mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
33490 Commits
59 Branches
Tree: a7431823ca
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'a7431823ca'
${ noResults }
sonarqube/server/sonar-webserver-webapi/src/main/java/org/sonar/server/webhook/ws/UpdateAction.java

UpdateAction.java 6.7KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2023 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.server.webhook.ws;

  21. 

  22. import java.util.Optional;

  23. import javax.annotation.Nullable;

  24. import org.sonar.api.server.ws.Request;

  25. import org.sonar.api.server.ws.Response;

  26. import org.sonar.api.server.ws.WebService;

  27. import org.sonar.db.DbClient;

  28. import org.sonar.db.DbSession;

  29. import org.sonar.db.project.ProjectDto;

  30. import org.sonar.db.webhook.WebhookDto;

  31. import org.sonar.server.component.ComponentFinder;

  32. import org.sonar.server.user.UserSession;

  33. 

  34. import static org.apache.commons.lang.StringUtils.isBlank;

  35. import static org.sonar.server.exceptions.NotFoundException.checkFoundWithOptional;

  36. import static org.sonar.server.webhook.ws.WebhooksWsParameters.KEY_PARAM;

  37. import static org.sonar.server.webhook.ws.WebhooksWsParameters.KEY_PARAM_MAXIMUM_LENGTH;

  38. import static org.sonar.server.webhook.ws.WebhooksWsParameters.NAME_PARAM;

  39. import static org.sonar.server.webhook.ws.WebhooksWsParameters.NAME_PARAM_MAXIMUM_LENGTH;

  40. import static org.sonar.server.webhook.ws.WebhooksWsParameters.SECRET_PARAM;

  41. import static org.sonar.server.webhook.ws.WebhooksWsParameters.SECRET_PARAM_MAXIMUM_LENGTH;

  42. import static org.sonar.server.webhook.ws.WebhooksWsParameters.UPDATE_ACTION;

  43. import static org.sonar.server.webhook.ws.WebhooksWsParameters.URL_PARAM;

  44. import static org.sonar.server.webhook.ws.WebhooksWsParameters.URL_PARAM_MAXIMUM_LENGTH;

  45. import static org.sonar.server.ws.KeyExamples.KEY_PROJECT_EXAMPLE_001;

  46. import static org.sonar.server.ws.KeyExamples.NAME_WEBHOOK_EXAMPLE_001;

  47. import static org.sonar.server.ws.KeyExamples.URL_WEBHOOK_EXAMPLE_001;

  48. 

  49. public class UpdateAction implements WebhooksWsAction {

  50. 

  51.   private final DbClient dbClient;

  52.   private final UserSession userSession;

  53.   private final WebhookSupport webhookSupport;

  54.   private final ComponentFinder componentFinder;

  55. 

  56.   public UpdateAction(DbClient dbClient, UserSession userSession, WebhookSupport webhookSupport, ComponentFinder componentFinder) {

  57.     this.dbClient = dbClient;

  58.     this.userSession = userSession;

  59.     this.webhookSupport = webhookSupport;

  60.     this.componentFinder = componentFinder;

  61.   }

  62. 

  63.   @Override

  64.   public void define(WebService.NewController controller) {

  65.     WebService.NewAction action = controller.createAction(UPDATE_ACTION)

  66.       .setPost(true)

  67.       .setDescription("Update a Webhook.<br>" +

  68.         "Requires 'Administer' permission on the specified project, or global 'Administer' permission.")

  69.       .setSince("7.1")

  70.       .setHandler(this);

  71. 

  72.     action.createParam(KEY_PARAM)

  73.       .setRequired(true)

  74.       .setMaximumLength(KEY_PARAM_MAXIMUM_LENGTH)

  75.       .setDescription("The key of the webhook to be updated, " +

  76.         "auto-generated value can be obtained through api/webhooks/create or api/webhooks/list")

  77.       .setExampleValue(KEY_PROJECT_EXAMPLE_001);

  78. 

