Slop/activitypub-federation-rust
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Compare commits

merge into: Slop:main
Branches Tags
Slop:main
Slop:public-ip-check
Slop:release/0.5
Slop:0.5-ip-checks
Slop:ip-checks
Slop:better-ip-check
Slop:to-canonical
Slop:allow-local
Slop:upgrade-reqwest
Slop:update-deps2
Slop:revert-webfinger-parse-order
Slop:deserialize-last-null
Slop:increase-reqwest-max-body-size
Slop:resolve-deleted
Slop:deserialize-last
Slop:object-id-deleted
Slop:incoming-activity-hook
Slop:feature-axum-original-uri
Slop:upgrade-deps6
Slop:object-either-fixes
Slop:object-either
Slop:more-url-validation
Slop:upgrade_deps_1
Slop:verify_is_remote_object
Slop:upgrade-deps5
Slop:sign-request
Slop:fetch-local-object
Slop:dereference-default
Slop:warn-slow-send
Slop:refetch-id-no-match
Slop:nested-comments-stack-overflow
Slop:url-wrapper
Slop:pbzweihander-upgrade-axum
Slop:fix_clippy
Slop:upgrade-deps4
Slop:add_codeowners
Slop:remove-pleroma-webfinger-test
Slop:content-type-lower
Slop:renovate/configure
Slop:content-type-case-insensitive
Slop:upgrade-deps
Slop:signed-digest
Slop:is-local-no-domain
Slop:security-fixes
Slop:object-id-is-local
Slop:no-duplicate-ci
Slop:follow-local-redirect
Slop:retry-more-activity-errors
Slop:actix-inbox-parts
Slop:activity-published-field
Slop:fix-fetch-limit
Slop:debug-signed-fetch
Slop:optional-activity-queue
Slop:fetch-security-checks
Slop:deserialize_one_return
Slop:better-json-errors
Slop:context-not-array
Slop:refactoring
Slop:fetch-errors
Slop:diesel-feature
Slop:upgrade-deps3
Slop:parse-impl
Slop:partialeq
Slop:webfinger-alphabets
Slop:fetch-redirect
Slop:0.4
Slop:webfinger-template
Slop:url-verifier-error
Slop:Nutomic-patch-1
Slop:fix-tests
Slop:send-rate-limit
Slop:fix-signature-expiration
Slop:retry-connection-failure
Slop:http-signature-expire-day
Slop:update-deps
Slop:actix-rt-dev-dep
Slop:upgrade-deps2
Slop:add_woodpecker
Slop:0.4-lemmy-compat
Slop:readd-verify-methods
Slop:various-improvements
Slop:merge-handler-params
Slop:0.3
Slop:fix-deserialize-skip-error
Slop:no-verify
Slop:rename-http-fetch-limit
Slop:fix-date-header
Slop:abort-retry
Slop:less-retries
Slop:digest-verified
Slop:use-enum-delegate
Slop:async-verify
Slop:prepare-0.2.0
Slop:0.7.0-beta.11
Slop:0.7.0-beta.10
Slop:0.5.11
Slop:0.7.0-beta.9
Slop:0.7.0-beta.8
Slop:0.7.0-beta.7
Slop:0.7.0-beta.6
Slop:0.7.0-beta.5
Slop:0.7.0-beta.4
Slop:0.7.0-beta.3
Slop:0.7.0-beta.2
Slop:0.7.0-beta.1
Slop:0.6.5
Slop:0.6.4
Slop:0.6.3
Slop:0.5.10
Slop:0.6.2
Slop:0.6.1
Slop:0.6.0
Slop:0.6.0-alpha3
Slop:0.5.9
Slop:0.6.0-alpha2
Slop:0.6.0-alpha1
Slop:0.5.8
Slop:0.5.7
Slop:0.5.6
Slop:0.5.5
Slop:0.5.4
Slop:0.5.3
Slop:0.5.2
Slop:0.5.1
Slop:0.5.1-beta.1
Slop:0.5.0
Slop:0.5.0-beta.7
Slop:0.5.0-beta.6
Slop:0.5.0-beta.5
Slop:0.5.0-beta.4
Slop:0.5.0-beta.3
Slop:0.5.0-beta.2
Slop:0.4.7
Slop:0.5.0-beta.1
Slop:0.4.6
Slop:0.4.5
Slop:0.4.4
Slop:0.4.3
Slop:0.4.2
Slop:0.4.1
Slop:0.4.0
Slop:0.4.0-rc3
Slop:0.4.0-rc2
Slop:0.4.0-rc1
Slop:0.3.5
Slop:0.3.4
Slop:0.3.3
Slop:0.3.2
Slop:0.3.1
Slop:0.3.0
Slop:0.2.3
Slop:0.2.2
Slop:0.2.1
Slop:0.2.0
Slop:0.1.0
...
pull from: Slop:signed-digest
Branches Tags
Slop:main
Slop:public-ip-check
Slop:release/0.5
Slop:0.5-ip-checks
Slop:ip-checks
Slop:better-ip-check
Slop:to-canonical
Slop:allow-local
Slop:upgrade-reqwest
Slop:update-deps2
Slop:revert-webfinger-parse-order
Slop:deserialize-last-null
Slop:increase-reqwest-max-body-size
Slop:resolve-deleted
Slop:deserialize-last
Slop:object-id-deleted
Slop:incoming-activity-hook
