pleroma/lib/pleroma/web/activity_pub/activity_pub_controller.ex

defmodule Pleroma.Web.ActivityPub.ActivityPubController do
  use Pleroma.Web, :controller
  alias Pleroma.{User, Object}
  alias Pleroma.Web.ActivityPub.{ObjectView, UserView}
  alias Pleroma.Web.ActivityPub.ActivityPub
  alias Pleroma.Web.Federator

  require Logger

  action_fallback(:errors)

  def user(conn, %{"nickname" => nickname}) do
    with %User{} = user <- User.get_cached_by_nickname(nickname),
         {:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do
      conn
      |> put_resp_header("content-type", "application/activity+json")
      |> json(UserView.render("user.json", %{user: user}))
    else
      nil -> {:error, :not_found}
    end
  end

  def object(conn, %{"uuid" => uuid}) do
    with ap_id <- o_status_url(conn, :object, uuid),
         %Object{} = object <- Object.get_cached_by_ap_id(ap_id),
         {_, true} <- {:public?, ActivityPub.is_public?(object)} do
      conn
      |> put_resp_header("content-type", "application/activity+json")
      |> json(ObjectView.render("object.json", %{object: object}))
    else
      {:public?, false} ->
        {:error, :not_found}
    end
  end

  def following(conn, %{"nickname" => nickname, "page" => page}) do
    with %User{} = user <- User.get_cached_by_nickname(nickname),
         {:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do
      {page, _} = Integer.parse(page)

      conn
      |> put_resp_header("content-type", "application/activity+json")
      |> json(UserView.render("following.json", %{user: user, page: page}))
    end
  end

  def following(conn, %{"nickname" => nickname}) do
    with %User{} = user <- User.get_cached_by_nickname(nickname),
         {:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do
      conn
      |> put_resp_header("content-type", "application/activity+json")
      |> json(UserView.render("following.json", %{user: user}))
    end
  end

  def followers(conn, %{"nickname" => nickname, "page" => page}) do
    with %User{} = user <- User.get_cached_by_nickname(nickname),
         {:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do
      {page, _} = Integer.parse(page)

      conn
      |> put_resp_header("content-type", "application/activity+json")
      |> json(UserView.render("followers.json", %{user: user, page: page}))
    end
  end

  def followers(conn, %{"nickname" => nickname}) do
    with %User{} = user <- User.get_cached_by_nickname(nickname),
         {:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do
      conn
      |> put_resp_header("content-type", "application/activity+json")
      |> json(UserView.render("followers.json", %{user: user}))
    end
  end

  def outbox(conn, %{"nickname" => nickname, "max_id" => max_id}) do
    with %User{} = user <- User.get_cached_by_nickname(nickname),
         {:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do
      conn
      |> put_resp_header("content-type", "application/activity+json")
      |> json(UserView.render("outbox.json", %{user: user, max_id: max_id}))
    end
  end

  def outbox(conn, %{"nickname" => nickname}) do
    outbox(conn, %{"nickname" => nickname, "max_id" => nil})
  end

  # TODO: Ensure that this inbox is a recipient of the message
  def inbox(%{assigns: %{valid_signature: true}} = conn, params) do
    Federator.enqueue(:incoming_ap_doc, params)
    json(conn, "ok")
  end

  def inbox(conn, params) do
    headers = Enum.into(conn.req_headers, %{})

    if !String.contains?(headers["signature"] || "", params["actor"]) do
      Logger.info("Signature not from author, relayed message, fetching from source")
      ActivityPub.fetch_object_from_id(params["object"]["id"])
    else
      Logger.info("Signature error - make sure you are forwarding the HTTP Host header!")
      Logger.info("Could not validate #{params["actor"]}")
      Logger.info(inspect(conn.req_headers))
    end

    json(conn, "ok")
  end

  def relay(conn, params) do
    with %User{} = user <- User.get_or_create_instance_user(),
         {:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do
      conn
      |> put_resp_header("content-type", "application/activity+json")
      |> json(UserView.render("user.json", %{user: user}))
    else
      nil -> {:error, :not_found}
    end
  end

  def errors(conn, {:error, :not_found}) do
    conn
    |> put_status(404)
    |> json("Not found")
  end

