chat.pl -- The SWISH collaboration backbone

We have three levels of identity as enumerated below. Note that these form a hierarchy: a particular user may be logged on using multiple browsers which in turn may have multiple SWISH windows opened.

1. Any open SWISH window has an associated websocket, represented by the identifier returned by hub_add/3.
2. Any browser, possibly having multiple open SWISH windows, is identified by a session cookie.
3. The user may be logged in, either based on the cookie or on HTTP authentication.

 start_chat(+Request)[private]

HTTP handler that establishes a websocket connection where a user gets an avatar and optionally a name.

 check_flooding(+Session)[private]

See whether the client associated with a session is flooding us and if so, return a resource error.

 accept_chat(+Session, +Options, +WebSocket)[private]

Create the websocket for the chat session. If the websocket was lost due to a network failure, the client will try to reconnect with a reconnect token. If this is successful we restore the old identity and WSID. If not, we add the websocket to the "hub" and send a a welcome message over the established websocket.

 wsid_status(?WSID, ?Status)[private]

 wsid_session(?WSID, ?SessionId)[private]

 session_user(?Session, ?TmpUser)[private]

 visitor_data(?TmpUser, ?UserData:dict)[private]

 subscription(?WSID, ?Channel, ?SubChannel)[private]

These predicates represent our notion of visitors. Active modes:

• wsid_status(+WSID, -Status)
  • Indexes: 1
  • retract(wsid_status(+WSID, -Status))
  • assertz(wsid_status(+WSID, +Status))
  • retractall(wsid_status(+WSID, _))
• wsid_session(?WSID, ?SessionId)
  • Indexes: 1,2,3
• session_user(?Session, ?TmpUser)
  • Indexes: 1
• visitor_data(?TmpUser, ?UserData)
  • Indexes: 1
• subscription(?WSID, ?Channel, ?SubChannel)

  Indexes:1,3

  Currently all subscriptions are on the Channel gitty

Arguments:

WSID	- is the identifier of the web socket. As we may have to reconnect lost connections, this is may be replaced.
Session	- is the session identifier. This is used to connect SWISH actions to WSIDs.
TmpUser	- is the ID with which we identify the user for this run. The value is a UUID and thus doesn't reveal the real identity of the user.
UserData	- is a dict that holds information about the real user identity. This can be empty if no information is known about this user.
Status	- is one of unload or lost(Time)
Channel	- is an atom denoting a chat channel
SubChannel	- is a related sub channel.

 redis_key(+Which, -Server, -Key) is semidet[private]

 redis_key_ro(+Which, -Server, -Key) is semidet[private]

Find the Redis server and key for a query. The redis_key_ro/3 variant returns the nearby Redis replica if it exists. This can only be used with read-only keys.

 wsid_status(+WSID, -Status)[private]

Status is one of lost(Time) if we lost contact at Time or unload if the websocket was cleanly disconnected.

The Redis version keeps two keys per WSID as described below. Note that these keys only exist on temporary lost or disconnecting websockets.

• unload:WSID = boolean
• lost:WSID = time

 wsid_status_del_unload(+WSID) is semidet[private]

True when WSID has status unload and this status is removed.

 register_wsid_session(+WSID, +Session) is det[private]

Register WSID to belong to Session, i.e., the given websocket belongs to a Session on some browser. When using a Redis cluster, we also want to know the Redis consumer on which this session is active, such that we can relay messages to the proper SWISH server.

Redis data:

• wsid: set of WSID
• session:WSID to at(Consumer,Session)

 wsid_session(?WSID, ?Session) is nondet[private]

 wsid_session(?WSID, ?Session, -Consumer) is nondet[private]

True when there is a known visitor WSID that is associated with the HTTP Session, uses Token for reconnecting and runs on a node identified by the Redis Consumer.

 wsid_session_reclaim(+WSID, -Session) is semidet[private]

True when WSID was connected to Session and now no longer is.

 wsid_session_reclaim_all(+WSID, +Session) is det[private]

 current_wsid(?WSID) is nondet[private]

True when WSID is a (Redis) known WSID.

 session_user(?Session, ?TmpUser:atom)[private]

Relate Session to a tmp user id. Info about the tmp user is maintained in visitor_data/2.

 visitor_data(?Visitor, ?Data)[private]

 subscription(?WSID, ?Channel, ?SubChannel)[private]

