sheppy/simple-webhook-handler
1
0
Fork 0
mirror of https://github.com/FAUSheppy/simple-webhook-handler synced 2025-12-08 21:18:33 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity

add request matching checks/errors

Browse Source
This commit is contained in:
Johnathen Sheppard
2019-10-06 11:50:08 +02:00
parent e40126f1ab
commit ac3f34e054
1 changed files with 13 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
webhook-listener.py
View File

@@ -4,6 +4,9 @@ import argparse
import json import json
app = flask.Flask("webhook-listener") app = flask.Flask("webhook-listener")
SECRET_TOKEN_HEADER = "X-Gitlab-Token"
PROJECT_IDENTIFIER = "web_url"
config = {}
##### FRONTEND PATHS ######## ##### FRONTEND PATHS ########
@app.route('/', methods=["GET","POST"]) @app.route('/', methods=["GET","POST"])
@@ -11,6 +14,16 @@ def rootPage():
if flask.request.method == "GET": if flask.request.method == "GET":
return "Webhook Listener ist running" return "Webhook Listener ist running"
else: else:
data = flask.request.json
# check request against configuration #
if data[PROJECT_IDENTIFIER] not in config:
return ("Rejected: project not identified in config", 400)
if SECRET_TOKEN_HEADER not in flask.request.headers:
return ("Rejected: secret token not found in request", 403)
if config[data[PROJECT_IDENTIFIER]] != flask.request.headers[SECRET_TOKEN_HEADER]:
return ("Rejected: secret token found but is mismatch", 403)
print(json.dumps(flask.request.json)) print(json.dumps(flask.request.json))
def readExecutionConfig(): def readExecutionConfig():