wordpress-activitypub/includes/class-rest-activitypub-inbox.php

<?php
/**
 * ActivityPub Inbox Class
 *
 * @author Matthias Pfefferle
 */
class Rest_Activitypub_Inbox {
	/**
	 * Register routes
	 */
	public static function register_routes() {
		register_rest_route(
			'activitypub/1.0', '/inbox', array(
				array(
					'methods'  => WP_REST_Server::EDITABLE,
					'callback' => array( 'Rest_Activitypub_Inbox', 'global_inbox' ),
				),
			)
		);

		register_rest_route(
			'activitypub/1.0', '/users/(?P<id>\d+)/inbox', array(
				array(
					'methods'  => WP_REST_Server::EDITABLE,
					'callback' => array( 'Rest_Activitypub_Inbox', 'user_inbox' ),
					'args'     => self::request_parameters(),
				),
			)
		);
	}

	/**
	 * Hooks into the REST API request to verify the signature.
	 *
	 * @param bool                      $served  Whether the request has already been served.
	 * @param WP_HTTP_ResponseInterface $result  Result to send to the client. Usually a WP_REST_Response.
	 * @param WP_REST_Request           $request Request used to generate the response.
	 * @param WP_REST_Server            $server  Server instance.
	 *
	 * @return true
	 */
	public static function serve_request( $served, $result, $request, $server ) {
		if ( '/activitypub' !== substr( $request->get_route(), 0, 12 ) ) {
			return $served;
		}

		if ( 'POST' !== $request->get_method() ) {
			return $served;
		}

		$signature = $request->get_header( 'signature' );

		if ( ! $signature ) {
			return $served;
		}

		$headers = $request->get_headers();

		//Activitypub_Signature::verify_signature( $headers, $key );

		return $served;
	}

	/**
	 * Renders the user-inbox
	 *
	 * @param  WP_REST_Request   $request
	 * @return WP_REST_Response
	 */
	public static function user_inbox( $request ) {
		$author_id = $request->get_param( 'id' );
		$author    = get_user_by( 'ID', $author_id );

		$data = json_decode( $request->get_body(), true );

		$type = 'create';
		if ( ! empty( $data['type'] ) ) {
			$type = strtolower( $data['type'] );
		}

		if ( ! is_array( $data ) || ! array_key_exists( 'type', $data ) ) {
			return new WP_Error( 'rest_invalid_data', __( 'Invalid payload', 'activitypub' ), array( 'status' => 422 ) );
		}

		do_action( 'activitypub_inbox', $data, $author_id, $type );
		do_action( "activitypub_inbox_{$type}", $data, $author_id );

		return new WP_REST_Response( array(), 202 );
	}

	/**
	 * The shared inbox
	 *
	 * @param  [type] $request [description]
	 *
	 * @return WP_Error not yet implemented
	 */
	public static function global_inbox( $request ) {
		// Create the response object
		return new WP_Error( 'rest_not_implemented', __( 'This method is not yet implemented', 'activitypub' ), array( 'status' => 501 ) );
	}

	/**
	 * The supported parameters
	 *
	 * @return array list of parameters
	 */
	public static function request_parameters() {
		$params = array();

		$params['page'] = array(
			'type' => 'integer',
		);

		$params['id'] = array(
			'required' => true,
			'type' => 'integer',
		);

		return $params;
	}

	/**
	 * Handles "Follow" requests
	 *
	 * @param  array $object  The activity-object
	 * @param  int   $user_id The id of the local blog-user
	 */
	public static function handle_follow( $object, $user_id ) {
		if ( ! array_key_exists( 'actor', $object ) ) {
			return new WP_Error( 'activitypub_no_actor', __( 'No "Actor" found', 'activitypub' ), $metadata );
		}

		// save follower
		Db_Activitypub_Followers::add_follower( $object['actor'], $user_id );

		// get inbox
		$inbox = activitypub_get_inbox_by_actor( $object['actor'] );

		// send "Accept" activity
		$activity = new Activitypub_Activity( 'Accept', Activitypub_Activity::TYPE_SIMPLE );
		$activity->set_object( $object );
		$activity->set_actor( get_author_posts_url( $user_id ) );
		$activity->set_to( $object['actor'] );

		$activity = $activity->to_simple_json();

