From e5ea882ed74b3cdd0e86f4dda5a8ce724f30d2ef Mon Sep 17 00:00:00 2001
From: dakkar <dakkar@thenautilus.net>
Date: Wed, 20 Dec 2023 12:17:59 +0000
Subject: authorized fetch #217

the implementation is copied from the other places we already check
HTTP signatures, and cross-checked with Firefish's implementation
---
 chart/files/default.yml | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'chart')

diff --git a/chart/files/default.yml b/chart/files/default.yml
index 4cc291e80a..9c81964736 100644
--- a/chart/files/default.yml
+++ b/chart/files/default.yml
@@ -194,6 +194,8 @@ id: "aidx"
 
 # Sign to ActivityPub GET request (default: true)
 signToActivityPubGet: true
+# check that inbound ActivityPub GET requests are signed ("authorized fetch")
+checkActivityPubGetSignature: false
 
 #allowedPrivateNetworks: [
 #  '127.0.0.1/32'
-- 
cgit v1.2.3-freya