mirror of
https://github.com/mastodon/mastodon.git
synced 2024-12-29 14:35:06 +01:00
Fix unneeded requests to blocked domains when receiving relayed signed activities from them (#31161)
This commit is contained in:
parent
c5f0da98e4
commit
7b92cf3b47
@ -2,6 +2,7 @@
|
||||
|
||||
class ActivityPub::ProcessCollectionService < BaseService
|
||||
include JsonLdHelper
|
||||
include DomainControlHelper
|
||||
|
||||
def call(body, actor, **options)
|
||||
@account = actor
|
||||
@ -69,6 +70,9 @@ class ActivityPub::ProcessCollectionService < BaseService
|
||||
end
|
||||
|
||||
def verify_account!
|
||||
return unless @json['signature'].is_a?(Hash)
|
||||
return if domain_not_allowed?(@json['signature']['creator'])
|
||||
|
||||
@options[:relayed_through_actor] = @account
|
||||
@account = ActivityPub::LinkedDataSignature.new(@json).verify_actor!
|
||||
@account = nil unless @account.is_a?(Account)
|
||||
|
Loading…
Reference in New Issue
Block a user