gnu-social/plugins/OStatus/actions/pushcallback.php

<?php
/*
 * StatusNet - the distributed open-source microblogging tool
 * Copyright (C) 2009, StatusNet, Inc.
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
 */

/**
 * @package FeedSubPlugin
 * @maintainer Brion Vibber <brion@status.net>
 */

if (!defined('STATUSNET') && !defined('LACONICA')) { exit(1); }


class PushCallbackAction extends Action
{
    function handle()
    {
        StatusNet::setApi(true); // Minimize error messages to aid in debugging
        parent::handle();
        if ($_SERVER['REQUEST_METHOD'] == 'POST') {
            $this->handlePost();
        } else {
            $this->handleGet();
        }
    }
    
    /**
     * Handler for POST content updates from the hub
     */
    function handlePost()
    {
        $feedid = $this->arg('feed');
        common_log(LOG_INFO, "POST for feed id $feedid");
        if (!$feedid) {
            throw new ServerException('Empty or invalid feed id', 400);
        }

        $feedsub = FeedSub::staticGet('id', $feedid);
        if (!$feedsub) {
            throw new ServerException('Unknown PuSH feed id ' . $feedid, 400);
        }

        $hmac = '';
        if (isset($_SERVER['HTTP_X_HUB_SIGNATURE'])) {
            $hmac = $_SERVER['HTTP_X_HUB_SIGNATURE'];
        }

        $post = file_get_contents('php://input');

        // Queue this to a background process; we should return
        // as quickly as possible from a distribution POST.
        // If queues are disabled this'll process immediately.
        $data = array('feedsub_id' => $feedsub->id,
                      'post' => $post,
                      'hmac' => $hmac);
        $qm = QueueManager::get();
        $qm->enqueue($data, 'pushinput');
    }
    
    /**
     * Handler for GET verification requests from the hub
     */
    function handleGet()
    {
        $mode = $this->arg('hub_mode');
        $topic = $this->arg('hub_topic');
        $challenge = $this->arg('hub_challenge');
        $lease_seconds = $this->arg('hub_lease_seconds');
        $verify_token = $this->arg('hub_verify_token');
        
        if ($mode != 'subscribe' && $mode != 'unsubscribe') {
            common_log(LOG_WARNING, __METHOD__ . ": bogus hub callback with mode \"$mode\"");
            throw new ServerException("Bogus hub callback: bad mode", 404);
        }
        
        $feedsub = FeedSub::staticGet('uri', $topic);
        if (!$feedsub) {
            common_log(LOG_WARNING, __METHOD__ . ": bogus hub callback for unknown feed $topic");
            throw new ServerException("Bogus hub callback: unknown feed", 404);
        }

        if ($feedsub->verify_token !== $verify_token) {
            common_log(LOG_WARNING, __METHOD__ . ": bogus hub callback with bad token \"$verify_token\" for feed $topic");
            throw new ServerException("Bogus hub callback: bad token", 404);
        }

        if ($mode != $feedsub->sub_state) {
            common_log(LOG_WARNING, __METHOD__ . ": bogus hub callback with bad mode \"$mode\" for feed $topic in state \"{$feedsub->sub_state}\"");
            throw new ServerException("Bogus hub callback: mode doesn't match subscription state.", 404);
        }

        // OK!
        if ($mode == 'subscribe') {
            common_log(LOG_INFO, __METHOD__ . ': sub confirmed');
            $feedsub->confirmSubscribe($lease_seconds);
        } else {
            common_log(LOG_INFO, __METHOD__ . ": unsub confirmed; deleting sub record for $topic");
            $feedsub->confirmUnsubscribe();
        }
        print $challenge;
    }
}
Initial functional version of feed subscription plugin, currently supporting only PuSH-enabled feeds. 2009-11-20 09:42:19 -08:00			`<?php`
			`/*`
			`* StatusNet - the distributed open-source microblogging tool`
			`* Copyright (C) 2009, StatusNet, Inc.`
			`*`
			`* This program is free software: you can redistribute it and/or modify`
			`* it under the terms of the GNU Affero General Public License as published by`
			`* the Free Software Foundation, either version 3 of the License, or`
			`* (at your option) any later version.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU Affero General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU Affero General Public License`
			`* along with this program. If not, see <http://www.gnu.org/licenses/>.`
			`*/`

			`/**`
			`* @package FeedSubPlugin`
			`* @maintainer Brion Vibber <brion@status.net>`
			`*/`

