small improvements

pfefferle · pfefferle · commit 8078512b8cd1 · 2023-10-24T14:54:03.000+02:00
diff --git a/includes/class-signature.php b/includes/class-signature.php
@@ -4,6 +4,7 @@
 use WP_Error;
 use DateTime;
 use DateTimeZone;
+use WP_REST_Request;
 use Activitypub\Collection\Users;
 
 /**
@@ -226,7 +227,7 @@ public static function generate_signature( $user_id, $http_method, $url, $date,
 	/**
 	 * Verifies the http signatures
 	 *
-	 * @param WP_REQUEST|array $request The request object or $_SERVER array.
+	 * @param WP_REST_Request|array $request The request object or $_SERVER array.
 	 *
 	 * @return mixed A boolean or WP_Error.
 	 */
@@ -323,17 +324,25 @@ public static function verify_http_signature( $request ) {
 	 *
 	 * @param string $key_id The URL to the public key.
 	 *
-	 * @return WP_Error|string The public key.
+	 * @return WP_Error|string The public key or WP_Error.
 	 */
 	public static function get_remote_key( $key_id ) { // phpcs:ignore
 		$actor = get_remote_metadata_by_actor( strip_fragment_from_url( $key_id ) ); // phpcs:ignore
 		if ( \is_wp_error( $actor ) ) {
-			return new WP_Error( 'activitypub_no_remote_profile_found', __( 'No Profile found or Profile not accessible', 'activitypub' ), array( 'status' => 401 ) );
+			return new WP_Error(
+				'activitypub_no_remote_profile_found',
+				__( 'No Profile found or Profile not accessible', 'activitypub' ),
+				array( 'status' => 401 )
+			);
 		}
 		if ( isset( $actor['publicKey']['publicKeyPem'] ) ) {
 			return \rtrim( $actor['publicKey']['publicKeyPem'] ); // phpcs:ignore
 		}
-		return new WP_Error( 'activitypub_no_remote_key_found', __( 'No Public-Key found', 'activitypub' ), array( 'status' => 401 ) );
+		return new WP_Error(
+			'activitypub_no_remote_key_found',
+			__( 'No Public-Key found', 'activitypub' ),
+			array( 'status' => 401 )
+		);
 	}
 
 	/**
diff --git a/includes/functions.php b/includes/functions.php
@@ -42,7 +42,7 @@ function get_webfinger_resource( $user_id ) {
  * @param string $actor  The Actor URL.
  * @param bool   $cached If the result should be cached.
  *
- * @return array The Actor profile as array
+ * @return array|WP_Error The Actor profile as array or WP_Error on failure.
  */
 function get_remote_metadata_by_actor( $actor, $cached = true ) {
 	$pre = apply_filters( 'pre_get_remote_metadata_by_actor', false, $actor );
diff --git a/includes/rest/class-inbox.php b/includes/rest/class-inbox.php
@@ -160,7 +160,7 @@ public static function shared_inbox_post( $request ) {
 				'rest_invalid_param',
 				\__( 'No recipients found', 'activitypub' ),
 				array(
-					'status' => 404,
+					'status' => 400,
 					'params' => array(
 						'to' => \__( 'Please check/validate "to" field', 'activitypub' ),
 						'bto' => \__( 'Please check/validate "bto" field', 'activitypub' ),
diff --git a/includes/rest/class-server.php b/includes/rest/class-server.php
@@ -2,6 +2,7 @@
 namespace Activitypub\Rest;
 
 use stdClass;
+use WP_Error;
 use WP_REST_Response;
 use Activitypub\Signature;
 use Activitypub\Model\Application_User;
@@ -92,13 +93,13 @@ public static function authorize_activitypub_requests( $response, $handler, $req
 		if ( 'GET' !== $request->get_method() ) {
 			$verified_request = Signature::verify_http_signature( $request );
 			if ( \is_wp_error( $verified_request ) ) {
-				return $verified_request;
+				return new WP_Error( 'activitypub_signature_verification', $verified_request->get_error_message(), array( 'status' => 401 ) );
 			}
 		} elseif ( 'GET' === $request->get_method() ) { // GET-Requests are only signed in secure mode
 			if ( ACTIVITYPUB_AUTHORIZED_FETCH ) {
 				$verified_request = Signature::verify_http_signature( $request );
 				if ( \is_wp_error( $verified_request ) ) {
-					return $verified_request;
+					return new WP_Error( 'activitypub_signature_verification', $verified_request->get_error_message(), array( 'status' => 401 ) );
 				}
 			}
 		}

Original file line number	Diff line number	Diff line change
`@@ -42,7 +42,7 @@ function get_webfinger_resource( $user_id ) {`
`42`	`42`	`* @param string $actor The Actor URL.`
`43`	`43`	`* @param bool $cached If the result should be cached.`
`44`	`44`	`*`
`45`		`- * @return array The Actor profile as array`
	`45`	`+ * @return array\|WP_Error The Actor profile as array or WP_Error on failure.`
`46`	`46`	`*/`
`47`	`47`	`function get_remote_metadata_by_actor( $actor, $cached = true ) {`
`48`	`48`	`$pre = apply_filters( 'pre_get_remote_metadata_by_actor', false, $actor );`
Original file line number	Diff line number	Diff line change
`@@ -2,6 +2,7 @@`
`2`	`2`	`namespace Activitypub\Rest;`
`3`	`3`
`4`	`4`	`use stdClass;`
	`5`	`+use WP_Error;`
`5`	`6`	`use WP_REST_Response;`
`6`	`7`	`use Activitypub\Signature;`
`7`	`8`	`use Activitypub\Model\Application_User;`
`@@ -92,13 +93,13 @@ public static function authorize_activitypub_requests( $response, $handler, $req`
`92`	`93`	`if ( 'GET' !== $request->get_method() ) {`
`93`	`94`	`$verified_request = Signature::verify_http_signature( $request );`
`94`	`95`	`if ( \is_wp_error( $verified_request ) ) {`
`95`		`- return $verified_request;`
	`96`	`+ return new WP_Error( 'activitypub_signature_verification', $verified_request->get_error_message(), array( 'status' => 401 ) );`
`96`	`97`	`}`
`97`	`98`	`} elseif ( 'GET' === $request->get_method() ) { // GET-Requests are only signed in secure mode`
`98`	`99`	`if ( ACTIVITYPUB_AUTHORIZED_FETCH ) {`
`99`	`100`	`$verified_request = Signature::verify_http_signature( $request );`
`100`	`101`	`if ( \is_wp_error( $verified_request ) ) {`
`101`		`- return $verified_request;`
	`102`	`+ return new WP_Error( 'activitypub_signature_verification', $verified_request->get_error_message(), array( 'status' => 401 ) );`
`102`	`103`	`}`
`103`	`104`	`}`
`104`	`105`	`}`