closed-social
/
mastodon
3
0
Fork 2
Code Issues 5 Pull Requests 0 Projects 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6442 Commits
4 Branches
567 MiB
Tree: 3281df0df1
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '3281df0df1'
${ noResults }
mastodon/app/controllers/api/subscriptions_controller.rb

51 lines
1.0 KiB
Raw Normal View History

Fix rubocop issues, introduce usage of frozen literal to improve performance
8 years ago
Clean up for api/base controller (#3629) * Move ApiController to Api/BaseController * API controllers inherit from Api::BaseController * Add coverage for various error cases in api/base controller
7 years ago
Refactoring Grape API methods into normal controllers & other things
8 years ago
Escape PuSH challenge and change subscriptions and salmon APIs to text/plain
8 years ago
Refactoring Grape API methods into normal controllers & other things
8 years ago
Clean up api/subscriptions controller (#3448)
7 years ago
Refactoring Grape API methods into normal controllers & other things
8 years ago
Upgrade to Rails 5.0.0.1
8 years ago
Refactoring Grape API methods into normal controllers & other things
8 years ago
Adding domain blocks
8 years ago
Delegate processing of incoming PuSH data to background workers
8 years ago
Refactoring Grape API methods into normal controllers & other things
8 years ago
Fix #2706 - Always respond with 200 to PuSH payloads (#2733) Fix #2196 - Respond with 201 when Salmon accepted, 400 when unverified Fix #2629 - Correctly handle confirm_domain? for local accounts Unify rules for extracting author acct from XML, prefer <email>, fall back to <name> + <uri> (see also #2017, #2172)
7 years ago
Refactoring Grape API methods into normal controllers & other things
8 years ago
Clean up api/subscriptions controller (#3448)
7 years ago
HTTP signatures (#4146) * Add Request class with HTTP signature generator Spec: https://tools.ietf.org/html/draft-cavage-http-signatures-06 * Add HTTP signature verification concern * Add test for SignatureVerification concern * Add basic test for Request class * Make PuSH subscribe/unsubscribe requests use new Request class Accidentally fix lease_seconds not being set and sent properly, and change the new minimum subscription duration to 1 day * Make all PuSH workers use new Request class * Make Salmon sender use new Request class * Make FetchLinkService use new Request class * Make FetchAtomService use the new Request class * Make Remotable use the new Request class * Make ResolveRemoteAccountService use the new Request class * Add more tests * Allow +-30 seconds window for signed request to remain valid * Disable time window validation for signed requests, restore 7 days as PuSH subscription duration (which was previous default due to a bug)
7 years ago
Clean up api/subscriptions controller (#3448)
7 years ago
Refactoring Grape API methods into normal controllers & other things
8 years ago
 
  1. # frozen_string_literal: true
  2. 

  3. class Api::SubscriptionsController < Api::BaseController
  4.   before_action :set_account
  5.   respond_to :txt
  6. 

  7.   def show
  8.     if subscription.valid?(params['hub.topic'])
  9.       @account.update(subscription_expires_at: future_expires)
  10.       render plain: encoded_challenge, status: 200

  11.     else
  12.       head 404

  13.     end
  14.   end
  15. 

  16.   def update
  17.     if subscription.verify(body, request.headers['HTTP_X_HUB_SIGNATURE'])
  18.       ProcessingWorker.perform_async(@account.id, body.force_encoding('UTF-8'))
  19.     end
  20. 

  21.     head 200

  22.   end
  23. 

  24.   private
  25. 

  26.   def subscription
  27.     @_subscription ||= @account.subscription(
  28.       api_subscription_url(@account.id)
  29.     )
  30.   end
  31. 

  32.   def body
  33.     @_body ||= request.body.read
  34.   end
  35. 

  36.   def encoded_challenge
  37.     HTMLEntities.new.encode(params['hub.challenge'])
  38.   end
  39. 

  40.   def future_expires
  41.     Time.now.utc + lease_seconds_or_default
  42.   end
  43. 

  44.   def lease_seconds_or_default
  45.     (params['hub.lease_seconds'] || 1.day).to_i.seconds
  46.   end
  47. 

  48.   def set_account
  49.     @account = Account.find(params[:id])
  50.   end
  51. end