Logger Levels

[friendica.git] / src / Util / LDSignature.php

diff --git a/src/Util/LDSignature.php b/src/Util/LDSignature.php
index 6db66a52a5ecdb086c1a7ff0b8a5ad67af29613d..e53590cf312cc2da5852bfe1bb473415ba3d6261 100644 (file)
--- a/src/Util/LDSignature.php
+++ b/src/Util/LDSignature.php
@@ -2,10 +2,17 @@
 
 namespace Friendica\Util;
 
+use Friendica\Core\Logger;
 use Friendica\Util\JsonLD;
 use Friendica\Util\DateTimeFormat;
 use Friendica\Protocol\ActivityPub;
+use Friendica\Model\APContact;
 
+/**
+ * @brief Implements JSON-LD signatures
+ *
+ * Ported from Osada: https://framagit.org/macgirvin/osada
+ */
 class LDSignature
 {
        public static function isSigned($data)
@@ -19,40 +26,22 @@ class LDSignature
                        return false;
                }
 
-/*
-               $creator = $data['signature']['creator'];
-               $actor = JsonLD::fetchElement($data, 'actor', 'id');
-
-               $url = (strpos($creator, '#') ? substr($creator, 0, strpos($creator, '#')) : $creator);
-
-               $profile = ActivityPub::fetchprofile($url);
-               if (!empty($profile)) {
-                       logger('Taking key from creator ' . $creator, LOGGER_DEBUG);
-               } elseif ($url != $actor) {
-                       $profile = ActivityPub::fetchprofile($actor);
-                       if (empty($profile)) {
-                               return false;
-                       }
-                       logger('Taking key from actor ' . $actor, LOGGER_DEBUG);
-               }
-
-*/
                $actor = JsonLD::fetchElement($data, 'actor', 'id');
                if (empty($actor)) {
                        return false;
                }
 
-               $profile = ActivityPub::fetchprofile($actor);
+               $profile = APContact::getByURL($actor);
                if (empty($profile['pubkey'])) {
                        return false;
                }
                $pubkey = $profile['pubkey'];
 
-               $ohash = self::hash(self::signable_options($data['signature']));
-               $dhash = self::hash(self::signable_data($data));
+               $ohash = self::hash(self::signableOptions($data['signature']));
+               $dhash = self::hash(self::signableData($data));
 
                $x = Crypto::rsaVerify($ohash . $dhash, base64_decode($data['signature']['signatureValue']), $pubkey);
-               logger('LD-verify: ' . intval($x));
+               Logger::log('LD-verify: ' . intval($x));
 
                if (empty($x)) {
                        return false;
@@ -70,32 +59,28 @@ class LDSignature
                        'created' => DateTimeFormat::utcNow(DateTimeFormat::ATOM)
                ];
 
-               $ohash = self::hash(self::signable_options($options));
-               $dhash = self::hash(self::signable_data($data));
+               $ohash = self::hash(self::signableOptions($options));
+               $dhash = self::hash(self::signableData($data));
                $options['signatureValue'] = base64_encode(Crypto::rsaSign($ohash . $dhash, $owner['uprvkey']));
 
                return array_merge($data, ['signature' => $options]);
        }
 
-
-       private static function signable_data($data)
+       private static function signableData($data)
        {
                unset($data['signature']);
                return $data;
        }
 
-
-       private static function signable_options($options)
+       private static function signableOptions($options)
        {
                $newopts = ['@context' => 'https://w3id.org/identity/v1'];
-               if (!empty($options)) {
-                       foreach ($options as $k => $v) {
-                               if (!in_array($k, ['type', 'id', 'signatureValue'])) {
-                                       $newopts[$k] = $v;
-                               }
-                       }
-               }
-               return $newopts;
+
+               unset($options['type']);
+               unset($options['id']);
+               unset($options['signatureValue']);
+
+               return array_merge($newopts, $options);
        }
 
        private static function hash($obj)