PeerTube/server/lib/job-queue/handlers/utils/activitypub-http-utils.ts

61 lines
1.7 KiB
TypeScript
Raw Normal View History

import { buildSignedActivity, ContextType } from '../../../../helpers/activitypub'
import { getServerActor } from '../../../../helpers/utils'
import { ActorModel } from '../../../../models/activitypub/actor'
2018-10-10 01:51:58 -05:00
import { sha256 } from '../../../../helpers/core-utils'
import { HTTP_SIGNATURE } from '../../../../initializers/constants'
2019-08-15 04:53:26 -05:00
import { MActor } from '../../../../typings/models'
type Payload = { body: any, contextType?: ContextType, signatureActorId?: number }
2018-10-10 01:51:58 -05:00
async function computeBody (payload: Payload) {
let body = payload.body
if (payload.signatureActorId) {
const actorSignature = await ActorModel.load(payload.signatureActorId)
if (!actorSignature) throw new Error('Unknown signature actor id.')
body = await buildSignedActivity(actorSignature, payload.body, payload.contextType)
}
return body
}
2018-10-10 01:51:58 -05:00
async function buildSignedRequestOptions (payload: Payload) {
2019-08-15 04:53:26 -05:00
let actor: MActor | null
if (payload.signatureActorId) {
actor = await ActorModel.load(payload.signatureActorId)
if (!actor) throw new Error('Unknown signature actor id.')
} else {
// We need to sign the request, so use the server
actor = await getServerActor()
}
2019-04-25 08:19:53 -05:00
const keyId = actor.url
return {
algorithm: HTTP_SIGNATURE.ALGORITHM,
authorizationHeaderName: HTTP_SIGNATURE.HEADER_NAME,
keyId,
2018-10-10 01:51:58 -05:00
key: actor.privateKey,
headers: HTTP_SIGNATURE.HEADERS_TO_SIGN
2018-10-10 01:51:58 -05:00
}
}
function buildGlobalHeaders (body: any) {
2018-10-10 01:51:58 -05:00
return {
2020-01-31 09:56:52 -06:00
Digest: buildDigest(body)
}
}
function buildDigest (body: any) {
const rawBody = typeof body === 'string' ? body : JSON.stringify(body)
return 'SHA-256=' + sha256(rawBody, 'base64')
}
export {
buildDigest,
2018-10-10 01:51:58 -05:00
buildGlobalHeaders,
computeBody,
buildSignedRequestOptions
}