Merge remote-tracking branch 'origin/master'

Author: AidanDelaney

.travis.yml

@@ -0,0 +1,17 @@
+dist: xenial
+language: python
+python:
+  - "2.7"
+  - "3.6"
+  - "3.7"
+  - "pypy"
+  - "pypy3"
+install:
+  - pip install tox-travis
+script:
+  - tox
+matrix:
+  include:
+    - python: "3.7"
+      script: black --line-length 120 --check github_webhook tests setup.py
+      install: pip install black

github_webhook/__init__.py

@@ -8,6 +8,7 @@
     :license: Apache License, Version 2.0
 """
 
+<<<<<<< HEAD
 from textwrap import dedent
 
 import sys
@@ -18,6 +19,9 @@
             version=sys.version_info[0])))
 
 from github_webhook.webhook import Webhook
+=======
+from github_webhook.webhook import Webhook  # noqa
+>>>>>>> origin/master
 
 # -----------------------------------------------------------------------------
 # Copyright 2015 Bloomberg Finance L.P.

github_webhook/webhook.py

@@ -15,17 +15,16 @@ class Webhook(object):
     :param secret: Optional secret, used to authenticate the hook comes from Github
     """
 
-    def __init__(self, app, endpoint='/postreceive', secret=None):
-        app.add_url_rule(rule=endpoint, endpoint=endpoint, view_func=self._postreceive,
-                         methods=['POST'])
+    def __init__(self, app, endpoint="/postreceive", secret=None):
+        app.add_url_rule(rule=endpoint, endpoint=endpoint, view_func=self._postreceive, methods=["POST"])
 
         self._hooks = collections.defaultdict(list)
         self._logger = logging.getLogger('webhook')
         if secret is not None and not isinstance(secret, bytes):
             secret = secret.encode('utf-8')
         self._secret = secret
 
-    def hook(self, event_type='push'):
+    def hook(self, event_type="push"):
         """
         Registers a function as a hook. Multiple hooks can be registered for a given type, but the
         order in which they are invoke is unspecified.
@@ -42,8 +41,7 @@ def decorator(func):
     def _get_digest(self):
         """Return message digest if a secret key was provided"""
 
-        return hmac.new(
-            self._secret, request.data, hashlib.sha1).hexdigest() if self._secret else None
+        return hmac.new(self._secret, request.data, hashlib.sha1).hexdigest() if self._secret else None
 
     def _postreceive(self):
         """Callback from Flask"""
@@ -55,86 +53,76 @@ def _postreceive(self):
             if not isinstance(digest, str):
                 digest = str(digest)
 
-            if (len(sig_parts) < 2 or sig_parts[0] != 'sha1'
-                    or not hmac.compare_digest(sig_parts[1], digest)):
-                abort(400, 'Invalid signature')
+            if len(sig_parts) < 2 or sig_parts[0] != "sha1" or not hmac.compare_digest(sig_parts[1], digest):
+                abort(400, "Invalid signature")
 
-        event_type = _get_header('X-Github-Event')
+        event_type = _get_header("X-Github-Event")
         data = request.get_json()
 
         if data is None:
-            abort(400, 'Request body must contain json')
+            abort(400, "Request body must contain json")
 
-        self._logger.info(
-            '%s (%s)', _format_event(event_type, data), _get_header('X-Github-Delivery'))
+        self._logger.info("%s (%s)", _format_event(event_type, data), _get_header("X-Github-Delivery"))
 
         for hook in self._hooks.get(event_type, []):
             resp = hook(data)
             if resp:  # Allow hook to respond if necessary
                 return resp
 
-        return '', 204
+        return "", 204
+
 
 def _get_header(key):
     """Return message header"""
 
     try:
         return request.headers[key]
     except KeyError:
-        abort(400, 'Missing header: ' + key)
+        abort(400, "Missing header: " + key)
+
 
