mirror
/
bridgy-fed
kopia lustrzana https://github.com/snarfed/bridgy-fed
1
0
Forkuj 0
Kod Zgłoszenia Packages Projekty Wydania Wiki Aktywność

update AP signature generation for Mastodon 3.2.1 changes 

not working yet. :( details in https://github.com/snarfed/bridgy-fed/issues/68#issuecomment-714752553
thib
Ryan Barrett 2020-10-29 15:39:44 -07:00
rodzic 76e7d2263f
commit d22903c3a7
Nie znaleziono w bazie danych klucza dla tego podpisu
ID klucza GPG: 6BE31FDF4776E9D4
2 zmienionych plików z 10 dodań i 4 usunięć
Pokaż statystyki Ściągnij plik aktualizacji Ściągnij plik porównania Expand all files Collapse all files

11
activitypub.py
Wyświetl plik

@ -1,6 +1,8 @@
"""Handles requests for ActivityPub endpoints: actors, inbox, etc.
"""
from base64 import b64encode
import datetime
from hashlib import sha256
import logging
from google.cloud import ndb
@ -48,13 +50,14 @@ def send(activity, inbox_url, user_domain):
json_dumps(activity, indent=2))
# prepare HTTP Signature (required by Mastodon)
# https://w3c.github.io/activitypub/#authorization-lds
# https://w3c.github.io/activitypub/#authorization
# https://tools.ietf.org/html/draft-cavage-http-signatures-07
# https://github.com/tootsuite/mastodon/issues/4906#issuecomment-328844846
acct = 'acct:%s@%s' % (user_domain, user_domain)
key = MagicKey.get_or_create(user_domain)
auth = HTTPSignatureAuth(secret=key.private_pem(), key_id=acct,
algorithm='rsa-sha256')
algorithm='rsa-sha256', sign_header='signature',
headers=('Date', 'Digest', 'Host'))
# deliver to inbox
headers = {
@ -62,6 +65,10 @@ def send(activity, inbox_url, user_domain):
# required for HTTP Signature
# https://tools.ietf.org/html/draft-cavage-http-signatures-07#section-2.1.3
'Date': datetime.datetime.utcnow().strftime('%a, %d %b %Y %H:%M:%S GMT'),
# required by Mastodon
# https://github.com/tootsuite/mastodon/pull/14556#issuecomment-674077648
'Digest': 'SHA256=' + b64encode(sha256(json_dumps(activity).encode()).digest()).decode(),
'Host': util.domain_from_link(inbox_url),
}
return common.requests_post(inbox_url, json=activity, auth=auth, headers=headers)

3
requirements.txt
Wyświetl plik

@ -1,5 +1,5 @@
git+https://github.com/snarfed/django-salmon.git#egg=django_salmon
git+https://github.com/snarfed/httpsig.git@signature_header#egg=httpsig
git+https://github.com/snarfed/httpsig.git@HTTPSignatureAuth-sign-header#egg=httpsig
git+https://github.com/snarfed/webmention-tools.git@python3#egg=webmentiontools
git+https://github.com/snarfed/oauth-dropins.git@master#egg=oauth_dropins
git+https://github.com/snarfed/granary.git@master#egg=granary
@ -8,5 +8,4 @@ google-cloud-logging~=1.14
gunicorn~=20.0
mf2util~=0.5.0
mox3~=0.28
pycrypto~=2.6
requests~=2.22