logger = $logger; $this->db = $database; $this->config = $config; $this->pConfig = $pConfig; $this->httpClient = $httpClient; } public function getUids(): array { $uids = []; $abandon_days = intval($this->config->get('system', 'account_abandon_days')); if ($abandon_days < 1) { $abandon_days = 0; } $abandon_limit = date(DateTimeFormat::MYSQL, time() - $abandon_days * 86400); $pconfigs = $this->db->selectToArray('pconfig', [], ["`cat` = ? AND `k` = ? AND `v`", 'bluesky', 'import']); foreach ($pconfigs as $pconfig) { if (empty($this->getUserDid($pconfig['uid']))) { continue; } if ($abandon_days != 0) { if (!$this->db->exists('user', ["`uid` = ? AND `login_date` >= ?", $pconfig['uid'], $abandon_limit])) { continue; } } $uids[] = $pconfig['uid']; } return $uids; } public function XRPCGet(string $url, array $parameters = [], int $uid = 0): ?stdClass { if (!empty($parameters)) { $url .= '?' . http_build_query($parameters); } if ($uid == 0) { return $this->get(ATProtocol::APPVIEW_API . '/xrpc/' . $url); } $pds = $this->getUserPds($uid); if (empty($pds)) { return null; } $headers = ['Authorization' => ['Bearer ' . $this->getUserToken($uid)]]; $languages = User::getWantedLanguages($uid); if (!empty($languages)) { $headers['Accept-Language'] = implode(',', $languages); } $data = $this->get($pds . '/xrpc/' . $url, [HttpClientOptions::HEADERS => $headers]); $this->pConfig->set($uid, 'bluesky', 'status', is_null($data) ? self::STATUS_API_FAIL : self::STATUS_SUCCESS); return $data; } public function get(string $url, array $opts = []): ?stdClass { try { $curlResult = $this->httpClient->get($url, HttpClientAccept::JSON, $opts); } catch (\Exception $e) { $this->logger->notice('Exception on get', ['url' => $url, 'exception' => $e]); return null; } $data = json_decode($curlResult->getBodyString()); if (!$curlResult->isSuccess()) { $this->logger->notice('API Error', ['url' => $url, 'code' => $curlResult->getReturnCode(), 'error' => $data ?: $curlResult->getBodyString()]); if (!$data) { return null; } $data->code = $curlResult->getReturnCode(); } Item::incrementInbound(Protocol::BLUESKY); return $data; } public function XRPCPost(int $uid, string $url, $parameters): ?stdClass { $data = $this->post($uid, '/xrpc/' . $url, json_encode($parameters), ['Content-type' => 'application/json', 'Authorization' => ['Bearer ' . $this->getUserToken($uid)]]); return $data; } public function post(int $uid, string $url, string $params, array $headers): ?stdClass { $pds = $this->getUserPds($uid); if (empty($pds)) { return null; } try { $curlResult = $this->httpClient->post($pds . $url, $params, $headers); } catch (\Exception $e) { $this->logger->notice('Exception on post', ['exception' => $e]); $this->pConfig->set($uid, 'bluesky', 'status', self::STATUS_API_FAIL); return null; } $data = json_decode($curlResult->getBodyString()); if (!$curlResult->isSuccess()) { $this->logger->notice('API Error', ['url' => $url, 'code' => $curlResult->getReturnCode(), 'error' => $data ?: $curlResult->getBodyString()]); if (!$data) { $this->pConfig->set($uid, 'bluesky', 'status', self::STATUS_API_FAIL); return null; } $data->code = $curlResult->getReturnCode(); } if (!empty($data->code) && ($data->code >= 200) && ($data->code < 400)) { $this->pConfig->set($uid, 'bluesky', 'status', self::STATUS_SUCCESS); } else { $this->pConfig->set($uid, 'bluesky', 'status', self::STATUS_API_FAIL); } return $data; } private function getUserPds(int $uid): ?string { if ($uid == 0) { return self::APPVIEW_API; } $pds = $this->pConfig->get($uid, 'bluesky', 'pds'); if (!empty($pds)) { return $pds; } $did = $this->getUserDid($uid); if (empty($did)) { return null; } $pds = $this->getPdsOfDid($did); if (empty($pds)) { return null; } $this->pConfig->set($uid, 'bluesky', 'pds', $pds); return $pds; } public function getUserDid(int $uid, bool $refresh = false): ?string { if (!$this->pConfig->get($uid, 'bluesky', 'post')) { return null; } if (!$refresh) { $did = $this->pConfig->get($uid, 'bluesky', 'did'); if (!empty($did)) { return $did; } } $handle = $this->pConfig->get($uid, 'bluesky', 'handle'); if (empty($handle)) { return null; } $did = $this->getDid($handle); if (empty($did)) { return null; } $this->logger->debug('Got DID for user', ['uid' => $uid, 'handle' => $handle, 'did' => $did]); $this->pConfig->set($uid, 'bluesky', 'did', $did); return $did; } public function getDid(string $handle): string { if ($handle == '') { return ''; } if (strpos($handle, '.') === false) { $handle .