rageshake/main.go

/*
Copyright 2017 Vector Creations Ltd

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/

package main

import (
	"context"
	"crypto/subtle"
	"flag"
	"fmt"
	"io/ioutil"
	"log"
	"net"
	"net/http"
	"os"
	"strings"
	"time"

	"github.com/google/go-github/github"
	"golang.org/x/oauth2"

	yaml "gopkg.in/yaml.v2"
)

var configPath = flag.String("config", "rageshake.yaml", "The path to the config file. For more information, see the config file in this repository.")
var bindAddr = flag.String("listen", ":9110", "The port to listen on.")

type config struct {
	// Username and password required to access the bug report listings
	BugsUser string `yaml:"listings_auth_user"`
	BugsPass string `yaml:"listings_auth_pass"`

	// External URI to /api
	APIPrefix string `yaml:"api_prefix"`

	// A GitHub personal access token, to create a GitHub issue for each report.
	GithubToken string `yaml:"github_token"`

	GithubProjectMappings map[string]string `yaml:"github_project_mappings"`

	SlackWebhookURL string `yaml:"slack_webhook_url"`

	EmailAddresses []string `yaml:"email_addresses"`

	EmailFrom string `yaml:"email_from"`

	SMTPServer string `yaml:"smtp_server"`

	SMTPUsername string `yaml:"smtp_username"`

	SMTPPassword string `yaml:"smtp_password"`
}

func basicAuth(handler http.Handler, username, password, realm string) http.Handler {
	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		user, pass, ok := r.BasicAuth() // pull creds from the request

		// check user and pass securely
		if !ok || subtle.ConstantTimeCompare([]byte(user), []byte(username)) != 1 || subtle.ConstantTimeCompare([]byte(pass), []byte(password)) != 1 {
			w.Header().Set("WWW-Authenticate", `Basic realm="`+realm+`"`)
			w.WriteHeader(401)
			w.Write([]byte("Unauthorised.\n"))
			return
		}

		handler.ServeHTTP(w, r)
	})
}

func main() {
	flag.Parse()

	cfg, err := loadConfig(*configPath)
	if err != nil {
		log.Fatalf("Invalid config file: %s", err)
	}

	var ghClient *github.Client

	if cfg.GithubToken == "" {
		fmt.Println("No github_token configured. Reporting bugs to github is disabled.")
	} else {
		ctx := context.Background()
		ts := oauth2.StaticTokenSource(
			&oauth2.Token{AccessToken: cfg.GithubToken},
		)
		tc := oauth2.NewClient(ctx, ts)
		tc.Timeout = time.Duration(5) * time.Minute
		ghClient = github.NewClient(tc)
	}

	var slack *slackClient

	if cfg.SlackWebhookURL == "" {
		fmt.Println("No slack_webhook_url configured. Reporting bugs to slack is disabled.")
	} else {
		slack = newSlackClient(cfg.SlackWebhookURL)
	}

	if len(cfg.EmailAddresses) > 0 && cfg.SMTPServer == "" {
		log.Fatal("Email address(es) specified but no smtp_server configured. Wrong configuration, aborting...")
	}

	apiPrefix := cfg.APIPrefix
	if apiPrefix == "" {
		_, port, err := net.SplitHostPort(*bindAddr)
		if err != nil {
			log.Fatal(err)
		}
		apiPrefix = fmt.Sprintf("http://localhost:%s/api", port)
	} else {
		// remove trailing /
		apiPrefix = strings.TrimRight(apiPrefix, "/")
	}
	log.Printf("Using %s/listing as public URI", apiPrefix)

	http.Handle("/api/submit", &submitServer{ghClient, apiPrefix, slack, cfg})

	// Make sure bugs directory exists
	_ = os.Mkdir("bugs", os.ModePerm)

	// serve files under "bugs"
	ls := &logServer{"bugs"}
	fs := http.StripPrefix("/api/listing/", ls)

	// set auth if env vars exist
	usr := cfg.BugsUser
	pass := cfg.BugsPass
	if usr == "" || pass == "" {
		fmt.Println("No listings_auth_user/pass configured. No authentication is running for /api/listing")
	} else {
		fs = basicAuth(fs, usr, pass, "Riot bug reports")
	}
	http.Handle("/api/listing/", fs)

	log.Println("Listening on", *bindAddr)

	log.Fatal(http.ListenAndServe(*bindAddr, nil))
}

func loadConfig(configPath string) (*config, error) {
	contents, err := ioutil.ReadFile(configPath)
	if err != nil {
		return nil, err
	}
	var cfg config
	if err = yaml.Unmarshal(contents, &cfg); err != nil {
		return nil, err
	}
	return &cfg, nil
}
Copyright 2017-04-04 21:29:18 +05:30			`/*`
			`Copyright 2017 Vector Creations Ltd`

