2022-12-31 22:48:51 +00:00
|
|
|
const WebHandlerModule = require('../../../web_handler_module');
|
2022-12-31 05:39:39 +00:00
|
|
|
const Config = require('../../../config').get;
|
2023-01-28 18:55:31 +00:00
|
|
|
const { Errors, ErrorReasons } = require('../../../enig_error');
|
2022-12-31 22:30:54 +00:00
|
|
|
const { WellKnownLocations } = require('../web');
|
2023-01-04 03:32:09 +00:00
|
|
|
const {
|
2023-01-05 03:29:18 +00:00
|
|
|
getUserProfileTemplatedBody,
|
|
|
|
DefaultProfileTemplate,
|
2023-01-13 01:49:13 +00:00
|
|
|
} = require('../../../activitypub/util');
|
2023-02-06 21:34:18 +00:00
|
|
|
const Endpoints = require('../../../activitypub/endpoint');
|
2023-01-28 18:55:31 +00:00
|
|
|
const EngiAssert = require('../../../enigma_assert');
|
|
|
|
const User = require('../../../user');
|
|
|
|
const UserProps = require('../../../user_property');
|
|
|
|
const ActivityPubSettings = require('../../../activitypub/settings');
|
2023-03-18 20:30:37 +00:00
|
|
|
const { getFullUrl, buildUrl, getWebDomain } = require('../../../web_util');
|
2022-12-31 05:39:39 +00:00
|
|
|
|
2023-01-28 18:55:31 +00:00
|
|
|
// deps
|
2022-12-31 05:39:39 +00:00
|
|
|
const _ = require('lodash');
|
2023-01-29 23:52:01 +00:00
|
|
|
const Actor = require('../../../activitypub/actor');
|
2022-12-31 05:39:39 +00:00
|
|
|
|
|
|
|
exports.moduleInfo = {
|
|
|
|
name: 'WebFinger',
|
2023-01-01 00:51:03 +00:00
|
|
|
desc: 'A simple WebFinger Handler.',
|
2022-12-31 22:39:54 +00:00
|
|
|
author: 'NuSkooler, CognitiveGears',
|
2023-01-03 22:10:39 +00:00
|
|
|
packageName: 'codes.l33t.enigma.web.handler.webfinger',
|
2022-12-31 05:39:39 +00:00
|
|
|
};
|
|
|
|
|
2023-01-01 00:51:03 +00:00
|
|
|
//
|
|
|
|
// WebFinger: https://www.rfc-editor.org/rfc/rfc7033
|
|
|
|
//
|
2023-01-03 05:25:32 +00:00
|
|
|
exports.getModule = class WebFingerWebHandler extends WebHandlerModule {
|
2022-12-31 05:39:39 +00:00
|
|
|
constructor() {
|
|
|
|
super();
|
|
|
|
}
|
|
|
|
|
2023-01-07 16:50:16 +00:00
|
|
|
init(webServer, cb) {
|
2022-12-31 05:39:39 +00:00
|
|
|
// we rely on the web server
|
2023-01-07 16:50:16 +00:00
|
|
|
this.webServer = webServer;
|
2023-01-22 17:18:52 +00:00
|
|
|
EngiAssert(webServer, 'WebFinger Web Handler init without webServer');
|
2023-01-07 16:50:16 +00:00
|
|
|
|
|
|
|
this.log = webServer.logger().child({ webHandler: 'WebFinger' });
|
2022-12-31 05:39:39 +00:00
|
|
|
|
2023-03-18 20:30:37 +00:00
|
|
|
const domain = getWebDomain();
|
2022-12-31 22:30:54 +00:00
|
|
|
if (!domain) {
|
|
|
|
return cb(Errors.UnexpectedState('Web server does not have "domain" set'));
|
|
|
|
}
|
|
|
|
|
|
|
|
this.acceptedResourceRegExps = [
|
|
|
|
// acct:NAME@our.domain.tld
|
2023-01-01 00:51:03 +00:00
|
|
|
// https://www.rfc-editor.org/rfc/rfc7565
