writefreely
/
writefreely
mirror of https://github.com/writefreely/writefreely.git
2
0
Fork 0
Code Issues Releases 25 Wiki Activity
A clean, Markdown-based publishing platform made for writers. Write together, and build a community. https://writefreely.org
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
564 Commits
45 Branches
234 MiB
 
 
 
 
 
Tree: 9873fc443f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '9873fc443f'
${ noResults }
writefreely/activitypub.go

746 lines
19 KiB
Raw Blame History 

  1. /*

  2.  * Copyright © 2018-2019 A Bunch Tell LLC.

  3.  *

  4.  * This file is part of WriteFreely.

  5.  *

  6.  * WriteFreely is free software: you can redistribute it and/or modify

  7.  * it under the terms of the GNU Affero General Public License, included

  8.  * in the LICENSE file in this source code package.

  9.  */

  10. 

  11. package writefreely

  12. 

  13. import (

  14. 	"bytes"

  15. 	"crypto/sha256"

  16. 	"database/sql"

  17. 	"encoding/base64"

  18. 	"encoding/json"

  19. 	"fmt"

  20. 	"io/ioutil"

  21. 	"net/http"

  22. 	"net/http/httputil"

  23. 	"net/url"

  24. 	"strconv"

  25. 	"time"

  26. 

  27. 	"github.com/gorilla/mux"

  28. 	"github.com/writeas/activity/streams"

  29. 	"github.com/writeas/httpsig"

  30. 	"github.com/writeas/impart"

  31. 	"github.com/writeas/nerds/store"

  32. 	"github.com/writeas/web-core/activitypub"

  33. 	"github.com/writeas/web-core/activitystreams"

  34. 	"github.com/writeas/web-core/log"

  35. )

  36. 

  37. const (

  38. 	// TODO: delete. don't use this!

  39. 	apCustomHandleDefault = "blog"

  40. )

  41. 

  42. type RemoteUser struct {

  43. 	ID          int64

  44. 	ActorID     string

  45. 	Inbox       string

  46. 	SharedInbox string

  47. }

  48. 

  49. func (ru *RemoteUser) AsPerson() *activitystreams.Person {

  50. 	return &activitystreams.Person{

  51. 		BaseObject: activitystreams.BaseObject{

  52. 			Type: "Person",

  53. 			Context: []interface{}{

  54. 				activitystreams.Namespace,

  55. 			},

  56. 			ID: ru.ActorID,

  57. 		},

  58. 		Inbox: ru.Inbox,

  59. 		Endpoints: activitystreams.Endpoints{

  60. 			SharedInbox: ru.SharedInbox,

  61. 		},

  62. 	}

  63. }

  64. 

  65. func handleFetchCollectionActivities(app *App, w http.ResponseWriter, r *http.Request) error {

  66. 	w.Header().Set("Server", serverSoftware)

  67. 

  68. 	vars := mux.Vars(r)

  69. 	alias := vars["alias"]

  70. 

  71. 	// TODO: enforce visibility

  72. 	// Get base Collection data

  73. 	var c *Collection

  74. 	var err error

  75. 	if app.cfg.App.SingleUser {

  76. 		c, err = app.db.GetCollectionByID(1)

  77. 	} else {

  78. 		c, err = app.db.GetCollection(alias)

  79. 	}

  80. 	if err != nil {

  81. 		return err

  82. 	}

  83. 	suspended, err := app.db.IsUserSuspended(c.OwnerID)

  84. 	if err != nil {

  85. 		log.Error("fetch collection inbox: get owner: %v", err)

  86. 		return ErrInternalGeneral

  87. 	}

  88. 	if suspended {

  89. 		return ErrCollectionNotFound

  90. 	}

  91. 	c.hostName = app.cfg.App.Host

  92. 

  93. 	p := c.PersonObject()

  94. 

  95. 	return impart.RenderActivityJSON(w, p, http.StatusOK)

  96. }

  97. 

