From 8d9218e8cd7f18808bbd6b60e8a489cee967efb4 Mon Sep 17 00:00:00 2001
From: FChannel <>
Date: Fri, 4 Jun 2021 16:02:52 -0700
Subject: added verfication based on signature header with pem keys

---
 outboxPost.go | 14 +-------------
 1 file changed, 1 insertion(+), 13 deletions(-)

(limited to 'outboxPost.go')

diff --git a/outboxPost.go b/outboxPost.go
index 8bddf42..5729b2d 100644
--- a/outboxPost.go
+++ b/outboxPost.go
@@ -530,25 +530,13 @@ func CheckCaptcha(db *sql.DB, captcha string) bool {
 
 func ParseInboxRequest(w http.ResponseWriter, r *http.Request, db *sql.DB) {
 	activity := GetActivityFromJson(r, db)
-	
-	header := r.Header.Get("Authorization")
-	auth := strings.Split(header, " ")
-
 
-	if len(auth) < 2 {
+	if !VerifyHeaderSignature(r, *activity.Actor) {
 		response := RejectActivity(activity)
 		MakeActivityRequest(db, response)				
 		return
 	}
 
-	if !RemoteActorHasAuth(activity.Actor.Id, auth[1]) {
-		if !RemoteActorHasAuth(Domain, auth[1]) {
-			response := RejectActivity(activity)
-			MakeActivityRequest(db, response)		
-			return
-		}
-	}
-
 	switch(activity.Type) {
 	case "Create":
 		for _, e := range activity.To {
-- 
cgit v1.2.3