koji-forgejo-webhook/koji_forgejo_webhook.py

import json
import hashlib
import hmac
import logging
import configparser
import subprocess
from flask import Flask, request, abort
import koji

# Load configuration from .ini file
config = configparser.ConfigParser()
config.read('config.ini')

app = Flask(__name__, instance_relative_config=True)
# app.config.from_mapping(config['DEFAULT'])
app.config['SECRET_KEY'] = config.get('DEFAULT', 'SECRET_KEY')
app.config['KOJI_SERVER'] = config.get('DEFAULT', 'KOJI_SERVER')
app.config['KOJI_TARGET'] = config.get('DEFAULT', 'KOJI_TARGET')
app.config['KOJI_USE_SHELL'] = config.getboolean('DEFAULT', 'KOJI_USE_SHELL')
app.config['KOJI_NOWAIT'] = config.getboolean('DEFAULT', 'KOJI_NOWAIT', True)
app.config['WEBHOOK_SECRET_KEY'] = config.get('DEFAULT', 'WEBHOOK_SECRET_KEY')


class KojiProcessor:
    def __init__(self):
        pass

    def koji_build_shell(self, build_target, git_url, nowait=True):
        try:
            # Construct the koji build command
            nw = '--nowait' if nowait else ''
            command = ['koji', 'build', nw, build_target, git_url]
            
            # Start the build process
            result = subprocess.run(command, check=True, capture_output=True, text=True)
            
            # Print output from the command
            logging.info(f"Build started successfully!")
            logging.info(result.stdout)
        except subprocess.CalledProcessError as e:
            logging.error("Error starting build:")
            logging.error(e.stderr)

    def koji_build(self, server_url, build_target, source_url, nowait=True):
        """
        Perform a Koji build
        
        :param server_url: Koji hub server URL
        :param build_target: Target for the build (e.g., 'f40-candidate')
        :param source_url: Git repository URL to build from
        """
        # Create a Koji client session
        session = koji.ClientSession(server_url)
        
        try:
            # Authenticate (if required)
            # Uncomment if authentication is needed
            session.login()
            
            # Submit the build task
            build_id = session.build(
                source_url,  # Source URL
                build_target,  # Build target
                opts={
                    'scratch': False,  # Set to True for scratch build
                    'nowait': nowait   # Wait for build completion
                }
            )
            
            return build_id
        
        except Exception as e:
            print(f"Build failed: {e}")
            return None


class ForgejoWebhookProcessor:
    def __init__(self, secret_key):
        self.secret_key = secret_key

    def validate_webhook(self, payload, signature):
        """Validate webhook signature"""
        computed_signature = hmac.new(
            self.secret_key.encode('utf-8'),
            payload.encode('utf-8'),
            hashlib.sha256
        ).hexdigest()

        return hmac.compare_digest(computed_signature, signature)

    def process_webhook(self, payload):
        """Process webhook payload"""
        try:
            data = json.loads(payload)

            # Extract key webhook information
            repository = data.get('repository', {})
            commits = data.get('commits', [])
            head_commit = data.get('head_commit')
            ref = data.get('ref', '')

            # Log basic webhook details
            logging.info(f"Repository: {repository.get('full_name')}")
            logging.info(f"Branch: {ref}")
            logging.info(f"Number of Commits: {len(commits)}")

            # Custom processing logic here
            # for commit in commits:
            #     logging.info(f"Commit: {commit.get('id')}")
            #     logging.info(f"Message: {commit.get('message')}")

            commit_id = head_commit.get("id")
            clone_url = repository.get("clone_url")

            git_url = f"git+{clone_url}#{commit_id}"

            if int(app.config.get('KOJI_USE_SHELL')) == 1:
                KojiProcessor().koji_build_shell(app.config['KOJI_TARGET'], git_url)
            else:
                KojiProcessor().koji_build(app.config['KOJI_SERVER'], app.config['KOJI_TARGET'], git_url)

        except json.JSONDecodeError:
            logging.error("Invalid JSON payload")
            abort(400)


