mirror of
https://github.com/owncast/owncast.git
synced 2024-11-24 21:59:43 +03:00
a450e62397
* feat(chat): basic profanity filter. For #3139 * feat(chat): add setting for disabling chat spam protection. Closes #3523 * feat(chat): wire up the new chat slur filter to admin and chat. Closes #3139
263 lines
6.1 KiB
Go
263 lines
6.1 KiB
Go
package chat
|
|
|
|
import (
|
|
"bytes"
|
|
"encoding/json"
|
|
"net/http"
|
|
"sync"
|
|
"time"
|
|
|
|
log "github.com/sirupsen/logrus"
|
|
"golang.org/x/time/rate"
|
|
|
|
"github.com/gorilla/websocket"
|
|
"github.com/owncast/owncast/config"
|
|
"github.com/owncast/owncast/core/chat/events"
|
|
"github.com/owncast/owncast/core/data"
|
|
"github.com/owncast/owncast/core/user"
|
|
"github.com/owncast/owncast/geoip"
|
|
)
|
|
|
|
// Client represents a single chat client.
|
|
type Client struct {
|
|
ConnectedAt time.Time `json:"connectedAt"`
|
|
timeoutTimer *time.Timer
|
|
rateLimiter *rate.Limiter
|
|
messageFilter *ChatMessageFilter
|
|
conn *websocket.Conn
|
|
User *user.User `json:"user"`
|
|
server *Server
|
|
Geo *geoip.GeoDetails `json:"geo"`
|
|
// Buffered channel of outbound messages.
|
|
send chan []byte
|
|
accessToken string
|
|
IPAddress string `json:"-"`
|
|
UserAgent string `json:"userAgent"`
|
|
MessageCount int `json:"messageCount"`
|
|
Id uint `json:"-"`
|
|
mu sync.RWMutex
|
|
inTimeout bool
|
|
}
|
|
|
|
type chatClientEvent struct {
|
|
client *Client
|
|
data []byte
|
|
}
|
|
|
|
const (
|
|
// Time allowed to write a message to the peer.
|
|
writeWait = 10 * time.Second
|
|
|
|
// Time allowed to read the next pong message from the peer.
|
|
pongWait = 60 * time.Second
|
|
|
|
// Send pings to peer with this period. Must be less than pongWait.
|
|
pingPeriod = (pongWait * 9) / 10
|
|
|
|
// Maximum message size allowed from peer.
|
|
// Larger messages get thrown away.
|
|
// Messages > *2 the socket gets closed.
|
|
maxMessageSize = config.MaxSocketPayloadSize
|
|
)
|
|
|
|
var upgrader = websocket.Upgrader{
|
|
ReadBufferSize: 1024,
|
|
WriteBufferSize: 1024,
|
|
|
|
// Override default origin check to allow all clients, even those that
|
|
// do not match our server.
|
|
CheckOrigin: func(r *http.Request) bool {
|
|
return true
|
|
},
|
|
}
|
|
|
|
var (
|
|
newline = []byte{'\n'}
|
|
space = []byte{' '}
|
|
)
|
|
|
|
func (c *Client) sendConnectedClientInfo() {
|
|
payload := events.ConnectedClientInfo{
|
|
Event: events.Event{
|
|
Type: events.ConnectedUserInfo,
|
|
},
|
|
User: c.User,
|
|
}
|
|
|
|
payload.SetDefaults()
|
|
c.sendPayload(payload)
|
|
}
|
|
|
|
func (c *Client) readPump() {
|
|
// Allow 3 messages every two seconds.
|
|
limit := rate.Every(2 * time.Second / 3)
|
|
c.rateLimiter = rate.NewLimiter(limit, 1)
|
|
c.messageFilter = NewMessageFilter()
|
|
|
|
defer func() {
|
|
c.close()
|
|
}()
|
|
|
|
// If somebody is sending 2x the max message size they're likely a bad actor
|
|
// and should be disconnected. Below we throw away messages > max size.
|
|
c.conn.SetReadLimit(maxMessageSize * 2)
|
|
|
|
_ = c.conn.SetReadDeadline(time.Now().Add(pongWait))
|
|
c.conn.SetPongHandler(func(string) error { _ = c.conn.SetReadDeadline(time.Now().Add(pongWait)); return nil })
|
|
for {
|
|
_, message, err := c.conn.ReadMessage()
|
|
if err != nil {
|
|
if websocket.IsUnexpectedCloseError(err, websocket.CloseGoingAway, websocket.CloseAbnormalClosure) {
|
|
c.close()
|
|
}
|
|
break
|
|
}
|
|
|
|
// Throw away messages greater than max message size.
|
|
if len(message) > maxMessageSize {
|
|
c.sendAction("Sorry, that message exceeded the maximum size and can't be delivered.")
|
|
continue
|
|
}
|
|
|
|
// Check if this client is temporarily blocked from sending messages.
