Vervis/src
fr33domlover 69e807214d Even if we have the specified keyid in the DB, check AP actor header if present
Previously, when verifying an HTTP signature and we find out we have the
provided keyid in the DB, and this key is a personal key, we would just grab
the key owner from the DB and ignore the ActivityPub-Actor header.

This patch adds a check: If we find the key in the DB and it's a personal key,
do grab the owner from that DB row, but also check the actor header: If it's
provided, it has to be identical to the key owner ID URI.
2019-02-17 00:32:38 +00:00
..
Control Launch service thread with a function that re-throws if they fail 2019-01-14 22:03:49 +00:00
Darcs/Local Move DarcsRev and code we're sharing with it into a separate library 2018-03-20 23:45:09 +00:00
Data Generate and keep permanent salt for generating hashids for URIs 2019-02-08 21:54:22 +00:00
Database New datatype FedURI for @id URIs 2019-02-07 23:08:28 +00:00
Diagrams Allow loading the SVG font from deployment data path 2018-05-26 10:27:05 +00:00
Formatting Finish route change, it builds now 2016-05-23 20:46:54 +00:00
Language/Haskell/TH/Quote Complete DB migration list, allowing to upgrade 2016-08-04 running instance 2018-03-27 14:28:56 +00:00
Network New datatype FedURI for @id URIs 2019-02-07 23:08:28 +00:00
Text Treat email address as EmailAddress instead of Text including in the mailer 2018-03-06 02:26:27 +00:00
Vervis Even if we have the specified keyid in the DB, check AP actor header if present 2019-02-17 00:32:38 +00:00
Web When we fetch a stand-alone personal key, make sure AP-Actor matches key owner 2019-02-17 00:14:05 +00:00
Yesod Upgrade to GHC 8.4 and LTS 12 2018-12-05 03:41:19 +00:00
GitPackProto.hs Parse the git-uploac-pack SSH command properly 2016-04-19 09:42:02 +00:00