activitypub-federation-rust/src/axum/inbox.rs

//! Handles incoming activities, verifying HTTP signatures and other checks
//!
#![doc = include_str!("../../docs/08_receiving_activities.md")]

use crate::{
    config::Data,
    error::Error,
    http_signatures::verify_signature,
    parse_received_activity,
    traits::{ActivityHandler, Actor, Object},
};
use axum::{
    body::Body,
    extract::FromRequest,
    http::{Request, StatusCode},
    response::{IntoResponse, Response},
};
use http::{HeaderMap, Method, Uri};
use serde::de::DeserializeOwned;
use tracing::debug;

/// Handles incoming activities, verifying HTTP signatures and other checks
pub async fn receive_activity<Activity, ActorT, Datatype>(
    activity_data: ActivityData,
    data: &Data<Datatype>,
) -> Result<(), <Activity as ActivityHandler>::Error>
where
    Activity: ActivityHandler<DataType = Datatype> + DeserializeOwned + Send + 'static,
    ActorT: Object<DataType = Datatype> + Actor + Send + 'static,
    for<'de2> <ActorT as Object>::Kind: serde::Deserialize<'de2>,
    <Activity as ActivityHandler>::Error: From<Error> + From<<ActorT as Object>::Error>,
    <ActorT as Object>::Error: From<Error>,
    Datatype: Clone,
{
    let (activity, actor) =
        parse_received_activity::<Activity, ActorT, _>(&activity_data.body, data).await?;

    verify_signature(
        &activity_data.headers,
        &activity_data.method,
        &activity_data.uri,
        actor.public_key_pem(),
    )?;

    debug!("Receiving activity {}", activity.id().to_string());
    activity.verify(data).await?;
    activity.receive(data).await?;
    Ok(())
}

/// Contains all data that is necessary to receive an activity from an HTTP request
#[derive(Debug)]
pub struct ActivityData {
    headers: HeaderMap,
    method: Method,
    uri: Uri,
    body: Vec<u8>,
}

impl<S> FromRequest<S> for ActivityData
where
    S: Send + Sync,
{
    type Rejection = Response;

    async fn from_request(req: Request<Body>, _state: &S) -> Result<Self, Self::Rejection> {
        #[allow(unused_mut)]
        let (mut parts, body) = req.into_parts();

        // take the full URI to handle nested routers
        // OriginalUri::from_request_parts has an Infallible error type
        #[cfg(feature = "axum-original-uri")]
        let uri = {
            use axum::extract::{FromRequestParts, OriginalUri};
            OriginalUri::from_request_parts(&mut parts, _state)
                .await
                .expect("infallible")
                .0
        };
        #[cfg(not(feature = "axum-original-uri"))]
        let uri = parts.uri;

        // this wont work if the body is an long running stream
        let bytes = axum::body::to_bytes(body, usize::MAX)
            .await
            .map_err(|err| (StatusCode::INTERNAL_SERVER_ERROR, err.to_string()).into_response())?;

        Ok(Self {
            headers: parts.headers,
            method: parts.method,
            uri,
            body: bytes.to_vec(),
        })
    }
}

// TODO: copy tests from actix-web inbox and implement for axum as well
move files 2023-03-05 17:17:34 -08:00			`//! Handles incoming activities, verifying HTTP signatures and other checks`
			`//!`
			`#![doc = include_str!("../../docs/08_receiving_activities.md")]`

