Feat: マネージドなサービスで使えるように

オブジェクトストレージの設定を秘匿するように
Config で設定できます。

その他バグ修正

packages/backend/src/boot/entry.ts

@@ -4,7 +4,7 @@
  */
 
 /**
- * Misskey Entry Point!
+ * Type4ny Entry Point!
  */
 
 import cluster from 'node:cluster';
@@ -19,7 +19,7 @@ import { readyRef } from './ready.js';
 
 import 'reflect-metadata';
 
-process.title = `Misskey (${cluster.isPrimary ? 'master' : 'worker'})`;
+process.title = `Type4ny (${cluster.isPrimary ? 'master' : 'worker'})`;
 
 Error.stackTraceLimit = Infinity;
 EventEmitter.defaultMaxListeners = 128;

packages/backend/src/boot/master.ts

@@ -27,28 +27,29 @@ const meta = JSON.parse(fs.readFileSync(`${_dirname}/../../../../built/meta.json
 const logger = new Logger('core', 'cyan');
 const bootLogger = logger.createSubLogger('boot', 'magenta');
 
-const themeColor = chalk.hex('#86b300');
+const themeColor = chalk.hex('#00a968');
 
 function greet() {
 	if (!envOption.quiet) {
-		//#region Misskey logo
+		//#region Type4ny logo
 		const v = `v${meta.version}`;
-		console.log(themeColor('  _____ _         _           '));
-		console.log(themeColor(' |     |_|___ ___| |_ ___ _ _ '));
-		console.log(themeColor(' | | | | |_ -|_ -| \'_| -_| | |'));
-		console.log(themeColor(' |_|_|_|_|___|___|_,_|___|_  |'));
-		console.log(' ' + chalk.gray(v) + themeColor('                        |___|\n'.substring(v.length)));
+		console.log(themeColor(' _____               _ _           '));
+		console.log(themeColor('|_   _|  _ _ __  ___| | | _ _ _  _ '));
+		console.log(themeColor('  | || || | \'_ \\/ -_)_  _| \' \\ || |'));
+		console.log(themeColor('  |_| \\_, | .__/\\___| |_||_||_\\_, |'));
+		console.log(themeColor('      |__/|_|                 |__/ '));
+		console.log(chalk.gray(v));
 		//#endregion
 
-		console.log(' Misskey is an open-source decentralized microblogging platform.');
-		console.log(chalk.rgb(255, 136, 0)(' If you like Misskey, please donate to support development. https://www.patreon.com/syuilo'));
+		console.log(' Type4ny is an open-source decentralized microblogging platform.');
+		console.log(chalk.rgb(255, 136, 0)(' If you like Type4ny, please donate to support development. https://mattyatea.fanbox.cc'));
 
 		console.log('');
 		console.log(chalkTemplate`--- ${os.hostname()} {gray (PID: ${process.pid.toString()})} ---`);
 	}
 
-	bootLogger.info('Welcome to Misskey!');
-	bootLogger.info(`Misskey v${meta.version}`, null, true);
+	bootLogger.info('Welcome to Type4ny!');
+	bootLogger.info(`Type4ny v${meta.version}`, null, true);
 }
 
 /**
@@ -71,7 +72,7 @@ export async function masterMain() {
 		process.exit(1);
 	}
 
-	bootLogger.succ('Misskey initialized');
+	bootLogger.succ('Type4ny initialized');
 
 	if (config.sentryForBackend) {
 		Sentry.init({
@@ -121,6 +122,7 @@ export async function masterMain() {
 
 function showEnvironment(): void {
 	const env = process.env.NODE_ENV;
+	const managed = process.env.IS_MANAGED === 'true';
 	const logger = bootLogger.createSubLogger('env');
 	logger.info(typeof env === 'undefined' ? 'NODE_ENV is not set' : `NODE_ENV: ${env}`);
 
@@ -128,6 +130,9 @@ function showEnvironment(): void {
 		logger.warn('The environment is not in production mode.');
 		logger.warn('DO NOT USE FOR PRODUCTION PURPOSE!', null, true);
 	}
+	if (managed) {
+		logger.info('Type4ny is running in a managed mode.');
+	}
 }
 
 function showNodejsVersion(): void {

packages/backend/src/config.ts

@@ -62,6 +62,22 @@ type Source = {
 
 	publishTarballInsteadOfProvideRepositoryUrl?: boolean;
 
+	objectStorage?: {
+		useObjectStorage: boolean;
+		objectStorageBaseUrl: string;
+		objectStorageBucket: string;
+		objectStoragePrefix: string;
+		objectStorageEndpoint: string;
+		objectStorageRegion: string;
+		objectStoragePort?: number;
+		objectStorageAccessKey: string;
+		objectStorageSecretKey: string;
+		objectStorageUseSSL?: boolean;
+		objectStorageUseProxy?: boolean;
+		objectStorageSetPublicRead?: boolean;
+		objectStorageS3ForcePathStyle?: boolean;
+	};
+
 	proxy?: string;
 	proxySmtp?: string;
 	proxyBypassHosts?: string[];
@@ -95,6 +111,7 @@ type Source = {
 	perChannelMaxNoteCacheCount?: number;
 	perUserNotificationsMaxCount?: number;
 	deactivateAntennaThreshold?: number;
+	maxLocalUsers?: number;
 	pidFile: string;
 };
 
@@ -174,6 +191,22 @@ export type Config = {
 	perChannelMaxNoteCacheCount: number;
 	perUserNotificationsMaxCount: number;
 	deactivateAntennaThreshold: number;
+	maxLocalUsers: number;
+	objectStorage?: {
+		useObjectStorage?: boolean;
+		objectStorageBaseUrl?: string;
+		objectStorageBucket?: string;
+		objectStoragePrefix?: string;
+		objectStorageEndpoint?: string;
+		objectStorageRegion?: string;
+		objectStoragePort?: number;
+		objectStorageAccessKey?: string;
+		objectStorageSecretKey?: string;
+		objectStorageUseSSL?: boolean;
+		objectStorageUseProxy?: boolean;
+		objectStorageSetPublicRead?: boolean;
+		objectStorageS3ForcePathStyle?: boolean;
+	};
 	pidFile: string;
 };
 
