zulip/zerver/webhooks/beanstalk/view.py

# Webhooks for external integrations.
import base64
import re
from functools import wraps
from typing import Any, Dict, List, Optional, Tuple, cast

from django.http import HttpRequest, HttpResponse

from zerver.decorator import authenticated_rest_api_view
from zerver.lib.request import REQ, has_request_variables
from zerver.lib.response import json_success
from zerver.lib.types import ViewFuncT
from zerver.lib.validator import check_dict
from zerver.lib.webhooks.common import check_send_webhook_message
from zerver.lib.webhooks.git import TOPIC_WITH_BRANCH_TEMPLATE, get_push_commits_event_message
from zerver.models import UserProfile


def build_message_from_gitlog(
    user_profile: UserProfile,
    name: str,
    ref: str,
    commits: List[Dict[str, str]],
    before: str,
    after: str,
    url: str,
    pusher: str,
    forced: Optional[str] = None,
    created: Optional[str] = None,
    deleted: bool = False,
) -> Tuple[str, str]:
    short_ref = re.sub(r'^refs/heads/', '', ref)
    subject = TOPIC_WITH_BRANCH_TEMPLATE.format(repo=name, branch=short_ref)

    commits = _transform_commits_list_to_common_format(commits)
    content = get_push_commits_event_message(pusher, url, short_ref, commits, deleted=deleted)

    return subject, content


def _transform_commits_list_to_common_format(commits: List[Dict[str, Any]]) -> List[Dict[str, str]]:
    new_commits_list = []
    for commit in commits:
        new_commits_list.append(
            {
                'name': commit['author'].get('username'),
                'sha': commit.get('id'),
                'url': commit.get('url'),
                'message': commit.get('message'),
            }
        )
    return new_commits_list


# Beanstalk's web hook UI rejects URL with a @ in the username section
# So we ask the user to replace them with %40
# We manually fix the username here before passing it along to @authenticated_rest_api_view
def beanstalk_decoder(view_func: ViewFuncT) -> ViewFuncT:
    @wraps(view_func)
    def _wrapped_view_func(request: HttpRequest, *args: object, **kwargs: object) -> HttpResponse:
        auth_type: str
        encoded_value: str
        auth_type, encoded_value = request.META['HTTP_AUTHORIZATION'].split()
        if auth_type.lower() == "basic":
            email, api_key = base64.b64decode(encoded_value).decode('utf-8').split(":")
            email = email.replace('%40', '@')
            credentials = f"{email}:{api_key}"
            encoded_credentials: str = base64.b64encode(credentials.encode('utf-8')).decode('utf8')
            request.META['HTTP_AUTHORIZATION'] = "Basic " + encoded_credentials

        return view_func(request, *args, **kwargs)

    return cast(ViewFuncT, _wrapped_view_func)  # https://github.com/python/mypy/issues/1927


@beanstalk_decoder
@authenticated_rest_api_view(webhook_client_name="Beanstalk")
@has_request_variables
def api_beanstalk_webhook(
    request: HttpRequest,
    user_profile: UserProfile,
    payload: Dict[str, Any] = REQ(validator=check_dict([])),
    branches: Optional[str] = REQ(default=None),
) -> HttpResponse:
    # Beanstalk supports both SVN and Git repositories
    # We distinguish between the two by checking for a
    # 'uri' key that is only present for Git repos
    git_repo = 'uri' in payload
    if git_repo:
        if branches is not None and branches.find(payload['branch']) == -1:
            return json_success()
        # To get a linkable url,
        for commit in payload['commits']:
            commit['author'] = {'username': commit['author']['name']}

        subject, content = build_message_from_gitlog(
            user_profile,
            payload['repository']['name'],
            payload['ref'],
            payload['commits'],
            payload['before'],
            payload['after'],
            payload['repository']['url'],
            payload['pusher_name'],
        )
    else:
        author = payload.get('author_full_name')
        url = payload.get('changeset_url')
        revision = payload.get('revision')
        (short_commit_msg, _, _) = payload['message'].partition("\n")

        subject = f"svn r{revision}"
        content = f"{author} pushed [revision {revision}]({url}):\n\n> {short_commit_msg}"

    check_send_webhook_message(request, user_profile, subject, content)
    return json_success()
Moved beanstalk webhook into its own file beanstalk.py 2016-03-13 12:38:57 +01:00			`# Webhooks for external integrations.`
python: Sort imports in webhooks. 2017-11-16 00:43:10 +01:00			`import base64`
webhooks: Remove the legacy GitHub integration. The github-services model for how GitHub would send requests to this legacy integration is no longer available since earlier in 2019. Removing this integration also allows us to finally remove authenticated_api_view, the legacy authentication model from 2013 that had been used for this integration (and other features long since upgraded). A few functions that were used by the Beanstalk webhook are moved into that webhook's implementation directly. 2019-04-26 01:16:38 +02:00			`import re`
python: Sort webhooks imports with isort. 2020-01-14 22:06:24 +01:00			`from functools import wraps`
decorator: Replace type: ignore with cast, avoid Any. Signed-off-by: Anders Kaseorg <anders@zulip.com> 2020-06-24 02:10:50 +02:00			`from typing import Any, Dict, List, Optional, Tuple, cast`
python: Sort imports in webhooks. 2017-11-16 00:43:10 +01:00
Annotate zerver/views/webhooks/beanstalk.py. 2016-06-05 19:29:21 +02:00			`from django.http import HttpRequest, HttpResponse`
python: Sort imports in webhooks. 2017-11-16 00:43:10 +01:00
webhooks: Import REQ, has_request_variables from zerver.lib.request. We now import REQ and has_request_variables from zerver.lib.request, which is where these methods are defined. Fixes #7195. 2017-10-31 04:25:48 +01:00			`from zerver.decorator import authenticated_rest_api_view`
			`from zerver.lib.request import REQ, has_request_variables`
python: Sort imports in webhooks. 2017-11-16 00:43:10 +01:00			`from zerver.lib.response import json_success`
python: Sort webhooks imports with isort. 2020-01-14 22:06:24 +01:00			`from zerver.lib.types import ViewFuncT`
			`from zerver.lib.validator import check_dict`
webhooks: Migrate 14 webhooks to use check_send_webhook_message. These are the straightforward ones. Note that there is a line in zerver.lib.test_classes.build_webhook_url that lost test coverage. That's because most of our tests test using stream messages so the webhook URLs being tested always have a query parameter. So the line that accounts for there being no query parameters never gets called, which is fine, but we should still keep it. 2018-03-13 23:43:02 +01:00			`from zerver.lib.webhooks.common import check_send_webhook_message`
python: Sort imports with isort. Fixes #2665. Regenerated by tabbott with `lint --fix` after a rebase and change in parameters. Note from tabbott: In a few cases, this converts technical debt in the form of unsorted imports into different technical debt in the form of our largest files having very long, ugly import sequences at the start. I expect this change will increase pressure for us to split those files, which isn't a bad thing. Signed-off-by: Anders Kaseorg <anders@zulip.com> 2020-06-11 00:54:34 +02:00			`from zerver.lib.webhooks.git import TOPIC_WITH_BRANCH_TEMPLATE, get_push_commits_event_message`
webhooks: Remove unused imports. Signed-off-by: Anders Kaseorg <andersk@mit.edu> 2019-02-02 23:53:55 +01:00			`from zerver.models import UserProfile`
webhooks: Remove the legacy GitHub integration. The github-services model for how GitHub would send requests to this legacy integration is no longer available since earlier in 2019. Removing this integration also allows us to finally remove authenticated_api_view, the legacy authentication model from 2013 that had been used for this integration (and other features long since upgraded). A few functions that were used by the Beanstalk webhook are moved into that webhook's implementation directly. 2019-04-26 01:16:38 +02:00
python: Sort webhooks imports with isort. 2020-01-14 22:06:24 +01:00
python: Reformat with Black, except quotes. Signed-off-by: Anders Kaseorg <anders@zulip.com> 2021-02-12 08:19:30 +01:00			`def build_message_from_gitlog(`
			`user_profile: UserProfile,`
			`name: str,`
			`ref: str,`
			`commits: List[Dict[str, str]],`
			`before: str,`
			`after: str,`
			`url: str,`
			`pusher: str,`
			`forced: Optional[str] = None,`
			`created: Optional[str] = None,`
			`deleted: bool = False,`
			`) -> Tuple[str, str]:`
webhooks: Remove the legacy GitHub integration. The github-services model for how GitHub would send requests to this legacy integration is no longer available since earlier in 2019. Removing this integration also allows us to finally remove authenticated_api_view, the legacy authentication model from 2013 that had been used for this integration (and other features long since upgraded). A few functions that were used by the Beanstalk webhook are moved into that webhook's implementation directly. 2019-04-26 01:16:38 +02:00			`short_ref = re.sub(r'^refs/heads/', '', ref)`
			`subject = TOPIC_WITH_BRANCH_TEMPLATE.format(repo=name, branch=short_ref)`

