Merge branch 'develop' into feature-2834/move-required-permission-to-services

Author: ocielliottc

.github/workflows/gradle-build-production.yml

@@ -87,6 +87,8 @@ jobs:
             --set-env-vars "^@^MICRONAUT_ENVIRONMENTS=cloud,google,gcp" \
             --set-env-vars "SLACK_WEBHOOK_URL=${{ secrets.SLACK_WEBHOOK_URL }}" \
             --set-env-vars "SLACK_BOT_TOKEN=${{ secrets.SLACK_BOT_TOKEN }}" \
+            --set-env-vars "SLACK_PULSE_SIGNING_SECRET=${{ secrets.SLACK_PULSE_SIGNING_SECRET }}" \
+            --set-env-vars "SLACK_PULSE_BOT_TOKEN=${{ secrets.SLACK_PULSE_BOT_TOKEN }}" \
             --platform "managed" \
             --max-instances 8 \
             --allow-unauthenticated

.github/workflows/gradle-deploy-develop.yml

@@ -112,6 +112,8 @@ jobs:
             --set-env-vars "^@^MICRONAUT_ENVIRONMENTS=dev,cloud,google,gcp" \
             --set-env-vars "SLACK_WEBHOOK_URL=${{ secrets.SLACK_WEBHOOK_URL }}" \
             --set-env-vars "SLACK_BOT_TOKEN=${{ secrets.SLACK_BOT_TOKEN }}" \
+            --set-env-vars "SLACK_PULSE_SIGNING_SECRET=${{ secrets.SLACK_PULSE_SIGNING_SECRET }}" \
+            --set-env-vars "SLACK_PULSE_BOT_TOKEN=${{ secrets.SLACK_PULSE_BOT_TOKEN }}" \
             --platform "managed" \
             --max-instances 2 \
             --allow-unauthenticated

.github/workflows/gradle-deploy-native-develop.yml

@@ -111,6 +111,8 @@ jobs:
             --set-env-vars "^@^MICRONAUT_ENVIRONMENTS=dev,cloud,google,gcp" \
             --set-env-vars "SLACK_WEBHOOK_URL=${{ secrets.SLACK_WEBHOOK_URL }}" \
             --set-env-vars "SLACK_BOT_TOKEN=${{ secrets.SLACK_BOT_TOKEN }}" \
+            --set-env-vars "SLACK_PULSE_SIGNING_SECRET=${{ secrets.SLACK_PULSE_SIGNING_SECRET }}" \
+            --set-env-vars "SLACK_PULSE_BOT_TOKEN=${{ secrets.SLACK_PULSE_BOT_TOKEN }}" \
             --platform "managed" \
             --max-instances 2 \
             --allow-unauthenticated

server/src/main/java/com/objectcomputing/checkins/configuration/CheckInsConfiguration.java

@@ -34,6 +34,9 @@ public static class ApplicationConfig {
         @NotNull
         private NotificationsConfig notifications;
 
+        @NotNull
+        private PulseResponseConfig pulseResponse;
+
         @Getter
         @Setter
         @ConfigurationProperties("feedback")
@@ -89,5 +92,25 @@ public static class SlackConfig {
                 private String botToken;
             }
         }
+
+        @Getter
+        @Setter
+        @ConfigurationProperties("pulse-response")
+        public static class PulseResponseConfig {
+
+            @NotNull
+            private SlackConfig slack;
+
+            @Getter
+            @Setter
+            @ConfigurationProperties("slack")
+            public static class SlackConfig {
+                @NotBlank
+                private String signingSecret;
+
+                @NotBlank
+                private String botToken;
+            }
+        }
     }
 }

server/src/main/java/com/objectcomputing/checkins/notifications/social_media/SlackSearch.java

