loop : { type : Bool , default : CONFIG . default_user_preferences . video_loop } ,
volume : { type : Int32 , default : CONFIG . default_user_preferences . volume } ,
2018-08-04 20:30:44 +00:00
} )
end
2018-12-15 18:05:52 +00:00
def get_user ( sid , headers , db , refresh = true )
2019-02-10 18:33:29 +00:00
if email = db . query_one? ( " SELECT email FROM session_ids WHERE id = $1 " , sid , as : String )
user = db . query_one ( " SELECT * FROM users WHERE email = $1 " , email , as : User )
2018-08-04 20:30:44 +00:00
2019-06-08 00:56:41 +00:00
if refresh && Time . utc - user . updated > 1 . minute
2019-02-10 18:33:29 +00:00
user , sid = fetch_user ( sid , headers , db )
2018-08-04 20:30:44 +00:00
user_array = user . to_a
2019-02-12 02:47:26 +00:00
user_array [ 4 ] = user_array [ 4 ] . to_json
2018-08-04 20:30:44 +00:00
args = arg_array ( user_array )
db . exec ( " INSERT INTO users VALUES ( #{ args } ) \
2019-09-24 17:37:06 +00:00
ON CONFLICT ( email ) DO UPDATE SET updated = $1 , subscriptions = $3 " , args: user_array)
2019-02-10 18:33:29 +00:00
db . exec ( " INSERT INTO session_ids VALUES ($1,$2,$3) \
2019-06-08 00:56:41 +00:00
ON CONFLICT ( id ) DO NOTHING " , sid, user.email, Time.utc)
2018-10-10 21:10:58 +00:00
begin
2019-04-11 00:56:38 +00:00
view_name = " subscriptions_ #{ sha256 ( user . email ) } "
2019-07-07 19:00:42 +00:00
db . exec ( " CREATE MATERIALIZED VIEW #{ view_name } AS #{ MATERIALIZED_VIEW_SQL . call ( user . email ) } " )
2018-10-10 21:10:58 +00:00
rescue ex
end
2018-08-04 20:30:44 +00:00
end
else
2019-02-10 18:33:29 +00:00
user , sid = fetch_user ( sid , headers , db )
2018-08-04 20:30:44 +00:00
user_array = user . to_a
2019-02-12 02:47:26 +00:00
user_array [ 4 ] = user_array [ 4 ] . to_json
2018-08-04 20:30:44 +00:00
args = arg_array ( user . to_a )
db . exec ( " INSERT INTO users VALUES ( #{ args } ) \
2019-09-24 17:37:06 +00:00
ON CONFLICT ( email ) DO UPDATE SET updated = $1 , subscriptions = $3 " , args: user_array)
2019-02-10 18:33:29 +00:00
db . exec ( " INSERT INTO session_ids VALUES ($1,$2,$3) \
2019-06-08 00:56:41 +00:00
ON CONFLICT ( id ) DO NOTHING " , sid, user.email, Time.utc)
2018-10-10 21:10:58 +00:00
begin
2019-04-11 00:56:38 +00:00
view_name = " subscriptions_ #{ sha256 ( user . email ) } "
2019-07-07 19:00:42 +00:00
db . exec ( " CREATE MATERIALIZED VIEW #{ view_name } AS #{ MATERIALIZED_VIEW_SQL . call ( user . email ) } " )
2018-10-10 21:10:58 +00:00
rescue ex
end
2018-08-04 20:30:44 +00:00
end
2019-02-10 18:33:29 +00:00
return user , sid
2018-08-04 20:30:44 +00:00
end
2018-12-15 18:05:52 +00:00
def fetch_user ( sid , headers , db )
2019-10-25 16:58:16 +00:00
feed = YT_POOL . client & . get ( " /subscription_manager?disable_polymer=1 " , headers )
2018-08-04 20:30:44 +00:00
feed = XML . parse_html ( feed . body )
channels = [ ] of String
2019-01-03 01:28:01 +00:00
channels = feed . xpath_nodes ( % q ( / / ul [ @id = " guide-channels " ] / li / a ) ) . compact_map do | channel |
if { " Popular on YouTube " , " Music " , " Sports " , " Gaming " } . includes? channel [ " title " ]
nil
else
channel [ " href " ] . lstrip ( " /channel/ " )
2018-08-04 20:30:44 +00:00
end
end
2019-01-03 01:28:01 +00:00
channels = get_batch_channels ( channels , db , false , false )
2018-08-04 20:30:44 +00:00