			`commits = _transform_commits_list_to_common_format(commits)`
			`content = get_push_commits_event_message(pusher, url, short_ref, commits, deleted=deleted)`

			`return subject, content`

python: Reformat with Black, except quotes. Signed-off-by: Anders Kaseorg <anders@zulip.com> 2021-02-12 08:19:30 +01:00
webhooks: Remove the legacy GitHub integration. The github-services model for how GitHub would send requests to this legacy integration is no longer available since earlier in 2019. Removing this integration also allows us to finally remove authenticated_api_view, the legacy authentication model from 2013 that had been used for this integration (and other features long since upgraded). A few functions that were used by the Beanstalk webhook are moved into that webhook's implementation directly. 2019-04-26 01:16:38 +02:00			`def _transform_commits_list_to_common_format(commits: List[Dict[str, Any]]) -> List[Dict[str, str]]:`
			`new_commits_list = []`
			`for commit in commits:`
python: Reformat with Black, except quotes. Signed-off-by: Anders Kaseorg <anders@zulip.com> 2021-02-12 08:19:30 +01:00			`new_commits_list.append(`
			`{`
			`'name': commit['author'].get('username'),`
			`'sha': commit.get('id'),`
			`'url': commit.get('url'),`
			`'message': commit.get('message'),`
			`}`
			`)`
webhooks: Remove the legacy GitHub integration. The github-services model for how GitHub would send requests to this legacy integration is no longer available since earlier in 2019. Removing this integration also allows us to finally remove authenticated_api_view, the legacy authentication model from 2013 that had been used for this integration (and other features long since upgraded). A few functions that were used by the Beanstalk webhook are moved into that webhook's implementation directly. 2019-04-26 01:16:38 +02:00			`return new_commits_list`
Moved beanstalk webhook into its own file beanstalk.py 2016-03-13 12:38:57 +01:00
python: Reformat with Black, except quotes. Signed-off-by: Anders Kaseorg <anders@zulip.com> 2021-02-12 08:19:30 +01:00
docs: Fix more capitalization issues. Signed-off-by: Anders Kaseorg <anders@zulip.com> 2020-10-23 02:43:28 +02:00			`# Beanstalk's web hook UI rejects URL with a @ in the username section`
Moved beanstalk webhook into its own file beanstalk.py 2016-03-13 12:38:57 +01:00			`# So we ask the user to replace them with %40`
			`# We manually fix the username here before passing it along to @authenticated_rest_api_view`
zerver/webhooks: Use python 3 syntax for typing. Tweaked by tabbott to fix various line-wrapping issues. 2017-11-04 07:47:46 +01:00			`def beanstalk_decoder(view_func: ViewFuncT) -> ViewFuncT:`
Moved beanstalk webhook into its own file beanstalk.py 2016-03-13 12:38:57 +01:00			`@wraps(view_func)`
decorator: Replace type: ignore with cast, avoid Any. Signed-off-by: Anders Kaseorg <anders@zulip.com> 2020-06-24 02:10:50 +02:00			`def _wrapped_view_func(request: HttpRequest, args: object, *kwargs: object) -> HttpResponse:`
python: Convert more variable type annotations to Python 3.6 style. Signed-off-by: Anders Kaseorg <anders@zulip.com> 2020-05-09 00:10:17 +02:00			`auth_type: str`
			`encoded_value: str`
			`auth_type, encoded_value = request.META['HTTP_AUTHORIZATION'].split()`
webhooks/beanstalk: Improve test coverage. We shouldn't just ignore exceptions when encoding the incoming auth credentials. Even if the incoming credentials are properly encoded, it is better to know when that is the case or if something else fails. 2018-09-22 22:09:41 +02:00			`if auth_type.lower() == "basic":`
