56743857ee
# What this PR does Refactors the "invite" functionality in Slack to use direct paging and be more consistent with the web UI and `/escalate` Slack command. ## Screenshots ### Alert group buttons Before: <img width="609" alt="Screenshot 2023-07-17 at 22 40 47" src="https://github.com/grafana/oncall/assets/20116910/68fad5a4-5011-4d74-b1c7-362bdb4f8cf0"> After (replace "Invite..." dropdown with "Responders" button, swap it with the silence button): <img width="587" alt="Screenshot 2023-07-17 at 22 37 19" src="https://github.com/grafana/oncall/assets/20116910/50b42057-f46b-4558-ab1c-56c34a15af5e"> ### What happens when clicking on "Responders" The following modal opens up with a list of currently paged users and inputs to page more users/schedules: <img width="514" alt="Screenshot 2023-07-17 at 22 37 52" src="https://github.com/grafana/oncall/assets/20116910/70bd2853-d459-4343-8b25-8519ac0098f7"> This is supposed to be the Slack equivalent of this part of the web UI: <img width="601" alt="Screenshot 2023-07-17 at 22 47 17" src="https://github.com/grafana/oncall/assets/20116910/101e1229-a5c4-404f-8388-eceee3e4820f"> ## Which issue(s) this PR fixes https://github.com/grafana/oncall/issues/2336 ## Checklist - [x] Unit, integration, and e2e (if applicable) tests updated - [x] Documentation added (or `pr:no public docs` PR label added if not required) - [x] `CHANGELOG.md` updated (or `pr:no changelog` PR label added if not required)
593 lines
27 KiB
Python
593 lines
27 KiB
Python
import hashlib
|
|
import hmac
|
|
import json
|
|
import logging
|
|
import typing
|
|
from contextlib import suppress
|
|
|
|
from django.conf import settings
|
|
from django.core.exceptions import ObjectDoesNotExist
|
|
from django.http import HttpResponse
|
|
from rest_framework import status
|
|
from rest_framework.permissions import IsAuthenticated
|
|
from rest_framework.response import Response
|
|
from rest_framework.views import APIView
|
|
|
|
from apps.api.permissions import RBACPermission
|
|
from apps.auth_token.auth import PluginAuthentication
|
|
from apps.base.utils import live_settings
|
|
from apps.slack.scenarios.alertgroup_appearance import STEPS_ROUTING as ALERTGROUP_APPEARANCE_ROUTING
|
|
|
|
# Importing routes from scenarios
|
|
from apps.slack.scenarios.declare_incident import STEPS_ROUTING as DECLARE_INCIDENT_ROUTING
|
|
from apps.slack.scenarios.distribute_alerts import STEPS_ROUTING as DISTRIBUTION_STEPS_ROUTING
|
|
from apps.slack.scenarios.invited_to_channel import STEPS_ROUTING as INVITED_TO_CHANNEL_ROUTING
|
|
from apps.slack.scenarios.manage_responders import STEPS_ROUTING as MANAGE_RESPONDERS_ROUTING