		$response = activitypub_safe_remote_post( $inbox, $activity, $user_id );
	}

	/**
	 * Handles "Unfollow" requests
	 *
	 * @param  array $object  The activity-object
	 * @param  int   $user_id The id of the local blog-user
	 */
	public static function handle_unfollow( $object, $user_id ) {
		if ( ! array_key_exists( 'actor', $object ) ) {
			return new WP_Error( 'activitypub_no_actor', __( 'No "Actor" found', 'activitypub' ), $metadata );
		}

		Db_Activitypub_Followers::remove_follower( $object['actor'], $user_id );
	}

	/**
	 * Handles "Unfollow" requests
	 *
	 * @param  array $object  The activity-object
	 * @param  int   $user_id The id of the local blog-user
	 */
	public static function handle_reaction( $object, $user_id ) {
		if ( ! array_key_exists( 'actor', $object ) ) {
			return new WP_Error( 'activitypub_no_actor', __( 'No "Actor" found', 'activitypub' ), $metadata );
		}

		$meta = activitypub_get_remote_metadata_by_actor( $object['actor'] );

		$commentdata = array(
			'comment_post_ID' => url_to_postid( $object['object'] ),
			'comment_author' => esc_attr( $meta['name'] ),
			'comment_author_email' => '',
			'comment_author_url' => esc_url_raw( $object['actor'] ),
			'comment_content' => esc_url_raw( $object['actor'] ),
			'comment_type' => esc_attr( strtolower( $object['type'] ) ),
			'comment_parent' => 0,
			'comment_meta' => array(
				'source_url' => esc_url_raw( $object['id'] ),
				'avatar_url' => esc_url_raw( $meta['icon']['url'] ),
				'protocol' => 'activitypub',
			),
		);

		// disable flood control
		remove_action( 'check_comment_flood', 'check_comment_flood_db', 10 );

		$state = wp_new_comment( $commentdata, true );

		// re-add flood control
		add_action( 'check_comment_flood', 'check_comment_flood_db', 10, 4 );
	}

	/**
	 * Handles "Unfollow" requests
	 *
	 * @param  array $object  The activity-object
	 * @param  int   $user_id The id of the local blog-user
	 */
	public static function handle_create( $object, $user_id ) {
		if ( ! array_key_exists( 'actor', $object ) ) {
			return new WP_Error( 'activitypub_no_actor', __( 'No "Actor" found', 'activitypub' ), $metadata );
		}

		$meta = activitypub_get_remote_metadata_by_actor( $object['actor'] );

		$commentdata = array(
			'comment_post_ID' => url_to_postid( $object['object']['inReplyTo'] ),
			'comment_author' => esc_attr( $meta['name'] ),
			'comment_author_url' => esc_url_raw( $object['actor'] ),
			'comment_content' => wp_filter_kses( $object['object']['content'] ),
			'comment_type' => '',
			'comment_author_email' => '',
			'comment_parent' => 0,
			'comment_meta' => array(
				'source_url' => esc_url_raw( $object['object']['url'] ),
				'avatar_url' => esc_url_raw( $meta['icon']['url'] ),
				'protocol' => 'activitypub',
			),
		);

		// disable flood control
		remove_action( 'check_comment_flood', 'check_comment_flood_db', 10 );

		$state = wp_new_comment( $commentdata, true );

		// re-add flood control
		add_action( 'check_comment_flood', 'check_comment_flood_db', 10, 4 );
	}
}
start work on the inbox 2018-09-27 22:28:49 +02:00			`<?php`
			`/**`
prepare version 0.0.2 2018-09-30 22:51:22 +02:00			`* ActivityPub Inbox Class`
start work on the inbox 2018-09-27 22:28:49 +02:00			`*`
			`* @author Matthias Pfefferle`
			`*/`
implemented "follow" 2018-12-08 00:02:18 +01:00			`class Rest_Activitypub_Inbox {`
start work on the inbox 2018-09-27 22:28:49 +02:00			`/**`
			`* Register routes`
			`*/`
			`public static function register_routes() {`
			`register_rest_route(`
			`'activitypub/1.0', '/inbox', array(`
			`array(`
			`'methods' => WP_REST_Server::EDITABLE,`
implemented "follow" 2018-12-08 00:02:18 +01:00			`'callback' => array( 'Rest_Activitypub_Inbox', 'global_inbox' ),`
start work on the inbox 2018-09-27 22:28:49 +02:00			`),`
			`)`
			`);`

			`register_rest_route(`
			`'activitypub/1.0', '/users/(?P<id>\d+)/inbox', array(`
			`array(`
			`'methods' => WP_REST_Server::EDITABLE,`
implemented "follow" 2018-12-08 00:02:18 +01:00			`'callback' => array( 'Rest_Activitypub_Inbox', 'user_inbox' ),`
start work on the inbox 2018-09-27 22:28:49 +02:00			`'args' => self::request_parameters(),`
			`),`
			`)`
			`);`
			`}`