feat: add axum compat (#12) * feat: add actix feature flag * (WIP)feat: add axum feature * WIP: axum veridy digest + example Note: this does not compile yet * WIP * chore: clippy lints * Use actix rt for axum example * ci: run example in CI for both actix and axum * feat: add json wrapper type for axum * docs: update readme with actix and axum feature flags * fix: fix ci * chore: more clippy lints * refactor: update according to PR comment and factorize 'verify_digest' 2022-11-28 13:19:56 -08:00			`use crate::{`
Changes to make Lemmy work with 0.4 (#29) * Make it work with Lemmy * working but needs cleanup * almost everything working * debug * stack overflow fix 2023-03-15 18:11:48 -07:00			`config::Data,`
Further improvements 2023-03-01 15:19:10 -08:00			`error::Error,`
Better error when activity receive fails (#89) * Minor refactoring * Better error when receive fails * clippy * add test case * comments * take ref 2023-12-12 02:30:21 -08:00			`http_signatures::verify_signature,`
			`parse_received_activity,`
Dont use `apub` in type names 2023-03-16 13:41:29 -07:00			`traits::{ActivityHandler, Actor, Object},`
feat: add axum compat (#12) * feat: add actix feature flag * (WIP)feat: add axum feature * WIP: axum veridy digest + example Note: this does not compile yet * WIP * chore: clippy lints * Use actix rt for axum example * ci: run example in CI for both actix and axum * feat: add json wrapper type for axum * docs: update readme with actix and axum feature flags * fix: fix ci * chore: more clippy lints * refactor: update according to PR comment and factorize 'verify_digest' 2022-11-28 13:19:56 -08:00			`};`
move files 2023-03-05 17:17:34 -08:00			`use axum::{`
Upgrade axum and http (#123) * Upgrade axum and http * Fix formatting * use expect --------- Co-authored-by: Felix Ableitner <me@nutomic.com> 2024-09-11 05:47:13 -07:00			`body::Body,`
Feature flag for axum-original-uri 2025-06-05 06:37:37 -07:00			`extract::FromRequest,`
move files 2023-03-05 17:17:34 -08:00			`http::{Request, StatusCode},`
			`response::{IntoResponse, Response},`
			`};`
Feature flag for axum-original-uri 2025-06-05 06:37:37 -07:00			`use http::{HeaderMap, Method, Uri};`
feat: add axum compat (#12) * feat: add actix feature flag * (WIP)feat: add axum feature * WIP: axum veridy digest + example Note: this does not compile yet * WIP * chore: clippy lints * Use actix rt for axum example * ci: run example in CI for both actix and axum * feat: add json wrapper type for axum * docs: update readme with actix and axum feature flags * fix: fix ci * chore: more clippy lints * refactor: update according to PR comment and factorize 'verify_digest' 2022-11-28 13:19:56 -08:00			`use serde::de::DeserializeOwned;`
			`use tracing::debug;`