|
|
from apps.slack.scenarios.manual_incident import STEPS_ROUTING as MANUAL_INCIDENT_ROUTING
|
|
from apps.slack.scenarios.notified_user_not_in_channel import STEPS_ROUTING as NOTIFIED_USER_NOT_IN_CHANNEL_ROUTING
|
|
from apps.slack.scenarios.onboarding import STEPS_ROUTING as ONBOARDING_STEPS_ROUTING
|
|
from apps.slack.scenarios.paging import STEPS_ROUTING as DIRECT_PAGE_ROUTING
|
|
from apps.slack.scenarios.profile_update import STEPS_ROUTING as PROFILE_UPDATE_ROUTING
|
|
from apps.slack.scenarios.resolution_note import STEPS_ROUTING as RESOLUTION_NOTE_ROUTING
|
|
from apps.slack.scenarios.scenario_step import (
|
|
EVENT_SUBTYPE_BOT_MESSAGE,
|
|
EVENT_SUBTYPE_MESSAGE_CHANGED,
|
|
EVENT_SUBTYPE_MESSAGE_DELETED,
|
|
EVENT_TYPE_APP_MENTION,
|
|
EVENT_TYPE_MESSAGE,
|
|
EVENT_TYPE_MESSAGE_CHANNEL,
|
|
EVENT_TYPE_SUBTEAM_CREATED,
|
|
EVENT_TYPE_SUBTEAM_MEMBERS_CHANGED,
|
|
EVENT_TYPE_SUBTEAM_UPDATED,
|
|
EVENT_TYPE_USER_CHANGE,
|
|
EVENT_TYPE_USER_PROFILE_CHANGED,
|
|
PAYLOAD_TYPE_BLOCK_ACTIONS,
|
|
PAYLOAD_TYPE_DIALOG_SUBMISSION,
|
|
PAYLOAD_TYPE_EVENT_CALLBACK,
|
|
PAYLOAD_TYPE_INTERACTIVE_MESSAGE,
|
|
PAYLOAD_TYPE_MESSAGE_ACTION,
|
|
PAYLOAD_TYPE_SLASH_COMMAND,
|
|
PAYLOAD_TYPE_VIEW_SUBMISSION,
|
|
ScenarioStep,
|
|
)
|
|
from apps.slack.scenarios.schedules import STEPS_ROUTING as SCHEDULES_ROUTING
|
|
from apps.slack.scenarios.slack_channel import STEPS_ROUTING as CHANNEL_ROUTING
|
|
from apps.slack.scenarios.slack_channel_integration import STEPS_ROUTING as SLACK_CHANNEL_INTEGRATION_ROUTING
|
|
from apps.slack.scenarios.slack_usergroup import STEPS_ROUTING as SLACK_USERGROUP_UPDATE_ROUTING
|
|
from apps.slack.slack_client import SlackClientWithErrorHandling
|
|
from apps.slack.slack_client.exceptions import SlackAPIException, SlackAPITokenException
|
|
from apps.slack.tasks import clean_slack_integration_leftovers, unpopulate_slack_user_identities
|
|
from apps.user_management.models import Organization
|
|
from common.insight_log import ChatOpsEvent, ChatOpsTypePlug, write_chatops_insight_log
|
|
from common.oncall_gateway import delete_slack_connector
|
|
|
|
from .models import SlackMessage, SlackTeamIdentity, SlackUserIdentity
|
|
|
|
SCENARIOS_ROUTES = [] # Add all other routes here
|
|
SCENARIOS_ROUTES.extend(ONBOARDING_STEPS_ROUTING)
|
|
SCENARIOS_ROUTES.extend(DISTRIBUTION_STEPS_ROUTING)
|
|
SCENARIOS_ROUTES.extend(INVITED_TO_CHANNEL_ROUTING)
|
|
SCENARIOS_ROUTES.extend(SCHEDULES_ROUTING)
|
|
SCENARIOS_ROUTES.extend(SLACK_CHANNEL_INTEGRATION_ROUTING)
|
|
SCENARIOS_ROUTES.extend(ALERTGROUP_APPEARANCE_ROUTING)
|
|
SCENARIOS_ROUTES.extend(RESOLUTION_NOTE_ROUTING)
|
|
