1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
|
# frozen_string_literal: true
module AlertManagement
class HttpIntegration < ApplicationRecord
include ::Gitlab::Routing
LEGACY_IDENTIFIER = 'legacy'
DEFAULT_NAME_SLUG = 'http-endpoint'
belongs_to :project, inverse_of: :alert_management_http_integrations
attr_encrypted :token,
mode: :per_attribute_iv,
key: Settings.attr_encrypted_db_key_base_32,
algorithm: 'aes-256-gcm'
default_value_for(:endpoint_identifier, allows_nil: false) { SecureRandom.hex(8) }
default_value_for(:token) { generate_token }
validates :project, presence: true
validates :active, inclusion: { in: [true, false] }
validates :token, presence: true, format: { with: /\A\h{32}\z/ }
validates :name, presence: true, length: { maximum: 255 }
validates :endpoint_identifier, presence: true, length: { maximum: 255 }, format: { with: /\A[A-Za-z0-9]+\z/ }
validates :endpoint_identifier, uniqueness: { scope: [:project_id, :active] }, if: :active?
validates :payload_attribute_mapping, json_schema: { filename: 'http_integration_payload_attribute_mapping' }
before_validation :prevent_token_assignment
before_validation :prevent_endpoint_identifier_assignment
before_validation :ensure_token
before_validation :ensure_payload_example_not_nil
scope :for_endpoint_identifier, -> (endpoint_identifier) { where(endpoint_identifier: endpoint_identifier) }
scope :active, -> { where(active: true) }
scope :ordered_by_id, -> { order(:id) }
def url
return project_alerts_notify_url(project, format: :json) if legacy?
project_alert_http_integration_url(project, name_slug, endpoint_identifier, format: :json)
end
private
def self.generate_token
SecureRandom.hex
end
def name_slug
(name && Gitlab::Utils.slugify(name)) || DEFAULT_NAME_SLUG
end
def legacy?
endpoint_identifier == LEGACY_IDENTIFIER
end
# Blank token assignment triggers token reset
def prevent_token_assignment
if token.present? && token_changed?
self.token = nil
self.encrypted_token = encrypted_token_was
self.encrypted_token_iv = encrypted_token_iv_was
end
end
def ensure_token
self.token = self.class.generate_token if token.blank?
end
def prevent_endpoint_identifier_assignment
if endpoint_identifier_changed? && endpoint_identifier_was.present?
self.endpoint_identifier = endpoint_identifier_was
end
end
def ensure_payload_example_not_nil
self.payload_example ||= {}
end
end
end
|
