2020-10-17 18:46:40 +02:00
|
|
|
import * as http from 'http';
|
2019-07-28 02:49:02 +02:00
|
|
|
import * as https from 'https';
|
2019-02-01 11:59:12 +01:00
|
|
|
import { sign } from 'http-signature';
|
2019-01-30 03:51:29 +01:00
|
|
|
import * as crypto from 'crypto';
|
2018-04-05 11:43:06 +02:00
|
|
|
|
2021-03-23 09:43:07 +01:00
|
|
|
import config from '@/config';
|
2019-04-07 14:50:36 +02:00
|
|
|
import { ILocalUser } from '../../models/entities/user';
|
2021-03-23 09:43:07 +01:00
|
|
|
import { getAgentByUrl } from '@/misc/fetch';
|
2020-10-17 18:46:40 +02:00
|
|
|
import { URL } from 'url';
|
|
|
|
|
import got from 'got';
|
|
|
|
|
import * as Got from 'got';
|
2021-03-23 09:43:07 +01:00
|
|
|
import { getUserKeypair } from '@/misc/keypair-store';
|
2019-07-28 02:49:02 +02:00
|
|
|
|
2019-03-08 11:45:01 +01:00
|
|
|
export default async (user: ILocalUser, url: string, object: any) => {
|
2018-10-04 18:58:41 +02:00
|
|
|
const timeout = 10 * 1000;
|
|
|
|
|
|
2019-11-06 16:02:18 +01:00
|
|
|
const { protocol, hostname, port, pathname, search } = new URL(url);
|
2019-02-07 20:26:43 +01:00
|
|
|
|
2018-08-30 13:52:35 +02:00
|
|
|
const data = JSON.stringify(object);
|
|
|
|
|
|
|
|
|
|
const sha256 = crypto.createHash('sha256');
|
|
|
|
|
sha256.update(data);
|
|
|
|
|
const hash = sha256.digest('base64');
|
|
|
|
|
|
2021-03-22 07:14:54 +01:00
|
|
|
const keypair = await getUserKeypair(user.id);
|
2019-04-07 14:50:36 +02:00
|
|
|
|
2019-04-14 10:18:17 +02:00
|
|
|
await new Promise((resolve, reject) => {
|
2019-07-28 02:49:02 +02:00
|
|
|
const req = https.request({
|
2020-04-12 13:32:34 +02:00
|
|
|
agent: getAgentByUrl(new URL(`https://example.net`)),
|
2019-03-08 11:45:01 +01:00
|
|
|
protocol,
|
2019-07-28 02:49:02 +02:00
|
|
|
hostname,
|
2019-03-08 11:45:01 +01:00
|
|
|
port,
|
|
|
|
|
method: 'POST',
|
|
|
|
|
path: pathname + search,
|
|
|
|
|
timeout,
|
|
|
|
|
headers: {
|
|
|
|
|
'User-Agent': config.userAgent,
|
|
|
|
|
'Content-Type': 'application/activity+json',
|
|
|
|
|
'Digest': `SHA-256=${hash}`
|
|
|
|
|
}
|
|
|
|
|
}, res => {
|
2019-04-12 18:43:22 +02:00
|
|
|
if (res.statusCode! >= 400) {
|
2019-03-08 11:45:01 +01:00
|
|
|
reject(res);
|
|
|
|
|
} else {
|
|
|
|
|
resolve();
|
|
|
|
|
}
|
|
|
|
|
});
|
2018-04-02 13:16:13 +02:00
|
|
|
|
2019-03-08 11:45:01 +01:00
|
|
|
sign(req, {
|
|
|
|
|
authorizationHeaderName: 'Signature',
|
2019-04-07 20:35:02 +02:00
|
|
|
key: keypair.privateKey,
|
2020-01-19 20:51:44 +01:00
|
|
|
keyId: `${config.url}/users/${user.id}#main-key`,
|
2020-08-14 21:27:19 +02:00
|
|
|
headers: ['(request-target)', 'date', 'host', 'digest']
|
2019-03-08 11:45:01 +01:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
req.on('timeout', () => req.abort());
|
2018-04-21 17:41:07 +02:00
|
|
|
|
2019-03-08 11:45:01 +01:00
|
|
|
req.on('error', e => {
|
|
|
|
|
if (req.aborted) reject('timeout');
|
|
|
|
|
reject(e);
|
|
|
|
|
});
|
2018-10-04 18:58:41 +02:00
|
|
|
|
2019-03-08 11:45:01 +01:00
|
|
|
req.end(data);
|
2018-10-04 18:58:41 +02:00
|
|
|
});
|
2019-03-08 11:45:01 +01:00
|
|
|
};
|
