0.10.0

Fix spec
Set host for RS auth url
2024-09-18 15:49:07 +02:00 · 2024-09-18 14:46:46 +02:00 · 2024-09-14 17:17:09 +02:00 · 2024-09-14 16:46:14 +02:00 · 2024-09-14 16:40:22 +02:00 · 2024-09-13 12:33:11 +00:00
10 changed files with 74 additions and 22 deletions
--- a/app/controllers/admin/settings_controller.rb
+++ b/app/controllers/admin/settings_controller.rb
@@ -25,7 +25,6 @@ class Admin::SettingsController < Admin::BaseController
    end

    changed_keys.each do |key|
-
      Setting.send("#{key}=", clean_param(key))
    end
  end
@@ -42,7 +41,7 @@ class Admin::SettingsController < Admin::BaseController

    def clean_param(key)
      if Setting.get_field(key)[:type] == :string
-        setting_params[key].strip!
+        setting_params[key].strip
      else
        setting_params[key]
      end
--- a/app/controllers/lnurlpay_controller.rb
+++ b/app/controllers/lnurlpay_controller.rb
@@ -1,7 +1,7 @@
 class LnurlpayController < ApplicationController
  before_action :check_service_available
  before_action :find_user
-  before_action :set_cors_access_control_headers, only: [:invoice]
+  before_action :set_cors_access_control_headers

  MIN_SATS = 10
  MAX_SATS = 1_000_000
--- a/app/controllers/webfinger_controller.rb
+++ b/app/controllers/webfinger_controller.rb
@@ -1,8 +1,6 @@
-class WebfingerController < ApplicationController
+class WebfingerController < WellKnownController
  before_action :allow_cross_origin_requests, only: [:show]

-  layout false
-
  def show
    resource = params[:resource]

@@ -76,7 +74,7 @@ class WebfingerController < ApplicationController
  end

  def remotestorage_link
-    auth_url = new_rs_oauth_url(@username)
+    auth_url = new_rs_oauth_url(@username, host: Setting.accounts_domain)
    storage_url = "#{Setting.rs_storage_url}/#{@username}"

    {
@@ -91,10 +89,4 @@ class WebfingerController < ApplicationController
      }
    }
  end
-
-  def allow_cross_origin_requests
-    return unless Rails.env.development?
-    headers['Access-Control-Allow-Origin'] = "*"
-    headers['Access-Control-Allow-Methods'] = "GET"
-  end
 end
--- a/app/controllers/well_known_controller.rb
+++ b/app/controllers/well_known_controller.rb
@@ -1,5 +1,8 @@
 class WellKnownController < ApplicationController
  before_action :require_nostr_enabled, only: [ :nostr ]
+  before_action :allow_cross_origin_requests, only: [ :nostr ]
+
+  layout false

  def nostr
    http_status :unprocessable_entity and return if params[:name].blank?
@@ -7,8 +10,14 @@ class WellKnownController < ApplicationController
    relay_url = Setting.nostr_relay_url.presence

    if params[:name] == "_"
-      # pubkey for the primary domain without a username (e.g. kosmos.org)
-      res = { names: { "_": Setting.nostr_public_key } }
+      if domain == Setting.primary_domain
+        # pubkey for the primary domain without a username (e.g. kosmos.org)
+        res = { names: { "_": Setting.nostr_public_key_primary_domain.presence || Setting.nostr_public_key } }
+      else
+        # pubkey for the akkounts domain without a username (e.g. accounts.kosmos.org)
+        res = { names: { "_": Setting.nostr_public_key } }
+      end
+
      res[:relays] = { "_" => [ relay_url ] } if relay_url
    else
      @user = User.where(cn: params[:name], ou: domain).first
@@ -30,4 +39,9 @@ class WellKnownController < ApplicationController
    def require_nostr_enabled
      http_status :not_found unless Setting.nostr_enabled?
    end
+
+    def allow_cross_origin_requests
+      headers['Access-Control-Allow-Origin'] = "*"
+      headers['Access-Control-Allow-Methods'] = "GET"
+    end
 end
--- a/app/models/concerns/settings/nostr_settings.rb
+++ b/app/models/concerns/settings/nostr_settings.rb
@@ -12,6 +12,9 @@ module Settings
      field :nostr_public_key, type: :string,
        default: ENV["NOSTR_PUBLIC_KEY"].presence

