view docker/prosody-e2e/Dockerfile @ 3884:cea52400623d

component AP gateway: work around encoding bug in Mastodon: Mastodon in wrongly unquoting URL path in `(request-target)`, and thus Libervia was doing the same to check signature. However that doesn't work with Pleroma which is using the path value used in the request (percent-encoded), and thus Pleroma signature were rejected. To work around that, signature is first checked without unquoting, and if this fails a new check is done with unquoting. Bug has been reported at https://github.com/mastodon/mastodon/issues/18871 rel 371
author Goffi <goffi@goffi.org>
date Wed, 31 Aug 2022 17:07:03 +0200
parents a6811543c7ff
children 31c84a32c897
line wrap: on
line source

FROM prosody/prosody

LABEL maintainer="Goffi <tmp_dockerfiles@goffi.org>"

ARG DEBIAN_FRONTEND=noninteractive

# we synchronize tls-cert group with the one in libervia-web/libervia-backend
RUN addgroup tls-cert --gid 9999 && adduser prosody tls-cert && \
    # we want third party modules
    apt-get update && apt-get install -y --no-install-recommends mercurial && \
    mkdir -p /usr/local/share/prosody && \
    hg clone https://hg.prosody.im/prosody-modules /usr/local/share/prosody/modules && \
    chown -R prosody:prosody /usr/local/share/prosody

COPY --chown=root:prosody prosody.cfg.lua /etc/prosody/prosody.cfg.lua
COPY --chown=root:tls-cert certificates/server1.test/cert.pem /usr/share/libervia/certificates/server1.test.pem
COPY --chown=root:tls-cert certificates/server1.test/key.pem /usr/share/libervia/certificates/server1.test-key.pem