mirror of
https://github.com/adnanh/webhook.git
synced 2025-05-23 22:02:28 +00:00
Add HTTP methods cli parameter
Allows to globally restrict HTTP methods. Fixes #248
This commit is contained in:
Cameron Moore
parent
3414f34025
commit
c38778ba62
3 changed files with 34 additions and 12 deletions
|
|
@ -13,6 +13,8 @@ Usage of webhook:
|
||||||
path to the json file containing defined hooks the webhook should serve, use multiple times to load from different files
|
path to the json file containing defined hooks the webhook should serve, use multiple times to load from different files
|
||||||
-hotreload
|
-hotreload
|
||||||
watch hooks file for changes and reload them automatically
|
watch hooks file for changes and reload them automatically
|
||||||
|
-http-methods string
|
||||||
|
globally restrict allowed HTTP methods; separate methods with comma
|
||||||
-ip string
|
-ip string
|
||||||
ip the webhook should serve hooks on (default "0.0.0.0")
|
ip the webhook should serve hooks on (default "0.0.0.0")
|
||||||
-key string
|
-key string
|
||||||
|
|
|
||||||
|
|
@ -50,6 +50,7 @@ var (
|
||||||
maxMultipartMem = flag.Int64("max-multipart-mem", 1<<20, "maximum memory in bytes for parsing multipart form data before disk caching")
|
maxMultipartMem = flag.Int64("max-multipart-mem", 1<<20, "maximum memory in bytes for parsing multipart form data before disk caching")
|
||||||
setGID = flag.Int("setgid", 0, "set group ID after opening listening port; must be used with setuid")
|
setGID = flag.Int("setgid", 0, "set group ID after opening listening port; must be used with setuid")
|
||||||
setUID = flag.Int("setuid", 0, "set user ID after opening listening port; must be used with setgid")
|
setUID = flag.Int("setuid", 0, "set user ID after opening listening port; must be used with setgid")
|
||||||
|
httpMethods = flag.String("http-methods", "", "globally restrict allowed HTTP methods; separate methods with comma")
|
||||||
|
|
||||||
responseHeaders hook.ResponseHeaders
|
responseHeaders hook.ResponseHeaders
|
||||||
hooksFiles hook.HooksFiles
|
hooksFiles hook.HooksFiles
|
||||||
|
|
@ -203,7 +204,12 @@ func main() {
|
||||||
fmt.Fprint(w, "OK")
|
fmt.Fprint(w, "OK")
|
||||||
})
|
})
|
||||||
|
|
||||||
|
if *httpMethods == "" {
|
||||||
r.HandleFunc(hooksURL, hookHandler)
|
r.HandleFunc(hooksURL, hookHandler)
|
||||||
|
} else {
|
||||||
|
allowed := strings.Split(*httpMethods, ",")
|
||||||
|
r.HandleFunc(hooksURL, hookHandler).Methods(allowed...)
|
||||||
|
}
|
||||||
|
|
||||||
addr := fmt.Sprintf("%s:%d", *ip, *port)
|
addr := fmt.Sprintf("%s:%d", *ip, *port)
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -79,6 +79,10 @@ func TestWebhook(t *testing.T) {
|
||||||
ip, port := serverAddress(t)
|
ip, port := serverAddress(t)
|
||||||
args := []string{fmt.Sprintf("-hooks=%s", configPath), fmt.Sprintf("-ip=%s", ip), fmt.Sprintf("-port=%s", port), "-verbose"}
|
args := []string{fmt.Sprintf("-hooks=%s", configPath), fmt.Sprintf("-ip=%s", ip), fmt.Sprintf("-port=%s", port), "-verbose"}
|
||||||
|
|
||||||
|
if len(tt.cliMethods) != 0 {
|
||||||
|
args = append(args, "-http-methods="+strings.Join(tt.cliMethods, ","))
|
||||||
|
}
|
||||||
|
|
||||||
// Setup a buffer for capturing webhook logs for later evaluation
|
// Setup a buffer for capturing webhook logs for later evaluation
|
||||||
b := &buffer{}
|
b := &buffer{}
|
||||||
|
|
||||||
|
|
@ -289,6 +293,7 @@ func webhookEnv() (env []string) {
|
||||||
var hookHandlerTests = []struct {
|
var hookHandlerTests = []struct {
|
||||||
desc string
|
desc string
|
||||||
id string
|
id string
|
||||||
|
cliMethods []string
|
||||||
method string
|
method string
|
||||||
headers map[string]string
|
headers map[string]string
|
||||||
contentType string
|
contentType string
|
||||||
|
|
@ -301,6 +306,7 @@ var hookHandlerTests = []struct {
|
||||||
{
|
{
|
||||||
"github",
|
"github",
|
||||||
"github",
|
"github",
|
||||||
|
nil,
|
||||||
"POST",
|
"POST",
|
||||||
map[string]string{"X-Hub-Signature": "f68df0375d7b03e3eb29b4cf9f9ec12e08f42ff8"},
|
map[string]string{"X-Hub-Signature": "f68df0375d7b03e3eb29b4cf9f9ec12e08f42ff8"},
|
||||||
"application/json",
|
"application/json",
|
||||||
|
|
@ -457,6 +463,7 @@ env: HOOK_head_commit.timestamp=2013-03-12T08:14:29-07:00
|
||||||
{
|
{
|
||||||
"bitbucket", // bitbucket sends their payload using uriencoded params.
