Fix missing signature validation

libsession/src/main/java/org/session/libsession/messaging/MessagingModuleConfiguration.kt

@@ -8,8 +8,8 @@ class MessagingModuleConfiguration(
     val context: Context,
     val storage: StorageProtocol,
     val messageDataProvider: MessageDataProvider,
-    val sessionProtocol: SessionProtocol)
-{
+    val sessionProtocol: SessionProtocol
+) {
 
     companion object {
         lateinit var shared: MessagingModuleConfiguration

libsession/src/main/java/org/session/libsession/messaging/open_groups/OpenGroupAPIV2.kt

@@ -241,12 +241,19 @@ object OpenGroupAPIV2 {
             queryParameters += "from_server_id" to lastId.toString()
         }
         val request = Request(verb = GET, room = room, server = server, endpoint = "messages", queryParameters = queryParameters)
-        return send(request).map { jsonList ->
-            @Suppress("UNCHECKED_CAST") val rawMessages = jsonList["messages"] as? List<Map<String, Any>>
+        return send(request).map { json ->
+            @Suppress("UNCHECKED_CAST") val rawMessages = json["messages"] as? List<Map<String, Any>>
                 ?: throw Error.ParsingFailed
+            parseMessages(room, server, rawMessages)
+        }
+    }
+
+    private fun parseMessages(room: String, server: String, rawMessages: List<Map<*, *>>): List<OpenGroupMessageV2> {
+        val storage = MessagingModuleConfiguration.shared.storage
         val lastMessageServerID = storage.getLastMessageServerId(room, server) ?: 0
         var currentLastMessageServerID = lastMessageServerID
         val messages = rawMessages.mapNotNull { json ->
+            json as Map<String, Any>
             try {
                 val message = OpenGroupMessageV2.fromJSON(json) ?: return@mapNotNull null
                 if (message.serverID == null || message.sender.isNullOrEmpty()) return@mapNotNull null
@@ -256,7 +263,7 @@ object OpenGroupAPIV2 {
                 val publicKey = Hex.fromStringCondensed(sender.removing05PrefixIfNeeded())
                 val isValid = curve.verifySignature(publicKey, data, signature)
                 if (!isValid) {
-                        Log.d("Loki", "Ignoring message with invalid signature")
+                    Log.d("Loki", "Ignoring message with invalid signature.")
                     return@mapNotNull null
                 }
                 if (message.serverID > lastMessageServerID) {
@@ -268,8 +275,7 @@ object OpenGroupAPIV2 {
             }
         }
         storage.setLastMessageServerId(room, server, currentLastMessageServerID)
-            messages
-        }
+        return messages
     }
     // endregion
 
@@ -387,16 +393,7 @@ object OpenGroupAPIV2 {
                 }
                 // Messages
                 val rawMessages = json["messages"] as? List<Map<String, Any>> ?: return@mapNotNull null
-                val lastMessageServerID = storage.getLastMessageServerId(roomID, server) ?: 0
-                var currentLastMessageServerID = lastMessageServerID
-                val messages = rawMessages.mapNotNull { rawMessage ->
-                    val message = OpenGroupMessageV2.fromJSON(rawMessage)?.apply {
-                        currentLastMessageServerID = maxOf(currentLastMessageServerID,this.serverID ?: 0)
-                    }
-                    // TODO: We need to check the signature here...
-                    message
-                }
-                storage.setLastMessageServerId(roomID, server, currentLastMessageServerID)
+                val messages = parseMessages(roomID, server, rawMessages)
                 roomID to CompactPollResult(
                     messages = messages,
                     deletions = deletedServerIDs.map { it.deletedMessageId },