. * * @category Plugin * @package GNUsocial * @author Diogo Cordeiro * @author Daniel Supernault * @copyright 2018 Free Software Foundation http://fsf.org * @license http://www.fsf.org/licensing/licenses/agpl-3.0.html GNU Affero General Public License version 3.0 * @link https://www.gnu.org/software/social/ */ if (!defined('GNUSOCIAL')) { exit(1); } /** * ActivityPub Profile * * @category Plugin * @package GNUsocial * @author Diogo Cordeiro * @license http://www.fsf.org/licensing/licenses/agpl-3.0.html GNU Affero General Public License version 3.0 * @link http://www.gnu.org/software/social/ */ class Activitypub_profile extends Managed_DataObject { public $__table = 'Activitypub_profile'; public $uri; // text() not_null public $profile_id; // int(4) primary_key not_null public $inboxuri; // text() not_null public $sharedInboxuri; // text() public $nickname; // varchar(64) multiple_key not_null public $fullname; // text() public $profileurl; // text() public $homepage; // text() public $bio; // text() multiple_key public $location; // text() public $created; // datetime() not_null public $modified; // timestamp() not_null default_CURRENT_TIMESTAMP /** * Return table definition for Schema setup and DB_DataObject usage. * * @author Diogo Cordeiro * @return array array of column definitions */ public static function schemaDef() { return [ 'fields' => [ 'uri' => ['type' => 'text', 'not null' => true], 'profile_id' => ['type' => 'integer'], 'inboxuri' => ['type' => 'text', 'not null' => true], 'sharedInboxuri' => ['type' => 'text'], 'created' => ['type' => 'datetime', 'not null' => true], 'modified' => ['type' => 'datetime', 'not null' => true], ], 'primary key' => ['profile_id'], 'unique keys' => [ 'Activitypub_profile_profile_id_key' => ['profile_id'], ], 'foreign keys' => [ 'Activitypub_profile_profile_id_fkey' => ['profile', ['profile_id' => 'id']], ], ]; } /** * Generates a pretty profile from a Profile object * * @author Diogo Cordeiro * @param Profile $profile * @return pretty array to be used in a response */ public static function profile_to_array($profile) { $uri = ActivityPubPlugin::actor_uri($profile); $id = $profile->getID(); $rsa = new Activitypub_rsa(); $public_key = $rsa->ensure_public_key($profile); unset($rsa); $res = [ '@context' => 'https://www.w3.org/ns/activitystreams', 'id' => $uri, 'type' => 'Person', 'following' => common_local_url('apActorFollowing', ['id' => $id]), 'followers' => common_local_url('apActorFollowers', ['id' => $id]), 'liked' => common_local_url('apActorLiked', ['id' => $id]), 'inbox' => common_local_url('apInbox', ['id' => $id]), 'outbox' => common_local_url('apActorOutbox', ['id' => $id]), 'preferredUsername' => $profile->getNickname(), 'name' => $profile->getBestName(), 'summary' => ($desc = $profile->getDescription()) == null ? "" : $desc, 'url' => $profile->getUrl(), 'manuallyApprovesFollowers' => false, 'publicKey' => [ 'id' => $uri."#public-key", 'owner' => $uri, 'publicKeyPem' => $public_key ], 'tag' => [], 'attachment' => [], 'icon' => [ 'type' => 'Image', 'mediaType' => 'image/png', 'height' => AVATAR_PROFILE_SIZE, 'width' => AVATAR_PROFILE_SIZE, 'url' => $profile->avatarUrl(AVATAR_PROFILE_SIZE) ] ]; if ($profile->isLocal()) { $res['endpoints']['sharedInbox'] = common_local_url('apInbox'); } else { $aprofile = new Activitypub_profile(); $aprofile = $aprofile->from_profile($profile); $res['endpoints']['sharedInbox'] = $aprofile->sharedInboxuri; } return $res; } /** * Insert the current object variables into the database * * @author Diogo Cordeiro * @access public * @throws ServerException */ public function do_insert() { $profile = new Profile(); $profile->created = $this->created = $this->modified = common_sql_now(); $fields = [ 'uri' => 'profileurl', 'nickname' => 'nickname', 'fullname' => 'fullname', 'bio' => 'bio' ]; foreach ($fields as $af => $pf) { $profile->$pf = $this->$af; } $this->profile_id = $profile->insert(); if ($this->profile_id === false) { $profile->query('ROLLBACK'); throw new ServerException('Profile insertion failed.'); } $ok = $this->insert(); if ($ok === false) { $profile->query('ROLLBACK'); $this->query('ROLLBACK'); throw new ServerException('Cannot save ActivityPub profile.'); } } /** * Fetch the locally stored profile for this Activitypub_profile * * @author Diogo Cordeiro * @return Profile * @throws NoProfileException if it was not found */ public function local_profile() { $profile = Profile::getKV('id', $this->profile_id); if (!$profile instanceof Profile) { throw new NoProfileException($this->profile_id); } return $profile; } /** * Generates an Activitypub_profile from a Profile * * @author Diogo Cordeiro * @param Profile $profile * @return Activitypub_profile * @throws Exception if no Activitypub_profile exists for given Profile */ public static function from_profile(Profile $profile) { $profile_id = $profile->getID(); $aprofile = self::getKV('profile_id', $profile_id); if (!$aprofile instanceof Activitypub_profile) { // No Activitypub_profile for this profile_id, if (!$profile->isLocal()) { // create one! $aprofile = self::create_from_local_profile($profile); } else { throw new Exception('No Activitypub_profile for Profile ID: '.