email = feed . xpath_node ( % q ( / / a [ @class = " yt-masthead-picker-header yt-masthead-picker-active-account " ] ) )
if email
email = email . content . strip
else
email = " "
end
token = Base64 . urlsafe_encode ( Random :: Secure . random_bytes ( 32 ) )
2019-06-08 00:56:41 +00:00
user = User . new ( Time . utc , [ ] of String , channels , email , CONFIG . default_user_preferences , nil , token , [ ] of String , true )
2019-02-10 18:33:29 +00:00
return user , sid
2018-08-04 20:30:44 +00:00
end
def create_user ( sid , email , password )
password = Crypto :: Bcrypt :: Password . create ( password , cost : 10 )
token = Base64 . urlsafe_encode ( Random :: Secure . random_bytes ( 32 ) )
2019-06-08 00:56:41 +00:00
user = User . new ( Time . utc , [ ] of String , [ ] of String , email , CONFIG . default_user_preferences , password . to_s , token , [ ] of String , true )
2018-08-04 20:30:44 +00:00
2019-02-10 18:33:29 +00:00
return user , sid
2018-08-04 20:30:44 +00:00
end
2018-11-11 15:44:16 +00:00
2018-11-17 19:18:12 +00:00
def generate_captcha ( key , db )
2018-11-26 00:26:21 +00:00
second = Random :: Secure . rand ( 12 )
second_angle = second * 30
second = second * 5
2018-11-17 19:18:12 +00:00
minute = Random :: Secure . rand ( 12 )
minute_angle = minute * 30
minute = minute * 5
hour = Random :: Secure . rand ( 12 )
hour_angle = hour * 30 + minute_angle . to_f / 12
if hour == 0
hour = 12
end
clock_svg = <<-END_SVG
2019-10-28 14:46:59 +00:00
< svg viewBox = " 0 0 100 100 " width = " 200px " height = " 200px " >
2018-11-17 19:18:12 +00:00
< circle cx = " 50 " cy = " 50 " r = " 45 " fill = " # eee " stroke = " black " stroke - width = " 2 " > < / circle>
2019-03-23 19:05:13 +00:00
2018-11-17 19:18:12 +00:00
< text x = " 69 " y = " 20.091 " text - anchor = " middle " fill = " black " font - family = " Arial " font - size = " 10px " > 1 < / text>
< text x = " 82.909 " y = " 34 " text - anchor = " middle " fill = " black " font - family = " Arial " font - size = " 10px " > 2 < / text>
< text x = " 88 " y = " 53 " text - anchor = " middle " fill = " black " font - family = " Arial " font - size = " 10px " > 3 < / text>
< text x = " 82.909 " y = " 72 " text - anchor = " middle " fill = " black " font - family = " Arial " font - size = " 10px " > 4 < / text>
< text x = " 69 " y = " 85.909 " text - anchor = " middle " fill = " black " font - family = " Arial " font - size = " 10px " > 5 < / text>
< text x = " 50 " y = " 91 " text - anchor = " middle " fill = " black " font - family = " Arial " font - size = " 10px " > 6 < / text>
< text x = " 31 " y = " 85.909 " text - anchor = " middle " fill = " black " font - family = " Arial " font - size = " 10px " > 7 < / text>
< text x = " 17.091 " y = " 72 " text - anchor = " middle " fill = " black " font - family = " Arial " font - size = " 10px " > 8 < / text>
< text x = " 12 " y = " 53 " text - anchor = " middle " fill = " black " font - family = " Arial " font - size = " 10px " > 9 < / text>
< text x = " 17.091 " y = " 34 " text - anchor = " middle " fill = " black " font - family = " Arial " font - size = " 10px " > 10 < / text>
< text x = " 31 " y = " 20.091 " text - anchor = " middle " fill = " black " font - family = " Arial " font - size = " 10px " > 11 < / text>