|
"bitbucket", // bitbucket sends their payload using uriencoded params.
|
||||||
"bitbucket",
|
"bitbucket",
|
||||||
|
nil,
|
||||||
"POST",
|
"POST",
|
||||||
nil,
|
nil,
|
||||||
"application/x-www-form-urlencoded",
|
"application/x-www-form-urlencoded",
|
||||||
|
|
@ -468,6 +475,7 @@ env: HOOK_head_commit.timestamp=2013-03-12T08:14:29-07:00
|
||||||
{
|
{
|
||||||
"gitlab",
|
"gitlab",
|
||||||
"gitlab",
|
"gitlab",
|
||||||
|
nil,
|
||||||
"POST",
|
"POST",
|
||||||
map[string]string{"X-Gitlab-Event": "Push Hook"},
|
map[string]string{"X-Gitlab-Event": "Push Hook"},
|
||||||
"application/json",
|
"application/json",
|
||||||
|
|
@ -521,6 +529,7 @@ env: HOOK_head_commit.timestamp=2013-03-12T08:14:29-07:00
|
||||||
{
|
{
|
||||||
"xml",
|
"xml",
|
||||||
"xml",
|
"xml",
|
||||||
|
nil,
|
||||||
"POST",
|
"POST",
|
||||||
map[string]string{"Content-Type": "application/xml"},
|
map[string]string{"Content-Type": "application/xml"},
|
||||||
"application/xml",
|
"application/xml",
|
||||||
|
|
@ -540,6 +549,7 @@ env: HOOK_head_commit.timestamp=2013-03-12T08:14:29-07:00
|
||||||
{
|
{
|
||||||
"multipart",
|
"multipart",
|
||||||
"plex",
|
"plex",
|
||||||
|
nil,
|
||||||
"POST",
|
"POST",
|
||||||
nil,
|
nil,
|
||||||
"multipart/form-data; boundary=xxx",
|
"multipart/form-data; boundary=xxx",
|
||||||
|
|
@ -572,6 +582,7 @@ binary data
|
||||||
{
|
{
|
||||||
"missing-cmd-arg", // missing head_commit.author.email
|
"missing-cmd-arg", // missing head_commit.author.email
|
||||||
"github",
|
"github",
|
||||||
|
nil,
|
||||||
"POST",
|
"POST",
|
||||||
map[string]string{"X-Hub-Signature": "ab03955b9377f530aa298b1b6d273ae9a47e1e40"},
|
map[string]string{"X-Hub-Signature": "ab03955b9377f530aa298b1b6d273ae9a47e1e40"},
|
||||||
"application/json",
|
"application/json",
|
||||||
|
|
@ -614,6 +625,7 @@ env: HOOK_head_commit.timestamp=2013-03-12T08:14:29-07:00
|
||||||
{
|
{
|
||||||
"missing-env-arg", // missing head_commit.timestamp
|
"missing-env-arg", // missing head_commit.timestamp
|
||||||
"github",
|
"github",
|
||||||
|
nil,
|
||||||
"POST",
|
"POST",
|
||||||
map[string]string{"X-Hub-Signature": "2cf8b878cb6b74a25090a140fa4a474be04b97fa"},
|
map[string]string{"X-Hub-Signature": "2cf8b878cb6b74a25090a140fa4a474be04b97fa"},
|
||||||
"application/json",
|
"application/json",
|
||||||
|
|
@ -651,27 +663,29 @@ env: HOOK_head_commit.timestamp=2013-03-12T08:14:29-07:00
|
||||||
``,
|
``,
|
||||||
},
|
},
|
||||||
|
|
||||||
|
// test with disallowed global HTTP method
|
||||||
|
{"global disallowed method", "bitbucket", []string{"POST"}, "GET", nil, `{}`, "application/json", http.StatusMethodNotAllowed, ``, ``},
|
||||||
// test with disallowed HTTP method
|
// test with disallowed HTTP method
|
||||||
{"disallowed method", "github", "GET", nil, `{}`, "application/json", http.StatusMethodNotAllowed, ``, ``},
|
{"disallowed method", "github", nil, "GET", nil, `{}`, "application/json", http.StatusMethodNotAllowed, ``, ``},
|
||||||
// test with custom return code
|
// test with custom return code
|
||||||
{"empty payload", "github", "POST", nil, "application/json", `{}`, http.StatusBadRequest, `Hook rules were not satisfied.`, ``},
|
{"empty payload", "github", nil, "POST", nil, "application/json", `{}`, http.StatusBadRequest, `Hook rules were not satisfied.`, ``},
|
||||||
// test with custom invalid http code, should default to 200 OK
|
// test with custom invalid http code, should default to 200 OK
|
||||||
{"empty payload", "bitbucket", "POST", nil, "application/json", `{}`, http.StatusOK, `Hook rules were not satisfied.`, ``},
|
{"empty payload", "bitbucket", nil, "POST", nil, "application/json", `{}`, http.StatusOK, `Hook rules were not satisfied.`, ``},
|
||||||
// test with no configured http return code, should default to 200 OK
|
// test with no configured http return code, should default to 200 OK
