Plume
/
Plume
8
17
Fork 23
Code Issues 176 Pull Requests 9 Releases 8 Wiki Activity

Labels Milestones

New Issue

Request headers are not signed? #910

Closed
opened 3 years ago by Ghost · 5 comments
Ghost commented 3 years ago

When sending ActivityPub updates to a mastodon instance, the requests are rejected by Mastodon because the Host header is not signed. The Plume logs show:

Successfully sent activity to inbox (https://toot.kuba-orlik.name/inbox)
Response: "b"Mastodon requires the Host header to be signed""
When sending ActivityPub updates to a mastodon instance, the requests are rejected by Mastodon because the `Host` header is not signed. The Plume logs show: ``` Successfully sent activity to inbox (https://toot.kuba-orlik.name/inbox) Response: "b"Mastodon requires the Host header to be signed"" ```
KitaitiMakoto commented 3 years ago
Owner

Thank you reporting. Which version do you use?

Plume v0.6.0 (or earler) doesn't signature Host header. But latest main branch and Docker image does.

I'm aware I should release next version soon, but if you need the feature soon, can you try latest unstable version?

Thank you reporting. Which version do you use? Plume v0.6.0 (or earler) doesn't signature Host header. But latest `main` branch and Docker image does. I'm aware I should release next version soon, but if you need the feature soon, can you try latest unstable version?
KitaitiMakoto commented 3 years ago
Owner

Note: fediverse.blog logs the same error:

Mar 28 17:46:36 fediverse.blog plume[12462]: Response: "b"Mastodon requires the Host header to be signed""
Mar 28 17:46:36 fediverse.blog plume[12462]: Successfully sent activity to inbox (https://computerfairi.es/inbox)
Mar 28 17:46:36 fediverse.blog plume[12462]: Response: "b"Mastodon requires the Host header to be signed""
Mar 28 17:46:36 fediverse.blog plume[12462]: Successfully sent activity to inbox (https://toot.site/inbox)

Its current revision is d0dd23a.

Note: fediverse.blog logs the same error: Mar 28 17:46:36 fediverse.blog plume[12462]: Response: "b"Mastodon requires the Host header to be signed"" Mar 28 17:46:36 fediverse.blog plume[12462]: Successfully sent activity to inbox (https://computerfairi.es/inbox) Mar 28 17:46:36 fediverse.blog plume[12462]: Response: "b"Mastodon requires the Host header to be signed"" Mar 28 17:46:36 fediverse.blog plume[12462]: Successfully sent activity to inbox (https://toot.site/inbox) Its current revision is d0dd23a.
Ghost commented 3 years ago
Poster

I was on 0.6.0 when this issue occured. I currently don't have resources to try a different version at the moment

I was on 0.6.0 when this issue occured. I currently don't have resources to try a different version at the moment
KitaitiMakoto commented 3 years ago
Owner

Okay, next release should include the fix.

Okay, next release should include the fix.
KitaitiMakoto commented 3 years ago
Owner

@Ghost v0.7.0 which includes fix for this issue, has been released!

@Ghost v0.7.0 which includes fix for this issue, has been released!
KitaitiMakoto closed this issue 3 years ago
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
main
paginate-search-init
s3
fix-delete-user
timeline-cli
blog-title
signature
remove-dup-images
ldap-non-anon
drone-ci
DearRude/force-lang
igalic/go/async-all-mut
go/async
floreal/translations-update
missing-docs
RAOF/fix-arm64-build
epsilon-phase/authorized-fetch
upgrade
improve-the-editor-once-again
igalic/feat/custom-fairing-domains
feature/ldap
test/dotenv_error
fix-mobile-margin
0.7.2
0.7.0
0.2.0-alpha-1
0.3.0-alpha-2
0.4.0-alpha-4
0.5.0
0.6.0
0.7.1
Labels
Apply labels
Clear labels   
A: API

Related to the REST API   
A: Backend

Code running on the server   
A: Federation

Stuff related to Federation   
A: Front-End

Related to the front-end   
A: I18N

Translations, and related code   
A: Meta

More about project management or code than the project itself   
A: Security
   
Build

The building, or installation process of Plume   
C: Bug

Something isn't working   
C: Discussion

We need to talk   
C: Enhancement

New feature or request   
C: Feature

This is a new feature   
Compatibility

Compatibility with different browsers, readers and OS   
Dependency

Related to an external package that Plume uses   
Design

UI/UX related issues and PRs   
Documentation
   
Good first issue

Good for newcomers   
Help welcome

Extra attention is needed   
Mobile

Issues affecting only mobile UX   
Rendering

How elements're rendered out for the end user   
S: Blocked

Something else needs to be fixed first   
S: Duplicate

This issue or pull request already exists   
S: Incomplete

This PR is not complete yet   
S: Instance specific

Issues concern a limited number of instances   
S: Invalid

This doesn't seem right   
S: Needs Voting/Discussion

Need to be discussed by the community (on Loomio)   
S: Ready for review

This PR is ready to be reviewed   
Suggestion

Proposed ideas worth considering   
S: Voted on Loomio

This is issue has been created after a vote on Loomio   
S: Wontfix

This will not be worked on
No Label
A: API
A: Backend
A: Federation
A: Front-End
A: I18N
A: Meta
A: Security
Build
C: Bug
C: Discussion
C: Enhancement
C: Feature
Compatibility
Dependency
Design
Documentation
Good first issue
Help welcome
Mobile
Rendering
S: Blocked
S: Duplicate
S: Incomplete
S: Instance specific
S: Invalid
S: Needs Voting/Discussion
S: Ready for review
Suggestion
S: Voted on Loomio
S: Wontfix
Milestone
Set milestone
Clear milestone
No items
No Milestone
Assignees
Assign users
Clear assignees
No Assignees
2 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: Plume/Plume#910
Write Preview
Loading…
Cancel
Save
There is no content yet.
Delete Branch '%!s(<nil>)'

Deleting a branch is permanent. It CANNOT be undone. Continue?

No
Yes