Home Explore Help
Sign In
piratas
/
taiga-back
Watch 2
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
taiga-back
/
taiga
/
hooks
/
gitlab
/
api.py

api.py 2.4 KB
Permalink History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071 
  1. # Copyright (C) 2014 Andrey Antukh <niwi@niwi.be>
    2. 

  2. # Copyright (C) 2014 Jesús Espino <jespinog@gmail.com>
    3. 

  3. # Copyright (C) 2014 David Barragán <bameda@dbarragan.com>
    4. 

  4. # This program is free software: you can redistribute it and/or modify
    5. 

  5. # it under the terms of the GNU Affero General Public License as
    6. 

  6. # published by the Free Software Foundation, either version 3 of the
    7. 

  7. # License, or (at your option) any later version.
    8. 

  8. #
    9. 

  9. # This program is distributed in the hope that it will be useful,
    10. 

  10. # but WITHOUT ANY WARRANTY; without even the implied warranty of
    11. 

  11. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    12. 

  12. # GNU Affero General Public License for more details.
    13. 

  13. #
    14. 

  14. # You should have received a copy of the GNU Affero General Public License
    15. 

  15. # along with this program.  If not, see <http://www.gnu.org/licenses/>.
    16. 

  16. 

  17. from django.conf import settings
    18. 

  18. 

  19. from ipware.ip import get_ip
    20. 

  20. 

  21. from taiga.base.utils import json
    22. 

  22. 

  23. from taiga.projects.models import Project
    24. 

  24. from taiga.hooks.api import BaseWebhookApiViewSet
    25. 

  25. 

  26. from . import event_hooks
    27. 

  27. 

  28. 

  29. class GitLabViewSet(BaseWebhookApiViewSet):
    30. 

  30.     event_hook_classes = {
    31. 

  31.         "push": event_hooks.PushEventHook,
    32. 

  32.         "issue": event_hooks.IssuesEventHook,
    33. 

  33.         "note": event_hooks.IssueCommentEventHook,
    34. 

  34.     }
    35. 

  35. 

  36.     def _validate_signature(self, project, request):
    37. 

  37.         secret_key = request.GET.get("key", None)
    38. 

  38. 

  39.         if secret_key is None:
    40. 

  40.             return False
    41. 

  41. 

  42.         if not hasattr(project, "modules_config"):
    43. 

  43.             return False
    44. 

  44. 

  45.         if project.modules_config.config is None:
    46. 

  46.             return False
    47. 

  47. 

  48.         project_secret = project.modules_config.config.get("gitlab", {}).get("secret", "")
    49. 

  49.         if not project_secret:
    50. 

  50.             return False
    51. 

  51. 

  52.         gitlab_config = project.modules_config.config.get("gitlab", {})
    53. 

  53.         valid_origin_ips = gitlab_config.get("valid_origin_ips", settings.GITLAB_VALID_ORIGIN_IPS)
    54. 

  54.         origin_ip = get_ip(request)
    55. 

  55.         if valid_origin_ips and (not origin_ip or origin_ip not in valid_origin_ips):
    56. 

  56.             return False
    57. 

  57. 

  58.         return project_secret == secret_key
    59. 

  59. 

  60.     def _get_project(self, request):
    61. 

  61.         project_id = request.GET.get("project", None)
    62. 

  62.         try:
    63. 

  63.             project = Project.objects.get(id=project_id)
    64. 

  64.             return project
    65. 

  65.         except Project.DoesNotExist:
    66. 

  66.             return None
    67. 

  67. 

  68.     def _get_event_name(self, request):
    69. 

  69.         payload = json.loads(request.body.decode("utf-8"))
    70. 

  70.         return payload.get('object_kind', 'push')
    71. 

  71.