			`if (!defined('STATUSNET') && !defined('LACONICA')) { exit(1); }`


OStatus cleanup... * Treat linkless feed posts as status updates; drop the "New post:" prefix and quotes on them. * Use stable user IDs for atom/rss2 feed links instead of unstable nicknames * Pull Atom feed preferentially when subscribing -- can now put the remote user's profile page straight into the feed subscription form and get to the right place. * Clean up naming for push endpoints 2010-02-08 14:06:36 -08:00			`class PushCallbackAction extends Action`
Initial functional version of feed subscription plugin, currently supporting only PuSH-enabled feeds. 2009-11-20 09:42:19 -08:00			`{`
			`function handle()`
			`{`
OStatus PuSH fixlets: - set minimal error page output on PuSH callback - allow hub to retry ($config['ostatus']['hub_retries']), simplify internal iface a bit. Retries are pushed to end of queue but otherwise not delayed yet; makes delivery more robust to one-off transitory errors but not yet against downtime. 2010-02-21 14:28:06 -08:00			`StatusNet::setApi(true); // Minimize error messages to aid in debugging`
Initial functional version of feed subscription plugin, currently supporting only PuSH-enabled feeds. 2009-11-20 09:42:19 -08:00			`parent::handle();`
			`if ($_SERVER['REQUEST_METHOD'] == 'POST') {`
			`$this->handlePost();`
			`} else {`
			`$this->handleGet();`
			`}`
			`}`

			`/**`
			`* Handler for POST content updates from the hub`
			`*/`
			`function handlePost()`
			`{`
			`$feedid = $this->arg('feed');`
			`common_log(LOG_INFO, "POST for feed id $feedid");`
			`if (!$feedid) {`
			`throw new ServerException('Empty or invalid feed id', 400);`
			`}`

OStatus refactoring to clean up profile vs feed and fix up subscription issues. PuSH subscription maintenance broken back out to FeedSub, letting Ostatus_profile deal with the profile level (user or group, with unique id URI) 2010-02-18 21:22:21 +00:00			`$feedsub = FeedSub::staticGet('id', $feedid);`
			`if (!$feedsub) {`
			`throw new ServerException('Unknown PuSH feed id ' . $feedid, 400);`
Initial functional version of feed subscription plugin, currently supporting only PuSH-enabled feeds. 2009-11-20 09:42:19 -08:00			`}`
First steps on converting FeedSub into the pub/sub basis for OStatus communications: * renamed FeedSub plugin to OStatus * now setting avatar on subscriptions * general fixes for subscription * integrated PuSH hub to handle only user timelines on canonical ID url; sends updates directly * set $config['feedsub']['nohub'] = true to test w/ foreign feeds that don't have hubs (won't actually receive updates though) * a few bits of code documentation * HMAC support for verified distributions (safest if sub setup is on HTTPS) And a couple core changes: * minimizing HTML output for exceptions in API requests to aid in debugging * fix for rel=self link in apitimelineuser when id given This does not not yet include any of the individual subscription management (Salmon notifications for sub/unsub, etc) nor a nice UI for user subscriptions. Needs some further cleanup to treat posts as status updates instead of link references. 2010-02-08 11:06:03 -08:00
			`$hmac = '';`
			`if (isset($_SERVER['HTTP_X_HUB_SIGNATURE'])) {`
			`$hmac = $_SERVER['HTTP_X_HUB_SIGNATURE'];`
			`}`

Initial functional version of feed subscription plugin, currently supporting only PuSH-enabled feeds. 2009-11-20 09:42:19 -08:00			`$post = file_get_contents('php://input');`
OStatus: migrated notice parsing to use Activity helper classes; on the way to killing FeedMunger 2010-02-16 23:31:11 +00:00
OStatus feedsub fixlets: - actually udpate feedsub.last_update when we get a new PuSH update in - move incoming PuSH processing to a queue handler to minimize time spent before POST return, as recommended by PuSH spec. When queues are disabled this'll still be handled immediately. 2010-02-21 13:40:59 -08:00			`// Queue this to a background process; we should return`
OStatus: migrated notice parsing to use Activity helper classes; on the way to killing FeedMunger 2010-02-16 23:31:11 +00:00			`// as quickly as possible from a distribution POST.`
OStatus feedsub fixlets: - actually udpate feedsub.last_update when we get a new PuSH update in - move incoming PuSH processing to a queue handler to minimize time spent before POST return, as recommended by PuSH spec. When queues are disabled this'll still be handled immediately. 2010-02-21 13:40:59 -08:00			`// If queues are disabled this'll process immediately.`
			`$data = array('feedsub_id' => $feedsub->id,`
			`'post' => $post,`
			`'hmac' => $hmac);`
			`$qm = QueueManager::get();`
			`$qm->enqueue($data, 'pushinput');`
Initial functional version of feed subscription plugin, currently supporting only PuSH-enabled feeds. 2009-11-20 09:42:19 -08:00			`}`