  98. func handleFetchCollectionOutbox(app *App, w http.ResponseWriter, r *http.Request) error {

  99. 	w.Header().Set("Server", serverSoftware)

  100. 

  101. 	vars := mux.Vars(r)

  102. 	alias := vars["alias"]

  103. 

  104. 	// TODO: enforce visibility

  105. 	// Get base Collection data

  106. 	var c *Collection

  107. 	var err error

  108. 	if app.cfg.App.SingleUser {

  109. 		c, err = app.db.GetCollectionByID(1)

  110. 	} else {

  111. 		c, err = app.db.GetCollection(alias)

  112. 	}

  113. 	if err != nil {

  114. 		return err

  115. 	}

  116. 	suspended, err := app.db.IsUserSuspended(c.OwnerID)

  117. 	if err != nil {

  118. 		log.Error("fetch collection inbox: get owner: %v", err)

  119. 		return ErrInternalGeneral

  120. 	}

  121. 	if suspended {

  122. 		return ErrCollectionNotFound

  123. 	}

  124. 	c.hostName = app.cfg.App.Host

  125. 

  126. 	if app.cfg.App.SingleUser {

  127. 		if alias != c.Alias {

  128. 			return ErrCollectionNotFound

  129. 		}

  130. 	}

  131. 

  132. 	res := &CollectionObj{Collection: *c}

  133. 	app.db.GetPostsCount(res, false)

  134. 	accountRoot := c.FederatedAccount()

  135. 

  136. 	page := r.FormValue("page")

  137. 	p, err := strconv.Atoi(page)

  138. 	if err != nil || p < 1 {

  139. 		// Return outbox

  140. 		oc := activitystreams.NewOrderedCollection(accountRoot, "outbox", res.TotalPosts)

  141. 		return impart.RenderActivityJSON(w, oc, http.StatusOK)

  142. 	}

  143. 

  144. 	// Return outbox page

  145. 	ocp := activitystreams.NewOrderedCollectionPage(accountRoot, "outbox", res.TotalPosts, p)

  146. 	ocp.OrderedItems = []interface{}{}

  147. 

  148. 	posts, err := app.db.GetPosts(app.cfg, c, p, false, true, false)

  149. 	for _, pp := range *posts {

  150. 		pp.Collection = res

  151. 		o := pp.ActivityObject(app.cfg)

  152. 		a := activitystreams.NewCreateActivity(o)

  153. 		ocp.OrderedItems = append(ocp.OrderedItems, *a)

  154. 	}

  155. 

  156. 	return impart.RenderActivityJSON(w, ocp, http.StatusOK)

  157. }

  158. 

  159. func handleFetchCollectionFollowers(app *App, w http.ResponseWriter, r *http.Request) error {

  160. 	w.Header().Set("Server", serverSoftware)

  161. 

  162. 	vars := mux.Vars(r)

  163. 	alias := vars["alias"]

  164. 

  165. 	// TODO: enforce visibility

  166. 	// Get base Collection data

  167. 	var c *Collection

  168. 	var err error

  169. 	if app.cfg.App.SingleUser {

  170. 		c, err = app.db.GetCollectionByID(1)

  171. 	} else {

  172. 		c, err = app.db.GetCollection(alias)

  173. 	}

  174. 	if err != nil {

  175. 		return err

  176. 	}

  177. 	suspended, err := app.db.IsUserSuspended(c.OwnerID)

  178. 	if err != nil {

  179. 		log.Error("fetch collection inbox: get owner: %v", err)

  180. 		return ErrInternalGeneral

  181. 	}

  182. 	if suspended {

  183. 		return ErrCollectionNotFound

  184. 	}

  185. 	c.hostName = app.cfg.App.Host

  186. 

  187. 	accountRoot := c.FederatedAccount()

  188. 

