archive/oddmuse
2
0
Fork 0
forked from github/kensanata.oddmuse
Code Pull Requests Activity
Files
namespaces-fastcgi
oddmuse/modules/webmention.pl
Alex Schroeder 828482f439 webmention: various updates 
scripts/webmention.pl now extracts the author of FROM

modules/webmention.pl now is less complicated about skipping
webmention endpoint advertising and it tries to use the author and
link advertised from the incoming webmention page

And the tests were amended.
2020-05-03 21:09:30 +02:00

228 lines
7.5 KiB
Perl
Raw Permalink Blame History

# Copyright (C) 2004 Brock Wilcox <awwaiid@thelackthereof.org>
# Copyright (C) 2019 Alex Schroeder <alex@gnu.org>
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
use strict;
use v5.10;
use LWP::UserAgent;
use Modern::Perl;
use XML::LibXML;
AddModuleDescription('webmention.pl', 'Webmention Server Extension');
# Specification: https://www.w3.org/TR/webmention/
our ($CommentsPrefix, $q, $HtmlHeaders, %Action, $QuestionaskerSecretKey,
@MyInitVariables, %IndexHash, $BannedContent, $UsePathInfo, $HomePage,
$Message, @MyAdminCode, $FullUrlPattern);
push(@MyInitVariables, \&WebmentionServerAddLink, \&WebmentionAddAction);
# Add webmentions metadata to our pages
sub WebmentionServerAddLink {
$Message .= T('Webmention module requires $CommentsPrefix to be set') unless $CommentsPrefix;
# only allow linking to reasonable pages: no URL parameters!
my @params = $q->param;
return unless GetParam('action', 'browse') eq 'browse';
return if GetParam('revision');
my $id = GetId() || $HomePage;
return if $id =~ /^$CommentsPrefix/;
my $link = '<link rel="webmention" type="application/wiki" href="'
. ScriptUrl('webmention/' . UrlEncode($id)) . '" />';
$HtmlHeaders .= $link unless $HtmlHeaders =~ /rel="webmention"/;
}
sub WebmentionAddAction {
SetParam('action', 'webmention') if $q->path_info =~ m|/webmention\b|;
}
# Process incoming webmentions
$Action{webmention} = \&DoWebmentionServer;
sub DoWebmentionServer {
my $id = FreeToNormal(shift);
# some sanity checks for the request
if ($q->request_method() ne 'POST') {
ReportError(T('Webmention requires a POST request'), '400 BAD REQUEST');
}
if ($q->content_type() ne 'application/x-www-form-urlencoded') {
ReportError(T('Webmention requires x-www-form-urlencoded requests'), '400 BAD REQUEST');
}
# some sanity checks for the target page name
if (not $id) {
ReportError(T('Webmention must mention a specific page'), '400 BAD REQUEST');
}
my $error = ValidId($id);
if ($error) {
ReportError(T('Webmention must mention a valid page'), '400 BAD REQUEST');
}
# check the IP number for bans
my $rule = UserIsBanned();
if ($rule) {
ReportError(Ts('Your IP number is blocked: %s', $rule), '403 FORBIDDEN');
}
# check that the target page exists
AllPagesList();
if (not $IndexHash{$id}) {
ReportError(T('Webmention must mention an existing page'), '404 NOT FOUND');
}
# verify parameters
my $source = GetParam('source', undef) or ReportError(T('Webmention must mention source'), '400 BAD REQUEST');
my $target = GetParam('target', undef) or ReportError(T('Webmention must mention target'), '400 BAD REQUEST');
# verify that the source isn't banned
$rule = BannedContent($source);
if ($rule) {
ReportError(Ts('The URL is blocked: %s', $rule), '403 FORBIDDEN');
}
# verify that the webmention is legit
my $ua = LWP::UserAgent->new(agent => 'Oddmuse Webmention Server/0.1');
my $response = $ua->get($source);
if (not $response->is_success) {
ReportError(Tss('Webmention source cannot be verified: %1 returns %2 %3',
$source, $response->code, $response->message), '400 BAD REQUEST');
}
my $self = ScriptUrl(UrlEncode($id));