+      field :nostr_public_key_primary_domain, type: :string,
+        default: ENV["NOSTR_PUBLIC_KEY_PRIMARY_DOMAIN"].presence
+
      field :nostr_relay_url, type: :string,
        default: ENV["NOSTR_RELAY_URL"].presence

--- a/app/views/admin/settings/registrations/show.html.erb
+++ b/app/views/admin/settings/registrations/show.html.erb
@@ -30,7 +30,8 @@
            <% Setting.available_services.each do |option| %>
              <div class="md:inline-block">
                <%= f.check_box :default_services,
-                  { multiple: true, checked: Setting.default_services.include?(option) },
+                  { multiple: true, checked: Setting.default_services.include?(option),
+                    class: "h-4 w-4 rounded border-gray-300 text-blue-600 focus:ring-blue-600 mr-0.5" },
                  option, nil %>
                <%= f.label "default_services_#{option.parameterize}", service_human_name(option) %>
              </div>
--- a/app/views/admin/settings/services/_nostr.html.erb
+++ b/app/views/admin/settings/services/_nostr.html.erb
@@ -19,6 +19,11 @@
        title: "Public key",
        description: "The corresponding public key of the accounts service"
      ) %>
+  <%= render FormElements::FieldsetResettableSettingComponent.new(
+        key: :nostr_public_key_primary_domain,
+        title: "Public key for primary domain (NIP-05)",
+        description: "(optional) A different pubkey to announce for the _@#{Setting.primary_domain} Nostr address"
+      ) %>
  <%= render FormElements::FieldsetResettableSettingComponent.new(
        key: :nostr_relay_url,
        title: "Relay URL",
--- a/package.json
+++ b/package.json
@@ -11,7 +11,7 @@
    "postcss-preset-env": "^7.8.3",
    "tailwindcss": "^3.2.4"
  },
-  "version": "0.9.0",
+  "version": "0.10.0",
  "scripts": {
    "build:css:tailwind": "tailwindcss --postcss -i ./app/assets/stylesheets/application.tailwind.css -o ./app/assets/builds/application.css",
    "build:css": "yarn run build:css:tailwind"
--- a/spec/requests/webfinger_spec.rb
+++ b/spec/requests/webfinger_spec.rb
@@ -92,7 +92,13 @@ RSpec.describe "WebFinger", type: :request do
          expect(rs_link["href"]).to eql("#{Setting.rs_storage_url}/tony")

          oauth_url = rs_link["properties"]["http://tools.ietf.org/html/rfc6749#section-4.2"]
-          expect(oauth_url).to eql("http://www.example.com/rs/oauth/tony")
+          expect(oauth_url).to eql("http://accounts.kosmos.org/rs/oauth/tony")
+        end
+
+        it "returns CORS headers" do
+          get "/.well-known/nostr.json?name=bobdylan"
+          expect(response.headers['Access-Control-Allow-Origin']).to eq("*")
+          expect(response.headers['Access-Control-Allow-Methods']).to eq('GET')
        end
      end

--- a/spec/requests/well_known_spec.rb
+++ b/spec/requests/well_known_spec.rb
@@ -46,6 +46,12 @@ RSpec.describe "Well-known URLs", type: :request do
        expect(res["names"]["bobdylan"]).to eq(user.nostr_pubkey)
      end

+      it "returns CORS headers" do
+        get "/.well-known/nostr.json?name=bobdylan"
+        expect(response.headers['Access-Control-Allow-Origin']).to eq("*")
+        expect(response.headers['Access-Control-Allow-Methods']).to eq('GET')
+      end
+
      context "without relay configured" do
        before do
          Setting.nostr_relay_url = ""
@@ -73,10 +79,36 @@ RSpec.describe "Well-known URLs", type: :request do
    end

