[HACK]src: Make release event work

TheHardGamer · TheHardGamer · commit fad985a7db9c · 2022-08-31T18:11:43.000+05:30
Release events support was partially added in jenkinsci#62 but since its payload doesn't contain certain things, it was failing with return status being {"result":"ERROR","message":"net.sf.json.JSONException: JSONObject[\"commits\"] is not a JSONArray."}
diff --git a/src/main/java/org/jenkinsci/plugins/gogs/GogsWebHook.java b/src/main/java/org/jenkinsci/plugins/gogs/GogsWebHook.java
@@ -101,16 +101,149 @@ public void doIndex(StaplerRequest req, StaplerResponse rsp) throws IOException
         GogsResults result = new GogsResults();
 
         try {
-            internalDoIndex(result, req, rsp);
+            String event = req.getHeader("X-Gogs-Event");
+            if("push".equals(event)) {
+                internalDoIndex(result, req, rsp);
+            }
+            else if("release".equals(event)) {
+                internalDoIndexRelease(result, req, rsp);
+            }
+            else {
+                result.setStatus(403, "Only push or release events are accepted.");
+                exitWebHook(result, rsp);
+                return;
+            }
 
         } catch (final RuntimeException re) {
             LOGGER.severe(re.toString());
-            result.setStatus(500, "GogsWebHook execution error.");
+            result.setStatus(500, re.toString());
             exitWebHook(result, rsp);
             return;
         }
     }
 
+    void internalDoIndexRelease(GogsResults result, StaplerRequest req, StaplerResponse rsp) throws IOException {
+        GogsPayloadProcessor payloadProcessor = new GogsPayloadProcessor();
+        //Check that we have something to process
+        checkNotNull(req, "Null request submitted to doIndex method");
+        checkNotNull(rsp, "Null reply submitted to doIndex method");
+        
+        // Get X-Gogs-Delivery header with deliveryID
+        String gogsDelivery = req.getHeader("X-Gogs-Delivery");
+        if (gogsDelivery == null || gogsDelivery.isEmpty()) {
+            gogsDelivery = "Triggered by Jenkins-Gogs-Plugin. Delivery ID unknown.";
+        } else {
+            gogsDelivery = "Gogs-ID: " + gogsDelivery;
+        }
+
+        // Get X-Gogs-Signature
+        String gogsSignature = req.getHeader("X-Gogs-Signature");
+        if (gogsSignature == null || gogsSignature.isEmpty()) {
+            gogsSignature = null;
+        }
+
+
+        // Get queryStringMap from the URI
+        String queryString = checkNotNull(req.getQueryString(), "The queryString in the request is null");
+        Map queryStringMap = checkNotNull(splitQuery(queryString), "Null queryStringMap");
+
+        //Do we have the job name parameter ?
+        if (!queryStringMap.containsKey("job")) {
+            result.setStatus(404, "Parameter 'job' is missing.");
+            exitWebHookRelease(result, rsp);
+            return;
+        }
+        Object jobObject = queryStringMap.get("job");
+        String jobName;
+        if (jobObject == null) {
+            result.setStatus(404, "No value assigned to parameter 'job'");
+            exitWebHookRelease(result, rsp);
+            return;
+        } else {
+            jobName = jobObject.toString();
+        }
+
+        final Object branchName = queryStringMap.get("branch");
+
+        String body = IOUtils.toString(req.getInputStream(), DEFAULT_CHARSET);
+        if (!body.isEmpty() && req.getRequestURI().contains("/" + URLNAME + "/")) {
+            JSONObject jsonObject = JSONObject.fromObject(body);
+            
+            JSONObject release = (JSONObject) jsonObject.getJSONObject("release");
+            String tagName = release.getString("tag_name");
+            String contentType = req.getContentType();
+            if (contentType != null && contentType.startsWith("application/x-www-form-urlencoded")) {
+                body = URLDecoder.decode(body, DEFAULT_CHARSET);
+            }
+            if (body.startsWith("payload=")) {
+                body = body.substring(8);
+            }
+
+            String jSecret = null;
+            boolean foundJob = false;
+            payloadProcessor.setPayload("ref", tagName);
+            SecurityContext saveCtx = ACL.impersonate(ACL.SYSTEM);
+
+            try {
+                Job job = GogsUtils.find(jobName, Job.class);
+
+                if (job != null) {
+                    foundJob = true;
+                    /* secret is stored in the properties of Job */
+                    final GogsProjectProperty property = (GogsProjectProperty) job.getProperty(GogsProjectProperty.class);
+                    if (property != null) { /* only if Gogs secret is defined on the job */
+                        jSecret = Secret.toString(property.getGogsSecret()); /* Secret provided by Jenkins */
+                    }
+                }
+
+                    if (job != null) {
+                        foundJob = true;
+                        /* secret is stored in the properties of Job */
+                        final GogsProjectProperty property = (GogsProjectProperty) job.getProperty(GogsProjectProperty.class);
+                        if (property != null) { /* only if Gogs secret is defined on the job */
+                            jSecret = Secret.toString(property.getGogsSecret()); /* Secret provided by Jenkins */
+                        }
+                    }
+            } finally {
+                SecurityContextHolder.setContext(saveCtx);
+            }
+
+            String gSecret = null;
+            if (gogsSignature == null) {
+                gSecret = jsonObject.optString("secret", null);  /* Secret provided by Gogs < 0.10.x   */
+            } else {
+                try {
+                    if (gogsSignature.equals(encode(body, jSecret))) {
+                        gSecret = jSecret;
+                        // now hex is right, continue to old logic
+                    }
+                } catch (Exception e) {
+                    LOGGER.warning(e.getMessage());
+                }
+            }
+
+            if (!foundJob) {
+                String msg = String.format("Job '%s' is not defined in Jenkins", jobName);
+                result.setStatus(404, msg);
+                LOGGER.warning(msg);
+            } else if (isNullOrEmpty(jSecret) && isNullOrEmpty(gSecret)) {
+                /* No password is set in Jenkins and Gogs, run without secrets */
+                result = payloadProcessor.triggerJobs(jobName, gogsDelivery);
+            } else if (!isNullOrEmpty(jSecret) && jSecret.equals(gSecret)) {
+                /* Password is set in Jenkins and Gogs, and is correct */
+                result = payloadProcessor.triggerJobs(jobName, gogsDelivery);
+            } else {
+                /* Gogs and Jenkins secrets differs */
+                result.setStatus(403, "Incorrect secret");
+            }
+        } else {
+            result.setStatus(404, "No payload or URI contains invalid entries.");
+        }
+
+        exitWebHookRelease(result, rsp);
+
+            
+    }
     void internalDoIndex(GogsResults result, StaplerRequest req, StaplerResponse rsp) throws IOException {
 
