activitypub: object view: sanitize both the activity and the object when an activity is given for rendering
This commit is contained in:
parent
c9c1f9dee2
commit
f8310114a6
@ -1,11 +1,23 @@
|
|||||||
defmodule Pleroma.Web.ActivityPub.ObjectView do
|
defmodule Pleroma.Web.ActivityPub.ObjectView do
|
||||||
use Pleroma.Web, :view
|
use Pleroma.Web, :view
|
||||||
|
alias Pleroma.{Object, Activity}
|
||||||
alias Pleroma.Web.ActivityPub.Transmogrifier
|
alias Pleroma.Web.ActivityPub.Transmogrifier
|
||||||
|
|
||||||
def render("object.json", %{object: object}) do
|
def render("object.json", %{object: %Object{} = object}) do
|
||||||
base = Pleroma.Web.ActivityPub.Utils.make_json_ld_header()
|
base = Pleroma.Web.ActivityPub.Utils.make_json_ld_header()
|
||||||
|
|
||||||
additional = Transmogrifier.prepare_object(object.data)
|
additional = Transmogrifier.prepare_object(object.data)
|
||||||
Map.merge(base, additional)
|
Map.merge(base, additional)
|
||||||
end
|
end
|
||||||
|
|
||||||
|
def render("object.json", %{object: %Activity{} = activity}) do
|
||||||
|
base = Pleroma.Web.ActivityPub.Utils.make_json_ld_header()
|
||||||
|
object = Object.normalize(activity.data["object"])
|
||||||
|
|
||||||
|
additional =
|
||||||
|
Transmogrifier.prepare_object(activity.data)
|
||||||
|
|> Map.put("object", Transmogrifier.prepare_object(object.data))
|
||||||
|
|
||||||
|
Map.merge(base, additional)
|
||||||
|
end
|
||||||
end
|
end
|
||||||
|
Loading…
Reference in New Issue
Block a user