 EVENT_DESCRIPTIONS = {
-    'commit_comment': '{comment[user][login]} commented on '
-                      '{comment[commit_id]} in {repository[full_name]}',
-    'create': '{sender[login]} created {ref_type} ({ref}) in '
-              '{repository[full_name]}',
-    'delete': '{sender[login]} deleted {ref_type} ({ref}) in '
-              '{repository[full_name]}',
-    'deployment': '{sender[login]} deployed {deployment[ref]} to '
-                  '{deployment[environment]} in {repository[full_name]}',
-    'deployment_status': 'deployment of {deployement[ref]} to '
-                         '{deployment[environment]} '
-                         '{deployment_status[state]} in '
-                         '{repository[full_name]}',
-    'fork': '{forkee[owner][login]} forked {forkee[name]}',
-    'gollum': '{sender[login]} edited wiki pages in {repository[full_name]}',
-    'issue_comment': '{sender[login]} commented on issue #{issue[number]} '
-                     'in {repository[full_name]}',
-    'issues': '{sender[login]} {action} issue #{issue[number]} in '
-              '{repository[full_name]}',
-    'member': '{sender[login]} {action} member {member[login]} in '
-              '{repository[full_name]}',
-    'membership': '{sender[login]} {action} member {member[login]} to team '
-                  '{team[name]} in {repository[full_name]}',
-    'page_build': '{sender[login]} built pages in {repository[full_name]}',
-    'ping': 'ping from {sender[login]}',
-    'public': '{sender[login]} publicized {repository[full_name]}',
-    'pull_request': '{sender[login]} {action} pull #{pull_request[number]} in '
-                    '{repository[full_name]}',
-    'pull_request_review': '{sender[login]} {action} {review[state]} review on pull #{pull_request[number]} in '
-                           '{repository[full_name]}',
-    'pull_request_review_comment': '{comment[user][login]} {action} comment '
-                                   'on pull #{pull_request[number]} in '
-                                   '{repository[full_name]}',
-    'push': '{pusher[name]} pushed {ref} in {repository[full_name]}',
-    'release': '{release[author][login]} {action} {release[tag_name]} in '
-               '{repository[full_name]}',
-    'repository': '{sender[login]} {action} repository '
-                  '{repository[full_name]}',
-    'status': '{sender[login]} set {sha} status to {state} in '
-              '{repository[full_name]}',
-    'team_add': '{sender[login]} added repository {repository[full_name]} to '
-                'team {team[name]}',
-    'watch': '{sender[login]} {action} watch in repository '
-             '{repository[full_name]}'
+    "commit_comment": "{comment[user][login]} commented on " "{comment[commit_id]} in {repository[full_name]}",
+    "create": "{sender[login]} created {ref_type} ({ref}) in " "{repository[full_name]}",
+    "delete": "{sender[login]} deleted {ref_type} ({ref}) in " "{repository[full_name]}",
+    "deployment": "{sender[login]} deployed {deployment[ref]} to "
+    "{deployment[environment]} in {repository[full_name]}",
+    "deployment_status": "deployment of {deployement[ref]} to "
+    "{deployment[environment]} "
+    "{deployment_status[state]} in "
+    "{repository[full_name]}",
+    "fork": "{forkee[owner][login]} forked {forkee[name]}",
+    "gollum": "{sender[login]} edited wiki pages in {repository[full_name]}",
+    "issue_comment": "{sender[login]} commented on issue #{issue[number]} " "in {repository[full_name]}",
+    "issues": "{sender[login]} {action} issue #{issue[number]} in " "{repository[full_name]}",
+    "member": "{sender[login]} {action} member {member[login]} in " "{repository[full_name]}",
+    "membership": "{sender[login]} {action} member {member[login]} to team " "{team[name]} in {repository[full_name]}",
+    "page_build": "{sender[login]} built pages in {repository[full_name]}",
+    "ping": "ping from {sender[login]}",
+    "public": "{sender[login]} publicized {repository[full_name]}",
+    "pull_request": "{sender[login]} {action} pull #{pull_request[number]} in " "{repository[full_name]}",
+    "pull_request_review": "{sender[login]} {action} {review[state]} "
+    "review on pull #{pull_request[number]} in "
+    "{repository[full_name]}",
+    "pull_request_review_comment": "{comment[user][login]} {action} comment "
+    "on pull #{pull_request[number]} in "
+    "{repository[full_name]}",
+    "push": "{pusher[name]} pushed {ref} in {repository[full_name]}",
+    "release": "{release[author][login]} {action} {release[tag_name]} in " "{repository[full_name]}",
+    "repository": "{sender[login]} {action} repository " "{repository[full_name]}",
+    "status": "{sender[login]} set {sha} status to {state} in " "{repository[full_name]}",
+    "team_add": "{sender[login]} added repository {repository[full_name]} to " "team {team[name]}",
+    "watch": "{sender[login]} {action} watch in repository " "{repository[full_name]}",
 }
 
+
 def _format_event(event_type, data):
     try:
         return EVENT_DESCRIPTIONS[event_type].format(**data)
     except KeyError:
         return event_type
 
