zaaarf/upub
1
0
Fork 0
forked from alemi/upub
Code Pull requests Activity

fix: ops must include digest and compose header

Browse source
This commit is contained in:
əlemi 2024-03-26 21:30:41 +01:00
parent fc4674ecca
commit e8eff349cf
Signed by: alemi
GPG key ID: A4895B84D311642C
1 changed files with 13 additions and 11 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

24
src/dispatcher.rs
View file

@ -102,15 +102,16 @@ async fn deliver(key: &PKey<Private>, to: &str, from: &str, payload: serde_json:
let digest = format!("sha-256={}", sha256::digest(&payload)); let digest = format!("sha-256={}", sha256::digest(&payload));
let host = Context::server(to); let host = Context::server(to);
let date = chrono::Utc::now().format("%d %b %Y %H:%M:%S %Z").to_string(); // TODO literally what the fuck let date = chrono::Utc::now().format("%d %b %Y %H:%M:%S %Z").to_string(); // TODO literally what the fuck
let headers : BTreeMap<String, String> = [
("Host".to_string(), host.clone()),
("Date".to_string(), date.clone()),
("Digest".to_string(), digest.clone()),
].into();
let path = to.replace("https://", "").replace("http://", "").replace(&host, ""); let path = to.replace("https://", "").replace("http://", "").replace(&host, "");
tracing::info!("payload:\n{payload}\nsha-256={digest}");
// let headers : BTreeMap<String, String> = [
// ("Host".to_string(), host.clone()),
// ("Date".to_string(), date.clone()),
// ("Digest".to_string(), digest.clone()),
// ].into();
// let signature_header = Config::new() // let signature_header = Config::new()
// .dont_use_created_field() // .dont_use_created_field()
// .require_header("host") // .require_header("host")
@ -129,14 +130,15 @@ async fn deliver(key: &PKey<Private>, to: &str, from: &str, payload: serde_json:
// .signature_header(); // .signature_header();
let signature_header = { let signature_header = {
let to_sign = format!("(request-target): post {path}\nhost: {host}\ndate: {date}"); let to_sign = format!("(request-target): post {path}\nhost: {host}\ndate: {date}\ndigest: {digest}");
tracing::info!("signing '{to_sign}'"); tracing::info!("signing:\n{to_sign}");
let mut signer = Signer::new(MessageDigest::sha256(), key)?; let mut signer = Signer::new(MessageDigest::sha256(), key)?;
signer.update(to_sign.as_bytes())?; signer.update(to_sign.as_bytes())?;
base64::prelude::BASE64_URL_SAFE.encode(signer.sign_to_vec()?) let signature = base64::prelude::BASE64_URL_SAFE.encode(signer.sign_to_vec()?);
format!("keyId=\"{from}#main-key\",headers=\"host date digest\",signature=\"{signature}\"")
}; };
tracing::info!("signature header: {signature_header}"); tracing::info!("signature header:\n{signature_header}");
let res = reqwest::Client::new() let res = reqwest::Client::new()
.post(to) .post(to)