gitlab-org--gitlab-foss/app/models/hooks/web_hook.rb

class WebHook < ActiveRecord::Base
  include Sortable
  include HTTParty

  default_value_for :push_events, true
  default_value_for :issues_events, false
  default_value_for :note_events, false
  default_value_for :merge_requests_events, false
  default_value_for :tag_push_events, false
  default_value_for :build_events, false
  default_value_for :enable_ssl_verification, true

  scope :push_hooks, -> { where(push_events: true) }
  scope :tag_push_hooks, -> { where(tag_push_events: true) }

  # HTTParty timeout
  default_timeout Gitlab.config.gitlab.webhook_timeout

  validates :url, presence: true, url: true

  def execute(data, hook_name)
    parsed_url = URI.parse(url)
    if parsed_url.userinfo.blank?
      response = WebHook.post(url,
                              body: data.to_json,
                              headers: build_headers(hook_name),
                              verify: enable_ssl_verification)
    else
      post_url = url.gsub("#{parsed_url.userinfo}@", '')
      auth = {
        username: CGI.unescape(parsed_url.user),
        password: CGI.unescape(parsed_url.password),
      }
      response = WebHook.post(post_url,
                              body: data.to_json,
                              headers: build_headers(hook_name),
                              verify: enable_ssl_verification,
                              basic_auth: auth)
    end

    [response.code, response.to_s]
  rescue SocketError, OpenSSL::SSL::SSLError, Errno::ECONNRESET, Errno::ECONNREFUSED, Net::OpenTimeout => e
    logger.error("WebHook Error => #{e}")
    [false, e.to_s]
  end

  def async_execute(data, hook_name)
    Sidekiq::Client.enqueue(ProjectWebHookWorker, id, data, hook_name)
  end

  private

  def build_headers(hook_name)
    headers = {
      'Content-Type' => 'application/json',
      'X-Gitlab-Event' => hook_name.singularize.titleize
    }
    headers['X-Gitlab-Token'] = token if token.present?
    headers
  end
end
Added web hooks functionality This commit includes: * Projects can have zero or more WebHooks. * The PostReceive job will ask a project to execute any web hooks defined for that project. * WebHook has a URL, we post Github-compatible JSON to that URL. * Failure to execute a WebHook will be silently ignored. 2011-12-14 11:38:52 -05:00			`class WebHook < ActiveRecord::Base`
Explicitly define ordering in models using default_scope 2015-02-05 17:20:55 -05:00			`include Sortable`
Added web hooks functionality This commit includes: * Projects can have zero or more WebHooks. * The PostReceive job will ask a project to execute any web hooks defined for that project. * WebHook has a URL, we post Github-compatible JSON to that URL. * Failure to execute a WebHook will be silently ignored. 2011-12-14 11:38:52 -05:00			`include HTTParty`

Default values for web hooks Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-02-27 08:56:35 -05:00			`default_value_for :push_events, true`
			`default_value_for :issues_events, false`
Add support for Webhook note events Closes https://github.com/gitlabhq/gitlabhq/issues/6745 2015-05-16 02:33:31 -04:00			`default_value_for :note_events, false`
Default values for web hooks Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-02-27 08:56:35 -05:00			`default_value_for :merge_requests_events, false`
Add tag_push_events to project hook api 2014-09-19 04:23:18 -04:00			`default_value_for :tag_push_events, false`
Migrate CI::Services and CI::WebHooks to Services and WebHooks 2015-12-07 07:23:23 -05:00			`default_value_for :build_events, false`
enable SSL by default 2015-09-15 09:19:32 -04:00			`default_value_for :enable_ssl_verification, true`
Default values for web hooks Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-02-27 08:56:35 -05:00
moving overlapping scopes to webhook 2016-04-18 20:53:41 -04:00			`scope :push_hooks, -> { where(push_events: true) }`
			`scope :tag_push_hooks, -> { where(tag_push_events: true) }`

