2024-04-13 16:16:09 +01:00
|
|
|
use actix::prelude::*;
|
2024-04-14 06:48:26 +01:00
|
|
|
use kxio::network::{self, json};
|
2024-04-14 15:46:21 +01:00
|
|
|
use tracing::{debug, info, warn};
|
2024-04-14 19:12:51 +01:00
|
|
|
use ulid::DecodeError;
|
2024-04-13 16:16:09 +01:00
|
|
|
|
2024-04-15 22:44:56 +01:00
|
|
|
use std::{collections::HashMap, fmt::Display, ops::Deref, str::FromStr};
|
2024-04-09 19:30:05 +01:00
|
|
|
|
2024-04-14 06:48:26 +01:00
|
|
|
use crate::server::{
|
|
|
|
|
actors::{
|
2024-04-14 15:46:21 +01:00
|
|
|
repo::{RepoActor, ValidateRepo, WebhookRegistered},
|
2024-04-14 06:48:26 +01:00
|
|
|
webhook::WebhookMessage,
|
|
|
|
|
},
|
2024-04-15 22:44:56 +01:00
|
|
|
config::{RepoBranches, Webhook, WebhookUrl},
|
2024-04-18 19:15:26 +01:00
|
|
|
gitforge,
|
2024-04-13 16:16:09 +01:00
|
|
|
};
|
2024-04-11 18:30:36 +01:00
|
|
|
|
2024-04-09 19:30:05 +01:00
|
|
|
#[derive(Clone, Debug, PartialEq, Eq)]
|
|
|
|
|
pub struct WebhookId(String);
|
|
|
|
|
impl WebhookId {
|
|
|
|
|
#[allow(dead_code)]
|
|
|
|
|
pub const fn new(id: String) -> Self {
|
|
|
|
|
Self(id)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
impl Deref for WebhookId {
|
|
|
|
|
type Target = String;
|
|
|
|
|
fn deref(&self) -> &Self::Target {
|
|
|
|
|
&self.0
|
|
|
|
|
}
|
|
|
|
|
}
|
2024-04-13 20:59:57 +01:00
|
|
|
impl Display for WebhookId {
|
|
|
|
|
fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
|
|
|
|
|
write!(f, "{}", self.0)
|
|
|
|
|
}
|
|
|
|
|
}
|
2024-04-09 19:30:05 +01:00
|
|
|
|
2024-04-14 19:12:51 +01:00
|
|
|
#[derive(Clone, Debug, PartialEq, Eq)]
|
|
|
|
|
pub struct WebhookAuth(ulid::Ulid);
|
|
|
|
|
impl WebhookAuth {
|
|
|
|
|
pub fn from_str(authorisation: &str) -> Result<Self, DecodeError> {
|
|
|
|
|
let id = ulid::Ulid::from_str(authorisation);
|
|
|
|
|
Ok(Self(id?))
