[Bug fix] Header bug fix (#140)

* Fixed header issue with strings

* Fixed ActionResolverTest

Author: Puffy1215

src/main/java/com/gitee/jenkins/webhook/ActionResolver.java

@@ -1,9 +1,13 @@
 package com.gitee.jenkins.webhook;
 
 import com.gitee.jenkins.util.ACLUtil;
-import com.gitee.jenkins.webhook.build.PullRequestBuildAction;
+import com.gitee.jenkins.webhook.build.LegacyPullRequestBuildAction;
+import com.gitee.jenkins.webhook.build.LegacyNoteBuildAction;
+import com.gitee.jenkins.webhook.build.LegacyPipelineBuildAction;
+import com.gitee.jenkins.webhook.build.LegacyPushBuildAction;
 import com.gitee.jenkins.webhook.build.NoteBuildAction;
 import com.gitee.jenkins.webhook.build.PipelineBuildAction;
+import com.gitee.jenkins.webhook.build.PullRequestBuildAction;
 import com.gitee.jenkins.webhook.build.PushBuildAction;
 import com.gitee.jenkins.webhook.status.BranchBuildPageRedirectAction;
 import com.gitee.jenkins.webhook.status.BranchStatusPngAction;
@@ -106,10 +110,14 @@ private WebHookAction onPost(Item project, StaplerRequest2 request) {
         }
         String tokenHeader = request.getHeader("X-Gitee-Token");
         return switch (eventHeader) {
-            case "Merge Request Hook" -> new PullRequestBuildAction(project, getRequestBody(request), tokenHeader);
-            case "Push Hook", "Tag Push Hook" -> new PushBuildAction(project, getRequestBody(request), tokenHeader);
-            case "Note Hook" -> new NoteBuildAction(project, getRequestBody(request), tokenHeader);
-            case "Pipeline Hook" -> new PipelineBuildAction(project, getRequestBody(request), tokenHeader);
+            case "Merge Request Hook" -> new LegacyPullRequestBuildAction(project, getRequestBody(request), tokenHeader);
+            case "Push Hook", "Tag Push Hook" -> new LegacyPushBuildAction(project, getRequestBody(request), tokenHeader);
+            case "Note Hook" -> new LegacyNoteBuildAction(project, getRequestBody(request), tokenHeader);
+            case "Pipeline Hook" -> new LegacyPipelineBuildAction(project, getRequestBody(request), tokenHeader);
+            case "merge_request_hooks" -> new PullRequestBuildAction(project, getRequestBody(request), tokenHeader);
+            case "push_hooks", "tag_push_hooks" -> new PushBuildAction(project, getRequestBody(request), tokenHeader);
+            case "note_hooks" -> new NoteBuildAction(project, getRequestBody(request), tokenHeader);
+            case "pipeline_hooks" -> new PipelineBuildAction(project, getRequestBody(request), tokenHeader);
             default -> {
                 LOGGER.log(Level.FINE, "Unsupported X-Gitee-Event header: {0}", eventHeader);
                 yield new NoopAction();

src/main/java/com/gitee/jenkins/webhook/build/LegacyBuildWebHookAction.java

@@ -0,0 +1,88 @@
+package com.gitee.jenkins.webhook.build;
+
+import java.io.IOException;
+import java.util.Objects;
+import java.util.logging.Logger;
+
+import com.gitee.jenkins.gitee.hook.model.WebHook;
+import hudson.model.Item;
+import hudson.model.Job;
+import hudson.security.Permission;
+import hudson.util.HttpResponses;
+import jenkins.model.Jenkins;
+import org.apache.commons.lang.StringUtils;
+
+import com.gitee.jenkins.trigger.GiteePushTrigger;
+import com.gitee.jenkins.connection.GiteeConnectionConfig;
+import com.gitee.jenkins.webhook.WebHookAction;
+import org.kohsuke.stapler.StaplerRequest2;
+import org.kohsuke.stapler.StaplerResponse2;
+
+import jakarta.servlet.ServletException;
+import org.springframework.security.core.Authentication;
+
+/**
+ * @author Xinran Xiao
+ * @author Yashin Luo
+ */
+abstract class LegacyBuildWebHookAction implements WebHookAction {
+
+    private static final Logger LOGGER = Logger.getLogger(LegacyBuildWebHookAction.class.getName());
+
+    abstract void processForCompatibility();
+
+    abstract void execute();
+
+    public final void execute(StaplerResponse2 response) {
+        processForCompatibility();
+        execute();
+    }
+
+    public static HttpResponses.HttpResponseException responseWithHook(final WebHook webHook) {
+        return new HttpResponses.HttpResponseException() {
+            @Override
+            public void generateResponse(StaplerRequest2 req, StaplerResponse2 rsp, Object node) throws IOException, ServletException {
+                String text = webHook.getWebHookDescription() + " has been accepted.";
+                rsp.setContentType("text/plain;charset=UTF-8");
+                rsp.getWriter().println(text);
+            }
+        };
+    }
+
+    protected abstract static class TriggerNotifier implements Runnable {
+
+        private final Item project;
+        private final String secretToken;
+        private final Authentication authentication;
+
+        public TriggerNotifier(Item project, String secretToken, Authentication authentication) {
+            this.project = project;
+            this.secretToken = secretToken;
+            this.authentication = authentication;
+        }
+
+        public void run() {
+            GiteePushTrigger trigger = GiteePushTrigger.getFromJob((Job<?, ?>) project);
+            if (trigger != null) {
+                if (StringUtils.isEmpty(trigger.getSecretToken())) {
+                    checkPermission(Item.BUILD, project);
+                } else if (!StringUtils.equals(trigger.getSecretToken(), secretToken)) {
+                    throw HttpResponses.errorWithoutStack(401, "Invalid token");
+                }
+                performOnPost(trigger);
+            }
+        }
+
+        private void checkPermission(Permission permission, Item project) {
+            if (((GiteeConnectionConfig) Objects.requireNonNull(Jenkins.get().getDescriptor(GiteeConnectionConfig.class))).isUseAuthenticatedEndpoint()) {
+                if (!project.getACL().hasPermission2(authentication, permission)) {
+                    String message = authentication.getName() + " is missing the " + permission.group.title+"/"+permission.name+ " permission";
+                    LOGGER.finest("Unauthorized (Did you forget to add API Token to the web hook ?)");
+                    throw HttpResponses.errorWithoutStack(403, message);
+                }
+            }
+        }
+
+        protected abstract void performOnPost(GiteePushTrigger trigger);
+    }
+}

src/main/java/com/gitee/jenkins/webhook/build/LegacyNoteBuildAction.java

@@ -0,0 +1,59 @@
+package com.gitee.jenkins.webhook.build;
+
+import com.gitee.jenkins.trigger.GiteePushTrigger;
+import com.gitee.jenkins.gitee.hook.model.NoteHook;
+import com.gitee.jenkins.util.JsonUtil;
+import hudson.model.Item;
+import hudson.model.Job;
+import hudson.security.ACL;
+import hudson.security.ACLContext;
+import hudson.util.HttpResponses;
+import jenkins.model.Jenkins;
+
+import java.util.logging.Level;
+import java.util.logging.Logger;
+
+import org.springframework.security.core.Authentication;
+
+import static com.gitee.jenkins.util.JsonUtil.toPrettyPrint;
+
+/**
+ * @author Nikolay Ustinov
+ */
+public class LegacyNoteBuildAction extends LegacyBuildWebHookAction {
+
+    private static final Logger LOGGER = Logger.getLogger(LegacyNoteBuildAction.class.getName());
+    private Item project;
+    private NoteHook noteHook;
+    private final String secretToken;
+
+    public LegacyNoteBuildAction(Item project, String json, String secretToken) {
+        LOGGER.log(Level.FINE, "Note: {0}", toPrettyPrint(json));
+        this.project = project;
+        this.noteHook = JsonUtil.read(json, NoteHook.class);
+        this.noteHook.setJsonBody(json);
+        this.secretToken = secretToken;
+    }
+
+    @Override
+    void processForCompatibility() {
+
+    }
+
+    @Override
+    public void execute() {
+        if (!(project instanceof Job<?, ?>)) {
+            throw HttpResponses.errorWithoutStack(409, "Note Hook is not supported for this project");
+        }
+        Authentication auth = Jenkins.getAuthentication2();
+        try (ACLContext ignored = ACL.as2(ACL.SYSTEM2)) {
+            new LegacyBuildWebHookAction.TriggerNotifier(project, secretToken, auth) {
+                @Override
+                protected void performOnPost(GiteePushTrigger trigger) {
+                    trigger.onPost(noteHook);
+                }
+            }.run();
+        }
+        throw responseWithHook(noteHook);
+    }
+}

src/main/java/com/gitee/jenkins/webhook/build/LegacyPipelineBuildAction.java

@@ -0,0 +1,75 @@
+package com.gitee.jenkins.webhook.build;
+
+import com.gitee.jenkins.trigger.GiteePushTrigger;
+import com.gitee.jenkins.gitee.hook.model.*;
+import com.gitee.jenkins.util.JsonUtil;
+import hudson.model.Item;
+import hudson.model.Job;
+import hudson.security.ACL;
+import hudson.security.ACLContext;
+import hudson.util.HttpResponses;
+import jenkins.model.Jenkins;
+import org.apache.commons.lang.StringUtils;
+import org.springframework.security.core.Authentication;
+
+import java.net.MalformedURLException;
+import java.net.URL;
+import java.util.logging.Level;
+import java.util.logging.Logger;
+
+import static com.gitee.jenkins.util.JsonUtil.toPrettyPrint;
+
+/**
+ * @author Milena Zachow
+ */
+public class LegacyPipelineBuildAction extends LegacyBuildWebHookAction {
+
+    private static final Logger LOGGER = Logger.getLogger(LegacyPipelineBuildAction.class.getName());
+    private Item project;
+    private PipelineHook pipelineBuildHook;
+    private final String secretToken;
+
+    public LegacyPipelineBuildAction(Item project, String json, String secretToken) {
+        LOGGER.log(Level.FINE, "Pipeline event: {0}", toPrettyPrint(json));
+        this.project = project;
+        this.pipelineBuildHook = JsonUtil.read(json, PipelineHook.class);
+        this.pipelineBuildHook.setJsonBody(json);
+        this.secretToken = secretToken;
+    }
+
+    void processForCompatibility() {
+        //if no project is defined, set it here
+        if (this.pipelineBuildHook.getProject() == null && this.pipelineBuildHook.getRepository() != null) {
+            try {
+                String path = new URL(this.pipelineBuildHook.getRepository().getGitHttpUrl()).getPath();
+                if (StringUtils.isNotBlank(path)) {
+                    Project project = new Project();
+                    project.setNamespace(path.replaceFirst("/", "").substring(0, path.lastIndexOf("/")));
+                    this.pipelineBuildHook.setProject(project);
+                } else {
+                    LOGGER.log(Level.WARNING, "Could not find suitable namespace.");
+                }
+            } catch (MalformedURLException ignored) {
+                LOGGER.log(Level.WARNING, "Invalid repository url found while building namespace.");
+            }
+        }
+    }
+
+    void execute() {
+        if (!(project instanceof Job<?, ?>)) {
+            throw HttpResponses.errorWithoutStack(409, "Pipeline Hook is not supported for this project");
+        }
+        Authentication auth = Jenkins.getAuthentication2();
+        try (ACLContext ignored = ACL.as2(ACL.SYSTEM2)) {
+            new TriggerNotifier(project, secretToken, auth) {
+                @Override
+                protected void performOnPost(GiteePushTrigger trigger) {
+                    trigger.onPost(pipelineBuildHook);
+                }
+            }.run();
+        }
+        throw responseWithHook(pipelineBuildHook);
+    }
+
+}
+

src/main/java/com/gitee/jenkins/webhook/build/LegacyPullRequestBuildAction.java

@@ -0,0 +1,75 @@
+package com.gitee.jenkins.webhook.build;
+
+import com.gitee.jenkins.gitee.hook.model.PullRequestHook;
+import com.gitee.jenkins.trigger.GiteePushTrigger;
+import com.gitee.jenkins.gitee.hook.model.PullRequestObjectAttributes;
+import com.gitee.jenkins.gitee.hook.model.Project;
+import com.gitee.jenkins.util.JsonUtil;
+import hudson.model.Item;
+import hudson.model.Job;
+import hudson.security.ACL;
+import hudson.security.ACLContext;
+import hudson.util.HttpResponses;
+import jenkins.model.Jenkins;
+
+import java.util.logging.Level;
+import java.util.logging.Logger;
+
+import org.springframework.security.core.Authentication;
+
+import static com.gitee.jenkins.util.JsonUtil.toPrettyPrint;
+
+/**
+ * @author Robin Müller
+ */
+public class LegacyPullRequestBuildAction extends LegacyBuildWebHookAction {
+
+    private static final Logger LOGGER = Logger.getLogger(LegacyPullRequestBuildAction.class.getName());
+    private Item project;
+    private PullRequestHook pullRequestHook;
+    private final String secretToken;
+
+    public LegacyPullRequestBuildAction(Item project, String json, String secretToken) {
+        LOGGER.log(Level.FINE, "PullRequest: {0}", toPrettyPrint(json));
+        this.project = project;
+        this.pullRequestHook = JsonUtil.read(json, PullRequestHook.class);
+        this.pullRequestHook.setJsonBody(json);
+        this.secretToken = secretToken;
+    }
+
+    void processForCompatibility() {
+        final PullRequestObjectAttributes attributes = this.pullRequestHook.getPullRequest();
+        if (attributes != null) {
+            final Project source = attributes.getSource();
+            if (source != null && source.getGitHttpUrl() != null) {
+                if (source.getUrl() == null) {
+                    source.setUrl(source.getGitHttpUrl());
+                }
+                if (source.getHomepage() == null) {
+                    source.setHomepage(source.getGitHttpUrl().substring(0, source.getGitHttpUrl().lastIndexOf(".git")));
+                }
+            }
+
+            // The PullRequestHookTriggerHandlerImpl is looking for Project
+            if (pullRequestHook.getRepo() == null && attributes.getTarget() != null) {
+                pullRequestHook.setRepo(attributes.getTarget());
+            }
+        }
+    }
+
+    public void execute() {
+        if (!(project instanceof Job<?, ?>)) {
+            throw HttpResponses.errorWithoutStack(409, "Merge Request Hook is not supported for this project");
+        }
+        Authentication auth = Jenkins.getAuthentication2();
+        try (ACLContext ignored = ACL.as2(ACL.SYSTEM2)) {
+            new TriggerNotifier(project, secretToken, auth) {
+                @Override
+                protected void performOnPost(GiteePushTrigger trigger) {
+                    trigger.onPost(pullRequestHook);
+                }
+            }.run();
+        }
+        throw responseWithHook(pullRequestHook);
+    }
+}