Slop:feature-axum-original-uri
Slop:upgrade-deps6
Slop:object-either-fixes
Slop:object-either
Slop:more-url-validation
Slop:upgrade_deps_1
Slop:verify_is_remote_object
Slop:upgrade-deps5
Slop:sign-request
Slop:fetch-local-object
Slop:dereference-default
Slop:warn-slow-send
Slop:refetch-id-no-match
Slop:nested-comments-stack-overflow
Slop:url-wrapper
Slop:pbzweihander-upgrade-axum
Slop:fix_clippy
Slop:upgrade-deps4
Slop:add_codeowners
Slop:remove-pleroma-webfinger-test
Slop:content-type-lower
Slop:renovate/configure
Slop:content-type-case-insensitive
Slop:upgrade-deps
Slop:signed-digest
Slop:is-local-no-domain
Slop:security-fixes
Slop:object-id-is-local
Slop:no-duplicate-ci
Slop:follow-local-redirect
Slop:retry-more-activity-errors
Slop:actix-inbox-parts
Slop:activity-published-field
Slop:fix-fetch-limit
Slop:debug-signed-fetch
Slop:optional-activity-queue
Slop:fetch-security-checks
Slop:deserialize_one_return
Slop:better-json-errors
Slop:context-not-array
Slop:refactoring
Slop:fetch-errors
Slop:diesel-feature
Slop:upgrade-deps3
Slop:parse-impl
Slop:partialeq
Slop:webfinger-alphabets
Slop:fetch-redirect
Slop:0.4
Slop:webfinger-template
Slop:url-verifier-error
Slop:Nutomic-patch-1
Slop:fix-tests
Slop:send-rate-limit
Slop:fix-signature-expiration
Slop:retry-connection-failure
Slop:http-signature-expire-day
Slop:update-deps
Slop:actix-rt-dev-dep
Slop:upgrade-deps2
Slop:add_woodpecker
Slop:0.4-lemmy-compat
Slop:readd-verify-methods
Slop:various-improvements
Slop:merge-handler-params
Slop:0.3
Slop:fix-deserialize-skip-error
Slop:no-verify
Slop:rename-http-fetch-limit
Slop:fix-date-header
Slop:abort-retry
Slop:less-retries
Slop:digest-verified
Slop:use-enum-delegate
Slop:async-verify
Slop:prepare-0.2.0
Slop:0.7.0-beta.11
Slop:0.7.0-beta.10
Slop:0.5.11
Slop:0.7.0-beta.9
Slop:0.7.0-beta.8
Slop:0.7.0-beta.7
Slop:0.7.0-beta.6
Slop:0.7.0-beta.5
Slop:0.7.0-beta.4
Slop:0.7.0-beta.3
Slop:0.7.0-beta.2
Slop:0.7.0-beta.1
Slop:0.6.5
Slop:0.6.4
Slop:0.6.3
Slop:0.5.10
Slop:0.6.2
Slop:0.6.1
Slop:0.6.0
Slop:0.6.0-alpha3
Slop:0.5.9
Slop:0.6.0-alpha2
Slop:0.6.0-alpha1
Slop:0.5.8
Slop:0.5.7
Slop:0.5.6
Slop:0.5.5
Slop:0.5.4
Slop:0.5.3
Slop:0.5.2
Slop:0.5.1
Slop:0.5.1-beta.1
Slop:0.5.0
Slop:0.5.0-beta.7
Slop:0.5.0-beta.6
Slop:0.5.0-beta.5
Slop:0.5.0-beta.4
Slop:0.5.0-beta.3
Slop:0.5.0-beta.2
Slop:0.4.7
Slop:0.5.0-beta.1
Slop:0.4.6
Slop:0.4.5
Slop:0.4.4
Slop:0.4.3
Slop:0.4.2
Slop:0.4.1
Slop:0.4.0
Slop:0.4.0-rc3
Slop:0.4.0-rc2
Slop:0.4.0-rc1
Slop:0.3.5
Slop:0.3.4
Slop:0.3.3
Slop:0.3.2
Slop:0.3.1
Slop:0.3.0
Slop:0.2.3
Slop:0.2.2
Slop:0.2.1
Slop:0.2.0
Slop:0.1.0

1 commit
main ... signed-dig

Author SHA1 Message Date
Felix Ableitner
32b3176905 Require signed digest when verifying signatures 2024-04-30 10:54:09 +02:00
1 changed files with 5 additions and 2 deletions
Show stats Expand all files Collapse all files

7
src/http_signatures.rs
View file

@ -189,8 +189,11 @@ fn verify_signature_inner(
uri: &Uri, uri: &Uri,
public_key: &str, public_key: &str,
) -> Result<(), Error> { ) -> Result<(), Error> {
static CONFIG: Lazy<http_signature_normalization::Config> = static CONFIG: Lazy<http_signature_normalization::Config> = Lazy::new(|| {
Lazy::new(|| http_signature_normalization::Config::new().set_expiration(EXPIRES_AFTER)); http_signature_normalization::Config::new()
.set_expiration(EXPIRES_AFTER)
.require_digest()
});
let path_and_query = uri.path_and_query().map(PathAndQuery::as_str).unwrap_or(""); let path_and_query = uri.path_and_query().map(PathAndQuery::as_str).unwrap_or("");