bookwyrm-mastodon/fedireads/broadcast.py

''' send out activitypub messages '''
import json
from urllib.parse import urlparse
from base64 import b64encode
from Crypto.PublicKey import RSA
from Crypto.Signature import pkcs1_15
from Crypto.Hash import SHA256
from django.utils.http import http_date
import requests

from fedireads import models
from fedireads.tasks import app


def get_public_recipients(user, software=None):
    ''' everybody and their public inboxes '''
    followers = user.followers.filter(local=False)
    if software:
        # TODO: eventually we may want to handle particular software differently
        followers = followers.filter(fedireads_user=(software == 'fedireads'))

    shared = followers.filter(
        shared_inbox__isnull=False
    ).values_list('shared_inbox', flat=True).distinct()

    inboxes = followers.filter(
        shared_inbox__isnull=True
    ).values_list('inbox', flat=True)

    return list(shared) + list(inboxes)


def broadcast(sender, activity, software=None, \
              privacy='public', direct_recipients=None):
    ''' send out an event '''
    recipients = [u.inbox for u in direct_recipients or []]
    # TODO: other kinds of privacy
    if privacy == 'public':
        recipients = get_public_recipients(sender, software=software)
    broadcast_task.delay(sender.id, activity, recipients)


@app.task
def broadcast_task(sender_id, activity, recipients):
    ''' the celery task for broadcast '''
    sender = models.User.objects.get(id=sender_id)
    errors = []
    for recipient in recipients:
        try:
            sign_and_send(sender, activity, recipient)
        except requests.exceptions.HTTPError as e:
            # TODO: maybe keep track of users who cause errors
            errors.append({
                'error': e,
                'recipient': recipient,
                'activity': activity,
            })
    return errors


def sign_and_send(sender, activity, destination):
    ''' crpyto whatever and http junk '''
    inbox_parts = urlparse(destination)
    now = http_date()
    signature_headers = [
        '(request-target): post %s' % inbox_parts.path,
        'host: %s' % inbox_parts.netloc,
        'date: %s' % now
    ]
    message_to_sign = '\n'.join(signature_headers)

    # TODO: raise an error if the user doesn't have a private key
    signer = pkcs1_15.new(RSA.import_key(sender.private_key))
    signed_message = signer.sign(SHA256.new(message_to_sign.encode('utf8')))

    signature = {
        'keyId': '%s#main-key' % sender.actor,
        'algorithm': 'rsa-sha256',
        'headers': '(request-target) host date',
        'signature': b64encode(signed_message).decode('utf8'),
    }
    signature = ','.join('%s="%s"' % (k, v) for (k, v) in signature.items())

    response = requests.post(
        destination,
        data=json.dumps(activity),
        headers={
            'Date': now,
            'Signature': signature,
            'Content-Type': 'application/activity+json; charset=utf-8',
        },
    )
    if not response.ok:
        response.raise_for_status()
    return response
move things into different files 2020-02-11 18:17:21 -05:00			`''' send out activitypub messages '''`
Style fixes suggested by pylint. 2020-04-22 09:53:22 -04:00			`import json`
			`from urllib.parse import urlparse`
Code cleanup 2020-01-28 14:45:27 -05:00			`from base64 import b64encode`
			`from Crypto.PublicKey import RSA`
			`from Crypto.Signature import pkcs1_15`
			`from Crypto.Hash import SHA256`
Fixes feeration authentication header Co-authored-by: thricedotted <thricedotted@gmail.com> Fixes #1 2020-02-14 22:55:33 -05:00			`from django.utils.http import http_date`
Code cleanup 2020-01-28 14:45:27 -05:00			`import requests`

Broadcast book update events 2020-03-28 22:12:17 -04:00			`from fedireads import models`
Move broadcast to celery 2020-03-31 21:03:58 -04:00			`from fedireads.tasks import app`
Broadcast book update events 2020-03-28 22:12:17 -04:00
Code cleanup 2020-01-28 14:45:27 -05:00
Simplifies recipient logic 2020-04-20 20:43:42 -04:00			`def get_public_recipients(user, software=None):`
			`''' everybody and their public inboxes '''`
			`followers = user.followers.filter(local=False)`
			`if software:`
			`# TODO: eventually we may want to handle particular software differently`
			`followers = followers.filter(fedireads_user=(software == 'fedireads'))`
code style cleanup 2020-03-29 03:05:09 -04:00
Simplifies recipient logic 2020-04-20 20:43:42 -04:00			`shared = followers.filter(`
			`shared_inbox__isnull=False`
			`).values_list('shared_inbox', flat=True).distinct()`
Broadcast book update events 2020-03-28 22:12:17 -04:00
Simplifies recipient logic 2020-04-20 20:43:42 -04:00			`inboxes = followers.filter(`
			`shared_inbox__isnull=True`
			`).values_list('inbox', flat=True)`
Code cleanup 2020-01-28 14:45:27 -05:00
Simplifies recipient logic 2020-04-20 20:43:42 -04:00			`return list(shared) + list(inboxes)`
Send a different review to mastodon than to fedireads 2020-02-18 20:30:23 -05:00
Don't broadcast yourself 2020-03-31 20:07:35 -04:00
Simplifies recipient logic 2020-04-20 20:43:42 -04:00			`def broadcast(sender, activity, software=None, \`
			`privacy='public', direct_recipients=None):`
Code cleanup 2020-01-28 14:45:27 -05:00			`''' send out an event '''`
Simplifies recipient logic 2020-04-20 20:43:42 -04:00			`recipients = [u.inbox for u in direct_recipients or []]`
			`# TODO: other kinds of privacy`
			`if privacy == 'public':`
			`recipients = get_public_recipients(sender, software=software)`
use broadcast task 2020-04-01 13:16:20 -04:00			`broadcast_task.delay(sender.id, activity, recipients)`