@@ -10,6 +10,8 @@
 import com.slack.api.methods.response.conversations.ConversationsListResponse;
 import com.slack.api.methods.request.users.UsersLookupByEmailRequest;
 import com.slack.api.methods.response.users.UsersLookupByEmailResponse;
+import com.slack.api.methods.request.users.UsersInfoRequest;
+import com.slack.api.methods.response.users.UsersInfoResponse;
 
 import jakarta.inject.Singleton;
 import jakarta.inject.Inject;
@@ -76,5 +78,26 @@ public String findUserId(String userEmail) {
         }
         return null;
     }
+
+    public String findUserEmail(String userId) {
+        String token = configuration.getApplication().getNotifications().getSlack().getBotToken();
+        if (token != null) {
+            try {
+                MethodsClient client = Slack.getInstance().methods(token);
+                UsersInfoResponse response = client.usersInfo(
+                    UsersInfoRequest.builder().user(userId).build()
+                );
+
+                if (response.isOk()) {
+                    return response.getUser().getProfile().getEmail();
+                }
+            } catch(IOException e) {
+                LOG.error("SlackSearch.findUserEmail: " + e.toString());
+            } catch(SlackApiException e) {
+                LOG.error("SlackSearch.findUserEmail: " + e.toString());
+            }
+        }
+        return null;
+    }
 }
 

server/src/main/java/com/objectcomputing/checkins/services/pulse/PulseServices.java

@@ -3,5 +3,5 @@
 import java.time.LocalDate;
 
 public interface PulseServices {
-  public void sendPendingEmail(LocalDate now);
+  public void notifyUsers(LocalDate now);
 }

server/src/main/java/com/objectcomputing/checkins/services/pulse/PulseServicesImpl.java

@@ -69,7 +69,7 @@ public PulseServicesImpl(
     this.automatedEmailRepository = automatedEmailRepository;
   }
 
-  public void sendPendingEmail(LocalDate check) {
+  public void notifyUsers(LocalDate check) {
     if (check.getDayOfWeek() == emailDay) {
       LOG.info("Checking for pending Pulse email");
       // Start from the first of the year and move forward to ensure that we

server/src/main/java/com/objectcomputing/checkins/services/pulseresponse/PulseResponse.java

@@ -77,7 +77,7 @@ public class PulseResponse {
     protected PulseResponse() {
     }
 
-    public PulseResponse(UUID id, Integer internalScore, @Nullable Integer externalScore, LocalDate submissionDate, @Nullable UUID teamMemberId, String internalFeelings, String externalFeelings) {
+    public PulseResponse(UUID id, Integer internalScore, @Nullable Integer externalScore, LocalDate submissionDate, @Nullable UUID teamMemberId, @Nullable String internalFeelings, @Nullable String externalFeelings) {
         this.id = id;
         this.internalScore = internalScore;
         this.externalScore = externalScore;
@@ -91,62 +91,6 @@ public PulseResponse(Integer internalScore, Integer externalScore, LocalDate sub
         this(null, internalScore, externalScore, submissionDate, teamMemberId, internalFeelings, externalFeelings);
     }
 
-    public UUID getId() {
-        return this.id;
-    }
-
-    public void setId(UUID id) {
-        this.id = id;
-    }
-
-    public Integer getInternalScore() {
-        return internalScore;
-    }
-
-    public void setInternalScore(Integer internalScore) {
-        this.internalScore = internalScore;
-    }
-
-    public Integer getExternalScore() {
-        return externalScore;
-    }
-
-    public void setExternalScore(Integer externalScore) {
-        this.externalScore = externalScore;
-    }
-
-    public LocalDate getSubmissionDate() {
-        return submissionDate;
-    }
-
-    public void setSubmissionDate(LocalDate submissionDate) {
-        this.submissionDate = submissionDate;
-    }
-
-    public UUID getTeamMemberId() {
-        return this.teamMemberId;
-    }
-
-    public void setTeamMemberId(UUID teamMemberId) {
-        this.teamMemberId = teamMemberId;
-    }
-
-    public String getInternalFeelings() {
-        return internalFeelings;
-    }
-
-    public void setInternalFeelings(String internalFeelings) {
-        this.internalFeelings = internalFeelings;
-    }
-
-    public String getExternalFeelings() {
-        return externalFeelings;
-    }
-
-    public void setExternalFeelings(String externalFeelings) {
-        this.externalFeelings = externalFeelings;
-    }
-
     @Override
     public boolean equals(Object o) {
         if (this == o) return true;

server/src/main/java/com/objectcomputing/checkins/services/pulseresponse/PulseResponseController.java

