server/lib/job-queue/handlers/utils/activitypub-http-utils.ts

   1 import { buildSignedActivity } from '../../../../helpers/activitypub'
   2 import { getServerActor } from '../../../../helpers/utils'
   3 import { ActorModel } from '../../../../models/activitypub/actor'
   4 import { sha256 } from '../../../../helpers/core-utils'
   5
   6 type Payload = { body: any, signatureActorId?: number }
   7
   8 async function computeBody (payload: Payload) {
   9   let body = payload.body
  10
  11   if (payload.signatureActorId) {
  12     const actorSignature = await ActorModel.load(payload.signatureActorId)
  13     if (!actorSignature) throw new Error('Unknown signature actor id.')
  14     body = await buildSignedActivity(actorSignature, payload.body)
  15   }
  16
  17   return body
  18 }
  19
  20 async function buildSignedRequestOptions (payload: Payload) {
  21   let actor: ActorModel | null
  22   if (payload.signatureActorId) {
  23     actor = await ActorModel.load(payload.signatureActorId)
  24     if (!actor) throw new Error('Unknown signature actor id.')
  25   } else {
  26     // We need to sign the request, so use the server
  27     actor = await getServerActor()
  28   }
  29
  30   const keyId = actor.getWebfingerUrl()
  31   return {
  32     algorithm: 'rsa-sha256',
  33     authorizationHeaderName: 'Signature',
  34     keyId,
  35     key: actor.privateKey,
  36     headers: [ 'date', 'host', 'digest', '(request-target)' ]
  37   }
  38 }
  39
  40 function buildGlobalHeaders (body: object) {
  41   const digest = 'SHA-256=' + sha256(JSON.stringify(body), 'base64')
  42
  43   return {
  44     'Digest': digest
  45   }
  46 }
  47
  48 export {
  49   buildGlobalHeaders,
  50   computeBody,
  51   buildSignedRequestOptions
  52 }