logo

pleroma

My custom branche(s) on git.pleroma.social/pleroma/pleroma git clone https://hacktivis.me/git/pleroma.git

web_finger.ex (7429B)

    

  1. # Pleroma: A lightweight social networking server
  2. # Copyright © 2017-2022 Pleroma Authors <https://pleroma.social/>
  3. # SPDX-License-Identifier: AGPL-3.0-only
  5. defmodule Pleroma.Web.WebFinger do
  6.   alias Pleroma.HTTP
  7.   alias Pleroma.User
  8.   alias Pleroma.Web.ActivityPub.Publisher
  9.   alias Pleroma.Web.Endpoint
  10.   alias Pleroma.Web.XML
  11.   alias Pleroma.XmlBuilder
  12.   require Jason
  13.   require Logger
  15.   def host_meta do
  16.     base_url = Endpoint.url()
  18.     {
  19.       :XRD,
  20.       %{xmlns: "http://docs.oasis-open.org/ns/xri/xrd-1.0"},
  21.       {
  22.         :Link,
  23.         %{
  24.           rel: "lrdd",
  25.           type: "application/xrd+xml",
  26.           template: "#{base_url}/.well-known/webfinger?resource={uri}"
  27.         }
  28.       }
  29.     }
  30.     |> XmlBuilder.to_doc()
  31.   end
  33.   def webfinger(resource, fmt) when fmt in ["XML", "JSON"] do
  34.     host = Pleroma.Web.Endpoint.host()
  36.     regex =
  37.       if webfinger_domain = Pleroma.Config.get([__MODULE__, :domain]) do
  38.         ~r/(acct:)?(?<username>[a-z0-9A-Z_\.-]+)@(#{host}|#{webfinger_domain})/
  39.       else
  40.         ~r/(acct:)?(?<username>[a-z0-9A-Z_\.-]+)@#{host}/
  41.       end
  43.     with %{"username" => username} <- Regex.named_captures(regex, resource),
  44.          %User{} = user <- User.get_cached_by_nickname(username) do
  45.       {:ok, represent_user(user, fmt)}
  46.     else
  47.       _e ->
  48.         with %User{} = user <- User.get_cached_by_ap_id(resource) do
  49.           {:ok, represent_user(user, fmt)}
  50.         else
  51.           _e ->
  52.             {:error, "Couldn't find user"}
  53.         end
  54.     end
  55.   end
  57.   defp gather_links(%User{} = user) do
  58.     [
  59.       %{
  60.         "rel" => "http://webfinger.net/rel/profile-page",
  61.         "type" => "text/html",
  62.         "href" => user.ap_id
  63.       }
  64.     ] ++ Publisher.gather_webfinger_links(user)
  65.   end
  67.   defp gather_aliases(%User{} = user) do
  68.     [user.ap_id | user.also_known_as]
  69.   end
  71.   def represent_user(user, "JSON") do
  72.     %{
  73.       "subject" => "acct:#{user.nickname}@#{host()}",
  74.       "aliases" => gather_aliases(user),
  75.       "links" => gather_links(user)
  76.     }
  77.   end
  79.   def represent_user(user, "XML") do
  80.     aliases =
  81.       user
  82.       |> gather_aliases()
  83.       |> Enum.map(&{:Alias, &1})
  85.     links =
  86.       gather_links(user)
  87.       |> Enum.map(fn link -> {:Link, link} end)
  89.     {
  90.       :XRD,
  91.       %{xmlns: "http://docs.oasis-open.org/ns/xri/xrd-1.0"},
  92.       [
  93.         {:Subject, "acct:#{user.nickname}@#{host()}"}
  94.       ] ++ aliases ++ links
  95.     }
  96.     |> XmlBuilder.to_doc()
  97.   end
  99.   def host do
  100.     Pleroma.Config.get([__MODULE__, :domain]) || Pleroma.Web.Endpoint.host()
  101.   end
  103.   defp webfinger_from_xml(body) do
  104.     with {:ok, doc} <- XML.parse_document(body) do
  105.       subject = XML.string_from_xpath("//Subject", doc)
  107.       subscribe_address =
  108.         ~s{//Link[@rel="http://ostatus.org/schema/1.0/subscribe"]/@template}
  109.         |> XML.string_from_xpath(doc)
  111.       ap_id =
  112.         ~s{//Link[@rel="self" and @type="application/activity+json"]/@href}
  113.         |> XML.string_from_xpath(doc)
  115.       data = %{
  116.         "subject" => subject,
  117.         "subscribe_address" => subscribe_address,
  118.         "ap_id" => ap_id
  119.       }
  121.       {:ok, data}
  122.     end
  123.   end
  125.   defp webfinger_from_json(body) do
  126.     with {:ok, doc} <- Jason.decode(body) do
  127.       data =
  128.         Enum.reduce(doc["links"], %{"subject" => doc["subject"]}, fn link, data ->
  129.           case {link["type"], link["rel"]} do
  130.             {"application/activity+json", "self"} ->
  131.               Map.put(data, "ap_id", link["href"])
  133.             {"application/ld+json; profile=\"https://www.w3.org/ns/activitystreams\"", "self"} ->
  134.               Map.put(data, "ap_id", link["href"])
  136.             {nil, "http://ostatus.org/schema/1.0/subscribe"} ->