			`Licensed under the Apache License, Version 2.0 (the "License");`
			`you may not use this file except in compliance with the License.`
			`You may obtain a copy of the License at`

			`http://www.apache.org/licenses/LICENSE-2.0`

			`Unless required by applicable law or agreed to in writing, software`
			`distributed under the License is distributed on an "AS IS" BASIS,`
			`WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`See the License for the specific language governing permissions and`
			`limitations under the License.`
			`*/`

Give rageshake script its own repo This was previously at https://github.com/vector-im/riot-web/blob/develop/scripts/rageshake.go, but it's not really exclusive to riot-web, and given I'm about to add some more complexity to it, I'd like for it to be in its own repo. 2017-04-04 15:55:00 +05:30			`package main`

			`import (`
Create a (template) github issue on report 2017-04-07 20:13:19 +05:30			`"context"`
Give rageshake script its own repo This was previously at https://github.com/vector-im/riot-web/blob/develop/scripts/rageshake.go, but it's not really exclusive to riot-web, and given I'm about to add some more complexity to it, I'd like for it to be in its own repo. 2017-04-04 15:55:00 +05:30			`"crypto/subtle"`
Switch to yaml for our config data (#5) Env vars are getting unwieldy, and it's going to get worse. 2017-04-10 19:09:10 +05:30			`"flag"`
Give rageshake script its own repo This was previously at https://github.com/vector-im/riot-web/blob/develop/scripts/rageshake.go, but it's not really exclusive to riot-web, and given I'm about to add some more complexity to it, I'd like for it to be in its own repo. 2017-04-04 15:55:00 +05:30			`"fmt"`
Switch to yaml for our config data (#5) Env vars are getting unwieldy, and it's going to get worse. 2017-04-10 19:09:10 +05:30			`"io/ioutil"`
Give rageshake script its own repo This was previously at https://github.com/vector-im/riot-web/blob/develop/scripts/rageshake.go, but it's not really exclusive to riot-web, and given I'm about to add some more complexity to it, I'd like for it to be in its own repo. 2017-04-04 15:55:00 +05:30			`"log"`
Make github issue a bit more useful (#7) * include the text from the report and other useful info * include a link to the report details * Pick github repo based on submitted app name 2017-04-12 19:36:40 +05:30			`"net"`
Give rageshake script its own repo This was previously at https://github.com/vector-im/riot-web/blob/develop/scripts/rageshake.go, but it's not really exclusive to riot-web, and given I'm about to add some more complexity to it, I'd like for it to be in its own repo. 2017-04-04 15:55:00 +05:30			`"net/http"`
			`"os"`
Make github issue a bit more useful (#7) * include the text from the report and other useful info * include a link to the report details * Pick github repo based on submitted app name 2017-04-12 19:36:40 +05:30			`"strings"`
			`"time"`
Switch to yaml for our config data (#5) Env vars are getting unwieldy, and it's going to get worse. 2017-04-10 19:09:10 +05:30
Add email support (#35) Co-authored-by: Richard van der Hoff <1389908+richvdh@users.noreply.github.com> 2020-09-16 14:55:56 +05:30			`"github.com/google/go-github/github"`
			`"golang.org/x/oauth2"`

Switch to yaml for our config data (#5) Env vars are getting unwieldy, and it's going to get worse. 2017-04-10 19:09:10 +05:30			`yaml "gopkg.in/yaml.v2"`
Give rageshake script its own repo This was previously at https://github.com/vector-im/riot-web/blob/develop/scripts/rageshake.go, but it's not really exclusive to riot-web, and given I'm about to add some more complexity to it, I'd like for it to be in its own repo. 2017-04-04 15:55:00 +05:30			`)`

Switch to yaml for our config data (#5) Env vars are getting unwieldy, and it's going to get worse. 2017-04-10 19:09:10 +05:30			`var configPath = flag.String("config", "rageshake.yaml", "The path to the config file. For more information, see the config file in this repository.")`
			`var bindAddr = flag.String("listen", ":9110", "The port to listen on.")`

			`type config struct {`
			`// Username and password required to access the bug report listings`
			BugsUser string `yaml:"listings_auth_user"`
			BugsPass string `yaml:"listings_auth_pass"`

Make github issue a bit more useful (#7) * include the text from the report and other useful info * include a link to the report details * Pick github repo based on submitted app name 2017-04-12 19:36:40 +05:30			`// External URI to /api`
			APIPrefix string `yaml:"api_prefix"`