SCENARIOS_ROUTES.extend(SLACK_USERGROUP_UPDATE_ROUTING)
|
|
SCENARIOS_ROUTES.extend(CHANNEL_ROUTING)
|
|
SCENARIOS_ROUTES.extend(PROFILE_UPDATE_ROUTING)
|
|
SCENARIOS_ROUTES.extend(MANUAL_INCIDENT_ROUTING)
|
|
SCENARIOS_ROUTES.extend(DIRECT_PAGE_ROUTING)
|
|
SCENARIOS_ROUTES.extend(MANAGE_RESPONDERS_ROUTING)
|
|
SCENARIOS_ROUTES.extend(DECLARE_INCIDENT_ROUTING)
|
|
SCENARIOS_ROUTES.extend(NOTIFIED_USER_NOT_IN_CHANNEL_ROUTING)
|
|
|
|
logger = logging.getLogger(__name__)
|
|
|
|
|
|
class StopAnalyticsReporting(APIView):
|
|
def get(self, request):
|
|
response = HttpResponse(
|
|
"Your app installation would not be tracked by analytics from backend, "
|
|
"use browser plugin to disable from a frontend side. "
|
|
)
|
|
response.set_cookie("no_track", True, max_age=10 * 360 * 24 * 60 * 60)
|
|
return response
|
|
|
|
|
|
class InstallLinkRedirectView(APIView):
|
|
def get(self, request, subscription="free", utm="not_specified"):
|
|
return HttpResponse(("Sign up is not allowed"), status=status.HTTP_400_BAD_REQUEST)
|
|
|
|
|
|
class SignupRedirectView(APIView):
|
|
def get(self, request, subscription="free", utm="not_specified"):
|
|
return HttpResponse(("Sign up is not allowed"), status=status.HTTP_400_BAD_REQUEST)
|
|
|
|
|
|
class OAuthSlackView(APIView):
|
|
def get(self, request, format=None, subscription="free", utm="not_specified"):
|
|
return HttpResponse(("Sign up is not allowed"), status=status.HTTP_400_BAD_REQUEST)
|
|
|
|
|
|
class SlackEventApiEndpointView(APIView):
|
|
@staticmethod
|
|
def verify_signature(timestamp, signature, body, secret):
|
|
# https://github.com/slackapi/python-slack-events-api/blob/master/slackeventsapi/server.py#L47
|
|
|
|
if hasattr(hmac, "compare_digest"):
|
|
req = str.encode("v0:" + str(timestamp) + ":") + body
|
|
request_hash = "v0=" + hmac.new(str.encode(secret), req, hashlib.sha256).hexdigest()
|
|
return hmac.compare_digest(request_hash, signature)
|
|
|
|
def get(self, request, format=None):
|
|
return Response("hello")
|
|
|
|
def post(self, request):
|
|
logger.info("Request id: {}".format(request.META.get("HTTP_X_REQUEST_ID")))
|
|
body = request.body
|
|
|
|
try:
|
|
slack_signature = request.META["HTTP_X_SLACK_SIGNATURE"]
|
|
slack_request_timestamp = request.META["HTTP_X_SLACK_REQUEST_TIMESTAMP"]
|
|
except KeyError:
|
|
logger.warning("X-Slack-Signature or X-Slack-Request_Timestamp don't exist, This request is not from slack")
|
|
return Response(status=403)
|
|
|
|
if not settings.DEBUG:
|
|
if live_settings.SLACK_SIGNING_SECRET is None and settings.SLACK_SIGNING_SECRET_LIVE:
|
|
raise Exception("Please specify SLACK_SIGNING_SECRET or use DEBUG.")
