mastodon-glitch/app/validators/user_email_validator.rb

# frozen_string_literal: true

class UserEmailValidator < ActiveModel::Validator
  def validate(user)
    return if user.valid_invitation? || user.email.blank?

    user.errors.add(:email, :blocked) if blocked_email_provider?(user.email, user.sign_up_ip)
    user.errors.add(:email, :taken) if blocked_canonical_email?(user.email)
  end

  private

  def blocked_email_provider?(email, ip)
    disallowed_through_email_domain_block?(email, ip) || disallowed_through_configuration?(email) || not_allowed_through_configuration?(email)
  end

  def blocked_canonical_email?(email)
    CanonicalEmailBlock.block?(email)
  end

  def disallowed_through_email_domain_block?(email, ip)
    EmailDomainBlock.block?(email, attempt_ip: ip)
  end

  def not_allowed_through_configuration?(email)
    return false if Rails.configuration.x.email_domains_allowlist.blank?

    domains = Rails.configuration.x.email_domains_allowlist.gsub('.', '\.')
    regexp  = Regexp.new("@(.+\\.)?(#{domains})$", true)

    email !~ regexp
  end

  def disallowed_through_configuration?(email)
    return false if Rails.configuration.x.email_domains_denylist.blank?

    domains = Rails.configuration.x.email_domains_denylist.gsub('.', '\.')
    regexp  = Regexp.new("@(.+\\.)?(#{domains})", true)

    regexp.match?(email)
  end
end
Adding configurable e-mail blacklist 2016-12-04 18:07:02 +00:00			`# frozen_string_literal: true`

Finish email allow/deny list naming migration (#30530) 2024-08-13 07:37:32 +00:00			`class UserEmailValidator < ActiveModel::Validator`
Correct validators so that existing error messages would look correct (#3668) 2017-06-09 17:46:01 +00:00			`def validate(user)`
Add `details` to error response for `POST /api/v1/accounts` in REST API (#15803) 2021-03-01 03:59:13 +00:00			`return if user.valid_invitation? \|\| user.email.blank?`
Change e-mail whitelist/blacklist to not be checked when invited (#10683) * Change e-mail whitelist/blacklist to not be checked when invited And only when creating an account, not when updating it later Fix #10648 * Fix test 2019-05-03 21:44:44 +00:00
Change e-mail domain blocks to block IPs dynamically (#17635) * Change e-mail domain blocks to block IPs dynamically * Update app/workers/scheduler/email_domain_block_refresh_scheduler.rb Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> * Update app/workers/scheduler/email_domain_block_refresh_scheduler.rb Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> 2022-02-24 16:28:23 +00:00			`user.errors.add(:email, :blocked) if blocked_email_provider?(user.email, user.sign_up_ip)`
			`user.errors.add(:email, :taken) if blocked_canonical_email?(user.email)`
Adding configurable e-mail blacklist 2016-12-04 18:07:02 +00:00			`end`

			`private`

Change e-mail domain blocks to block IPs dynamically (#17635) * Change e-mail domain blocks to block IPs dynamically * Update app/workers/scheduler/email_domain_block_refresh_scheduler.rb Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> * Update app/workers/scheduler/email_domain_block_refresh_scheduler.rb Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> 2022-02-24 16:28:23 +00:00			`def blocked_email_provider?(email, ip)`
			`disallowed_through_email_domain_block?(email, ip) \|\| disallowed_through_configuration?(email) \|\| not_allowed_through_configuration?(email)`
[#817] Add email whitelist This adds the ability to filter user signup with a whitelist instead of or in addition to a blacklist. Fixes #817 2017-04-04 15:04:44 +00:00			`end`

Change e-mail domain blocks to block IPs dynamically (#17635) * Change e-mail domain blocks to block IPs dynamically * Update app/workers/scheduler/email_domain_block_refresh_scheduler.rb Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> * Update app/workers/scheduler/email_domain_block_refresh_scheduler.rb Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> 2022-02-24 16:28:23 +00:00			`def blocked_canonical_email?(email)`
			`CanonicalEmailBlock.block?(email)`
Add canonical e-mail blocks for suspended accounts (#16049) Prevent new accounts from being created using the same underlying e-mail as a suspended account using extensions and period permutations. Stores e-mails as a SHA256 hash 2021-04-17 01:14:25 +00:00			`end`
Adding configurable e-mail blacklist 2016-12-04 18:07:02 +00:00
Change e-mail domain blocks to block IPs dynamically (#17635) * Change e-mail domain blocks to block IPs dynamically * Update app/workers/scheduler/email_domain_block_refresh_scheduler.rb Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> * Update app/workers/scheduler/email_domain_block_refresh_scheduler.rb Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> 2022-02-24 16:28:23 +00:00			`def disallowed_through_email_domain_block?(email, ip)`
			`EmailDomainBlock.block?(email, attempt_ip: ip)`
Adding configurable e-mail blacklist 2016-12-04 18:07:02 +00:00			`end`
[#817] Add email whitelist This adds the ability to filter user signup with a whitelist instead of or in addition to a blacklist. Fixes #817 2017-04-04 15:04:44 +00:00
Change e-mail domain blocks to block IPs dynamically (#17635) * Change e-mail domain blocks to block IPs dynamically * Update app/workers/scheduler/email_domain_block_refresh_scheduler.rb Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> * Update app/workers/scheduler/email_domain_block_refresh_scheduler.rb Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> 2022-02-24 16:28:23 +00:00			`def not_allowed_through_configuration?(email)`
Finish email allow/deny list naming migration (#30530) 2024-08-13 07:37:32 +00:00			`return false if Rails.configuration.x.email_domains_allowlist.blank?`
[#817] Add email whitelist This adds the ability to filter user signup with a whitelist instead of or in addition to a blacklist. Fixes #817 2017-04-04 15:04:44 +00:00
Finish email allow/deny list naming migration (#30530) 2024-08-13 07:37:32 +00:00			`domains = Rails.configuration.x.email_domains_allowlist.gsub('.', '\.')`
Correct validators so that existing error messages would look correct (#3668) 2017-06-09 17:46:01 +00:00			`regexp = Regexp.new("@(.+\\.)?(#{domains})$", true)`
[#817] Add email whitelist This adds the ability to filter user signup with a whitelist instead of or in addition to a blacklist. Fixes #817 2017-04-04 15:04:44 +00:00
Change e-mail domain blocks to block IPs dynamically (#17635) * Change e-mail domain blocks to block IPs dynamically * Update app/workers/scheduler/email_domain_block_refresh_scheduler.rb Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> * Update app/workers/scheduler/email_domain_block_refresh_scheduler.rb Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> 2022-02-24 16:28:23 +00:00			`email !~ regexp`
[#817] Add email whitelist This adds the ability to filter user signup with a whitelist instead of or in addition to a blacklist. Fixes #817 2017-04-04 15:04:44 +00:00			`end`
Add canonical e-mail blocks for suspended accounts (#16049) Prevent new accounts from being created using the same underlying e-mail as a suspended account using extensions and period permutations. Stores e-mails as a SHA256 hash 2021-04-17 01:14:25 +00:00
Change e-mail domain blocks to block IPs dynamically (#17635) * Change e-mail domain blocks to block IPs dynamically * Update app/workers/scheduler/email_domain_block_refresh_scheduler.rb Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> * Update app/workers/scheduler/email_domain_block_refresh_scheduler.rb Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> 2022-02-24 16:28:23 +00:00			`def disallowed_through_configuration?(email)`
Finish email allow/deny list naming migration (#30530) 2024-08-13 07:37:32 +00:00			`return false if Rails.configuration.x.email_domains_denylist.blank?`
Add canonical e-mail blocks for suspended accounts (#16049) Prevent new accounts from being created using the same underlying e-mail as a suspended account using extensions and period permutations. Stores e-mails as a SHA256 hash 2021-04-17 01:14:25 +00:00
Finish email allow/deny list naming migration (#30530) 2024-08-13 07:37:32 +00:00			`domains = Rails.configuration.x.email_domains_denylist.gsub('.', '\.')`
Add canonical e-mail blocks for suspended accounts (#16049) Prevent new accounts from being created using the same underlying e-mail as a suspended account using extensions and period permutations. Stores e-mails as a SHA256 hash 2021-04-17 01:14:25 +00:00			`regexp = Regexp.new("@(.+\\.)?(#{domains})", true)`

Change e-mail domain blocks to block IPs dynamically (#17635) * Change e-mail domain blocks to block IPs dynamically * Update app/workers/scheduler/email_domain_block_refresh_scheduler.rb Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> * Update app/workers/scheduler/email_domain_block_refresh_scheduler.rb Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh> 2022-02-24 16:28:23 +00:00			`regexp.match?(email)`
Add canonical e-mail blocks for suspended accounts (#16049) Prevent new accounts from being created using the same underlying e-mail as a suspended account using extensions and period permutations. Stores e-mails as a SHA256 hash 2021-04-17 01:14:25 +00:00			`end`
Adding configurable e-mail blacklist 2016-12-04 18:07:02 +00:00			`end`