GKaszewski/k-ap - k-ap - KaszoSoft Git

Author	SHA1	Message	Date
Gabriel Kaszewski	7171a1791a	feat: actor cache TTL with staleness-aware re-fetch Adds fetched_at to RemoteActor, configurable TTL via builder (.actor_cache_ttl_secs, default 24h), and get_or_refresh_remote_actor helper that re-fetches stale actors from origin. Closes #3	2026-05-30 02:46:54 +02:00
Gabriel Kaszewski	d5f75b4b57	feat: route backfill through EventPublisher; add run_backfill_for_follower	2026-05-29 02:05:03 +02:00
Gabriel Kaszewski	73a68860c1	style: clippy fixes and linter formatting	2026-05-29 01:52:14 +02:00
Gabriel Kaszewski	df6ff4c1e8	refactor!: CQRS repository split — v0.3.0 FederationRepository (34 methods) → 4 focused traits: ActivityRepository (2) — idempotency tracking FollowRepository (18) — follower/following graph + migration ActorRepository (6) — keypairs, remote actor cache, announce tracking BlocklistRepository (8) — domain + actor blocklists ApObjectHandler (10 methods) → 2 traits: ApContentReader (3) — get_local_objects_for_user/page, count_local_posts ApObjectHandler (9) — all inbox callbacks (on_create, on_mention, etc.) Builder changes from positional args to named setters: ActivityPubService::builder(base_url) .activity_repo(arc) .follow_repo(arc) .actor_repo(arc) .blocklist_repo(arc) .user_repo(arc) .content_reader(arc) .object_handler(arc) .build() No behaviour changes.	2026-05-29 01:47:23 +02:00
Gabriel Kaszewski	7ccc18e85c	feat: production hardening — security, scale, protocol, DX Breaking changes to FederationRepository, ApObjectHandler, ApUser: FederationRepository: - add is_activity_processed / mark_activity_processed (inbox idempotency) - add get_accepted_follower_inboxes (DB-side dedup/filtering, replaces in-memory load-all) ApObjectHandler: - add on_announce_of_remote (cross-server boosts, previously silently dropped) ApUser: - add manually_approves_followers: bool - add actor_type: ApActorType (was hardcoded Person) Security: - block check before actor HTTP fetch in Follow (prevents SSRF on blocked actors) - 4xx responses use generic "not found"/"bad request" (no internal leak) - 1 MB DefaultBodyLimit on inbox routes - zeroize private key after generation Delivery: - all broadcasts are now non-blocking (tokio::spawn fallback, or EventPublisher queue) - EventPublisher redesigned with typed FederationEvent enum (DeliveryRequested/DeliveryFailed) - new deliver_to_inbox() public method for queue consumers - configurable delivery_max_attempts and delivery_initial_delay_secs via builder - Follow saved as Pending BEFORE delivery (race condition fix) Router: - GET /users/{id} (actor), GET /users/{id}/followers, GET /users/{id}/following now mounted Protocol: - mention extraction from Create/Update tag arrays → on_mention() dispatched - WebFinger: add aliases field (acct: URI + AP actor URL) - outbox: add last link, use count_local_posts for totalItems - idempotency guard added to every inbound activity receive() - actor serializes display_name and configurable actor_type/manually_approves_followers Bump: 0.1.10 → 0.2.0	2026-05-28 23:35:41 +02:00
Gabriel	cb84043ba3	feat: copy generic AP source files from thoughts	2026-05-17 22:30:25 +02:00

6 Commits