|
|
|
|
if not (
|
|
SlackEventApiEndpointView.verify_signature(
|
|
slack_request_timestamp, slack_signature, body, live_settings.SLACK_SIGNING_SECRET
|
|
)
|
|
or SlackEventApiEndpointView.verify_signature(
|
|
slack_request_timestamp, slack_signature, body, settings.SLACK_SIGNING_SECRET_LIVE
|
|
)
|
|
):
|
|
return Response(status=403)
|
|
|
|
# Unifying payload
|
|
if "payload" in request.data:
|
|
payload = request.data["payload"]
|
|
else:
|
|
payload = request.data
|
|
if isinstance(payload, str):
|
|
payload = json.JSONDecoder().decode(payload)
|
|
|
|
logger.info(f"Slack payload is {payload}")
|
|
|
|
# Checking if it's repeated Slack request
|
|
if "HTTP_X_SLACK_RETRY_NUM" in request.META and int(request.META["HTTP_X_SLACK_RETRY_NUM"]) > 1:
|
|
logger.critical(
|
|
"Slack retries {} time, request data: {}".format(request.META["HTTP_X_SLACK_RETRY_NUM"], request.data)
|
|
)
|
|
payload["amixr_slack_retries"] = request.META["HTTP_X_SLACK_RETRY_NUM"]
|
|
|
|
payload_type = payload.get("type")
|
|
payload_type_is_block_actions = payload_type == PAYLOAD_TYPE_BLOCK_ACTIONS
|
|
payload_command = payload.get("command")
|
|
payload_callback_id = payload.get("callback_id")
|
|
payload_actions = payload.get("actions", [])
|
|
payload_user = payload.get("user")
|
|
payload_user_id = payload.get("user_id")
|
|
|
|
payload_event = payload.get("event", {})
|
|
payload_event_type = payload_event.get("type")
|
|
payload_event_subtype = payload_event.get("subtype")
|
|
payload_event_user = payload_event.get("user")
|
|
payload_event_bot_id = payload_event.get("bot_id")
|
|
payload_event_channel_type = payload_event.get("channel_type")
|
|
|
|
payload_event_message = payload_event.get("message", {})
|
|
payload_event_message_user = payload_event_message.get("user")
|
|
|
|
payload_event_previous_message = payload_event.get("previous_message", {})
|
|
payload_event_previous_message_user = payload_event_previous_message.get("user")
|
|
|
|
# Initial url verification
|
|
if payload_type == "url_verification":
|
|
logger.critical("URL verification from Slack side. That's suspicious.")
|
|
return Response(payload["challenge"])
|
|
|
|
# Linking team
|
|
slack_team_identity = self._get_slack_team_identity_from_payload(payload)
|
|
|
|
if not slack_team_identity:
|
|
logger.info("Dropping request because it does not have SlackTeamIdentity.")
|
|
return Response()
|
|
|
|
# Means that slack_team_identity unpopulated
|
|
if not slack_team_identity.organizations.exists():
|
|
logger.warning(f"OnCall Team for SlackTeamIdentity is not detected, stop it!")
|
|
# Open pop-up to inform user why OnCall bot doesn't work if any action was triggered
|
|
warning_text = (
|
|
"OnCall is not able to process this action because this Slack workspace was "
|
|
"disconnected from OnCall. Please log in to the OnCall web interface and install "
|
|
"Slack Integration with this workspace again."
|
|
)
|
|
self._open_warning_window_if_needed(payload, slack_team_identity, warning_text)
|
|
return Response(status=200)
|
|
|
|
# Todo: the case when team has no keys is unexpected, investigation is required
|
|
if slack_team_identity.access_token is None and slack_team_identity.bot_access_token is None:
|
|
logger.info(f"Team {slack_team_identity.slack_id} has no keys, dropping request.")
|
|
return Response()
|
|
|
|
sc = SlackClientWithErrorHandling(slack_team_identity.bot_access_token)
|
|
|
|
if slack_team_identity.detected_token_revoked is not None:
|
|
# check if token is still invalid
|
|
try:
|
|
sc.api_call(
|
|
"auth.test",
|
|
team=slack_team_identity,
|
|
)
|
|
except SlackAPITokenException:
|
|
logger.info(f"Team {slack_team_identity.slack_id} has revoked token, dropping request.")
|
|
return Response(status=200)
|
|
|
|
Step = None
|
|
step_was_found = False
|
|
|
|
slack_user_id = None
|
|
user = None
|
|
# Linking user identity
|
|
slack_user_identity = None
|
|
|
|
if payload_event:
|
|
if payload_event_user and slack_team_identity:
|
|
if "id" in payload_event_user:
|
|
slack_user_id = payload_event_user["id"]
|
|
elif type(payload_event_user) is str:
|
|
slack_user_id = payload_event_user
|
|
else:
|
|
raise Exception("Failed Linking user identity")
|
|
|
|
elif (
|
|
payload_event_bot_id
|
|
and slack_team_identity
|
|
and payload_event_channel_type == EVENT_TYPE_MESSAGE_CHANNEL
|
|
):
|
|
response = sc.api_call("bots.info", bot=payload_event_bot_id)
|
|
bot_user_id = response.get("bot", {}).get("user_id", "")
