DB: Store the 'type' of remote actors

This commit is contained in:
Pere Lev 2023-06-27 13:27:51 +03:00
parent 224025b9b6
commit 89185164b8
No known key found for this signature in database
GPG key ID: 5252C5C863E5E57D
9 changed files with 61 additions and 30 deletions

View file

@ -416,6 +416,7 @@ fetchRemoteResource instanceID host localURI = do
, remoteActorInbox = AP.actorInbox local , remoteActorInbox = AP.actorInbox local
, remoteActorFollowers = AP.actorFollowers local , remoteActorFollowers = AP.actorFollowers local
, remoteActorErrorSince = Nothing , remoteActorErrorSince = Nothing
, remoteActorType = AP.actorType detail
} }
Right . Left . either id id <$> insertByEntity' ra Right . Left . either id id <$> insertByEntity' ra
AP.ResourceChild luId luManager -> do AP.ResourceChild luId luManager -> do

View file

@ -206,6 +206,7 @@ verifyActorSig' malgo input (Signature signature) host luKey mluActorHeader = do
, vkdExpires = verifKeyExpires vk , vkdExpires = verifKeyExpires vk
, vkdActorId = ua , vkdActorId = ua
, vkdActorFollowers = remoteActorFollowers ra , vkdActorFollowers = remoteActorFollowers ra
, vkdActorType = remoteActorType ra
, vkdShared = s , vkdShared = s
} }
) )
@ -257,7 +258,7 @@ verifyActorSig' malgo input (Signature signature) host luKey mluActorHeader = do
-- , actdDigest = digest -- , actdDigest = digest
} }
where where
fetched2vkd uk (Fetched k mexp ua mname uinb mufol s) = fetched2vkd uk (Fetched k mexp ua mname uinb mufol ad s) =
( Left (mname, uinb) ( Left (mname, uinb)
, VerifKeyDetail , VerifKeyDetail
{ vkdKeyId = uk { vkdKeyId = uk
@ -265,6 +266,7 @@ verifyActorSig' malgo input (Signature signature) host luKey mluActorHeader = do
, vkdExpires = mexp , vkdExpires = mexp
, vkdActorId = ua , vkdActorId = ua
, vkdActorFollowers = mufol , vkdActorFollowers = mufol
, vkdActorType = AP.actorType ad
, vkdShared = s , vkdShared = s
} }
) )

View file

@ -132,6 +132,7 @@ insertRemoteActor h lu (AP.Actor local detail) = do
, remoteActorInbox = AP.actorInbox local , remoteActorInbox = AP.actorInbox local
, remoteActorFollowers = AP.actorFollowers local , remoteActorFollowers = AP.actorFollowers local
, remoteActorErrorSince = Nothing , remoteActorErrorSince = Nothing
, remoteActorType = AP.actorType detail
} }
either entityKey id <$> insertBy' ra either entityKey id <$> insertBy' ra

View file

@ -2960,6 +2960,8 @@ changes hLocal ctx =
, addEntities model_541_project , addEntities model_541_project
-- 542 -- 542
, addEntities model_542_component , addEntities model_542_component
-- 543
, addFieldPrimRequired "RemoteActor" ("" :: Text) "type"
] ]
migrateDB migrateDB

View file

@ -25,7 +25,7 @@ import Data.Hashable
import Data.Text (Text) import Data.Text (Text)
import Data.Time.Clock import Data.Time.Clock
import Database.Persist.Quasi import Database.Persist.Quasi
import Database.Persist.Sql (fromSqlKey) import Database.Persist.Sql
import Text.Email.Validate (EmailAddress) import Text.Email.Validate (EmailAddress)
import Database.Persist.Schema.TH hiding (modelFile) import Database.Persist.Schema.TH hiding (modelFile)
@ -39,10 +39,11 @@ import Database.Persist.JSON
import Development.PatchMediaType import Development.PatchMediaType
import Development.PatchMediaType.Persist import Development.PatchMediaType.Persist
import Network.FedURI import Network.FedURI
import Web.ActivityPub (Doc, Activity, Role) import Web.ActivityPub (Doc, Activity, Role, ActorType)
import Web.Text (HTML, PandocMarkdown) import Web.Text (HTML, PandocMarkdown)
import Vervis.FedURI import Vervis.FedURI
import Vervis.Model.Entity
import Vervis.Model.Group import Vervis.Model.Group
import Vervis.Model.Ident import Vervis.Model.Ident
import Vervis.Model.Role import Vervis.Model.Role

