lifecycle capable

Author: rferreira

lib/callback.js

@@ -1,6 +1,6 @@
-var VERSION = 0.2;
-
+var VERSION = 0.3;
 var util = require('util');
+var assert = require('assert');
 var aws = require('aws-sdk');
 var s3 = new aws.S3({apiVersion: '2006-03-01'});
 var http = require('https');
@@ -9,27 +9,111 @@ var crypto = require('crypto');
 
 // replace below with your credentials in the form key:secret
 // to create your key go to https://scanii.com/account/settings/keys
-var SCANII_CREDS = 'KEY:SECRET';
+var SCANII_CREDS = 'CHANGE';
+// replace with the URL of your callback lambda function
+var CALLBACK_URL = 'ME';
+
+
+onFindings = function (bucket, key, result, context) {
+  console.log('RESULT:', internalId(bucket, key), 'has findings', result.findings);
+  var pending = true;
+
+  // sample code that delete objects with findings from S3:
+  var req = s3.deleteObject({Bucket: bucket, Key: key});
+  req.on('success', function (response) {
+    console.log(console.log('file', internalId(bucket, key), 'deleted'));
+    context.succeed(util.format('callback for file %s completed successful', result.id));
+    pending = false;
+
+  }).on('error', function (response) {
+    console.log(console.log('error while deleting', internalId(bucket, key)));
+    context.fail(response);
+    pending = false;
+  });
+  req.send();
+  var waitWhilePending = function () {
+    if (pending) {
+      console.log('waiting');
+      setTimeout(waitWhilePending, 100);
+    }
+  };
+  setTimeout(waitWhilePending, 100);
+
+};
+
+onNoFindings = function (bucket, key, result, context) {
+  console.log('RESULT:', internalId(bucket, key), 'has no findings');
+  context.succeed(util.format('callback for file %s completed successful', result.id));
+
+};
+
 
-// Do not edit below this line
+//-------------------------------  Do not edit below this line ----------------------------------------------
+
+// if the credentials are passed via an env variable we honor it:
+if (process.env.SCANII_CREDS !== undefined) {
+  console.log('loading credentials from environment variable');
+  SCANII_CREDS = process.env.SCANII_CREDS;
+}
 
 const API_ENDPOINT = '/v2.1/files/';
 
-console.log('Loading function v', VERSION);
+console.log('loading function v', VERSION);
 
 var KEY = SCANII_CREDS.split(':')[0];
 var SECRET = SCANII_CREDS.split(':')[1];
+console.log('using key', KEY);
+
+var internalId = function (bucket, key) {
+  return util.format('s3://%s/%s', bucket, key);
+};
+
+var generateSignature = function (bucket, key) {
+  return crypto.createHmac('sha1', SECRET).update(internalId(bucket, key)).digest('hex');
+};
+
+/**
+ * Handles HTTP result callback
+ */
+var handleCallback = function (event, context) {
+  console.log('handling callback event');
+
+  var r = event;
+  //console.log('response:', JSON.stringify(r, null, 2));
+  console.log("metadata:", r.metadata);
+
+  // callback sanity checks
+  assert.ok(r.id !== undefined, "no id provided");
+  assert.ok(r.metadata !== undefined, "no metadata supplied");
+  assert.ok(r.metadata.bucket !== undefined, "no bucket supplied in metadata");
+  assert.ok(r.metadata.key !== undefined, "no key supplied in metadata");
+  assert.ok(r.metadata.signature !== undefined, "no signature supplied in metadata");
+
+  // now asserting bucket/keys were not tampered with:
+  assert.ok(r.metadata.signature == generateSignature(r.metadata.bucket, r.metadata.key), "invalid signature");
+  console.log('signature check passed for signature', r.metadata.signature);
+
+  if (r.findings !== undefined) {
+    if (r.findings.length > 0) {
+      onFindings(r.metadata.bucket, r.metadata.key, r, context);
+    } else {
+      onNoFindings(r.metadata.bucket, r.metadata.key, r, context);
+    }
+  }
 
