projects / akkoma / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 93701c3) | patch
security: detect object containment violations at the IR level
authorAriadne Conill <ariadne@dereferenced.org>
Sun, 14 Jul 2019 17:47:08 +0000 (17:47 +0000)
committerAriadne Conill <ariadne@dereferenced.org>
Sun, 14 Jul 2019 17:47:08 +0000 (17:47 +0000)
commit739bbe0d3bbe06ca9d634498ea5909f35fc5ad84
tree7be3db46ffca2240ba392c6ed1e359af53a60b00tree | snapshot
parent93701c3399add8af2d4a5d43b6f171d84655a533commit | diff
security: detect object containment violations at the IR level

It is more efficient to check for object containment violations at the IR
level instead of in the protocol handlers.  OStatus containment is especially
a tricky situation, as the containment rules don't match those of IR and
ActivityPub.

Accordingly, we just always do a final containment check at the IR level
before the object is added to the IR object graph.
lib/pleroma/object/containment.ex diff | blob | history
lib/pleroma/web/activity_pub/activity_pub.ex diff | blob | history
test/object/containment_test.exs diff | blob | history
Fork of https://akkoma.dev/AkkomaGang/akkoma.git