@@ -269,12 +302,14 @@ export function loadConfig(): Config {
 		videoThumbnailGenerator: config.videoThumbnailGenerator ?
 			config.videoThumbnailGenerator.endsWith('/') ? config.videoThumbnailGenerator.substring(0, config.videoThumbnailGenerator.length - 1) : config.videoThumbnailGenerator
 			: null,
-		userAgent: `Misskey/${version} (${config.url})`,
+		userAgent: `Type4ny/${version} (${config.url})`,
 		clientEntry: clientManifest['src/_boot_.ts'],
 		clientManifestExists: clientManifestExists,
 		perChannelMaxNoteCacheCount: config.perChannelMaxNoteCacheCount ?? 1000,
 		perUserNotificationsMaxCount: config.perUserNotificationsMaxCount ?? 500,
 		deactivateAntennaThreshold: config.deactivateAntennaThreshold ?? (1000 * 60 * 60 * 24 * 7),
+		maxLocalUsers: config.maxLocalUsers ?? -1,
+		objectStorage: config.objectStorage ?? {},
 		pidFile: config.pidFile,
 	};
 }

packages/backend/src/core/S3Service.ts

@@ -6,47 +6,79 @@
 import { URL } from 'node:url';
 import * as http from 'node:http';
 import * as https from 'node:https';
-import { Injectable } from '@nestjs/common';
+import { Inject, Injectable } from '@nestjs/common';
 import { DeleteObjectCommand, S3Client } from '@aws-sdk/client-s3';
 import { Upload } from '@aws-sdk/lib-storage';
 import { NodeHttpHandler, NodeHttpHandlerOptions } from '@smithy/node-http-handler';
 import type { MiMeta } from '@/models/Meta.js';
 import { HttpRequestService } from '@/core/HttpRequestService.js';
 import { bindThis } from '@/decorators.js';
+import { DI } from '@/di-symbols.js';
+import type { Config } from '@/config.js';
+import { envOption } from '@/env.js';
 import type { DeleteObjectCommandInput, PutObjectCommandInput } from '@aws-sdk/client-s3';
 
 @Injectable()
 export class S3Service {
 	constructor(
 		private httpRequestService: HttpRequestService,
+		@Inject(DI.config)
+		private config: Config,
 	) {
 	}
 
 	@bindThis
 	public getS3Client(meta: MiMeta): S3Client {
-		const u = meta.objectStorageEndpoint
-			? `${meta.objectStorageUseSSL ? 'https' : 'http'}://${meta.objectStorageEndpoint}`
-			: `${meta.objectStorageUseSSL ? 'https' : 'http'}://example.net`; // dummy url to select http(s) agent
+		if (envOption.managed){
+			const objectStorageConfig = this.config.objectStorage;
+			const u = objectStorageConfig?.objectStorageEndpoint
+				? `${objectStorageConfig.objectStorageUseSSL ? 'https' : 'http'}://${objectStorageConfig.objectStorageEndpoint}`
+				: `${objectStorageConfig?.objectStorageUseSSL ? 'https' : 'http'}://example.net`; // dummy url to select http(s) agent
 
-		const agent = this.httpRequestService.getAgentByUrl(new URL(u), !meta.objectStorageUseProxy);
-		const handlerOption: NodeHttpHandlerOptions = {};
-		if (meta.objectStorageUseSSL) {
-			handlerOption.httpsAgent = agent as https.Agent;
+			const agent = this.httpRequestService.getAgentByUrl(new URL(u), !objectStorageConfig?.objectStorageUseProxy);
+			const handlerOption: NodeHttpHandlerOptions = {};
+			if (meta.objectStorageUseSSL) {
+				handlerOption.httpsAgent = agent as https.Agent;
+			} else {
+				handlerOption.httpAgent = agent as http.Agent;
+			}
+
+			return new S3Client({
+				endpoint: objectStorageConfig?.objectStorageEndpoint ? u : undefined,
+				credentials: (objectStorageConfig?.objectStorageAccessKey && objectStorageConfig?.objectStorageSecretKey ) ? {
+					accessKeyId: objectStorageConfig.objectStorageAccessKey,
+					secretAccessKey: objectStorageConfig.objectStorageSecretKey,
+				} : undefined,
+				region: objectStorageConfig?.objectStorageRegion ? objectStorageConfig.objectStorageRegion : undefined, // 空文字列もundefinedにするため ?? は使わない
+				tls: objectStorageConfig?.objectStorageUseSSL ?? false,
+				forcePathStyle: objectStorageConfig?.objectStorageEndpoint ? objectStorageConfig?.objectStorageS3ForcePathStyle : false, // AWS with endPoint omitted
+				requestHandler: new NodeHttpHandler(handlerOption),
+			});
 		} else {
-			handlerOption.httpAgent = agent as http.Agent;
-		}
+			const u = meta.objectStorageEndpoint
+				? `${meta.objectStorageUseSSL ? 'https' : 'http'}://${meta.objectStorageEndpoint}`
+				: `${meta.objectStorageUseSSL ? 'https' : 'http'}://example.net`; // dummy url to select http(s) agent
 
-		return new S3Client({
-			endpoint: meta.objectStorageEndpoint ? u : undefined,
-			credentials: (meta.objectStorageAccessKey !== null && meta.objectStorageSecretKey !== null) ? {
-				accessKeyId: meta.objectStorageAccessKey,
-				secretAccessKey: meta.objectStorageSecretKey,
-			} : undefined,
-			region: meta.objectStorageRegion ? meta.objectStorageRegion : undefined, // 空文字列もundefinedにするため ?? は使わない
-			tls: meta.objectStorageUseSSL,
-			forcePathStyle: meta.objectStorageEndpoint ? meta.objectStorageS3ForcePathStyle : false, // AWS with endPoint omitted
-			requestHandler: new NodeHttpHandler(handlerOption),
-		});
+			const agent = this.httpRequestService.getAgentByUrl(new URL(u), !meta.objectStorageUseProxy);
+			const handlerOption: NodeHttpHandlerOptions = {};
+			if (meta.objectStorageUseSSL) {
+				handlerOption.httpsAgent = agent as https.Agent;
+			} else {
+				handlerOption.httpAgent = agent as http.Agent;
+			}
+
+			return new S3Client({
+				endpoint: meta.objectStorageEndpoint ? u : undefined,
+				credentials: (meta.objectStorageAccessKey !== null && meta.objectStorageSecretKey !== null) ? {
+					accessKeyId: meta.objectStorageAccessKey,
+					secretAccessKey: meta.objectStorageSecretKey,
+				} : undefined,
+				region: meta.objectStorageRegion ? meta.objectStorageRegion : undefined, // 空文字列もundefinedにするため ?? は使わない
+				tls: meta.objectStorageUseSSL,
+				forcePathStyle: meta.objectStorageEndpoint ? meta.objectStorageS3ForcePathStyle : false, // AWS with endPoint omitted
+				requestHandler: new NodeHttpHandler(handlerOption),
+			});
+		}
 	}
 
