lemur/lemur/plugins/lemur_slack/plugin.py

"""
.. module: lemur.plugins.lemur_slack.plugin
    :platform: Unix
    :copyright: (c) 2018 by Netflix Inc., see AUTHORS for more
    :license: Apache, see LICENSE for more details.

.. moduleauthor:: Harm Weites <harm@weites.com>
.. moduleauthor:: Kevin Glisson <kglisson@netflix.com>
"""
import json
import arrow
from flask import current_app
from lemur.plugins.bases import ExpirationNotificationPlugin
from lemur.plugins import lemur_slack as slack

import requests


def create_certificate_url(name):
    return "https://{hostname}/#/certificates/{name}".format(
        hostname=current_app.config.get("LEMUR_HOSTNAME"), name=name
    )


def create_expiration_attachments(certificates):
    attachments = []
    for certificate in certificates:
        attachments.append(
            {
                "title": certificate["name"],
                "title_link": create_certificate_url(certificate["name"]),
                "color": "danger",
                "fallback": "",
                "fields": [
                    {"title": "Owner", "value": certificate["owner"], "short": True},
                    {
                        "title": "Expires",
                        "value": arrow.get(certificate["validityEnd"]).format(
                            "dddd, MMMM D, YYYY"
                        ),
                        "short": True,
                    },
                    {
                        "title": "Endpoints Detected",
                        "value": len(certificate["endpoints"]),
                        "short": True,
                    },
                ],
                "text": "",
                "mrkdwn_in": ["text"],
            }
        )
    return attachments


def create_rotation_attachments(certificate):
    return {
        "title": certificate["name"],
        "title_link": create_certificate_url(certificate["name"]),
        "fields": [
            {"title": "Owner", "value": certificate["owner"], "short": True},
            {
                "title": "Expires",
                "value": arrow.get(certificate["validityEnd"]).format(
                    "dddd, MMMM D, YYYY"
                ),
                "short": True,
            },
            {
                "title": "Endpoints Rotated",
                "value": len(certificate["endpoints"]),
                "short": True,
            },
        ],
    }


class SlackNotificationPlugin(ExpirationNotificationPlugin):
    title = "Slack"
    slug = "slack-notification"
    description = "Sends notifications to Slack"
    version = slack.VERSION

    author = "Harm Weites"
    author_url = "https://github.com/netflix/lemur"

    additional_options = [
        {
            "name": "webhook",
            "type": "str",
            "required": True,
            "validation": r"^https:\/\/hooks\.slack\.com\/services\/.+$",
            "helpMessage": "The url Slack told you to use for this integration",
        },
        {
            "name": "username",
            "type": "str",
            "validation": "^.+$",
            "helpMessage": "The great storyteller",
            "default": "Lemur",
        },
        {
            "name": "recipients",
            "type": "str",
            "required": True,
            "validation": "^(@|#).+$",
            "helpMessage": "Where to send to, either @username or #channel",
        },
    ]

    def send(self, notification_type, message, targets, options, **kwargs):
        """
        A typical check can be performed using the notify command:
        `lemur notify`

        While we receive a `targets` parameter here, it is unused, as Slack webhooks do not allow
        dynamic re-targeting of messages. The webhook itself specifies a channel.
        """
        attachments = None
        if notification_type == "expiration":
            attachments = create_expiration_attachments(message)

        elif notification_type == "rotation":
            attachments = create_rotation_attachments(message)

        if not attachments:
            raise Exception("Unable to create message attachments")

        body = {
            "text": f"Lemur {notification_type.capitalize()} Notification",
            "attachments": attachments,
            "channel": self.get_option("recipients", options),
            "username": self.get_option("username", options),
        }

        r = requests.post(self.get_option("webhook", options), json.dumps(body))

        if r.status_code not in [200]:
            raise Exception(f"Failed to send message. Slack response: {r.status_code} {body}")

        current_app.logger.info(
            f"Slack response: {r.status_code} Message Body: {body}"
        )
Slack plugin for notifications (#305) 2016-05-08 18:07:16 +02:00			`"""`
Minor documentation fixes/tweaks (#597) Mostly typos, grammar errors and inconsistent indentation in code examples. Some errors detected using Topy (https://github.com/intgr/topy), all changes verified by hand. 2016-12-14 18:29:04 +01:00			`.. module: lemur.plugins.lemur_slack.plugin`
Slack plugin for notifications (#305) 2016-05-08 18:07:16 +02:00			`:platform: Unix`
Addressing comments. Updating copyrights. Added function to determine authorative name server 2018-05-29 19:18:16 +02:00			`:copyright: (c) 2018 by Netflix Inc., see AUTHORS for more`
Slack plugin for notifications (#305) 2016-05-08 18:07:16 +02:00			`:license: Apache, see LICENSE for more details.`