@app.route('/', methods=['POST'])
@app.route('/forgejo-webhook', methods=['POST'])
@app.route('/forgejo-webhook/', methods=['POST'])
def webhook():
    processor = ForgejoWebhookProcessor(app.config['WEBHOOK_SECRET_KEY'])

    # Get payload and signature
    payload = request.get_data(as_text=True)
    signature = request.headers.get('X-Forgejo-Signature', '')

    # Validate webhook
    if not processor.validate_webhook(payload, signature):
        abort(403)

    # Process webhook
    processor.process_webhook(payload)

    return 'Webhook processed', 200


if __name__ == '__main__':
    logging.basicConfig(level=logging.INFO)
    app.run(host="0.0.0.0", port=5001)
init 2025-01-24 14:59:06 +03:00			`import json`
			`import hashlib`
			`import hmac`
			`import logging`
WIP add apache wsgi configuration 2025-01-25 22:07:39 +03:00			`import configparser`
WIP add build execution with shell 2025-01-26 03:00:50 +03:00			`import subprocess`
add options nowait for build command 2025-01-26 08:47:21 +03:00			`from flask import Flask, request, abort`
add koji call 2025-01-25 05:56:19 +03:00			`import koji`

WIP add apache wsgi configuration 2025-01-25 22:07:39 +03:00			`# Load configuration from .ini file`
			`config = configparser.ConfigParser()`
			`config.read('config.ini')`
init 2025-01-24 14:59:06 +03:00
WIP add build execution with shell 2025-01-26 03:00:50 +03:00			`app = Flask(__name__, instance_relative_config=True)`
			`# app.config.from_mapping(config['DEFAULT'])`
			`app.config['SECRET_KEY'] = config.get('DEFAULT', 'SECRET_KEY')`
			`app.config['KOJI_SERVER'] = config.get('DEFAULT', 'KOJI_SERVER')`
			`app.config['KOJI_TARGET'] = config.get('DEFAULT', 'KOJI_TARGET')`
			`app.config['KOJI_USE_SHELL'] = config.getboolean('DEFAULT', 'KOJI_USE_SHELL')`
add options nowait for build command 2025-01-26 08:47:21 +03:00			`app.config['KOJI_NOWAIT'] = config.getboolean('DEFAULT', 'KOJI_NOWAIT', True)`
WIP add build execution with shell 2025-01-26 03:00:50 +03:00			`app.config['WEBHOOK_SECRET_KEY'] = config.get('DEFAULT', 'WEBHOOK_SECRET_KEY')`
add koji call 2025-01-25 05:56:19 +03:00

			`class KojiProcessor:`
			`def __init__(self):`
			`pass`

add options nowait for build command 2025-01-26 08:47:21 +03:00			`def koji_build_shell(self, build_target, git_url, nowait=True):`
WIP add build execution with shell 2025-01-26 03:00:50 +03:00			`try:`
			`# Construct the koji build command`
add options nowait for build command 2025-01-26 08:47:21 +03:00			`nw = '--nowait' if nowait else ''`
			`command = ['koji', 'build', nw, build_target, git_url]`
WIP add build execution with shell 2025-01-26 03:00:50 +03:00
			`# Start the build process`
			`result = subprocess.run(command, check=True, capture_output=True, text=True)`

			`# Print output from the command`
			`logging.info(f"Build started successfully!")`
			`logging.info(result.stdout)`
			`except subprocess.CalledProcessError as e:`
			`logging.error("Error starting build:")`
			`logging.error(e.stderr)`

add options nowait for build command 2025-01-26 08:47:21 +03:00			`def koji_build(self, server_url, build_target, source_url, nowait=True):`
add koji call 2025-01-25 05:56:19 +03:00			`"""`
			`Perform a Koji build`

			`:param server_url: Koji hub server URL`
			`:param build_target: Target for the build (e.g., 'f40-candidate')`
			`:param source_url: Git repository URL to build from`
			`"""`
			`# Create a Koji client session`
			`session = koji.ClientSession(server_url)`

			`try:`
			`# Authenticate (if required)`
			`# Uncomment if authentication is needed`
			`session.login()`

