Mascali
/
raspisms
mirror of https://github.com/RaspbianFrance/raspisms.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

update webhook to add signature

This commit is contained in:
osaajani 2021-01-30 11:12:30 +01:00
parent 3b5733e31a
commit b5035101b0
1 changed files with 16 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
controllers/internals/Webhook.php
View File

@ -13,6 +13,8 @@ namespace controllers\internals;
class Webhook extends StandardController class Webhook extends StandardController
{ {
const HMAC_ALGO = 'sha256';
protected $bdd; protected $bdd;
protected $model; protected $model;
@ -105,6 +107,7 @@ class Webhook extends StandardController
public function trigger(int $id_user, string $type, array $sms) public function trigger(int $id_user, string $type, array $sms)
{ {
$internal_setting = new Setting($this->bdd); $internal_setting = new Setting($this->bdd);
$internal_user = new User($this->bdd);
$settings = $internal_setting->gets_for_user($id_user); $settings = $internal_setting->gets_for_user($id_user);
if (!$settings['webhook'] ?? false) if (!$settings['webhook'] ?? false)
@ -112,13 +115,22 @@ class Webhook extends StandardController
return false; return false;
} }
$user = $internal_user->get($id_user);
if (!$user)
{
return false;
}
$webhooks = $this->gets_for_type_and_user($id_user, $type); $webhooks = $this->gets_for_type_and_user($id_user, $type);
foreach ($webhooks as $webhook) foreach ($webhooks as $webhook)
{ {
$timestamp = time();
$message = [ $message = [
'url' => $webhook['url'], 'url' => $webhook['url'],
'data' => [ 'data' => [
'webhook_timestamp' => $timestamp,
'webhook_type' => $webhook['type'], 'webhook_type' => $webhook['type'],
'webhook_random_id' => $timestamp . '-' . bin2hex(openssl_random_pseudo_bytes(8))
'id' => $sms['id'], 'id' => $sms['id'],
'at' => $sms['at'], 'at' => $sms['at'],
'text' => $sms['text'], 'text' => $sms['text'],
@ -127,6 +139,10 @@ class Webhook extends StandardController
], ],
]; ];
//signature is hexa string representing hmac sha256 of user_api_key::webhook_timestamp::webhook_random_id
$signature_clear = $user['api_key'] . '.' . $message['data']['webhook_timestamp'] . '.' . $message['data']['webhook_random_id'];
$message['data']['webhook_signature'] = hash_hmac(self::HMAC_ALGO, $signature_clear, $user['api_key']);
$error_code = null; $error_code = null;
$queue = msg_get_queue(QUEUE_ID_WEBHOOK); $queue = msg_get_queue(QUEUE_ID_WEBHOOK);
$success = msg_send($queue, QUEUE_TYPE_WEBHOOK, $message, true, true, $error_code); $success = msg_send($queue, QUEUE_TYPE_WEBHOOK, $message, true, true, $error_code);