+
 # -----------------------------------------------------------------------------
 # Copyright 2015 Bloomberg Finance L.P.
 #

tests/__init__.py

@@ -0,0 +1,145 @@
+"""Tests for github_webhook.webhook"""
+
+from __future__ import print_function
+
+import pytest
+import werkzeug
+
+try:
+    from unittest import mock
+except ImportError:
+    import mock
+
+from github_webhook.webhook import Webhook
+
+
+@pytest.fixture
+def mock_request():
+    with mock.patch("github_webhook.webhook.request") as req:
+        req.headers = {"X-Github-Delivery": ""}
+        yield req
+
+
+@pytest.fixture
+def push_request(mock_request):
+    mock_request.headers["X-Github-Event"] = "push"
+    yield mock_request
+
+
+@pytest.fixture
+def app():
+    yield mock.Mock()
+
+
+@pytest.fixture
+def webhook(app):
+    yield Webhook(app)
+
+
+@pytest.fixture
+def handler(webhook):
+    handler = mock.Mock()
+    webhook.hook()(handler)
+    yield handler
+
+
+def test_constructor():
+    # GIVEN
+    app = mock.Mock()
+
+    # WHEN
+    webhook = Webhook(app)
+
+    # THEN
+    app.add_url_rule.assert_called_once_with(
+        endpoint="/postreceive", rule="/postreceive", view_func=webhook._postreceive, methods=["POST"]
+    )
+
+
+def test_run_push_hook(webhook, handler, push_request):
+    # WHEN
+    webhook._postreceive()
+
+    # THEN
+    handler.assert_called_once_with(push_request.get_json.return_value)
+
+
+def test_do_not_run_push_hook_on_ping(webhook, handler, mock_request):
+    # GIVEN
+    mock_request.headers["X-Github-Event"] = "ping"
+
+    # WHEN
+    webhook._postreceive()
+
+    # THEN
+    handler.assert_not_called()
+
+
+def test_can_handle_zero_events(webhook, push_request):
+    # WHEN, THEN
+    webhook._postreceive()  # noop
+
+
+@pytest.mark.parametrize("secret", [u"secret", b"secret"])
+@mock.patch("github_webhook.webhook.hmac")
+def test_calls_if_signature_is_correct(mock_hmac, app, push_request, secret):
+    # GIVEN
+    webhook = Webhook(app, secret=secret)
+    push_request.headers["X-Hub-Signature"] = "sha1=hash_of_something"
+    push_request.data = b"something"
+    handler = mock.Mock()
+    mock_hmac.compare_digest.return_value = True
+
+    # WHEN
+    webhook.hook()(handler)
+    webhook._postreceive()
+
+    # THEN
+    handler.assert_called_once_with(push_request.get_json.return_value)
+
+
+@mock.patch("github_webhook.webhook.hmac")
+def test_does_not_call_if_signature_is_incorrect(mock_hmac, app, push_request):
+    # GIVEN
+    webhook = Webhook(app, secret="super_secret")
+    push_request.headers["X-Hub-Signature"] = "sha1=hash_of_something"
+    push_request.data = b"something"
+    handler = mock.Mock()
+    mock_hmac.compare_digest.return_value = False
+
+    # WHEN, THEN
+    webhook.hook()(handler)
+    with pytest.raises(werkzeug.exceptions.BadRequest):
+        webhook._postreceive()
+
+
+def test_request_has_no_data(webhook, handler, push_request):
+    # GIVEN
+    push_request.get_json.return_value = None
+
+    # WHEN, THEN
+    with pytest.raises(werkzeug.exceptions.BadRequest):
+        webhook._postreceive()
+
+
+def test_request_had_headers(webhook, handler, mock_request):
+    # WHEN, THEN
+    with pytest.raises(werkzeug.exceptions.BadRequest):
+        webhook._postreceive()
+
+
+# -----------------------------------------------------------------------------
+# Copyright 2015 Bloomberg Finance L.P.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+# ----------------------------- END-OF-FILE -----------------------------------

tests/test_webhook.py

@@ -0,0 +1,18 @@
+[tox]
+envlist = py27,py36,py37,pypy,pypy3,flake8
+
+[testenv]
+deps =
+     pytest
+     pytest-cov
+     flask
+     six
+     py{27,py}: mock
+commands = pytest -vl --cov=github_webhook --cov-report term-missing --cov-fail-under 100
+
+[testenv:flake8]
+deps = flake8
+commands = flake8 github_webhook
+
+[flake8]
+max-line-length = 100