Requires both WSID -> Channel/SubChannel and backward relation. Redis:

channel:SubChannel --> set(WSID-Channel) subscription:WSID --> set(Channel-SubChannel)

 subscribe(+WSID, +Channel) is det[private]

 subscribe(+WSID, +Channel, +SubChannel) is det[private]

Subscript WSID to listen to messages on Channel/SubChannel.

 unsubscribe(?WSID, ?Channel) is det[private]

 unsubscribe(?WSID, ?Channel, ?SubChannel) is det[private]

Remove all matching subscriptions.

 visitor(?WSID) is nondet[private]

 visitor(?WSID, -Consumer) is nondet[private]

True when WSID should be considered an active visitor that is connected to the SWISH node identified by the Redis Consumer. This means

• If we lost the visitor for less than 30 sec, we consider it still active.
• If it is connected to our websocket hub, it is active.
• Otherwise, if it runs on our node, we destroy the visitor.

 pending_visitor(+WSID, +Timeout) is semidet[private]

True if WSID is inactive. This means we lost the connection at least Timeout seconds ago.

 wsid_visitor(?WSID, ?Visitor)[private]

True when WSID is associated with Visitor

 existing_visitor(+WSID, +Session, -TmpUser, -UserData) is semidet[private]

True if we are dealing with an existing visitor for which we lost the connection.

 create_visitor(+WSID, +Session, -TmpUser, -UserData, +Options)[private]

Create a new visitor when a new websocket is established. Options provides information we have about the user:

current_user_info(+Info)

Already logged in user with given information

avatar(Avatar)

Avatar remembered in the browser for this user.

anonymous_name(NickName)

Nick name remembered in the browser for this user.

anonymous_avatar(URL)

Avatar remembered in the browser for this user. Using the SVG avatars, this is `/icons/avatar.svg#NNN`, which NNN is a bitmask on the SVG to change its appearance,

 random_key(+Len, -Key) is det[private]

Generate a random confirmation key

 destroy_visitor(+WSID) is det[private]

The web socket WSID has been closed. We should not immediately destroy the temporary user as the browser may soon reconnect due to a page reload or re-establishing the web socket after a temporary network failure. We leave the destruction thereof to the session, but set the session timeout to a fairly short time.

To be done

- We should only inform clients that we have informed about this user.

 update_session_timeout(+WSID) is det[private]

WSID was lost. If this is the only websocket on this session we reduce the session timeout to 15 minutes. This cooperates with accept_chat/3, which sets the session timeout to 100 days for as long as we have an active websocket connection.

 gc_visitors[private]

Reclaim all visitors with whom we have lost the connection and the browser did not reclaim the session within session_lost_timeout seconds.

This also updates active_wsid/2 to reflect the current status.

 reclaim_visitor(+WSID) is det[private]

Reclaim a WSID connection. If the user left gracefully, this is called immediately. If we lost the connection on an error, this is eventually called (indirectly) by do_gc_visitors/1.

 create_session_user(+Session, -User, -UserData, +Options)[private]

Associate a user with the session. The user id is a UUID that is not associated with any persistent notion of a user. The destruction is left to the destruction of the session.

 update_visitor_data(+TmpUser, +Data, +Reason) is det[private]

Update the user data for the visitor TmpUser to Data. This is rather complicated due to all the defaulting rules. Reason is one of:

• login
• logout
• 'set-nick-name'
• 'profile-edit'

To be done

- Create a more declarative description on where the various attributes must come from.

 update_avatar_from_email(+Email, +DataIn, -Data)[private]

Update the avatar after a change of the known email. If the avatar comes from the profile, no action is needed. If Email has a gravatar, use that. Else use the know or a new generated avatar.

 anonymise_user_data(TmpUser, Data)[private]

Create anonymous user profile.

 set_visitor_data(+TmpUser, +Data, +Reason) is det[private]

Update the user data for the session user TmpUser and forward the changes.

 inform_visitor_change(+TmpUser, +Reason) is det[private]

Inform browsers showing TmpUser that the visitor data has changed. The first clause deals with forwarding from HTTP requests, where we have the session and the second from websocket requests where we have the WSID.

 sync_gazers(+WSID, +Files:list(atom)) is det[private]

A browser signals it has Files open. This happens when a SWISH instance is created as well as when a SWISH instance changes state, such as closing a tab, adding a tab, bringing a tab to the foreground, etc.

 add_user_details(+Message, -Enriched) is det[private]

Add additional information to a message. Message must contain a uid field.

 public_user_data(+UID, -Public:dict) is det[private]

True when Public provides the information we publically share about UID. This is currently the name and avatar.

 get_visitor_data(-Data:dict, +Options) is det[private]

Optain data for a new visitor. Options include:

identity(+Identity)

Identity information provided by authenticate/2. Always present.

avatar(+URL)

Avatar provided by the user

nick_name(+Name)

Nick name provided by the user.