|
|
|
|
# Don't react on own bot's messages.
|
|
if bot_user_id == slack_team_identity.bot_user_id:
|
|
return Response(status=200)
|
|
|
|
elif payload_event_message_user:
|
|
slack_user_id = payload_event_message_user
|
|
# event subtype 'message_deleted'
|
|
elif payload_event_previous_message_user:
|
|
slack_user_id = payload_event_previous_message_user
|
|
|
|
if payload_user:
|
|
slack_user_id = payload_user["id"]
|
|
|
|
elif payload_user_id:
|
|
slack_user_id = payload_user_id
|
|
|
|
if slack_user_id is not None and slack_user_id != slack_team_identity.bot_user_id:
|
|
slack_user_identity = SlackUserIdentity.objects.filter(
|
|
slack_id=slack_user_id,
|
|
slack_team_identity=slack_team_identity,
|
|
).first()
|
|
|
|
organization = self._get_organization_from_payload(payload, slack_team_identity)
|
|
logger.info("Organization: " + str(organization))
|
|
logger.info("SlackUserIdentity detected: " + str(slack_user_identity))
|
|
|
|
if not slack_user_identity:
|
|
if payload_type == PAYLOAD_TYPE_EVENT_CALLBACK:
|
|
if payload_event_type in [
|
|
EVENT_TYPE_SUBTEAM_CREATED,
|
|
EVENT_TYPE_SUBTEAM_UPDATED,
|
|
EVENT_TYPE_SUBTEAM_MEMBERS_CHANGED,
|
|
]:
|
|
logger.info("Slack event without user slack_id.")
|
|
elif payload_event_type in (EVENT_TYPE_USER_CHANGE, EVENT_TYPE_USER_PROFILE_CHANGED):
|
|
logger.info(
|
|
f"Event {payload_event_type}. Dropping request because it does not have SlackUserIdentity."
|
|
)
|
|
return Response()
|
|
else:
|
|
logger.info("Dropping request because it does not have SlackUserIdentity.")
|
|
self._open_warning_for_unconnected_user(sc, payload)
|
|
return Response()
|
|
elif organization:
|
|
user = slack_user_identity.get_user(organization)
|
|
if not user:
|
|
# Means that user slack_user_identity is not in any organization, connected to this Slack workspace
|
|
warning_text = "Permission denied. Please connect your Slack account to OnCall."
|
|
# Open pop-up to inform user why OnCall bot doesn't work if any action was triggered
|
|
self._open_warning_window_if_needed(payload, slack_team_identity, warning_text)
|
|
return Response(status=200)
|
|
# direct paging / manual incident dialogs don't require organization to be set
|
|
elif organization is None and payload_type_is_block_actions and not payload.get("view"):
|
|
# see this GitHub issue for more context on how this situation can arise
|
|
# https://github.com/grafana/oncall-private/issues/1836
|
|
warning_text = (
|
|
"OnCall is not able to process this action because one of the following scenarios: \n"
|
|
"1. The Slack chatops integration was disconnected from the instance that the Alert Group belongs "
|
|
"to, BUT the Slack workspace is still connected to another instance as well. In this case, simply log "
|
|
"in to the OnCall web interface and re-install the Slack Integration with this workspace again.\n"
|
|
"2. (Less likely) The Grafana instance belonging to this Alert Group was deleted. In this case the Alert Group is orphaned and cannot be acted upon."