			`email, api_key = base64.b64decode(encoded_value).decode('utf-8').split(":")`
			`email = email.replace('%40', '@')`
python: Convert percent formatting to Python 3.6 f-strings. Generated by pyupgrade --py36-plus. Signed-off-by: Anders Kaseorg <anders@zulip.com> 2020-06-10 06:41:04 +02:00			`credentials = f"{email}:{api_key}"`
python: Convert assignment type annotations to Python 3.6 style. This commit was split by tabbott; this piece covers the vast majority of files in Zulip, but excludes scripts/, tools/, and puppet/ to help ensure we at least show the right error messages for Xenial systems. We can likely further refine the remaining pieces with some testing. Generated by com2ann, with whitespace fixes and various manual fixes for runtime issues: - invoiced_through: Optional[LicenseLedger] = models.ForeignKey( + invoiced_through: Optional["LicenseLedger"] = models.ForeignKey( -_apns_client: Optional[APNsClient] = None +_apns_client: Optional["APNsClient"] = None - notifications_stream: Optional[Stream] = models.ForeignKey('Stream', related_name='+', null=True, blank=True, on_delete=CASCADE) - signup_notifications_stream: Optional[Stream] = models.ForeignKey('Stream', related_name='+', null=True, blank=True, on_delete=CASCADE) + notifications_stream: Optional["Stream"] = models.ForeignKey('Stream', related_name='+', null=True, blank=True, on_delete=CASCADE) + signup_notifications_stream: Optional["Stream"] = models.ForeignKey('Stream', related_name='+', null=True, blank=True, on_delete=CASCADE) - author: Optional[UserProfile] = models.ForeignKey('UserProfile', blank=True, null=True, on_delete=CASCADE) + author: Optional["UserProfile"] = models.ForeignKey('UserProfile', blank=True, null=True, on_delete=CASCADE) - bot_owner: Optional[UserProfile] = models.ForeignKey('self', null=True, on_delete=models.SET_NULL) + bot_owner: Optional["UserProfile"] = models.ForeignKey('self', null=True, on_delete=models.SET_NULL) - default_sending_stream: Optional[Stream] = models.ForeignKey('zerver.Stream', null=True, related_name='+', on_delete=CASCADE) - default_events_register_stream: Optional[Stream] = models.ForeignKey('zerver.Stream', null=True, related_name='+', on_delete=CASCADE) + default_sending_stream: Optional["Stream"] = models.ForeignKey('zerver.Stream', null=True, related_name='+', on_delete=CASCADE) + default_events_register_stream: Optional["Stream"] = models.ForeignKey('zerver.Stream', null=True, related_name='+', on_delete=CASCADE) -descriptors_by_handler_id: Dict[int, ClientDescriptor] = {} +descriptors_by_handler_id: Dict[int, "ClientDescriptor"] = {} -worker_classes: Dict[str, Type[QueueProcessingWorker]] = {} -queues: Dict[str, Dict[str, Type[QueueProcessingWorker]]] = {} +worker_classes: Dict[str, Type["QueueProcessingWorker"]] = {} +queues: Dict[str, Dict[str, Type["QueueProcessingWorker"]]] = {} -AUTH_LDAP_REVERSE_EMAIL_SEARCH: Optional[LDAPSearch] = None +AUTH_LDAP_REVERSE_EMAIL_SEARCH: Optional["LDAPSearch"] = None Signed-off-by: Anders Kaseorg <anders@zulipchat.com> 2020-04-22 01:09:50 +02:00			`encoded_credentials: str = base64.b64encode(credentials.encode('utf-8')).decode('utf8')`
webhooks/beanstalk: Improve test coverage. We shouldn't just ignore exceptions when encoding the incoming auth credentials. Even if the incoming credentials are properly encoded, it is better to know when that is the case or if something else fails. 2018-09-22 22:09:41 +02:00			`request.META['HTTP_AUTHORIZATION'] = "Basic " + encoded_credentials`
Moved beanstalk webhook into its own file beanstalk.py 2016-03-13 12:38:57 +01:00
			`return view_func(request, args, *kwargs)`