Data always contains an avatar key and optionally contains a name and email key. If the avatar is generated there is also a key avatar_generated with the value true.

bug

- This may check for avatar validity, which may take long. Possibly we should do this in a thread.

 reply_avatar(+Request)[private]

HTTP handler for Noble Avatar images. Using create_avatar/2 re-creates avatars from the file name, so we can safely discard the avatar file store.

Not really. A new user gets a new avatar and this is based on whether or not the file exists. Probably we should maintain a db of handed out avatars and their last-use time stamp. How to do that? Current swish stats: 400K avatars, 3.2Gb data.

 chat_broadcast(+Message) is det

 chat_broadcast(+Message, +Channel) is det

Send Message to all known SWISH clients. Message is a valid JSON object, i.e., a dict or option list. When using Redis we send the message to the swish:chat pubsub channel and listening for swish:chat calls chat_broadcast_local/1,2 in each instance.

Arguments:

Channel

- is either an atom or a term Channel/SubChannel, where both Channel and SubChannel are atoms.

 subscribed(+Channel, +WSID) is semidet[private]

 subscribed(+Channel, +SubChannel, +WSID) is semidet[private]

Filter used by hub_broadcast/3. WSID is always a locally known web and active socket.

 send_friends(+WSID, +Message)[private]

Send Message to WSID and all its friends.

 update_visitors(+Msg) is det[private]

Maintain notion of active users based on broadcasted (re)join and left messages. We sync every 5 minutes to compensate for possible missed users.

 handle_message(+Message, +Room)[private]

Handle incoming messages. This handles messages from our websocket connections, i.e., this does not see messages on other (Redis) instances.

 json_message(+Message, +WSID) is det[private]

Process a JSON message translated to a dict. The following messages are understood:

• subscribe channel [subchannel]
• unsubscribe channel [subchannel] Actively (un)subscribe for specific message channels.
• unload A SWISH instance is cleanly being unloaded.
• has-open-files files Executed after initiating the websocket to indicate loaded files.
• set-nick-name name User set nick name for anonymous identoty

 forbidden(+Message, +DocID, -Why) is semidet[private]

True if the chat Message about DocID must be forbidden, in which case Why is unified with a string indicating the reason. Currently:

• Demands the user to be logged on
• Limits the size of the message and its payloads

To be done

- Call authorized/2 with all proper identity information.

 block(+User, +Score, -Cummulative, -Count)[private]

Keep a count and cummulative score for a user.

 chat_add_user_id(+WSID, +Message0, -Message) is det[private]

Decorate a message with the user credentials.

 chat_about(+DocID, +Message) is det

Distribute a chat message about DocID.

 chat_relay(+Message) is det[private]

Store and relay a chat message.

 chat_enrich(+Message0, -Message) is det[private]

Add time and identifier to the chat message.

 chat_send(+Message)[private]

Relay the chat message Message. If the message has a volatile property it is broadcasted, but not stored.

 chat_event(+Event) is semidet[private]

Event happened inside SWISH. Currently triggered events:

updated(+File, +From, +To)

File was updated from hash From to hash To.

profile(+ProfileID)

Session was associated with user with profile ProfileID

logout(+ProfileID)

User logged out. If the login was based on HTTP authentication ProfileID equals http.

 propagate_profile_change(+ProfileID, +Attribute, +Value)[private]

Trap external changes to the profile.

 broadcast_event(+Event) is semidet[private]

If true, broadcast this event.

 broadcast_event(+Event, +File, +WSID) is det[private]

Event happened that is related to File in WSID. Broadcast it to subscribed users as a notification. Always succeeds, also if the message cannot be delivered.

To be done

- Extend the structure to allow other browsers to act.

 event_html(+Event, -HTML:string) is det[private]

Describe an event as an HTML message to be displayed in the client's notification area.

 event_file(+Event, -File) is semidet[private]

True when Event is associated with File.

 chat_to_profile(ProfileID, :HTML) is det

Send a HTML notification to users logged in using ProfileID.

 notifications(+Options)//

The chat element is added to the navbar and managed by web/js/chat.js

 broadcast_bell(+Options)//

Adds a bell to indicate central chat messages