if ($response->decoded_content !~ /$self/) {
ReportError(Ts('Webmention source does not link to %s', $self), '400 BAD REQUEST');
}
$id = $CommentsPrefix . $id;
if (GetPageContent($id) =~ /$source/) {
ReportError(Ts('Webmention for %s already exists', $source), '400 BAD REQUEST');
}
# try to determine a name and a link
my ($username, $homepage);
my $parser = XML::LibXML->new(recover => 2);
my $dom = $parser->load_html(string => $response->decoded_content);
my @nodes = $dom->findnodes('//*[@rel="author"]');
if (@nodes) {
my $node = shift @nodes;
$username = $node->textContent;
$homepage = $node->getAttribute('href');
}
# post a comment without redirect at the end
SetParam('aftertext', 'Webmention: ' . $source);
SetParam('summary', 'Webmention');
SetParam('username', $username || T('Anonymous'));
SetParam('homepage', $homepage);
SetParam($QuestionaskerSecretKey, 1) if $QuestionaskerSecretKey;
local *ReBrowsePage = sub {};
DoPost($id);
# response
print GetHeader('', T('Webmention OK!'));
print $q->start_div({-class=>'content webmention'}),
$q->p(GetPageLink($BannedContent)),
$q->end_div;
PrintFooter();
}
# Allow user to webmention other sites
push(@MyAdminCode, \&WebmentionMenu);
sub WebmentionMenu {
my ($id, $menuref, $restref) = @_;
if ($id) {
push(@$menuref, ScriptLink('action=webmentions;id=' . $id, T('Add webmentions'), 'webmentions'));
}
}
$Action{webmentions} = \&DoWebmentionMenu;
sub DoWebmentionMenu {
my $id = GetId();
ValidIdOrDie($id);
print GetHeader('', Ts('Webmentioning others from %s', NormalToFree($id)), '');
my $text = GetPageContent($id);
my @urls = $text =~ /$FullUrlPattern/g;
if (@urls) {
print GetFormStart();
print GetHiddenValue('action', 'webmentioning');
print GetHiddenValue('from', UrlEncode($id));
print '<p>';
print $q->checkbox_group('to', \@urls, undef, 'true');
print '</p>';
print $q->submit('go', T('Webmention!'));
} else {
print $q->p(T('No links found.'));
}
PrintFooter();
}
$Action{webmentioning} = \&DoWebmention;
sub DoWebmention {
my $id = GetParam('from');
ValidIdOrDie($id);
my $from = ScriptUrl($id);
my @to = $q->multi_param('to');
ReportError('Missing target') unless @to;
print GetHeader('', Ts('Webmentioning somebody from %s', NormalToFree($id)), '');
for my $to (@to) {
Webmention($from, $to);
}
PrintFooter();
}
sub Webmention {
my ($from, $to) = @_;
ReportError('Target must be an URL', '400 BAD REQUEST', 0, $q->p($to)) unless $to =~ /$FullUrlPattern/;
my $ua = LWP::UserAgent->new(agent => "Oddmuse Webmention Client/0.1");
print $q->p(Ts('Contacting %s', $to));
my $response = $ua->get($to);
if (!$response->is_success) {
print $q->p(Ts('Target reports an error: %s', $response->status_line));
return;
}
print $q->p("Parsing response");
my $data = $response->decoded_content;
my $parser = XML::LibXML->new(recover => 2);
my $dom = $parser->load_html(string => $data);
my $webmention = $dom->findvalue('//link[@rel="webmention"]/@href');
if (!$webmention) {
print $q->p(T('No Webmention URL found'));
return;
}
print $q->p("Webmention URL is $webmention");
$response = $ua->post($webmention, { source => $from, target => $to });
my $message = $response->code . " " . $response->message;
if ($response->is_success) {
print $q->p(Ts("Success: %s", $message));
} else {
print $q->p(Ts("Failure: %s", $message));
$dom = $parser->load_html(string => $response->decoded_content());
for my $node ($dom->getElementsByTagName('script')) { $node->parentNode->removeChild($node) };
for my $node ($dom->getElementsByTagName('style')) { $node->parentNode->removeChild($node) };
print $q->p($dom->textContent);
}
}
View Git Blame Copy Permalink