| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192 |
- import os
- from requests_http_signature import HTTPSignatureHeaderAuth
- PROTOCOL = os.environ['FORGEFED_PROTOCOL' ] if 'FORGEFED_PROTOCOL' in os.environ else 'https'
- HOSTNAME = os.environ['FORGEFED_HOSTNAME' ] if 'FORGEFED_HOSTNAME' in os.environ else 'example.net'
- TCP_PORT = os.environ['FORGEFED_TCP_PORT' ] if 'FORGEFED_TCP_PORT' in os.environ else 80
- PATH_PREFIX = os.environ['FORGEFED_PATH_PREFIX'] if 'FORGEFED_PATH_PREFIX' in os.environ else ''
- LOCAL_CONFIG = \
- { \
- "$SCHEME" : PROTOCOL , \
- "$HOST" : HOSTNAME , \
- "$PORT" : TCP_PORT , \
- "$PATH_PREFIX" : PATH_PREFIX , \
- "Person.id" : "$DOMAIN/$id" , \
- "Person.likes" : "$id/likes" , \
- "Person.following" : "$id/following" , \
- "Person.followers" : "$id/followers" , \
- "Person.liked" : "$id/liked" , \
- "Person.inbox" : "$id/inbox" , \
- "Person.outbox" : "$id/outbox" , \
- "Person.url" : "$id" , \
- #"Note.id" : "$temp_uuid" , \
- "Note.id" : "$DOMAIN/$temp_uuid" , \
- 'Note.attributedTo' : "$from_id" , \
- 'Note.content' : "<p>$source.content</p>" , \
- 'Note.published' : "$NOW" , \
- 'Note.url' : "$from_id/note/$temp_uuid"
- }
- URL_REGEX = r'^' + PROTOCOL + '://' + HOSTNAME + '/' + PATH_PREFIX
- PATH_REGEX = r'^/' + PATH_PREFIX
- LOCAL_ID_REGEX = r'[^0-9a-zA-Z_-]+'
- FOREIGN_ID_REGEX = r'[0-9a-zA-Z_-]+@[0-9a-zA-Z-][0-9a-zA-Z.-]*[0-9a-zA-Z-]\.[a-z]+'
- AP_NS_URLS = [ 'https://www.w3.org/ns/activitystreams' ,
- 'https://w3id.org/security/v1' ]
- VERVIS_ACTOR_ID = 'bob@forge.angeley.es'
- VERVIS_ACTOR_URL = 'https://forge.angeley.es/'
- VERVIS_INBOX_URL = 'https://forge.angeley.es/inbox'
- TEST_REMOTE_ACTOR_ID = VERVIS_ACTOR_ID
- TEST_REMOTE_ACTOR_URL = VERVIS_ACTOR_URL
- TEST_REMOTE_INBOX_URL = VERVIS_INBOX_URL
- HTTP_SIG_PUB_KEY_FILE = 'public.pem'
- HTTP_SIG_PVT_KEY_FILE = 'private.pem'
- with open(HTTP_SIG_PUB_KEY_FILE , 'rb') as public_key_file:
- PUBLIC_KEY = public_key_file .read()
- with open(HTTP_SIG_PVT_KEY_FILE , 'rb') as private_key_file:
- PRIVATE_KEY = private_key_file.read()
- AP_DUMMY_ACTOR = PROTOCOL + '://' + HOSTNAME + PATH_PREFIX + '/alice@' + HOSTNAME # vervis extension
- AP_POST_HEADERS = { 'Content-Type' : 'application/activity+json' ,
- 'Accept' : 'application/json' ,
- 'ActivityPub-Actor' : AP_DUMMY_ACTOR } # vervis extension
- AP_SIGN_HEADERS = [ '(request-target)' , 'host' , 'date' , 'Digest' , 'ActivityPub-Actor' ] # vervis extension (ActivityPub-Actor)
- AP_SIGN_ALGORITHM = 'rsa-sha256'
- HTTP_SIG_KEY_ID = AP_DUMMY_ACTOR + '#rsa-pub-key'
- KEYFILE_PUB_HEADER = b'-----BEGIN PUBLIC KEY-----\n'
- KEYFILE_PUB_FOOTER = b'-----END PUBLIC KEY-----\n'
- KEYFILE_PVT_HEADER = b'-----BEGIN RSA PRIVATE KEY-----\n'
- KEYFILE_PVT_FOOTER = b'-----END RSA PRIVATE KEY-----\n'
- HTTP_SIG_AUTH = HTTPSignatureHeaderAuth(headers=AP_SIGN_HEADERS , algorithm=AP_SIGN_ALGORITHM , \
- key_id=HTTP_SIG_KEY_ID , key=PRIVATE_KEY )
- STATUS_OK = '200 OK'
- STATUS_NOT_FOUND = '404 NOT FOUND'
- RESP_NOT_FOUND = [ STATUS_NOT_FOUND , '{ "message" : "resource not found" }' ]
- RESP_INVALID_JSON = [ STATUS_OK , '{ "message" : "invalid JSON struct" }' ]
- RESP_INVALID_ACTIVITY = [ STATUS_OK , '{ "message" : "invalid activity-pub activity" }' ]
- # DEBUG BEGIN
- from pprint import pprint ; print("HTTP_SIG_AUTH=") ; pprint(vars(HTTP_SIG_AUTH))
- DBG_COLOR_INCOMING = 'red'
- DBG_COLOR_OUTGOING = 'green'
- # DEBUG END
- ## validations/sanity/env check ##
- if PUBLIC_KEY[0:27] != KEYFILE_PUB_HEADER or \
- PUBLIC_KEY[-25:] != KEYFILE_PUB_FOOTER or \
- len(PUBLIC_KEY) != 451 :
- raise ValueError("invalid keyfile: '" + HTTP_SIG_PUB_KEY_FILE + "'")
- if PRIVATE_KEY[0:32] != KEYFILE_PVT_HEADER or \
- PRIVATE_KEY[-30:] != KEYFILE_PVT_FOOTER or \
- len(PRIVATE_KEY) != 1675 :
- raise ValueError("invalid keyfile: '" + HTTP_SIG_PVT_KEY_FILE + "'")
|