< text x = " 50 " y = " 15 " text - anchor = " middle " fill = " black " font - family = " Arial " font - size = " 10px " > 12 < / text>
< circle cx = " 50 " cy = " 50 " r = " 3 " fill = " black " > < / circle>
2018-11-26 00:26:21 +00:00
< line id = " second " transform = " rotate( #{ second_angle } , 50, 50) " x1 = " 50 " y1 = " 50 " x2 = " 50 " y2 = " 12 " fill = " black " stroke = " black " stroke - width = " 1 " > < / line>
2018-11-17 19:18:12 +00:00
< line id = " minute " transform = " rotate( #{ minute_angle } , 50, 50) " x1 = " 50 " y1 = " 50 " x2 = " 50 " y2 = " 16 " fill = " black " stroke = " black " stroke - width = " 2 " > < / line>
< line id = " hour " transform = " rotate( #{ hour_angle } , 50, 50) " x1 = " 50 " y1 = " 50 " x2 = " 50 " y2 = " 24 " fill = " black " stroke = " black " stroke - width = " 2 " > < / line>
< / svg>
END_SVG
image = " "
2019-10-28 14:46:59 +00:00
convert = Process . run ( %( rsvg-convert -w 400 -h 400 -b none -f png ) , shell : true ,
2018-11-17 19:18:12 +00:00
input : IO :: Memory . new ( clock_svg ) , output : Process :: Redirect :: Pipe ) do | proc |
image = proc . output . gets_to_end
image = Base64 . strict_encode ( image )
image = " data:image/png;base64, #{ image } "
end
2018-11-26 00:26:21 +00:00
answer = " #{ hour } : #{ minute . to_s . rjust ( 2 , '0' ) } : #{ second . to_s . rjust ( 2 , '0' ) } "
2018-11-17 19:18:12 +00:00
answer = OpenSSL :: HMAC . hexdigest ( :sha256 , key , answer )
2019-03-19 21:13:23 +00:00
return {
question : image ,
2019-04-18 21:23:50 +00:00
tokens : { generate_response ( answer , { " :login " } , key , db , use_nonce : true ) } ,
2019-03-19 21:13:23 +00:00
}
end
def generate_text_captcha ( key , db )
2019-04-17 14:06:31 +00:00
response = make_client ( TEXTCAPTCHA_URL ) . get ( " /omarroth@protonmail.com.json " ) . body
2019-03-19 21:13:23 +00:00
response = JSON . parse ( response )
tokens = response [ " a " ] . as_a . map do | answer |
2019-04-18 21:23:50 +00:00
generate_response ( answer . as_s , { " :login " } , key , db , use_nonce : true )
2019-03-19 21:13:23 +00:00
end
2018-11-17 19:18:12 +00:00
2019-03-19 21:13:23 +00:00
return {
question : response [ " q " ] . as_s ,
tokens : tokens ,
}
2018-11-17 19:18:12 +00:00
end
2019-05-15 17:26:29 +00:00
def subscribe_ajax ( channel_id , action , env_headers )
headers = HTTP :: Headers . new
headers [ " Cookie " ] = env_headers [ " Cookie " ]
2019-10-25 16:58:16 +00:00
html = YT_POOL . client & . get ( " /subscription_manager?disable_polymer=1 " , headers )
2019-05-15 17:26:29 +00:00
cookies = HTTP :: Cookies . from_headers ( headers )
html . cookies . each do | cookie |
if { " VISITOR_INFO1_LIVE " , " YSC " , " SIDCC " } . includes? cookie . name
if cookies [ cookie . name ]?
cookies [ cookie . name ] = cookie
else
cookies << cookie
end
end
end
headers = cookies . add_request_headers ( headers )
if match = html . body . match ( / 'XSRF_TOKEN': "(?<session_token>[A-Za-z0-9 \ _ \ - \ =]+)" / )
session_token = match [ " session_token " ]
headers [ " content-type " ] = " application/x-www-form-urlencoded "
post_req = {
2019-06-08 00:56:41 +00:00
session_token : session_token ,
2019-05-15 17:26:29 +00:00
}
post_url = " /subscription_ajax? #{ action } =1&c= #{ channel_id } "
2019-10-25 16:58:16 +00:00
YT_POOL . client & . post ( post_url , headers , form : post_req )