finish rustdoc 2023-03-02 06:18:06 -08:00			`/// Handles incoming activities, verifying HTTP signatures and other checks`
feat: add axum compat (#12) * feat: add actix feature flag * (WIP)feat: add axum feature * WIP: axum veridy digest + example Note: this does not compile yet * WIP * chore: clippy lints * Use actix rt for axum example * ci: run example in CI for both actix and axum * feat: add json wrapper type for axum * docs: update readme with actix and axum feature flags * fix: fix ci * chore: more clippy lints * refactor: update according to PR comment and factorize 'verify_digest' 2022-11-28 13:19:56 -08:00			`pub async fn receive_activity<Activity, ActorT, Datatype>(`
Various improvements for usability, examples and docs 2023-02-19 04:26:01 -08:00			`activity_data: ActivityData,`
Changes to make Lemmy work with 0.4 (#29) * Make it work with Lemmy * working but needs cleanup * almost everything working * debug * stack overflow fix 2023-03-15 18:11:48 -07:00			`data: &Data<Datatype>,`
feat: add axum compat (#12) * feat: add actix feature flag * (WIP)feat: add axum feature * WIP: axum veridy digest + example Note: this does not compile yet * WIP * chore: clippy lints * Use actix rt for axum example * ci: run example in CI for both actix and axum * feat: add json wrapper type for axum * docs: update readme with actix and axum feature flags * fix: fix ci * chore: more clippy lints * refactor: update according to PR comment and factorize 'verify_digest' 2022-11-28 13:19:56 -08:00			`) -> Result<(), <Activity as ActivityHandler>::Error>`
			`where`
			`Activity: ActivityHandler<DataType = Datatype> + DeserializeOwned + Send + 'static,`
Dont use `apub` in type names 2023-03-16 13:41:29 -07:00			`ActorT: Object<DataType = Datatype> + Actor + Send + 'static,`
			`for<'de2> <ActorT as Object>::Kind: serde::Deserialize<'de2>,`
Remove `anyhow` from trait definitions (#82) 2023-11-20 02:42:47 -08:00			`<Activity as ActivityHandler>::Error: From<Error> + From<<ActorT as Object>::Error>,`
			`<ActorT as Object>::Error: From<Error>,`
Various improvements for usability, examples and docs 2023-02-19 04:26:01 -08:00			`Datatype: Clone,`
feat: add axum compat (#12) * feat: add actix feature flag * (WIP)feat: add axum feature * WIP: axum veridy digest + example Note: this does not compile yet * WIP * chore: clippy lints * Use actix rt for axum example * ci: run example in CI for both actix and axum * feat: add json wrapper type for axum * docs: update readme with actix and axum feature flags * fix: fix ci * chore: more clippy lints * refactor: update according to PR comment and factorize 'verify_digest' 2022-11-28 13:19:56 -08:00			`{`
Better error when activity receive fails (#89) * Minor refactoring * Better error when receive fails * clippy * add test case * comments * take ref 2023-12-12 02:30:21 -08:00			`let (activity, actor) =`
			`parse_received_activity::<Activity, ActorT, _>(&activity_data.body, data).await?;`
feat: add axum compat (#12) * feat: add actix feature flag * (WIP)feat: add axum feature * WIP: axum veridy digest + example Note: this does not compile yet * WIP * chore: clippy lints * Use actix rt for axum example * ci: run example in CI for both actix and axum * feat: add json wrapper type for axum * docs: update readme with actix and axum feature flags * fix: fix ci * chore: more clippy lints * refactor: update according to PR comment and factorize 'verify_digest' 2022-11-28 13:19:56 -08:00
Various improvements for usability, examples and docs 2023-02-19 04:26:01 -08:00			`verify_signature(`
			`&activity_data.headers,`
			`&activity_data.method,`
			`&activity_data.uri,`
Add verify methods back in, some more fixes (#28) 2023-03-09 13:09:44 -08:00			`actor.public_key_pem(),`
Various improvements for usability, examples and docs 2023-02-19 04:26:01 -08:00			`)?;`
feat: add axum compat (#12) * feat: add actix feature flag * (WIP)feat: add axum feature * WIP: axum veridy digest + example Note: this does not compile yet * WIP * chore: clippy lints * Use actix rt for axum example * ci: run example in CI for both actix and axum * feat: add json wrapper type for axum * docs: update readme with actix and axum feature flags * fix: fix ci * chore: more clippy lints * refactor: update according to PR comment and factorize 'verify_digest' 2022-11-28 13:19:56 -08:00
			`debug!("Receiving activity {}", activity.id().to_string());`
Add verify methods back in, some more fixes (#28) 2023-03-09 13:09:44 -08:00			`activity.verify(data).await?;`
Merge handler params into single struct (#25) 2023-02-11 04:32:35 -08:00			`activity.receive(data).await?;`
feat: add axum compat (#12) * feat: add actix feature flag * (WIP)feat: add axum feature * WIP: axum veridy digest + example Note: this does not compile yet * WIP * chore: clippy lints * Use actix rt for axum example * ci: run example in CI for both actix and axum * feat: add json wrapper type for axum * docs: update readme with actix and axum feature flags * fix: fix ci * chore: more clippy lints * refactor: update according to PR comment and factorize 'verify_digest' 2022-11-28 13:19:56 -08:00			`Ok(())`
			`}`
Various improvements for usability, examples and docs 2023-02-19 04:26:01 -08:00
move files 2023-03-05 17:17:34 -08:00			`/// Contains all data that is necessary to receive an activity from an HTTP request`
			`#[derive(Debug)]`
			`pub struct ActivityData {`
			`headers: HeaderMap,`
			`method: Method,`
Feature flag for axum-original-uri 2025-06-05 06:37:37 -07:00			`uri: Uri,`
move files 2023-03-05 17:17:34 -08:00			`body: Vec<u8>,`
			`}`