 	@bindThis
@@ -67,3 +99,4 @@ export class S3Service {
 		return client.send(new DeleteObjectCommand(input));
 	}
 }
+

packages/backend/src/core/SignupService.ts

@@ -21,6 +21,7 @@ import { bindThis } from '@/decorators.js';
 import UsersChart from '@/core/chart/charts/users.js';
 import { UtilityService } from '@/core/UtilityService.js';
 import { MetaService } from '@/core/MetaService.js';
+import type { Config } from '@/config.js';
 
 @Injectable()
 export class SignupService {
@@ -34,6 +35,9 @@ export class SignupService {
 		@Inject(DI.usedUsernamesRepository)
 		private usedUsernamesRepository: UsedUsernamesRepository,
 
+		@Inject(DI.config)
+		private config: Config,
+
 		private utilityService: UtilityService,
 		private userEntityService: UserEntityService,
 		private idService: IdService,
@@ -58,7 +62,9 @@ export class SignupService {
 		if (!this.userEntityService.validateLocalUsername(username)) {
 			throw new Error('INVALID_USERNAME');
 		}
-
+		if (this.config.maxLocalUsers !== -1 && await this.usersRepository.count({ where: { host: IsNull() } }) >= this.config.maxLocalUsers) {
+			throw new Error('MAX_LOCAL_USERS');
+		}
 		if (password != null && passwordHash == null) {
 			// Validate password
 			if (!this.userEntityService.validatePassword(password)) {

packages/backend/src/env.ts

@@ -11,6 +11,7 @@ const envOption = {
 	verbose: false,
 	withLogTime: false,
 	quiet: false,
+	managed: true,
 };
 
 for (const key of Object.keys(envOption) as (keyof typeof envOption)[]) {

packages/backend/src/models/Meta.ts

@@ -379,14 +379,14 @@ export class MiMeta {
 
 	@Column('varchar', {
 		length: 1024,
-		default: 'https://github.com/misskey-dev/misskey',
+		default: 'https://github.com/type4ny-project/type4ny',
 		nullable: true,
 	})
 	public repositoryUrl: string | null;
 
 	@Column('varchar', {
 		length: 1024,
-		default: 'https://github.com/misskey-dev/misskey/issues/new',
+		default: 'https://github.com/type4ny-project/type4ny/issues/new',
 		nullable: true,
 	})
 	public feedbackUrl: string | null;

packages/backend/src/server/NodeinfoServerService.ts

@@ -124,7 +124,7 @@ export class NodeinfoServerService {
 					enableEmail: meta.enableEmail,
 					enableServiceWorker: meta.enableServiceWorker,
 					proxyAccountName: proxyAccount ? proxyAccount.username : null,
-					themeColor: meta.themeColor ?? '#86b300',
+					themeColor: meta.themeColor ?? '#00a968',
 				},
 			};
 			if (version >= 21) {

packages/backend/src/server/api/endpoints/admin/meta.ts

@@ -9,6 +9,7 @@ import { MetaService } from '@/core/MetaService.js';
 import type { Config } from '@/config.js';
 import { DI } from '@/di-symbols.js';
 import { DEFAULT_POLICIES } from '@/core/RoleService.js';
+import {envOption} from "@/env.js";
 
