foxhole/app/main.py

241 lines
6.4 KiB
Python

#!/usr/bin/env python3
"""Some application path."""
from typing import Any
import sys
import fastapi
from fastapi import FastAPI
from fastapi import Depends
from fastapi import Request
from fastapi import Response
from fastapi.exceptions import HTTPException
from fastapi.templating import Jinja2Templates
from starlette.responses import JSONResponse
from loguru import logger
from sqlalchemy import select
from app import models
from app.utils import precheck
from app.database import get_db_session
from app.config import DEBUG
from app.activitypub import ME
from app.config import BASE_URL, POST_TOKEN
from app.config import DOMAIN
from app.config import ID
from app.config import USERNAME
from app.config import VERSION
from app.database import AsyncSession
from app.boxes import save_incoming
from app.activitypub import VisibilityEnum
from app.boxes import _send_create
from app.orgpython import to_html
def _check_0rtt_early_data(request: Request) -> None:
"""Disable TLS1.3 0-RTT requests for non-GET."""
if request.headers.get("Early-Data", None) == "1" \
and request.method != "GET":
raise fastapi.HTTPException(status_code=425, detail="Too early")
app = FastAPI(
docs_url=None, redoc_url=None,
dependencies=[Depends(_check_0rtt_early_data)]
)
templates = Jinja2Templates(directory="templates")
logger.remove()
logger.add(sys.stdout, level="DEBUG" if DEBUG else "INFO")
logger.add("output.log", level="DEBUG")
# pylint: disable=too-few-public-methods
class ActivityPubResponse(JSONResponse):
"""Simple wrap JSONresponse return ActivityPub response."""
media_type = "application/activity+json"
def is_ap_requested(req: Request) -> bool:
"""Check resquest is ActivityPub request."""
accept_value = req.headers.get("accept")
if not accept_value:
return False
for i in [
"application/activity+json",
"application/ld+json",
]:
if accept_value.startswith(i):
return True
return False
@app.get("/")
async def index(
request: Request,
db_session: AsyncSession = Depends(get_db_session),
):
"""Return index page."""
if is_ap_requested(request):
return ActivityPubResponse(ME)
statues = (
await db_session.scalars(
select(models.OutboxObject).where(
models.OutboxObject.ap_type == "Note",
models.OutboxObject.is_deleted.is_(False),
)
)
).all()
return templates.TemplateResponse(
"index.html",
{
"request": request,
"statues": statues,
}
)
@app.post("/inbox")
async def inbox(
request: Request,
db_session: AsyncSession = Depends(get_db_session),
httpsig_checker=Depends(precheck.inbox_prechecker),
) -> Response:
"""ActivityPub inbox endpoint."""
payload = await request.json()
if not httpsig_checker:
return Response(
status_code=406,
content="invalid http-sig"
)
if not await save_incoming(db_session, payload):
return Response(
status_code=406,
content="invalid activitypub object"
)
return Response(status_code=202)
@app.post("/outbox")
async def outbox(
request: Request,
db_session: AsyncSession = Depends(get_db_session),
) -> Response:
"""ActivityPub outbox endpoint, now only process client post request."""
payload = await request.body()
content = payload.decode("utf-8")
logger.info(content)
post_token = request.headers.get("Authorization")
def _check_post_token() -> bool:
if post_token is None:
return False
if POST_TOKEN != post_token.split(" ")[1]:
return False
return True
if not _check_post_token():
logger.warning("Non-valid post token!")
return Response(status_code=406)
logger.info("True token")
content = to_html(content).replace("\n", "")
await _send_create(
db_session,
"Note",
content,
VisibilityEnum.PUBLIC
)
return Response(status_code=200)
@app.get("/tail/{public_id}")
async def outbox_activity_by_public_id(
public_id: str,
db_session: AsyncSession = Depends(get_db_session),
) -> ActivityPubResponse:
"""Return note page."""
outbox_object = (
await db_session.execute(
select(models.OutboxObject).where(
models.OutboxObject.public_id == public_id,
models.OutboxObject.is_deleted.is_(False),
)
)
).scalar_one_or_none()
if not outbox_object:
raise HTTPException(status_code=404)
return ActivityPubResponse(outbox_object.ap_object)
@app.get("/.well-known/webfinger")
async def wellknown_webfinger(resource: str) -> JSONResponse:
"""Exposes/servers WebFinger data."""
if resource not in [f"acct:{USERNAME}@{DOMAIN}", ID]:
logger.info(f"Got invalid req for {resource}")
raise HTTPException(status_code=404)
out = {
"subject": f"acct:{USERNAME}@{DOMAIN}",
"aliases": [ID],
"links": [
{
"rel": "http://webfinger.net/rel/profile-page",
"type": "text/html",
"href": ID + "/",
},
{"rel": "self", "type": "application/activity+json", "href": ID},
{
"rel": "http://ostatus.org/schema/1.0/subscribe",
"template": BASE_URL + "/admin/lookup?query={uri}",
},
],
}
return JSONResponse(
out,
media_type="application/jrd+json; charset=utf-8",
headers={"Access-Control-Allow-Origin": "*"},
)
@app.get("/.well-known/nodeinfo")
async def well_known_nodeinfo() -> dict[str, Any]:
"""Exposes nodeinfo path."""
return {
"links": [
{
"rel": "http://nodeinfo.diaspora.software/ns/schema/2.0",
"href": f"{BASE_URL}/nodeinfo/2.0",
}
]
}
@app.get("/nodeinfo/2.0")
async def nodeinfo():
"""Return site nodeinfo."""
return JSONResponse(
{
"version": "2.0",
"software": {
"name": "foxhole",
"version": VERSION,
},
"protocols": ["activitypub"],
"services": {"inbound": [], "outbound": []},
"usage": {"users": {"total": 1}, "localPosts": 0}, # TODO
"openRegistrations": False,
"metadata": {},
},
)