mirror of
https://git.lapiole.org/dani/ansible-roles.git
synced 2025-04-12 00:03:17 +02:00
127 lines
4.1 KiB
Lua
127 lines
4.1 KiB
Lua
-- Module which can be used as an http endpoint to send system private chat messages to meeting participants. The provided token
|
|
--- in the request is verified whether it has the right to do so. This module should be loaded under the virtual host.
|
|
-- Copyright (C) 2024-present 8x8, Inc.
|
|
|
|
-- curl https://{host}/send-system-chat-message -d '{"message": "testmessage", "connectionJIDs": ["{connection_jid}"], "room": "{room_jid}"}' -H "content-type: application/json" -H "authorization: Bearer {token}"
|
|
|
|
local util = module:require "util";
|
|
local token_util = module:require "token/util".new(module);
|
|
|
|
local async_handler_wrapper = util.async_handler_wrapper;
|
|
local room_jid_match_rewrite = util.room_jid_match_rewrite;
|
|
local starts_with = util.starts_with;
|
|
local get_room_from_jid = util.get_room_from_jid;
|
|
|
|
local st = require "util.stanza";
|
|
local json = require "cjson.safe";
|
|
|
|
local muc_domain_base = module:get_option_string("muc_mapper_domain_base");
|
|
local asapKeyServer = module:get_option_string("prosody_password_public_key_repo_url", "");
|
|
|
|
if asapKeyServer then
|
|
-- init token util with our asap keyserver
|
|
token_util:set_asap_key_server(asapKeyServer)
|
|
end
|
|
|
|
function verify_token(token)
|
|
if token == nil then
|
|
module:log("warn", "no token provided");
|
|
return false;
|
|
end
|
|
|
|
local session = {};
|
|
session.auth_token = token;
|
|
local verified, reason, msg = token_util:process_and_verify_token(session);
|
|
if not verified then
|
|
module:log("warn", "not a valid token %s %s", tostring(reason), tostring(msg));
|
|
return false;
|
|
end
|
|
return true;
|
|
end
|
|
|
|
function handle_send_system_message (event)
|
|
local request = event.request;
|
|
|
|
module:log("debug", "Request for sending a system message received: reqid %s", request.headers["request_id"])
|
|
|
|
-- verify payload
|
|
if request.headers.content_type ~= "application/json"
|
|
or (not request.body or #request.body == 0) then
|
|
module:log("error", "Wrong content type: %s or missing payload", request.headers.content_type);
|
|
return { status_code = 400; }
|
|
end
|
|
|
|
local payload = json.decode(request.body);
|
|
|
|
if not payload then
|
|
module:log("error", "Request body is missing");
|
|
return { status_code = 400; }
|
|
end
|
|
|
|
local displayName = payload["displayName"];
|
|
local message = payload["message"];
|
|
local connectionJIDs = payload["connectionJIDs"];
|
|
local payload_room = payload["room"];
|
|
|
|
if not message or not connectionJIDs or not payload_room then
|
|
module:log("error", "One of [message, connectionJIDs, room] was not provided");
|
|
return { status_code = 400; }
|
|
end
|
|
|
|
local room_jid = room_jid_match_rewrite(payload_room);
|
|
local room = get_room_from_jid(room_jid);
|
|
|
|
if not room then
|
|
module:log("error", "Room %s not found", room_jid);
|
|
return { status_code = 404; }
|
|
end
|
|
|
|
-- verify access
|
|
local token = request.headers["authorization"]
|
|
if not token then
|
|
module:log("error", "Authorization header was not provided for conference %s", room_jid)
|
|
return { status_code = 401 };
|
|
end
|
|
if starts_with(token, 'Bearer ') then
|
|
token = token:sub(8, #token)
|
|
else
|
|
module:log("error", "Authorization header is invalid")
|
|
return { status_code = 401 };
|
|
end
|
|
|
|
if not verify_token(token, room_jid) then
|
|
return { status_code = 401 };
|
|
end
|
|
|
|
local data = {
|
|
displayName = displayName,
|
|
type = "system_chat_message",
|
|
message = message,
|
|
};
|
|
|
|
for _, to in ipairs(connectionJIDs) do
|
|
local stanza = st.message({
|
|
from = room.jid,
|
|
to = to
|
|
})
|
|
:tag('json-message', { xmlns = 'http://jitsi.org/jitmeet' })
|
|
:text(json.encode(data))
|
|
:up();
|
|
|
|
room:route_stanza(stanza);
|
|
end
|
|
|
|
return { status_code = 200 };
|
|
end
|
|
|
|
module:log("info", "Adding http handler for /send-system-chat-message on %s", module.host);
|
|
module:depends("http");
|
|
module:provides("http", {
|
|
default_path = "/";
|
|
route = {
|
|
["POST send-system-chat-message"] = function(event)
|
|
return async_handler_wrapper(event, handle_send_system_message)
|
|
end;
|
|
};
|
|
});
|