Updaet InboxPipelines, improve handling of missing signature validation headers

Author: dansup

app/Jobs/InboxPipeline/DeleteWorker.php

@@ -126,6 +126,11 @@ protected function verifySignature($headers, $payload)
 			return false;
 		}
 		$signatureData = HttpSignature::parseSignatureHeader($signature);
+
+		if(!isset($signatureData['keyId'], $signatureData['signature'], $signatureData['headers']) || isset($signatureData['error'])) {
+			return false;
+		}
+
 		$keyId = Helpers::validateUrl($signatureData['keyId']);
 		$id = Helpers::validateUrl($bodyDecoded['id']);
 		$keyDomain = parse_url($keyId, PHP_URL_HOST);
@@ -186,6 +191,11 @@ protected function blindKeyRotation($headers, $payload)
 			return;
 		}
 		$signatureData = HttpSignature::parseSignatureHeader($signature);
+
+		if(!isset($signatureData['keyId'], $signatureData['signature'], $signatureData['headers']) || isset($signatureData['error'])) {
+			return;
+		}
+
 		$keyId = Helpers::validateUrl($signatureData['keyId']);
 		$actor = Profile::whereKeyId($keyId)->whereNotNull('remote_url')->first();
 		if(!$actor) {