kopia lustrzana https://github.com/jointakahe/takahe
169 wiersze
5.5 KiB
Python
169 wiersze
5.5 KiB
Python
import string
|
|
|
|
from django import forms
|
|
from django.conf import settings
|
|
from django.contrib.auth.decorators import login_required
|
|
from django.http import Http404, JsonResponse
|
|
from django.shortcuts import redirect
|
|
from django.utils.decorators import method_decorator
|
|
from django.views.decorators.csrf import csrf_exempt
|
|
from django.views.generic import FormView, TemplateView, View
|
|
|
|
from core.forms import FormHelper
|
|
from users.models import Identity
|
|
from users.shortcuts import by_handle_or_404
|
|
|
|
|
|
class ViewIdentity(TemplateView):
|
|
|
|
template_name = "identity/view.html"
|
|
|
|
def get_context_data(self, handle):
|
|
identity = by_handle_or_404(self.request, handle, local=False)
|
|
statuses = identity.statuses.all()[:100]
|
|
return {
|
|
"identity": identity,
|
|
"statuses": statuses,
|
|
}
|
|
|
|
|
|
@method_decorator(login_required, name="dispatch")
|
|
class SelectIdentity(TemplateView):
|
|
|
|
template_name = "identity/select.html"
|
|
|
|
def get_context_data(self):
|
|
return {
|
|
"identities": Identity.objects.filter(users__pk=self.request.user.pk),
|
|
}
|
|
|
|
|
|
@method_decorator(login_required, name="dispatch")
|
|
class ActivateIdentity(View):
|
|
def get(self, request, handle):
|
|
identity = by_handle_or_404(request, handle)
|
|
if not identity.users.filter(pk=request.user.pk).exists():
|
|
raise Http404()
|
|
request.session["identity_id"] = identity.id
|
|
# Get next URL, not allowing offsite links
|
|
next = request.GET.get("next") or "/"
|
|
if ":" in next:
|
|
next = "/"
|
|
return redirect("/")
|
|
|
|
|
|
@method_decorator(login_required, name="dispatch")
|
|
class CreateIdentity(FormView):
|
|
|
|
template_name = "identity/create.html"
|
|
|
|
class form_class(forms.Form):
|
|
handle = forms.CharField()
|
|
name = forms.CharField()
|
|
|
|
helper = FormHelper(submit_text="Create")
|
|
|
|
def clean_handle(self):
|
|
# Remove any leading @
|
|
value = self.cleaned_data["handle"].lstrip("@")
|
|
# Validate it's all ascii characters
|
|
for character in value:
|
|
if character not in string.ascii_letters + string.digits + "_-":
|
|
raise forms.ValidationError(
|
|
"Only the letters a-z, numbers 0-9, dashes and underscores are allowed."
|
|
)
|
|
# Don't allow custom domains here quite yet
|
|
if "@" in value:
|
|
raise forms.ValidationError(
|
|
"You are not allowed an @ sign in your handle."
|
|
)
|
|
# Ensure there is a domain on the end
|
|
if "@" not in value:
|
|
value += "@" + settings.DEFAULT_DOMAIN
|
|
# Check for existing users
|
|
if Identity.objects.filter(handle=value).exists():
|
|
raise forms.ValidationError("This handle is already taken")
|
|
return value
|
|
|
|
def form_valid(self, form):
|
|
new_identity = Identity.objects.create(
|
|
handle=form.cleaned_data["handle"],
|
|
name=form.cleaned_data["name"],
|
|
local=True,
|
|
)
|
|
new_identity.users.add(self.request.user)
|
|
new_identity.generate_keypair()
|
|
return redirect(new_identity.urls.view)
|
|
|
|
|
|
class Actor(View):
|
|
"""
|
|
Returns the AP Actor object
|
|
"""
|
|
|
|
def get(self, request, handle):
|
|
identity = by_handle_or_404(self.request, handle)
|
|
return JsonResponse(
|
|
{
|
|
"@context": [
|
|
"https://www.w3.org/ns/activitystreams",
|
|
"https://w3id.org/security/v1",
|
|
],
|
|
"id": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.actor}",
|
|
"type": "Person",
|
|
"preferredUsername": identity.short_handle,
|
|
"inbox": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.inbox}",
|
|
"publicKey": {
|
|
"id": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.actor}#main-key",
|
|
"owner": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.actor}",
|
|
"publicKeyPem": identity.public_key,
|
|
},
|
|
}
|
|
)
|
|
|
|
|
|
@method_decorator(csrf_exempt, name="dispatch")
|
|
class Inbox(View):
|
|
"""
|
|
AP Inbox endpoint
|
|
"""
|
|
|
|
def post(self, request, handle):
|
|
# Validate the signature
|
|
signature = request.META.get("HTTP_SIGNATURE")
|
|
print(signature)
|
|
print(request.body)
|
|
|
|
|
|
class Webfinger(View):
|
|
"""
|
|
Services webfinger requests
|
|
"""
|
|
|
|
def get(self, request):
|
|
resource = request.GET.get("resource")
|
|
if not resource.startswith("acct:"):
|
|
raise Http404("Not an account resource")
|
|
handle = resource[5:]
|
|
identity = by_handle_or_404(request, handle)
|
|
return JsonResponse(
|
|
{
|
|
"subject": f"acct:{identity.handle}",
|
|
"aliases": [
|
|
f"https://{settings.DEFAULT_DOMAIN}/@{identity.short_handle}",
|
|
],
|
|
"links": [
|
|
{
|
|
"rel": "http://webfinger.net/rel/profile-page",
|
|
"type": "text/html",
|
|
"href": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.view}",
|
|
},
|
|
{
|
|
"rel": "self",
|
|
"type": "application/activity+json",
|
|
"href": f"https://{settings.DEFAULT_DOMAIN}{identity.urls.actor}",
|
|
},
|
|
],
|
|
}
|
|
)
|