Fix serving of system actor

Fixes #183
This commit is contained in:
Andrew Godwin 2022-12-17 12:00:47 -07:00
parent d7ffb47fb2
commit 62f2b867b9
5 changed files with 41 additions and 6 deletions

View file

@ -84,7 +84,7 @@ class HttpSignature:
headers = {}
for header_name in header_names:
if header_name == "(request-target)":
value = f"post {request.path}"
value = f"{request.method.lower()} {request.path}"
elif header_name == "content-type":
value = request.META["CONTENT_TYPE"]
else:

View file

@ -0,0 +1,33 @@
import pytest
from asgiref.sync import async_to_sync
from django.test.client import RequestFactory
from pytest_httpx import HTTPXMock
from core.signatures import HttpSignature
from users.models import SystemActor
@pytest.mark.django_db
def test_system_actor_signed(config_system, httpx_mock: HTTPXMock):
"""
Tests that the system actor signs requests properly
"""
system_actor = SystemActor()
system_actor.generate_keys()
# Send a fake outbound request
httpx_mock.add_response()
async_to_sync(system_actor.signed_request)(
method="get",
uri="http://example.com/test-actor",
)
# Retrieve it and construct a fake request object
outbound_request = httpx_mock.get_request()
fake_request = RequestFactory().get(
path="/test-actor",
HTTP_HOST="example.com",
HTTP_DATE=outbound_request.headers["date"],
HTTP_SIGNATURE=outbound_request.headers["signature"],
HTTP_ACCEPT=outbound_request.headers["accept"],
)
# Verify that
HttpSignature.verify_request(fake_request, system_actor.public_key)

View file

@ -398,10 +398,10 @@ class Identity(StatorModel):
"""
domain = handle.split("@")[1].lower()
try:
response = await SystemActor().signed_request(
method="get",
uri=f"https://{domain}/.well-known/webfinger?resource=acct:{handle}",
)
async with httpx.AsyncClient() as client:
response = await client.get(
f"https://{domain}/.well-known/webfinger?resource=acct:{handle}",
)
except (httpx.RequestError, httpx.ConnectError):
return None, None
if response.status_code in [404, 410]:

View file

@ -49,6 +49,7 @@ class SystemActor:
"preferredUsername": self.username,
"url": self.profile_uri,
"manuallyApprovesFollowers": True,
"toot:discoverable": False,
"publicKey": {
"id": self.public_key_id,
"owner": self.actor_uri,

View file

@ -219,5 +219,6 @@ class SystemActorView(View):
canonicalise(
SystemActor().to_ap(),
include_security=True,
)
),
content_type="application/activity+json",
)