			`.. moduleauthor:: Harm Weites <harm@weites.com>`
Slack spruce up (#394) * Formatting slack message. * Tweaking tests. 2016-07-06 19:27:13 +02:00			`.. moduleauthor:: Kevin Glisson <kglisson@netflix.com>`
Slack plugin for notifications (#305) 2016-05-08 18:07:16 +02:00			`"""`
Slack spruce up (#394) * Formatting slack message. * Tweaking tests. 2016-07-06 19:27:13 +02:00			`import json`
			`import arrow`
Slack plugin for notifications (#305) 2016-05-08 18:07:16 +02:00			`from flask import current_app`
			`from lemur.plugins.bases import ExpirationNotificationPlugin`
			`from lemur.plugins import lemur_slack as slack`

			`import requests`


Slack spruce up (#394) * Formatting slack message. * Tweaking tests. 2016-07-06 19:27:13 +02:00			`def create_certificate_url(name):`
Black lint all the things 2019-05-16 16:57:02 +02:00			`return "https://{hostname}/#/certificates/{name}".format(`
			`hostname=current_app.config.get("LEMUR_HOSTNAME"), name=name`
Slack spruce up (#394) * Formatting slack message. * Tweaking tests. 2016-07-06 19:27:13 +02:00			`)`


Fixing up notification testing (#575) 2016-12-08 20:33:40 +01:00			`def create_expiration_attachments(certificates):`
Slack spruce up (#394) * Formatting slack message. * Tweaking tests. 2016-07-06 19:27:13 +02:00			`attachments = []`
Fixing up notification testing (#575) 2016-12-08 20:33:40 +01:00			`for certificate in certificates:`
Black lint all the things 2019-05-16 16:57:02 +02:00			`attachments.append(`
			`{`
			`"title": certificate["name"],`
			`"title_link": create_certificate_url(certificate["name"]),`
			`"color": "danger",`
			`"fallback": "",`
			`"fields": [`
			`{"title": "Owner", "value": certificate["owner"], "short": True},`
			`{`
			`"title": "Expires",`
			`"value": arrow.get(certificate["validityEnd"]).format(`
			`"dddd, MMMM D, YYYY"`
			`),`
			`"short": True,`
			`},`
			`{`
			`"title": "Endpoints Detected",`
			`"value": len(certificate["endpoints"]),`
			`"short": True,`
			`},`
			`],`
			`"text": "",`
			`"mrkdwn_in": ["text"],`
			`}`
			`)`
Slack spruce up (#394) * Formatting slack message. * Tweaking tests. 2016-07-06 19:27:13 +02:00			`return attachments`
Slack plugin for notifications (#305) 2016-05-08 18:07:16 +02:00

Fixing up notification testing (#575) 2016-12-08 20:33:40 +01:00			`def create_rotation_attachments(certificate):`
			`return {`
Black lint all the things 2019-05-16 16:57:02 +02:00			`"title": certificate["name"],`
			`"title_link": create_certificate_url(certificate["name"]),`
			`"fields": [`
Miscellaneous notification fixes and tests 2020-10-17 00:13:12 +02:00			`{"title": "Owner", "value": certificate["owner"], "short": True},`
Fixing up notification testing (#575) 2016-12-08 20:33:40 +01:00			`{`
Miscellaneous notification fixes and tests 2020-10-17 00:13:12 +02:00			`"title": "Expires",`
			`"value": arrow.get(certificate["validityEnd"]).format(`
			`"dddd, MMMM D, YYYY"`
			`),`
			`"short": True,`
			`},`
			`{`
			`"title": "Endpoints Rotated",`
			`"value": len(certificate["endpoints"]),`
			`"short": True,`
			`},`
Black lint all the things 2019-05-16 16:57:02 +02:00			`],`
Fixing up notification testing (#575) 2016-12-08 20:33:40 +01:00			`}`


Slack plugin for notifications (#305) 2016-05-08 18:07:16 +02:00			`class SlackNotificationPlugin(ExpirationNotificationPlugin):`
Black lint all the things 2019-05-16 16:57:02 +02:00			`title = "Slack"`
			`slug = "slack-notification"`
			`description = "Sends notifications to Slack"`
Slack plugin for notifications (#305) 2016-05-08 18:07:16 +02:00			`version = slack.VERSION`