@@ -1,10 +1,16 @@
 package com.objectcomputing.checkins.services.pulseresponse;
 
 import com.objectcomputing.checkins.exceptions.NotFoundException;
+import com.objectcomputing.checkins.util.form.FormUrlEncodedDecoder;
+import com.objectcomputing.checkins.services.memberprofile.MemberProfileServices;
+
+import io.micronaut.http.MediaType;
 import io.micronaut.core.annotation.Nullable;
 import io.micronaut.core.convert.format.Format;
+import io.micronaut.http.HttpStatus;
 import io.micronaut.http.HttpRequest;
 import io.micronaut.http.HttpResponse;
+import io.micronaut.http.annotation.Header;
 import io.micronaut.http.annotation.Body;
 import io.micronaut.http.annotation.Controller;
 import io.micronaut.http.annotation.Get;
@@ -14,6 +20,7 @@
 import io.micronaut.scheduling.annotation.ExecuteOn;
 import io.micronaut.security.annotation.Secured;
 import io.micronaut.security.rules.SecurityRule;
+
 import io.swagger.v3.oas.annotations.tags.Tag;
 import jakarta.validation.Valid;
 import jakarta.validation.constraints.NotNull;
@@ -22,17 +29,29 @@
 import java.time.LocalDate;
 import java.util.Set;
 import java.util.UUID;
+import java.util.Map;
+import java.nio.charset.StandardCharsets;
 
 @Controller("/services/pulse-responses")
 @ExecuteOn(TaskExecutors.BLOCKING)
-@Secured(SecurityRule.IS_AUTHENTICATED)
 @Tag(name = "pulse-responses")
 public class PulseResponseController {
-
     private final PulseResponseService pulseResponseServices;
+    private final MemberProfileServices memberProfileServices;
+    private final SlackSignatureVerifier slackSignatureVerifier;
+    private final PulseSlackCommand pulseSlackCommand;
+    private final SlackPulseResponseConverter slackPulseResponseConverter;
 
-    public PulseResponseController(PulseResponseService pulseResponseServices) {
+    public PulseResponseController(PulseResponseService pulseResponseServices,
+                                   MemberProfileServices memberProfileServices,
+                                   SlackSignatureVerifier slackSignatureVerifier,
+                                   PulseSlackCommand pulseSlackCommand,
+                                   SlackPulseResponseConverter slackPulseResponseConverter) {
         this.pulseResponseServices = pulseResponseServices;
+        this.memberProfileServices = memberProfileServices;
+        this.slackSignatureVerifier = slackSignatureVerifier;
+        this.pulseSlackCommand = pulseSlackCommand;
+        this.slackPulseResponseConverter = slackPulseResponseConverter;
     }
 
     /**
@@ -43,6 +62,7 @@ public PulseResponseController(PulseResponseService pulseResponseServices) {
      * @param dateTo
      * @return
      */
+    @Secured(SecurityRule.IS_AUTHENTICATED)
     @Get("/{?teamMemberId,dateFrom,dateTo}")
     public Set<PulseResponse> findPulseResponses(@Nullable @Format("yyyy-MM-dd") LocalDate dateFrom,
                                                  @Nullable @Format("yyyy-MM-dd") LocalDate dateTo,
@@ -56,6 +76,7 @@ public Set<PulseResponse> findPulseResponses(@Nullable @Format("yyyy-MM-dd") Loc
      * @param pulseResponse, {@link PulseResponseCreateDTO}
      * @return {@link HttpResponse<PulseResponse>}
      */
+    @Secured(SecurityRule.IS_AUTHENTICATED)
     @Post
     public HttpResponse<PulseResponse> createPulseResponse(@Body @Valid PulseResponseCreateDTO pulseResponse,
                                                            HttpRequest<?> request) {
@@ -70,6 +91,7 @@ public HttpResponse<PulseResponse> createPulseResponse(@Body @Valid PulseRespons
      * @param pulseResponse, {@link PulseResponse}
      * @return {@link HttpResponse<PulseResponse>}
      */
+    @Secured(SecurityRule.IS_AUTHENTICATED)
     @Put
     public HttpResponse<PulseResponse> update(@Body @Valid @NotNull PulseResponse pulseResponse,
                                               HttpRequest<?> request) {
@@ -82,6 +104,7 @@ public HttpResponse<PulseResponse> update(@Body @Valid @NotNull PulseResponse pu
      * @param id
      * @return
      */
+    @Secured(SecurityRule.IS_AUTHENTICATED)
     @Get("/{id}")
     public PulseResponse readPulse(@NotNull UUID id) {
         PulseResponse result = pulseResponseServices.read(id);
@@ -90,4 +113,88 @@ public PulseResponse readPulse(@NotNull UUID id) {
         }
         return result;
     }
+
+    @Secured(SecurityRule.IS_ANONYMOUS)
+    @Post(uri = "/command", consumes = MediaType.APPLICATION_FORM_URLENCODED)
+    public HttpResponse commandPulseResponse(
+               @Header("X-Slack-Signature") String signature,
+               @Header("X-Slack-Request-Timestamp") String timestamp,
+               @Body String requestBody) {
+        // Validate the request
+        if (slackSignatureVerifier.verifyRequest(signature,
+                                                 timestamp, requestBody)) {
+            // Convert the request body to a map of values.
+            FormUrlEncodedDecoder formUrlEncodedDecoder = new FormUrlEncodedDecoder();
+            Map<String, Object> body =
+                formUrlEncodedDecoder.decode(requestBody,
+                                             StandardCharsets.UTF_8);
+
+            // Respond to the slack command.
+            String triggerId = (String)body.get("trigger_id");
+            if (pulseSlackCommand.send(triggerId)) {
+                return HttpResponse.ok();
+            } else {
+                return HttpResponse.status(HttpStatus.INTERNAL_SERVER_ERROR);
+            }
+        } else {
+            return HttpResponse.unauthorized();
+        }
+    }
+
+    @Secured(SecurityRule.IS_ANONYMOUS)
+    @Post(uri = "/external", consumes = MediaType.APPLICATION_FORM_URLENCODED)
+    public HttpResponse externalPulseResponse(
+               @Header("X-Slack-Signature") String signature,
+               @Header("X-Slack-Request-Timestamp") String timestamp,
+               @Body String requestBody,
+               HttpRequest<?> request) {
+        // Validate the request
+        if (slackSignatureVerifier.verifyRequest(signature,
+                                                 timestamp, requestBody)) {
+            // Convert the request body to a map of values.
+            FormUrlEncodedDecoder formUrlEncodedDecoder =
+                new FormUrlEncodedDecoder();
+            Map<String, Object> body =
+                formUrlEncodedDecoder.decode(requestBody,
+                                             StandardCharsets.UTF_8);
+
+            final String key = "payload";
+            if (body.containsKey(key)) {
+                PulseResponseCreateDTO pulseResponseDTO =
+                    slackPulseResponseConverter.get(memberProfileServices,
+                                                    (String)body.get(key));
+
+                // If we receive a null DTO, that means that this is not the
+                // actual submission of the form.  We can just return 200 so
+                // that Slack knows to continue without error.
+                if (pulseResponseDTO == null) {
+                    return HttpResponse.ok();
+                }
+
+                // Create the pulse response
+                PulseResponse pulseResponse =
+                    pulseResponseServices.unsecureSave(
+                        new PulseResponse(
+                            pulseResponseDTO.getInternalScore(),
+                            pulseResponseDTO.getExternalScore(),
+                            pulseResponseDTO.getSubmissionDate(),
+                            pulseResponseDTO.getTeamMemberId(),
+                            pulseResponseDTO.getInternalFeelings(),
+                            pulseResponseDTO.getExternalFeelings()
+                        )
+                );
+
+                if (pulseResponse == null) {
+                    return HttpResponse.status(HttpStatus.CONFLICT,
+                                               "Already submitted today");
+                } else {
+                    return HttpResponse.ok();
+                }
+            } else {
+                return HttpResponse.unprocessableEntity();
+            }
+        } else {
+            return HttpResponse.unauthorized();
+        }
+    }
 }

server/src/main/java/com/objectcomputing/checkins/services/pulseresponse/PulseResponseRepository.java

@@ -6,6 +6,7 @@
 import jakarta.validation.constraints.NotNull;
 
 import java.time.LocalDate;
+import java.util.Optional;
 import java.util.List;
 import java.util.UUID;
 
@@ -14,4 +15,5 @@ public interface PulseResponseRepository extends CrudRepository<PulseResponse, U
 
     List<PulseResponse> findByTeamMemberId(@NotNull UUID teamMemberId);
     List<PulseResponse> findBySubmissionDateBetween(@NotNull LocalDate dateFrom, @NotNull LocalDate dateTo);
-}
+    Optional<PulseResponse> getByTeamMemberIdAndSubmissionDate(@NotNull UUID teamMemberId, @NotNull LocalDate submissionDate);
+}