knova/akkoma
1
0
Fork 0
forked from AkkomaGang/akkoma
Code Issues Pull requests Projects Releases Packages Wiki Activity

ActivityPub: Check inbox requests for valid signature.

Browse source
This commit is contained in:
Roger Braun 2017-12-12 10:17:50 +01:00
parent a9c23e1c32
commit 888ec9e579
2 changed files with 4 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
lib/pleroma/web/activity_pub/activity_pub_controller.ex
View file

@ -18,7 +18,8 @@ def object(conn, %{"uuid" => uuid}) do
end end
end end
def inbox(conn, params) do # TODO: Move signature failure halt into plug
def inbox(%{assigns: %{valid_signature: true}} = conn, params) do
{:ok, activity} = ActivityPub.insert(params, false) {:ok, activity} = ActivityPub.insert(params, false)
json(conn, "ok") json(conn, "ok")
end end

2
lib/pleroma/web/router.ex
View file

@ -219,9 +219,11 @@ def user_fetcher(username) do
pipeline :activitypub do pipeline :activitypub do
plug :accepts, ["activity+json"] plug :accepts, ["activity+json"]
plug Pleroma.Web.Plugs.HTTPSignaturePlug
end end
scope "/", Pleroma.Web.ActivityPub do scope "/", Pleroma.Web.ActivityPub do
pipe_through :activitypub
post "/users/:nickname/inbox", ActivityPubController, :inbox post "/users/:nickname/inbox", ActivityPubController, :inbox
end end