Black lint all the things 2019-05-16 16:57:02 +02:00			`author = "Harm Weites"`
			`author_url = "https://github.com/netflix/lemur"`
Slack plugin for notifications (#305) 2016-05-08 18:07:16 +02:00
			`additional_options = [`
			`{`
Black lint all the things 2019-05-16 16:57:02 +02:00			`"name": "webhook",`
			`"type": "str",`
			`"required": True,`
invalid escape sequence \ 2020-11-03 03:45:38 +01:00			`"validation": r"^https:\/\/hooks\.slack\.com\/services\/.+$",`
Black lint all the things 2019-05-16 16:57:02 +02:00			`"helpMessage": "The url Slack told you to use for this integration",`
			`},`
			`{`
			`"name": "username",`
			`"type": "str",`
			`"validation": "^.+$",`
			`"helpMessage": "The great storyteller",`
			`"default": "Lemur",`
			`},`
			`{`
			`"name": "recipients",`
			`"type": "str",`
			`"required": True,`
			`"validation": "^(@\|#).+$",`
			`"helpMessage": "Where to send to, either @username or #channel",`
Slack plugin for notifications (#305) 2016-05-08 18:07:16 +02:00			`},`
			`]`

Fixing up notification testing (#575) 2016-12-08 20:33:40 +01:00			`def send(self, notification_type, message, targets, options, **kwargs):`
Slack plugin for notifications (#305) 2016-05-08 18:07:16 +02:00			`"""`
			`A typical check can be performed using the notify command:`
			`lemur notify`
Initial implementation 2020-10-16 19:40:11 +02:00
			While we receive a `targets` parameter here, it is unused, as Slack webhooks do not allow
			`dynamic re-targeting of messages. The webhook itself specifies a channel.`
Slack plugin for notifications (#305) 2016-05-08 18:07:16 +02:00			`"""`
Fixing up notification testing (#575) 2016-12-08 20:33:40 +01:00			`attachments = None`
Black lint all the things 2019-05-16 16:57:02 +02:00			`if notification_type == "expiration":`
Slack spruce up (#394) * Formatting slack message. * Tweaking tests. 2016-07-06 19:27:13 +02:00			`attachments = create_expiration_attachments(message)`

Black lint all the things 2019-05-16 16:57:02 +02:00			`elif notification_type == "rotation":`
Fixing up notification testing (#575) 2016-12-08 20:33:40 +01:00			`attachments = create_rotation_attachments(message)`

Slack spruce up (#394) * Formatting slack message. * Tweaking tests. 2016-07-06 19:27:13 +02:00			`if not attachments:`
Black lint all the things 2019-05-16 16:57:02 +02:00			`raise Exception("Unable to create message attachments")`
Slack plugin for notifications (#305) 2016-05-08 18:07:16 +02:00
Slack spruce up (#394) * Formatting slack message. * Tweaking tests. 2016-07-06 19:27:13 +02:00			`body = {`
Fix error handling 2020-10-23 18:34:33 +02:00			`"text": f"Lemur {notification_type.capitalize()} Notification",`
Black lint all the things 2019-05-16 16:57:02 +02:00			`"attachments": attachments,`
			`"channel": self.get_option("recipients", options),`
			`"username": self.get_option("username", options),`
Slack spruce up (#394) * Formatting slack message. * Tweaking tests. 2016-07-06 19:27:13 +02:00			`}`
Slack plugin for notifications (#305) 2016-05-08 18:07:16 +02:00
Black lint all the things 2019-05-16 16:57:02 +02:00			`r = requests.post(self.get_option("webhook", options), json.dumps(body))`
Fixing up notification testing (#575) 2016-12-08 20:33:40 +01:00
Slack plugin for notifications (#305) 2016-05-08 18:07:16 +02:00			`if r.status_code not in [200]:`
Fix error handling 2020-10-23 18:34:33 +02:00			`raise Exception(f"Failed to send message. Slack response: {r.status_code} {body}")`
Fixing up notification testing (#575) 2016-12-08 20:33:40 +01:00
Initial implementation 2020-10-16 19:40:11 +02:00			`current_app.logger.info(`
Fix error handling 2020-10-23 18:34:33 +02:00			`f"Slack response: {r.status_code} Message Body: {body}"`
Black lint all the things 2019-05-16 16:57:02 +02:00			`)`