 export const meta = {
 	tags: ['meta'],
@@ -525,131 +526,260 @@ export default class extends Endpoint<typeof meta, typeof paramDef> { // eslint-
 	) {
 		super(meta, paramDef, async () => {
 			const instance = await this.metaService.fetch(true);
+			if (!envOption.managed) {
+				return {
+					maintainerName: instance.maintainerName,
+					maintainerEmail: instance.maintainerEmail,
+					version: this.config.version,
+					name: instance.name,
+					shortName: instance.shortName,
+					uri: this.config.url,
+					description: instance.description,
+					langs: instance.langs,
+					tosUrl: instance.termsOfServiceUrl,
+					repositoryUrl: instance.repositoryUrl,
+					feedbackUrl: instance.feedbackUrl,
+					impressumUrl: instance.impressumUrl,
+					privacyPolicyUrl: instance.privacyPolicyUrl,
+					inquiryUrl: instance.inquiryUrl,
+					disableRegistration: instance.disableRegistration,
+					emailRequiredForSignup: instance.emailRequiredForSignup,
+					enableHcaptcha: instance.enableHcaptcha,
+					hcaptchaSiteKey: instance.hcaptchaSiteKey,
+					enableMcaptcha: instance.enableMcaptcha,
+					mcaptchaSiteKey: instance.mcaptchaSitekey,
+					mcaptchaInstanceUrl: instance.mcaptchaInstanceUrl,
+					enableRecaptcha: instance.enableRecaptcha,
+					recaptchaSiteKey: instance.recaptchaSiteKey,
+					enableTurnstile: instance.enableTurnstile,
+					turnstileSiteKey: instance.turnstileSiteKey,
+					swPublickey: instance.swPublicKey,
+					themeColor: instance.themeColor,
+					requestEmojiAllOk: instance.requestEmojiAllOk,
+					mascotImageUrl: instance.mascotImageUrl,
+					bannerUrl: instance.bannerUrl,
+					serverErrorImageUrl: instance.serverErrorImageUrl,
+					notFoundImageUrl: instance.notFoundImageUrl,
+					infoImageUrl: instance.infoImageUrl,
+					iconUrl: instance.iconUrl,
+					app192IconUrl: instance.app192IconUrl,
+					app512IconUrl: instance.app512IconUrl,
+					backgroundImageUrl: instance.backgroundImageUrl,
+					logoImageUrl: instance.logoImageUrl,
+					defaultLightTheme: instance.defaultLightTheme,
+					defaultDarkTheme: instance.defaultDarkTheme,
+					enableEmail: instance.enableEmail,
+					enableServiceWorker: instance.enableServiceWorker,
+					translatorAvailable: instance.deeplAuthKey != null,
+					cacheRemoteFiles: instance.cacheRemoteFiles,
+					cacheRemoteSensitiveFiles: instance.cacheRemoteSensitiveFiles,
+					pinnedUsers: instance.pinnedUsers,
+					hiddenTags: instance.hiddenTags,
+					blockedHosts: instance.blockedHosts,
+					silencedHosts: instance.silencedHosts,
+					sensitiveWords: instance.sensitiveWords,
+					prohibitedWords: instance.prohibitedWords,
+					preservedUsernames: instance.preservedUsernames,
+					hcaptchaSecretKey: instance.hcaptchaSecretKey,
+					mcaptchaSecretKey: instance.mcaptchaSecretKey,
+					recaptchaSecretKey: instance.recaptchaSecretKey,
+					turnstileSecretKey: instance.turnstileSecretKey,
+					sensitiveMediaDetection: instance.sensitiveMediaDetection,
+					sensitiveMediaDetectionSensitivity: instance.sensitiveMediaDetectionSensitivity,
+					setSensitiveFlagAutomatically: instance.setSensitiveFlagAutomatically,
+					enableSensitiveMediaDetectionForVideos: instance.enableSensitiveMediaDetectionForVideos,
+					proxyAccountId: instance.proxyAccountId,
+					email: instance.email,
+					smtpSecure: instance.smtpSecure,
+					smtpHost: instance.smtpHost,
+					smtpPort: instance.smtpPort,
+					smtpUser: instance.smtpUser,
+					smtpPass: instance.smtpPass,
+					swPrivateKey: instance.swPrivateKey,
+					useObjectStorage: instance.useObjectStorage,
+					objectStorageBaseUrl: instance.objectStorageBaseUrl,
+					objectStorageBucket: instance.objectStorageBucket,
+					objectStoragePrefix: instance.objectStoragePrefix,
+					objectStorageEndpoint: instance.objectStorageEndpoint,
+					objectStorageRegion: instance.objectStorageRegion,
+					objectStoragePort: instance.objectStoragePort,
+					objectStorageAccessKey: instance.objectStorageAccessKey,
+					objectStorageSecretKey: instance.objectStorageSecretKey,
+					objectStorageUseSSL: instance.objectStorageUseSSL,
+					objectStorageUseProxy: instance.objectStorageUseProxy,
+					objectStorageSetPublicRead: instance.objectStorageSetPublicRead,
+					objectStorageS3ForcePathStyle: instance.objectStorageS3ForcePathStyle,
+					deeplAuthKey: instance.deeplAuthKey,
+					deeplIsPro: instance.deeplIsPro,
+					enableIpLogging: instance.enableIpLogging,
+					enableActiveEmailValidation: instance.enableActiveEmailValidation,
+					enableVerifymailApi: instance.enableVerifymailApi,
+					verifymailAuthKey: instance.verifymailAuthKey,
+					enableTruemailApi: instance.enableTruemailApi,
+					truemailInstance: instance.truemailInstance,
+					truemailAuthKey: instance.truemailAuthKey,
+					enableChartsForRemoteUser: instance.enableChartsForRemoteUser,
+					enableChartsForFederatedInstances: instance.enableChartsForFederatedInstances,
+					enableServerMachineStats: instance.enableServerMachineStats,
+					enableIdenticonGeneration: instance.enableIdenticonGeneration,
+					bannedEmailDomains: instance.bannedEmailDomains,
+					policies: { ...DEFAULT_POLICIES, ...instance.policies },
+					manifestJsonOverride: instance.manifestJsonOverride,
+					enableFanoutTimeline: instance.enableFanoutTimeline,
+					enableFanoutTimelineDbFallback: instance.enableFanoutTimelineDbFallback,
+					perLocalUserUserTimelineCacheMax: instance.perLocalUserUserTimelineCacheMax,
+					perRemoteUserUserTimelineCacheMax: instance.perRemoteUserUserTimelineCacheMax,
+					perUserHomeTimelineCacheMax: instance.perUserHomeTimelineCacheMax,
+					perUserListTimelineCacheMax: instance.perUserListTimelineCacheMax,
+					notesPerOneAd: instance.notesPerOneAd,
+					DiscordWebhookUrl: instance.DiscordWebhookUrl,
+					DiscordWebhookUrlWordBlock: instance.DiscordWebhookUrlWordBlock,
+					EmojiBotToken: instance.EmojiBotToken,
+					ApiBase: instance.ApiBase,
+					enableGDPRMode: instance.enableGDPRMode,
+					enableProxyCheckio: instance.enableProxyCheckio,
+					proxyCheckioApiKey: instance.proxyCheckioApiKey,
+					summalyProxy: instance.urlPreviewSummaryProxyUrl,
+					urlPreviewEnabled: instance.urlPreviewEnabled,
+					urlPreviewTimeout: instance.urlPreviewTimeout,
+					urlPreviewMaximumContentLength: instance.urlPreviewMaximumContentLength,
+					urlPreviewRequireContentLength: instance.urlPreviewRequireContentLength,
+					urlPreviewUserAgent: instance.urlPreviewUserAgent,
+					urlPreviewSummaryProxyUrl: instance.urlPreviewSummaryProxyUrl,
+					iconLight: instance.iconLight,
+					iconDark: instance.iconDark,
+					bannerLight: instance.bannerLight,
+					bannerDark: instance.bannerDark,
+					isManaged: false,
 
