Update http signature

author: Chocobozzz <me@florianbigard.com> 2020-01-07 15:24:27 +0100
committer: Chocobozzz <me@florianbigard.com> 2020-01-07 15:56:09 +0100
commit: e92269053e3fd0e9b9c155ded86a1668444f3d70 (patch)
tree: fc6c48416a028fa4f471fbe91f5b982122e303bf /server
parent: 7cde3b9c2e84ea20bb0aae4544598483cde9e22c (diff)
download: PeerTube-e92269053e3fd0e9b9c155ded86a1668444f3d70.tar.gz
PeerTube-e92269053e3fd0e9b9c155ded86a1668444f3d70.tar.zst
PeerTube-e92269053e3fd0e9b9c155ded86a1668444f3d70.zip
4 files changed, 17 insertions, 6 deletions
diff --git a/server/helpers/custom-jsonld-signature.ts b/server/helpers/custom-jsonld-signature.ts
index cb07fa3b2..a407a9fec 100644
--- a/server/helpers/custom-jsonld-signature.ts
+++ b/server/helpers/custom-jsonld-signature.ts
@@ -70,12 +70,20 @@ const lru = new AsyncLRU({
      })
    }
-    nodeDocumentLoader(url, cb)
+    nodeDocumentLoader(url)
+      .then(value => cb(null, value))
+      .catch(err => cb(err))
  }
 })
-jsonld.documentLoader = (url, cb) => {
+jsonld.documentLoader = (url) => {
-  lru.get(url, cb)
+  return new Promise((res, rej) => {
+    lru.get(url, (err, value) => {
+      if (err) return rej(err)
+      return res(value)
+    })
+  })
 }
 export { jsonld }
diff --git a/server/helpers/peertube-crypto.ts b/server/helpers/peertube-crypto.ts
index 9eb782302..89c0ab151 100644
--- a/server/helpers/peertube-crypto.ts
+++ b/server/helpers/peertube-crypto.ts
@@ -51,7 +51,7 @@ function isHTTPSignatureVerified (httpSignatureParsed: any, actor: MActor): bool
 }
 function parseHTTPSignature (req: Request, clockSkew?: number) {
-  return httpSignature.parse(req, { authorizationHeaderName: HTTP_SIGNATURE.HEADER_NAME, clockSkew })
+  return httpSignature.parse(req, { clockSkew })
 }
 // JSONLD
diff --git a/server/lib/job-queue/handlers/activitypub-http-unicast.ts b/server/lib/job-queue/handlers/activitypub-http-unicast.ts
index c70ce3be9..6fbd4a716 100644
--- a/server/lib/job-queue/handlers/activitypub-http-unicast.ts
+++ b/server/lib/job-queue/handlers/activitypub-http-unicast.ts
@@ -20,6 +20,8 @@ async function processActivityPubHttpUnicast (job: Bull.Job) {
  const body = await computeBody(payload)
  const httpSignatureOptions = await buildSignedRequestOptions(payload)
+  logger.info('hello', { httpSignatureOptions })
  const options = {
    method: 'POST',
    uri,
diff --git a/server/middlewares/activitypub.ts b/server/middlewares/activitypub.ts
index fedac0e05..bd3bdb076 100644
--- a/server/middlewares/activitypub.ts
+++ b/server/middlewares/activitypub.ts
@@ -51,10 +51,11 @@ export {
 // ---------------------------------------------------------------------------
 async function checkHttpSignature (req: Request, res: Response) {
-  // FIXME: mastodon does not include the Signature scheme
+  // FIXME: compatibility with http-signature < v1.3
  const sig = req.headers[HTTP_SIGNATURE.HEADER_NAME] as string
-  if (sig && sig.startsWith('Signature ') === false) req.headers[HTTP_SIGNATURE.HEADER_NAME] = 'Signature ' + sig
+  if (sig && sig.startsWith('Signature ') === true) req.headers[HTTP_SIGNATURE.HEADER_NAME] = sig.replace(/^Signature /, '')
+  logger.info('coucou', { signature: req.headers[HTTP_SIGNATURE.HEADER_NAME] })
  const parsed = parseHTTPSignature(req, HTTP_SIGNATURE.CLOCK_SKEW_SECONDS)
  const keyId = parsed.keyId
author	Chocobozzz <me@florianbigard.com>	2020-01-07 15:24:27 +0100
committer	Chocobozzz <me@florianbigard.com>	2020-01-07 15:56:09 +0100
commit	e92269053e3fd0e9b9c155ded86a1668444f3d70 (patch)
tree	fc6c48416a028fa4f471fbe91f5b982122e303bf /server
parent	7cde3b9c2e84ea20bb0aae4544598483cde9e22c (diff)
download	PeerTube-e92269053e3fd0e9b9c155ded86a1668444f3d70.tar.gz PeerTube-e92269053e3fd0e9b9c155ded86a1668444f3d70.tar.zst PeerTube-e92269053e3fd0e9b9c155ded86a1668444f3d70.zip