grain/config/Whitelist.go

95 lines
2.7 KiB
Go
Raw Normal View History

2024-09-02 00:51:02 +00:00
package config
import (
"fmt"
2024-11-08 21:35:54 +00:00
nostr "grain/server/types"
2024-09-02 00:51:02 +00:00
"grain/server/utils"
2024-11-08 21:57:35 +00:00
"log"
"strconv"
)
2024-11-08 21:35:54 +00:00
// CheckWhitelist checks if an event meets the whitelist criteria.
func CheckWhitelist(evt nostr.Event) (bool, string) {
whitelistCfg := GetWhitelistConfig()
if whitelistCfg == nil {
return false, "Internal server error: whitelist configuration is missing"
}
// Check if the event's kind is whitelisted
if whitelistCfg.KindWhitelist.Enabled && !IsKindWhitelisted(evt.Kind) {
return false, "not allowed: event kind is not whitelisted"
}
// Check if the event's pubkey is whitelisted
if whitelistCfg.PubkeyWhitelist.Enabled && !IsPubKeyWhitelisted(evt.PubKey) {
return false, "not allowed: pubkey or npub is not whitelisted"
}
return true, ""
}
2024-11-08 21:57:35 +00:00
// IsPubKeyWhitelisted checks if a pubkey or npub is whitelisted, considering pubkeys from domains.
func IsPubKeyWhitelisted(pubKey string) bool {
cfg := GetWhitelistConfig()
2024-11-08 21:57:35 +00:00
if cfg == nil || !cfg.PubkeyWhitelist.Enabled {
return true // Whitelisting is not enforced if the configuration is missing or disabled
}
2024-11-08 21:57:35 +00:00
// Check statically defined pubkeys
for _, whitelistedKey := range cfg.PubkeyWhitelist.Pubkeys {
if pubKey == whitelistedKey {
return true
}
}
2024-11-08 21:57:35 +00:00
// Check statically defined npubs after decoding them to pubkeys
for _, npub := range cfg.PubkeyWhitelist.Npubs {
decodedPubKey, err := utils.DecodeNpub(npub)
if err != nil {
2024-11-08 21:57:35 +00:00
log.Printf("Error decoding npub: %v", err)
continue
}
if pubKey == decodedPubKey {
return true
}
}
2024-11-08 21:57:35 +00:00
// Fetch and check pubkeys from domains if domain whitelisting is enabled
if cfg.DomainWhitelist.Enabled {
domains := cfg.DomainWhitelist.Domains
pubkeys, err := utils.FetchPubkeysFromDomains(domains)
if err != nil {
log.Printf("Error fetching pubkeys from domains: %v", err)
return false // Consider returning true or handling based on your application's needs
}
for _, domainPubKey := range pubkeys {
if pubKey == domainPubKey {
return true
}
}
}
return false
}
// Check if a kind is whitelisted
func IsKindWhitelisted(kind int) bool {
cfg := GetWhitelistConfig()
if !cfg.KindWhitelist.Enabled {
return true
}
for _, whitelistedKindStr := range cfg.KindWhitelist.Kinds {
whitelistedKind, err := strconv.Atoi(whitelistedKindStr)
if err != nil {
fmt.Println("Error converting whitelisted kind to int:", err)
continue
}
if kind == whitelistedKind {
return true
}
}
return false
}