-			return {
-				maintainerName: instance.maintainerName,
-				maintainerEmail: instance.maintainerEmail,
-				version: this.config.version,
-				name: instance.name,
-				shortName: instance.shortName,
-				uri: this.config.url,
-				description: instance.description,
-				langs: instance.langs,
-				tosUrl: instance.termsOfServiceUrl,
-				repositoryUrl: instance.repositoryUrl,
-				feedbackUrl: instance.feedbackUrl,
-				impressumUrl: instance.impressumUrl,
-				privacyPolicyUrl: instance.privacyPolicyUrl,
-				inquiryUrl: instance.inquiryUrl,
-				disableRegistration: instance.disableRegistration,
-				emailRequiredForSignup: instance.emailRequiredForSignup,
-				enableHcaptcha: instance.enableHcaptcha,
-				hcaptchaSiteKey: instance.hcaptchaSiteKey,
-				enableMcaptcha: instance.enableMcaptcha,
-				mcaptchaSiteKey: instance.mcaptchaSitekey,
-				mcaptchaInstanceUrl: instance.mcaptchaInstanceUrl,
-				enableRecaptcha: instance.enableRecaptcha,
-				recaptchaSiteKey: instance.recaptchaSiteKey,
-				enableTurnstile: instance.enableTurnstile,
-				turnstileSiteKey: instance.turnstileSiteKey,
-				swPublickey: instance.swPublicKey,
-				themeColor: instance.themeColor,
-				requestEmojiAllOk: instance.requestEmojiAllOk,
-				mascotImageUrl: instance.mascotImageUrl,
-				bannerUrl: instance.bannerUrl,
-				serverErrorImageUrl: instance.serverErrorImageUrl,
-				notFoundImageUrl: instance.notFoundImageUrl,
-				infoImageUrl: instance.infoImageUrl,
-				iconUrl: instance.iconUrl,
-				app192IconUrl: instance.app192IconUrl,
-				app512IconUrl: instance.app512IconUrl,
-				backgroundImageUrl: instance.backgroundImageUrl,
-				logoImageUrl: instance.logoImageUrl,
-				defaultLightTheme: instance.defaultLightTheme,
-				defaultDarkTheme: instance.defaultDarkTheme,
-				enableEmail: instance.enableEmail,
-				enableServiceWorker: instance.enableServiceWorker,
-				translatorAvailable: instance.deeplAuthKey != null,
-				cacheRemoteFiles: instance.cacheRemoteFiles,
-				cacheRemoteSensitiveFiles: instance.cacheRemoteSensitiveFiles,
-				pinnedUsers: instance.pinnedUsers,
-				hiddenTags: instance.hiddenTags,
-				blockedHosts: instance.blockedHosts,
-				silencedHosts: instance.silencedHosts,
-				sensitiveWords: instance.sensitiveWords,
-				prohibitedWords: instance.prohibitedWords,
-				preservedUsernames: instance.preservedUsernames,
-				hcaptchaSecretKey: instance.hcaptchaSecretKey,
-				mcaptchaSecretKey: instance.mcaptchaSecretKey,
-				recaptchaSecretKey: instance.recaptchaSecretKey,
-				turnstileSecretKey: instance.turnstileSecretKey,
-				sensitiveMediaDetection: instance.sensitiveMediaDetection,
-				sensitiveMediaDetectionSensitivity: instance.sensitiveMediaDetectionSensitivity,
-				setSensitiveFlagAutomatically: instance.setSensitiveFlagAutomatically,
-				enableSensitiveMediaDetectionForVideos: instance.enableSensitiveMediaDetectionForVideos,
-				proxyAccountId: instance.proxyAccountId,
-				email: instance.email,
-				smtpSecure: instance.smtpSecure,
-				smtpHost: instance.smtpHost,
-				smtpPort: instance.smtpPort,
-				smtpUser: instance.smtpUser,
-				smtpPass: instance.smtpPass,
-				swPrivateKey: instance.swPrivateKey,
-				useObjectStorage: instance.useObjectStorage,
-				objectStorageBaseUrl: instance.objectStorageBaseUrl,
-				objectStorageBucket: instance.objectStorageBucket,
-				objectStoragePrefix: instance.objectStoragePrefix,
-				objectStorageEndpoint: instance.objectStorageEndpoint,
-				objectStorageRegion: instance.objectStorageRegion,
-				objectStoragePort: instance.objectStoragePort,
-				objectStorageAccessKey: instance.objectStorageAccessKey,
-				objectStorageSecretKey: instance.objectStorageSecretKey,
-				objectStorageUseSSL: instance.objectStorageUseSSL,
-				objectStorageUseProxy: instance.objectStorageUseProxy,
-				objectStorageSetPublicRead: instance.objectStorageSetPublicRead,
-				objectStorageS3ForcePathStyle: instance.objectStorageS3ForcePathStyle,
-				deeplAuthKey: instance.deeplAuthKey,
-				deeplIsPro: instance.deeplIsPro,
-				enableIpLogging: instance.enableIpLogging,
-				enableActiveEmailValidation: instance.enableActiveEmailValidation,
-				enableVerifymailApi: instance.enableVerifymailApi,
-				verifymailAuthKey: instance.verifymailAuthKey,
-				enableTruemailApi: instance.enableTruemailApi,
-				truemailInstance: instance.truemailInstance,
-				truemailAuthKey: instance.truemailAuthKey,
-				enableChartsForRemoteUser: instance.enableChartsForRemoteUser,
-				enableChartsForFederatedInstances: instance.enableChartsForFederatedInstances,
-				enableServerMachineStats: instance.enableServerMachineStats,
-				enableIdenticonGeneration: instance.enableIdenticonGeneration,
-				bannedEmailDomains: instance.bannedEmailDomains,
-				policies: { ...DEFAULT_POLICIES, ...instance.policies },
-				manifestJsonOverride: instance.manifestJsonOverride,
-				enableFanoutTimeline: instance.enableFanoutTimeline,
-				enableFanoutTimelineDbFallback: instance.enableFanoutTimelineDbFallback,
-				perLocalUserUserTimelineCacheMax: instance.perLocalUserUserTimelineCacheMax,
-				perRemoteUserUserTimelineCacheMax: instance.perRemoteUserUserTimelineCacheMax,
-				perUserHomeTimelineCacheMax: instance.perUserHomeTimelineCacheMax,
-				perUserListTimelineCacheMax: instance.perUserListTimelineCacheMax,
-				notesPerOneAd: instance.notesPerOneAd,
-				DiscordWebhookUrl: instance.DiscordWebhookUrl,
-				DiscordWebhookUrlWordBlock: instance.DiscordWebhookUrlWordBlock,
-				EmojiBotToken: instance.EmojiBotToken,
-				ApiBase: instance.ApiBase,
-				enableGDPRMode: instance.enableGDPRMode,
-				enableProxyCheckio: instance.enableProxyCheckio,
-				proxyCheckioApiKey: instance.proxyCheckioApiKey,
-				summalyProxy: instance.urlPreviewSummaryProxyUrl,
-				urlPreviewEnabled: instance.urlPreviewEnabled,
-				urlPreviewTimeout: instance.urlPreviewTimeout,
-				urlPreviewMaximumContentLength: instance.urlPreviewMaximumContentLength,
-				urlPreviewRequireContentLength: instance.urlPreviewRequireContentLength,
-				urlPreviewUserAgent: instance.urlPreviewUserAgent,
-				urlPreviewSummaryProxyUrl: instance.urlPreviewSummaryProxyUrl,
-				iconLight: instance.iconLight,
-				iconDark: instance.iconDark,
-				bannerLight: instance.bannerLight,
