initial commit

Author: bajins

.gitignore

@@ -0,0 +1,92 @@
+# Created by .ignore support plugin (hsz.mobi)
+### TortoiseGit template
+# Project-level settings
+/.tgitconfig
+
+### Go template
+# Binaries for programs and plugins
+*.exe
+*.exe~
+*.dll
+*.so
+*.dylib
+
+# Test binary, built with `go test -c`
+*.test
+
+# Output of the go coverage tool, specifically when used with LiteIDE
+*.out
+
+# Dependency directories (remove the comment below to include it)
+# vendor/
+
+### JetBrains template
+# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio and WebStorm
+# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839
+
+# User-specific stuff
+.idea
+.idea/**/tasks.xml
+.idea/**/usage.statistics.xml
+.idea/**/dictionaries
+.idea/**/shelf
+
+# Generated files
+.idea/**/contentModel.xml
+
+# Sensitive or high-churn files
+.idea/**/dataSources/
+.idea/**/dataSources.ids
+.idea/**/dataSources.local.xml
+.idea/**/sqlDataSources.xml
+.idea/**/dynamic.xml
+.idea/**/uiDesigner.xml
+.idea/**/dbnavigator.xml
+
+# Gradle
+.idea/**/gradle.xml
+.idea/**/libraries
+
+# Gradle and Maven with auto-import
+# When using Gradle or Maven with auto-import, you should exclude module files,
+# since they will be recreated, and may cause churn.  Uncomment if using
+# auto-import.
+# .idea/modules.xml
+# .idea/*.iml
+# .idea/modules
+# *.iml
+# *.ipr
+
+# CMake
+cmake-build-*/
+
+# Mongo Explorer plugin
+.idea/**/mongoSettings.xml
+
+# File-based project format
+*.iws
+
+# IntelliJ
+out/
+
+# mpeltonen/sbt-idea plugin
+.idea_modules/
+
+# JIRA plugin
+atlassian-ide-plugin.xml
+
+# Cursive Clojure plugin
+.idea/replstate.xml
+
+# Crashlytics plugin (for Android Studio and IntelliJ)
+com_crashlytics_export_strings.xml
+crashlytics.properties
+crashlytics-build.properties
+fabric.properties
+
+# Editor-based Rest Client
+.idea/httpRequests
+
+# Android studio 3.1+ serialized cache file
+.idea/caches/build_file_checksums.ser
+

README.md

@@ -1,2 +1,6 @@
 # webhook-go
+
 支持GitHub、Gitea、Gogs
+
+
+> http://127.0.0.1:8000/webHooks?id=test

config.go

@@ -0,0 +1,35 @@
+package main
+
+import (
+	"encoding/json"
+	"io/ioutil"
+)
+
+var (
+	config map[string]Config
+)
+
+type Config struct {
+	Logfile  string
+	Secret   string
+	Commands []string
+}
+
+// LoadConfig load the config
+func LoadConfig() error {
+	result, err := ioutil.ReadFile("data/config.json")
+	if err != nil {
+		return err
+	}
+	json.Unmarshal(result, &config)
+	return nil
+}
+
+// 获取配置中的log文件名称
+func GetLogName(id string) string {
+	logName := config[id].Logfile
+	if logName == "" || len(logName) <= 0 {
+		return id
+	}
+	return logName
+}

data/config.json

@@ -0,0 +1,9 @@
+{
+  "这里是id的值": {
+    "logfile": "test-gitea-webhook.log",
+    "secret": "在Webhooks中设定的secret",
+    "commands": [
+      "data/update_repo.sh"
+    ]
+  }
+}