  def errors(conn, _e) do
    conn
    |> put_status(500)
    |> json("error")
  end
end
Basic incoming AP support. 2017-12-11 10:37:22 +01:00			`defmodule Pleroma.Web.ActivityPub.ActivityPubController do`
			`use Pleroma.Web, :controller`
Clean up unused aliases and imports 2018-05-04 23:25:31 +02:00			`alias Pleroma.{User, Object}`
Fix unused variables, imports, and aliases 2018-05-04 23:42:20 +02:00			`alias Pleroma.Web.ActivityPub.{ObjectView, UserView}`
Basic incoming AP support. 2017-12-11 10:37:22 +01:00			`alias Pleroma.Web.ActivityPub.ActivityPub`
Move incoming AP to Federator. 2018-02-21 08:51:03 +01:00			`alias Pleroma.Web.Federator`
Basic incoming AP support. 2017-12-11 10:37:22 +01:00
Drop unhandle activities. 2018-02-18 12:51:35 +01:00			`require Logger`

Format the code. 2018-03-30 15:01:53 +02:00			`action_fallback(:errors)`
ActivityPubController: Handle inbox data. 2018-02-15 20:00:43 +01:00
Basic incoming AP support. 2017-12-11 10:37:22 +01:00			`def user(conn, %{"nickname" => nickname}) do`
ActivityPub: Add object routes / controller. 2017-12-11 18:21:33 +01:00			`with %User{} = user <- User.get_cached_by_nickname(nickname),`
			`{:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do`
Fix remote following. 2018-02-24 12:49:56 +01:00			`conn`
			`\|> put_resp_header("content-type", "application/activity+json")`
			`\|> json(UserView.render("user.json", %{user: user}))`
Fix users lookup/return type * Allow viewing user in frontend by id on pageload 2018-06-08 06:23:30 +02:00			`else`
			`nil -> {:error, :not_found}`
Basic incoming AP support. 2017-12-11 10:37:22 +01:00			`end`
			`end`

ActivityPub: Add object routes / controller. 2017-12-11 18:21:33 +01:00			`def object(conn, %{"uuid" => uuid}) do`
			`with ap_id <- o_status_url(conn, :object, uuid),`
Fix url guessing attacks. 2018-05-30 20:00:27 +02:00			`%Object{} = object <- Object.get_cached_by_ap_id(ap_id),`
			`{_, true} <- {:public?, ActivityPub.is_public?(object)} do`
Fix remote following. 2018-02-24 12:49:56 +01:00			`conn`
			`\|> put_resp_header("content-type", "application/activity+json")`
			`\|> json(ObjectView.render("object.json", %{object: object}))`
Fix url guessing attacks. 2018-05-30 20:00:27 +02:00			`else`
			`{:public?, false} ->`
Better error handling for ActivityPubController 2018-06-03 19:58:59 +02:00			`{:error, :not_found}`
ActivityPub: Add object routes / controller. 2017-12-11 18:21:33 +01:00			`end`
			`end`

activitypub: implement following/followers endpoints 2018-03-21 18:23:27 +01:00			`def following(conn, %{"nickname" => nickname, "page" => page}) do`
			`with %User{} = user <- User.get_cached_by_nickname(nickname),`
			`{:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do`
			`{page, _} = Integer.parse(page)`
Format the code. 2018-03-30 15:01:53 +02:00
activitypub: implement following/followers endpoints 2018-03-21 18:23:27 +01:00			`conn`
			`\|> put_resp_header("content-type", "application/activity+json")`
			`\|> json(UserView.render("following.json", %{user: user, page: page}))`
			`end`
			`end`

			`def following(conn, %{"nickname" => nickname}) do`
			`with %User{} = user <- User.get_cached_by_nickname(nickname),`
			`{:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do`
			`conn`
			`\|> put_resp_header("content-type", "application/activity+json")`
			`\|> json(UserView.render("following.json", %{user: user}))`
			`end`
			`end`

			`def followers(conn, %{"nickname" => nickname, "page" => page}) do`
			`with %User{} = user <- User.get_cached_by_nickname(nickname),`
			`{:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do`
			`{page, _} = Integer.parse(page)`
Format the code. 2018-03-30 15:01:53 +02:00
activitypub: implement following/followers endpoints 2018-03-21 18:23:27 +01:00			`conn`
			`\|> put_resp_header("content-type", "application/activity+json")`
			`\|> json(UserView.render("followers.json", %{user: user, page: page}))`
			`end`
			`end`