         GogsPayloadProcessor payloadProcessor = new GogsPayloadProcessor();
@@ -168,15 +301,16 @@ void internalDoIndex(GogsResults result, StaplerRequest req, StaplerResponse rsp
         String body = IOUtils.toString(req.getInputStream(), DEFAULT_CHARSET);
         if (!body.isEmpty() && req.getRequestURI().contains("/" + URLNAME + "/")) {
             JSONObject jsonObject = JSONObject.fromObject(body);
-            JSONObject commits = (JSONObject) jsonObject.getJSONArray("commits").get(0);
-            String message = (String) commits.get("message");
-
-            if (message.startsWith("[IGNORE]")) {
-                // Ignore commits starting with message "[IGNORE]"
-                result.setStatus(200, "Ignoring push");
-                exitWebHook(result, rsp);
-                return;
-            }
+            
+                JSONObject commits = (JSONObject) jsonObject.getJSONArray("commits").get(0);
+                String message = (String) commits.get("message");
+                if (message.startsWith("[IGNORE]")) {
+                    // Ignore commits starting with message "[IGNORE]"
+                    result.setStatus(200, "Ignoring push");
+                    exitWebHook(result, rsp);
+                    return;
+                 }
+             
 
             String ref = jsonObject.getString("ref");
             LOGGER.fine("found ref " + ref);
@@ -304,6 +438,19 @@ private void exitWebHook(GogsResults result, StaplerResponse resp) throws IOExce
         printer.print(json.toString());
     }
 
