2016-02-24 22:57:29 +11:00
|
|
|
class FollowRemoteAccountService < BaseService
|
|
|
|
# Find or create a local account for a remote user.
|
|
|
|
# When creating, look up the user's webfinger and fetch all
|
|
|
|
# important information from their feed
|
|
|
|
# @param [String] uri User URI in the form of username@domain
|
|
|
|
# @return [Account]
|
2016-09-20 08:39:03 +10:00
|
|
|
def call(uri)
|
2016-02-23 02:00:20 +11:00
|
|
|
username, domain = uri.split('@')
|
2016-03-22 04:26:47 +11:00
|
|
|
|
2016-10-07 01:36:16 +11:00
|
|
|
return Account.find_local(username) if TagManager.instance.local_domain?(domain)
|
2016-10-09 23:48:43 +11:00
|
|
|
return nil if DomainBlock.blocked?(domain)
|
2016-03-22 04:26:47 +11:00
|
|
|
|
2016-09-05 05:15:52 +10:00
|
|
|
account = Account.find_remote(username, domain)
|
2016-02-21 08:53:20 +11:00
|
|
|
|
2016-09-20 08:39:03 +10:00
|
|
|
return account unless account.nil?
|
|
|
|
|
|
|
|
Rails.logger.debug "Creating new remote account for #{uri}"
|
|
|
|
account = Account.new(username: username, domain: domain)
|
2016-02-21 08:53:20 +11:00
|
|
|
|
2016-02-23 04:10:30 +11:00
|
|
|
data = Goldfinger.finger("acct:#{uri}")
|
2016-02-21 08:53:20 +11:00
|
|
|
|
|
|
|
account.remote_url = data.link('http://schemas.google.com/g/2010#updates-from').href
|
|
|
|
account.salmon_url = data.link('salmon').href
|
2016-02-24 05:17:37 +11:00
|
|
|
account.url = data.link('http://webfinger.net/rel/profile-page').href
|
2016-02-21 08:53:20 +11:00
|
|
|
account.public_key = magic_key_to_pem(data.link('magic-public-key').href)
|
|
|
|
account.private_key = nil
|
|
|
|
|
|
|
|
feed = get_feed(account.remote_url)
|
|
|
|
hubs = feed.xpath('//xmlns:link[@rel="hub"]')
|
|
|
|
|
2016-09-18 01:03:36 +10:00
|
|
|
if hubs.empty? || hubs.first.attribute('href').nil?
|
2016-09-30 05:28:21 +10:00
|
|
|
raise Goldfinger::Error, 'No PubSubHubbub hubs found'
|
2016-09-18 01:03:36 +10:00
|
|
|
end
|
|
|
|
|
|
|
|
if feed.at_xpath('/xmlns:feed/xmlns:author/xmlns:uri').nil?
|
2016-09-30 05:28:21 +10:00
|
|
|
raise Goldfinger::Error, 'No author URI found'
|
2016-09-18 00:36:10 +10:00
|
|
|
end
|
2016-02-21 08:53:20 +11:00
|
|
|
|
2016-02-23 04:10:30 +11:00
|
|
|
account.uri = feed.at_xpath('/xmlns:feed/xmlns:author/xmlns:uri').content
|
2016-02-21 08:53:20 +11:00
|
|
|
account.hub_url = hubs.first.attribute('href').value
|
2016-02-23 04:10:30 +11:00
|
|
|
|
|
|
|
get_profile(feed, account)
|
2016-02-21 08:53:20 +11:00
|
|
|
account.save!
|
|
|
|
|
2016-02-23 04:10:30 +11:00
|
|
|
return account
|
2016-02-21 08:53:20 +11:00
|
|
|
end
|
|
|
|
|
|
|
|
private
|
|
|
|
|
|
|
|
def get_feed(url)
|
|
|
|
response = http_client.get(Addressable::URI.parse(url))
|
|
|
|
Nokogiri::XML(response)
|
|
|
|
end
|
|
|
|
|
2016-02-23 04:10:30 +11:00
|
|
|
def get_profile(xml, account)
|
|
|
|
author = xml.at_xpath('/xmlns:feed/xmlns:author')
|
2016-09-30 05:28:21 +10:00
|
|
|
update_remote_profile_service.call(author, account)
|
2016-02-23 04:10:30 +11:00
|
|
|
end
|
|
|
|
|
2016-02-21 08:53:20 +11:00
|
|
|
def magic_key_to_pem(magic_key)
|
|
|
|
_, modulus, exponent = magic_key.split('.')
|
2016-09-30 05:28:21 +10:00
|
|
|
modulus, exponent = [modulus, exponent].map { |n| Base64.urlsafe_decode64(n).bytes.inject(0) { |a, e| (a << 8) | e } }
|
2016-02-21 08:53:20 +11:00
|
|
|
|
|
|
|
key = OpenSSL::PKey::RSA.new
|
|
|
|
key.n = modulus
|
2016-02-23 02:00:20 +11:00
|
|
|
key.e = exponent
|
2016-02-21 08:53:20 +11:00
|
|
|
|
|
|
|
key.to_pem
|
|
|
|
end
|
|
|
|
|
2016-02-29 00:26:26 +11:00
|
|
|
def update_remote_profile_service
|
|
|
|
@update_remote_profile_service ||= UpdateRemoteProfileService.new
|
|
|
|
end
|
|
|
|
|
2016-02-21 08:53:20 +11:00
|
|
|
def http_client
|
Fix #24 - Thread resolving for remote statuses
This is a big one, so let me enumerate:
Accounts as well as stream entry pages now contain Link headers that
reference the Atom feed and Webfinger URL for the former and Atom entry
for the latter. So you only need to HEAD those resources to get that
information, no need to download and parse HTML <link>s.
ProcessFeedService will now queue ThreadResolveWorker for each remote
status that it cannot find otherwise. Furthermore, entries are now
processed in reverse order (from bottom to top) in case a newer entry
references a chronologically previous one.
ThreadResolveWorker uses FetchRemoteStatusService to obtain a status
and attach the child status it was queued for to it.
FetchRemoteStatusService looks up the URL, first with a HEAD, tests
if it's an Atom feed, in which case it processes it directly. Next
for Link headers to the Atom feed, in which case that is fetched
and processed. Lastly if it's HTML, it is checked for <link>s to the Atom
feed, and if such is found, that is fetched and processed. The account for
the status is derived from author/name attribute in the XML and the hostname
in the URL (domain). FollowRemoteAccountService and ProcessFeedService
are used.
This means that potentially threads are resolved recursively until a dead-end
is encountered, however it is performed asynchronously over background jobs,
so it should be ok.
2016-09-21 09:34:14 +10:00
|
|
|
HTTP.timeout(:per_operation, write: 20, connect: 20, read: 50)
|
2016-02-21 08:53:20 +11:00
|
|
|
end
|
|
|
|
end
|