			`def followers(conn, %{"nickname" => nickname}) do`
			`with %User{} = user <- User.get_cached_by_nickname(nickname),`
			`{:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do`
			`conn`
			`\|> put_resp_header("content-type", "application/activity+json")`
			`\|> json(UserView.render("followers.json", %{user: user}))`
			`end`
			`end`

activitypub: add outbox endpoint 2018-03-22 06:23:05 +01:00			`def outbox(conn, %{"nickname" => nickname, "max_id" => max_id}) do`
			`with %User{} = user <- User.get_cached_by_nickname(nickname),`
			`{:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do`
			`conn`
			`\|> put_resp_header("content-type", "application/activity+json")`
			`\|> json(UserView.render("outbox.json", %{user: user, max_id: max_id}))`
			`end`
			`end`

Format the code. 2018-03-30 15:01:53 +02:00			`def outbox(conn, %{"nickname" => nickname}) do`
			`outbox(conn, %{"nickname" => nickname, "max_id" => nil})`
			`end`
activitypub: add outbox endpoint 2018-03-22 06:23:05 +01:00
ActivityPubController: Handle inbox data. 2018-02-15 20:00:43 +01:00			`# TODO: Ensure that this inbox is a recipient of the message`
ActivityPub: Check inbox requests for valid signature. 2017-12-12 10:17:50 +01:00			`def inbox(%{assigns: %{valid_signature: true}} = conn, params) do`
Typo. 2018-02-21 08:54:48 +01:00			`Federator.enqueue(:incoming_ap_doc, params)`
Move incoming AP to Federator. 2018-02-21 08:51:03 +01:00			`json(conn, "ok")`
Basic incoming AP support. 2017-12-11 10:37:22 +01:00			`end`
ActivityPubController: Handle inbox data. 2018-02-15 20:00:43 +01:00
Log but ignore signature errors. 2018-02-18 22:40:08 +01:00			`def inbox(conn, params) do`
Fix. 2018-02-24 18:49:09 +01:00			`headers = Enum.into(conn.req_headers, %{})`
Format the code. 2018-03-30 15:01:53 +02:00
			`if !String.contains?(headers["signature"] \|\| "", params["actor"]) do`
Fetch relayed messages from source while we don't have linked data sigs. 2018-03-21 07:12:14 +01:00			`Logger.info("Signature not from author, relayed message, fetching from source")`
			`ActivityPub.fetch_object_from_id(params["object"]["id"])`
Better signature errors messages. 2018-02-24 18:47:08 +01:00			`else`
activitypub controller: note that the HTTP Host header must be forwarded for http signature validation to work 2018-05-21 21:19:40 +02:00			`Logger.info("Signature error - make sure you are forwarding the HTTP Host header!")`
Better signature errors messages. 2018-02-24 18:47:08 +01:00			`Logger.info("Could not validate #{params["actor"]}")`
			`Logger.info(inspect(conn.req_headers))`
			`end`

Log but ignore signature errors. 2018-02-18 22:40:08 +01:00			`json(conn, "ok")`
			`end`
Fix log. 2018-02-18 22:41:38 +01:00
activitypub: represent relay actor at instance root 2018-08-06 08:11:51 +02:00			`def relay(conn, params) do`
			`with %User{} = user <- User.get_or_create_instance_user(),`
			`{:ok, user} <- Pleroma.Web.WebFinger.ensure_keys_present(user) do`
			`conn`
			`\|> put_resp_header("content-type", "application/activity+json")`
			`\|> json(UserView.render("user.json", %{user: user}))`
			`else`
			`nil -> {:error, :not_found}`
			`end`
			`end`

Better error handling for ActivityPubController 2018-06-03 19:58:59 +02:00			`def errors(conn, {:error, :not_found}) do`
			`conn`
			`\|> put_status(404)`
			`\|> json("Not found")`
			`end`

ActivityPubController: Handle inbox data. 2018-02-15 20:00:43 +01:00			`def errors(conn, _e) do`
			`conn`
			`\|> put_status(500)`
			`\|> json("error")`
			`end`
Basic incoming AP support. 2017-12-11 10:37:22 +01:00			`end`