$profile_id. ', this is a local user.'); } } $fields = [ 'uri' => 'profileurl', 'nickname' => 'nickname', 'fullname' => 'fullname', 'bio' => 'bio' ]; foreach ($fields as $af => $pf) { $aprofile->$af = $profile->$pf; } return $aprofile; } /** * Given an existent local profile creates an ActivityPub profile. * One must be careful not to give a user profile to this function * as only remote users have ActivityPub_profiles on local instance * * @author Diogo Cordeiro * @param Profile $profile * @return Activitypub_profile */ private static function create_from_local_profile(Profile $profile) { $url = $profile->getUri(); $inboxes = Activitypub_explorer::get_actor_inboxes_uri($url); if ($inboxes == null) { throw new Exception ('This is not an ActivityPub user thus AProfile is politely refusing to proceed.'); } $aprofile->created = $aprofile->modified = common_sql_now(); $aprofile = new Activitypub_profile; $aprofile->profile_id = $profile->getID(); $aprofile->uri = $url; $aprofile->nickname = $profile->getNickname(); $aprofile->fullname = $profile->getFullname(); $aprofile->bio = substr($profile->getDescription(), 0, 1000); $aprofile->inboxuri = $inboxes["inbox"]; $aprofile->sharedInboxuri = $inboxes["sharedInbox"]; $aprofile->insert(); return $aprofile; } /** * Returns sharedInbox if possible, inbox otherwise * * @author Diogo Cordeiro * @return string Inbox URL */ public function get_inbox() { if (is_null($this->sharedInboxuri)) { return $this->inboxuri; } return $this->sharedInboxuri; } /** * Getter for uri property * * @author Diogo Cordeiro * @return string URI */ public function getUri() { return $this->uri; } /** * Getter for url property * * @author Diogo Cordeiro * @return string URL */ public function getUrl() { return $this->getUri(); } /** * Getter for id property * * @author Diogo Cordeiro * @return int32 */ public function getID() { return $this->profile_id; } /** * Ensures a valid Activitypub_profile when provided with a valid URI. * * @author Diogo Cordeiro * @param string $url * @return Activitypub_profile * @throws Exception if it isn't possible to return an Activitypub_profile */ public static function fromUri($url) { try { return self::from_profile(Activitypub_explorer::get_profile_from_url($url)); } catch (Exception $e) { throw new Exception('No valid ActivityPub profile found for given URI.'); } } /** * Look up, and if necessary create, an Activitypub_profile for the remote * entity with the given webfinger address. * This should never return null -- you will either get an object or * an exception will be thrown. * * @author GNU Social * @author Diogo Cordeiro * @param string $addr webfinger address * @return Activitypub_profile * @throws Exception on error conditions */ public static function ensure_web_finger($addr) { // Normalize $addr, i.e. add 'acct:' if missing $addr = Discovery::normalize($addr); // Try the cache $uri = self::cacheGet(sprintf('activitypub_profile:webfinger:%s', $addr)); if ($uri !== false) { if (is_null($uri)) { // Negative cache entry // TRANS: Exception. throw new Exception(_m('Not a valid webfinger address (via cache).')); } try { return self::fromUri($uri); } catch (Exception $e) { common_log(LOG_ERR, sprintf(__METHOD__ . ': Webfinger address cache inconsistent with database, did not find Activitypub_profile uri==%s', $uri)); self::cacheSet(sprintf('activitypub_profile:webfinger:%s', $addr), false); } } // Now, try some discovery $disco = new Discovery(); try { $xrd = $disco->lookup($addr); } catch (Exception $e) { // Save negative cache entry so we don't waste time looking it up again. // @todo FIXME: Distinguish temporary failures? self::cacheSet(sprintf('activitypub_profile:webfinger:%s', $addr), null); // TRANS: Exception. throw new Exception(_m('Not a valid webfinger address.')); } $hints = array_merge( array('webfinger' => $addr), DiscoveryHints::fromXRD($xrd) ); // If there's an Hcard, let's grab its info if (array_key_exists('hcard', $hints)) { if (!array_key_exists('profileurl', $hints) || $hints['hcard'] != $hints['profileurl']) { $hcardHints = DiscoveryHints::fromHcardUrl($hints['hcard']); $hints = array_merge($hcardHints, $hints); } } // If we got a profile page, try that! $profileUrl = null; if (array_key_exists('profileurl', $hints)) { $profileUrl = $hints['profileurl']; try { common_log(LOG_INFO, "Discovery on acct:$addr with profile URL $profileUrl"); $aprofile = self::fromUri($hints['profileurl']); self::cacheSet(sprintf('activitypub_profile:webfinger:%s', $addr), $aprofile->getUri()); return $aprofile; } catch (Exception $e) { common_log(LOG_WARNING, "Failed creating profile from profile URL '$profileUrl': " . $e->getMessage()); // keep looking // // @todo FIXME: This means an error discovering from profile page // may give us a corrupt entry using the webfinger URI, which // will obscure the correct page-keyed profile later on. } } // XXX: try hcard // XXX: try FOAF // TRANS: Exception. %s is a webfinger address. throw new Exception(sprintf(_m('Could not find a valid profile for "%s".'), $addr)); } }