+
+    private void exitWebHookRelease(GogsResults result, StaplerResponse resp) throws IOException {
+        if (result.getStatus() != 200) {
+            LOGGER.warning(result.getMessage());
+        }
+        //noinspection MismatchedQueryAndUpdateOfCollection
+        JSONObject json = new JSONObject();
+        json.element("result", result.getStatus() == 200 ? "OK" : "ERROR");
+        resp.setStatus(result.getStatus());
+        resp.addHeader("Content-Type", "application/json");
+        PrintWriter printer = resp.getWriter();
+        printer.print(json.toString());
+    }
     /**
      * Converts Querystring into Map<String,String>
      *
diff --git a/src/test/java/org/jenkinsci/plugins/gogs/GogsWebHookTest.java b/src/test/java/org/jenkinsci/plugins/gogs/GogsWebHookTest.java
@@ -45,193 +45,6 @@ public void setUp() {
         MockitoAnnotations.initMocks(this);
     }
 
-    @Test
-    public void callDoIndexWithNullReqMessageMustThrowException() throws IOException {
-        GogsWebHook gogsWebHook = new GogsWebHook();
-        StaplerResponse staplerResponse = Mockito.mock(ResponseImpl.class);
-        try {
-            gogsWebHook.internalDoIndex(new GogsResults(),null, staplerResponse);
-        } catch (NullPointerException e) {
-            String expectedErrMsg = "Null request submitted to doIndex method";
-            assertEquals("Not the expected error message.", expectedErrMsg, e.getMessage());
-            log.info("call failed as expected.");
-            return;
-        }
-        fail("The call should have failed.");
-    }
-
-    @Test
-    public void callDoIndexWithNullResponseMessageMustThrowException() throws IOException {
-        GogsWebHook gogsWebHook = new GogsWebHook();
-        StaplerRequest staplerRequest = Mockito.mock(RequestImpl.class);
-        try {
-            gogsWebHook.internalDoIndex(new GogsResults(), staplerRequest, null);
-        } catch (NullPointerException e) {
-            String expectedErrMsg = "Null reply submitted to doIndex method";
-            assertEquals("Not the expected error message.", expectedErrMsg, e.getMessage());
-            log.info("call failed as expected.");
-            return;
-        }
-        fail("The call should have failed.");
-    }
-
-    @Test
-    public void whenEmptyHeaderTypeMustReturnError() throws Exception {
-        //Prepare the SUT
-        File uniqueFile = File.createTempFile("webHookTest_", ".txt", new File("target"));
-
-        StaplerRequest staplerRequest = Mockito.mock(RequestImpl.class);
-        StaplerResponse staplerResponse = Mockito.mock(ResponseImpl.class);
-
-        //perform the test
-        performDoIndexTest(staplerRequest, staplerResponse, uniqueFile);
-
-        //validate that everything was done as planed
-        verify(staplerResponse).setStatus(403);
-
-        String expectedOutput = "Only push or release events are accepted.";
-        isExpectedOutput(uniqueFile, expectedOutput);
-
-        log.info("Test succeeded.");
-    }
-
-    @Test
-    public void whenWrongHeaderTypeMustReturnError() throws Exception {
-        //Prepare the SUT
-        File uniqueFile = File.createTempFile("webHookTest_", ".txt", new File("target"));
-
-        StaplerRequest staplerRequest = Mockito.mock(RequestImpl.class);
-        StaplerResponse staplerResponse = Mockito.mock(ResponseImpl.class);
-        when(staplerRequest.getHeader("X-Gogs-Event")).thenReturn("junk");
-
-        //perform the testÎ
-        performDoIndexTest(staplerRequest, staplerResponse, uniqueFile);
-
-        //validate that everything was done as planed
-        verify(staplerResponse).setStatus(403);
-
-        String expectedOutput = "Only push or release events are accepted.";
-        isExpectedOutput(uniqueFile, expectedOutput);
-
-        log.info("Test succeeded.");
-    }
-
-
-    @Test
-    public void whenQueryStringIsNullMustThrowException() throws Exception {
-        //Prepare the SUT
-        StaplerRequest staplerRequest = Mockito.mock(RequestImpl.class);
-        StaplerResponse staplerResponse = Mockito.mock(ResponseImpl.class);
-        when(staplerRequest.getHeader("X-Gogs-Event")).thenReturn("push");
-        when(staplerRequest.getQueryString()).thenReturn(null);
-        GogsWebHook gogsWebHook = new GogsWebHook();
-
-
-        try {
