Mirror
/
go-neb
mirror of https://github.com/matrix-org/go-neb.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
573 Commits
120 Branches
3 Tags
12 MiB
Tree: 1e297c50ad
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1e297c50ad'
${ noResults }
go-neb/services/github/webhook/webhook.go

286 lines
9.0 KiB
Raw Normal View History

Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Fix #105 : Mention which label was added/removed
8 years ago
Use gomatrix
8 years ago
Use github.com/matrix-org/util
7 years ago
Re-format project as a Go module (#310) * Define project as a Go module and update dependency versions Signed-off-by: Nikos Filippakis <me@nfil.dev> * Update docs, configs and dockerfile to use latest Go version Signed-off-by: Nikos Filippakis <me@nfil.dev> * Add postgres database driver Signed-off-by: Nikos Filippakis <me@nfil.dev>
4 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Tweak github webhook to parse but not send webhook notifications The client and which room IDs to send to are known by Service so let that do it instead.
8 years ago
Update go-neb to use util.JSONResponse
7 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Update go-neb to use util.JSONResponse
7 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Update go-neb to use util.JSONResponse
7 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Update go-neb to use util.JSONResponse
7 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Add Service.PostRegister(oldService) and implement GH webhook creation - `PostRegister` is called after the new Service is stored in the database. It exists so Services can do post-creation actions like hit remote services using information from old services, if any. - The `GithubService` uses the `PostRegister()` function to remove old webhooks.
8 years ago
Explain what the ping event does
8 years ago
Update go-neb to use util.JSONResponse
7 years ago
Add Service.PostRegister(oldService) and implement GH webhook creation - `PostRegister` is called after the new Service is stored in the database. It exists so Services can do post-creation actions like hit remote services using information from old services, if any. - The `GithubService` uses the `PostRegister()` function to remove old webhooks.
8 years ago
Break apart 'issues' and 'pull_request' events Now broken down into: - `labels` : Labelling/Unlabelling issues/PRs - `milestones` : Milestoning/Demilestoning issues/PRs - `assign` : Assigning/Unassigning issues/PRs This is broken down in the guts of parsing the webhook event such that it appears to be a unique `X-GitHub-Event` type.
8 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Update go-neb to use util.JSONResponse
7 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Use gomatrix
8 years ago
Break apart 'issues' and 'pull_request' events Now broken down into: - `labels` : Labelling/Unlabelling issues/PRs - `milestones` : Milestoning/Demilestoning issues/PRs - `assign` : Assigning/Unassigning issues/PRs This is broken down in the guts of parsing the webhook event such that it appears to be a unique `X-GitHub-Event` type.
8 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Break apart 'issues' and 'pull_request' events Now broken down into: - `labels` : Labelling/Unlabelling issues/PRs - `milestones` : Milestoning/Demilestoning issues/PRs - `assign` : Assigning/Unassigning issues/PRs This is broken down in the guts of parsing the webhook event such that it appears to be a unique `X-GitHub-Event` type.
8 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Break apart 'issues' and 'pull_request' events Now broken down into: - `labels` : Labelling/Unlabelling issues/PRs - `milestones` : Milestoning/Demilestoning issues/PRs - `assign` : Assigning/Unassigning issues/PRs This is broken down in the guts of parsing the webhook event such that it appears to be a unique `X-GitHub-Event` type.
8 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Break apart 'issues' and 'pull_request' events Now broken down into: - `labels` : Labelling/Unlabelling issues/PRs - `milestones` : Milestoning/Demilestoning issues/PRs - `assign` : Assigning/Unassigning issues/PRs This is broken down in the guts of parsing the webhook event such that it appears to be a unique `X-GitHub-Event` type.
8 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Break apart 'issues' and 'pull_request' events Now broken down into: - `labels` : Labelling/Unlabelling issues/PRs - `milestones` : Milestoning/Demilestoning issues/PRs - `assign` : Assigning/Unassigning issues/PRs This is broken down in the guts of parsing the webhook event such that it appears to be a unique `X-GitHub-Event` type.
8 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Break apart 'issues' and 'pull_request' events Now broken down into: - `labels` : Labelling/Unlabelling issues/PRs - `milestones` : Milestoning/Demilestoning issues/PRs - `assign` : Assigning/Unassigning issues/PRs This is broken down in the guts of parsing the webhook event such that it appears to be a unique `X-GitHub-Event` type.
8 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Break apart 'issues' and 'pull_request' events Now broken down into: - `labels` : Labelling/Unlabelling issues/PRs - `milestones` : Milestoning/Demilestoning issues/PRs - `assign` : Assigning/Unassigning issues/PRs This is broken down in the guts of parsing the webhook event such that it appears to be a unique `X-GitHub-Event` type.
8 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Break apart 'issues' and 'pull_request' events Now broken down into: - `labels` : Labelling/Unlabelling issues/PRs - `milestones` : Milestoning/Demilestoning issues/PRs - `assign` : Assigning/Unassigning issues/PRs This is broken down in the guts of parsing the webhook event such that it appears to be a unique `X-GitHub-Event` type.
8 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Break apart 'issues' and 'pull_request' events Now broken down into: - `labels` : Labelling/Unlabelling issues/PRs - `milestones` : Milestoning/Demilestoning issues/PRs - `assign` : Assigning/Unassigning issues/PRs This is broken down in the guts of parsing the webhook event such that it appears to be a unique `X-GitHub-Event` type.
8 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Break apart 'issues' and 'pull_request' events Now broken down into: - `labels` : Labelling/Unlabelling issues/PRs - `milestones` : Milestoning/Demilestoning issues/PRs - `assign` : Assigning/Unassigning issues/PRs This is broken down in the guts of parsing the webhook event such that it appears to be a unique `X-GitHub-Event` type.
8 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Break apart 'issues' and 'pull_request' events Now broken down into: - `labels` : Labelling/Unlabelling issues/PRs - `milestones` : Milestoning/Demilestoning issues/PRs - `assign` : Assigning/Unassigning issues/PRs This is broken down in the guts of parsing the webhook event such that it appears to be a unique `X-GitHub-Event` type.
8 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Break apart 'issues' and 'pull_request' events Now broken down into: - `labels` : Labelling/Unlabelling issues/PRs - `milestones` : Milestoning/Demilestoning issues/PRs - `assign` : Assigning/Unassigning issues/PRs This is broken down in the guts of parsing the webhook event such that it appears to be a unique `X-GitHub-Event` type.
8 years ago
s/assign/assignments/
8 years ago
Break apart 'issues' and 'pull_request' events Now broken down into: - `labels` : Labelling/Unlabelling issues/PRs - `milestones` : Milestoning/Demilestoning issues/PRs - `assign` : Assigning/Unassigning issues/PRs This is broken down in the guts of parsing the webhook event such that it appears to be a unique `X-GitHub-Event` type.
8 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Break apart 'issues' and 'pull_request' events Now broken down into: - `labels` : Labelling/Unlabelling issues/PRs - `milestones` : Milestoning/Demilestoning issues/PRs - `assign` : Assigning/Unassigning issues/PRs This is broken down in the guts of parsing the webhook event such that it appears to be a unique `X-GitHub-Event` type.
8 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Fix #105 : Mention which label was added/removed
8 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Fix #105 : Mention which label was added/removed
8 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
Fix invalid HTML on bot message when a branch is deleted
6 years ago
Parse github webhook requests into suitable HTML messages Verifies requests using an optional secret token. This commit doesn't implement sending of these messages.
8 years ago
  1. package webhook
  3. import (
  4. "crypto/hmac"
  5. "crypto/sha1"
  6. "encoding/hex"
  7. "encoding/json"
  8. "fmt"
  9. "html"
  10. "io/ioutil"
  11. "net/http"
  12. "strings"
  14. "github.com/google/go-github/github"
  15. "github.com/matrix-org/gomatrix"
  16. "github.com/matrix-org/util"
  17. log "github.com/sirupsen/logrus"
  18. )
  20. // OnReceiveRequest processes incoming github webhook requests and returns a
  21. // matrix message to send, along with parsed repo information.
  22. // The secretToken, if supplied, will be used to verify the request is from
  23. // Github. If it isn't, an error is returned.
  24. func OnReceiveRequest(r *http.Request, secretToken string) (string, *github.Repository, *gomatrix.HTMLMessage, *util.JSONResponse) {
  25. // Verify the HMAC signature if NEB was configured with a secret token
  26. eventType := r.Header.Get("X-GitHub-Event")
  27. signatureSHA1 := r.Header.Get("X-Hub-Signature")
  28. content, err := ioutil.ReadAll(r.Body)
  29. if err != nil {
  30. log.WithError(err).Print("Failed to read Github webhook body")
  31. resErr := util.MessageResponse(400, "Failed to parse body")
  32. return "", nil, nil, &resErr
  33. }
  34. // Verify request if a secret token has been supplied.
  35. if secretToken != "" {
  36. sigHex := strings.Split(signatureSHA1, "=")[1]
  37. var sigBytes []byte
  38. sigBytes, err = hex.DecodeString(sigHex)
  39. if err != nil {
  40. log.WithError(err).WithField("X-Hub-Signature", sigHex).Print(
  41. "Failed to decode signature as hex.")
  42. resErr := util.MessageResponse(400, "Failed to decode signature")
  43. return "", nil, nil, &resErr
  44. }
  46. if !checkMAC([]byte(content), sigBytes, []byte(secretToken)) {
  47. log.WithFields(log.Fields{
  48. "X-Hub-Signature": signatureSHA1,
  49. }).Print("Received Github event which failed MAC check.")
  50. resErr := util.MessageResponse(403, "Bad signature")
  51. return "", nil, nil, &resErr
  52. }
  53. }
  55. log.WithFields(log.Fields{
  56. "event_type": eventType,
  57. "signature": signatureSHA1,
  58. }).Print("Received Github event")
  60. if eventType == "ping" {
  61. // Github will send a "ping" event when the webhook is first created. We need
  62. // to return a 200 in order for the webhook to be marked as "up" (this doesn't
  63. // affect delivery, just the tick/cross status flag).
  64. res := util.MessageResponse(200, "pong")
  65. return "", nil, nil, &res
  66. }
  68. htmlStr, repo, refinedType, err := parseGithubEvent(eventType, content)
  69. if err != nil {
  70. log.WithError(err).Print("Failed to parse github event")
  71. resErr := util.MessageResponse(500, "Failed to parse github event")
  72. return "", nil, nil, &resErr
  73. }
  75. msg := gomatrix.GetHTMLMessage("m.notice", htmlStr)
  77. return refinedType, repo, &msg, nil
  78. }
  80. // checkMAC reports whether messageMAC is a valid HMAC tag for message.
  81. func checkMAC(message, messageMAC, key []byte) bool {
  82. mac := hmac.New(sha1.New, key)
  83. mac.Write(message)
  84. expectedMAC := mac.Sum(nil)
  85. return hmac.Equal(messageMAC, expectedMAC)
  86. }
  88. // parseGithubEvent parses a github event type and JSON data and returns an explanatory
  89. // HTML string, the github repository and the refined event type, or an error.
  90. func parseGithubEvent(eventType string, data []byte) (string, *github.Repository, string, error) {
  91. if eventType == "pull_request" {
  92. var ev github.PullRequestEvent
  93. if err := json.Unmarshal(data, &ev); err != nil {
  94. return "", nil, eventType, err
  95. }
  96. refinedEventType := refineEventType(eventType, ev.Action)
  97. return pullRequestHTMLMessage(ev), ev.Repo, refinedEventType, nil
  98. } else if eventType == "issues" {
  99. var ev github.IssuesEvent
  100. if err := json.Unmarshal(data, &ev); err != nil {
  101. return "", nil, eventType, err
  102. }
  103. refinedEventType := refineEventType(eventType, ev.Action)
  104. return issueHTMLMessage(ev), ev.Repo, refinedEventType, nil
  105. } else if eventType == "push" {
  106. var ev github.PushEvent
  107. if err := json.Unmarshal(data, &ev); err != nil {
  108. return "", nil, eventType, err
  109. }
  111. // The 'push' event repository format is subtly different from normal, so munge the bits we need.
  112. fullName := *ev.Repo.Owner.Name + "/" + *ev.Repo.Name
  113. repo := github.Repository{
  114. Owner: &github.User{
  115. Login: ev.Repo.Owner.Name,
  116. },
  117. Name: ev.Repo.Name,
  118. FullName: &fullName,
  119. }
  120. return pushHTMLMessage(ev), &repo, eventType, nil
  121. } else if eventType == "issue_comment" {
  122. var ev github.IssueCommentEvent
  123. if err := json.Unmarshal(data, &ev); err != nil {
  124. return "", nil, eventType, err
  125. }
  126. return issueCommentHTMLMessage(ev), ev.Repo, eventType, nil
  127. } else if eventType == "pull_request_review_comment" {
  128. var ev github.PullRequestReviewCommentEvent
  129. if err := json.Unmarshal(data, &ev); err != nil {
  130. return "", nil, eventType, err
  131. }
  132. return prReviewCommentHTMLMessage(ev), ev.Repo, eventType, nil
  133. }
  134. return "", nil, eventType, fmt.Errorf("Unrecognized event type")
  135. }
  137. func refineEventType(eventType string, action *string) string {
  138. if action == nil {
  139. return eventType
  140. }
  141. a := *action
  142. if a == "assigned" || a == "unassigned" {
  143. return "assignments"
  144. } else if a == "milestoned" || a == "demilestoned" {
  145. return "milestones"
  146. } else if a == "labeled" || a == "unlabeled" {
  147. return "labels"
  148. }
  149. return eventType
  150. }
  152. func pullRequestHTMLMessage(p github.PullRequestEvent) string {
  153. var actionTarget string
  154. if p.PullRequest.Assignee != nil && p.PullRequest.Assignee.Login != nil {
  155. actionTarget = fmt.Sprintf(" to %s", *p.PullRequest.Assignee.Login)
  156. }
  157. return fmt.Sprintf(
  158. "[<u>%s</u>] %s %s <b>pull request #%d</b>: %s [%s]%s - %s",
  159. html.EscapeString(*p.Repo.FullName),
  160. html.EscapeString(*p.Sender.Login),
  161. html.EscapeString(*p.Action),
  162. *p.Number,
  163. html.EscapeString(*p.PullRequest.Title),
  164. html.EscapeString(*p.PullRequest.State),
  165. html.EscapeString(actionTarget),
  166. html.EscapeString(*p.PullRequest.HTMLURL),
  167. )
  168. }
  170. func issueHTMLMessage(p github.IssuesEvent) string {
  171. var actionTarget string
  172. if p.Issue.Assignee != nil && p.Issue.Assignee.Login != nil {
  173. actionTarget = fmt.Sprintf(" to %s", *p.Issue.Assignee.Login)
  174. }
  175. action := html.EscapeString(*p.Action)
  176. if p.Label != nil && (*p.Action == "labeled" || *p.Action == "unlabeled") {
  177. action = *p.Action + " [" + html.EscapeString(*p.Label.Name) + "] to"
  178. }
  179. return fmt.Sprintf(
  180. "[<u>%s</u>] %s %s <b>issue #%d</b>: %s [%s]%s - %s",
  181. html.EscapeString(*p.Repo.FullName),
  182. html.EscapeString(*p.Sender.Login),
  183. action,
  184. *p.Issue.Number,
  185. html.EscapeString(*p.Issue.Title),
  186. html.EscapeString(*p.Issue.State),
  187. html.EscapeString(actionTarget),
  188. html.EscapeString(*p.Issue.HTMLURL),
  189. )
  190. }
  192. func issueCommentHTMLMessage(p github.IssueCommentEvent) string {
  193. var kind string
  194. if p.Issue.PullRequestLinks == nil {
  195. kind = "issue"
  196. } else {
  197. kind = "pull request"
  198. }
  200. return fmt.Sprintf(
  201. "[<u>%s</u>] %s commented on %s's <b>%s #%d</b>: %s - %s",
  202. html.EscapeString(*p.Repo.FullName),
  203. html.EscapeString(*p.Comment.User.Login),
  204. html.EscapeString(*p.Issue.User.Login),
  205. kind,
  206. *p.Issue.Number,
  207. html.EscapeString(*p.Issue.Title),
  208. html.EscapeString(*p.Issue.HTMLURL),
  209. )
  210. }
  212. func prReviewCommentHTMLMessage(p github.PullRequestReviewCommentEvent) string {
  213. assignee := "None"
  214. if p.PullRequest.Assignee != nil {
  215. assignee = html.EscapeString(*p.PullRequest.Assignee.Login)
  216. }
  217. return fmt.Sprintf(
  218. "[<u>%s</u>] %s made a line comment on %s's <b>pull request #%d</b> (assignee: %s): %s - %s",
  219. html.EscapeString(*p.Repo.FullName),
  220. html.EscapeString(*p.Sender.Login),
  221. html.EscapeString(*p.PullRequest.User.Login),
  222. *p.PullRequest.Number,
  223. assignee,
  224. html.EscapeString(*p.PullRequest.Title),
  225. html.EscapeString(*p.Comment.HTMLURL),
  226. )
  227. }
  229. func pushHTMLMessage(p github.PushEvent) string {
  230. // /refs/heads/alice/branch-name => alice/branch-name
  231. branch := strings.Replace(*p.Ref, "refs/heads/", "", -1)
  233. // this branch was deleted, no HeadCommit object and deleted=true
  234. if p.HeadCommit == nil && p.Deleted != nil && *p.Deleted {
  235. return fmt.Sprintf(
  236. `[<u>%s</u>] %s <b><font color="red">deleted</font> %s</b>`,
  237. html.EscapeString(*p.Repo.FullName),
  238. html.EscapeString(*p.Pusher.Name),
  239. html.EscapeString(branch),
  240. )
  241. }
  243. if p.Commits != nil && len(p.Commits) > 1 {
  244. // multi-commit message
  245. // [<repo>] <username> pushed <num> commits to <branch>: <git.io link>
  246. // <up to 3 commits>
  247. var cList []string
  248. for _, c := range p.Commits {
  249. cList = append(cList, fmt.Sprintf(
  250. `%s: %s`,
  251. html.EscapeString(nameForAuthor(c.Author)),
  252. html.EscapeString(*c.Message),
  253. ))
  254. }
  255. return fmt.Sprintf(
  256. `[<u>%s</u>] %s pushed %d commits to <b>%s</b>: %s<br>%s`,
  257. html.EscapeString(*p.Repo.FullName),
  258. html.EscapeString(nameForAuthor(p.HeadCommit.Committer)),
  259. len(p.Commits),
  260. html.EscapeString(branch),
  261. html.EscapeString(*p.HeadCommit.URL),
  262. strings.Join(cList, "<br>"),
  263. )
  264. }
  266. // single commit message
  267. // [<repo>] <username> pushed to <branch>: <msg> - <git.io link>
  268. return fmt.Sprintf(
  269. `[<u>%s</u>] %s pushed to <b>%s</b>: %s - %s`,
  270. html.EscapeString(*p.Repo.FullName),
  271. html.EscapeString(nameForAuthor(p.HeadCommit.Committer)),
  272. html.EscapeString(branch),
  273. html.EscapeString(*p.HeadCommit.Message),
  274. html.EscapeString(*p.HeadCommit.URL),
  275. )
  276. }
  278. func nameForAuthor(a *github.CommitAuthor) string {
  279. if a == nil {
  280. return ""
  281. }
  282. if a.Login != nil { // prefer to use their GH username than the name they commited as
  283. return *a.Login
  284. }
  285. return *a.Name
  286. }