sergey/matrix-webhook
1
0
Fork 0
mirror of https://github.com/bsedin/matrix-webhook.git synced 2026-04-09 11:25:40 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

formatters: add github

Browse Source
This commit is contained in:
Guilhem Saurel
2021-08-27 23:47:07 +02:00
parent 4bcdb25c80
commit 6b5d6e6e87
9 changed files with 136 additions and 33 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
matrix_webhook/handler.py
View File

@@ -3,6 +3,7 @@
import json
import logging
from http import HTTPStatus
from hmac import HMAC
from markdown import markdown
@@ -18,10 +19,10 @@ async def matrix_webhook(request):
This one handles a POST, checks its content, and forwards it to the matrix room.
"""
LOGGER.debug(f"Handling {request=}")
data = await request.read()
data_b = await request.read()
try:
data = json.loads(data.decode())
data = json.loads(data_b.decode())
except json.decoder.JSONDecodeError:
return utils.create_json_response(HTTPStatus.BAD_REQUEST, "Invalid JSON")
@@ -48,6 +49,16 @@ async def matrix_webhook(request):
if "room_id" not in data:
data["room_id"] = request.path.lstrip("/")
# If we get a good SHA-256 HMAC digest,
# we can consider that the sender has the right API key
if "digest" in data:
if data["digest"] == HMAC(conf.API_KEY.encode(), data_b, "sha256").hexdigest():
data["key"] = conf.API_KEY
else: # but if there is a wrong digest, an informative error should be provided
return utils.create_json_response(
HTTPStatus.UNAUTHORIZED, "Invalid SHA-256 HMAC digest"
)
missing = []
for key in ["body", "key", "room_id"]:
if key not in data or not data[key]: