From 173f75113ff5f7e572b095534a2a58072347e9cd Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@libreserver.org>
Date: Sat, 27 Aug 2022 21:15:23 +0100
Subject: [PATCH] Getting public key for an account

---
 daemon.py | 52 ++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 52 insertions(+)

diff --git a/daemon.py b/daemon.py
index fdb5e5267..b8065cb72 100644
--- a/daemon.py
+++ b/daemon.py
@@ -795,6 +795,42 @@ class PubServer(BaseHTTPRequestHandler):
             print('AUTH: secure mode authorization failed for ' + key_id)
         return False
 
+    def _get_account_pub_key(self, path: str, person_cache: {},
+                             base_dir: str, http_prefix: str,
+                             domain: str, onion_domain: str,
+                             i2p_domain: str,
+                             calling_domain: str) -> str:
+        """Returns the public key for an account
+        """
+        if not has_users_path(path):
+            return None
+        nickname = path.split('/users/')[1]
+        if '#' not in nickname:
+            return None
+        if '#main-key' in nickname:
+            nickname = nickname.split('#main-key')[0]
+        elif '/main-key' in nickname:
+            nickname = nickname.split('/main-key')[0]
+        elif '#/publicKey' in nickname:
+            nickname = nickname.split('#/publicKey')[0]
+        else:
+            return None
+        if calling_domain.endswith('.onion'):
+            actor = http_prefix + '://' + onion_domain + '/users/' + nickname
+        elif calling_domain.endswith('.i2p'):
+            actor = http_prefix + '://' + i2p_domain + '/users/' + nickname
+        else:
+            actor = http_prefix + '://' + domain + '/users/' + nickname
+        actor_json = \
+            get_person_from_cache(base_dir, actor, person_cache)
+        if not actor_json:
+            return None
+        if not actor_json.get('publicKey'):
+            return None
+        if not actor_json['publicKey'].get('publicKeyPem'):
+            return None
+        return actor_json['publicKey']['publicKeyPem']
+
     def _login_headers(self, file_format: str, length: int,
                        calling_domain: str) -> None:
         self.send_response(200)
@@ -15212,6 +15248,22 @@ class PubServer(BaseHTTPRequestHandler):
                             self.server.domain):
             return
 
+        # getting the public key for an account
+        acct_pub_key_str = \
+            self._get_account_pub_key(self.path, self.server.person_cache,
+                                      self.server.base_dir,
+                                      self.server.http_prefix,
+                                      self.server.domain,
+                                      self.server.onion_domain,
+                                      self.server.i2p_domain,
+                                      calling_domain)
+        if acct_pub_key_str:
+            msg = acct_pub_key_str.encode('utf-8')
+            msglen = len(msg)
+            self._logout_headers('text/plain', msglen, calling_domain)
+            self._write(msg)
+            return
+
         # Since fediverse crawlers are quite active,
         # make returning info to them high priority
         # get nodeinfo endpoint