			`# Submit the build task`
			`build_id = session.build(`
			`source_url, # Source URL`
			`build_target, # Build target`
			`opts={`
			`'scratch': False, # Set to True for scratch build`
add options nowait for build command 2025-01-26 08:47:21 +03:00			`'nowait': nowait # Wait for build completion`
add koji call 2025-01-25 05:56:19 +03:00			`}`
			`)`

			`return build_id`

			`except Exception as e:`
			`print(f"Build failed: {e}")`
			`return None`

init 2025-01-24 14:59:06 +03:00
			`class ForgejoWebhookProcessor:`
			`def __init__(self, secret_key):`
			`self.secret_key = secret_key`

			`def validate_webhook(self, payload, signature):`
			`"""Validate webhook signature"""`
			`computed_signature = hmac.new(`
			`self.secret_key.encode('utf-8'),`
			`payload.encode('utf-8'),`
			`hashlib.sha256`
			`).hexdigest()`

			`return hmac.compare_digest(computed_signature, signature)`

			`def process_webhook(self, payload):`
			`"""Process webhook payload"""`
			`try:`
			`data = json.loads(payload)`

			`# Extract key webhook information`
			`repository = data.get('repository', {})`
			`commits = data.get('commits', [])`
add koji call 2025-01-25 05:56:19 +03:00			`head_commit = data.get('head_commit')`
init 2025-01-24 14:59:06 +03:00			`ref = data.get('ref', '')`

			`# Log basic webhook details`
			`logging.info(f"Repository: {repository.get('full_name')}")`
			`logging.info(f"Branch: {ref}")`
			`logging.info(f"Number of Commits: {len(commits)}")`

			`# Custom processing logic here`
add koji call 2025-01-25 05:56:19 +03:00			`# for commit in commits:`
			`# logging.info(f"Commit: {commit.get('id')}")`
			`# logging.info(f"Message: {commit.get('message')}")`

			`commit_id = head_commit.get("id")`
			`clone_url = repository.get("clone_url")`

			`git_url = f"git+{clone_url}#{commit_id}"`

WIP add build execution with shell 2025-01-26 03:00:50 +03:00			`if int(app.config.get('KOJI_USE_SHELL')) == 1:`
			`KojiProcessor().koji_build_shell(app.config['KOJI_TARGET'], git_url)`
			`else:`
			`KojiProcessor().koji_build(app.config['KOJI_SERVER'], app.config['KOJI_TARGET'], git_url)`
init 2025-01-24 14:59:06 +03:00
			`except json.JSONDecodeError:`
			`logging.error("Invalid JSON payload")`
			`abort(400)`


WIP add apache wsgi configuration 2025-01-25 22:07:39 +03:00			`@app.route('/', methods=['POST'])`
init 2025-01-24 14:59:06 +03:00			`@app.route('/forgejo-webhook', methods=['POST'])`
WIP add build execution with shell 2025-01-26 03:00:50 +03:00			`@app.route('/forgejo-webhook/', methods=['POST'])`
init 2025-01-24 14:59:06 +03:00			`def webhook():`
add koji call 2025-01-25 05:56:19 +03:00			`processor = ForgejoWebhookProcessor(app.config['WEBHOOK_SECRET_KEY'])`
init 2025-01-24 14:59:06 +03:00
			`# Get payload and signature`
			`payload = request.get_data(as_text=True)`
			`signature = request.headers.get('X-Forgejo-Signature', '')`

			`# Validate webhook`
			`if not processor.validate_webhook(payload, signature):`
			`abort(403)`

			`# Process webhook`
			`processor.process_webhook(payload)`

			`return 'Webhook processed', 200`

WIP add apache wsgi configuration 2025-01-25 22:07:39 +03:00
init 2025-01-24 14:59:06 +03:00			`if __name__ == '__main__':`
			`logging.basicConfig(level=logging.INFO)`
WIP add trailing EOL 2025-01-25 22:41:37 +03:00			`app.run(host="0.0.0.0", port=5001)`