moviewyrm/fedireads/broadcast.py

104 lines
3.4 KiB
Python
Raw Normal View History

2020-02-11 23:17:21 +00:00
''' send out activitypub messages '''
2020-04-22 13:53:22 +00:00
import json
from urllib.parse import urlparse
2020-01-28 19:45:27 +00:00
from base64 import b64encode
from Crypto.PublicKey import RSA
from Crypto.Signature import pkcs1_15
from Crypto.Hash import SHA256
from django.utils.http import http_date
2020-01-28 19:45:27 +00:00
import requests
2020-03-29 02:12:17 +00:00
from fedireads import models
2020-04-01 01:03:58 +00:00
from fedireads.tasks import app
2020-03-29 02:12:17 +00:00
2020-01-28 19:45:27 +00:00
2020-04-21 00:43:42 +00:00
def get_public_recipients(user, software=None):
''' everybody and their public inboxes '''
followers = user.followers.filter(local=False)
if software:
# TODO: eventually we may want to handle particular software differently
followers = followers.filter(fedireads_user=(software == 'fedireads'))
2020-03-29 07:05:09 +00:00
2020-05-09 21:26:27 +00:00
# we want shared inboxes when available
2020-04-21 00:43:42 +00:00
shared = followers.filter(
shared_inbox__isnull=False
).values_list('shared_inbox', flat=True).distinct()
2020-03-29 02:12:17 +00:00
2020-05-09 21:26:27 +00:00
# if a user doesn't have a shared inbox, we need their personal inbox
# iirc pixelfed doesn't have shared inboxes
2020-04-21 00:43:42 +00:00
inboxes = followers.filter(
shared_inbox__isnull=True
).values_list('inbox', flat=True)
2020-01-28 19:45:27 +00:00
2020-04-21 00:43:42 +00:00
return list(shared) + list(inboxes)
2020-04-01 00:07:35 +00:00
2020-04-21 00:43:42 +00:00
def broadcast(sender, activity, software=None, \
privacy='public', direct_recipients=None):
2020-01-28 19:45:27 +00:00
''' send out an event '''
2020-05-09 21:26:27 +00:00
# start with parsing the direct recipients
2020-04-21 00:43:42 +00:00
recipients = [u.inbox for u in direct_recipients or []]
2020-05-09 21:26:27 +00:00
# and then add any other recipients
2020-04-21 00:43:42 +00:00
# TODO: other kinds of privacy
if privacy == 'public':
2020-05-04 21:15:16 +00:00
recipients += get_public_recipients(sender, software=software)
2020-04-01 17:16:20 +00:00
broadcast_task.delay(sender.id, activity, recipients)
@app.task
def broadcast_task(sender_id, activity, recipients):
''' the celery task for broadcast '''
sender = models.User.objects.get(id=sender_id)
2020-01-29 23:55:48 +00:00
errors = []
2020-01-28 19:45:27 +00:00
for recipient in recipients:
2020-01-29 23:55:48 +00:00
try:
2020-02-15 21:01:42 +00:00
sign_and_send(sender, activity, recipient)
2020-01-29 23:55:48 +00:00
except requests.exceptions.HTTPError as e:
2020-02-07 23:11:53 +00:00
# TODO: maybe keep track of users who cause errors
2020-01-29 23:55:48 +00:00
errors.append({
'error': e,
'recipient': recipient,
2020-02-07 23:11:53 +00:00
'activity': activity,
2020-01-29 23:55:48 +00:00
})
return errors
2020-01-28 19:45:27 +00:00
def make_signature(sender, destination, date):
inbox_parts = urlparse(destination)
2020-01-30 04:56:18 +00:00
signature_headers = [
'(request-target): post %s' % inbox_parts.path,
'host: %s' % inbox_parts.netloc,
'date: %s' % date,
2020-01-30 04:56:18 +00:00
]
message_to_sign = '\n'.join(signature_headers)
2020-01-28 19:45:27 +00:00
signer = pkcs1_15.new(RSA.import_key(sender.private_key))
signed_message = signer.sign(SHA256.new(message_to_sign.encode('utf8')))
2020-01-29 23:55:48 +00:00
signature = {
'keyId': '%s#main-key' % sender.actor,
'algorithm': 'rsa-sha256',
'headers': '(request-target) host date',
2020-01-30 04:56:18 +00:00
'signature': b64encode(signed_message).decode('utf8'),
2020-01-29 23:55:48 +00:00
}
return ','.join('%s="%s"' % (k, v) for (k, v) in signature.items())
def sign_and_send(sender, activity, destination):
''' crpyto whatever and http junk '''
now = http_date()
if not sender.private_key:
# this shouldn't happen. it would be bad if it happened.
raise ValueError('No private key found for sender')
2020-01-29 23:55:48 +00:00
2020-01-28 19:45:27 +00:00
response = requests.post(
destination,
2020-02-07 23:11:53 +00:00
data=json.dumps(activity),
2020-01-28 19:45:27 +00:00
headers={
'Date': now,
'Signature': make_signature(sender, destination, now),
2020-02-07 21:39:48 +00:00
'Content-Type': 'application/activity+json; charset=utf-8',
2020-01-28 19:45:27 +00:00
},
)
if not response.ok:
response.raise_for_status()
return response