diff options
| author | Mark Felder <feld@feld.me> | 2024-08-30 09:46:10 -0400 |
|---|---|---|
| committer | Mark Felder <feld@feld.me> | 2024-08-30 10:05:09 -0400 |
| commit | 11ee94ae17094a2bc33505a31671b8c705f768a4 (patch) | |
| tree | 9948452644534abdd16a347ab3e54783faec1d50 /lib | |
| parent | e38f5f1a817d6da30e9a128ec74a2a7c78faf174 (diff) | |
| download | pleroma-11ee94ae17094a2bc33505a31671b8c705f768a4.tar.gz pleroma-11ee94ae17094a2bc33505a31671b8c705f768a4.zip | |
InboxGuardPlug: Add early rejection of unknown activity types
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/pleroma/web/plugs/inbox_guard_plug.ex | 31 |
1 files changed, 27 insertions, 4 deletions
diff --git a/lib/pleroma/web/plugs/inbox_guard_plug.ex b/lib/pleroma/web/plugs/inbox_guard_plug.ex index 643b586d4..0064cce76 100644 --- a/lib/pleroma/web/plugs/inbox_guard_plug.ex +++ b/lib/pleroma/web/plugs/inbox_guard_plug.ex @@ -4,7 +4,7 @@ defmodule Pleroma.Web.Plugs.InboxGuardPlug do import Plug.Conn - import Pleroma.Constants, only: [allowed_activity_types_from_strangers: 0] + import Pleroma.Constants, only: [activity_types: 0, allowed_activity_types_from_strangers: 0] alias Pleroma.Config alias Pleroma.User @@ -14,24 +14,46 @@ defmodule Pleroma.Web.Plugs.InboxGuardPlug do end def call(%{assigns: %{valid_signature: true}} = conn, _opts) do - conn + with {_, true} <- {:federating, Config.get!([:instance, :federating])} do + conn + |> filter_activity_types() + else + {:federating, false} -> + conn + |> json(403, "Not federating") + |> halt() + end end def call(conn, _opts) do with {_, true} <- {:federating, Config.get!([:instance, :federating])}, - true <- known_actor?(conn) do + conn = filter_activity_types(conn), + {:known, true} <- {:known, known_actor?(conn)} do conn else {:federating, false} -> conn |> json(403, "Not federating") + |> halt() - _ -> + {:known, false} -> conn |> filter_from_strangers() end end + # Early rejection of unrecognized types + defp filter_activity_types(%{body_params: %{"type" => type}} = conn) do + with true <- type in activity_types() do + conn + else + _ -> + conn + |> json(400, "Invalid activity type") + |> halt() + end + end + # If signature failed but we know this actor we should # accept it as we may only need to refetch their public key # during processing @@ -52,6 +74,7 @@ defmodule Pleroma.Web.Plugs.InboxGuardPlug do _ -> conn |> json(400, "Invalid activity type for an unknown actor") + |> halt() end end |