  189. 	folls, err := app.db.GetAPFollowers(c)

  190. 	if err != nil {

  191. 		return err

  192. 	}

  193. 

  194. 	page := r.FormValue("page")

  195. 	p, err := strconv.Atoi(page)

  196. 	if err != nil || p < 1 {

  197. 		// Return outbox

  198. 		oc := activitystreams.NewOrderedCollection(accountRoot, "followers", len(*folls))

  199. 		return impart.RenderActivityJSON(w, oc, http.StatusOK)

  200. 	}

  201. 

  202. 	// Return outbox page

  203. 	ocp := activitystreams.NewOrderedCollectionPage(accountRoot, "followers", len(*folls), p)

  204. 	ocp.OrderedItems = []interface{}{}

  205. 	/*

  206. 		for _, f := range *folls {

  207. 			ocp.OrderedItems = append(ocp.OrderedItems, f.ActorID)

  208. 		}

  209. 	*/

  210. 	return impart.RenderActivityJSON(w, ocp, http.StatusOK)

  211. }

  212. 

  213. func handleFetchCollectionFollowing(app *App, w http.ResponseWriter, r *http.Request) error {

  214. 	w.Header().Set("Server", serverSoftware)

  215. 

  216. 	vars := mux.Vars(r)

  217. 	alias := vars["alias"]

  218. 

  219. 	// TODO: enforce visibility

  220. 	// Get base Collection data

  221. 	var c *Collection

  222. 	var err error

  223. 	if app.cfg.App.SingleUser {

  224. 		c, err = app.db.GetCollectionByID(1)

  225. 	} else {

  226. 		c, err = app.db.GetCollection(alias)

  227. 	}

  228. 	if err != nil {

  229. 		return err

  230. 	}

  231. 	suspended, err := app.db.IsUserSuspended(c.OwnerID)

  232. 	if err != nil {

  233. 		log.Error("fetch collection inbox: get owner: %v", err)

  234. 		return ErrInternalGeneral

  235. 	}

  236. 	if suspended {

  237. 		return ErrCollectionNotFound

  238. 	}

  239. 	c.hostName = app.cfg.App.Host

  240. 

  241. 	accountRoot := c.FederatedAccount()

  242. 

  243. 	page := r.FormValue("page")

  244. 	p, err := strconv.Atoi(page)

  245. 	if err != nil || p < 1 {

  246. 		// Return outbox

  247. 		oc := activitystreams.NewOrderedCollection(accountRoot, "following", 0)

  248. 		return impart.RenderActivityJSON(w, oc, http.StatusOK)

  249. 	}

  250. 

  251. 	// Return outbox page

  252. 	ocp := activitystreams.NewOrderedCollectionPage(accountRoot, "following", 0, p)

  253. 	ocp.OrderedItems = []interface{}{}

  254. 	return impart.RenderActivityJSON(w, ocp, http.StatusOK)

  255. }

  256. 

  257. func handleFetchCollectionInbox(app *App, w http.ResponseWriter, r *http.Request) error {

  258. 	w.Header().Set("Server", serverSoftware)

  259. 

  260. 	vars := mux.Vars(r)

  261. 	alias := vars["alias"]

  262. 	var c *Collection

  263. 	var err error

  264. 	if app.cfg.App.SingleUser {

  265. 		c, err = app.db.GetCollectionByID(1)

  266. 	} else {

  267. 		c, err = app.db.GetCollection(alias)

  268. 	}

  269. 	if err != nil {

  270. 		// TODO: return Reject?

  271. 		return err

  272. 	}

  273. 	suspended, err := app.db.IsUserSuspended(c.OwnerID)

  274. 	if err != nil {

  275. 		log.Error("fetch collection inbox: get owner: %v", err)

  276. 		return ErrInternalGeneral

  277. 	}

  278. 	if suspended {

  279. 		return ErrCollectionNotFound

  280. 	}

  281. 	c.hostName = app.cfg.App.Host

  282. 

