mirror of
https://github.com/friendica/friendica
synced 2024-11-10 18:01:42 +01:00
51f0d52100
More fixes related to https://github.com/friendica/friendica/issues/6128 * Bug when using direct ATOM URL, which ends with .atom after nick name * Bug when callback URL already has some ?query=parameters (which is quite usual) Slight refactoring
141 lines
4.7 KiB
PHP
141 lines
4.7 KiB
PHP
<?php
|
|
|
|
use Friendica\App;
|
|
use Friendica\Core\Config;
|
|
use Friendica\Core\Logger;
|
|
use Friendica\Core\System;
|
|
use Friendica\Database\DBA;
|
|
use Friendica\Model\PushSubscriber;
|
|
use Friendica\Util\Network;
|
|
use Friendica\Util\Strings;
|
|
|
|
function post_var($name) {
|
|
return (x($_POST, $name)) ? Strings::escapeTags(trim($_POST[$name])) : '';
|
|
}
|
|
|
|
function pubsubhubbub_init(App $a) {
|
|
// PuSH subscription must be considered "public" so just block it
|
|
// if public access isn't enabled.
|
|
if (Config::get('system', 'block_public')) {
|
|
System::httpExit(403);
|
|
}
|
|
|
|
// Subscription request from subscriber
|
|
// https://pubsubhubbub.googlecode.com/git/pubsubhubbub-core-0.4.html#anchor4
|
|
// Example from GNU Social:
|
|
// [hub_mode] => subscribe
|
|
// [hub_callback] => http://status.local/main/push/callback/1
|
|
// [hub_verify] => sync
|
|
// [hub_verify_token] => af11...
|
|
// [hub_secret] => af11...
|
|
// [hub_topic] => http://friendica.local/dfrn_poll/sazius
|
|
|
|
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
|
|
$hub_mode = post_var('hub_mode');
|
|
$hub_callback = post_var('hub_callback');
|
|
$hub_verify = post_var('hub_verify');
|
|
$hub_verify_token = post_var('hub_verify_token');
|
|
$hub_secret = post_var('hub_secret');
|
|
$hub_topic = post_var('hub_topic');
|
|
|
|
// check for valid hub_mode
|
|
if ($hub_mode === 'subscribe') {
|
|
$subscribe = 1;
|
|
} elseif ($hub_mode === 'unsubscribe') {
|
|
$subscribe = 0;
|
|
} else {
|
|
Logger::log("Invalid hub_mode=$hub_mode, ignoring.");
|
|
System::httpExit(404);
|
|
}
|
|
|
|
Logger::log("$hub_mode request from " . $_SERVER['REMOTE_ADDR']);
|
|
|
|
if ($a->argc > 1) {
|
|
// Normally the url should now contain the nick name as last part of the url
|
|
$nick = $a->argv[1];
|
|
} else {
|
|
// Get the nick name from the topic as a fallback
|
|
$nick = $hub_topic;
|
|
}
|
|
// Extract nick name and strip any .atom extension
|
|
$nick = basename($nick, '.atom');
|
|
|
|
if (!$nick) {
|
|
Logger::log('Bad hub_topic=$hub_topic, ignoring.');
|
|
System::httpExit(404);
|
|
}
|
|
|
|
// fetch user from database given the nickname
|
|
$condition = ['nickname' => $nick, 'account_expired' => false, 'account_removed' => false];
|
|
$owner = DBA::selectFirst('user', ['uid', 'hidewall', 'nickname'], $condition);
|
|
if (!DBA::isResult($owner)) {
|
|
Logger::log('Local account not found: ' . $nick . ' - topic: ' . $hub_topic . ' - callback: ' . $hub_callback);
|
|
System::httpExit(404);
|
|
}
|
|
|
|
// abort if user's wall is supposed to be private
|
|
if ($owner['hidewall']) {
|
|
Logger::log('Local user ' . $nick . 'has chosen to hide wall, ignoring.');
|
|
System::httpExit(403);
|
|
}
|
|
|
|
// get corresponding row from contact table
|
|
$condition = ['uid' => $owner['uid'], 'blocked' => false,
|
|
'pending' => false, 'self' => true];
|
|
$contact = DBA::selectFirst('contact', ['poll'], $condition);
|
|
if (!DBA::isResult($contact)) {
|
|
Logger::log('Self contact for user ' . $owner['uid'] . ' not found.');
|
|
System::httpExit(404);
|
|
}
|
|
|
|
// sanity check that topic URLs are the same
|
|
$hub_topic2 = str_replace('/feed/', '/dfrn_poll/', $hub_topic);
|
|
$self = System::baseUrl() . '/api/statuses/user_timeline/' . $owner['nickname'] . '.atom';
|
|
|
|
if (!Strings::compareLink($hub_topic, $contact['poll']) && !Strings::compareLink($hub_topic2, $contact['poll']) && !Strings::compareLink($hub_topic, $self)) {
|
|
Logger::log('Hub topic ' . $hub_topic . ' != ' . $contact['poll']);
|
|
System::httpExit(404);
|
|
}
|
|
|
|
// do subscriber verification according to the PuSH protocol
|
|
$hub_challenge = Strings::getRandomHex(40);
|
|
|
|
$params = http_build_query([
|
|
'hub.mode' => $subscribe == 1 ? 'subscribe' : 'unsubscribe',
|
|
'hub.topic' => $hub_topic,
|
|
'hub.challenge' => $hub_challenge,
|
|
'hub.verify_token' => $hub_verify_token,
|
|
|
|
// lease time is hard coded to one week (in seconds)
|
|
// we don't actually enforce the lease time because GNU
|
|
// Social/StatusNet doesn't honour it (yet)
|
|
'hub.lease_seconds' => 604800,
|
|
]);
|
|
|
|
$hub_callback = rtrim($hub_callback, ' ?&#');
|
|
$separator = parse_url($hub_callback, PHP_URL_QUERY) === null ? '?' : '&';
|
|
|
|
$fetchResult = Network::fetchUrlFull($hub_callback . $separator . $params);
|
|
$body = $fetchResult->getBody();
|
|
$ret = $fetchResult->getReturnCode();
|
|
|
|
// give up if the HTTP return code wasn't a success (2xx)
|
|
if ($ret < 200 || $ret > 299) {
|
|
Logger::log("Subscriber verification for $hub_topic at $hub_callback returned $ret, ignoring.");
|
|
System::httpExit(404);
|
|
}
|
|
|
|
// check that the correct hub_challenge code was echoed back
|
|
if (trim($body) !== $hub_challenge) {
|
|
Logger::log("Subscriber did not echo back hub.challenge, ignoring.");
|
|
Logger::log("\"$hub_challenge\" != \"".trim($body)."\"");
|
|
System::httpExit(404);
|
|
}
|
|
|
|
PushSubscriber::renew($owner['uid'], $nick, $subscribe, $hub_callback, $hub_topic, $hub_secret);
|
|
|
|
System::httpExit(202);
|
|
}
|
|
killme();
|
|
}
|