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fn generate() -> Self {
|
|
|
|
|
Self(ulid::Ulid::new())
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fn header_value(&self) -> String {
|
|
|
|
|
format!("Basic {}", self.0.to_string())
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
impl Deref for WebhookAuth {
|
|
|
|
|
type Target = ulid::Ulid;
|
|
|
|
|
fn deref(&self) -> &Self::Target {
|
|
|
|
|
&self.0
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2024-05-04 12:37:35 +01:00
|
|
|
#[tracing::instrument(skip_all, fields(%webhook_id))]
|
2024-04-09 19:30:05 +01:00
|
|
|
pub async fn unregister(
|
2024-04-13 20:59:57 +01:00
|
|
|
webhook_id: WebhookId,
|
|
|
|
|
repo_details: crate::server::config::RepoDetails,
|
|
|
|
|
net: network::Network,
|
2024-04-09 19:30:05 +01:00
|
|
|
) {
|
2024-04-13 20:59:57 +01:00
|
|
|
let hostname = &repo_details.forge.hostname;
|
2024-04-20 20:49:38 +01:00
|
|
|
let repo_path = repo_details.repo_path;
|
2024-04-14 06:48:26 +01:00
|
|
|
use secrecy::ExposeSecret;
|
|
|
|
|
let token = repo_details.forge.token.expose_secret();
|
2024-04-13 20:59:57 +01:00
|
|
|
let url = network::NetUrl::new(format!(
|
2024-04-20 20:49:38 +01:00
|
|
|
"https://{hostname}/api/v1/repos/{repo_path}/hooks/{webhook_id}?token={token}"
|
2024-04-13 20:59:57 +01:00
|
|
|
));
|
|
|
|
|
let request = network::NetRequest::new(
|
|
|
|
|
network::RequestMethod::Delete,
|
|
|
|
|
url,
|
|
|
|
|
network::NetRequestHeaders::new(),
|
|
|
|
|
network::RequestBody::None,
|
2024-04-15 22:44:56 +01:00
|
|
|
network::ResponseType::None,
|
2024-04-13 20:59:57 +01:00
|
|
|
None,
|
|
|
|
|
network::NetRequestLogging::None,
|
|
|
|
|
);
|
|
|
|
|
let result = net.delete(request).await;
|
|
|
|
|
match result {
|
2024-05-04 12:37:35 +01:00
|
|
|
Ok(_) => info!("unregistered webhook"),
|
|
|
|
|
Err(err) => warn!(?err, "Failed to unregister webhook"),
|
2024-04-13 20:59:57 +01:00
|
|
|
}
|
2024-04-09 19:30:05 +01:00
|
|
|
}
|
|
|
|
|
|
2024-05-04 12:37:35 +01:00
|
|
|
#[tracing::instrument(skip_all)]
|
2024-04-09 19:30:05 +01:00
|
|
|
pub async fn register(
|
2024-04-14 06:48:26 +01:00
|
|
|
repo_details: crate::server::config::RepoDetails,
|
|
|
|
|
webhook: Webhook,
|
2024-04-11 18:30:36 +01:00
|
|
|
addr: actix::prelude::Addr<super::RepoActor>,
|
2024-04-14 06:48:26 +01:00
|
|
|
net: network::Network,
|
2024-04-09 19:30:05 +01:00
|
|
|
) {
|
2024-04-21 19:33:18 +01:00
|
|
|
let Some(repo_config) = repo_details.repo_config.clone() else {
|
2024-04-14 06:48:26 +01:00
|
|
|
return;
|
|
|
|
|
};
|
2024-04-15 22:44:56 +01:00
|
|
|
|
|
|
|
|
let webhook_url = webhook.url();
|
|
|
|
|
// remove any lingering webhooks for the same URL
|
|
|
|
|
let existing_webhook_ids = find_existing_webhooks(&repo_details, &webhook_url, &net).await;
|
|
|
|
|
for webhook_id in existing_webhook_ids {
|
|
|
|
|
unregister(webhook_id, repo_details.clone(), net.clone()).await;
|
|
|
|
|
}
|
|
|
|
|
|
2024-04-14 06:48:26 +01:00