|
|
)
|
|
# Open pop-up to inform user why OnCall bot doesn't work if any action was triggered
|
|
self._open_warning_window_if_needed(payload, slack_team_identity, warning_text)
|
|
return Response(status=200)
|
|
elif not slack_user_identity.users.exists():
|
|
# Means that slack_user_identity doesn't have any connected user
|
|
# Open pop-up to inform user why OnCall bot doesn't work if any action was triggered
|
|
self._open_warning_for_unconnected_user(sc, payload)
|
|
return Response(status=200)
|
|
|
|
# Capture cases when we expect stateful message from user
|
|
if payload_type == PAYLOAD_TYPE_EVENT_CALLBACK:
|
|
event_type = payload_event_type
|
|
|
|
# Message event is from channel
|
|
if (
|
|
event_type == EVENT_TYPE_MESSAGE
|
|
and payload_event_channel_type == EVENT_TYPE_MESSAGE_CHANNEL
|
|
and (
|
|
not payload_event_subtype
|
|
or payload_event_subtype
|
|
in [
|
|
EVENT_SUBTYPE_BOT_MESSAGE,
|
|
EVENT_SUBTYPE_MESSAGE_CHANGED,
|
|
EVENT_SUBTYPE_MESSAGE_DELETED,
|
|
]
|
|
)
|
|
):
|
|
for route in SCENARIOS_ROUTES:
|
|
if payload_event_channel_type == route.get("message_channel_type"):
|
|
Step = route["step"]
|
|
logger.info("Routing to {}".format(Step))
|
|
step = Step(slack_team_identity, organization, user)
|
|
step.process_scenario(slack_user_identity, slack_team_identity, payload)
|
|
step_was_found = True
|
|
# We don't do anything on app mention, but we doesn't want to unsubscribe from this event yet.
|
|
if event_type == EVENT_TYPE_APP_MENTION:
|
|
logger.info(f"Received event of type {EVENT_TYPE_APP_MENTION} from slack. Skipping.")
|
|
return Response(status=200)
|
|
|
|
# Routing to Steps based on routing rules
|
|
if not step_was_found:
|
|
for route in SCENARIOS_ROUTES:
|
|
route_payload_type = route["payload_type"]
|
|
|
|
# Slash commands have to "type"
|
|
if payload_command and route_payload_type == PAYLOAD_TYPE_SLASH_COMMAND:
|
|
if payload_command in route["command_name"]:
|
|
Step = route["step"]
|
|
logger.info("Routing to {}".format(Step))
|
|
step = Step(slack_team_identity, organization, user)
|
|
step.process_scenario(slack_user_identity, slack_team_identity, payload)
|
|
step_was_found = True
|
|
|
|
if payload_type == route_payload_type:
|
|
if payload_type == PAYLOAD_TYPE_EVENT_CALLBACK:
|
|
if payload_event_type == route["event_type"]:
|
|
# event_name is used for stateful
|
|
if "event_name" not in route:
|
|
Step = route["step"]
|
|
logger.info("Routing to {}".format(Step))
|
|
step = Step(slack_team_identity, organization, user)
|
|
step.process_scenario(slack_user_identity, slack_team_identity, payload)
|
|
step_was_found = True
|
|
|
|
if payload_type == PAYLOAD_TYPE_INTERACTIVE_MESSAGE:
|
|
for action in payload_actions:
|
|
if action["type"] == route["action_type"]:
|
|
# Action name may also contain action arguments.
|
|
# So only beginning is used for routing.
|
|
if action["name"].startswith(route["action_name"]):
|
|
Step = route["step"]
|
|
logger.info("Routing to {}".format(Step))
|
|
step = Step(slack_team_identity, organization, user)
|
|
result = step.process_scenario(slack_user_identity, slack_team_identity, payload)
|
|
if result is not None:
|
|
return result
|
|
step_was_found = True
|
|
|
|
if payload_type_is_block_actions:
|
|
for action in payload_actions:
|
|
if action["type"] == route["block_action_type"]:
|
|
if action["action_id"].startswith(route["block_action_id"]):
|
|
Step = route["step"]
|
|
logger.info("Routing to {}".format(Step))
|
|
step = Step(slack_team_identity, organization, user)
|
|
step.process_scenario(slack_user_identity, slack_team_identity, payload)
|
|
step_was_found = True
|
|
|
|
if payload_type == PAYLOAD_TYPE_DIALOG_SUBMISSION:
|
|
if payload_callback_id == route["dialog_callback_id"]:
|
|
Step = route["step"]
|
|
logger.info("Routing to {}".format(Step))
|
|
step = Step(slack_team_identity, organization, user)
|
|
result = step.process_scenario(slack_user_identity, slack_team_identity, payload)
|
|
if result is not None:
|
|
return result
|
|
step_was_found = True
|
|
|
|
if payload_type == PAYLOAD_TYPE_VIEW_SUBMISSION:
|
|
if payload["view"]["callback_id"].startswith(route["view_callback_id"]):
|
|
Step = route["step"]
|
|
logger.info("Routing to {}".format(Step))
|
|
step = Step(slack_team_identity, organization, user)
|
|
result = step.process_scenario(slack_user_identity, slack_team_identity, payload)
|
|
if result is not None:
|
|
return result
|
|
step_was_found = True
|
|
|
|
if payload_type == PAYLOAD_TYPE_MESSAGE_ACTION:
|
|
if payload_callback_id in route["message_action_callback_id"]:
|
|
Step = route["step"]
|
|
logger.info("Routing to {}".format(Step))
|
|
step = Step(slack_team_identity, organization, user)
|
|
step.process_scenario(slack_user_identity, slack_team_identity, payload)
|
|
step_was_found = True
|
|
|
|
if not step_was_found:
|
|
raise Exception("Step is undefined" + str(payload))
|
|
|
|
return Response(status=200)
|
|
|
|
@staticmethod
|
|
def _get_slack_team_identity_from_payload(payload: dict[str, typing.Any]) -> SlackTeamIdentity | None:
|
|
def _slack_team_id() -> str | None:
|
|
with suppress(KeyError):
|
|
return payload["team"]["id"]
|
|
|
|
with suppress(KeyError):
|
|
return payload["team_id"]
|
|
|
|
return None
|
|
|
|
try:
|
|
return SlackTeamIdentity.objects.get(slack_id=_slack_team_id())
|
|
except SlackTeamIdentity.DoesNotExist:
|
|
return None
|
|
|
|
@staticmethod
|
|
def _get_organization_from_payload(
|
|
payload: dict[str, typing.Any], slack_team_identity: SlackTeamIdentity
|
|
) -> Organization | None:
|
|
"""
|
|
Extract organization from Slack payload.
|
|
First try to get "organization_id" from the payload, for cases when it was explicitly passed from elsewhere.
|
|
Then try to find appropriate SlackMessage associated with the payload and get organization from it.
|
|
"""
|
|
|
|
def _organization_id() -> str | int | None:
|
|
with suppress(KeyError, TypeError, json.JSONDecodeError):
|
|
return json.loads(payload["view"]["private_metadata"])["organization_id"]
|
|
|
|
with suppress(KeyError, IndexError, TypeError, json.JSONDecodeError):
|
|
return json.loads(payload["actions"][0]["value"])["organization_id"]
|
|
|
|
return None
|
|
|
|
with suppress(ObjectDoesNotExist):
|
|
# see this GitHub issue for more context on how this situation can arise
|
|
# https://github.com/grafana/oncall-private/issues/1836
|
|
