Home Explore Help
Sign In
RISCI_ATOM
/
mastodon
mirror of https://github.com/tootsuite/mastodon.git
1
0
Fork 0
Files Issues 8 Wiki
Tree: d099cf67c0
Branches Tags
mastodon
/
app
/
services
/
keys
/
claim_service.rb

claim_service.rb 2.3 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879 
  1. # frozen_string_literal: true
    2. 

  2. 

  3. class Keys::ClaimService < BaseService
    4. 

  4.   HEADERS = { 'Content-Type' => 'application/activity+json' }.freeze
    5. 

  5. 

  6.   class Result < ActiveModelSerializers::Model
    7. 

  7.     attributes :account, :device_id, :key_id,
    8. 

  8.                :key, :signature
    9. 

  9. 

  10.     def initialize(account, device_id, key_attributes = {})
    11. 

  11.       super(
    12. 

  12.         account: account,
    13. 

  13.         device_id: device_id,
    14. 

  14.         key_id: key_attributes[:key_id],
    15. 

  15.         key: key_attributes[:key],
    16. 

  16.         signature: key_attributes[:signature],
    17. 

  17.       )
    18. 

  18.     end
    19. 

  19.   end
    20. 

  20. 

  21.   def call(source_account, target_account_id, device_id)
    22. 

  22.     @source_account = source_account
    23. 

  23.     @target_account = Account.find(target_account_id)
    24. 

  24.     @device_id      = device_id
    25. 

  25. 

  26.     if @target_account.local?
    27. 

  27.       claim_local_key!
    28. 

  28.     else
    29. 

  29.       claim_remote_key!
    30. 

  30.     end
    31. 

  31.   rescue ActiveRecord::RecordNotFound
    32. 

  32.     nil
    33. 

  33.   end
    34. 

  34. 

  35.   private
    36. 

  36. 

  37.   def claim_local_key!
    38. 

  38.     device = @target_account.devices.find_by(device_id: @device_id)
    39. 

  39.     key    = nil
    40. 

  40. 

  41.     ApplicationRecord.transaction do
    42. 

  42.       key = device.one_time_keys.order(Arel.sql('random()')).first!
    43. 

  43.       key.destroy!
    44. 

  44.     end
    45. 

  45. 

  46.     @result = Result.new(@target_account, @device_id, key)
    47. 

  47.   end
    48. 

  48. 

  49.   def claim_remote_key!
    50. 

  50.     query_result = QueryService.new.call(@target_account)
    51. 

  51.     device       = query_result.find(@device_id)
    52. 

  52. 

  53.     return unless device.present? && device.valid_claim_url?
    54. 

  54. 

  55.     json = fetch_resource_with_post(device.claim_url)
    56. 

  56. 

  57.     return unless json.present? && json['publicKeyBase64'].present?
    58. 

  58. 

  59.     @result = Result.new(@target_account, @device_id, key_id: json['id'], key: json['publicKeyBase64'], signature: json.dig('signature', 'signatureValue'))
    60. 

  60.   rescue HTTP::Error, OpenSSL::SSL::SSLError, Mastodon::Error => e
    61. 

  61.     Rails.logger.debug { "Claiming one-time key for #{@target_account.acct}:#{@device_id} failed: #{e}" }
    62. 

  62.     nil
    63. 

  63.   end
    64. 

  64. 

  65.   def fetch_resource_with_post(uri)
    66. 

  66.     build_post_request(uri).perform do |response|
    67. 

  67.       raise Mastodon::UnexpectedResponseError, response unless response_successful?(response) || response_error_unsalvageable?(response)
    68. 

  68. 

  69.       body_to_json(response.body_with_limit) if response.code == 200
    70. 

  70.     end
    71. 

  71.   end
    72. 

  72. 

  73.   def build_post_request(uri)
    74. 

  74.     Request.new(:post, uri).tap do |request|
    75. 

  75.       request.on_behalf_of(@source_account)
    76. 

  76.       request.add_headers(HEADERS)
    77. 

  77.     end
    78. 

  78.   end
    79. 

  79. end
    80.