  283. 	if debugging {

  284. 		dump, err := httputil.DumpRequest(r, true)

  285. 		if err != nil {

  286. 			log.Error("Can't dump: %v", err)

  287. 		} else {

  288. 			log.Info("Rec'd! %q", dump)

  289. 		}

  290. 	}

  291. 

  292. 	var m map[string]interface{}

  293. 	if err := json.NewDecoder(r.Body).Decode(&m); err != nil {

  294. 		return err

  295. 	}

  296. 

  297. 	a := streams.NewAccept()

  298. 	p := c.PersonObject()

  299. 	var to *url.URL

  300. 	var isFollow, isUnfollow bool

  301. 	fullActor := &activitystreams.Person{}

  302. 	var remoteUser *RemoteUser

  303. 

  304. 	res := &streams.Resolver{

  305. 		FollowCallback: func(f *streams.Follow) error {

  306. 			isFollow = true

  307. 

  308. 			// 1) Use the Follow concrete type here

  309. 			// 2) Errors are propagated to res.Deserialize call below

  310. 			m["@context"] = []string{activitystreams.Namespace}

  311. 			b, _ := json.Marshal(m)

  312. 			if debugging {

  313. 				log.Info("Follow: %s", b)

  314. 			}

  315. 

  316. 			_, followID := f.GetId()

  317. 			if followID == nil {

  318. 				log.Error("Didn't resolve follow ID")

  319. 			} else {

  320. 				aID := c.FederatedAccount() + "#accept-" + store.GenerateFriendlyRandomString(20)

  321. 				acceptID, err := url.Parse(aID)

  322. 				if err != nil {

  323. 					log.Error("Couldn't parse generated Accept URL '%s': %v", aID, err)

  324. 				}

  325. 				a.SetId(acceptID)

  326. 			}

  327. 			a.AppendObject(f.Raw())

  328. 			_, to = f.GetActor(0)

  329. 			obj := f.Raw().GetObjectIRI(0)

  330. 			a.AppendActor(obj)

  331. 

  332. 			// First get actor information

  333. 			if to == nil {

  334. 				return fmt.Errorf("No valid `to` string")

  335. 			}

  336. 			fullActor, remoteUser, err = getActor(app, to.String())

  337. 			if err != nil {

  338. 				return err

  339. 			}

  340. 			return impart.RenderActivityJSON(w, m, http.StatusOK)

  341. 		},

  342. 		UndoCallback: func(u *streams.Undo) error {

  343. 			isUnfollow = true

  344. 

  345. 			m["@context"] = []string{activitystreams.Namespace}

  346. 			b, _ := json.Marshal(m)

  347. 			if debugging {

  348. 				log.Info("Undo: %s", b)

  349. 			}

  350. 

  351. 			a.AppendObject(u.Raw())

  352. 			_, to = u.GetActor(0)

  353. 			// TODO: get actor from object.object, not object

  354. 			obj := u.Raw().GetObjectIRI(0)

  355. 			a.AppendActor(obj)

  356. 			if to != nil {

  357. 				// Populate fullActor from DB?

  358. 				remoteUser, err = getRemoteUser(app, to.String())

  359. 				if err != nil {

  360. 					if iErr, ok := err.(*impart.HTTPError); ok {

  361. 						if iErr.Status == http.StatusNotFound {

  362. 							log.Error("No remoteuser info for Undo event!")

  363. 						}

  364. 					}

  365. 					return err

  366. 				} else {

  367. 					fullActor = remoteUser.AsPerson()

  368. 				}

  369. 			} else {

  370. 				log.Error("No to on Undo!")

  371. 			}

  372. 			return impart.RenderActivityJSON(w, m, http.StatusOK)

  373. 		},

  374. 	}

  375. 	if err := res.Deserialize(m); err != nil {

  376. 		// 3) Any errors from #2 can be handled, or the payload is an unknown type.

