15 Commits (07aebe1417bd4b1d275b2c53672630bd0e34d44a)

Author SHA1 Message Date
ThibG 89d600bedb Move signature verification stoplight to the requests themselves (#10813) 6 years ago
ThibG 28b482874a Improvements to signature verification (#9667) 6 years ago
Eugen Rochko 17cd91c777
Fix signature verification stoplight triggering on non-timeout errors (#9617) 6 years ago
Eugen Rochko 4615512285
Reduce connect timeout limit and limit signature failures by source IP (#9236) 6 years ago
Eugen Rochko 21ad21cb50
Improve signature verification safeguards (#8959) 6 years ago
Eugen Rochko a00ce8c92c
Remove dead code (#8919) 6 years ago
Marty McGuire 8fea9cc311 Typo in signature verification failure logging (#7916) 7 years ago
Eugen Rochko dfb6907e08
HTTP signatures spec no longer requires algorithms field (#7525) 7 years ago
Akihiko Odaki 613e7c7521 Rename ResolveRemoteAccountService to ResolveAccountService (#6327) 7 years ago
Akihiko Odaki 63f0979799 Validate id of ActivityPub representations (#5114) 7 years ago
ThibG dfaa219f88 Fix HTTP responses for salmon and ActivityPub inbox processing (#5200) 7 years ago
Eugen Rochko 76f360c625 If HTTP signature is wrong and webfinger cache is stale, retry with resolve (#5129) 7 years ago
Eugen Rochko 72bb3e03fd Support more variations of ActivityPub keyId in signature (#4630) 7 years ago
Eugen Rochko fdea173237 Add Digest header to requests with body, handle acct and URI keyId (#4565) 7 years ago
Eugen Rochko 1618b68bfa HTTP signatures (#4146) 8 years ago