2020-10-17 18:46:40 +02:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Get AP object with http-signature
|
|
|
|
|
* @param user http-signature user
|
|
|
|
|
* @param url URL to fetch
|
|
|
|
|
*/
|
|
|
|
|
export async function signedGet(url: string, user: ILocalUser) {
|
|
|
|
|
const timeout = 10 * 1000;
|
|
|
|
|
|
2021-03-22 07:14:54 +01:00
|
|
|
const keypair = await getUserKeypair(user.id);
|
2020-10-17 18:46:40 +02:00
|
|
|
|
|
|
|
|
const req = got.get<any>(url, {
|
|
|
|
|
headers: {
|
|
|
|
|
'Accept': 'application/activity+json, application/ld+json',
|
|
|
|
|
'User-Agent': config.userAgent,
|
|
|
|
|
},
|
|
|
|
|
responseType: 'json',
|
|
|
|
|
timeout,
|
|
|
|
|
hooks: {
|
|
|
|
|
beforeRequest: [
|
|
|
|
|
options => {
|
|
|
|
|
options.request = (url: URL, opt: http.RequestOptions, callback?: (response: any) => void) => {
|
|
|
|
|
// Select custom agent by URL
|
|
|
|
|
opt.agent = getAgentByUrl(url, false);
|
|
|
|
|
|
|
|
|
|
// Wrap original https?.request
|
|
|
|
|
const requestFunc = url.protocol === 'http:' ? http.request : https.request;
|
|
|
|
|
const clientRequest = requestFunc(url, opt, callback) as http.ClientRequest;
|
|
|
|
|
|
|
|
|
|
// HTTP-Signature
|
|
|
|
|
sign(clientRequest, {
|
|
|
|
|
authorizationHeaderName: 'Signature',
|
|
|
|
|
key: keypair.privateKey,
|
|
|
|
|
keyId: `${config.url}/users/${user.id}#main-key`,
|
|
|
|
|
headers: ['(request-target)', 'host', 'date', 'accept']
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
return clientRequest;
|
|
|
|
|
};
|
|
|
|
|
},
|
|
|
|
|
],
|
|
|
|
|
},
|
|
|
|
|
retry: 0,
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
const res = await receiveResponce(req, 10 * 1024 * 1024);
|
|
|
|
|
|
|
|
|
|
return res.body;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Receive response (with size limit)
|
|
|
|
|
* @param req Request
|
|
|
|
|
* @param maxSize size limit
|
|
|
|
|
*/
|
|
|
|
|
export async function receiveResponce<T>(req: Got.CancelableRequest<Got.Response<T>>, maxSize: number) {
|
|
|
|
|
// 応答ヘッダでサイズチェック
|
|
|
|
|
req.on('response', (res: Got.Response) => {
|
|
|
|
|
const contentLength = res.headers['content-length'];
|
|
|
|
|
if (contentLength != null) {
|
|
|
|
|
const size = Number(contentLength);
|
|
|
|
|
if (size > maxSize) {
|
|
|
|
|
req.cancel();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
// 受信中のデータでサイズチェック
|
|
|
|
|
req.on('downloadProgress', (progress: Got.Progress) => {
|
|
|
|
|
if (progress.transferred > maxSize) {
|
|
|
|
|
req.cancel();
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
// 応答取得 with ステータスコードエラーの整形
|
|
|
|
|
const res = await req.catch(e => {
|
|
|
|
|
if (e.name === 'HTTPError') {
|
|
|
|
|
const statusCode = (e as Got.HTTPError).response.statusCode;
|
|
|
|
|
const statusMessage = (e as Got.HTTPError).response.statusMessage;
|
|
|
|
|
throw {
|
|
|
|
|
name: `StatusError`,
|
|
|
|
|
statusCode,
|
|
|
|
|
message: `${statusCode} ${statusMessage}`,
|
|
|
|
|
};
|
|
|
|
|
} else {
|
|
|
|
|
throw e;
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
return res;
|
|
|
|
|
}
|