2019-05-15 17:26:29 +00:00
end
end
2019-06-07 17:39:12 +00:00
2019-08-05 23:49:13 +00:00
# TODO: Playlist stub, sync with YouTube for Google accounts
# def playlist_ajax(video_ids, source_playlist_id, name, privacy, action, env_headers)
# headers = HTTP::Headers.new
# headers["Cookie"] = env_headers["Cookie"]
#
2019-10-25 16:58:16 +00:00
# html = YT_POOL.client &.get("/view_all_playlists?disable_polymer=1", headers)
2019-08-05 23:49:13 +00:00
#
# cookies = HTTP::Cookies.from_headers(headers)
# html.cookies.each do |cookie|
# if {"VISITOR_INFO1_LIVE", "YSC", "SIDCC"}.includes? cookie.name
# if cookies[cookie.name]?
# cookies[cookie.name] = cookie
# else
# cookies << cookie
# end
# end
# end
# headers = cookies.add_request_headers(headers)
#
# if match = html.body.match(/'XSRF_TOKEN': "(?<session_token>[A-Za-z0-9\_\-\=]+)"/)
# session_token = match["session_token"]
#
# headers["content-type"] = "application/x-www-form-urlencoded"
#
# post_req = {
# video_ids: [] of String,
# source_playlist_id: "",
# n: name,
# p: privacy,
# session_token: session_token,
# }
# post_url = "/playlist_ajax?#{action}=1"
#
# response = client.post(post_url, headers, form: post_req)
# if response.status_code == 200
# return JSON.parse(response.body)["result"]["playlistId"].as_s
# else
# return nil
# end
# end
# end
2019-06-07 17:39:12 +00:00
def get_subscription_feed ( db , user , max_results = 40 , page = 1 )
limit = max_results . clamp ( 0 , MAX_ITEMS_PER_PAGE )
offset = ( page - 1 ) * limit
notifications = db . query_one ( " SELECT notifications FROM users WHERE email = $1 " , user . email ,
as : Array ( String ) )
view_name = " subscriptions_ #{ sha256 ( user . email ) } "
if user . preferences . notifications_only && ! notifications . empty?
# Only show notifications
args = arg_array ( notifications )
2019-09-24 17:37:06 +00:00
notifications = db . query_all ( " SELECT * FROM channel_videos WHERE id IN ( #{ args } ) ORDER BY published DESC " , args : notifications , as : ChannelVideo )
2019-06-07 17:39:12 +00:00
videos = [ ] of ChannelVideo
notifications . sort_by! { | video | video . published } . reverse!
case user . preferences . sort
when " alphabetically "
notifications . sort_by! { | video | video . title }
when " alphabetically - reverse "
notifications . sort_by! { | video | video . title } . reverse!
when " channel name "
notifications . sort_by! { | video | video . author }
when " channel name - reverse "
notifications . sort_by! { | video | video . author } . reverse!
end
else
if user . preferences . latest_only
if user . preferences . unseen_only
# Show latest video from a channel that a user hasn't watched
# "unseen_only" isn't really correct here, more accurate would be "unwatched_only"
if user . watched . empty?
values = " '{}' "
else
values = " VALUES #{ user . watched . map { | id | %( ( ' #{ id } ' ) ) } . join ( " , " ) } "
end
2019-08-27 13:08:26 +00:00
videos = PG_DB . query_all ( " SELECT DISTINCT ON (ucid) * FROM #{ view_name } WHERE NOT id = ANY ( #{ values } ) ORDER BY ucid, published DESC " , as : ChannelVideo )
2019-06-07 17:39:12 +00:00
else
# Show latest video from each channel
2019-08-27 13:08:26 +00:00
videos = PG_DB . query_all ( " SELECT DISTINCT ON (ucid) * FROM #{ view_name } ORDER BY ucid, published DESC " , as : ChannelVideo )
2019-06-07 17:39:12 +00:00
end
videos . sort_by! { | video | video . published } . reverse!
else
if user . preferences . unseen_only
# Only show unwatched
if user . watched . empty?
values = " '{}' "
else
values = " VALUES #{ user . watched . map { | id | %( ( ' #{ id } ' ) ) } . join ( " , " ) } "
end
2019-08-27 13:08:26 +00:00
videos = PG_DB . query_all ( " SELECT * FROM #{ view_name } WHERE NOT id = ANY ( #{ values } ) ORDER BY published DESC LIMIT $1 OFFSET $2 " , limit , offset , as : ChannelVideo )
2019-06-07 17:39:12 +00:00
else
# Sort subscriptions as normal
2019-08-27 13:08:26 +00:00
videos = PG_DB . query_all ( " SELECT * FROM #{ view_name } ORDER BY published DESC LIMIT $1 OFFSET $2 " , limit , offset , as : ChannelVideo )
2019-06-07 17:39:12 +00:00
end
end
case user . preferences . sort
when " published - reverse "
videos . sort_by! { | video | video . published }
when " alphabetically "
videos . sort_by! { | video | video . title }
when " alphabetically - reverse "
videos . sort_by! { | video | video . title } . reverse!
when " channel name "
videos . sort_by! { | video | video . author }
when " channel name - reverse "
videos . sort_by! { | video | video . author } . reverse!
end
2019-08-27 13:08:26 +00:00
notifications = PG_DB . query_one ( " SELECT notifications FROM users WHERE email = $1 " , user . email , as : Array ( String ) )
2019-06-07 17:39:12 +00:00
notifications = videos . select { | v | notifications . includes? v . id }
videos = videos - notifications
end
return videos , notifications
end