  377. 		log.Error("Unable to resolve Follow: %v", err)

  378. 		if debugging {

  379. 			log.Error("Map: %s", m)

  380. 		}

  381. 		return err

  382. 	}

  383. 

  384. 	go func() {

  385. 		time.Sleep(2 * time.Second)

  386. 		am, err := a.Serialize()

  387. 		if err != nil {

  388. 			log.Error("Unable to serialize Accept: %v", err)

  389. 			return

  390. 		}

  391. 		am["@context"] = []string{activitystreams.Namespace}

  392. 

  393. 		if to == nil {

  394. 			log.Error("No to! %v", err)

  395. 			return

  396. 		}

  397. 		err = makeActivityPost(app.cfg.App.Host, p, fullActor.Inbox, am)

  398. 		if err != nil {

  399. 			log.Error("Unable to make activity POST: %v", err)

  400. 			return

  401. 		}

  402. 

  403. 		if isFollow {

  404. 			t, err := app.db.Begin()

  405. 			if err != nil {

  406. 				log.Error("Unable to start transaction: %v", err)

  407. 				return

  408. 			}

  409. 

  410. 			var followerID int64

  411. 

  412. 			if remoteUser != nil {

  413. 				followerID = remoteUser.ID

  414. 			} else {

  415. 				// Add follower locally, since it wasn't found before

  416. 				res, err := t.Exec("INSERT INTO remoteusers (actor_id, inbox, shared_inbox) VALUES (?, ?, ?)", fullActor.ID, fullActor.Inbox, fullActor.Endpoints.SharedInbox)

  417. 				if err != nil {

  418. 					if !app.db.isDuplicateKeyErr(err) {

  419. 						t.Rollback()

  420. 						log.Error("Couldn't add new remoteuser in DB: %v\n", err)

  421. 						return

  422. 					}

  423. 				}

  424. 

  425. 				followerID, err = res.LastInsertId()

  426. 				if err != nil {

  427. 					t.Rollback()

  428. 					log.Error("no lastinsertid for followers, rolling back: %v", err)

  429. 					return

  430. 				}

  431. 

  432. 				// Add in key

  433. 				_, err = t.Exec("INSERT INTO remoteuserkeys (id, remote_user_id, public_key) VALUES (?, ?, ?)", fullActor.PublicKey.ID, followerID, fullActor.PublicKey.PublicKeyPEM)

  434. 				if err != nil {

  435. 					if !app.db.isDuplicateKeyErr(err) {

  436. 						t.Rollback()

  437. 						log.Error("Couldn't add follower keys in DB: %v\n", err)

  438. 						return

  439. 					}

  440. 				}

  441. 			}

  442. 

  443. 			// Add follow

  444. 			_, err = t.Exec("INSERT INTO remotefollows (collection_id, remote_user_id, created) VALUES (?, ?, "+app.db.now()+")", c.ID, followerID)

  445. 			if err != nil {

  446. 				if !app.db.isDuplicateKeyErr(err) {

  447. 					t.Rollback()

  448. 					log.Error("Couldn't add follower in DB: %v\n", err)

  449. 					return

  450. 				}

  451. 			}

  452. 

  453. 			err = t.Commit()

  454. 			if err != nil {

  455. 				t.Rollback()

  456. 				log.Error("Rolling back after Commit(): %v\n", err)

  457. 				return

  458. 			}

  459. 		} else if isUnfollow {

  460. 			// Remove follower locally

  461. 			_, err = app.db.Exec("DELETE FROM remotefollows WHERE collection_id = ? AND remote_user_id = (SELECT id FROM remoteusers WHERE actor_id = ?)", c.ID, to.String())

  462. 			if err != nil {

  463. 				log.Error("Couldn't remove follower from DB: %v\n", err)

  464. 			}

  465. 		}

  466. 	}()

  467. 

  468. 	return nil

  469. }

  470. 