go.mod

@@ -0,0 +1,3 @@
+module webhook-go
+
+go 1.13

server.go

@@ -0,0 +1,94 @@
+package main
+
+import (
+	"fmt"
+	"io/ioutil"
+	"net/http"
+	"os"
+	"strings"
+	"webhook-go/utils"
+)
+
+// 启动服务
+func StartService(address string, port string) error {
+	http.HandleFunc("/", index)
+	http.HandleFunc("/webHooks", webHooks)
+
+	utils.Log2file(fmt.Sprintf("service starting... %s:%s", address, port), "")
+	return http.ListenAndServe(fmt.Sprintf("%s:%s", address, port), nil)
+}
+
+// 首页
+func index(w http.ResponseWriter, r *http.Request) {
+	utils.Log2file(string(r.URL.Host), "")
+	fmt.Fprintln(w, "{\"code\":200, \"description\":\"service running...\"}")
+}
+
+// 自动编译
+func webHooks(w http.ResponseWriter, r *http.Request) {
+	if err := LoadConfig(); err != nil {
+		utils.Log2file(err.Error(), "")
+		os.Exit(1)
+	}
+	if strings.ToUpper(r.Method) != "POST" {
+		fmt.Fprintln(w, "{\"code\":200, \"error\":\"Error Method or unknow request url\"}")
+		return
+	}
+	if !VerifyEvent(r.Header, "push") {
+		fmt.Fprintln(w, "{\"code\":200, \"error\":\"Unmatch x-github-event\"}")
+		return
+	}
+	bodyContent, err := ioutil.ReadAll(r.Body)
+	if err != nil {
+		fmt.Fprintln(w, "{\"code\":200, \"error\":\"Error Response Body\"}")
+		return
+	}
+	defer r.Body.Close()
+
+	// 解析参数，填充到Form、PostForm
+	r.ParseForm()
+	id := r.Form["id"][0]
+	if id == "" || len(id) <= 0 {
+		fmt.Fprintln(w, "{\"code\":200, \"error\":\"id is empty\"}")
+		return
+	}
+
+	if !VerifySignature(r.Header, string(bodyContent), config[id].Secret) {
+		utils.Log2file("验证失败", config[id].Logfile)
+		fmt.Fprintln(w, "{\"code\":200, \"error\":\"Signature error\"}")
+	}
+	fmt.Fprintln(w, "{\"code\":200, \"description\":\"OK\"}")
+	utils.Log2file("验证通过,启动部署任务", config[id].Logfile)
+	AddNewTask(id)
+}
+
+// 验证Signature
+func VerifySignature(header http.Header, data string, secret string) bool {
+	signature := header.Get("X-Hub-Signature")
+	if signature != "" && len(signature) > 0 {
+		signature = strings.Split(signature, "=")[0]
+		return signature == utils.ComputeHash1(data, secret)
+	}
+	signature = header.Get("X-Gitea-Signature")
+
+	if signature == "" || len(signature) <= 0 {
+		signature = header.Get("X-Gogs-Signature")
+	}
+
+	return signature == utils.ComputeHmacSha256(data, secret)
+}
+
+// 验证Event
+func VerifyEvent(header http.Header, event string) bool {
+	e := header.Get("X-Gitea-Event")
+
+	if e == "" || len(e) <= 0 {
+		e = header.Get("X-Gogs-Event")
+	}
+
+	if e == "" || len(e) <= 0 {
+		e = header.Get("X-GitHub-Event")
+	}
+
+	return event == strings.Trim(e, "UTF-8")
+}

task.go

@@ -0,0 +1,47 @@
+package main
+
+import (
+	"fmt"
+	"os/exec"
+	"webhook-go/utils"
+)
+
+var running = false
+var queue []*TaskQueue
+
+type TaskQueue struct {
+	Id string
+	//Payload string
+}
+
+// AddNewTask add new task
+func AddNewTask(id string) {
+	queue = append(queue, &TaskQueue{id})
+	checkoutTaskStatus()
+}
+
+func checkoutTaskStatus() {
+	if running {
+		return
+	}
+	if len(queue) > 0 {
+		go startTask(queue[0])
+	}
+}
+
+func startTask(task *TaskQueue) {
+	commands := config[task.Id].Commands
+	running = true
+	for _, v := range commands {
+		cmd := exec.Command("/bin/sh", v)
+		_, err := cmd.Output()
+		if err == nil {
+			utils.Log2file(fmt.Sprintf("部署成功：%s", v), GetLogName(task.Id))
+		} else {
+			utils.Log2file(fmt.Sprintf("部署失败：%s %s", v, err), GetLogName(task.Id))
+		}
+	}
+	queue = queue[:0]
+	running = false
+	checkoutTaskStatus()
+}

utils/log2file.go

@@ -0,0 +1,43 @@
+package utils
+
+import (
+	"os"
+	"path"
+	"time"
+)
+
+var (
+	logsDir = "logs"
+)
+
+// Log2file write log to file
+func Log2file(content, logName string) {
+	var err error
+
+	if _, err := os.Stat(logsDir); err != nil {
+		err = os.MkdirAll(logsDir, 0711)
+		if err != nil {
+			return
+		}
+	}
+
+	if logName == "" || len(logName) <= 0 {
+		logName = "webhook-go.log"
+	}
+
+	logPath := path.Join(logsDir, logName)
+
+	if _, err := os.Stat(logPath); err != nil {
+		_, err = os.Create(logPath)
+		if err != nil {
+			return
+		}
+	}
+	f, err := os.OpenFile(logPath, os.O_APPEND|os.O_WRONLY, 0600)
+	if err != nil {
+		return
+	}
+	timeString := time.Now().Format("2006-01-02 15:04:05")
+	f.WriteString("[" + timeString + "]" + "" + content)
+	f.WriteString("\n")
+}

utils/signature.go

@@ -0,0 +1,32 @@
+package utils
+
+import (
+	"crypto/hmac"
+	"crypto/sha1"
+	"crypto/sha256"
+	"encoding/base64"
+	"encoding/hex"
+)
+
+// 计算hash1
+func ComputeHash1(message string, secret string) string {
+	h := hmac.New(sha1.New, []byte(secret))
+	h.Write([]byte(message))
+	// 转成十六进制
+	return hex.EncodeToString(h.Sum(nil))
+}
+
+// 计算HmacSha256
+func ComputeHmacSha256(message string, secret string) string {
+	key := []byte(secret)
+	h := hmac.New(sha256.New, key)
+	h.Write([]byte(message))
+	// 转成十六进制
+	return hex.EncodeToString(h.Sum(nil))
+
+}
+
+// 编码Base64
+func EncodeBase64(str string) string {
+	return base64.StdEncoding.EncodeToString([]byte(str))
+}