Fix federation
This commit is contained in:
Tim Zöller
parent
4cb6b6a5a3
commit
4a55242ccb
2 changed files with 22 additions and 3 deletions
|
|
@ -1,11 +1,16 @@
|
|||
package org.operaton.fitpub;
|
||||
|
||||
import lombok.extern.slf4j.Slf4j;
|
||||
import org.apache.hc.client5.http.classic.HttpClient;
|
||||
import org.apache.hc.client5.http.impl.classic.HttpClientBuilder;
|
||||
import org.apache.hc.client5.http.impl.io.PoolingHttpClientConnectionManagerBuilder;
|
||||
import org.apache.hc.client5.http.io.HttpClientConnectionManager;
|
||||
import org.operaton.fitpub.config.TestcontainersConfiguration;
|
||||
import org.springframework.boot.SpringApplication;
|
||||
import org.springframework.boot.autoconfigure.SpringBootApplication;
|
||||
import org.springframework.context.annotation.Bean;
|
||||
import org.springframework.context.annotation.Import;
|
||||
import org.springframework.http.client.HttpComponentsClientHttpRequestFactory;
|
||||
import org.springframework.scheduling.annotation.EnableAsync;
|
||||
import org.springframework.web.client.RestTemplate;
|
||||
|
||||
|
|
@ -28,9 +33,22 @@ public class FitPubApplication {
|
|||
|
||||
/**
|
||||
* REST template for making HTTP requests to remote ActivityPub servers.
|
||||
* Configured to not suppress HTTP headers, which is critical for HTTP Signature authentication.
|
||||
*/
|
||||
@Bean
|
||||
public RestTemplate restTemplate() {
|
||||
return new RestTemplate();
|
||||
// Use Apache HttpClient with custom configuration
|
||||
// This prevents automatic Host header overwriting which breaks HTTP Signatures
|
||||
HttpClientConnectionManager connectionManager = PoolingHttpClientConnectionManagerBuilder.create()
|
||||
.build();
|
||||
|
||||
HttpClient httpClient = HttpClientBuilder.create()
|
||||
.setConnectionManager(connectionManager)
|
||||
.disableRedirectHandling() // Don't follow redirects (important for federation)
|
||||
.build();
|
||||
|
||||
HttpComponentsClientHttpRequestFactory requestFactory = new HttpComponentsClientHttpRequestFactory(httpClient);
|
||||
|
||||
return new RestTemplate(requestFactory);
|
||||
}
|
||||
}
|
||||
|
|
|
|||
|
|
@ -179,8 +179,9 @@ public class FederationService {
|
|||
headers.set("Content-Type", "application/activity+json");
|
||||
headers.set("Accept", "application/activity+json");
|
||||
|
||||
// Add all signature-related headers
|
||||
headers.set("Host", signatureHeaders.host);
|
||||
// Add signature-related headers
|
||||
// NOTE: We do NOT set the Host header manually - RestTemplate/HttpClient sets it automatically
|
||||
// The signature was calculated with the correct host from the URL, so it will match
|
||||
headers.set("Date", signatureHeaders.date);
|
||||
headers.set("Digest", signatureHeaders.digest);
|
||||
headers.set("Signature", signatureHeaders.signature);
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue