Commit graph

  • 9e881554ea Make frg:isShared key property optional, it was accidentally required fr33domlover 2019-03-15 16:33:10 +0000
  • 0e0afa78f9 Parse/encoding audience targetting activity fields fr33domlover 2019-03-14 02:30:36 +0000
  • 24c091a248 Add activity types Follow, Accept, Reject fr33domlover 2019-03-13 23:37:58 +0000
  • a8bb43255f Explain keyfile loading in INSTALL.md fr33domlover 2019-03-11 02:22:34 +0000
  • f6cbc1eb8a Use file based switches to relax keyfile loading rules fr33domlover 2019-03-11 02:01:41 +0000
  • 2a39378468 HTTP Signature verification: RSA-SHA256 and PEM/ASN1 support fr33domlover 2019-03-10 23:15:42 +0000
  • ef57f29a54 Adapt Activity/Create/Note to new ActivityPub typeclass and add safety checks fr33domlover 2019-03-10 06:42:03 +0000
  • 61d1aa6720 Define HMAC based access token and switch CapSignKey from Ed25519 to HMAC fr33domlover 2019-03-09 21:21:36 +0000
  • fdbe46741b When POSTing an activity, protect remote actor DB insertion with withHostLock fr33domlover 2019-03-09 17:12:43 +0000
  • e341f62587 Fix typo in comment fr33domlover 2019-03-09 15:44:31 +0000
  • 468202cf45 Fix instance mutex deadlock, accidentally initialized the MVar empty fr33domlover 2019-03-09 15:43:30 +0000
  • 37216d9045 Move remote actor DB code from Foundation to separate module fr33domlover 2019-03-09 15:40:02 +0000
  • b0e33af4d8 Fix typo in actor key route fr33domlover 2019-03-06 01:49:55 +0000
  • 043022d117 When verifying HTTP sig, make Ed25519 verification failure message clearer fr33domlover 2019-03-06 01:31:30 +0000
  • c26289cf42 Don't check CSRF token in InboxR, POSTs there freely come from other servers fr33domlover 2019-03-05 09:00:22 +0000
  • 6e721797e9 Catch sig generation error when sending signed HTTP POST fr33domlover 2019-03-05 08:26:41 +0000
  • 97594dc945 Fix default actor URI in OutboxR form, from /p to /s fr33domlover 2019-03-04 20:12:19 +0000
  • 378ca1b3d4 Fix bug in FedURI parsing fr33domlover 2019-03-04 20:11:58 +0000
  • bb662e798f Display clearer error message when GETing recipient actor fails fr33domlover 2019-03-04 15:47:22 +0000
  • 78b5bad2c4 Support bypassing email verification of new users fr33domlover 2019-03-04 14:51:51 +0000
  • c41f1183e0 Display instance host at the top of all pages fr33domlover 2019-03-04 09:06:23 +0000
  • ad034dbacc Make the registration switch work again fr33domlover 2019-03-04 08:14:36 +0000
  • 9c3cb27619 Add persistent-graph to update-deps.sh fr33domlover 2019-03-02 19:30:38 +0000
  • 6bbba4ce5c Use MVars to protect concurrenct access to instance/actor/key DB records fr33domlover 2019-03-02 19:13:51 +0000
  • f09bdd4141 Add key storage mode that replaces old keys instead of rejecting new ones fr33domlover 2019-02-26 14:00:22 +0000
  • 2e705b6868 Make key storage limits configurable instead of hardcoding to 2 fr33domlover 2019-02-24 01:35:07 +0000
  • 17524b6ee1 Remove hardcoded-to-2 limit on length of an actor's list of public keys fr33domlover 2019-02-24 01:21:42 +0000
  • 0912b8e291 Use the DB for checking key usage by actors fr33domlover 2019-02-23 17:17:52 +0000
  • b53a7b4f48 Refactor actor key fetching code a bit fr33domlover 2019-02-22 08:30:43 +0000
  • 1affe269bb Refactor HTTP sig verification DB update code fr33domlover 2019-02-22 07:20:19 +0000
  • d3e14b3edf Add LocalURI type for recording shared URI host fr33domlover 2019-02-21 23:59:53 +0000
  • aefb2aaee7 Add InstanceURI datatype fr33domlover 2019-02-20 07:40:25 +0000
  • 4053f2f2b4 Record usage of instance keys in the DB fr33domlover 2019-02-19 10:54:55 +0000
  • 312ccf6979 When verifying HTTP sig with known shared key, verify actor lists the key fr33domlover 2019-02-18 09:20:13 +0000
  • 9b8cae79e0 Remove old commented out line of code fr33domlover 2019-02-18 09:18:50 +0000