			`/**`
			`* Handler for GET verification requests from the hub`
			`*/`
			`function handleGet()`
			`{`
			`$mode = $this->arg('hub_mode');`
			`$topic = $this->arg('hub_topic');`
			`$challenge = $this->arg('hub_challenge');`
			`$lease_seconds = $this->arg('hub_lease_seconds');`
			`$verify_token = $this->arg('hub_verify_token');`

			`if ($mode != 'subscribe' && $mode != 'unsubscribe') {`
			`common_log(LOG_WARNING, __METHOD__ . ": bogus hub callback with mode \"$mode\"");`
			`throw new ServerException("Bogus hub callback: bad mode", 404);`
			`}`

OStatus refactoring to clean up profile vs feed and fix up subscription issues. PuSH subscription maintenance broken back out to FeedSub, letting Ostatus_profile deal with the profile level (user or group, with unique id URI) 2010-02-18 21:22:21 +00:00			`$feedsub = FeedSub::staticGet('uri', $topic);`
			`if (!$feedsub) {`
Initial functional version of feed subscription plugin, currently supporting only PuSH-enabled feeds. 2009-11-20 09:42:19 -08:00			`common_log(LOG_WARNING, __METHOD__ . ": bogus hub callback for unknown feed $topic");`
			`throw new ServerException("Bogus hub callback: unknown feed", 404);`
			`}`

OStatus refactoring to clean up profile vs feed and fix up subscription issues. PuSH subscription maintenance broken back out to FeedSub, letting Ostatus_profile deal with the profile level (user or group, with unique id URI) 2010-02-18 21:22:21 +00:00			`if ($feedsub->verify_token !== $verify_token) {`
OStatus sub setup code cleanup and partial group fixes (needs more work after the Atom updates are done) 2010-02-12 01:11:46 +00:00			`common_log(LOG_WARNING, __METHOD__ . ": bogus hub callback with bad token \"$verify_token\" for feed $topic");`
OStatus sub/unsub updates: - fix for PuSH unsub verification - send Salmon notification on unsub 2010-02-18 18:20:48 +00:00			`throw new ServerException("Bogus hub callback: bad token", 404);`
OStatus sub setup code cleanup and partial group fixes (needs more work after the Atom updates are done) 2010-02-12 01:11:46 +00:00			`}`

OStatus refactoring to clean up profile vs feed and fix up subscription issues. PuSH subscription maintenance broken back out to FeedSub, letting Ostatus_profile deal with the profile level (user or group, with unique id URI) 2010-02-18 21:22:21 +00:00			`if ($mode != $feedsub->sub_state) {`
			`common_log(LOG_WARNING, __METHOD__ . ": bogus hub callback with bad mode \"$mode\" for feed $topic in state \"{$feedsub->sub_state}\"");`
OStatus sub setup code cleanup and partial group fixes (needs more work after the Atom updates are done) 2010-02-12 01:11:46 +00:00			`throw new ServerException("Bogus hub callback: mode doesn't match subscription state.", 404);`
			`}`

Initial functional version of feed subscription plugin, currently supporting only PuSH-enabled feeds. 2009-11-20 09:42:19 -08:00			`// OK!`
OStatus: garbage collect unused PuSH subscriptions when the last local subscriber unsubs 2010-02-11 00:09:20 +00:00			`if ($mode == 'subscribe') {`
			`common_log(LOG_INFO, __METHOD__ . ': sub confirmed');`
OStatus refactoring to clean up profile vs feed and fix up subscription issues. PuSH subscription maintenance broken back out to FeedSub, letting Ostatus_profile deal with the profile level (user or group, with unique id URI) 2010-02-18 21:22:21 +00:00			`$feedsub->confirmSubscribe($lease_seconds);`
Initial functional version of feed subscription plugin, currently supporting only PuSH-enabled feeds. 2009-11-20 09:42:19 -08:00			`} else {`
OStatus: garbage collect unused PuSH subscriptions when the last local subscriber unsubs 2010-02-11 00:09:20 +00:00			`common_log(LOG_INFO, __METHOD__ . ": unsub confirmed; deleting sub record for $topic");`
OStatus refactoring to clean up profile vs feed and fix up subscription issues. PuSH subscription maintenance broken back out to FeedSub, letting Ostatus_profile deal with the profile level (user or group, with unique id URI) 2010-02-18 21:22:21 +00:00			`$feedsub->confirmUnsubscribe();`
Initial functional version of feed subscription plugin, currently supporting only PuSH-enabled feeds. 2009-11-20 09:42:19 -08:00			`}`
			`print $challenge;`
			`}`
			`}`