mirror of
				https://codeberg.org/forgejo/forgejo.git
				synced 2025-10-26 12:01:08 +00:00 
			
		
		
		
	- Set the right keyID and use the right signing keys for outgoing requests. - Verify the HTTP signature of all incoming requests, except for the server actor. - Caches keys of incoming requests for users and servers actors. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7035 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: famfo <famfo@famfo.xyz> Co-committed-by: famfo <famfo@famfo.xyz>
		
			
				
	
	
		
			55 lines
		
	
	
	
		
			1.9 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
			
		
		
	
	
			55 lines
		
	
	
	
		
			1.9 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
| // Copyright 2024 The Forgejo Authors. All rights reserved.
 | |
| // SPDX-License-Identifier: MIT
 | |
| 
 | |
| package forgefed
 | |
| 
 | |
| import (
 | |
| 	"database/sql"
 | |
| 	"fmt"
 | |
| 	"strings"
 | |
| 	"time"
 | |
| 
 | |
| 	"forgejo.org/modules/timeutil"
 | |
| 	"forgejo.org/modules/validation"
 | |
| )
 | |
| 
 | |
| // FederationHost data type
 | |
| // swagger:model
 | |
| type FederationHost struct {
 | |
| 	ID             int64                  `xorm:"pk autoincr"`
 | |
| 	HostFqdn       string                 `xorm:"host_fqdn UNIQUE INDEX VARCHAR(255) NOT NULL"`
 | |
| 	NodeInfo       NodeInfo               `xorm:"extends NOT NULL"`
 | |
| 	LatestActivity time.Time              `xorm:"NOT NULL"`
 | |
| 	Created        timeutil.TimeStamp     `xorm:"created"`
 | |
| 	Updated        timeutil.TimeStamp     `xorm:"updated"`
 | |
| 	KeyID          sql.NullString         `xorm:"key_id UNIQUE"`
 | |
| 	PublicKey      sql.Null[sql.RawBytes] `xorm:"BLOB"`
 | |
| }
 | |
| 
 | |
| // Factory function for FederationHost. Created struct is asserted to be valid.
 | |
| func NewFederationHost(nodeInfo NodeInfo, hostFqdn string) (FederationHost, error) {
 | |
| 	result := FederationHost{
 | |
| 		HostFqdn: strings.ToLower(hostFqdn),
 | |
| 		NodeInfo: nodeInfo,
 | |
| 	}
 | |
| 	if valid, err := validation.IsValid(result); !valid {
 | |
| 		return FederationHost{}, err
 | |
| 	}
 | |
| 	return result, nil
 | |
| }
 | |
| 
 | |
| // Validate collects error strings in a slice and returns this
 | |
| func (host FederationHost) Validate() []string {
 | |
| 	var result []string
 | |
| 	result = append(result, validation.ValidateNotEmpty(host.HostFqdn, "HostFqdn")...)
 | |
| 	result = append(result, validation.ValidateMaxLen(host.HostFqdn, 255, "HostFqdn")...)
 | |
| 	result = append(result, host.NodeInfo.Validate()...)
 | |
| 	if host.HostFqdn != strings.ToLower(host.HostFqdn) {
 | |
| 		result = append(result, fmt.Sprintf("HostFqdn has to be lower case but was: %v", host.HostFqdn))
 | |
| 	}
 | |
| 	if !host.LatestActivity.IsZero() && host.LatestActivity.After(time.Now().Add(10*time.Minute)) {
 | |
| 		result = append(result, fmt.Sprintf("Latest Activity cannot be in the far future: %v", host.LatestActivity))
 | |
| 	}
 | |
| 
 | |
| 	return result
 | |
| }
 |