  • 69e807214d Even if we have the specified keyid in the DB, check AP actor header if present fr33domlover 2019-02-17 00:32:38 +0000
  • fa5c509a25 When we fetch a stand-alone personal key, make sure AP-Actor matches key owner fr33domlover 2019-02-17 00:14:05 +0000
  • bf56ebf158 Make the verification key update logic clearer fr33domlover 2019-02-16 21:47:58 +0000
  • 9e0314fa09 Store remote actors' inbox URIs in DB, avoiding some actor fetch fr33domlover 2019-02-14 23:27:40 +0000
  • 128f1297ec In postInboxR, use the Activity type, so we only accept Create Note for now fr33domlover 2019-02-14 22:29:59 +0000
  • fb396bb984 Define breadcrumbs for shared actor key routes fr33domlover 2019-02-14 22:17:04 +0000
  • e6b7a5297a Fix error in key expiration check caused by a typo fr33domlover 2019-02-14 22:16:15 +0000
  • e8ba301c6a Switch actor ID URIs to be /s/ACTOR instead of /p and /g fr33domlover 2019-02-14 22:13:58 +0000
  • 754709833a When a client posts to their outbox, allow only Create Note, not near-any JSON fr33domlover 2019-02-12 11:53:24 +0000
  • 0731597e1b List collab tables under projects section in models file fr33domlover 2019-02-12 11:46:12 +0000
  • c2bf470fb6 Generate and keep permanent salt for generating hashids for URIs fr33domlover 2019-02-08 21:54:22 +0000
  • 9536d870e5 Add utility for loading permanent key files, and use it for ocap signing key fr33domlover 2019-02-08 03:13:56 +0000
  • fbc9ad2b30 Rotate actor key once a day by default, instead of once an hour fr33domlover 2019-02-07 23:28:39 +0000
  • 8ac559d064 New datatype FedURI for @id URIs fr33domlover 2019-02-07 23:08:28 +0000
  • e325175a9c Publish 2 rotating instance-scope keys instead of the one-implicitly-shared-key fr33domlover 2019-02-07 10:34:33 +0000
  • 8166d5b5eb Support for instance-scope keys when verifying HTTP signature fr33domlover 2019-02-06 02:48:23 +0000
  • 400245cf34 Accept HTTP signatures made with shared instance-scope actor keys fr33domlover 2019-02-05 13:02:15 +0000
  • e8a5ef4e86 Replace unused symbol name with underscore fr33domlover 2019-02-05 12:56:06 +0000
  • d4c7fa5809 When parsing ID URIs in AP JSON, make sure their authority part is non-empty fr33domlover 2019-02-05 12:54:55 +0000
  • c2c4e24497 Support actor key expiration fr33domlover 2019-02-05 04:05:44 +0000
  • 37b3416a41 Support remote actors specifying 2 keys, and DB storage of these keys fr33domlover 2019-02-04 19:38:50 +0000
  • 02da508ed0 Allow actor publicKey to be a URI, and require the URI to match the Sig keyId fr33domlover 2019-02-04 10:07:25 +0000
  • c336d56036 Allow actor public key to be in a separate document fr33domlover 2019-02-03 23:39:56 +0000
  • 8db38c087f Allow other servers to do blind key rotation by re-fetching if sig is invalid fr33domlover 2019-02-03 15:05:28 +0000
  • b0b2aa83c5 Store remote actor keys in the DB, reuse them instead of GETing every time fr33domlover 2019-02-03 13:58:14 +0000
  • 21c8df1251 Actor public key specifies whether it's shared fr33domlover 2019-02-03 11:12:18 +0000
  • 991296faa1 Move some JSON/AP codec utils to new Data.Aeson.Local module fr33domlover 2019-02-03 11:01:36 +0000
  • e6f987817e Fix: HTTP signature wasn't being sent in AP POSTs fr33domlover 2019-02-03 10:59:35 +0000
  • cd8ed9ef89 Hold a persistent server key for ocap signatures fr33domlover 2019-01-30 03:12:42 +0000
  • c0965a4c47 Default roles for repos and turn user/anon collab tables into proj/repo fields fr33domlover 2019-01-29 22:24:32 +0000
  • 5cba838917 Enable basic default project roles fr33domlover 2019-01-28 14:43:07 +0000
  • dcadaed2ee Show links for adding repo/project collaborators fr33domlover 2019-01-27 02:56:11 +0000
