peertube/server/lib/job-queue/handlers/utils/activitypub-http-utils.ts

import { buildSignedActivity } from '../../../../helpers/activitypub'
import { getServerActor } from '../../../../helpers/utils'
import { ActorModel } from '../../../../models/activitypub/actor'
import { sha256 } from '../../../../helpers/core-utils'

type Payload = { body: any, signatureActorId?: number }

async function computeBody (payload: Payload) {
  let body = payload.body

  if (payload.signatureActorId) {
    const actorSignature = await ActorModel.load(payload.signatureActorId)
    if (!actorSignature) throw new Error('Unknown signature actor id.')
    body = await buildSignedActivity(actorSignature, payload.body)
  }

  return body
}

async function buildSignedRequestOptions (payload: Payload) {
  let actor: ActorModel | null
  if (payload.signatureActorId) {
    actor = await ActorModel.load(payload.signatureActorId)
    if (!actor) throw new Error('Unknown signature actor id.')
  } else {
    // We need to sign the request, so use the server
    actor = await getServerActor()
  }

  const keyId = actor.getWebfingerUrl()
  return {
    algorithm: 'rsa-sha256',
    authorizationHeaderName: 'Signature',
    keyId,
    key: actor.privateKey,
    headers: [ 'date', 'host', 'digest', '(request-target)' ]
  }
}

function buildGlobalHeaders (body: object) {
  const digest = 'SHA-256=' + sha256(JSON.stringify(body), 'base64')

  return {
    'Digest': digest
  }
}

export {
  buildGlobalHeaders,
  computeBody,
  buildSignedRequestOptions
}
Move job queue to redis We'll use it as cache in the future. /!\ You'll loose your old jobs (pending jobs too) so upgrade only when you don't have pending job anymore. 2018-01-25 09:05:18 -05:00			`import { buildSignedActivity } from '../../../../helpers/activitypub'`
			`import { getServerActor } from '../../../../helpers/utils'`
			`import { ActorModel } from '../../../../models/activitypub/actor'`
Add more headers to broadcast/unicast 2018-10-10 02:51:58 -04:00			`import { sha256 } from '../../../../helpers/core-utils'`
Move job queue to redis We'll use it as cache in the future. /!\ You'll loose your old jobs (pending jobs too) so upgrade only when you don't have pending job anymore. 2018-01-25 09:05:18 -05:00
Add more headers to broadcast/unicast 2018-10-10 02:51:58 -04:00			`type Payload = { body: any, signatureActorId?: number }`

			`async function computeBody (payload: Payload) {`
Move job queue to redis We'll use it as cache in the future. /!\ You'll loose your old jobs (pending jobs too) so upgrade only when you don't have pending job anymore. 2018-01-25 09:05:18 -05:00			`let body = payload.body`

			`if (payload.signatureActorId) {`
			`const actorSignature = await ActorModel.load(payload.signatureActorId)`
			`if (!actorSignature) throw new Error('Unknown signature actor id.')`
			`body = await buildSignedActivity(actorSignature, payload.body)`
			`}`

			`return body`
			`}`

Add more headers to broadcast/unicast 2018-10-10 02:51:58 -04:00			`async function buildSignedRequestOptions (payload: Payload) {`
expliciting type checks and predicates (server only) 2018-07-25 16:01:25 -04:00			`let actor: ActorModel \| null`
Move job queue to redis We'll use it as cache in the future. /!\ You'll loose your old jobs (pending jobs too) so upgrade only when you don't have pending job anymore. 2018-01-25 09:05:18 -05:00			`if (payload.signatureActorId) {`
			`actor = await ActorModel.load(payload.signatureActorId)`
			`if (!actor) throw new Error('Unknown signature actor id.')`
			`} else {`
			`// We need to sign the request, so use the server`
			`actor = await getServerActor()`
			`}`

			`const keyId = actor.getWebfingerUrl()`
			`return {`
			`algorithm: 'rsa-sha256',`
			`authorizationHeaderName: 'Signature',`
			`keyId,`
Add more headers to broadcast/unicast 2018-10-10 02:51:58 -04:00			`key: actor.privateKey,`
			`headers: [ 'date', 'host', 'digest', '(request-target)' ]`
			`}`
			`}`

			`function buildGlobalHeaders (body: object) {`
			`const digest = 'SHA-256=' + sha256(JSON.stringify(body), 'base64')`

			`return {`
			`'Digest': digest`
Move job queue to redis We'll use it as cache in the future. /!\ You'll loose your old jobs (pending jobs too) so upgrade only when you don't have pending job anymore. 2018-01-25 09:05:18 -05:00			`}`
			`}`

			`export {`
Add more headers to broadcast/unicast 2018-10-10 02:51:58 -04:00			`buildGlobalHeaders,`
Move job queue to redis We'll use it as cache in the future. /!\ You'll loose your old jobs (pending jobs too) so upgrade only when you don't have pending job anymore. 2018-01-25 09:05:18 -05:00			`computeBody,`
			`buildSignedRequestOptions`
			`}`