|
2022-12-31 22:30:54 +00:00
|
|
|
new RegExp(`^acct:(.+)@${domain}$`),
|
2023-01-01 00:51:03 +00:00
|
|
|
// profile page
|
|
|
|
// https://webfinger.net/rel/profile-page/
|
2023-03-18 20:30:37 +00:00
|
|
|
new RegExp(`^${buildUrl(WellKnownLocations.Internal + '/wf/@')}(.+)$`),
|
2022-12-31 22:30:54 +00:00
|
|
|
// self URL
|
2023-03-18 20:30:37 +00:00
|
|
|
new RegExp(`^${buildUrl(WellKnownLocations.Internal + '/ap/users/')}(.+)$`),
|
2022-12-31 22:30:54 +00:00
|
|
|
];
|
|
|
|
|
2023-01-03 05:25:32 +00:00
|
|
|
this.webServer.addRoute({
|
2022-12-31 05:39:39 +00:00
|
|
|
method: 'GET',
|
2022-12-31 22:30:54 +00:00
|
|
|
// https://www.rfc-editor.org/rfc/rfc7033.html#section-10.1
|
2022-12-31 05:39:39 +00:00
|
|
|
path: /^\/\.well-known\/webfinger\/?\?/,
|
|
|
|
handler: this._webFingerRequestHandler.bind(this),
|
|
|
|
});
|
|
|
|
|
2023-01-03 05:25:32 +00:00
|
|
|
this.webServer.addRoute({
|
2023-01-01 16:47:59 +00:00
|
|
|
method: 'GET',
|
2023-01-02 02:19:51 +00:00
|
|
|
path: /^\/_enig\/wf\/@.+$/,
|
2023-01-01 16:47:59 +00:00
|
|
|
handler: this._profileRequestHandler.bind(this),
|
|
|
|
});
|
|
|
|
|
2022-12-31 05:39:39 +00:00
|
|
|
return cb(null);
|
|
|
|
}
|
|
|
|
|
2023-01-01 16:47:59 +00:00
|
|
|
_profileRequestHandler(req, resp) {
|
2023-01-28 19:13:11 +00:00
|
|
|
// Profile requests do not have an Actor ID available
|
2023-03-18 20:30:37 +00:00
|
|
|
const profileQuery = getFullUrl(req).toString();
|
2023-01-28 19:13:11 +00:00
|
|
|
const accountName = this._getAccountName(profileQuery);
|
|
|
|
if (!accountName) {
|
|
|
|
this.log.warn(
|
|
|
|
`Failed to parse "account name" for profile query: ${profileQuery}`
|
|
|
|
);
|
|
|
|
return this.webServer.resourceNotFound(resp);
|
|
|
|
}
|
|
|
|
|
|
|
|
this._localUserFromWebFingerAccountName(accountName, (err, localUser) => {
|
2023-01-01 16:47:59 +00:00
|
|
|
if (err) {
|
2023-01-07 01:55:24 +00:00
|
|
|
this.log.warn(
|
2023-01-28 19:13:11 +00:00
|
|
|
{ error: err.message, type: 'Profile', accountName },
|
2023-01-28 18:55:31 +00:00
|
|
|
'Could not fetch profile for WebFinger request'
|
2023-01-07 01:55:24 +00:00
|
|
|
);
|
2023-01-08 08:22:02 +00:00
|
|
|
return this.webServer.resourceNotFound(resp);
|
2023-01-01 16:47:59 +00:00
|
|
|
}
|
|
|
|
|
2023-01-05 03:29:18 +00:00
|
|
|
let templateFile = _.get(
|
|
|
|
Config(),
|
|
|
|
'contentServers.web.handlers.webFinger.profileTemplate'
|
|
|
|
);
|
|
|
|
if (templateFile) {
|
|
|
|
templateFile = this.webServer.resolveTemplatePath(templateFile);
|
|
|
|
}
|
2023-01-01 17:07:33 +00:00
|
|
|
|
2023-01-29 23:52:01 +00:00
|
|
|
Actor.fromLocalUser(localUser, this.webServer, (err, localActor) => {
|
|
|
|
if (err) {
|
|
|
|
return this.webServer.internalServerError(resp, err);
|
2023-01-02 02:19:51 +00:00