0.1.0 * added basic WebFinger support * added basic NodeInfo support * fully functional "follow" activity * send new posts to your followers * receive comments from your followers 2018-12-20 11:33:08 +01:00			`/**`
			`* Hooks into the REST API request to verify the signature.`
			`*`
			`* @param bool $served Whether the request has already been served.`
			`* @param WP_HTTP_ResponseInterface $result Result to send to the client. Usually a WP_REST_Response.`
			`* @param WP_REST_Request $request Request used to generate the response.`
			`* @param WP_REST_Server $server Server instance.`
			`*`
			`* @return true`
			`*/`
			`public static function serve_request( $served, $result, $request, $server ) {`
			`if ( '/activitypub' !== substr( $request->get_route(), 0, 12 ) ) {`
			`return $served;`
			`}`

			`if ( 'POST' !== $request->get_method() ) {`
			`return $served;`
			`}`

			`$signature = $request->get_header( 'signature' );`

			`if ( ! $signature ) {`
			`return $served;`
			`}`

			`$headers = $request->get_headers();`

			`//Activitypub_Signature::verify_signature( $headers, $key );`

			`return $served;`
			`}`

			`/**`
			`* Renders the user-inbox`
			`*`
			`* @param WP_REST_Request $request`
			`* @return WP_REST_Response`
			`*/`
prepare version 0.0.2 2018-09-30 22:51:22 +02:00			`public static function user_inbox( $request ) {`
start work on the inbox 2018-09-27 22:28:49 +02:00			`$author_id = $request->get_param( 'id' );`
			`$author = get_user_by( 'ID', $author_id );`

			`$data = json_decode( $request->get_body(), true );`

updated inbox hooks 2018-10-02 22:16:47 +02:00			`$type = 'create';`
			`if ( ! empty( $data['type'] ) ) {`
			`$type = strtolower( $data['type'] );`
			`}`

start work on the inbox 2018-09-27 22:28:49 +02:00			`if ( ! is_array( $data ) \|\| ! array_key_exists( 'type', $data ) ) {`
			`return new WP_Error( 'rest_invalid_data', __( 'Invalid payload', 'activitypub' ), array( 'status' => 422 ) );`
			`}`

0.1.0 * added basic WebFinger support * added basic NodeInfo support * fully functional "follow" activity * send new posts to your followers * receive comments from your followers 2018-12-20 11:33:08 +01:00			`do_action( 'activitypub_inbox', $data, $author_id, $type );`
			`do_action( "activitypub_inbox_{$type}", $data, $author_id );`

			`return new WP_REST_Response( array(), 202 );`
start work on the inbox 2018-09-27 22:28:49 +02:00			`}`

prepare version 0.0.2 2018-09-30 22:51:22 +02:00			`/**`
			`* The shared inbox`
			`*`
			`* @param [type] $request [description]`
			`*`
			`* @return WP_Error not yet implemented`
			`*/`
updated inbox hooks 2018-10-02 22:16:47 +02:00			`public static function global_inbox( $request ) {`
start work on the inbox 2018-09-27 22:28:49 +02:00			`// Create the response object`
			`return new WP_Error( 'rest_not_implemented', __( 'This method is not yet implemented', 'activitypub' ), array( 'status' => 501 ) );`
			`}`

prepare version 0.0.2 2018-09-30 22:51:22 +02:00			`/**`
			`* The supported parameters`
			`*`
			`* @return array list of parameters`
			`*/`
start work on the inbox 2018-09-27 22:28:49 +02:00			`public static function request_parameters() {`
			`$params = array();`

			`$params['page'] = array(`
			`'type' => 'integer',`
			`);`

			`$params['id'] = array(`
			`'required' => true,`
			`'type' => 'integer',`
			`);`

			`return $params;`
			`}`
0.1.0 * added basic WebFinger support * added basic NodeInfo support * fully functional "follow" activity * send new posts to your followers * receive comments from your followers 2018-12-20 11:33:08 +01:00
			`/**`
			`* Handles "Follow" requests`
			`*`
			`* @param array $object The activity-object`
			`* @param int $user_id The id of the local blog-user`
			`*/`
			`public static function handle_follow( $object, $user_id ) {`
			`if ( ! array_key_exists( 'actor', $object ) ) {`
			`return new WP_Error( 'activitypub_no_actor', __( 'No "Actor" found', 'activitypub' ), $metadata );`
			`}`