|
|
|
let hostname = &repo_details.forge.hostname;
|
2024-04-20 20:49:38 +01:00
|
|
|
let repo_path = repo_details.repo_path;
|
2024-04-14 06:48:26 +01:00
|
|
|
use secrecy::ExposeSecret;
|
|
|
|
|
let token = repo_details.forge.token.expose_secret();
|
|
|
|
|
let url = network::NetUrl::new(format!(
|
2024-04-20 20:49:38 +01:00
|
|
|
"https://{hostname}/api/v1/repos/{repo_path}/hooks?token={token}"
|
2024-04-14 06:48:26 +01:00
|
|
|
));
|
2024-04-23 06:50:52 +01:00
|
|
|
let repo_alias = &repo_details.repo_alias;
|
2024-04-14 06:48:26 +01:00
|
|
|
let headers = network::NetRequestHeaders::new().with("Content-Type", "application/json");
|
2024-04-14 19:12:51 +01:00
|
|
|
let authorisation = WebhookAuth::generate();
|
2024-04-14 06:48:26 +01:00
|
|
|
let body = json!({
|
|
|
|
|
"active": true,
|
2024-04-14 19:12:51 +01:00
|
|
|
"authorization_header": authorisation.header_value(),
|
2024-04-14 06:48:26 +01:00
|
|
|
"branch_filter": format!("{{{},{},{}}}", repo_config.branches().main(), repo_config.branches().next(), repo_config.branches().dev()),
|
|
|
|
|
"config": {
|
|
|
|
|
"content_type": "json",
|
|
|
|
|
"url": format!("{}/{}", webhook_url.as_ref(), repo_alias),
|
|
|
|
|
},
|
|
|
|
|
"events": [ "push" ],
|
|
|
|
|
"type": "forgejo"
|
|
|
|
|
});
|
|
|
|
|
let request = network::NetRequest::new(
|
|
|
|
|
network::RequestMethod::Post,
|
|
|
|
|
url,
|
|
|
|
|
headers,
|
|
|
|
|
network::RequestBody::Json(body),
|
|
|
|
|
network::ResponseType::Json,
|
|
|
|
|
None,
|
|
|
|
|
network::NetRequestLogging::None,
|
|
|
|
|
);
|
|
|
|
|
let result = net.post_json::<Hook>(request).await;
|
|
|
|
|
match result {
|
|
|
|
|
Ok(response) => {
|
|
|
|
|
if let Some(hook) = response.response_body() {
|
2024-05-04 12:37:35 +01:00
|
|
|
info!(webhook_id = %hook.id, "Webhook registered");
|
2024-04-14 06:48:26 +01:00
|
|
|
addr.do_send(WebhookRegistered(hook.id(), authorisation));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
Err(_) => warn!("Failed to register webhook"),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2024-04-15 22:44:56 +01:00
|
|
|
async fn find_existing_webhooks(
|
|
|
|
|
repo_details: &crate::server::config::RepoDetails,
|
|
|
|
|
webhook_url: &WebhookUrl,
|
|
|
|
|
net: &network::Network,
|
|
|
|
|
) -> Vec<WebhookId> {
|
|
|
|
|
let mut ids: Vec<WebhookId> = vec![];
|
|
|
|
|
let hostname = &repo_details.forge.hostname;
|
2024-04-20 20:49:38 +01:00
|
|
|
let repo_path = &repo_details.repo_path;
|
2024-04-15 22:44:56 +01:00
|
|
|
let mut page = 1;
|
|
|
|
|
loop {
|
|
|
|
|
use secrecy::ExposeSecret;
|
|
|
|
|
let token = &repo_details.forge.token.expose_secret();
|
2024-04-20 20:49:38 +01:00
|
|
|
let url =
|
|
|
|
|
format!("https://{hostname}/api/v1/repos/{repo_path}/hooks?page={page}&token={token}");
|
2024-04-15 22:44:56 +01:00
|
|
|
let net_url = network::NetUrl::new(url);
|
|
|
|
|
let request = network::NetRequest::new(
|
|
|
|
|
network::RequestMethod::Get,