			`@app.task`
			`def broadcast_task(sender_id, activity, recipients):`
			`''' the celery task for broadcast '''`
			`sender = models.User.objects.get(id=sender_id)`
Better error handling in broadcaster 2020-01-29 18:55:48 -05:00			`errors = []`
Code cleanup 2020-01-28 14:45:27 -05:00			`for recipient in recipients:`
Better error handling in broadcaster 2020-01-29 18:55:48 -05:00			`try:`
Sign messages 2020-02-15 16:01:42 -05:00			`sign_and_send(sender, activity, recipient)`
Better error handling in broadcaster 2020-01-29 18:55:48 -05:00			`except requests.exceptions.HTTPError as e:`
minor code cleanup and commenting 2020-02-07 18:11:53 -05:00			`# TODO: maybe keep track of users who cause errors`
Better error handling in broadcaster 2020-01-29 18:55:48 -05:00			`errors.append({`
			`'error': e,`
			`'recipient': recipient,`
minor code cleanup and commenting 2020-02-07 18:11:53 -05:00			`'activity': activity,`
Better error handling in broadcaster 2020-01-29 18:55:48 -05:00			`})`
			`return errors`
Code cleanup 2020-01-28 14:45:27 -05:00

minor code cleanup and commenting 2020-02-07 18:11:53 -05:00			`def sign_and_send(sender, activity, destination):`
Code cleanup 2020-01-28 14:45:27 -05:00			`''' crpyto whatever and http junk '''`
Fixes feeration authentication header Co-authored-by: thricedotted <thricedotted@gmail.com> Fixes #1 2020-02-14 22:55:33 -05:00			`inbox_parts = urlparse(destination)`
			`now = http_date()`
RSA sign and verify (working) 2020-01-29 23:56:18 -05:00			`signature_headers = [`
Fixes feeration authentication header Co-authored-by: thricedotted <thricedotted@gmail.com> Fixes #1 2020-02-14 22:55:33 -05:00			`'(request-target): post %s' % inbox_parts.path,`
			`'host: %s' % inbox_parts.netloc,`
			`'date: %s' % now`
RSA sign and verify (working) 2020-01-29 23:56:18 -05:00			`]`
			`message_to_sign = '\n'.join(signature_headers)`
minor code cleanup and commenting 2020-02-07 18:11:53 -05:00
			`# TODO: raise an error if the user doesn't have a private key`
Code cleanup 2020-01-28 14:45:27 -05:00			`signer = pkcs1_15.new(RSA.import_key(sender.private_key))`
			`signed_message = signer.sign(SHA256.new(message_to_sign.encode('utf8')))`

Better error handling in broadcaster 2020-01-29 18:55:48 -05:00			`signature = {`
			`'keyId': '%s#main-key' % sender.actor,`
			`'algorithm': 'rsa-sha256',`
			`'headers': '(request-target) host date',`
RSA sign and verify (working) 2020-01-29 23:56:18 -05:00			`'signature': b64encode(signed_message).decode('utf8'),`
Better error handling in broadcaster 2020-01-29 18:55:48 -05:00			`}`
			`signature = ','.join('%s="%s"' % (k, v) for (k, v) in signature.items())`

Code cleanup 2020-01-28 14:45:27 -05:00			`response = requests.post(`
			`destination,`
minor code cleanup and commenting 2020-02-07 18:11:53 -05:00			`data=json.dumps(activity),`
Code cleanup 2020-01-28 14:45:27 -05:00			`headers={`
			`'Date': now,`
			`'Signature': signature,`
Support users with no shared inbox 2020-02-07 16:39:48 -05:00			`'Content-Type': 'application/activity+json; charset=utf-8',`
Code cleanup 2020-01-28 14:45:27 -05:00			`},`
			`)`
			`if not response.ok:`
			`response.raise_for_status()`
Trying to get federated posting to work 2020-02-15 14:13:49 -05:00			`return response`