|
|
if c.inTimeout {
|
|
continue
|
|
}
|
|
|
|
// Guard against floods.
|
|
if !c.passesRateLimit() {
|
|
log.Warnln("Client", c.Id, c.User.DisplayName, "has exceeded the messaging rate limiting thresholds and messages are being rejected temporarily.")
|
|
c.startChatRejectionTimeout()
|
|
|
|
continue
|
|
}
|
|
|
|
// Check if this message passes the optional language filter
|
|
if data.GetChatSlurFilterEnabled() && !c.messageFilter.Allow(string(message)) {
|
|
c.sendAction("Sorry, that message contained language that is not allowed in this chat.")
|
|
continue
|
|
}
|
|
|
|
message = bytes.TrimSpace(bytes.ReplaceAll(message, newline, space))
|
|
c.handleEvent(message)
|
|
}
|
|
}
|
|
|
|
func (c *Client) writePump() {
|
|
ticker := time.NewTicker(pingPeriod)
|
|
defer func() {
|
|
ticker.Stop()
|
|
_ = c.conn.Close()
|
|
}()
|
|
|
|
for {
|
|
select {
|
|
case message, ok := <-c.send:
|
|
_ = c.conn.SetWriteDeadline(time.Now().Add(writeWait))
|
|
if !ok {
|
|
// The server closed the channel.
|
|
_ = c.conn.WriteMessage(websocket.CloseMessage, []byte{})
|
|
return
|
|
}
|
|
|
|
w, err := c.conn.NextWriter(websocket.TextMessage)
|
|
if err != nil {
|
|
return
|
|
}
|
|
if _, err := w.Write(message); err != nil {
|
|
log.Debugln(err)
|
|
}
|
|
|
|
// Optimization: Send multiple events in a single websocket message.
|
|
// Add queued chat messages to the current websocket message.
|
|
c.mu.RLock()
|
|
n := len(c.send)
|
|
for i := 0; i < n; i++ {
|
|
_, _ = w.Write(newline)
|
|
_, _ = w.Write(<-c.send)
|
|
}
|
|
c.mu.RUnlock()
|
|
|
|
if err := w.Close(); err != nil {
|
|
return
|
|
}
|
|
case <-ticker.C:
|
|
_ = c.conn.SetWriteDeadline(time.Now().Add(writeWait))
|
|
if err := c.conn.WriteMessage(websocket.PingMessage, nil); err != nil {
|
|
return
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
func (c *Client) handleEvent(data []byte) {
|
|
c.server.inbound <- chatClientEvent{data: data, client: c}
|
|
}
|
|
|
|
func (c *Client) close() {
|
|
log.Traceln("client closed:", c.User.DisplayName, c.Id, c.IPAddress)
|
|
|
|
c.mu.Lock()
|
|
defer c.mu.Unlock()
|
|
|
|
if c.send != nil {
|
|
_ = c.conn.Close()
|
|
c.server.unregister <- c.Id
|
|
close(c.send)
|
|
c.send = nil
|
|
}
|
|
}
|
|
|
|
func (c *Client) passesRateLimit() bool {
|
|
// If spam rate limiting is disabled, or the user is a moderator, always
|
|
// allow the message.
|
|
if !data.GetChatSpamProtectionEnabled() || c.User.IsModerator() {
|
|
return true
|
|
}
|
|
|
|
return (c.rateLimiter.Allow() && !c.inTimeout)
|
|
}
|
|
|
|
func (c *Client) startChatRejectionTimeout() {
|
|
if c.timeoutTimer != nil {
|
|
return
|
|
}
|
|
|
|
c.inTimeout = true
|
|
c.timeoutTimer = time.NewTimer(10 * time.Second)
|
|
go func(c *Client) {
|
|
for range c.timeoutTimer.C {
|
|
c.inTimeout = false
|
|
c.timeoutTimer = nil
|
|
}
|
|
}(c)
|
|
|
|
c.sendAction("You are temporarily blocked from sending chat messages due to perceived flooding.")
|
|
}
|
|
|
|
func (c *Client) sendPayload(payload interface{}) {
|
|
var data []byte
|
|
data, err := json.Marshal(payload)
|
|
if err != nil {
|
|
log.Errorln(err)
|
|
return
|
|
}
|
|
|
|
c.mu.RLock()
|
|
defer c.mu.RUnlock()
|
|
|
|
if c.send != nil {
|
|
c.send <- data
|
|
}
|
|
}
|
|
|
|
func (c *Client) sendAction(message string) {
|
|
clientMessage := events.ActionEvent{
|
|
MessageEvent: events.MessageEvent{
|
|
Body: message,
|
|
},
|
|
}
|
|
clientMessage.SetDefaults()
|
|
clientMessage.RenderBody()
|
|
c.sendPayload(clientMessage.GetBroadcastPayload())
|
|
}
|