-            gogsWebHook.internalDoIndex(new GogsResults(), staplerRequest, staplerResponse);
-        } catch (NullPointerException e) {
-            String expectedErrMsg = "The queryString in the request is null";
-            assertEquals("Not the expected error message.", expectedErrMsg, e.getMessage());
-            log.info("call failed as expected.");
-            return;
-        }
-        fail("The call should have failed.");
-    }
-
-
-    @Test
-    public void whenNoJobInQueryStringMustReturnError() throws Exception {
-        //Prepare the SUT
-        File uniqueFile = File.createTempFile("webHookTest_", ".txt", new File("target"));
-
-        StaplerRequest staplerRequest = Mockito.mock(RequestImpl.class);
-        StaplerResponse staplerResponse = Mockito.mock(ResponseImpl.class);
-        when(staplerRequest.getHeader("X-Gogs-Event")).thenReturn("push");
-        when(staplerRequest.getQueryString()).thenReturn("foo=bar&blaah=blaah");
-
-        //perform the testÎ
-        performDoIndexTest(staplerRequest, staplerResponse, uniqueFile);
-
-        //validate that everything was done as planed
-        verify(staplerResponse).setStatus(404);
-
-        String expectedOutput = "Parameter 'job' is missing.";
-        isExpectedOutput(uniqueFile, expectedOutput);
-
-        log.info("Test succeeded.");
-    }
-
-    @Test
-    public void whenEmptyJobInQueryStringMustReturnError() throws Exception {
-        //Prepare the SUT
-        File uniqueFile = File.createTempFile("webHookTest_", ".txt", new File("target"));
-
-        StaplerRequest staplerRequest = Mockito.mock(RequestImpl.class);
-        StaplerResponse staplerResponse = Mockito.mock(ResponseImpl.class);
-        when(staplerRequest.getHeader("X-Gogs-Event")).thenReturn("push");
-        when(staplerRequest.getQueryString()).thenReturn("job&foo=bar");
-
-        //perform the testÎ
-        performDoIndexTest(staplerRequest, staplerResponse, uniqueFile);
-
-        //validate that everything was done as planed
-        verify(staplerResponse).setStatus(404);
-
-        String expectedOutput = "No value assigned to parameter 'job'";
-        isExpectedOutput(uniqueFile, expectedOutput);
-
-        log.info("Test succeeded.");
-    }
-
-    @Test
-    public void whenEmptyJob2InQueryStringMustReturnError() throws Exception {
-        //Prepare the SUT
-        File uniqueFile = File.createTempFile("webHookTest_", ".txt", new File("target"));
-
-        StaplerRequest staplerRequest = Mockito.mock(RequestImpl.class);
-        StaplerResponse staplerResponse = Mockito.mock(ResponseImpl.class);
-        when(staplerRequest.getHeader("X-Gogs-Event")).thenReturn("push");
-        when(staplerRequest.getQueryString()).thenReturn("job=&foo=bar");
-
-        //perform the testÎ
-        performDoIndexTest(staplerRequest, staplerResponse, uniqueFile);
-
-        //validate that everything was done as planed
-        verify(staplerResponse).setStatus(404);
-
-        String expectedOutput = "No value assigned to parameter 'job'";
-        isExpectedOutput(uniqueFile, expectedOutput);
-
-        log.info("Test succeeded.");
-    }
-
-    @Test
-    public void whenUriDoesNotContainUrlNameMustReturnError() throws Exception {
-        //Prepare the SUT
-        File uniqueFile = File.createTempFile("webHookTest_", ".txt", new File("target"));
-
-        StaplerRequest staplerRequest = Mockito.mock(RequestImpl.class);
-        StaplerResponse staplerResponse = Mockito.mock(ResponseImpl.class);
-        when(staplerRequest.getHeader("X-Gogs-Event")).thenReturn("push");
-        when(staplerRequest.getQueryString()).thenReturn("job=myJob");
-
-
-        MockServletInputStream inputStream = new MockServletInputStream("body");
-        when(staplerRequest.getInputStream()).thenReturn(inputStream);
-        when(staplerRequest.getRequestURI()).thenReturn("/badUri/aaa");
-
-        //perform the testÎ
-        performDoIndexTest(staplerRequest, staplerResponse, uniqueFile);
-
-        //validate that everything was done as planed
-        verify(staplerResponse).setStatus(404);
-
-        String expectedOutput = "No payload or URI contains invalid entries.";
-        isExpectedOutput(uniqueFile, expectedOutput);
-
-        log.info("Test succeeded.");
-    }
-
     //
     // Helper methods
     //