  471. func makeActivityPost(hostName string, p *activitystreams.Person, url string, m interface{}) error {

  472. 	log.Info("POST %s", url)

  473. 	b, err := json.Marshal(m)

  474. 	if err != nil {

  475. 		return err

  476. 	}

  477. 

  478. 	r, _ := http.NewRequest("POST", url, bytes.NewBuffer(b))

  479. 	r.Header.Add("Content-Type", "application/activity+json")

  480. 	r.Header.Set("User-Agent", "Go ("+serverSoftware+"/"+softwareVer+"; +"+hostName+")")

  481. 	h := sha256.New()

  482. 	h.Write(b)

  483. 	r.Header.Add("Digest", "SHA-256="+base64.StdEncoding.EncodeToString(h.Sum(nil)))

  484. 

  485. 	// Sign using the 'Signature' header

  486. 	privKey, err := activitypub.DecodePrivateKey(p.GetPrivKey())

  487. 	if err != nil {

  488. 		return err

  489. 	}

  490. 	signer := httpsig.NewSigner(p.PublicKey.ID, privKey, httpsig.RSASHA256, []string{"(request-target)", "date", "host", "digest"})

  491. 	err = signer.SignSigHeader(r)

  492. 	if err != nil {

  493. 		log.Error("Can't sign: %v", err)

  494. 	}

  495. 

  496. 	if debugging {

  497. 		dump, err := httputil.DumpRequestOut(r, true)

  498. 		if err != nil {

  499. 			log.Error("Can't dump: %v", err)

  500. 		} else {

  501. 			log.Info("%s", dump)

  502. 		}

  503. 	}

  504. 

  505. 	resp, err := http.DefaultClient.Do(r)

  506. 	if err != nil {

  507. 		return err

  508. 	}

  509. 	if resp != nil && resp.Body != nil {

  510. 		defer resp.Body.Close()

  511. 	}

  512. 

  513. 	body, err := ioutil.ReadAll(resp.Body)

  514. 	if err != nil {

  515. 		return err

  516. 	}

  517. 	if debugging {

  518. 		log.Info("Status  : %s", resp.Status)

  519. 		log.Info("Response: %s", body)

  520. 	}

  521. 

  522. 	return nil

  523. }

  524. 

  525. func resolveIRI(hostName, url string) ([]byte, error) {

  526. 	log.Info("GET %s", url)

  527. 

  528. 	r, _ := http.NewRequest("GET", url, nil)

  529. 	r.Header.Add("Accept", "application/activity+json")

  530. 	r.Header.Set("User-Agent", "Go ("+serverSoftware+"/"+softwareVer+"; +"+hostName+")")

  531. 

  532. 	if debugging {

  533. 		dump, err := httputil.DumpRequestOut(r, true)

  534. 		if err != nil {

  535. 			log.Error("Can't dump: %v", err)

  536. 		} else {

  537. 			log.Info("%s", dump)

  538. 		}

  539. 	}

  540. 

  541. 	resp, err := http.DefaultClient.Do(r)

  542. 	if err != nil {

  543. 		return nil, err

  544. 	}

  545. 	if resp != nil && resp.Body != nil {

  546. 		defer resp.Body.Close()

  547. 	}

  548. 

  549. 	body, err := ioutil.ReadAll(resp.Body)

  550. 	if err != nil {

  551. 		return nil, err

  552. 	}

  553. 	if debugging {

  554. 		log.Info("Status  : %s", resp.Status)

  555. 		log.Info("Response: %s", body)

  556. 	}

  557. 

  558. 	return body, nil

  559. }

  560. 

  561. func deleteFederatedPost(app *App, p *PublicPost, collID int64) error {

  562. 	if debugging {

  563. 		log.Info("Deleting federated post!")

  564. 	}

  565. 	p.Collection.hostName = app.cfg.App.Host

  566. 	actor := p.Collection.PersonObject(collID)

  567. 	na := p.ActivityObject(app.cfg)

  568. 