View file

@ -1,6 +1,6 @@
{- This file is part of Vervis. {- This file is part of Vervis.
- -
- Written in 2016 by fr33domlover <fr33domlover@riseup.net>. - Written in 2016, 2023 by fr33domlover <fr33domlover@riseup.net>.
- -
- Copying is an act of love. Please copy, reuse and share. - Copying is an act of love. Please copy, reuse and share.
- -
@ -21,9 +21,19 @@ module Vervis.Model.Entity
where where
import Data.Text (Text) import Data.Text (Text)
import Database.Persist.Class (PersistEntity) import Database.Persist.Types
import Database.Persist.Sql
import Web.ActivityPub (ActorType, parseActorType, renderActorType)
class PersistEntity r => VervisEntity r where class PersistEntity r => VervisEntity r where
type VervisEntityIdent r type VervisEntityIdent r
vervisEntityIdent :: r -> VervisEntityIdent r vervisEntityIdent :: r -> VervisEntityIdent r
vervisEntityName :: r -> Maybe Text vervisEntityName :: r -> Maybe Text
instance PersistField ActorType where
toPersistValue = toPersistValue . renderActorType
fromPersistValue = fmap parseActorType . fromPersistValue
instance PersistFieldSql ActorType where
sqlType = sqlType . fmap renderActorType

