[feature] Discover webfinger through host-meta

[daenney]

Description

If this is a code change, please include a summary of what you've coded, and link to the issue(s) it closes/implements.

If this is a documentation change, please briefly describe what you've changed and why.

I'm opening this as a draft because:

• The implementation makes me sad, please suggest improvements
• I want to figure out how to properly test the fallback and ideally verify what gets set in the cache
• Arguably, I'm inclined to not want this code at all because the host-meta redirect goes against current best practices. But it's hard for end users to figure out why search isn't working and if/when they do manage to get another instance admin to potentially update their configuration. It's the fediverse so in this case I think it's worthwhile to try to be MAX_COMPATIBLE

---

This implements a fallback for discovering the webfinger endpoint in case the /.well-known/webfinger endpoint wasn't properly redirected. Some instances do this because the recommendation used to be to use host-meta for the webfinger redirect in the before times.

Closes #1558.

Checklist

Please put an x inside each checkbox to indicate that you've read and followed it: [ ] -> [x]

If this is a documentation change, only the first checkbox must be filled (you can delete the others if you want).

• I/we have read the GoToSocial contribution guidelines.
• I/we have discussed the proposed changes already, either in an issue on the repository, or in the Matrix chat.
• I/we have performed a self-review of added code.
• I/we have written code that is legible and maintainable by others.
• I/we have commented the added code, particularly in hard-to-understand areas.
• I/we have made any necessary changes to documentation.
• I/we have added tests that cover new code.
• I/we have run tests and they pass locally with the changes.
• I/we have run go fmt ./... and golangci-lint run.

[daenney]

I've added a test by redirecting to a different webfinger endpoint. Not sure if/how we want to test for the cached values?

[tsmethurst]

Looking good so far :) I'm wondering, do we need/want to cache cases where the webfinger URL didn't require any host-meta looking up, and just the initial constructed webfinger uri worked OK? I was thinking we could only cache cases where the host-meta lookup revealed a different uri from what we expected, if you see what I mean.

[daenney]

Looking good so far :) I'm wondering, do we need/want to cache cases where the webfinger URL didn't require any host-meta looking up, and just the initial constructed webfinger uri worked OK? I was thinking we could only cache cases where the host-meta lookup revealed a different uri from what we expected, if you see what I mean.

I've updated that now. Now only webfingerFromHostMeta can add new entry in the cache, and only if we got a cached entry + success do we renew the TTL. That should avoid us caching the default URL if that one worked. We only set the returned URL by webfingerFromHostMeta in cache after the host == url check in Finger.

[daenney]

This one's a bit long but it tests that things happen as currently intended:

• If we get a webfinger redirect, cache it
• Future successful requests extend the TTL
• Future failed requests don't touch the TTL so the entry will eventually expire

[daenney]

I cribbed this from other test suites. I don't know if I need all this. But it works 😅

[daenney]

Idk if this should be here/how to better do this. But I need a transport.Transport to call Finger

[NyaaaWhatsUpDoc]

Looks good! A few comments but then should be ready to go :)