  569. 	// Add followers

  570. 	p.Collection.ID = collID

  571. 	followers, err := app.db.GetAPFollowers(&p.Collection.Collection)

  572. 	if err != nil {

  573. 		log.Error("Couldn't delete post (get followers)! %v", err)

  574. 		return err

  575. 	}

  576. 

  577. 	inboxes := map[string][]string{}

  578. 	for _, f := range *followers {

  579. 		inbox := f.SharedInbox

  580. 		if inbox == "" {

  581. 			inbox = f.Inbox

  582. 		}

  583. 		if _, ok := inboxes[inbox]; ok {

  584. 			inboxes[inbox] = append(inboxes[inbox], f.ActorID)

  585. 		} else {

  586. 			inboxes[inbox] = []string{f.ActorID}

  587. 		}

  588. 	}

  589. 

  590. 	for si, instFolls := range inboxes {

  591. 		na.CC = []string{}

  592. 		for _, f := range instFolls {

  593. 			na.CC = append(na.CC, f)

  594. 		}

  595. 

  596. 		err = makeActivityPost(app.cfg.App.Host, actor, si, activitystreams.NewDeleteActivity(na))

  597. 		if err != nil {

  598. 			log.Error("Couldn't delete post! %v", err)

  599. 		}

  600. 	}

  601. 	return nil

  602. }

  603. 

  604. func federatePost(app *App, p *PublicPost, collID int64, isUpdate bool) error {

  605. 	if debugging {

  606. 		if isUpdate {

  607. 			log.Info("Federating updated post!")

  608. 		} else {

  609. 			log.Info("Federating new post!")

  610. 		}

  611. 	}

  612. 	actor := p.Collection.PersonObject(collID)

  613. 	na := p.ActivityObject(app.cfg)

  614. 

  615. 	// Add followers

  616. 	p.Collection.ID = collID

  617. 	followers, err := app.db.GetAPFollowers(&p.Collection.Collection)

  618. 	if err != nil {

  619. 		log.Error("Couldn't post! %v", err)

  620. 		return err

  621. 	}

  622. 	log.Info("Followers for %d: %+v", collID, followers)

  623. 

  624. 	inboxes := map[string][]string{}

  625. 	for _, f := range *followers {

  626. 		inbox := f.SharedInbox

  627. 		if inbox == "" {

  628. 			inbox = f.Inbox

  629. 		}

  630. 		if _, ok := inboxes[inbox]; ok {

  631. 			inboxes[inbox] = append(inboxes[inbox], f.ActorID)

  632. 		} else {

  633. 			inboxes[inbox] = []string{f.ActorID}

  634. 		}

  635. 	}

  636. 

  637. 	for si, instFolls := range inboxes {

  638. 		na.CC = []string{}

  639. 		for _, f := range instFolls {

  640. 			na.CC = append(na.CC, f)

  641. 		}

  642. 		var activity *activitystreams.Activity

  643. 		if isUpdate {

  644. 			activity = activitystreams.NewUpdateActivity(na)

  645. 		} else {

  646. 			activity = activitystreams.NewCreateActivity(na)

  647. 			activity.To = na.To

  648. 			activity.CC = na.CC

  649. 		}

  650. 		err = makeActivityPost(app.cfg.App.Host, actor, si, activity)

  651. 		if err != nil {

  652. 			log.Error("Couldn't post! %v", err)

  653. 		}

  654. 	}

  655. 	return nil

  656. }

  657. 

