bgme/mastodon
1
0
Fork 0
mirror of https://github.com/yingziwu/mastodon.git synced 2026-02-23 02:33:21 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Better error response to malformed headers (#35278)

Browse source
This commit is contained in:
David Roetzel 2025-07-08 11:31:04 +02:00 committed by GitHub
parent 71b2120e5c
commit 8ee6cee36e
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
4 changed files with 30 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

3
app/controllers/concerns/signature_verification.rb
View file

@ -64,6 +64,9 @@ module SignatureVerification
return (@signed_request_actor = actor) if signed_request.verified?(actor)
fail_with! "Verification failed for #{actor.to_log_human_identifier} #{actor.uri}"
rescue Mastodon::MalformedHeaderError => e
@signature_verification_failure_code = 400
fail_with! e.message
rescue Mastodon::SignatureVerificationError => e
fail_with! e.message
rescue *Mastodon::HTTP_CONNECTION_ERRORS => e