|
|
|
|
|
net_url,
|
|
|
|
|
network::NetRequestHeaders::new(),
|
|
|
|
|
network::RequestBody::None,
|
|
|
|
|
network::ResponseType::Json,
|
|
|
|
|
None,
|
|
|
|
|
network::NetRequestLogging::None,
|
|
|
|
|
);
|
|
|
|
|
let result = net.get::<Vec<Hook>>(request).await;
|
|
|
|
|
if let Ok(response) = result {
|
|
|
|
|
if let Some(list) = response.response_body() {
|
|
|
|
|
if list.is_empty() {
|
|
|
|
|
return ids;
|
|
|
|
|
}
|
|
|
|
|
for hook in list {
|
|
|
|
|
if let Some(existing_url) = hook.config.get("url") {
|
|
|
|
|
if existing_url.starts_with(webhook_url.as_ref()) {
|
|
|
|
|
ids.push(hook.id());
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
page += 1;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2024-04-14 06:48:26 +01:00
|
|
|
#[derive(Debug, serde::Deserialize)]
|
|
|
|
|
struct Hook {
|
|
|
|
|
id: i64,
|
2024-04-15 22:44:56 +01:00
|
|
|
config: HashMap<String, String>,
|
2024-04-14 06:48:26 +01:00
|
|
|
}
|
|
|
|
|
impl Hook {
|
|
|
|
|
fn id(&self) -> WebhookId {
|
|
|
|
|
WebhookId(format!("{}", self.id))
|
|
|
|
|
}
|
2024-04-09 19:30:05 +01:00
|
|
|
}
|
2024-04-13 16:16:09 +01:00
|
|
|
|
|
|
|
|
impl Handler<WebhookMessage> for RepoActor {
|
|
|
|
|
type Result = ();
|
|
|
|
|
|
2024-04-14 15:46:21 +01:00
|
|
|
#[allow(clippy::cognitive_complexity)] // TODO: (#49) reduce complexity
|
2024-05-05 08:17:32 +01:00
|
|
|
#[tracing::instrument(name = "RepoActor::WebhookMessage", skip_all, fields(token = %self.message_token, repo = %self.details))]
|
2024-04-14 15:46:21 +01:00
|
|
|
fn handle(&mut self, msg: WebhookMessage, ctx: &mut Self::Context) -> Self::Result {
|
2024-04-14 19:12:51 +01:00
|
|
|
if msg.authorisation() != self.webhook_auth {
|
|
|
|
|
return; // invalid auth
|
|
|
|
|
}
|
2024-04-13 16:16:09 +01:00
|
|
|
let id = msg.id();
|
2024-05-05 08:17:32 +01:00
|
|
|
let span = tracing::info_span!("handle", %id);
|
|
|
|
|
let _guard = span.enter();
|
2024-04-13 16:16:09 +01:00
|
|
|
let body = msg.body();
|
2024-05-05 08:17:32 +01:00
|
|
|
debug!(%id, "RepoActor received message");
|
2024-04-14 15:46:21 +01:00
|
|
|
match serde_json::from_str::<Push>(body) {
|
|
|
|
|
Err(err) => debug!(?err, %body, "Not a 'push'"),
|
|
|
|
|
Ok(push) => {
|
2024-04-21 19:33:18 +01:00
|
|
|
if let Some(config) = &self.details.repo_config {
|
2024-04-14 15:46:21 +01:00
|
|
|
match push.branch(config.branches()) {
|
|
|
|
|
None => warn!(
|
|
|
|
|
?push,
|
|
|
|
|
"Unrecognised branch, we should be filtering to only the ones we want"
|
|
|
|
|
),
|
|
|
|
|
Some(branch) => {
|
|
|
|
|
match branch {
|
|
|
|
|
Branch::Main => {
|
|
|
|
|
if self.last_main_commit == Some(push.commit()) {
|
|
|
|
|
info!(
|
2024-05-05 08:17:32 +01:00
|
|
|
branch = %config.branches().main(),
|
|
|
|
|
commit = %push.commit(),
|
|
|
|
|
"Ignoring - already aware of branch at commit",
|
2024-04-14 15:46:21 +01:00
|
|
|
);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
self.last_main_commit.replace(push.commit())