Added web hooks functionality This commit includes: * Projects can have zero or more WebHooks. * The PostReceive job will ask a project to execute any web hooks defined for that project. * WebHook has a URL, we post Github-compatible JSON to that URL. * Failure to execute a WebHook will be silently ignored. 2011-12-14 11:38:52 -05:00			`# HTTParty timeout`
Adding ability to configure webhook timeout via gitlab.yml 2014-09-12 11:38:14 -04:00			`default_timeout Gitlab.config.gitlab.webhook_timeout`
Added web hooks functionality This commit includes: * Projects can have zero or more WebHooks. * The PostReceive job will ask a project to execute any web hooks defined for that project. * WebHook has a URL, we post Github-compatible JSON to that URL. * Failure to execute a WebHook will be silently ignored. 2011-12-14 11:38:52 -05:00
Add custom UrlValidator 2015-12-01 18:45:36 -05:00			`validates :url, presence: true, url: true`
Added web hooks functionality This commit includes: * Projects can have zero or more WebHooks. * The PostReceive job will ask a project to execute any web hooks defined for that project. * WebHook has a URL, we post Github-compatible JSON to that URL. * Failure to execute a WebHook will be silently ignored. 2011-12-14 11:38:52 -05:00
Added X-GitLab-Event header for web hooks 2015-01-23 19:10:43 -05:00			`def execute(data, hook_name)`
make hooks respect http basic authentication 2012-08-01 22:48:46 -04:00			`parsed_url = URI.parse(url)`
			`if parsed_url.userinfo.blank?`
Handle and report SSL errors in Web hook test. Check for status 200 for success. If a Web hook test fails due to an SSL error or some other error, report the result back to the user instead of an Error 500. Closes #3656 Handle response 2015-12-01 19:15:01 -05:00			`response = WebHook.post(url,`
			`body: data.to_json,`
Backported minimal safewebhook implementation to GitLab CE 2016-04-27 03:24:49 -04:00			`headers: build_headers(hook_name),`
Handle and report SSL errors in Web hook test. Check for status 200 for success. If a Web hook test fails due to an SSL error or some other error, report the result back to the user instead of an Error 500. Closes #3656 Handle response 2015-12-01 19:15:01 -05:00			`verify: enable_ssl_verification)`
make hooks respect http basic authentication 2012-08-01 22:48:46 -04:00			`else`
Backported minimal safewebhook implementation to GitLab CE 2016-04-27 03:24:49 -04:00			`post_url = url.gsub("#{parsed_url.userinfo}@", '')`
Fix WebHook and special symbols in credentials When using web hook with credentials secured web resource, one needs to put the credentials in the hook URL. If the credentials contain special symbols (e.g. @ or #), it should be URL-quoted (e.g. %40 instead of @). But when Gitlab is making a request, it should unquote the symbols before base64-encoding them. 2013-02-22 11:03:59 -05:00			`auth = {`
Use CGI.escape instead of URI.escape, because URI is obsoleted. ref: https://github.com/ruby/ruby/commit/238b979f1789f95262a267d8df6239806f2859cc 2016-01-12 04:32:25 -05:00			`username: CGI.unescape(parsed_url.user),`
			`password: CGI.unescape(parsed_url.password),`
Fix WebHook and special symbols in credentials When using web hook with credentials secured web resource, one needs to put the credentials in the hook URL. If the credentials contain special symbols (e.g. @ or #), it should be URL-quoted (e.g. %40 instead of @). But when Gitlab is making a request, it should unquote the symbols before base64-encoding them. 2013-02-22 11:03:59 -05:00			`}`
Handle and report SSL errors in Web hook test. Check for status 200 for success. If a Web hook test fails due to an SSL error or some other error, report the result back to the user instead of an Error 500. Closes #3656 Handle response 2015-12-01 19:15:01 -05:00			`response = WebHook.post(post_url,`
			`body: data.to_json,`
Backported minimal safewebhook implementation to GitLab CE 2016-04-27 03:24:49 -04:00			`headers: build_headers(hook_name),`
Handle and report SSL errors in Web hook test. Check for status 200 for success. If a Web hook test fails due to an SSL error or some other error, report the result back to the user instead of an Error 500. Closes #3656 Handle response 2015-12-01 19:15:01 -05:00			`verify: enable_ssl_verification,`
			`basic_auth: auth)`
make hooks respect http basic authentication 2012-08-01 22:48:46 -04:00			`end`
Handle and report SSL errors in Web hook test. Check for status 200 for success. If a Web hook test fails due to an SSL error or some other error, report the result back to the user instead of an Error 500. Closes #3656 Handle response 2015-12-01 19:15:01 -05:00
Remove extra sanitization Robert Speicher and I believe this string gets sanitized further down the stack anyway. Doing this in a model class feels wrong. 2016-05-10 05:14:46 -04:00			`[response.code, response.to_s]`
Handle and report SSL errors in Web hook test. Check for status 200 for success. If a Web hook test fails due to an SSL error or some other error, report the result back to the user instead of an Error 500. Closes #3656 Handle response 2015-12-01 19:15:01 -05:00			`rescue SocketError, OpenSSL::SSL::SSLError, Errno::ECONNRESET, Errno::ECONNREFUSED, Net::OpenTimeout => e`
Handle web hook exception Write to log if web hook cant be executed. This prevents 500 error when test web hook with invalid URL and prevent exceptions and retries in sidekiq Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-12-04 08:07:01 -05:00			`logger.error("WebHook Error => #{e}")`
Handle and report SSL errors in Web hook test. Check for status 200 for success. If a Web hook test fails due to an SSL error or some other error, report the result back to the user instead of an Error 500. Closes #3656 Handle response 2015-12-01 19:15:01 -05:00			`[false, e.to_s]`
Added web hooks functionality This commit includes: * Projects can have zero or more WebHooks. * The PostReceive job will ask a project to execute any web hooks defined for that project. * WebHook has a URL, we post Github-compatible JSON to that URL. * Failure to execute a WebHook will be silently ignored. 2011-12-14 11:38:52 -05:00			`end`
Updates project to process web hooks async via sidekiq. A new queue of "project_web_hook" is used to process web hooks asynchronously, allowing each to succeed/fail (and be retried) independently. (Basically, project web hooks now process the same as system hooks.) 2013-01-24 15:15:24 -05:00
Added X-GitLab-Event header for web hooks 2015-01-23 19:10:43 -05:00			`def async_execute(data, hook_name)`
			`Sidekiq::Client.enqueue(ProjectWebHookWorker, id, data, hook_name)`
Updates project to process web hooks async via sidekiq. A new queue of "project_web_hook" is used to process web hooks asynchronously, allowing each to succeed/fail (and be retried) independently. (Basically, project web hooks now process the same as system hooks.) 2013-01-24 15:15:24 -05:00			`end`
Backported minimal safewebhook implementation to GitLab CE 2016-04-27 03:24:49 -04:00
			`private`

			`def build_headers(hook_name)`
			`headers = {`
			`'Content-Type' => 'application/json',`
			`'X-Gitlab-Event' => hook_name.singularize.titleize`
			`}`
			`headers['X-Gitlab-Token'] = token if token.present?`
			`headers`
			`end`
Added web hooks functionality This commit includes: * Projects can have zero or more WebHooks. * The PostReceive job will ask a project to execute any web hooks defined for that project. * WebHook has a URL, we post Github-compatible JSON to that URL. * Failure to execute a WebHook will be silently ignored. 2011-12-14 11:38:52 -05:00			`end`