-				bannerDark: instance.bannerDark,
-			};
+				};
+			} else {
+				return {
+					maintainerName: instance.maintainerName,
+					maintainerEmail: instance.maintainerEmail,
+					version: this.config.version,
+					name: instance.name,
+					shortName: instance.shortName,
+					uri: this.config.url,
+					description: instance.description,
+					langs: instance.langs,
+					tosUrl: instance.termsOfServiceUrl,
+					repositoryUrl: instance.repositoryUrl,
+					feedbackUrl: instance.feedbackUrl,
+					impressumUrl: instance.impressumUrl,
+					privacyPolicyUrl: instance.privacyPolicyUrl,
+					inquiryUrl: instance.inquiryUrl,
+					disableRegistration: instance.disableRegistration,
+					emailRequiredForSignup: instance.emailRequiredForSignup,
+					enableHcaptcha: instance.enableHcaptcha,
+					hcaptchaSiteKey: instance.hcaptchaSiteKey,
+					enableMcaptcha: instance.enableMcaptcha,
+					mcaptchaSiteKey: instance.mcaptchaSitekey,
+					mcaptchaInstanceUrl: instance.mcaptchaInstanceUrl,
+					enableRecaptcha: instance.enableRecaptcha,
+					recaptchaSiteKey: instance.recaptchaSiteKey,
+					enableTurnstile: instance.enableTurnstile,
+					turnstileSiteKey: instance.turnstileSiteKey,
+					swPublickey: instance.swPublicKey,
+					themeColor: instance.themeColor,
+					requestEmojiAllOk: instance.requestEmojiAllOk,
+					mascotImageUrl: instance.mascotImageUrl,
+					bannerUrl: instance.bannerUrl,
+					serverErrorImageUrl: instance.serverErrorImageUrl,
+					notFoundImageUrl: instance.notFoundImageUrl,
+					infoImageUrl: instance.infoImageUrl,
+					iconUrl: instance.iconUrl,
+					app192IconUrl: instance.app192IconUrl,
+					app512IconUrl: instance.app512IconUrl,
+					backgroundImageUrl: instance.backgroundImageUrl,
+					logoImageUrl: instance.logoImageUrl,
+					defaultLightTheme: instance.defaultLightTheme,
+					defaultDarkTheme: instance.defaultDarkTheme,
+					enableEmail: instance.enableEmail,
+					enableServiceWorker: instance.enableServiceWorker,
+					translatorAvailable: instance.deeplAuthKey != null,
+					cacheRemoteFiles: instance.cacheRemoteFiles,
+					cacheRemoteSensitiveFiles: instance.cacheRemoteSensitiveFiles,
+					pinnedUsers: instance.pinnedUsers,
+					hiddenTags: instance.hiddenTags,
+					blockedHosts: instance.blockedHosts,
+					silencedHosts: instance.silencedHosts,
+					sensitiveWords: instance.sensitiveWords,
+					prohibitedWords: instance.prohibitedWords,
+					preservedUsernames: instance.preservedUsernames,
+					hcaptchaSecretKey: instance.hcaptchaSecretKey,
+					mcaptchaSecretKey: instance.mcaptchaSecretKey,
+					recaptchaSecretKey: instance.recaptchaSecretKey,
+					turnstileSecretKey: instance.turnstileSecretKey,
+					sensitiveMediaDetection: instance.sensitiveMediaDetection,
+					sensitiveMediaDetectionSensitivity: instance.sensitiveMediaDetectionSensitivity,
+					setSensitiveFlagAutomatically: instance.setSensitiveFlagAutomatically,
+					enableSensitiveMediaDetectionForVideos: instance.enableSensitiveMediaDetectionForVideos,
+					proxyAccountId: instance.proxyAccountId,
+					email: instance.email,
+					smtpSecure: instance.smtpSecure,
+					smtpHost: instance.smtpHost,
+					smtpPort: instance.smtpPort,
+					smtpUser: instance.smtpUser,
+					smtpPass: instance.smtpPass,
+					swPrivateKey: instance.swPrivateKey,
+					useObjectStorage: true,
+					objectStorageBaseUrl: 'Masked',
+					objectStorageBucket: 'Masked',
+					objectStoragePrefix: 'Masked',
+					objectStorageEndpoint: 'Masked',
+					objectStorageRegion: 'Masked',
+					objectStoragePort: 0,
+					objectStorageAccessKey: 'Masked',
+					objectStorageSecretKey: 'Masked',
+					objectStorageUseSSL: false,
+					objectStorageUseProxy: false,
+					objectStorageSetPublicRead: false,
+					objectStorageS3ForcePathStyle: false,
+					deeplAuthKey: instance.deeplAuthKey,
+					deeplIsPro: instance.deeplIsPro,
+					enableIpLogging: instance.enableIpLogging,
+					enableActiveEmailValidation: instance.enableActiveEmailValidation,
+					enableVerifymailApi: instance.enableVerifymailApi,
+					verifymailAuthKey: instance.verifymailAuthKey,
+					enableTruemailApi: instance.enableTruemailApi,
+					truemailInstance: instance.truemailInstance,
+					truemailAuthKey: instance.truemailAuthKey,
+					enableChartsForRemoteUser: instance.enableChartsForRemoteUser,
+					enableChartsForFederatedInstances: instance.enableChartsForFederatedInstances,
+					enableServerMachineStats: instance.enableServerMachineStats,
+					enableIdenticonGeneration: instance.enableIdenticonGeneration,
+					bannedEmailDomains: instance.bannedEmailDomains,
+					policies: { ...DEFAULT_POLICIES, ...instance.policies },
+					manifestJsonOverride: instance.manifestJsonOverride,
+					enableFanoutTimeline: instance.enableFanoutTimeline,
+					enableFanoutTimelineDbFallback: instance.enableFanoutTimelineDbFallback,
+					perLocalUserUserTimelineCacheMax: instance.perLocalUserUserTimelineCacheMax,
+					perRemoteUserUserTimelineCacheMax: instance.perRemoteUserUserTimelineCacheMax,
+					perUserHomeTimelineCacheMax: instance.perUserHomeTimelineCacheMax,
+					perUserListTimelineCacheMax: instance.perUserListTimelineCacheMax,
+					notesPerOneAd: instance.notesPerOneAd,
+					DiscordWebhookUrl: instance.DiscordWebhookUrl,
+					DiscordWebhookUrlWordBlock: instance.DiscordWebhookUrlWordBlock,
+					EmojiBotToken: instance.EmojiBotToken,
+					ApiBase: instance.ApiBase,
+					enableGDPRMode: instance.enableGDPRMode,
+					enableProxyCheckio: instance.enableProxyCheckio,
+					proxyCheckioApiKey: instance.proxyCheckioApiKey,
+					summalyProxy: instance.urlPreviewSummaryProxyUrl,
+					urlPreviewEnabled: instance.urlPreviewEnabled,
+					urlPreviewTimeout: instance.urlPreviewTimeout,
+					urlPreviewMaximumContentLength: instance.urlPreviewMaximumContentLength,
+					urlPreviewRequireContentLength: instance.urlPreviewRequireContentLength,
+					urlPreviewUserAgent: instance.urlPreviewUserAgent,
+					urlPreviewSummaryProxyUrl: instance.urlPreviewSummaryProxyUrl,
+					iconLight: instance.iconLight,
+					iconDark: instance.iconDark,
+					bannerLight: instance.bannerLight,
+					bannerDark: instance.bannerDark,
+					isManaged: true,
+				};
+			}
 		});
 	}
 }