|
|
|
}
|
2023-01-29 23:52:01 +00:00
|
|
|
|
|
|
|
getUserProfileTemplatedBody(
|
|
|
|
this.webServer,
|
|
|
|
templateFile,
|
|
|
|
localUser,
|
|
|
|
localActor,
|
|
|
|
DefaultProfileTemplate,
|
|
|
|
'text/plain',
|
|
|
|
(err, body, contentType) => {
|
|
|
|
if (err) {
|
|
|
|
return this.webServer.resourceNotFound(resp);
|
|
|
|
}
|
|
|
|
|
|
|
|
const headers = {
|
|
|
|
'Content-Type': contentType,
|
2023-02-01 03:06:07 +00:00
|
|
|
'Content-Length': Buffer(body).length,
|
2023-01-29 23:52:01 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
resp.writeHead(200, headers);
|
|
|
|
return resp.end(body);
|
|
|
|
}
|
|
|
|
);
|
|
|
|
});
|
2023-01-01 16:47:59 +00:00
|
|
|
});
|
|
|
|
}
|
|
|
|
|
2022-12-31 05:39:39 +00:00
|
|
|
_webFingerRequestHandler(req, resp) {
|
2023-03-18 20:30:37 +00:00
|
|
|
const url = getFullUrl(req);
|
2022-12-31 07:38:09 +00:00
|
|
|
const resource = url.searchParams.get('resource');
|
|
|
|
if (!resource) {
|
2023-01-03 05:25:32 +00:00
|
|
|
return this.webServer.respondWithError(
|
2022-12-31 07:38:09 +00:00
|
|
|
resp,
|
|
|
|
400,
|
|
|
|
'"resource" is required',
|
|
|
|
'Missing "resource"'
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
2023-01-01 16:47:59 +00:00
|
|
|
const accountName = this._getAccountName(resource);
|
|
|
|
if (!accountName || accountName.length < 1) {
|
2023-01-28 18:55:31 +00:00
|
|
|
this.log.warn(`Failed to parse "account name" for resource: ${resource}`);
|
|
|
|
return this.webServer.resourceNotFound(resp);
|
2023-01-01 16:47:59 +00:00
|
|
|
}
|
|
|
|
|
2023-01-28 18:55:31 +00:00
|
|
|
this._localUserFromWebFingerAccountName(accountName, (err, localUser) => {
|
2022-12-31 07:38:09 +00:00
|
|
|
if (err) {
|
2023-01-07 01:55:24 +00:00
|
|
|
this.log.warn(
|
|
|
|
{ url: req.url, error: err.message, type: 'WebFinger' },
|
|
|
|
`No account for "${accountName}" could be retrieved`
|
|
|
|
);
|
2023-01-08 08:22:02 +00:00
|
|
|
return this.webServer.resourceNotFound(resp);
|
2022-12-31 07:38:09 +00:00
|
|
|
}
|
|
|
|
|
2023-03-18 20:30:37 +00:00
|
|
|
const domain = getWebDomain();
|
2022-12-31 07:38:09 +00:00
|
|
|
const body = JSON.stringify({
|
2023-01-28 18:55:31 +00:00
|
|
|
subject: `acct:${localUser.username}@${domain}`,
|
2023-03-18 20:30:37 +00:00
|
|
|
aliases: [Endpoints.profile(localUser), Endpoints.actorId(localUser)],
|
2022-12-31 22:30:54 +00:00
|
|
|
links: [
|
2023-01-28 18:55:31 +00:00
|
|
|
this._profilePageLink(localUser),
|
|
|
|
this._selfLink(localUser),
|
2022-12-31 22:30:54 +00:00
|
|
|
this._subscribeLink(),
|
|
|
|
],
|
2022-12-31 07:38:09 +00:00
|
|
|
});
|
|
|
|
|
|
|
|
const headers = {
|
|
|
|
'Content-Type': 'application/jrd+json',
|
2023-02-01 03:06:07 +00:00
|
|
|
'Content-Length': Buffer(body).length,
|
