lemmy/crates/apub/src/http/routes.rs

use crate::http::{
  comment::get_apub_comment,
  community::{
    community_inbox,
    get_apub_community_followers,
    get_apub_community_http,
    get_apub_community_moderators,
    get_apub_community_outbox,
  },
  get_activity,
  person::{get_apub_person_http, get_apub_person_outbox, person_inbox},
  post::get_apub_post,
  shared_inbox,
};
use actix_web::{
  guard::{Guard, GuardContext},
  http::{header, Method},
  web,
};
use http_signature_normalization_actix::digest::middleware::VerifyDigest;
use lemmy_utils::settings::structs::Settings;
use sha2::{Digest, Sha256};

pub fn config(cfg: &mut web::ServiceConfig, settings: &Settings) {
  if settings.federation.enabled {
    println!("federation enabled, host is {}", settings.hostname);

    cfg
      .route(
        "/c/{community_name}",
        web::get().to(get_apub_community_http),
      )
      .route(
        "/c/{community_name}/followers",
        web::get().to(get_apub_community_followers),
      )
      .route(
        "/c/{community_name}/outbox",
        web::get().to(get_apub_community_outbox),
      )
      .route(
        "/c/{community_name}/moderators",
        web::get().to(get_apub_community_moderators),
      )
      .route("/u/{user_name}", web::get().to(get_apub_person_http))
      .route(
        "/u/{user_name}/outbox",
        web::get().to(get_apub_person_outbox),
      )
      .route("/post/{post_id}", web::get().to(get_apub_post))
      .route("/comment/{comment_id}", web::get().to(get_apub_comment))
      .route("/activities/{type_}/{id}", web::get().to(get_activity));

    cfg.service(
      web::scope("")
        .wrap(VerifyDigest::new(Sha256::new()))
        .guard(InboxRequestGuard)
        .route("/c/{community_name}/inbox", web::post().to(community_inbox))
        .route("/u/{user_name}/inbox", web::post().to(person_inbox))
        .route("/inbox", web::post().to(shared_inbox)),
    );
  }
}

/// Without this, things like webfinger or RSS feeds stop working, as all requests seem to get
/// routed into the inbox service (because it covers the root path). So we filter out anything that
/// definitely can't be an inbox request (based on Accept header and request method).
struct InboxRequestGuard;

