admin/Feeld
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
da2bab21e5f986fb56fa5ebb1cc2a27ec63e6584
Feeld/web/src/api/links/bannedCountryLink.ts
T
Trey T da2bab21e5 Block banned-country locations and align GraphQL ops 
Defense-in-depth banned-country gate covering every entry point that could
set a location Feeld's policy disallows (~60 countries from their support
article):

- New src/config/bannedCountries.ts — single source of truth (ISO codes + aliases)
- New src/utils/reverseGeocode.ts — Nominatim reverse lookup w/ localStorage cache
- New src/api/links/bannedCountryLink.ts — Apollo link chokepoint; intercepts
  every DeviceLocationUpdate mutation and refuses to forward if reverse-geocode
  resolves to a banned country. Catches Settings, Discover, Likes scanner, and
  ApiExplorer raw GraphQL alike.
- useLocation.tsx — setLocation throws BannedCountryError; saveLocation gate;
  sanitize banned entries on localStorage and server hydration
- Settings.tsx — block at search, saved-location pick, and save-current
- Likes.tsx — skip banned saved locations in scanForLikes and "Fuck It" scan
- server/index.js — PUT /api/saved-locations filters; readSavedLocations
  filters legacy banned entries so rotation cron is safe too
- nginx.conf — route additions for new backend endpoints

Plus the broader rc/realign-graphql-ops session work: GraphQL query/mutation
realignment after Feeld API changes, ApiExplorer updates, Profile/Discover/Likes
refinements, useFavorites hook, dataSync extensions, vite proxy adjustments.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
2026-06-01 18:30:37 -05:00

61 lines
2.3 KiB
TypeScript
Raw Blame History

import { ApolloLink, Observable } from '@apollo/client/core';
import { isCountryBanned, findBannedCountry } from '../../config/bannedCountries';
import { reverseGeocode } from '../../utils/reverseGeocode';
// Chokepoint: intercept every DeviceLocationUpdate mutation, reverse-geocode the
// input coords, and refuse to forward if the country is on Feeld's restricted list.
// This catches paths that bypass the React-level gates (ApiExplorer raw GraphQL,
// scanner loops, anything that calls the mutation directly).
export const bannedCountryLink = new ApolloLink((operation, forward) => {
if (operation.operationName !== 'DeviceLocationUpdate') {
return forward(operation);
}
const input = (operation.variables as any)?.input ?? {};
const lat = Number(input.latitude);
const lng = Number(input.longitude);
if (!Number.isFinite(lat) || !Number.isFinite(lng)) {
return forward(operation);
}
return new Observable((observer) => {
let cancelled = false;
let subscription: { unsubscribe: () => void } | null = null;
reverseGeocode(lat, lng)
.then((result) => {
if (cancelled) return;
if (result.resolved && isCountryBanned(result.country, result.countryCode)) {
const hit = findBannedCountry(result.country, result.countryCode);
const name = hit?.name ?? result.country ?? result.countryCode ?? 'this country';
const msg = `[bannedCountryLink] Refusing DeviceLocationUpdate — Feeld is not available in ${name} (${lat.toFixed(3)}, ${lng.toFixed(3)})`;
console.warn(msg);
observer.error(new Error(`Feeld is not available in ${name}. Pick a different location.`));
return;
}
if (!result.resolved) {
console.warn(
`[bannedCountryLink] Could not resolve country for (${lat.toFixed(3)}, ${lng.toFixed(3)}); forwarding mutation.`
);
}
subscription = forward(operation).subscribe(observer);
})
.catch((err) => {
// Reverse-geocode crashed unexpectedly — fail open (forward) to avoid breaking legitimate ops.
if (cancelled) return;
console.warn('[bannedCountryLink] Reverse-geocode error, forwarding anyway:', err);
subscription = forward(operation).subscribe(observer);
});
return () => {
cancelled = true;
subscription?.unsubscribe();
};
});
});
Reference in New Issue View Git Blame Copy Permalink