Compare commits
2 commits
292b9f06d8
...
1d19b8c2a6
| Author | SHA1 | Date | |
|---|---|---|---|
1d19b8c2a6
|
|||
|
e9fe8ba236
|
3 changed files with 28 additions and 12 deletions
|
|
@ -40,9 +40,16 @@ pub async fn post(
|
|||
Json(activity): Json<serde_json::Value>
|
||||
) -> crate::Result<()> {
|
||||
let Identity::Remote(server) = auth else {
|
||||
if activity.activity_type() != Some(ActivityType::Delete) { // this is spammy af, ignore them!
|
||||
tracing::warn!("refusing unauthorized activity: {}", pretty_json!(activity));
|
||||
if activity.activity_type() == Some(ActivityType::Delete) {
|
||||
// this is spammy af, ignore them!
|
||||
// we basically received a delete for a user we can't fetch and verify, meaning remote
|
||||
// deleted someone we never saw. technically we deleted nothing so we should return error,
|
||||
// but mastodon keeps hammering us trying to delete this user, so just make mastodon happy
|
||||
// and return 200 without even bothering checking this stuff
|
||||
// would be cool if mastodon played nicer with the network...
|
||||
return Ok(());
|
||||
}
|
||||
tracing::warn!("refusing unauthorized activity: {}", pretty_json!(activity));
|
||||
if matches!(auth, Identity::Anonymous) {
|
||||
return Err(UpubError::unauthorized());
|
||||
} else {
|
||||
|
|
|
|||
|
|
@ -98,21 +98,21 @@ impl Http {
|
|||
req = req.json(data);
|
||||
}
|
||||
|
||||
req.send()
|
||||
.await?
|
||||
.error_for_status()
|
||||
req.send().await
|
||||
}
|
||||
|
||||
pub async fn fetch<T: serde::de::DeserializeOwned>(url: &str, token: Auth) -> reqwest::Result<T> {
|
||||
Self::request::<()>(reqwest::Method::GET, url, None, token)
|
||||
.await?
|
||||
.error_for_status()?
|
||||
.json::<T>()
|
||||
.await
|
||||
}
|
||||
|
||||
pub async fn post<T: serde::ser::Serialize>(url: &str, data: &T, token: Auth) -> reqwest::Result<()> {
|
||||
Self::request(reqwest::Method::POST, url, Some(data), token)
|
||||
.await?;
|
||||
.await?
|
||||
.error_for_status()?;
|
||||
Ok(())
|
||||
}
|
||||
}
|
||||
|
|
|
|||
|
|
@ -299,12 +299,7 @@ pub fn DebugPage() -> impl IntoView {
|
|||
}
|
||||
} else {
|
||||
let url = format!("{URL_BASE}/dbg?id={fetch_url}");
|
||||
spawn_local(async move {
|
||||
match Http::fetch::<serde_json::Value>(&url, auth).await {
|
||||
Ok(x) => set_object.set(Arc::new(x)),
|
||||
Err(e) => set_object.set(Arc::new(serde_json::Value::String(e.to_string()))),
|
||||
}
|
||||
});
|
||||
spawn_local(async move { set_object.set(Arc::new(debug_fetch(&url, auth).await)) });
|
||||
}
|
||||
} >
|
||||
<table class="align w-100" >
|
||||
|
|
@ -385,3 +380,17 @@ pub fn SearchPage() -> impl IntoView {
|
|||
</blockquote>
|
||||
}
|
||||
}
|
||||
|
||||
// this is a rather weird way to fetch but i want to see the bare error text if it fails!
|
||||
async fn debug_fetch(url: &str, token: Auth) -> serde_json::Value {
|
||||
match Http::request::<()>(reqwest::Method::GET, url, None, token).await {
|
||||
Err(e) => serde_json::Value::String(format!("[!] failed sending request: {e}")),
|
||||
Ok(res) => match res.text().await {
|
||||
Err(e) => serde_json::Value::String(format!("[!] invalid response body: {e}")),
|
||||
Ok(x) => match serde_json::from_str(&x) {
|
||||
Err(_) => serde_json::Value::String(x),
|
||||
Ok(v) => v,
|
||||
},
|
||||
}
|
||||
}
|
||||
}
|
||||
|
|
|
|||
Loading…
Reference in a new issue