Event-Federation/wordpress-activitypub
Event-Federation/wordpress-activitypub
7
1
Fork 0
Code Issues 5 Pull requests Projects Releases Wiki Activity Actions 1

Ignore unknown delete actor requests

Browse source
This commit is contained in:
Django Doucet 2023-11-13 09:52:59 -07:00
parent 8e70adbc3d
commit a764004a42
1 changed files with 7 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
includes/rest/class-server.php
View file

@ -108,6 +108,13 @@ class Server {
// POST-Requets are always signed
if ( 'GET' !== $request->get_method() ) {
if ( Application::is_actor_delete_request( $request ) ) {
if ( ! Application::is_known_actor( $request ) ) {
return $response;
}
}
$verified_request = Signature::verify_http_signature( $request );
if ( \is_wp_error( $verified_request ) ) {
return new WP_Error( 'activitypub_signature_verification', $verified_request->get_error_message(), array( 'status' => 401 ) );