  137.               Map.put(data, "subscribe_address", link["template"])
  139.             _ ->
  140.               Logger.debug("Unhandled type: #{inspect(link["type"])}")
  141.               data
  142.           end
  143.         end)
  145.       {:ok, data}
  146.     end
  147.   end
  149.   def get_template_from_xml(body) do
  150.     xpath = "//Link[@rel='lrdd']/@template"
  152.     with {:ok, doc} <- XML.parse_document(body),
  153.          template when template != nil <- XML.string_from_xpath(xpath, doc) do
  154.       {:ok, template}
  155.     end
  156.   end
  158.   @cachex Pleroma.Config.get([:cachex, :provider], Cachex)
  159.   def find_lrdd_template(domain) do
  160.     @cachex.fetch!(:host_meta_cache, domain, fn _ ->
  161.       {:commit, fetch_lrdd_template(domain)}
  162.     end)
  163.   rescue
  164.     e -> {:error, "Cachex error: #{inspect(e)}"}
  165.   end
  167.   defp fetch_lrdd_template(domain) do
  168.     # WebFinger is restricted to HTTPS - https://tools.ietf.org/html/rfc7033#section-9.1
  169.     meta_url = "https://#{domain}/.well-known/host-meta"
  171.     with {:ok, %{status: status, body: body}} when status in 200..299 <- HTTP.get(meta_url) do
  172.       get_template_from_xml(body)
  173.     else
  174.       error ->
  175.         Logger.warning("Can't find LRDD template in #{inspect(meta_url)}: #{inspect(error)}")
  176.         {:error, :lrdd_not_found}
  177.     end
  178.   end
  180.   defp get_address_from_domain(domain, "acct:" <> _ = encoded_account) when is_binary(domain) do
  181.     case find_lrdd_template(domain) do
  182.       {:ok, template} ->
  183.         String.replace(template, "{uri}", encoded_account)
  185.       _ ->
  186.         "https://#{domain}/.well-known/webfinger?resource=#{encoded_account}"
  187.     end
  188.   end
  190.   defp get_address_from_domain(domain, account) when is_binary(domain) do
  191.     encoded_account = URI.encode("acct:#{account}")
  192.     get_address_from_domain(domain, encoded_account)
  193.   end
  195.   defp get_address_from_domain(_, _), do: {:error, :webfinger_no_domain}
  197.   @spec finger(String.t()) :: {:ok, map()} | {:error, any()}
  198.   def finger(account) do
  199.     account = String.trim_leading(account, "@")
  201.     domain =
  202.       with [_name, domain] <- String.split(account, "@") do
  203.         domain
  204.       else
  205.         _e ->
  206.           URI.parse(account).host
  207.       end
  209.     with address when is_binary(address) <- get_address_from_domain(domain, account),
  210.          {:ok, %{status: status, body: body, headers: headers}} when status in 200..299 <-
  211.            HTTP.get(
  212.              address,
  213.              [{"accept", "application/xrd+xml,application/jrd+json"}]
  214.            ) do
  215.       case List.keyfind(headers, "content-type", 0) do
  216.         {_, content_type} ->
  217.           case Plug.Conn.Utils.media_type(content_type) do
  218.             {:ok, "application", subtype, _} when subtype in ~w(xrd+xml xml) ->
  219.               webfinger_from_xml(body)
  221.             {:ok, "application", subtype, _} when subtype in ~w(jrd+json json) ->
  222.               webfinger_from_json(body)
  224.             _ ->
  225.               {:error, {:content_type, content_type}}
  226.           end
  228.         _ ->
  229.           {:error, {:content_type, nil}}
  230.       end
  231.       |> case do
  232.         {:ok, data} -> validate_webfinger(address, data)
  233.         error -> error
  234.       end
  235.     else
  236.       error ->
  237.         Logger.debug("Couldn't finger #{account}: #{inspect(error)}")
  238.         error
  239.     end
  240.   end
  242.   defp validate_webfinger(request_url, %{"subject" => "acct:" <> acct = subject} = data) do
  243.     with [_name, acct_host] <- String.split(acct, "@"),
  244.          {_, url} <- {:address, get_address_from_domain(acct_host, subject)},
  245.          %URI{host: request_host} <- URI.parse(request_url),
  246.          %URI{host: acct_host} <- URI.parse(url),
  247.          {_, true} <- {:hosts_match, acct_host == request_host} do
  248.       {:ok, data}
  249.     else
  250.       _ -> {:error, {:webfinger_invalid, request_url, data}}
  251.     end
  252.   end
  254.   defp validate_webfinger(url, data), do: {:error, {:webfinger_invalid, url, data}}
  255. end