2022-12-31 07:38:09 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
resp.writeHead(200, headers);
|
|
|
|
return resp.end(body);
|
|
|
|
});
|
|
|
|
}
|
|
|
|
|
2023-01-28 18:55:31 +00:00
|
|
|
_localUserFromWebFingerAccountName(accountName, cb) {
|
|
|
|
if (accountName.startsWith('@')) {
|
|
|
|
accountName = accountName.slice(1);
|
|
|
|
}
|
|
|
|
|
|
|
|
User.getUserIdAndName(accountName, (err, userId) => {
|
|
|
|
if (err) {
|
|
|
|
return cb(err);
|
|
|
|
}
|
|
|
|
|
|
|
|
User.getUser(userId, (err, user) => {
|
|
|
|
if (err) {
|
|
|
|
return cb(err);
|
|
|
|
}
|
|
|
|
|
|
|
|
const accountStatus = user.getPropertyAsNumber(UserProps.AccountStatus);
|
|
|
|
if (
|
|
|
|
User.AccountStatus.disabled == accountStatus ||
|
|
|
|
User.AccountStatus.inactive == accountStatus
|
|
|
|
) {
|
|
|
|
return cb(
|
|
|
|
Errors.AccessDenied('Account disabled', ErrorReasons.Disabled)
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
|
|
|
const activityPubSettings = ActivityPubSettings.fromUser(user);
|
|
|
|
if (!activityPubSettings.enabled) {
|
|
|
|
return cb(Errors.AccessDenied('ActivityPub is not enabled for user'));
|
|
|
|
}
|
|
|
|
|
|
|
|
return cb(null, user);
|
|
|
|
});
|
|
|
|
});
|
|
|
|
}
|
|
|
|
|
2022-12-31 07:38:09 +00:00
|
|
|
_profilePageLink(user) {
|
2023-03-18 20:30:37 +00:00
|
|
|
const href = Endpoints.profile(user);
|
2022-12-31 07:38:09 +00:00
|
|
|
return {
|
|
|
|
rel: 'http://webfinger.net/rel/profile-page',
|
|
|
|
type: 'text/plain',
|
|
|
|
href,
|
|
|
|
};
|
|
|
|
}
|
|
|
|
|
2023-01-28 18:55:31 +00:00
|
|
|
_userActorId(user) {
|
2023-03-18 20:30:37 +00:00
|
|
|
return Endpoints.actorId(user);
|
2022-12-31 19:05:59 +00:00
|
|
|
}
|
|
|
|
|
2022-12-31 22:30:54 +00:00
|
|
|
// :TODO: only if ActivityPub is enabled
|
2022-12-31 19:05:59 +00:00
|
|
|
_selfLink(user) {
|
2023-03-18 20:30:37 +00:00
|
|
|
const href = Endpoints.actorId(user);
|
2022-12-31 19:05:59 +00:00
|
|
|
return {
|
|
|
|
rel: 'self',
|
|
|
|
type: 'application/activity+json',
|
|
|
|
href,
|
|
|
|
};
|
|
|
|
}
|
|
|
|
|
2022-12-31 22:30:54 +00:00
|
|
|
// :TODO: only if ActivityPub is enabled
|
2022-12-31 19:05:59 +00:00
|
|
|
_subscribeLink() {
|
|
|
|
return {
|
|
|
|
rel: 'http://ostatus.org/schema/1.0/subscribe',
|
2023-03-18 20:30:37 +00:00
|
|
|
template: buildUrl(
|
2022-12-31 22:30:54 +00:00
|
|
|
WellKnownLocations.Internal + '/ap/authorize_interaction?uri={uri}'
|
|
|
|
),
|
2022-12-31 19:05:59 +00:00
|
|
|
};
|
|
|
|
}
|
|
|
|
|
2022-12-31 22:30:54 +00:00
|
|
|
_getAccountName(resource) {
|
|
|
|
for (const re of this.acceptedResourceRegExps) {
|
|
|
|
const m = resource.match(re);
|
|
|
|
if (m && m.length === 2) {
|
|
|
|
return m[1];
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
2022-12-31 05:39:39 +00:00
|
|
|
};
|