    describe "placeholder username for domain's own pubkey" do
-      it "returns the configured nostr pubkey" do
-        get "/.well-known/nostr.json?name=_"
-        res = JSON.parse(response.body)
-        expect(res["names"]["_"]).to eq(Setting.nostr_public_key)
+      describe "for primary domain" do
+        context "no different pubkey configured for primary domain" do
+          it "returns the akkounts nostr pubkey" do
+            get "/.well-known/nostr.json?name=_"
+            res = JSON.parse(response.body)
+            expect(res["names"]["_"]).to eq("bdd76ce2934b2f591f9fad2ebe9da18f20d2921de527494ba00eeaa0a0efadcf")
+          end
+        end
+
+        context "different pubkey configured for primary domain" do
+          before do
+            Setting.nostr_public_key_primary_domain = "b3e8f62fbe41217ffc0aa1e178d297339932d8ba4f46d9c7df3b61575e78fecc"
+          end
+
+          it "returns the primary domain's nostr pubkey" do
+            get "/.well-known/nostr.json?name=_"
+            res = JSON.parse(response.body)
+            expect(res["names"]["_"]).to eq("b3e8f62fbe41217ffc0aa1e178d297339932d8ba4f46d9c7df3b61575e78fecc")
+          end
+        end
+      end
+
+      describe "for akkounts domain" do
+        it "returns the configured nostr pubkey" do
+          headers = { "X-Forwarded-Host" => "accounts.kosmos.org" }
+          get "/.well-known/nostr.json?name=_"
+
+          res = JSON.parse(response.body)
+          expect(res["names"]["_"]).to eq("bdd76ce2934b2f591f9fad2ebe9da18f20d2921de527494ba00eeaa0a0efadcf")
+        end
      end

      context "with relay configured" do
Author	SHA1	Message	Date
Râu Cao	8f7994d82e	0.10.0 All checks were successful continuous-integration/drone/tag Build is passing Details continuous-integration/drone/push Build is passing Details	2024-09-18 15:49:07 +02:00
Râu Cao	a7d0e71ab6	Fix spec All checks were successful continuous-integration/drone/push Build is passing Details	2024-09-18 14:46:46 +02:00
Râu Cao	27d9f73c61	Set host for RS auth url Some checks failed continuous-integration/drone/push Build is failing Details With X-Forwarded-Host set on the proxied request, Rails uses that host for URLs. But we need it to be the accounts domain.	2024-09-14 17:17:09 +02:00
Râu Cao	ed3de8b16f	Allow CORS for all LNURL endpoints All checks were successful continuous-integration/drone/push Build is passing Details	2024-09-14 16:46:14 +02:00
Râu Cao	d7b4c67953	Fix config when set to empty string All checks were successful continuous-integration/drone/push Build is passing Details	2024-09-14 16:40:22 +02:00
Greg	7489d4a32f	Merge pull request 'Add config for separate primary domain Nostr pubkey' (#204 ) from feature/nostr_pubkey_primary_domain into master All checks were successful continuous-integration/drone/push Build is passing Details Reviewed-on: #204 Reviewed-by: Greg <greg@noreply.kosmos.org>	2024-09-13 12:33:11 +00:00
Râu Cao	ac77e5b7c1	Allow ENV var for new setting All checks were successful continuous-integration/drone/push Build is passing Details continuous-integration/drone/pr Build is passing Details Release Drafter / Update release notes draft (pull_request) Successful in 5s Details	2024-09-11 16:31:04 +02:00
Râu Cao	e544c28105	Config for separate primary domain Nostr pubkey All checks were successful continuous-integration/drone/push Build is passing Details continuous-integration/drone/pr Build is passing Details Allow to configure a separate key for the NIP-05 address of the primary domain vs the accounts domain.	2024-09-11 16:28:12 +02:00
Râu Cao	4909dac5c2	Fix typo All checks were successful continuous-integration/drone/push Build is passing Details The return value of `strip!` is `nil`	2024-09-11 16:26:48 +02:00
Râu Cao	3cf4348695	Merge pull request 'Make default user services configurable by admins' (#203 ) from feature/default_service_settings into master All checks were successful continuous-integration/drone/push Build is passing Details Reviewed-on: #203 Reviewed-by: galfert <garret.alfert@gmail.com>	2024-09-11 11:21:38 +00:00
Râu Cao	af3da0a26c	Set CORS headers for all .well-known responses All checks were successful continuous-integration/drone/push Build is passing Details So we don't have to consider it for reverse proxies etc.	2024-09-10 16:06:11 +02:00
Râu Cao	2d32320c7d	Style check boxes All checks were successful continuous-integration/drone/push Build is passing Details continuous-integration/drone/pr Build is passing Details Release Drafter / Update release notes draft (pull_request) Successful in 5s Details	2024-09-05 11:24:38 +02:00