Эхлэл Бүгдийг харах Тусламж
Нэвтрэх
RISCI_ATOM
/
sydent
-ын хуулбар https://github.com/matrix-org/sydent.git
1
0
Салаа 0
Файлууд Асуудлууд 0 Мэдлэгийн сан
Мод: aeda939403
Салаанууд Тагууд
sydent
/
sydent
/
http
/
servlets
/
blindlysignstuffservlet.py

blindlysignstuffservlet.py 2.3 KB
Түүх Анхны өгөгдөл

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980 
  1. # -*- coding: utf-8 -*-
    2. 

  2. 

  3. # Copyright 2016 OpenMarket Ltd
    4. 

  4. #
    5. 

  5. # Licensed under the Apache License, Version 2.0 (the "License");
    6. 

  6. # you may not use this file except in compliance with the License.
    7. 

  7. # You may obtain a copy of the License at
    8. 

  8. #
    9. 

  9. #     http://www.apache.org/licenses/LICENSE-2.0
    10. 

  10. #
    11. 

  11. # Unless required by applicable law or agreed to in writing, software
    12. 

  12. # distributed under the License is distributed on an "AS IS" BASIS,
    13. 

  13. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    14. 

  14. # See the License for the specific language governing permissions and
    15. 

  15. # limitations under the License.
    16. 

  16. from __future__ import absolute_import
    17. 

  17. 

  18. from twisted.web.resource import Resource
    19. 

  19. 

  20. import logging
    21. 

  21. import signedjson.key
    22. 

  22. import signedjson.sign
    23. 

  23. from sydent.db.invite_tokens import JoinTokenStore
    24. 

  24. from sydent.http.servlets import get_args, jsonwrap, send_cors, MatrixRestError
    25. 

  25. from sydent.http.auth import authV2
    26. 

  26. 

  27. logger = logging.getLogger(__name__)
    28. 

  28. 

  29. 

  30. class BlindlySignStuffServlet(Resource):
    31. 

  31.     isLeaf = True
    32. 

  32. 

  33.     def __init__(self, syd, require_auth=False):
    34. 

  34.         self.sydent = syd
    35. 

  35.         self.server_name = syd.server_name
    36. 

  36.         self.tokenStore = JoinTokenStore(syd)
    37. 

  37.         self.require_auth = require_auth
    38. 

  38. 

  39.     @jsonwrap
    40. 

  40.     def render_POST(self, request):
    41. 

  41.         send_cors(request)
    42. 

  42. 

  43.         if self.require_auth:
    44. 

  44.             authV2(self.sydent, request)
    45. 

  45. 

  46.         args = get_args(request, ("private_key", "token", "mxid"))
    47. 

  47. 

  48.         private_key_base64 = args['private_key']
    49. 

  49.         token = args['token']
    50. 

  50.         mxid = args['mxid']
    51. 

  51. 

  52.         sender = self.tokenStore.getSenderForToken(token)
    53. 

  53.         if sender is None:
    54. 

  54.             raise MatrixRestError(404, "M_UNRECOGNIZED", "Didn't recognize token")
    55. 

  55. 

  56.         to_sign = {
    57. 

  57.             "mxid": mxid,
    58. 

  58.             "sender": sender,
    59. 

  59.             "token": token,
    60. 

  60.         }
    61. 

  61.         try:
    62. 

  62.             private_key = signedjson.key.decode_signing_key_base64(
    63. 

  63.                 "ed25519",
    64. 

  64.                 "0",
    65. 

  65.                 private_key_base64
    66. 

  66.             )
    67. 

  67.             signed = signedjson.sign.sign_json(
    68. 

  68.                 to_sign,
    69. 

  69.                 self.server_name,
    70. 

  70.                 private_key
    71. 

  71.             )
    72. 

  72.         except:
    73. 

  73.             logger.exception("signing failed")
    74. 

  74.             raise MatrixRestError(500, "M_UNKNOWN", "Internal Server Error")
    75. 

  75. 

  76.         return signed
    77. 

  77. 

  78.     def render_OPTIONS(self, request):
    79. 

  79.         send_cors(request)
    80. 

  80.         return b''
    81.