			`// save follower`
			`Db_Activitypub_Followers::add_follower( $object['actor'], $user_id );`

			`// get inbox`
			`$inbox = activitypub_get_inbox_by_actor( $object['actor'] );`

			`// send "Accept" activity`
			`$activity = new Activitypub_Activity( 'Accept', Activitypub_Activity::TYPE_SIMPLE );`
			`$activity->set_object( $object );`
			`$activity->set_actor( get_author_posts_url( $user_id ) );`
			`$activity->set_to( $object['actor'] );`

			`$activity = $activity->to_simple_json();`

			`$response = activitypub_safe_remote_post( $inbox, $activity, $user_id );`
			`}`

			`/**`
			`* Handles "Unfollow" requests`
			`*`
			`* @param array $object The activity-object`
			`* @param int $user_id The id of the local blog-user`
			`*/`
			`public static function handle_unfollow( $object, $user_id ) {`
			`if ( ! array_key_exists( 'actor', $object ) ) {`
			`return new WP_Error( 'activitypub_no_actor', __( 'No "Actor" found', 'activitypub' ), $metadata );`
			`}`

			`Db_Activitypub_Followers::remove_follower( $object['actor'], $user_id );`
			`}`

			`/**`
			`* Handles "Unfollow" requests`
			`*`
			`* @param array $object The activity-object`
			`* @param int $user_id The id of the local blog-user`
			`*/`
			`public static function handle_reaction( $object, $user_id ) {`
			`if ( ! array_key_exists( 'actor', $object ) ) {`
			`return new WP_Error( 'activitypub_no_actor', __( 'No "Actor" found', 'activitypub' ), $metadata );`
			`}`

			`$meta = activitypub_get_remote_metadata_by_actor( $object['actor'] );`

			`$commentdata = array(`
			`'comment_post_ID' => url_to_postid( $object['object'] ),`
			`'comment_author' => esc_attr( $meta['name'] ),`
			`'comment_author_email' => '',`
			`'comment_author_url' => esc_url_raw( $object['actor'] ),`
			`'comment_content' => esc_url_raw( $object['actor'] ),`
			`'comment_type' => esc_attr( strtolower( $object['type'] ) ),`
			`'comment_parent' => 0,`
			`'comment_meta' => array(`
			`'source_url' => esc_url_raw( $object['id'] ),`
			`'avatar_url' => esc_url_raw( $meta['icon']['url'] ),`
			`'protocol' => 'activitypub',`
			`),`
			`);`

			`// disable flood control`
			`remove_action( 'check_comment_flood', 'check_comment_flood_db', 10 );`

			`$state = wp_new_comment( $commentdata, true );`

			`// re-add flood control`
			`add_action( 'check_comment_flood', 'check_comment_flood_db', 10, 4 );`
			`}`

			`/**`
			`* Handles "Unfollow" requests`
			`*`
			`* @param array $object The activity-object`
			`* @param int $user_id The id of the local blog-user`
			`*/`
			`public static function handle_create( $object, $user_id ) {`
			`if ( ! array_key_exists( 'actor', $object ) ) {`
			`return new WP_Error( 'activitypub_no_actor', __( 'No "Actor" found', 'activitypub' ), $metadata );`
			`}`

			`$meta = activitypub_get_remote_metadata_by_actor( $object['actor'] );`

			`$commentdata = array(`
			`'comment_post_ID' => url_to_postid( $object['object']['inReplyTo'] ),`
			`'comment_author' => esc_attr( $meta['name'] ),`
			`'comment_author_url' => esc_url_raw( $object['actor'] ),`
			`'comment_content' => wp_filter_kses( $object['object']['content'] ),`
			`'comment_type' => '',`
			`'comment_author_email' => '',`
			`'comment_parent' => 0,`
			`'comment_meta' => array(`
			`'source_url' => esc_url_raw( $object['object']['url'] ),`
			`'avatar_url' => esc_url_raw( $meta['icon']['url'] ),`
			`'protocol' => 'activitypub',`
			`),`
			`);`

			`// disable flood control`
			`remove_action( 'check_comment_flood', 'check_comment_flood_db', 10 );`

			`$state = wp_new_comment( $commentdata, true );`

			`// re-add flood control`
			`add_action( 'check_comment_flood', 'check_comment_flood_db', 10, 4 );`
			`}`
start work on the inbox 2018-09-27 22:28:49 +02:00			`}`