View file

@ -67,6 +67,8 @@ import Network.FedURI
import Web.ActivityPub import Web.ActivityPub
import Yesod.MonadSite import Yesod.MonadSite
import qualified Web.ActivityPub as AP
import Vervis.Actor import Vervis.Actor
import Vervis.FedURI import Vervis.FedURI
import Vervis.Model hiding (Actor (..)) import Vervis.Model hiding (Actor (..))
@ -139,13 +141,14 @@ instanceAndActor
-> Maybe Text -> Maybe Text
-> LocalURI -> LocalURI
-> Maybe LocalURI -> Maybe LocalURI
-> AP.ActorType
-> YesodDB site (InstanceId, RemoteActorId, Maybe Bool) -> YesodDB site (InstanceId, RemoteActorId, Maybe Bool)
instanceAndActor host luActor mname luInbox mluFollowers = do instanceAndActor host luActor mname luInbox mluFollowers typ = do
(iid, inew) <- idAndNew <$> insertBy' (Instance host) (iid, inew) <- idAndNew <$> insertBy' (Instance host)
(raid, ranew) <- do (raid, ranew) <- do
roid <- either entityKey id <$> insertBy' (RemoteObject iid luActor) roid <- either entityKey id <$> insertBy' (RemoteObject iid luActor)
idAndNew <$> idAndNew <$>
insertBy' (RemoteActor roid mname luInbox mluFollowers Nothing) insertBy' (RemoteActor roid mname luInbox mluFollowers Nothing typ)
return $ return $
( iid ( iid
, raid , raid
@ -345,7 +348,7 @@ keyListedByActorShared iid vkid host luKey luActor = do
Actor local detail <- ExceptT (keyListedByActor manager host luKey luActor) Actor local detail <- ExceptT (keyListedByActor manager host luKey luActor)
lift $ runDB $ do lift $ runDB $ do
roid <- either entityKey id <$> insertBy' (RemoteObject iid luActor) roid <- either entityKey id <$> insertBy' (RemoteObject iid luActor)
either entityKey id <$> insertBy' (RemoteActor roid (actorName detail <|> actorUsername detail) (actorInbox local) (actorFollowers local) Nothing) either entityKey id <$> insertBy' (RemoteActor roid (actorName detail <|> actorUsername detail) (actorInbox local) (actorFollowers local) Nothing (AP.actorType detail))
RoomModeCached m -> do RoomModeCached m -> do
eresult <- do eresult <- do
ments <- lift $ runDB $ do ments <- lift $ runDB $ do
@ -372,7 +375,7 @@ keyListedByActorShared iid vkid host luKey luActor = do
Nothing -> do Nothing -> do
rsid <- do rsid <- do
roid <- either entityKey id <$> insertBy' (RemoteObject iid luActor) roid <- either entityKey id <$> insertBy' (RemoteObject iid luActor)
either entityKey id <$> insertBy' (RemoteActor roid (actorName detail <|> actorUsername detail) (actorInbox local) (actorFollowers local) Nothing) either entityKey id <$> insertBy' (RemoteActor roid (actorName detail <|> actorUsername detail) (actorInbox local) (actorFollowers local) Nothing (AP.actorType detail))
when vkExists $ insert_ $ VerifKeySharedUsage vkid rsid when vkExists $ insert_ $ VerifKeySharedUsage vkid rsid
return $ Right rsid return $ Right rsid
Just rsid -> runExceptT $ do Just rsid -> runExceptT $ do
@ -394,6 +397,7 @@ data VerifKeyDetail = VerifKeyDetail
, vkdExpires :: Maybe UTCTime , vkdExpires :: Maybe UTCTime
, vkdActorId :: LocalURI , vkdActorId :: LocalURI
, vkdActorFollowers :: Maybe LocalURI , vkdActorFollowers :: Maybe LocalURI
, vkdActorType :: AP.ActorType
, vkdShared :: Bool , vkdShared :: Bool
} }
@ -413,11 +417,11 @@ addVerifKey h mname uinb vkd =
then addSharedKey h uinb vkd then addSharedKey h uinb vkd
else addPersonalKey h uinb vkd else addPersonalKey h uinb vkd
where where
addSharedKey host luInbox (VerifKeyDetail luKey key mexpires luActor mluFollowers _) = do addSharedKey host luInbox (VerifKeyDetail luKey key mexpires luActor mluFollowers atyp _) = do
reject <- getsYesod siteRejectOnMaxKeys reject <- getsYesod siteRejectOnMaxKeys
roomModeA <- getsYesod $ roomModeFromLimit . siteActorRoomMode roomModeA <- getsYesod $ roomModeFromLimit . siteActorRoomMode
roomModeI <- getsYesod $ roomModeFromLimit . siteInstanceRoomMode roomModeI <- getsYesod $ roomModeFromLimit . siteInstanceRoomMode
(iid, rsid, inew) <- lift $ instanceAndActor host luActor mname luInbox mluFollowers (iid, rsid, inew) <- lift $ instanceAndActor host luActor mname luInbox mluFollowers atyp
case roomModeI of case roomModeI of
RoomModeInstant -> RoomModeInstant ->
when reject $ throwE "Instance key storage limit is 0 and set to reject" when reject $ throwE "Instance key storage limit is 0 and set to reject"
@ -448,10 +452,10 @@ addVerifKey h mname uinb vkd =
where where
instanceRoom n iid = instanceRoom n iid =
(< n) <$> count [VerifKeyInstance ==. iid, VerifKeySharer ==. Nothing] (< n) <$> count [VerifKeyInstance ==. iid, VerifKeySharer ==. Nothing]
addPersonalKey host luInbox (VerifKeyDetail luKey key mexpires luActor mluFollowers _) = do addPersonalKey host luInbox (VerifKeyDetail luKey key mexpires luActor mluFollowers atyp _) = do
reject <- getsYesod siteRejectOnMaxKeys reject <- getsYesod siteRejectOnMaxKeys
roomMode <- getsYesod $ roomModeFromLimit . siteActorRoomMode roomMode <- getsYesod $ roomModeFromLimit . siteActorRoomMode
(iid, rsid, inew) <- lift $ instanceAndActor host luActor mname luInbox mluFollowers (iid, rsid, inew) <- lift $ instanceAndActor host luActor mname luInbox mluFollowers atyp
case roomMode of case roomMode of
RoomModeInstant -> RoomModeInstant ->
when reject $ throwE "Actor key storage limit is 0 and set to reject" when reject $ throwE "Actor key storage limit is 0 and set to reject"
@ -495,6 +499,7 @@ actorFetchShareAction u@(ObjURI h lu) (pool, manager, iid) = do
, remoteActorInbox = actorInbox local , remoteActorInbox = actorInbox local
, remoteActorFollowers = actorFollowers local , remoteActorFollowers = actorFollowers local
, remoteActorErrorSince = Nothing , remoteActorErrorSince = Nothing
, remoteActorType = AP.actorType detail
} }
Just . either id (flip Entity ra) <$> insertBy' ra Just . either id (flip Entity ra) <$> insertBy' ra
RecipientCollection _ -> rundb $ do RecipientCollection _ -> rundb $ do