  • 577df6ddcf Add "about" field to person table, display in person page fr33domlover 2019-01-26 23:39:13 +0000
  • e9ac361f27 Uncomment new person form, it's not being used fr33domlover 2019-01-26 23:38:43 +0000
  • 20c0e40638 Determine operation access in Vervis.Access, reuse it everywhere it's needed fr33domlover 2019-01-26 22:22:49 +0000
  • 250701712a Move most of the DB graph modules to a separate persistent-graph library fr33domlover 2019-01-26 22:20:19 +0000
  • da6d8c008e Rename project field in Project Role assignment tables, it had the wrong name fr33domlover 2019-01-26 12:56:15 +0000
  • 4875f0b9f7 Make login status display consider unverified login fr33domlover 2019-01-21 22:51:19 +0000
  • 04e26a911d In httpGetAP, if we got an unexpected Content-Type, specify it in error message fr33domlover 2019-01-21 22:24:09 +0000
  • 2a68bb560b Link to OutboxR for testing, instead of InboxR fr33domlover 2019-01-21 21:42:21 +0000
  • e6ee947cfd In update-deps.sh, darcs pull new patches automatically without asking fr33domlover 2019-01-21 21:07:56 +0000
  • 1f47ca39eb Federation test outbox page with form for entering JSON fr33domlover 2019-01-21 15:54:57 +0000
  • 2cc621e3a5 Public ActivityPub actor in PersonR fr33domlover 2019-01-19 05:56:58 +0000
  • 2a4dc345f4 Back to using the (updated) YesodHttpSig class fr33domlover 2019-01-19 04:21:56 +0000
  • 393cce0ede When GETing the keyId, set Accept header to JSON-LD/AS2 fr33domlover 2019-01-19 02:57:58 +0000
  • 93def0dfc8 When doing httpJSON to GET keyId, use appHttpManager, not the silly global one fr33domlover 2019-01-19 02:33:20 +0000
  • 61a82f52d8 Turn inbox URL in layout template into a link, accidentally didn't before fr33domlover 2019-01-19 02:21:23 +0000
  • 28439b0236 Add InboxR to breadcrumbs instance, I always forget and it causes errors fr33domlover 2019-01-19 02:20:49 +0000
  • e4153fc909 Ugh I forgot *again* to commit a new source file, the actual InboxR handler fr33domlover 2019-01-19 01:56:50 +0000
  • df01560ea6 ActivityPub inbox test page fr33domlover 2019-01-19 01:44:21 +0000
  • e22d0c000a In homepage say ForgeFed instead of GitPub (thanks zPlus!) fr33domlover 2019-01-19 01:43:19 +0000
  • 822345a70e Move signup link to login line, should look a bit nicer fr33domlover 2019-01-19 01:41:57 +0000
  • 853390aba0 Move signup link to the top, to be close to login link (thanks zPlus!) fr33domlover 2019-01-19 01:07:09 +0000
  • 9adf7a2e34 Fix HTTP sig default time limit, 5 minutes not 5 seconds fr33domlover 2019-01-19 01:06:09 +0000
  • 499e26db48 Periodically rotated AP actor key for signing ActivityPub requests fr33domlover 2019-01-14 22:08:44 +0000
  • adaa920aa4 Launch service thread with a function that re-throws if they fail fr33domlover 2019-01-14 22:03:49 +0000
  • 5862b03019 Remove HTTP connection manager, it's not being used fr33domlover 2019-01-14 02:30:39 +0000
  • 4c50a1fc96 Turn clone-deps.sh into a safe update-deps.sh script and document in INSTALL.md fr33domlover 2019-01-14 01:50:14 +0000
  • 0e2001af0f Palette: Make the dark blue lighter, it's too dark against the #111 background fr33domlover 2019-01-03 10:18:09 +0000
  • 632bfe1979 In repo change feed, entry ID is now the URL of patch page fr33domlover 2018-12-12 08:37:01 +0000
  • 4bd33b59e5 Remove GitOld module, it's not in use anymore fr33domlover 2018-12-12 07:59:19 +0000
  • fe4d1e1afe Remove the src-old dir, no need for it anymore (since long time ago) fr33domlover 2018-12-12 07:46:30 +0000
  • f9045e211b Update INSTALL.md to reflect latest status fr33domlover 2018-12-10 13:58:39 +0000
  • 33338a73cc Upgrade to GHC 8.4 and LTS 12 fr33domlover 2018-12-05 03:41:19 +0000
  • 4c17e3486b Mention in INSTALL.md a way to build against libssl 1.1 fr33domlover 2018-11-29 22:01:12 +0000