/* snac - A simple, minimalistic ActivityPub instance */ /* copyright (c) 2022 - 2024 grunfink et al. / MIT license */ #include "xs.h" #include "xs_json.h" #include "xs_curl.h" #include "xs_mime.h" #include "snac.h" int webfinger_request_signed(snac *snac, const char *qs, xs_str **actor, xs_str **user) /* queries the webfinger for qs and fills the required fields */ { int status; xs *payload = NULL; int p_size = 0; xs *headers = xs_dict_new(); xs *l = NULL; const char *host = NULL; xs *resource = NULL; if (xs_startswith(qs, "https:/") || xs_startswith(qs, "http:/")) { /* actor query: pick the host */ xs *s1 = xs_replace_n(qs, "http:/" "/", "", 1); xs *s = xs_replace_n(s1, "https:/" "/", "", 1); l = xs_split_n(s, "/", 1); host = xs_list_get(l, 0); resource = xs_dup(qs); } else { /* it's a user */ xs *s = xs_strip_chars_i(xs_dup(qs), "@."); l = xs_split_n(s, "@", 1); if (xs_list_len(l) == 2) { host = xs_list_get(l, 1); resource = xs_fmt("acct:%s", s); } } if (host == NULL || resource == NULL) return HTTP_STATUS_BAD_REQUEST; headers = xs_dict_append(headers, "accept", "application/json"); headers = xs_dict_append(headers, "user-agent", USER_AGENT); xs *obj = NULL; xs *cached_qs = xs_fmt("webfinger:%s", qs); /* is it cached? */ if (valid_status(status = object_get(cached_qs, &obj))) { /* nothing more to do */ } else /* is it a query about one of us? */ if (strcmp(host, xs_dict_get(srv_config, "host")) == 0) { /* route internally */ xs *req = xs_dict_new(); xs *q_vars = xs_dict_new(); char *ctype; q_vars = xs_dict_append(q_vars, "resource", resource); req = xs_dict_append(req, "q_vars", q_vars); status = webfinger_get_handler(req, "/.well-known/webfinger", &payload, &p_size, &ctype); } else { const char *proto = xs_dict_get_def(srv_config, "protocol", "https"); xs *url = xs_fmt("%s:/" "/%s/.well-known/webfinger?resource=%s", proto, host, resource); if (snac == NULL) xs_http_request("GET", url, headers, NULL, 0, &status, &payload, &p_size, 0); else http_signed_request(snac, "GET", url, headers, NULL, 0, &status, &payload, &p_size, 0); } if (obj == NULL && valid_status(status) && payload) { obj = xs_json_loads(payload); if (obj) object_add(cached_qs, obj); else status = HTTP_STATUS_BAD_REQUEST; } if (obj) { if (user != NULL) { const char *subject = xs_dict_get(obj, "subject"); if (subject) *user = xs_replace_n(subject, "acct:", "", 1); } if (actor != NULL) { const xs_list *list = xs_dict_get(obj, "links"); int c = 0; const char *v; while (xs_list_next(list, &v, &c)) { if (xs_type(v) == XSTYPE_DICT) { const char *type = xs_dict_get(v, "type"); if (type && (strcmp(type, "application/activity+json") == 0 || strcmp(type, "application/ld+json; profile=\"https:/" "/www.w3.org/ns/activitystreams\"") == 0)) { *actor = xs_dup(xs_dict_get(v, "href")); break; } } } } } return status; } int webfinger_request(const char *qs, xs_str **actor, xs_str **user) /* queries the webfinger for qs and fills the required fields */ { return webfinger_request_signed(NULL, qs, actor, user); } int webfinger_request_fake(const char *qs, xs_str **actor, xs_str **user) /* queries the webfinger and, if it fails, a user is faked if possible */ { int status; if (!valid_status(status = webfinger_request(qs, actor, user))) { if (xs_startswith(qs, "https:/") || xs_startswith(qs, "http:/")) { xs *l = xs_split(qs, "/"); if (xs_list_len(l) > 3) { srv_debug(1, xs_fmt("webfinger error querying %s %d -- faking it", qs, status)); /* i'll end up in hell for this */ *user = xs_fmt("%s@%s", xs_list_get(l, -1), xs_list_get(l, 2)); status = HTTP_STATUS_RESET_CONTENT; } } } return status; } int webfinger_get_handler(xs_dict *req, const char *q_path, xs_val **body, int *b_size, char **ctype) /* serves webfinger queries */ { int status; (void)b_size; if (strcmp(q_path, "/.well-known/webfinger") != 0) return 0; const char *q_vars = xs_dict_get(req, "q_vars"); const char *resource = xs_dict_get(q_vars, "resource"); if (resource == NULL) return HTTP_STATUS_BAD_REQUEST; snac snac; int found = 0; if (xs_startswith(resource, "https:/") || xs_startswith(resource, "http:/")) { /* actor search: find a user with this actor */ xs *l = xs_split(resource, "/"); const char *uid = xs_list_get(l, -1); if (uid) found = user_open(&snac, uid); } else if (xs_startswith(resource, "acct:")) { /* it's an account name */ xs *an = xs_replace_n(resource, "acct:", "", 1); xs *l = NULL; /* strip a possible leading @ */ if (xs_startswith(an, "@")) an = xs_crop_i(an, 1, 0); l = xs_split_n(an, "@", 1); if (xs_list_len(l) == 2) { const char *uid = xs_list_get(l, 0); const char *host = xs_list_get(l, 1); if (strcmp(host, xs_dict_get(srv_config, "host")) == 0) found = user_open(&snac, uid); } } if (found) { /* build the object */ xs *acct; xs *aaj = xs_dict_new(); xs *prof = xs_dict_new(); xs *links = xs_list_new(); xs *obj = xs_dict_new(); acct = xs_fmt("acct:%s@%s", xs_dict_get(snac.config, "uid"), xs_dict_get(srv_config, "host")); aaj = xs_dict_append(aaj, "rel", "self"); aaj = xs_dict_append(aaj, "type", "application/activity+json"); aaj = xs_dict_append(aaj, "href", snac.actor); links = xs_list_append(links, aaj); /* duplicate with the ld+json type */ aaj = xs_dict_set(aaj, "type", "application/ld+json; profile=\"https:/" "/www.w3.org/ns/activitystreams\""); links = xs_list_append(links, aaj); prof = xs_dict_append(prof, "rel", "http://webfinger.net/rel/profile-page"); prof = xs_dict_append(prof, "type", "text/html"); prof = xs_dict_append(prof, "href", snac.actor); links = xs_list_append(links, prof); const char *avatar = xs_dict_get(snac.config, "avatar"); if (!xs_is_null(avatar) && *avatar) { xs *d = xs_dict_new(); d = xs_dict_append(d, "rel", "http:/" "/webfinger.net/rel/avatar"); d = xs_dict_append(d, "type", xs_mime_by_ext(avatar)); d = xs_dict_append(d, "href", avatar); links = xs_list_append(links, d); } obj = xs_dict_append(obj, "subject", acct); obj = xs_dict_append(obj, "links", links); xs_str *j = xs_json_dumps(obj, 4); user_free(&snac); status = HTTP_STATUS_OK; *body = j; *ctype = "application/jrd+json"; } else status = HTTP_STATUS_NOT_FOUND; srv_debug(1, xs_fmt("webfinger_get_handler resource=%s %d", resource, status)); return status; }