packages/backend/src/server/api/endpoints/admin/update-meta.ts

@@ -8,6 +8,7 @@ import type { MiMeta } from '@/models/Meta.js';
 import { ModerationLogService } from '@/core/ModerationLogService.js';
 import { Endpoint } from '@/server/api/endpoint-base.js';
 import { MetaService } from '@/core/MetaService.js';
+import { envOption } from '@/env.js';
 
 export const meta = {
 	tags: ['admin'],
@@ -91,7 +92,6 @@ export const paramDef = {
 				type: 'string',
 			},
 		},
-		summalyProxy: { type: 'string', nullable: true },
 		DiscordWebhookUrl: { type: 'string', nullable: true },
 		DiscordWebhookUrlWordBlock: { type: 'string', nullable: true },
 		deeplAuthKey: { type: 'string', nullable: true },
@@ -190,9 +190,98 @@ export default class extends Endpoint<typeof meta, typeof paramDef> { // eslint-
 	) {
 		super(meta, paramDef, async (ps, me) => {
 			const set = {} as Partial<MiMeta>;
+			if (!envOption.managed) {
+				if (typeof ps.disableRegistration === 'boolean') {
+					set.disableRegistration = ps.disableRegistration;
+				}
 
-			if (typeof ps.disableRegistration === 'boolean') {
-				set.disableRegistration = ps.disableRegistration;
+				if (ps.useObjectStorage !== undefined) {
+					set.useObjectStorage = ps.useObjectStorage;
+				}
+
+				if (ps.objectStorageBaseUrl !== undefined) {
+					set.objectStorageBaseUrl = ps.objectStorageBaseUrl;
+				}
+
+				if (ps.objectStorageBucket !== undefined) {
+					set.objectStorageBucket = ps.objectStorageBucket;
+				}
+
+				if (ps.objectStoragePrefix !== undefined) {
+					set.objectStoragePrefix = ps.objectStoragePrefix;
+				}
+
+				if (ps.objectStorageEndpoint !== undefined) {
+					set.objectStorageEndpoint = ps.objectStorageEndpoint;
+				}
+
+				if (ps.objectStorageRegion !== undefined) {
+					set.objectStorageRegion = ps.objectStorageRegion;
+				}
+
+				if (ps.objectStoragePort !== undefined) {
+					set.objectStoragePort = ps.objectStoragePort;
+				}
+
+				if (ps.objectStorageAccessKey !== undefined) {
+					set.objectStorageAccessKey = ps.objectStorageAccessKey;
+				}
+
+				if (ps.objectStorageSecretKey !== undefined) {
+					set.objectStorageSecretKey = ps.objectStorageSecretKey;
+				}
+
+				if (ps.objectStorageUseSSL !== undefined) {
+					set.objectStorageUseSSL = ps.objectStorageUseSSL;
+				}
+
+				if (ps.objectStorageUseProxy !== undefined) {
+					set.objectStorageUseProxy = ps.objectStorageUseProxy;
+				}
+
+				if (ps.objectStorageSetPublicRead !== undefined) {
+					set.objectStorageSetPublicRead = ps.objectStorageSetPublicRead;
+				}
+
+				if (ps.objectStorageS3ForcePathStyle !== undefined) {
+					set.objectStorageS3ForcePathStyle = ps.objectStorageS3ForcePathStyle;
+				}
+
+				if (ps.enableServerMachineStats !== undefined) {
+					set.enableServerMachineStats = ps.enableServerMachineStats;
+				}
+
+				if (ps.cacheRemoteFiles !== undefined) {
+					set.cacheRemoteFiles = ps.cacheRemoteFiles;
+				}
+
+				if (ps.cacheRemoteSensitiveFiles !== undefined) {
+					set.cacheRemoteSensitiveFiles = ps.cacheRemoteSensitiveFiles;
+				}
+
+				if (ps.enableFanoutTimeline !== undefined) {
+					set.enableFanoutTimeline = ps.enableFanoutTimeline;
+				}
+
+				if (ps.enableFanoutTimelineDbFallback !== undefined) {
+					set.enableFanoutTimelineDbFallback = ps.enableFanoutTimelineDbFallback;
+				}
+
+				if (ps.perLocalUserUserTimelineCacheMax !== undefined) {
+					set.perLocalUserUserTimelineCacheMax = ps.perLocalUserUserTimelineCacheMax;
+				}
+
+				if (ps.perRemoteUserUserTimelineCacheMax !== undefined) {
+					set.perRemoteUserUserTimelineCacheMax = ps.perRemoteUserUserTimelineCacheMax;
+				}
+
+				if (ps.perUserHomeTimelineCacheMax !== undefined) {
+					set.perUserHomeTimelineCacheMax = ps.perUserHomeTimelineCacheMax;
+				}
+
+				if (ps.perUserListTimelineCacheMax !== undefined) {
+					set.perUserListTimelineCacheMax = ps.perUserListTimelineCacheMax;
+				}
 			}
 
 			if (Array.isArray(ps.pinnedUsers)) {
@@ -313,14 +402,6 @@ export default class extends Endpoint<typeof meta, typeof paramDef> { // eslint-
 				set.defaultDarkTheme = ps.defaultDarkTheme;
 			}
 