= '.' . self::HOSTNAME; } // At first we use the AppView API which *should* cover all cases. $data = $this->get(self::APPVIEW_API . '/xrpc/com.atproto.identity.resolveHandle?handle=' . urlencode($handle)); if (!empty($data) && !empty($data->did)) { $this->logger->debug('Got DID by system PDS call', ['handle' => $handle, 'did' => $data->did]); return $data->did; } // Then we query the DNS, which is used for third party handles (DNS should be faster than wellknown) $did = $this->getDidByDns($handle); if ($did != '') { $this->logger->debug('Got DID by DNS', ['handle' => $handle, 'did' => $did]); return $did; } // Then we query wellknown, which should mostly cover the rest. $did = $this->getDidByWellknown($handle); if ($did != '') { $this->logger->debug('Got DID by wellknown', ['handle' => $handle, 'did' => $did]); return $did; } $this->logger->notice('No DID detected', ['handle' => $handle]); return ''; } public function getDidByProfile(string $url): string { if (preg_match('#^' . self::WEB . '/profile/(.+)#', $url, $matches)) { $did = $this->getDid($matches[1]); if (!empty($did)) { return $did; } } try { $curlResult = $this->httpClient->get($url, HttpClientAccept::HTML, [HttpClientOptions::REQUEST => HttpClientRequest::CONTACTINFO]); } catch (\Throwable $th) { return ''; } if (!$curlResult->isSuccess()) { return ''; } $profile = $curlResult->getBodyString(); if (empty($profile)) { return ''; } $doc = new DOMDocument(); try { @$doc->loadHTML($profile); } catch (\Throwable $th) { return ''; } $xpath = new DOMXPath($doc); $list = $xpath->query('//p[@id]'); foreach ($list as $node) { foreach ($node->attributes as $attribute) { if ($attribute->name == 'id') { $ids[$attribute->value] = $node->textContent; } } } if (empty($ids['bsky_handle']) || empty($ids['bsky_did'])) { return ''; } if (!$this->isValidDid($ids['bsky_did'], $ids['bsky_handle'])) { $this->logger->notice('Invalid DID', ['handle' => $ids['bsky_handle'], 'did' => $ids['bsky_did']]); return ''; } return $ids['bsky_did']; } private function getDidByWellknown(string $handle): string { $curlResult = $this->httpClient->get('http://' . $handle . '/.well-known/atproto-did'); if ($curlResult->isSuccess() && substr($curlResult->getBodyString(), 0, 4) == 'did:') { $did = $curlResult->getBodyString(); if (!$this->isValidDid($did, $handle)) { $this->logger->notice('Invalid DID', ['handle' => $handle, 'did' => $did]); return ''; } return $did; } return ''; } private function getDidByDns(string $handle): string { $records = @dns_get_record('_atproto.' . $handle . '.', DNS_TXT); if (empty($records)) { return ''; } foreach ($records as $record) { if (!empty($record['txt']) && substr($record['txt'], 0, 4) == 'did=') { $did = substr($record['txt'], 4); if (!$this->isValidDid($did, $handle)) { $this->logger->notice('Invalid DID', ['handle' => $handle, 'did' => $did]); return ''; } return $did; } } return ''; } private function getPdsOfDid(string $did): ?string { $data = $this->get(self::DIRECTORY . '/' . $did); if (empty($data) || empty($data->service)) { return null; } foreach ($data->service as $service) { if (($service->id == '#atproto_pds') && ($service->type == 'AtprotoPersonalDataServer') && !empty($service->serviceEndpoint)) { return $service->serviceEndpoint; } } return null; } private function isValidDid(string $did, string $handle): bool { $data = $this->get(self::DIRECTORY . '/' . $did); if (empty($data) || empty($data->alsoKnownAs)) { return false; } return in_array('at://' . $handle, $data->alsoKnownAs); } public function getUserToken(int $uid): string { $token = $this->pConfig->get($uid, 'bluesky', 'access_token'); $created = $this->pConfig->get($uid, 'bluesky', 'token_created'); if (empty($token)) { return ''; } if ($created + 300 < time()) { return $this->refreshUserToken($uid); } return $token; } private function refreshUserToken(int $uid): string { $token = $this->pConfig->get($uid, 'bluesky', 'refresh_token'); $data = $this->post($uid, '/xrpc/com.atproto.server.refreshSession', '', ['Authorization' => ['Bearer ' . $token]]); if (empty($data) || empty($data->accessJwt)) { $this->logger->debug('Refresh failed', ['return' => $data]); $password = $this->pConfig->get($uid, 'bluesky', 'password'); if (!empty($password)) { return $this->createUserToken($uid, $password); } $this->pConfig->set($uid, 'bluesky', 'status', self::STATUS_TOKEN_FAIL); return ''; } $this->logger->debug('Refreshed token', ['return' => $data]); $this->pConfig->set($uid, 'bluesky', 'access_token', $data->accessJwt); $this->pConfig->set($uid, 'bluesky', 'refresh_token', $data->refreshJwt); $this->pConfig->set($uid, 'bluesky', 'token_created', time()); return $data->accessJwt; } public function createUserToken(int $uid, string $password): string { $did = $this->getUserDid($uid); if (empty($did)) { return ''; } $data = $this->post($uid, '/xrpc/com.atproto.server.createSession', json_encode(['identifier' => $did, 'password' => $password]), ['Content-type' => 'application/json']); if (empty($data) || empty($data->accessJwt)) { $this->pConfig->set($uid, 'bluesky', 'status', self::STATUS_TOKEN_FAIL); return ''; } $this->logger->debug('Created token', ['return' => $data]); $this->pConfig->set($uid, 'bluesky', 'access_token', $data->accessJwt); $this->pConfig->set($uid, 'bluesky', 'refresh_token', $data->refreshJwt); $this->pConfig->set($uid, 'bluesky', 'token_created', time()); $this->pConfig->set($uid, 'bluesky', 'status', self::STATUS_TOKEN_OK); return $data->accessJwt; } }