decorator: Replace type: ignore with cast, avoid Any. Signed-off-by: Anders Kaseorg <anders@zulip.com> 2020-06-24 02:10:50 +02:00			`return cast(ViewFuncT, _wrapped_view_func) # https://github.com/python/mypy/issues/1927`
Moved beanstalk webhook into its own file beanstalk.py 2016-03-13 12:38:57 +01:00
python: Reformat with Black, except quotes. Signed-off-by: Anders Kaseorg <anders@zulip.com> 2021-02-12 08:19:30 +01:00
Moved beanstalk webhook into its own file beanstalk.py 2016-03-13 12:38:57 +01:00			`@beanstalk_decoder`
webhooks: Fix passing client string to authenticated webhook API views. This fixes a regression in 93678e89cd29da5b8106e278fa776f90f6fed33f and a4979410f983e7aaa10f4833a9c302110bea685c, where the webhooks using authenticated_rest_api_view were migrated to a new model that didn't include setting a custom Client string for the webhook. When restoring these webhooks' client strings, we also fix places where the client string was not capitalized the same was as the product's name. 2018-03-16 23:37:32 +01:00			`@authenticated_rest_api_view(webhook_client_name="Beanstalk")`
Moved beanstalk webhook into its own file beanstalk.py 2016-03-13 12:38:57 +01:00			`@has_request_variables`
python: Reformat with Black, except quotes. Signed-off-by: Anders Kaseorg <anders@zulip.com> 2021-02-12 08:19:30 +01:00			`def api_beanstalk_webhook(`
			`request: HttpRequest,`
			`user_profile: UserProfile,`
			`payload: Dict[str, Any] = REQ(validator=check_dict([])),`
			`branches: Optional[str] = REQ(default=None),`
			`) -> HttpResponse:`
docs: Fix more capitalization issues. Signed-off-by: Anders Kaseorg <anders@zulip.com> 2020-10-23 02:43:28 +02:00			`# Beanstalk supports both SVN and Git repositories`
Moved beanstalk webhook into its own file beanstalk.py 2016-03-13 12:38:57 +01:00			`# We distinguish between the two by checking for a`
docs: Fix more capitalization issues. Signed-off-by: Anders Kaseorg <anders@zulip.com> 2020-10-23 02:43:28 +02:00			`# 'uri' key that is only present for Git repos`
Moved beanstalk webhook into its own file beanstalk.py 2016-03-13 12:38:57 +01:00			`git_repo = 'uri' in payload`
			`if git_repo:`
webhooks/beanstalk: Filter specific Git branches. 2017-04-22 02:34:53 +02:00			`if branches is not None and branches.find(payload['branch']) == -1:`
			`return json_success()`
Moved beanstalk webhook into its own file beanstalk.py 2016-03-13 12:38:57 +01:00			`# To get a linkable url,`
git integrations: Expand details in commit push notifications. We now show a few new things: (1) The number of commits pushed. (2) Who authored the commits (just counts, not which specific ones, for brevity). Add tests for case of multiple committers. Part of #3968. 2017-04-05 09:12:19 +02:00			`for commit in payload['commits']:`
webhooks: Use author's name to format Git push messages. We now use the name of the author of a commit as opposed to the committer to format Git messages with multiple committers. Part of #3968. Follow-up to #4006. 2017-04-25 22:34:07 +02:00			`commit['author'] = {'username': commit['author']['name']}`
git integrations: Expand details in commit push notifications. We now show a few new things: (1) The number of commits pushed. (2) Who authored the commits (just counts, not which specific ones, for brevity). Add tests for case of multiple committers. Part of #3968. 2017-04-05 09:12:19 +02:00
python: Reformat with Black, except quotes. Signed-off-by: Anders Kaseorg <anders@zulip.com> 2021-02-12 08:19:30 +01:00			`subject, content = build_message_from_gitlog(`
			`user_profile,`
			`payload['repository']['name'],`
			`payload['ref'],`
			`payload['commits'],`
			`payload['before'],`
			`payload['after'],`
			`payload['repository']['url'],`
			`payload['pusher_name'],`
			`)`
Moved beanstalk webhook into its own file beanstalk.py 2016-03-13 12:38:57 +01:00			`else:`
			`author = payload.get('author_full_name')`
			`url = payload.get('changeset_url')`
			`revision = payload.get('revision')`
mypy: Fix strict-optional errors in webhooks directory. 2017-05-24 23:03:06 +02:00			`(short_commit_msg, _, _) = payload['message'].partition("\n")`
Moved beanstalk webhook into its own file beanstalk.py 2016-03-13 12:38:57 +01:00
python: Convert percent formatting to Python 3.6 f-strings. Generated by pyupgrade --py36-plus. Signed-off-by: Anders Kaseorg <anders@zulip.com> 2020-06-10 06:41:04 +02:00			`subject = f"svn r{revision}"`
			`content = f"{author} pushed [revision {revision}]({url}):\n\n> {short_commit_msg}"`
Moved beanstalk webhook into its own file beanstalk.py 2016-03-13 12:38:57 +01:00
webhooks: Migrate 14 webhooks to use check_send_webhook_message. These are the straightforward ones. Note that there is a line in zerver.lib.test_classes.build_webhook_url that lost test coverage. That's because most of our tests test using stream messages so the webhook URLs being tested always have a query parameter. So the line that accounts for there being no query parameters never gets called, which is fine, but we should still keep it. 2018-03-13 23:43:02 +01:00			`check_send_webhook_message(request, user_profile, subject, content)`
Moved beanstalk webhook into its own file beanstalk.py 2016-03-13 12:38:57 +01:00			`return json_success()`