| 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849 |
- # frozen_string_literal: true
- class VerifyLinkService < BaseService
- def call(field)
- @link_back = ActivityPub::TagManager.instance.url_for(field.account)
- @url = field.value_for_verification
- perform_request!
- return unless link_back_present?
- field.mark_verified!
- rescue OpenSSL::SSL::SSLError, HTTP::Error, Addressable::URI::InvalidURIError, Mastodon::HostValidationError, Mastodon::LengthValidationError, IPAddr::AddressFamilyError => e
- Rails.logger.debug { "Error fetching link #{@url}: #{e}" }
- nil
- end
- private
- def perform_request!
- @body = Request.new(:get, @url).add_headers('Accept' => 'text/html').perform do |res|
- res.code == 200 ? res.body_with_limit : nil
- end
- end
- def link_back_present?
- return false if @body.blank?
- links = Nokogiri::HTML5(@body).xpath('//a[contains(concat(" ", normalize-space(@rel), " "), " me ")]|//link[contains(concat(" ", normalize-space(@rel), " "), " me ")]')
- if links.any? { |link| link['href']&.downcase == @link_back.downcase }
- true
- elsif links.empty?
- false
- else
- link_redirects_back?(links.first['href'])
- end
- end
- def link_redirects_back?(test_url)
- return false if test_url.blank?
- redirect_to_url = Request.new(:head, test_url, follow: false).perform do |res|
- res.headers['Location']
- end
- redirect_to_url == @link_back
- end
- end
|