  658. func getRemoteUser(app *App, actorID string) (*RemoteUser, error) {

  659. 	u := RemoteUser{ActorID: actorID}

  660. 	err := app.db.QueryRow("SELECT id, inbox, shared_inbox FROM remoteusers WHERE actor_id = ?", actorID).Scan(&u.ID, &u.Inbox, &u.SharedInbox)

  661. 	switch {

  662. 	case err == sql.ErrNoRows:

  663. 		return nil, impart.HTTPError{http.StatusNotFound, "No remote user with that ID."}

  664. 	case err != nil:

  665. 		log.Error("Couldn't get remote user %s: %v", actorID, err)

  666. 		return nil, err

  667. 	}

  668. 

  669. 	return &u, nil

  670. }

  671. 

  672. func getActor(app *App, actorIRI string) (*activitystreams.Person, *RemoteUser, error) {

  673. 	log.Info("Fetching actor %s locally", actorIRI)

  674. 	actor := &activitystreams.Person{}

  675. 	remoteUser, err := getRemoteUser(app, actorIRI)

  676. 	if err != nil {

  677. 		if iErr, ok := err.(impart.HTTPError); ok {

  678. 			if iErr.Status == http.StatusNotFound {

  679. 				// Fetch remote actor

  680. 				log.Info("Not found; fetching actor %s remotely", actorIRI)

  681. 				actorResp, err := resolveIRI(app.cfg.App.Host, actorIRI)

  682. 				if err != nil {

  683. 					log.Error("Unable to get actor! %v", err)

  684. 					return nil, nil, impart.HTTPError{http.StatusInternalServerError, "Couldn't fetch actor."}

  685. 				}

  686. 				if err := unmarshalActor(actorResp, actor); err != nil {

  687. 					log.Error("Unable to unmarshal actor! %v", err)

  688. 					return nil, nil, impart.HTTPError{http.StatusInternalServerError, "Couldn't parse actor."}

  689. 				}

  690. 			} else {

  691. 				return nil, nil, err

  692. 			}

  693. 		} else {

  694. 			return nil, nil, err

  695. 		}

  696. 	} else {

  697. 		actor = remoteUser.AsPerson()

  698. 	}

  699. 	return actor, remoteUser, nil

  700. }

  701. 

  702. // unmarshal actor normalizes the actor response to conform to

  703. // the type Person from github.com/writeas/web-core/activitysteams

  704. //

  705. // some implementations return different context field types

  706. // this converts any non-slice contexts into a slice

  707. func unmarshalActor(actorResp []byte, actor *activitystreams.Person) error {

  708. 	// FIXME: Hubzilla has an object for the Actor's url: cannot unmarshal object into Go struct field Person.url of type string

  709. 

  710. 	// flexActor overrides the Context field to allow

  711. 	// all valid representations during unmarshal

  712. 	flexActor := struct {

  713. 		activitystreams.Person

  714. 		Context json.RawMessage `json:"@context,omitempty"`

  715. 	}{}

  716. 	if err := json.Unmarshal(actorResp, &flexActor); err != nil {

  717. 		return err

  718. 	}

  719. 

  720. 	actor.Endpoints = flexActor.Endpoints

  721. 	actor.Followers = flexActor.Followers

  722. 	actor.Following = flexActor.Following

  723. 	actor.ID = flexActor.ID

  724. 	actor.Icon = flexActor.Icon

  725. 	actor.Inbox = flexActor.Inbox

  726. 	actor.Name = flexActor.Name

  727. 	actor.Outbox = flexActor.Outbox

  728. 	actor.PreferredUsername = flexActor.PreferredUsername

  729. 	actor.PublicKey = flexActor.PublicKey

  730. 	actor.Summary = flexActor.Summary

  731. 	actor.Type = flexActor.Type

  732. 	actor.URL = flexActor.URL

  733. 

  734. 	func(val interface{}) {

  735. 		switch val.(type) {

  736. 		case []interface{}:

  737. 			// already a slice, do nothing

  738. 			actor.Context = val.([]interface{})

  739. 		default:

  740. 			actor.Context = []interface{}{val}

  741. 		}

  742. 	}(flexActor.Context)

  743. 

  744. 	return nil

  745. }