Switch to yaml for our config data (#5) Env vars are getting unwieldy, and it's going to get worse. 2017-04-10 19:09:10 +05:30			`// A GitHub personal access token, to create a GitHub issue for each report.`
			GithubToken string `yaml:"github_token"`
Make github issue a bit more useful (#7) * include the text from the report and other useful info * include a link to the report details * Pick github repo based on submitted app name 2017-04-12 19:36:40 +05:30
			GithubProjectMappings map[string]string `yaml:"github_project_mappings"`
Add support for Slack notifications Signed-off-by: Manuel Stahl <manuel.stahl@awesome-technologies.de> 2019-03-07 19:12:08 +05:30
			SlackWebhookURL string `yaml:"slack_webhook_url"`
Add email support (#35) Co-authored-by: Richard van der Hoff <1389908+richvdh@users.noreply.github.com> 2020-09-16 14:55:56 +05:30
			EmailAddresses []string `yaml:"email_addresses"`

			EmailFrom string `yaml:"email_from"`

			SMTPServer string `yaml:"smtp_server"`

			SMTPUsername string `yaml:"smtp_username"`

			SMTPPassword string `yaml:"smtp_password"`
Switch to yaml for our config data (#5) Env vars are getting unwieldy, and it's going to get worse. 2017-04-10 19:09:10 +05:30			`}`

Give rageshake script its own repo This was previously at https://github.com/vector-im/riot-web/blob/develop/scripts/rageshake.go, but it's not really exclusive to riot-web, and given I'm about to add some more complexity to it, I'd like for it to be in its own repo. 2017-04-04 15:55:00 +05:30			`func basicAuth(handler http.Handler, username, password, realm string) http.Handler {`
			`return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
			`user, pass, ok := r.BasicAuth() // pull creds from the request`

			`// check user and pass securely`
			`if !ok \|\| subtle.ConstantTimeCompare([]byte(user), []byte(username)) != 1 \|\| subtle.ConstantTimeCompare([]byte(pass), []byte(password)) != 1 {`
			w.Header().Set("WWW-Authenticate", `Basic realm="`+realm+`"`)
			`w.WriteHeader(401)`
			`w.Write([]byte("Unauthorised.\n"))`
			`return`
			`}`

			`handler.ServeHTTP(w, r)`
			`})`
			`}`

			`func main() {`
Switch to yaml for our config data (#5) Env vars are getting unwieldy, and it's going to get worse. 2017-04-10 19:09:10 +05:30			`flag.Parse()`

			`cfg, err := loadConfig(*configPath)`
			`if err != nil {`
			`log.Fatalf("Invalid config file: %s", err)`
			`}`
Create a (template) github issue on report 2017-04-07 20:13:19 +05:30
			`var ghClient *github.Client`

Switch to yaml for our config data (#5) Env vars are getting unwieldy, and it's going to get worse. 2017-04-10 19:09:10 +05:30			`if cfg.GithubToken == "" {`
			`fmt.Println("No github_token configured. Reporting bugs to github is disabled.")`
Create a (template) github issue on report 2017-04-07 20:13:19 +05:30			`} else {`
			`ctx := context.Background()`
			`ts := oauth2.StaticTokenSource(`
Switch to yaml for our config data (#5) Env vars are getting unwieldy, and it's going to get worse. 2017-04-10 19:09:10 +05:30			`&oauth2.Token{AccessToken: cfg.GithubToken},`
Create a (template) github issue on report 2017-04-07 20:13:19 +05:30			`)`
			`tc := oauth2.NewClient(ctx, ts)`
Make github issue a bit more useful (#7) * include the text from the report and other useful info * include a link to the report details * Pick github repo based on submitted app name 2017-04-12 19:36:40 +05:30			`tc.Timeout = time.Duration(5) * time.Minute`
Create a (template) github issue on report 2017-04-07 20:13:19 +05:30			`ghClient = github.NewClient(tc)`
			`}`

Add support for Slack notifications Signed-off-by: Manuel Stahl <manuel.stahl@awesome-technologies.de> 2019-03-07 19:12:08 +05:30			`var slack *slackClient`

			`if cfg.SlackWebhookURL == "" {`
			`fmt.Println("No slack_webhook_url configured. Reporting bugs to slack is disabled.")`
			`} else {`
fix lint 2020-06-04 17:22:39 +05:30			`slack = newSlackClient(cfg.SlackWebhookURL)`
Add support for Slack notifications Signed-off-by: Manuel Stahl <manuel.stahl@awesome-technologies.de> 2019-03-07 19:12:08 +05:30			`}`

