akkoma/lib/pleroma/plugs/http_signature.ex

54 lines
1.4 KiB
Elixir
Raw Normal View History

# Pleroma: A lightweight social networking server
2018-12-31 08:41:47 -07:00
# Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
# SPDX-License-Identifier: AGPL-3.0-only
defmodule Pleroma.Web.Plugs.HTTPSignaturePlug do
alias Pleroma.Web.ActivityPub.Utils
import Plug.Conn
2018-02-22 06:57:35 -07:00
require Logger
def init(options) do
options
end
def call(%{assigns: %{valid_signature: true}} = conn, _opts) do
conn
end
def call(conn, _opts) do
2018-05-26 05:52:05 -06:00
user = Utils.get_ap_id(conn.params["actor"])
2018-02-22 06:57:35 -07:00
Logger.debug("Checking sig for #{user}")
2018-04-02 05:13:14 -06:00
[signature | _] = get_req_header(conn, "signature")
2018-03-11 07:37:23 -06:00
2018-04-02 05:13:14 -06:00
cond do
signature && String.contains?(signature, user) ->
# set (request-target) header to the appropriate value
# we also replace the digest header with the one we computed
2018-04-02 05:13:14 -06:00
conn =
conn
|> put_req_header(
"(request-target)",
String.downcase("#{conn.method}") <> " #{conn.request_path}"
)
conn =
if conn.assigns[:digest] do
conn
|> put_req_header("digest", conn.assigns[:digest])
else
conn
end
2018-04-02 05:13:14 -06:00
assign(conn, :valid_signature, HTTPSignatures.validate_conn(conn))
2018-04-02 05:13:14 -06:00
signature ->
Logger.debug("Signature not from actor")
assign(conn, :valid_signature, false)
true ->
Logger.debug("No signature header!")
conn
end
end
end