2021-06-26 16:21:40 +02:00
|
|
|
package user
|
|
|
|
|
|
|
|
import (
|
2021-07-05 13:23:03 +02:00
|
|
|
"context"
|
2021-06-26 16:21:40 +02:00
|
|
|
"net/http"
|
|
|
|
|
|
|
|
"github.com/gin-gonic/gin"
|
|
|
|
"github.com/sirupsen/logrus"
|
2021-07-05 13:23:03 +02:00
|
|
|
"github.com/superseriousbusiness/gotosocial/internal/util"
|
2021-06-26 16:21:40 +02:00
|
|
|
)
|
|
|
|
|
|
|
|
// PublicKeyGETHandler should be served at eg https://example.org/users/:username/main-key.
|
|
|
|
//
|
|
|
|
// The goal here is to return a MINIMAL activitypub representation of an account
|
|
|
|
// in the form of a vocab.ActivityStreamsPerson. The account will only contain the id,
|
|
|
|
// public key, username, and type of the account.
|
|
|
|
func (m *Module) PublicKeyGETHandler(c *gin.Context) {
|
|
|
|
l := m.log.WithFields(logrus.Fields{
|
|
|
|
"func": "PublicKeyGETHandler",
|
|
|
|
"url": c.Request.RequestURI,
|
|
|
|
})
|
|
|
|
|
|
|
|
requestedUsername := c.Param(UsernameKey)
|
|
|
|
if requestedUsername == "" {
|
|
|
|
c.JSON(http.StatusBadRequest, gin.H{"error": "no username specified in request"})
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
// make sure this actually an AP request
|
|
|
|
format := c.NegotiateFormat(ActivityPubAcceptHeaders...)
|
|
|
|
if format == "" {
|
|
|
|
c.JSON(http.StatusNotAcceptable, gin.H{"error": "could not negotiate format with given Accept header(s)"})
|
|
|
|
return
|
|
|
|
}
|
|
|
|
l.Tracef("negotiated format: %s", format)
|
|
|
|
|
2021-07-05 13:23:03 +02:00
|
|
|
// transfer the signature verifier from the gin context to the request context
|
|
|
|
ctx := c.Request.Context()
|
|
|
|
verifier, signed := c.Get(string(util.APRequestingPublicKeyVerifier))
|
|
|
|
if signed {
|
|
|
|
ctx = context.WithValue(ctx, util.APRequestingPublicKeyVerifier, verifier)
|
|
|
|
}
|
|
|
|
|
|
|
|
user, err := m.processor.GetFediUser(ctx, requestedUsername, c.Request.URL) // GetFediUser handles auth as well
|
2021-06-26 16:21:40 +02:00
|
|
|
if err != nil {
|
|
|
|
l.Info(err.Error())
|
|
|
|
c.JSON(err.Code(), gin.H{"error": err.Safe()})
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
c.JSON(http.StatusOK, user)
|
|
|
|
}
|