return slack_team_identity.organizations.get(pk=_organization_id())
|
|
|
|
def _channel_id() -> str | None:
|
|
with suppress(KeyError):
|
|
return payload["channel"]["id"]
|
|
|
|
with suppress(KeyError):
|
|
return payload["event"]["channel"]
|
|
|
|
with suppress(KeyError):
|
|
return payload["channel_id"]
|
|
|
|
return None
|
|
|
|
def _message_ts() -> str | None:
|
|
with suppress(KeyError):
|
|
return payload["message"]["thread_ts"]
|
|
|
|
with suppress(KeyError):
|
|
return payload["message"]["ts"]
|
|
|
|
with suppress(KeyError):
|
|
return payload["message_ts"]
|
|
|
|
with suppress(KeyError):
|
|
return payload["event"]["message"]["thread_ts"]
|
|
|
|
with suppress(KeyError):
|
|
return payload["event"]["message"]["ts"]
|
|
|
|
with suppress(KeyError):
|
|
return payload["event"]["thread_ts"]
|
|
|
|
return None
|
|
|
|
channel_id, message_ts = _channel_id(), _message_ts()
|
|
if not (channel_id and message_ts):
|
|
return None
|
|
|
|
with suppress(ObjectDoesNotExist):
|
|
slack_message = SlackMessage.objects.get(
|
|
_slack_team_identity=slack_team_identity,
|
|
slack_id=message_ts,
|
|
channel_id=channel_id,
|
|
)
|
|
return slack_message.get_alert_group().channel.organization
|
|
|
|
return None
|
|
|
|
def _open_warning_window_if_needed(self, payload, slack_team_identity, warning_text) -> None:
|
|
if payload.get("trigger_id") is not None:
|
|
step = ScenarioStep(slack_team_identity)
|
|
try:
|
|
step.open_warning_window(payload, warning_text)
|
|
except SlackAPIException as e:
|
|
logger.info(
|
|
f"Failed to open pop-up for unpopulated SlackTeamIdentity {slack_team_identity.pk}\n" f"Error: {e}"
|
|
)
|
|
|
|
def _open_warning_for_unconnected_user(self, slack_client, payload):
|
|
if payload.get("trigger_id") is None:
|
|
return
|
|
|
|
text = (
|
|
"The information in this workspace is read-only. To interact with OnCall alert groups you need to connect a personal account.\n"
|
|
"Please go to *Grafana* -> *OnCall* -> *Users*, "
|
|
"choose *your profile* and click the *connect* button.\n"
|
|
":rocket: :rocket: :rocket:"
|
|
)
|
|
|
|
view = {
|
|
"blocks": (
|
|
{"type": "section", "block_id": "section-identifier", "text": {"type": "mrkdwn", "text": text}},
|
|
),
|
|
"type": "modal",
|
|
"callback_id": "modal-identifier",
|
|
"title": {
|
|
"type": "plain_text",
|
|
"text": "One more step!",
|
|
},
|
|
}
|
|
slack_client.api_call(
|
|
"views.open",
|
|
trigger_id=payload["trigger_id"],
|
|
view=view,
|
|
)
|
|
|
|
|
|
class ResetSlackView(APIView):
|
|
permission_classes = (IsAuthenticated, RBACPermission)
|
|
authentication_classes = [PluginAuthentication]
|
|
|
|
rbac_permissions = {
|
|
"post": [RBACPermission.Permissions.CHATOPS_UPDATE_SETTINGS],
|
|
}
|
|
|
|
def post(self, request):
|
|
if settings.SLACK_INTEGRATION_MAINTENANCE_ENABLED:
|
|
response = Response(
|
|
"Grafana OnCall is temporary unable to connect your slack account or install OnCall to your slack workspace",
|
|
status=400,
|
|
)
|
|
else:
|
|
organization = request.auth.organization
|
|
slack_team_identity = organization.slack_team_identity
|
|
if slack_team_identity is not None:
|
|
clean_slack_integration_leftovers.apply_async((organization.pk,))
|
|
if settings.FEATURE_MULTIREGION_ENABLED:
|
|
delete_slack_connector(str(organization.uuid))
|
|
write_chatops_insight_log(
|
|
author=request.user,
|
|
event_name=ChatOpsEvent.WORKSPACE_DISCONNECTED,
|
|
chatops_type=ChatOpsTypePlug.SLACK.value,
|
|
)
|
|
unpopulate_slack_user_identities(organization.pk, True)
|
|
response = Response(status=200)
|
|
else:
|
|
response = Response(status=400)
|
|
return response
|