-var internalId = function(bucket, key) {
-  return util.format('processing s3://%s/%s', bucket, key);
 };
 
-exports.handler = function (event, context) {
-  console.log('Received event:', JSON.stringify(event, null, 2));
+
+/**
+ * Handles S3 event and submits content for processing
+ */
+var handleS3Event = function (event, context) {
+  console.log('handling S3 event');
 
   // Get the object from the event and show its content type
   var bucket = event.Records[0].s3.bucket.name;
-  var key = event.Records[0].s3.object.key;
+  // see https://forums.aws.amazon.com/thread.jspa?threadID=215813
+  var key = Object.keys(qs.decode(event.Records[0].s3.object.key))[0];
 
   console.log('processing ' + internalId(bucket, key));
 
@@ -40,20 +124,21 @@ exports.handler = function (event, context) {
     Expires: 3600 // 1 hour
   });
   console.log('created signed url', url);
-  console.log('submitting content for processing');
 
+
+  console.log('submitting content for processing');
   // signing request
-  var signature = crypto.createHmac('sha1', SECRET).update(internalId(bucket, key)).digest('hex');
+  var signature = generateSignature(bucket, key);
   console.log('using signature ' + signature);
 
   var payload = qs.stringify({
     location: url,
-    'metadata[hmac]': signature,
-    'metadata[id]': internalId(bucket, key)
+    callback: CALLBACK_URL,
+    'metadata[signature]': signature,
+    'metadata[bucket]': bucket,
+    'metadata[key]': key
   });
 
-  console.log(payload);
-
   var options = {
     auth: SCANII_CREDS,
     port: 443,
@@ -63,27 +148,41 @@ exports.handler = function (event, context) {
     headers: {
       'Content-Type': 'application/x-www-form-urlencoded',
       'Content-Length': payload.length,
-      'User-Agent': 'scanii-mu/v' + VERSION
+      'User-Agent': 'scanii-lambda/v' + VERSION
     }
   };
-
+  console.log(payload);
   // calling scanii API v2.1 (http://docs.scanii.com/v2.1/resources.html):
   var req = http.request(options, function (res) {
-    console.log("statusCode: ", res.statusCode);
     console.log("headers: ", res.headers);
 
     res.on('data', function (data) {
       var serviceResponse = JSON.parse(data);
-      console.log('file id:', serviceResponse.id);
-      context.succeed('OK - id ' + serviceResponse.id);
+      if (res.statusCode == 202) {
+        console.log('file id:', serviceResponse.id);
+        context.succeed(serviceResponse.id);
+      } else {
+        console.log(serviceResponse);
+        context.fail(util.format("Error: invalid response from server, message [%s] and http code: %d", serviceResponse.body, res.statusCode));
+      }
+    });
+    res.on('error', function (error) {
+      context.fail(error);
     });
   });
 
   req.write(payload);
   req.end();
 
-  req.on('error', function (error) {
-    console.log(error);
-    context.fail(error);
-  });
 };
+
+exports.handler = function (event, context) {
+  console.log('received event:', JSON.stringify(event, null, 2));
+  if (event.Records !== undefined) {
+    handleS3Event(event, context);
+  } else {
+    handleCallback(event, context);
+  }
+};
+
+exports.generateSignature = generateSignature;

lib/index.js

@@ -1,6 +1,6 @@
 {
   "name": "scanii-mu",
-  "version": "1.0.0",
+  "version": "0.3.0",
   "description": "",
   "main": "index.js",
   "scripts": {
@@ -11,6 +11,7 @@
   "dependencies": {
     "aws-lambda-mock-context": "^0.2.0",
     "aws-sdk": "^2.2.5",
+    "chai": "^3.4.1",
     "consoleplusplus": "^1.3.0",
     "mocha": "^2.3.3"
   }