  79.     action.createParam(NAME_PARAM)

  80.       .setRequired(true)

  81.       .setMaximumLength(NAME_PARAM_MAXIMUM_LENGTH)

  82.       .setDescription("new name of the webhook")

  83.       .setExampleValue(NAME_WEBHOOK_EXAMPLE_001);

  84. 

  85.     action.createParam(URL_PARAM)

  86.       .setRequired(true)

  87.       .setMaximumLength(URL_PARAM_MAXIMUM_LENGTH)

  88.       .setDescription("new url to be called by the webhook")

  89.       .setExampleValue(URL_WEBHOOK_EXAMPLE_001);

  90. 

  91.     action.createParam(SECRET_PARAM)

  92.       .setRequired(false)

  93.       .setMaximumLength(SECRET_PARAM_MAXIMUM_LENGTH)

  94.       .setDescription("If provided, secret will be used as the key to generate the HMAC hex (lowercase) digest value in the 'X-Sonar-Webhook-HMAC-SHA256' header. " +

  95.         "If blank, any secret previously configured will be removed. If not set, the secret will remain unchanged.")

  96.       .setExampleValue("your_secret")

  97.       .setSince("7.8");

  98.   }

  99. 

  100.   @Override

  101.   public void handle(Request request, Response response) throws Exception {

  102.     userSession.checkLoggedIn();

  103. 

  104.     String webhookKey = request.mandatoryParam(KEY_PARAM);

  105.     String name = request.mandatoryParam(NAME_PARAM);

  106.     String url = request.mandatoryParam(URL_PARAM);

  107.     String secret = request.param(SECRET_PARAM);

  108. 

  109.     webhookSupport.checkUrlPattern(url, "Url parameter with value '%s' is not a valid url", url);

  110. 

  111.     try (DbSession dbSession = dbClient.openSession(false)) {

  112. 

  113.       Optional<WebhookDto> dtoOptional = dbClient.webhookDao().selectByUuid(dbSession, webhookKey);

  114.       WebhookDto webhookDto = checkFoundWithOptional(dtoOptional, "No webhook with key '%s'", webhookKey);

  115. 

  116.       String projectUuid = webhookDto.getProjectUuid();

  117.       if (projectUuid != null) {

  118.         ProjectDto projectDto = componentFinder.getProjectByUuid(dbSession, projectUuid);

  119.         webhookSupport.checkPermission(projectDto);

  120.         updateWebhook(dbSession, webhookDto, name, url, secret, projectDto.getKey(), projectDto.getName());

  121.       } else {

  122.         webhookSupport.checkPermission();

  123.         updateWebhook(dbSession, webhookDto, name, url, secret, null, null);

  124.       }

  125. 

  126.       dbSession.commit();

  127.     }

  128. 

  129.     response.noContent();

  130.   }

  131. 

  132.   private void updateWebhook(DbSession dbSession, WebhookDto dto, String name, String url, @Nullable String secret,

  133.     @Nullable String projectKey, @Nullable String projectName) {

  134.     dto

  135.       .setName(name)

  136.       .setUrl(url);

  137.     setSecret(dto, secret);

  138.     dbClient.webhookDao().update(dbSession, dto, projectKey, projectName);

  139.   }

  140. 

  141.   /**

  142.    * <p>Sets the secret of the webhook. The secret is set according to the following rules:

  143.    * <ul>

  144.    *   <li>If the secret is null, it will remain unchanged.</li>

  145.    *   <li>If the secret is blank (""), it will be removed.</li>

  146.    *   <li>If the secret is not null or blank, it will be set to the provided value.</li>

  147.    * </ul>

  148.    * </p>

  149.    * @param dto The webhook to update. It holds the old secret value.

  150.    * @param secret The new secret value. It can be null or blank.

  151.    */

  152.   private static void setSecret(WebhookDto dto, @Nullable String secret) {

  153.     if (secret != null) {

  154.       if (isBlank(secret)) {

  155.         dto.setSecret(null);

  156.       } else {

  157.         dto.setSecret(secret);

  158.       }

  159.     }

  160.   }

  161. 

  162. }