Browse Source

Merge pull request #28 from matrix-org/kegan/jira-starter-links

Implement JIRA Starter Links
pull/29/head
Kegsay 9 years ago
committed by GitHub
parent
commit
326072519c
  1. 20
      README.md
  2. 3
      src/github.com/matrix-org/go-neb/realms/jira/jira.go
  3. 10
      src/github.com/matrix-org/go-neb/services/jira/jira.go
  4. 3
      src/github.com/matrix-org/go-neb/services/jira/webhook/webhook.go

20
README.md

@ -73,10 +73,17 @@ check that the server is still running.
{} {}
Some `AuthRealms` support "Starter Links". These are HTTP URLs which knowledgeable clients should use to *start* the auth process. They are commonly returned as metadata to `!commands`.
These links require the client to prove that they own a given user ID by appending a token
to the Starter Link. This token will be used to verify the client's identity by making an
Open ID request to the user's Homeserver via federation.
## Starting a Github Service ## Starting a Github Service
### Register a Github realm ### Register a Github realm
This API allows for an optional `StarterLink` value.
``` ```
curl -X POST localhost:4050/admin/configureAuthRealm --data-binary '{ curl -X POST localhost:4050/admin/configureAuthRealm --data-binary '{
"ID": "mygithubrealm", "ID": "mygithubrealm",
@ -84,6 +91,7 @@ curl -X POST localhost:4050/admin/configureAuthRealm --data-binary '{
"Config": { "Config": {
"ClientSecret": "YOUR_CLIENT_SECRET", "ClientSecret": "YOUR_CLIENT_SECRET",
"ClientID": "YOUR_CLIENT_ID", "ClientID": "YOUR_CLIENT_ID",
"StarterLink": "https://example.com/requestGithubOAuthToken",
"RedirectBaseURI": "https://public.path.to.neb" "RedirectBaseURI": "https://public.path.to.neb"
} }
}' }'
@ -97,6 +105,7 @@ Returns:
"NewConfig":{ "NewConfig":{
"ClientSecret":"YOUR_CLIENT_SECRET", "ClientSecret":"YOUR_CLIENT_SECRET",
"ClientID":"YOUR_CLIENT_ID", "ClientID":"YOUR_CLIENT_ID",
"StarterLink": "https://example.com/requestGithubOAuthToken",
"RedirectBaseURI":"https://public.path.to.neb" "RedirectBaseURI":"https://public.path.to.neb"
} }
} }
@ -157,7 +166,7 @@ openssl genrsa -out privkey.pem 2048
cat privkey.pem cat privkey.pem
``` ```
Create the realm:
This API allows for an optional `StarterLink` value. Create the realm:
``` ```
curl -X POST localhost:4050/admin/configureAuthRealm --data-binary '{ curl -X POST localhost:4050/admin/configureAuthRealm --data-binary '{
@ -165,6 +174,7 @@ curl -X POST localhost:4050/admin/configureAuthRealm --data-binary '{
"Type": "jira", "Type": "jira",
"Config": { "Config": {
"JIRAEndpoint": "matrix.org/jira/", "JIRAEndpoint": "matrix.org/jira/",
"StarterLink": "https://example.com/requestJIRAOAuthToken",
"ConsumerName": "goneb", "ConsumerName": "goneb",
"ConsumerKey": "goneb", "ConsumerKey": "goneb",
"ConsumerSecret": "random_long_string", "ConsumerSecret": "random_long_string",
@ -173,7 +183,14 @@ curl -X POST localhost:4050/admin/configureAuthRealm --data-binary '{
}' }'
``` ```
The following keys will be modified/added:
- `JIRAEndpoint` in canonicalised form.
- `Server` and `Version` keys which are purely informational for the caller.
- `PublicKeyPEM` which the caller needs a human to insert into the JIRA Application Links web form.
Returns: Returns:
```json ```json
{ {
"ID": "jirarealm", "ID": "jirarealm",
@ -181,6 +198,7 @@ Returns:
"OldConfig": null, "OldConfig": null,
"NewConfig": { "NewConfig": {
"JIRAEndpoint": "https://matrix.org/jira/", "JIRAEndpoint": "https://matrix.org/jira/",
"StarterLink": "https://example.com/requestJIRAOAuthToken",
"Server": "Matrix.org", "Server": "Matrix.org",
"Version": "6.3.5a", "Version": "6.3.5a",
"ConsumerName": "goneb", "ConsumerName": "goneb",

3
src/github.com/matrix-org/go-neb/realms/jira/jira.go

@ -33,6 +33,7 @@ type JIRARealm struct {
PublicKeyPEM string // clobbered based on PrivateKeyPEM PublicKeyPEM string // clobbered based on PrivateKeyPEM
PrivateKeyPEM string PrivateKeyPEM string
HasWebhook bool // clobbered based on NEB HasWebhook bool // clobbered based on NEB
StarterLink string
} }
// JIRASession represents a single authentication session between a user and a JIRA endpoint. // JIRASession represents a single authentication session between a user and a JIRA endpoint.
@ -256,9 +257,7 @@ func (r *JIRARealm) JIRAClient(userID string, allowUnauth bool) (*jira.Client, e
// make an unauthenticated client // make an unauthenticated client
return jira.NewClient(nil, r.JIRAEndpoint) return jira.NewClient(nil, r.JIRAEndpoint)
} }
return nil, errors.New("No authenticated session found for " + userID)
} }
// some other error
return nil, err return nil, err
} }

10
src/github.com/matrix-org/go-neb/services/jira/jira.go

@ -117,6 +117,15 @@ func (s *jiraService) cmdJiraCreate(roomID, userID string, args []string) (inter
} }
cli, err := r.JIRAClient(userID, false) cli, err := r.JIRAClient(userID, false)
if err != nil { if err != nil {
if err == sql.ErrNoRows { // no client found
return matrix.StarterLinkMessage{
Body: fmt.Sprintf(
"You need to OAuth with JIRA on %s before you can create issues.",
r.JIRAEndpoint,
),
Link: r.StarterLink,
}, nil
}
return nil, err return nil, err
} }
i, res, err := cli.Issue.Create(&iss) i, res, err := cli.Issue.Create(&iss)
@ -286,7 +295,6 @@ func (s *jiraService) projectToRealm(userID, pkey string) (*realms.JIRARealm, er
// - If there is a matching project with that key, return that realm. // - If there is a matching project with that key, return that realm.
// We search installations which the user has already OAuthed with first as most likely // We search installations which the user has already OAuthed with first as most likely
// the project key will be on a JIRA they have access to. // the project key will be on a JIRA they have access to.
// TODO: Return whether they have authed or not so they know if they need to make a starter link
logger := log.WithFields(log.Fields{ logger := log.WithFields(log.Fields{
"user_id": userID, "user_id": userID,
"project": pkey, "project": pkey,

3
src/github.com/matrix-org/go-neb/services/jira/webhook/webhook.go

@ -119,6 +119,9 @@ func OnReceiveRequest(req *http.Request) (string, *Event, *errors.HTTPError) {
func createWebhook(jrealm *realms.JIRARealm, webhookEndpointURL, userID string) error { func createWebhook(jrealm *realms.JIRARealm, webhookEndpointURL, userID string) error {
cli, err := jrealm.JIRAClient(userID, false) cli, err := jrealm.JIRAClient(userID, false)
if err != nil {
return err
}
req, err := cli.NewRequest("POST", "rest/webhooks/1.0/webhook", jiraWebhook{ req, err := cli.NewRequest("POST", "rest/webhooks/1.0/webhook", jiraWebhook{
Name: "Go-NEB", Name: "Go-NEB",

Loading…
Cancel
Save