Upgrade axum and http (#123) * Upgrade axum and http * Fix formatting * use expect --------- Co-authored-by: Felix Ableitner <me@nutomic.com> 2024-09-11 05:47:13 -07:00			`impl<S> FromRequest<S> for ActivityData`
move files 2023-03-05 17:17:34 -08:00			`where`
			`S: Send + Sync,`
			`{`
			`type Rejection = Response;`

Feature flag for axum-original-uri 2025-06-05 06:37:37 -07:00			`async fn from_request(req: Request<Body>, _state: &S) -> Result<Self, Self::Rejection> {`
			`#[allow(unused_mut)]`
Use `OriginalUri` for Axum `ActivityData` (#141) * Use OriginalUri for axum ActivityData When the inbox path is under a nested `Router`, the received request has a URI with the common prefix stripped. This causes incoming signatures to be considered invalid since the path is different (see https://github.com/LemmyNet/activitypub-federation-rust/issues/107#issuecomment-2767428107) This commit uses `OriginalUri` for URI extraction instead, which will retrieve the full URI regardless of router nesting * Use router nesting for local_federation With 8c787f5, router nesting is supported correctly in axum * Fix docs typo (#143) --------- Co-authored-by: Zami <szgie@proton.me> Co-authored-by: Felix Ableitner <me@nutomic.com> 2025-06-02 01:56:25 -07:00			`let (mut parts, body) = req.into_parts();`

			`// take the full URI to handle nested routers`
			`// OriginalUri::from_request_parts has an Infallible error type`
Feature flag for axum-original-uri 2025-06-05 06:37:37 -07:00			`#[cfg(feature = "axum-original-uri")]`
			`let uri = {`
			`use axum::extract::{FromRequestParts, OriginalUri};`
			`OriginalUri::from_request_parts(&mut parts, _state)`
			`.await`
			`.expect("infallible")`
			`.0`
			`};`
			`#[cfg(not(feature = "axum-original-uri"))]`
			`let uri = parts.uri;`
move files 2023-03-05 17:17:34 -08:00
			`// this wont work if the body is an long running stream`
Upgrade axum and http (#123) * Upgrade axum and http * Fix formatting * use expect --------- Co-authored-by: Felix Ableitner <me@nutomic.com> 2024-09-11 05:47:13 -07:00			`let bytes = axum::body::to_bytes(body, usize::MAX)`
move files 2023-03-05 17:17:34 -08:00			`.await`
			`.map_err(\|err\| (StatusCode::INTERNAL_SERVER_ERROR, err.to_string()).into_response())?;`

			`Ok(Self {`
			`headers: parts.headers,`
			`method: parts.method,`
Use `OriginalUri` for Axum `ActivityData` (#141) * Use OriginalUri for axum ActivityData When the inbox path is under a nested `Router`, the received request has a URI with the common prefix stripped. This causes incoming signatures to be considered invalid since the path is different (see https://github.com/LemmyNet/activitypub-federation-rust/issues/107#issuecomment-2767428107) This commit uses `OriginalUri` for URI extraction instead, which will retrieve the full URI regardless of router nesting * Use router nesting for local_federation With 8c787f5, router nesting is supported correctly in axum * Fix docs typo (#143) --------- Co-authored-by: Zami <szgie@proton.me> Co-authored-by: Felix Ableitner <me@nutomic.com> 2025-06-02 01:56:25 -07:00			`uri,`
move files 2023-03-05 17:17:34 -08:00			`body: bytes.to_vec(),`
			`})`
			`}`
			`}`

Various improvements for usability, examples and docs 2023-02-19 04:26:01 -08:00			`// TODO: copy tests from actix-web inbox and implement for axum as well`