View file

@ -30,6 +30,8 @@ module Web.ActivityPub
-- ActivityPub actor document including a public key, with a 'FromJSON' -- ActivityPub actor document including a public key, with a 'FromJSON'
-- instance for fetching and a 'ToJSON' instance for publishing. -- instance for fetching and a 'ToJSON' instance for publishing.
, ActorType (..) , ActorType (..)
, parseActorType
, renderActorType
--, Algorithm (..) --, Algorithm (..)
, Owner (..) , Owner (..)
, PublicKey (..) , PublicKey (..)
@ -379,27 +381,30 @@ data ActorType
| ActorTypeOther Text | ActorTypeOther Text
deriving Eq deriving Eq
parseActorType :: Text -> ActorType
parseActorType t
| t == "Person" = ActorTypePerson
| t == "Repository" = ActorTypeRepo
| t == "TicketTracker" = ActorTypeTicketTracker
| t == "PatchTracker" = ActorTypePatchTracker
| t == "Project" = ActorTypeProject
| otherwise = ActorTypeOther t
renderActorType :: ActorType -> Text
renderActorType = \case
ActorTypePerson -> "Person"
ActorTypeRepo -> "Repository"
ActorTypeTicketTracker -> "TicketTracker"
ActorTypePatchTracker -> "PatchTracker"
ActorTypeProject -> "Project"
ActorTypeOther t -> t
instance FromJSON ActorType where instance FromJSON ActorType where
parseJSON = withText "ActorType" $ pure . parse parseJSON = withText "ActorType" $ pure . parseActorType
where
parse t
| t == "Person" = ActorTypePerson
| t == "Repository" = ActorTypeRepo
| t == "TicketTracker" = ActorTypeTicketTracker
| t == "PatchTracker" = ActorTypePatchTracker
| t == "Project" = ActorTypeProject
| otherwise = ActorTypeOther t
instance ToJSON ActorType where instance ToJSON ActorType where
toJSON = error "toJSON ActorType" toJSON = error "toJSON ActorType"
toEncoding at = toEncoding = toEncoding . renderActorType
toEncoding $ case at of
ActorTypePerson -> "Person"
ActorTypeRepo -> "Repository"
ActorTypeTicketTracker -> "TicketTracker"
ActorTypePatchTracker -> "PatchTracker"
ActorTypeProject -> "Project"
ActorTypeOther t -> t
data Owner = OwnerInstance | OwnerActor LocalURI data Owner = OwnerInstance | OwnerActor LocalURI
@ -2518,6 +2523,7 @@ data Fetched = Fetched
, fetchedActorFollowers :: Maybe LocalURI , fetchedActorFollowers :: Maybe LocalURI
-- ^ The follower collection URI of the actor for whom the key's -- ^ The follower collection URI of the actor for whom the key's
-- signature applies. -- signature applies.
, fetchedActorDetail :: ActorDetail
, fetchedKeyShared :: Bool , fetchedKeyShared :: Bool
-- ^ Whether the key we received is shared. A shared key can sign -- ^ Whether the key we received is shared. A shared key can sign
-- requests for any actor on the same instance, while a personal key is -- requests for any actor on the same instance, while a personal key is
@ -2722,6 +2728,7 @@ fetchUnknownKey manager malgo host mluActor luKey = do
, fetchedActorName = actorName detail <|> actorUsername detail , fetchedActorName = actorName detail <|> actorUsername detail
, fetchedActorInbox = actorInbox local , fetchedActorInbox = actorInbox local
, fetchedActorFollowers = actorFollowers local , fetchedActorFollowers = actorFollowers local
, fetchedActorDetail = detail
, fetchedKeyShared = oi , fetchedKeyShared = oi
} }
Right (Actor local detail) -> do Right (Actor local detail) -> do
@ -2747,6 +2754,7 @@ fetchUnknownKey manager malgo host mluActor luKey = do
, fetchedActorName = actorName detail <|> actorUsername detail , fetchedActorName = actorName detail <|> actorUsername detail
, fetchedActorInbox = actorInbox local , fetchedActorInbox = actorInbox local
, fetchedActorFollowers = actorFollowers local , fetchedActorFollowers = actorFollowers local
, fetchedActorDetail = detail
, fetchedKeyShared = False , fetchedKeyShared = False
} }
ExceptT . pure $ verifyAlgo malgo $ fetchedPublicKey fetched ExceptT . pure $ verifyAlgo malgo $ fetchedPublicKey fetched

View file

@ -52,6 +52,7 @@ RemoteActor
inbox LocalURI inbox LocalURI
followers LocalURI Maybe followers LocalURI Maybe
errorSince UTCTime Maybe errorSince UTCTime Maybe
type ActorType
UniqueRemoteActor ident UniqueRemoteActor ident