mirror of
https://github.com/versia-pub/server.git
synced 2025-12-06 08:28:19 +01:00
130 lines
4.1 KiB
TypeScript
130 lines
4.1 KiB
TypeScript
import {
|
|
apiRoute,
|
|
applyConfig,
|
|
handleZodError,
|
|
idValidator,
|
|
webfingerMention,
|
|
} from "@/api";
|
|
import { zValidator } from "@hono/zod-validator";
|
|
import { getLogger } from "@logtape/logtape";
|
|
import type { ResponseError } from "@versia/federation";
|
|
import { and, eq, isNull } from "drizzle-orm";
|
|
import { lookup } from "mime-types";
|
|
import { z } from "zod";
|
|
import { Users } from "~/drizzle/schema";
|
|
import { config } from "~/packages/config-manager";
|
|
import { User } from "~/packages/database-interface/user";
|
|
|
|
export const meta = applyConfig({
|
|
allowedMethods: ["GET"],
|
|
auth: {
|
|
required: false,
|
|
},
|
|
ratelimits: {
|
|
duration: 60,
|
|
max: 60,
|
|
},
|
|
route: "/.well-known/webfinger",
|
|
});
|
|
|
|
export const schemas = {
|
|
query: z.object({
|
|
resource: z.string().trim().min(1).max(512).startsWith("acct:"),
|
|
}),
|
|
};
|
|
|
|
export default apiRoute((app) =>
|
|
app.on(
|
|
meta.allowedMethods,
|
|
meta.route,
|
|
zValidator("query", schemas.query, handleZodError),
|
|
async (context) => {
|
|
const { resource } = context.req.valid("query");
|
|
|
|
// Check if resource is in the correct format (acct:uuid/username@domain)
|
|
if (!resource.match(webfingerMention)) {
|
|
return context.json(
|
|
{
|
|
error: "Invalid resource (should be acct:(id or username)@domain)",
|
|
},
|
|
400,
|
|
);
|
|
}
|
|
|
|
const requestedUser = resource.split("acct:")[1];
|
|
|
|
const host = new URL(config.http.base_url).host;
|
|
|
|
// Check if user is a local user
|
|
if (requestedUser.split("@")[1] !== host) {
|
|
return context.json({ error: "User is a remote user" }, 404);
|
|
}
|
|
|
|
const isUuid = requestedUser.split("@")[0].match(idValidator);
|
|
|
|
const user = await User.fromSql(
|
|
and(
|
|
eq(
|
|
isUuid ? Users.id : Users.username,
|
|
requestedUser.split("@")[0],
|
|
),
|
|
isNull(Users.instanceId),
|
|
),
|
|
);
|
|
|
|
if (!user) {
|
|
return context.json({ error: "User not found" }, 404);
|
|
}
|
|
|
|
let activityPubUrl = "";
|
|
|
|
if (config.federation.bridge.enabled) {
|
|
const manager = await User.getFederationRequester();
|
|
|
|
try {
|
|
activityPubUrl = await manager.webFinger(
|
|
user.data.username,
|
|
new URL(config.http.base_url).host,
|
|
"application/activity+json",
|
|
config.federation.bridge.url,
|
|
);
|
|
} catch (e) {
|
|
const error = e as ResponseError;
|
|
|
|
getLogger("federation")
|
|
.error`Error from bridge: ${await error.response.data}`;
|
|
}
|
|
}
|
|
|
|
return context.json({
|
|
subject: `acct:${
|
|
isUuid ? user.id : user.data.username
|
|
}@${host}`,
|
|
|
|
links: [
|
|
// Keep the ActivityPub link first, because Misskey only searches
|
|
// for the first link with rel="self" and doesn't check the type.
|
|
activityPubUrl && {
|
|
rel: "self",
|
|
type: "application/activity+json",
|
|
href: activityPubUrl,
|
|
},
|
|
{
|
|
rel: "self",
|
|
type: "application/json",
|
|
href: new URL(
|
|
`/users/${user.id}`,
|
|
config.http.base_url,
|
|
).toString(),
|
|
},
|
|
{
|
|
rel: "avatar",
|
|
type: lookup(user.getAvatarUrl(config)),
|
|
href: user.getAvatarUrl(config),
|
|
},
|
|
].filter(Boolean),
|
|
});
|
|
},
|
|
),
|
|
);
|