silberengel
/
gc_index_relay
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Browse Source

reject protected events, so long as we do not implement AUTH

test/local-setup
Silberengel 3 weeks ago
parent
8d9fc4e55b
commit
6eee5e1c42
3 changed files with 45 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 3
      lib/gc_index_relay/nostr.ex
  2. 15
      lib/gc_index_relay/nostr/validator.ex
  3. 28
      test/gc_index_relay/nostr/validator_test.exs

3
lib/gc_index_relay/nostr.ex
Unescape View File

@ -57,7 +57,8 @@ defmodule GcIndexRelay.Nostr do
""" """
def create_event(event) when is_struct(event, PubEvent) do def create_event(event) when is_struct(event, PubEvent) do
with {:ok, event} <- Validator.validate_id(event), with {:ok, event} <- Validator.validate_id(event),
{:ok, event} <- Validator.validate_signature(event) do {:ok, event} <- Validator.validate_signature(event),
{:ok, event} <- Validator.validate_not_protected(event) do
db_event = PubEvent.to_db(event) db_event = PubEvent.to_db(event)
tags_as_maps = Enum.map(db_event.tags, &Map.from_struct/1) tags_as_maps = Enum.map(db_event.tags, &Map.from_struct/1)
attrs = db_event |> Map.from_struct() |> Map.put(:tags, tags_as_maps) attrs = db_event |> Map.from_struct() |> Map.put(:tags, tags_as_maps)

15
lib/gc_index_relay/nostr/validator.ex
Unescape View File

@ -58,6 +58,21 @@ defmodule GcIndexRelay.Nostr.Validator do
event.id == computed_id event.id == computed_id
end end
@doc """
Rejects protected events per [NIP-70](https://github.com/nostr-protocol/nips/blob/master/70.md).
An event containing the `["-"]` tag is considered protected and may only be
published by its author after completing the NIP-42 AUTH flow. Since this relay
does not implement NIP-42, protected events are rejected outright.
"""
def validate_not_protected(event) when is_struct(event, PubEvent) do
if Enum.member?(event.tags, ["-"]) do
{:error, "auth-required: this event may only be published by its author"}
else
{:ok, event}
end
end
@doc """ @doc """
Validates a Nostr event signature per [NIP-01](https://github.com/nostr-protocol/nips/blob/master/01.md). Validates a Nostr event signature per [NIP-01](https://github.com/nostr-protocol/nips/blob/master/01.md).
""" """

28
test/gc_index_relay/nostr/validator_test.exs
Unescape View File

@ -139,6 +139,34 @@ defmodule GcIndexRelay.Nostr.ValidatorTest do
end end
end end
describe "validate_not_protected/1" do
test "returns {:ok, event} for a normal event with no tags" do
event = valid_pub_event_fixture()
assert {:ok, ^event} = Validator.validate_not_protected(event)
end
test "returns {:ok, event} for an event with other tags but no protection tag" do
event = valid_pub_event_fixture(tags: [["e", "abc123"], ["p", "def456"]])
assert {:ok, ^event} = Validator.validate_not_protected(event)
end
test "returns {:error, message} for an event with the [\"-\"] protection tag" do
event = valid_pub_event_fixture(tags: [["-"]])
assert {:error, message} = Validator.validate_not_protected(event)
assert message =~ "auth-required"
end
test "returns {:error, message} when [\"-\"] is mixed with other tags" do
event = valid_pub_event_fixture(tags: [["e", "abc123"], ["-"], ["p", "def456"]])
assert {:error, message} = Validator.validate_not_protected(event)
assert message =~ "auth-required"
end
end
describe "static reference test" do describe "static reference test" do
test "validates against known-good pre-computed event" do test "validates against known-good pre-computed event" do
event = static_valid_pub_event() event = static_valid_pub_event()

Write Preview
Loading…
Cancel
Save