2c56e447ed
When people only write `https://` as image URL, this would fail with `Addressable::URI::InvalidURIError: Absolute URI missing hierarchical segment: 'https://'`. closes #7922
43 lines
1.2 KiB
Ruby
43 lines
1.2 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
# implicitly requires OpenSSL
|
|
module Diaspora
|
|
module Camo
|
|
def self.from_markdown(markdown_text)
|
|
return unless markdown_text
|
|
markdown_text = markdown_text.gsub(/(!\[(.*?)\]\s?\([ \t]*()<?(\S+?)>?[ \t]*((['"])(.*?)\6[ \t]*)?\))/m) do |link|
|
|
link.gsub($4, self.image_url($4))
|
|
end
|
|
markdown_text.gsub(/src=(['"])(.+?)\1/m) do |link|
|
|
link.gsub($2, self.image_url($2))
|
|
end
|
|
end
|
|
|
|
def self.image_url(url)
|
|
return unless url
|
|
return url unless self.url_eligible?(url)
|
|
|
|
begin
|
|
url = Addressable::URI.encode(Addressable::URI.unencode(url))
|
|
rescue Addressable::URI::InvalidURIError
|
|
return url
|
|
end
|
|
|
|
digest = OpenSSL::HMAC.hexdigest(
|
|
OpenSSL::Digest.new('sha1'),
|
|
AppConfig.privacy.camo.key,
|
|
url
|
|
)
|
|
|
|
encoded_url = url.to_enum(:each_byte).map {|byte| '%02x' % byte}.join
|
|
File.join(AppConfig.privacy.camo.root, digest, encoded_url)
|
|
end
|
|
|
|
def self.url_eligible?(url)
|
|
return false unless url.start_with?('http', '//')
|
|
return false if url.start_with?(AppConfig.environment.url.to_s,
|
|
AppConfig.privacy.camo.root.to_s)
|
|
true
|
|
end
|
|
end
|
|
end
|