-			if (ps.cacheRemoteFiles !== undefined) {
-				set.cacheRemoteFiles = ps.cacheRemoteFiles;
-			}
-
-			if (ps.cacheRemoteSensitiveFiles !== undefined) {
-				set.cacheRemoteSensitiveFiles = ps.cacheRemoteSensitiveFiles;
-			}
-
 			if (ps.emailRequiredForSignup !== undefined) {
 				set.emailRequiredForSignup = ps.emailRequiredForSignup;
 			}
@@ -473,58 +554,6 @@ export default class extends Endpoint<typeof meta, typeof paramDef> { // eslint-
 				set.inquiryUrl = ps.inquiryUrl;
 			}
 
-			if (ps.useObjectStorage !== undefined) {
-				set.useObjectStorage = ps.useObjectStorage;
-			}
-
-			if (ps.objectStorageBaseUrl !== undefined) {
-				set.objectStorageBaseUrl = ps.objectStorageBaseUrl;
-			}
-
-			if (ps.objectStorageBucket !== undefined) {
-				set.objectStorageBucket = ps.objectStorageBucket;
-			}
-
-			if (ps.objectStoragePrefix !== undefined) {
-				set.objectStoragePrefix = ps.objectStoragePrefix;
-			}
-
-			if (ps.objectStorageEndpoint !== undefined) {
-				set.objectStorageEndpoint = ps.objectStorageEndpoint;
-			}
-
-			if (ps.objectStorageRegion !== undefined) {
-				set.objectStorageRegion = ps.objectStorageRegion;
-			}
-
-			if (ps.objectStoragePort !== undefined) {
-				set.objectStoragePort = ps.objectStoragePort;
-			}
-
-			if (ps.objectStorageAccessKey !== undefined) {
-				set.objectStorageAccessKey = ps.objectStorageAccessKey;
-			}
-
-			if (ps.objectStorageSecretKey !== undefined) {
-				set.objectStorageSecretKey = ps.objectStorageSecretKey;
-			}
-
-			if (ps.objectStorageUseSSL !== undefined) {
-				set.objectStorageUseSSL = ps.objectStorageUseSSL;
-			}
-
-			if (ps.objectStorageUseProxy !== undefined) {
-				set.objectStorageUseProxy = ps.objectStorageUseProxy;
-			}
-
-			if (ps.objectStorageSetPublicRead !== undefined) {
-				set.objectStorageSetPublicRead = ps.objectStorageSetPublicRead;
-			}
-
-			if (ps.objectStorageS3ForcePathStyle !== undefined) {
-				set.objectStorageS3ForcePathStyle = ps.objectStorageS3ForcePathStyle;
-			}
-
 			if (ps.deeplAuthKey !== undefined) {
 				if (ps.deeplAuthKey === '') {
 					set.deeplAuthKey = null;
@@ -585,10 +614,6 @@ export default class extends Endpoint<typeof meta, typeof paramDef> { // eslint-
 				set.enableChartsForFederatedInstances = ps.enableChartsForFederatedInstances;
 			}
 
-			if (ps.enableServerMachineStats !== undefined) {
-				set.enableServerMachineStats = ps.enableServerMachineStats;
-			}
-
 			if (ps.enableIdenticonGeneration !== undefined) {
 				set.enableIdenticonGeneration = ps.enableIdenticonGeneration;
 			}
@@ -605,30 +630,6 @@ export default class extends Endpoint<typeof meta, typeof paramDef> { // eslint-
 				set.manifestJsonOverride = ps.manifestJsonOverride;
 			}
 
-			if (ps.enableFanoutTimeline !== undefined) {
-				set.enableFanoutTimeline = ps.enableFanoutTimeline;
-			}
-
-			if (ps.enableFanoutTimelineDbFallback !== undefined) {
-				set.enableFanoutTimelineDbFallback = ps.enableFanoutTimelineDbFallback;
-			}
-
-			if (ps.perLocalUserUserTimelineCacheMax !== undefined) {
-				set.perLocalUserUserTimelineCacheMax = ps.perLocalUserUserTimelineCacheMax;
-			}
-
-			if (ps.perRemoteUserUserTimelineCacheMax !== undefined) {
-				set.perRemoteUserUserTimelineCacheMax = ps.perRemoteUserUserTimelineCacheMax;
-			}
-
-			if (ps.perUserHomeTimelineCacheMax !== undefined) {
-				set.perUserHomeTimelineCacheMax = ps.perUserHomeTimelineCacheMax;
-			}
-
-			if (ps.perUserListTimelineCacheMax !== undefined) {
-				set.perUserListTimelineCacheMax = ps.perUserListTimelineCacheMax;
-			}
-
 			if (ps.notesPerOneAd !== undefined) {
 				set.notesPerOneAd = ps.notesPerOneAd;
 			}

packages/backend/src/server/api/endpoints/i.ts

@@ -73,24 +73,28 @@ export default class extends Endpoint<typeof meta, typeof paramDef> { // eslint-
 				const range = max - min + 1;
 				const randomBuffer = new Uint32Array(1);
 				crypto.getRandomValues(randomBuffer);
-				const randomNumber = randomBuffer[0] / (0xFFFFFFFF + 1); // 0から1未満の浮動小数点数
+				const randomNumber = randomBuffer[0] / (0xFFFFFFFF + 1);
 				return Math.floor(randomNumber * range) + min;
 			}
 
 			if (!userProfile.loggedInDates.includes(today)) {
+
 				todayGetPoints = generateSecureRandomNumber(1, 5);
-				this.userProfilesRepository.update({ userId: user.id }, {
+
+				void this.userProfilesRepository.update({ userId: user.id }, {
 					loggedInDates: [...userProfile.loggedInDates, today],
 				});
+
 				const user_ = await this.usersRepository.findOne({
 					where: {
 						id: user.id,
 					},
 				});
+
 				if (user_ == null) {
 					throw new ApiError(meta.errors.userIsDeleted);
 				}
-				this.usersRepository.update( user.id, {
+				void this.usersRepository.update( user.id, {
 					getPoints: user_.getPoints + todayGetPoints,
 				});
 				this.notificationService.createNotification(user.id, 'loginbonus', {