Add email support (#35) Co-authored-by: Richard van der Hoff <1389908+richvdh@users.noreply.github.com> 2020-09-16 14:55:56 +05:30			`if len(cfg.EmailAddresses) > 0 && cfg.SMTPServer == "" {`
			`log.Fatal("Email address(es) specified but no smtp_server configured. Wrong configuration, aborting...")`
			`}`

Make github issue a bit more useful (#7) * include the text from the report and other useful info * include a link to the report details * Pick github repo based on submitted app name 2017-04-12 19:36:40 +05:30			`apiPrefix := cfg.APIPrefix`
			`if apiPrefix == "" {`
			`_, port, err := net.SplitHostPort(*bindAddr)`
			`if err != nil {`
			`log.Fatal(err)`
			`}`
			`apiPrefix = fmt.Sprintf("http://localhost:%s/api", port)`
			`} else {`
			`// remove trailing /`
			`apiPrefix = strings.TrimRight(apiPrefix, "/")`
			`}`
			`log.Printf("Using %s/listing as public URI", apiPrefix)`

Add email support (#35) Co-authored-by: Richard van der Hoff <1389908+richvdh@users.noreply.github.com> 2020-09-16 14:55:56 +05:30			`http.Handle("/api/submit", &submitServer{ghClient, apiPrefix, slack, cfg})`
Give rageshake script its own repo This was previously at https://github.com/vector-im/riot-web/blob/develop/scripts/rageshake.go, but it's not really exclusive to riot-web, and given I'm about to add some more complexity to it, I'd like for it to be in its own repo. 2017-04-04 15:55:00 +05:30
			`// Make sure bugs directory exists`
			`_ = os.Mkdir("bugs", os.ModePerm)`

			`// serve files under "bugs"`
Serve log files as plain text (#3) If the client accepts gzip, just serve the file as a gzip-encoded plain text. If it doesn't, gunzip it first. 2017-04-06 16:50:07 +05:30			`ls := &logServer{"bugs"}`
			`fs := http.StripPrefix("/api/listing/", ls)`
Give rageshake script its own repo This was previously at https://github.com/vector-im/riot-web/blob/develop/scripts/rageshake.go, but it's not really exclusive to riot-web, and given I'm about to add some more complexity to it, I'd like for it to be in its own repo. 2017-04-04 15:55:00 +05:30
			`// set auth if env vars exist`
Switch to yaml for our config data (#5) Env vars are getting unwieldy, and it's going to get worse. 2017-04-10 19:09:10 +05:30			`usr := cfg.BugsUser`
			`pass := cfg.BugsPass`
Give rageshake script its own repo This was previously at https://github.com/vector-im/riot-web/blob/develop/scripts/rageshake.go, but it's not really exclusive to riot-web, and given I'm about to add some more complexity to it, I'd like for it to be in its own repo. 2017-04-04 15:55:00 +05:30			`if usr == "" \|\| pass == "" {`
Switch to yaml for our config data (#5) Env vars are getting unwieldy, and it's going to get worse. 2017-04-10 19:09:10 +05:30			`fmt.Println("No listings_auth_user/pass configured. No authentication is running for /api/listing")`
Give rageshake script its own repo This was previously at https://github.com/vector-im/riot-web/blob/develop/scripts/rageshake.go, but it's not really exclusive to riot-web, and given I'm about to add some more complexity to it, I'd like for it to be in its own repo. 2017-04-04 15:55:00 +05:30			`} else {`
			`fs = basicAuth(fs, usr, pass, "Riot bug reports")`
			`}`
			`http.Handle("/api/listing/", fs)`

Switch to yaml for our config data (#5) Env vars are getting unwieldy, and it's going to get worse. 2017-04-10 19:09:10 +05:30			`log.Println("Listening on", *bindAddr)`

			`log.Fatal(http.ListenAndServe(*bindAddr, nil))`
			`}`
Serve log files as plain text (#3) If the client accepts gzip, just serve the file as a gzip-encoded plain text. If it doesn't, gunzip it first. 2017-04-06 16:50:07 +05:30
Switch to yaml for our config data (#5) Env vars are getting unwieldy, and it's going to get worse. 2017-04-10 19:09:10 +05:30			`func loadConfig(configPath string) (*config, error) {`
			`contents, err := ioutil.ReadFile(configPath)`
			`if err != nil {`
			`return nil, err`
			`}`
			`var cfg config`
			`if err = yaml.Unmarshal(contents, &cfg); err != nil {`
			`return nil, err`
			`}`
			`return &cfg, nil`
Give rageshake script its own repo This was previously at https://github.com/vector-im/riot-web/blob/develop/scripts/rageshake.go, but it's not really exclusive to riot-web, and given I'm about to add some more complexity to it, I'd like for it to be in its own repo. 2017-04-04 15:55:00 +05:30			`}`