2021-05-08 14:25:55 +02:00
|
|
|
/*
|
|
|
|
|
GoToSocial
|
2023-01-05 12:43:00 +01:00
|
|
|
Copyright (C) 2021-2023 GoToSocial Authors admin@gotosocial.org
|
2021-05-08 14:25:55 +02:00
|
|
|
|
|
|
|
|
This program is free software: you can redistribute it and/or modify
|
|
|
|
|
it under the terms of the GNU Affero General Public License as published by
|
|
|
|
|
the Free Software Foundation, either version 3 of the License, or
|
|
|
|
|
(at your option) any later version.
|
|
|
|
|
|
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
|
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
GNU Affero General Public License for more details.
|
|
|
|
|
|
|
|
|
|
You should have received a copy of the GNU Affero General Public License
|
|
|
|
|
along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
package federation
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"context"
|
|
|
|
|
"net/http"
|
|
|
|
|
|
2021-11-13 17:29:43 +01:00
|
|
|
"github.com/superseriousbusiness/activity/streams"
|
|
|
|
|
"github.com/superseriousbusiness/activity/streams/vocab"
|
2021-05-08 14:25:55 +02:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
GOFED COMMON BEHAVIOR INTERFACE
|
|
|
|
|
Contains functions required for both the Social API and Federating Protocol.
|
|
|
|
|
It is passed to the library as a dependency injection from the client
|
|
|
|
|
application.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
// AuthenticateGetInbox delegates the authentication of a GET to an
|
|
|
|
|
// inbox.
|
|
|
|
|
//
|
|
|
|
|
// Always called, regardless whether the Federated Protocol or Social
|
|
|
|
|
// API is enabled.
|
|
|
|
|
//
|
|
|
|
|
// If an error is returned, it is passed back to the caller of
|
|
|
|
|
// GetInbox. In this case, the implementation must not write a
|
|
|
|
|
// response to the ResponseWriter as is expected that the client will
|
|
|
|
|
// do so when handling the error. The 'authenticated' is ignored.
|
|
|
|
|
//
|
|
|
|
|
// If no error is returned, but authentication or authorization fails,
|
|
|
|
|
// then authenticated must be false and error nil. It is expected that
|
|
|
|
|
// the implementation handles writing to the ResponseWriter in this
|
|
|
|
|
// case.
|
|
|
|
|
//
|
|
|
|
|
// Finally, if the authentication and authorization succeeds, then
|
|
|
|
|
// authenticated must be true and error nil. The request will continue
|
|
|
|
|
// to be processed.
|
|
|
|
|
func (f *federator) AuthenticateGetInbox(ctx context.Context, w http.ResponseWriter, r *http.Request) (context.Context, bool, error) {
|
2021-05-15 11:58:11 +02:00
|
|
|
// IMPLEMENTATION NOTE: For GoToSocial, we serve GETS to outboxes and inboxes through
|
2021-05-08 14:25:55 +02:00
|
|
|
// the CLIENT API, not through the federation API, so we just do nothing here.
|
2021-05-29 19:36:54 +02:00
|
|
|
return ctx, false, nil
|
2021-05-08 14:25:55 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// AuthenticateGetOutbox delegates the authentication of a GET to an
|
|
|
|
|
// outbox.
|
|
|
|
|
//
|
|
|
|
|
// Always called, regardless whether the Federated Protocol or Social
|
|
|
|
|
// API is enabled.
|
|
|
|
|
//
|
|
|
|
|
// If an error is returned, it is passed back to the caller of
|
|
|
|
|
// GetOutbox. In this case, the implementation must not write a
|
|
|
|
|
// response to the ResponseWriter as is expected that the client will
|
|
|
|
|
// do so when handling the error. The 'authenticated' is ignored.
|
|
|
|
|
//
|
|
|
|
|
// If no error is returned, but authentication or authorization fails,
|
|
|
|
|
// then authenticated must be false and error nil. It is expected that
|
|
|
|
|
// the implementation handles writing to the ResponseWriter in this
|
|
|
|
|
// case.
|
|
|
|
|
//
|
|
|
|
|
// Finally, if the authentication and authorization succeeds, then
|
|
|
|
|
// authenticated must be true and error nil. The request will continue
|
|
|
|
|
// to be processed.
|
|
|
|
|
func (f *federator) AuthenticateGetOutbox(ctx context.Context, w http.ResponseWriter, r *http.Request) (context.Context, bool, error) {
|
2021-05-15 11:58:11 +02:00
|
|
|
// IMPLEMENTATION NOTE: For GoToSocial, we serve GETS to outboxes and inboxes through
|
2021-05-08 14:25:55 +02:00
|
|
|
// the CLIENT API, not through the federation API, so we just do nothing here.
|
2021-05-29 19:36:54 +02:00
|
|
|
return ctx, false, nil
|
2021-05-08 14:25:55 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// GetOutbox returns the OrderedCollection inbox of the actor for this
|
|
|
|
|
// context. It is up to the implementation to provide the correct
|
|
|
|
|
// collection for the kind of authorization given in the request.
|
|
|
|
|
//
|
|
|
|
|
// AuthenticateGetOutbox will be called prior to this.
|
|
|
|
|
//
|
|
|
|
|
// Always called, regardless whether the Federated Protocol or Social
|
|
|
|
|
// API is enabled.
|
|
|
|
|
func (f *federator) GetOutbox(ctx context.Context, r *http.Request) (vocab.ActivityStreamsOrderedCollectionPage, error) {
|
2021-05-15 11:58:11 +02:00
|
|
|
// IMPLEMENTATION NOTE: For GoToSocial, we serve GETS to outboxes and inboxes through
|
2021-05-08 14:25:55 +02:00
|
|
|
// the CLIENT API, not through the federation API, so we just do nothing here.
|
2021-05-29 19:36:54 +02:00
|
|
|
return streams.NewActivityStreamsOrderedCollectionPage(), nil
|
2021-05-08 14:25:55 +02:00
|
|
|
}
|