|
||||||
{"empty payload", "gitlab", "POST", nil, "application/json", `{}`, http.StatusOK, `Hook rules were not satisfied.`, ``},
|
{"empty payload", "gitlab", nil, "POST", nil, "application/json", `{}`, http.StatusOK, `Hook rules were not satisfied.`, ``},
|
||||||
|
|
||||||
// test capturing command output
|
// test capturing command output
|
||||||
{"don't capture output on success by default", "capture-command-output-on-success-not-by-default", "POST", nil, "application/json", `{}`, http.StatusOK, ``, ``},
|
{"don't capture output on success by default", "capture-command-output-on-success-not-by-default", nil, "POST", nil, "application/json", `{}`, http.StatusOK, ``, ``},
|
||||||
{"capture output on success with flag set", "capture-command-output-on-success-yes-with-flag", "POST", nil, "application/json", `{}`, http.StatusOK, `arg: exit=0
|
{"capture output on success with flag set", "capture-command-output-on-success-yes-with-flag", nil, "POST", nil, "application/json", `{}`, http.StatusOK, `arg: exit=0
|
||||||
`, ``},
|
`, ``},
|
||||||
{"don't capture output on error by default", "capture-command-output-on-error-not-by-default", "POST", nil, "application/json", `{}`, http.StatusInternalServerError, `Error occurred while executing the hook's command. Please check your logs for more details.`, ``},
|
{"don't capture output on error by default", "capture-command-output-on-error-not-by-default", nil, "POST", nil, "application/json", `{}`, http.StatusInternalServerError, `Error occurred while executing the hook's command. Please check your logs for more details.`, ``},
|
||||||
{"capture output on error with extra flag set", "capture-command-output-on-error-yes-with-extra-flag", "POST", nil, "application/json", `{}`, http.StatusInternalServerError, `arg: exit=1
|
{"capture output on error with extra flag set", "capture-command-output-on-error-yes-with-extra-flag", nil, "POST", nil, "application/json", `{}`, http.StatusInternalServerError, `arg: exit=1
|
||||||
`, ``},
|
`, ``},
|
||||||
|
|
||||||
// Check logs
|
// Check logs
|
||||||
{"static params should pass", "static-params-ok", "POST", nil, "application/json", `{}`, http.StatusOK, "arg: passed\n", `(?s)command output: arg: passed`},
|
{"static params should pass", "static-params-ok", nil, "POST", nil, "application/json", `{}`, http.StatusOK, "arg: passed\n", `(?s)command output: arg: passed`},
|
||||||
{"command with space logs warning", "warn-on-space", "POST", nil, "application/json", `{}`, http.StatusInternalServerError, "Error occurred while executing the hook's command. Please check your logs for more details.", `(?s)unable to locate command.*use 'pass[-]arguments[-]to[-]command' to specify args`},
|
{"command with space logs warning", "warn-on-space", nil, "POST", nil, "application/json", `{}`, http.StatusInternalServerError, "Error occurred while executing the hook's command. Please check your logs for more details.", `(?s)unable to locate command.*use 'pass[-]arguments[-]to[-]command' to specify args`},
|
||||||
{"unsupported content type error", "github", "POST", map[string]string{"Content-Type": "nonexistent/format"}, "application/json", `{}`, http.StatusBadRequest, `Hook rules were not satisfied.`, `(?s)error parsing body payload due to unsupported content type header:`},
|
{"unsupported content type error", "github", nil, "POST", map[string]string{"Content-Type": "nonexistent/format"}, "application/json", `{}`, http.StatusBadRequest, `Hook rules were not satisfied.`, `(?s)error parsing body payload due to unsupported content type header:`},
|
||||||
}
|
}
|
||||||
|
|
||||||
// buffer provides a concurrency-safe bytes.Buffer to tests above.
|
// buffer provides a concurrency-safe bytes.Buffer to tests above.
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue