move GH hook verification to github.d

MartinNowak · MartinNowak · commit 99034ac453d4 · 2017-03-30T19:00:52.000+02:00
diff --git a/source/dlangbot/app.d b/source/dlangbot/app.d
@@ -87,26 +87,6 @@ void startServer(HTTPServerSettings settings)
 // Github hook
 //==============================================================================
 
-auto getSignature(string data)
-{
-    import std.digest.digest, std.digest.hmac, std.digest.sha;
-    import std.string : representation;
-
-    auto hmac = HMAC!SHA1(hookSecret.representation);
-    hmac.put(data.representation);
-    return hmac.finish.toHexString!(LetterCase.lower);
-}
-
-Json verifyRequest(string signature, string data)
-{
-    import std.exception : enforce;
-    import std.string : chompPrefix;
-
-    enforce(getSignature(data) == signature.chompPrefix("sha1="),
-            "Hook signature mismatch");
-    return parseJsonString(data);
-}
-
 void trelloHook(HTTPServerRequest req, HTTPServerResponse res)
 {
     import std.array : array;
@@ -130,6 +110,7 @@ void trelloHook(HTTPServerRequest req, HTTPServerResponse res)
 void githubHook(HTTPServerRequest req, HTTPServerResponse res)
 {
     import std.functional : toDelegate;
+    import dlangbot.github : verifyRequest;
 
     auto json = verifyRequest(req.headers["X-Hub-Signature"], req.bodyReader.readAllUTF8);
     switch (req.headers["X-GitHub-Event"])
diff --git a/source/dlangbot/github.d b/source/dlangbot/github.d
@@ -562,3 +562,27 @@ struct GHMerge
     string sha;
     @name("merge_method") @byName MergeMethod mergeMethod;
 }
+
+//==============================================================================
+// Github hook signature
+//==============================================================================
+
+auto getSignature(string data)
+{
+    import std.digest.digest, std.digest.hmac, std.digest.sha;
+    import std.string : representation;
+
+    auto hmac = HMAC!SHA1(hookSecret.representation);
+    hmac.put(data.representation);
+    return hmac.finish.toHexString!(LetterCase.lower);
+}
+
+Json verifyRequest(string signature, string data)
+{
+    import std.exception : enforce;
+    import std.string : chompPrefix;
+
+    enforce(getSignature(data) == signature.chompPrefix("sha1="),
+            "Hook signature mismatch");
+    return parseJsonString(data);
+}
diff --git a/test/utils.d b/test/utils.d
@@ -209,6 +209,7 @@ void postGitHubHook(string payload, string eventType = "pull_request",
 {
     import std.file : readText;
     import std.path : buildPath;
+    import dlangbot.github : getSignature;
 
     logInfo("Starting test in %s:%d with payload: %s", file, line, payload);
 

Original file line number	Diff line number	Diff line change
`@@ -209,6 +209,7 @@ void postGitHubHook(string payload, string eventType = "pull_request",`
`209`	`209`	`{`
`210`	`210`	`import std.file : readText;`
`211`	`211`	`import std.path : buildPath;`
	`212`	`+ import dlangbot.github : getSignature;`
`212`	`213`
`213`	`214`	`logInfo("Starting test in %s:%d with payload: %s", file, line, payload);`
`214`	`215`