|
|
|
|
|
}
|
|
|
|
|
Branch::Next => {
|
|
|
|
|
if self.last_next_commit == Some(push.commit()) {
|
|
|
|
|
info!(
|
2024-05-05 08:17:32 +01:00
|
|
|
branch = %config.branches().next(),
|
|
|
|
|
commit = %push.commit(),
|
|
|
|
|
"Ignoring - already aware of branch at commit",
|
2024-04-14 15:46:21 +01:00
|
|
|
);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
self.last_next_commit.replace(push.commit())
|
|
|
|
|
}
|
|
|
|
|
Branch::Dev => {
|
|
|
|
|
if self.last_dev_commit == Some(push.commit()) {
|
|
|
|
|
info!(
|
2024-05-05 08:17:32 +01:00
|
|
|
branch = %config.branches().dev(),
|
|
|
|
|
commit = %push.commit(),
|
|
|
|
|
"Ignoring - already aware of branch at commit",
|
2024-04-14 15:46:21 +01:00
|
|
|
);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
self.last_dev_commit.replace(push.commit())
|
|
|
|
|
}
|
|
|
|
|
};
|
2024-05-05 08:17:32 +01:00
|
|
|
let message_token = self.message_token.next();
|
2024-04-14 15:46:21 +01:00
|
|
|
info!(
|
2024-05-05 08:17:32 +01:00
|
|
|
token = %message_token,
|
2024-04-14 15:46:21 +01:00
|
|
|
?branch,
|
|
|
|
|
commit = %push.commit(),
|
2024-05-05 08:17:32 +01:00
|
|
|
"New commit"
|
2024-04-14 15:46:21 +01:00
|
|
|
);
|
2024-05-05 08:17:32 +01:00
|
|
|
ctx.address().do_send(ValidateRepo { message_token });
|
2024-04-14 15:46:21 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(Debug, serde::Deserialize)]
|
|
|
|
|
struct Push {
|
|
|
|
|
#[serde(rename = "ref")]
|
|
|
|
|
reference: String,
|
|
|
|
|
after: String,
|
|
|
|
|
head_commit: HeadCommit,
|
|
|
|
|
}
|
|
|
|
|
impl Push {
|
|
|
|
|
pub fn branch(&self, repo_branches: &RepoBranches) -> Option<Branch> {
|
|
|
|
|
if !self.reference.starts_with("refs/heads/") {
|
|
|
|
|
warn!(r#ref = self.reference, "Unexpected ref");
|
|
|
|
|
return None;
|
|
|
|
|
}
|
|
|
|
|
let (_, branch) = self.reference.split_at(11);
|
|
|
|
|
if branch == *repo_branches.main() {
|
|
|
|
|
return Some(Branch::Main);
|
|
|
|
|
}
|
|
|
|
|
if branch == *repo_branches.next() {
|
|
|
|
|
return Some(Branch::Next);
|
|
|
|
|
}
|
|
|
|
|
if branch == *repo_branches.dev() {
|
|
|
|
|
return Some(Branch::Dev);
|
|
|
|
|
}
|
|
|
|
|
warn!(branch, "Unexpected branch");
|
|
|
|
|
None
|
|
|
|
|
}
|
2024-04-18 19:15:26 +01:00
|
|
|
pub fn commit(&self) -> gitforge::Commit {
|
|
|
|
|
gitforge::Commit::new(&self.after, &self.head_commit.message)
|
2024-04-14 15:46:21 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(Debug)]
|
|
|
|
|
enum Branch {
|
|
|
|
|
Main,
|
|
|
|
|
Next,
|
|
|
|
|
Dev,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[derive(Debug, serde::Deserialize)]
|
|
|
|
|
struct HeadCommit {
|
|
|
|
|
message: String,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[cfg(test)]
|
|
|
|
|
mod tests {
|
|
|
|
|
#[test]
|
|
|
|
|
fn splt_ref() {
|
|
|
|
|
assert_eq!("refs/heads/next".split_at(11), ("refs/heads/", "next"));
|
2024-04-13 16:16:09 +01:00
|
|
|
}
|
|
|
|
|
}
|