impl Guard for InboxRequestGuard {
  fn check(&self, ctx: &GuardContext) -> bool {
    if ctx.head().method != Method::POST {
      return false;
    }
    if let Some(val) = ctx.head().headers.get(header::CONTENT_TYPE) {
      return val.as_bytes().starts_with(b"application/");
    }
    false
  }
}
Move code to apub library (#1795) * Remove dependency of apub_lib on LemmyContext * Move ApubObject trait to library * Reorganize files in apub lib * Move ActorType, signatures, activity_queue to apub library 2021-10-06 20:20:05 +00:00			`use crate::http::{`
			`comment::get_apub_comment,`
			`community::{`
Prevent panic on InboxRequestGuard 2021-12-30 18:39:28 +00:00			`community_inbox,`
			`get_apub_community_followers,`
			`get_apub_community_http,`
			`get_apub_community_moderators,`
			`get_apub_community_outbox,`
Refactor apub code, split up large files 2020-10-12 14:10:09 +00:00			`},`
Move code to apub library (#1795) * Remove dependency of apub_lib on LemmyContext * Move ApubObject trait to library * Reorganize files in apub lib * Move ActorType, signatures, activity_queue to apub library 2021-10-06 20:20:05 +00:00			`get_activity,`
Rewrite collections to use new fetcher (#1861) * Merge traits ToApub and FromApub into ApubObject * Rewrite community outbox to use new fetcher * Rewrite community moderators collection * Rewrite tombstone 2021-10-27 16:03:07 +00:00			`person::{get_apub_person_http, get_apub_person_outbox, person_inbox},`
Move code to apub library (#1795) * Remove dependency of apub_lib on LemmyContext * Move ApubObject trait to library * Reorganize files in apub lib * Move ActorType, signatures, activity_queue to apub library 2021-10-06 20:20:05 +00:00			`post::get_apub_post,`
			`shared_inbox,`
Rework imports 2020-05-16 14:04:08 +00:00			`};`
Updated actix-web dependency to `4.0.0-beta.18` 2021-12-30 18:37:59 +00:00			`use actix_web::{`
			`guard::{Guard, GuardContext},`
Prevent panic on InboxRequestGuard 2021-12-30 18:39:28 +00:00			`http::{header, Method},`
Updated actix-web dependency to `4.0.0-beta.18` 2021-12-30 18:37:59 +00:00			`web,`
			`};`
Move routes into separate crate to speed up compilation 2021-02-09 18:26:06 +00:00			`use http_signature_normalization_actix::digest::middleware::VerifyDigest;`
Rewrite settings implementation. Fixes #1270 (#1433) * A first attempt at using deser-hjson. Fixes #1270 * Trying to fix tests, try 1 * Trying to fix tests, try 2 * A few fixes to deser_hjson - Removing unwrap_or_defaults, using impl functions. - Reorganized settings * Make clippy happy * hjson list strings must be quoted. * Adding support for env vars. * Moving to structs and defaults file. * Moving settings default and struct. 2021-03-01 17:24:11 +00:00			`use lemmy_utils::settings::structs::Settings;`
Wrap each inbox route individually (#954) 2020-07-13 13:55:55 +00:00			`use sha2::{Digest, Sha256};`
Use actix config to handle routes in seperate folders (#378) 2019-12-31 12:55:33 +00:00
Moving settings and secrets to context. 2021-09-22 15:57:09 +00:00			`pub fn config(cfg: &mut web::ServiceConfig, settings: &Settings) {`
			`if settings.federation.enabled {`
			`println!("federation enabled, host is {}", settings.hostname);`
Also return json for long accept header with profile link (ref #1216) 2020-10-21 13:48:43 +00:00
Merge branch 'master' into federation 2020-01-02 18:22:23 +00:00			`cfg`
Remove header guard for activitypub routes 2021-11-10 13:17:56 +00:00			`.route(`
			`"/c/{community_name}",`
			`web::get().to(get_apub_community_http),`
			`)`
			`.route(`
			`"/c/{community_name}/followers",`
			`web::get().to(get_apub_community_followers),`
			`)`
			`.route(`
			`"/c/{community_name}/outbox",`
			`web::get().to(get_apub_community_outbox),`
			`)`
			`.route(`
			`"/c/{community_name}/moderators",`
			`web::get().to(get_apub_community_moderators),`
			`)`
			`.route("/u/{user_name}", web::get().to(get_apub_person_http))`
			`.route(`
			`"/u/{user_name}/outbox",`
			`web::get().to(get_apub_person_outbox),`
Implemented follow/accept 2020-04-14 15:37:23 +00:00			`)`
Remove header guard for activitypub routes 2021-11-10 13:17:56 +00:00			`.route("/post/{post_id}", web::get().to(get_apub_post))`
			`.route("/comment/{comment_id}", web::get().to(get_apub_comment))`
			`.route("/activities/{type_}/{id}", web::get().to(get_activity));`

			`cfg.service(`
			`web::scope("")`
			`.wrap(VerifyDigest::new(Sha256::new()))`
			`.guard(InboxRequestGuard)`
			`.route("/c/{community_name}/inbox", web::post().to(community_inbox))`
			`.route("/u/{user_name}/inbox", web::post().to(person_inbox))`
			`.route("/inbox", web::post().to(shared_inbox)),`
			`);`
			`}`
			`}`

			`/// Without this, things like webfinger or RSS feeds stop working, as all requests seem to get`
			`/// routed into the inbox service (because it covers the root path). So we filter out anything that`
			`/// definitely can't be an inbox request (based on Accept header and request method).`
			`struct InboxRequestGuard;`

			`impl Guard for InboxRequestGuard {`
Prevent panic on InboxRequestGuard 2021-12-30 18:39:28 +00:00			`fn check(&self, ctx: &GuardContext) -> bool {`
			`if ctx.head().method != Method::POST {`
Remove header guard for activitypub routes 2021-11-10 13:17:56 +00:00			`return false;`
			`}`
Prevent panic on InboxRequestGuard 2021-12-30 18:39:28 +00:00			`if let Some(val) = ctx.head().headers.get(header::CONTENT_TYPE) {`
			`return val.as_bytes().starts_with(b"application/");`
Remove header guard for activitypub routes 2021-11-10 13:17:56 +00:00			`}`
			`false`
Merge branch 'master' into federation 2020-01-02 18:22:23 +00:00			`}`
Use actix config to handle routes in seperate folders (#378) 2019-12-31 12:55:33 +00:00			`}`