mirrors/barkey
1
0
Fork 0
mirror of https://codeberg.org/yeentown/barkey.git synced 2025-11-04 07:24:13 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Make inbox signature verification compatible with Mastodon

Browse source
This commit is contained in:
Akihiko Odaki 2018-04-02 00:36:36 +09:00
parent a3cef6e9b5
commit 111e5d569c
1 changed files with 20 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

24
src/server/activitypub/inbox.ts
View file

@ -11,16 +11,32 @@ app.use(bodyParser.json());
app.post('/@:user/inbox', async (req, res) => { app.post('/@:user/inbox', async (req, res) => {
let parsed; let parsed;
req.headers.authorization = 'Signature ' + req.headers.signature;
try { try {
parsed = parseRequest(req); parsed = parseRequest(req);
} catch (exception) { } catch (exception) {
return res.sendStatus(401); return res.sendStatus(401);
} }
const user = await User.findOne({ const keyIdLower = parsed.keyId.toLowerCase();
host: { $ne: null }, let query;
'account.publicKey.id': parsed.keyId
}); if (keyIdLower.startsWith('acct:')) {
const { username, host } = parseAcct(keyIdLower.slice('acct:'.length));
if (host === null) {
return res.sendStatus(401);
}
query = { usernameLower: username, hostLower: host };
} else {
query = {
host: { $ne: null },
'account.publicKey.id': parsed.keyId
};
}
const user = await User.findOne(query);
if (user === null) { if (user === null) {
return res.sendStatus(401); return res.sendStatus(401);