let undo = Undo::from_any_base(activity)?.context(location_info!())?;
verify_activity_domains_valid(&undo, &expected_domain.to_owned(), true)?;
verify_is_addressed_to_public(&undo)?;
- verify_modification_actor_instance(&undo, &announce, context).await?;
use UndoableActivities::*;
match undo
.and_then(|s| s.parse().ok())
{
Some(Delete) => receive_undo_delete_for_community(context, undo, expected_domain).await,
- Some(Remove) => receive_undo_remove_for_community(context, undo, expected_domain).await,
+ Some(Remove) => {
+ receive_undo_remove_for_community(context, undo, announce, expected_domain).await
+ }
Some(Like) => {
receive_undo_like_for_community(context, undo, expected_domain, request_counter).await
}
pub(in crate::inbox) async fn receive_undo_remove_for_community(
context: &LemmyContext,
undo: Undo,
+ announce: Option<Announce>,
expected_domain: &Url,
) -> Result<(), LemmyError> {
let remove = Remove::from_any_base(undo.object().to_owned().one().context(location_info!())?)?
.context(location_info!())?;
verify_activity_domains_valid(&remove, &expected_domain, false)?;
verify_is_addressed_to_public(&remove)?;
+ verify_undo_remove_actor_instance(&undo, &remove, &announce, context).await?;
let object = remove
.object()
Ok(())
}
-/// For activities like Update, Delete or Undo, check that the actor is from the same instance
+/// For activities like Update, Delete or Remove, check that the actor is from the same instance
/// as the original object itself (or is a remote mod).
///
/// Note: This is only needed for mod actions. Normal user actions (edit post, undo vote etc) are
Ok(())
}
+
+pub(crate) async fn verify_undo_remove_actor_instance<T, Kind>(
+ undo: &Undo,
+ inner: &T,
+ announce: &Option<Announce>,
+ context: &LemmyContext,
+) -> Result<(), LemmyError>
+where
+ T: ActorAndObjectRef + BaseExt<Kind> + AsObject<Kind>,
+{
+ if announce.is_none() {
+ let community = extract_community_from_cc(undo, context).await?;
+ verify_mod_activity(undo, announce.to_owned(), &community, context).await?;
+ verify_mod_activity(inner, announce.to_owned(), &community, context).await?;
+ }
+
+ Ok(())
+}
use crate::{
activities::receive::{
- comment::{receive_create_comment, receive_update_comment},
community::{
receive_delete_community,
receive_remove_community,
) -> Result<(), LemmyError> {
let create = Create::from_any_base(activity)?.context(location_info!())?;
verify_activity_domains_valid(&create, &expected_domain, true)?;
- if verify_is_addressed_to_public(&create).is_ok() {
- receive_create_comment(create, context, request_counter).await
- } else {
- receive_create_private_message(&context, create, expected_domain, request_counter).await
- }
+ receive_create_private_message(&context, create, expected_domain, request_counter).await
}
async fn receive_update(
) -> Result<(), LemmyError> {
let update = Update::from_any_base(activity)?.context(location_info!())?;
verify_activity_domains_valid(&update, &expected_domain, true)?;
- if verify_is_addressed_to_public(&update).is_ok() {
- receive_update_comment(update, context, request_counter).await
- } else {
- receive_update_private_message(&context, update, expected_domain, request_counter).await
- }
+ receive_update_private_message(&context, update, expected_domain, request_counter).await
}
async fn receive_delete(
projects / lemmy.git / commitdiff