Merge branch 'issue-13903' of https://0xacab.org/sutty/sutty into 17.3.alpine.panel.sutty.nl

2024-11-19 22:06:21 +00:00 · 2023-09-22 16:03:01 +00:00 · 2023-09-22 16:03:01 +00:00 · feb54b0b47
commit feb54b0b47
parent a8de3c71c4 4a7ac981e5
2 changed files with 7 additions and 7 deletions
--- a/app/controllers/api/v1/webhooks_controller.rb
+++ b/app/controllers/api/v1/webhooks_controller.rb
@ -34,14 +34,14 @@ module Api
        @token ||=
          begin
            # Gitlab
-            if request.headers['X-Gitlab-Token']
+            if request.headers['X-Gitlab-Token'].present?
              request.headers['X-Gitlab-Token']
            # Github
-            elsif request.headers['X-Hub-Signature-256']
-              token_from_signature(request.headers['X_Hub_Signature_256'], 'sha256=')
+            elsif request.headers['X-Hub-Signature-256'].present?
+              token_from_signature(request.headers['X-Hub-Signature-256'], 'sha256=')
            # Gitea
-            elsif request.headers['X_Gitea_Signature']
-              token_from_signature(request.headers['X_Gitea_Signature'])
+            elsif request.headers['X-Gitea-Signature'].present?
+              token_from_signature(request.headers['X-Gitea-Signature'])
            else
              raise ActiveRecord::RecordNotFound, 'proveedor no soportado'
            end
@ -55,7 +55,7 @@ module Api
        payload = request.body.read
        site.roles.where(temporal: false, rol: 'usuarie').pluck(:token).find do |token|
          new_signature = prepend + OpenSSL::HMAC.hexdigest(OpenSSL::Digest.new('sha256'), token, payload)
-          ActiveSupport::SecurityUtils.secure_compare(new_signature, signature)
+          ActiveSupport::SecurityUtils.secure_compare(new_signature, signature.to_s)
        end.tap do |t|
          raise ActiveRecord::RecordNotFound, 'token no encontrado' if t.nil?
        end
--- a/config/environments/production.rb
+++ b/config/environments/production.rb
@ -142,7 +142,7 @@ Rails.application.configure do
  }
  config.action_mailer.default_options = { from: ENV.fetch('DEFAULT_FROM', "noreply@sutty.nl") }

-  config.middleware.use ExceptionNotification::Rack, gitlab: {}, ignore_exceptions: (['DeployJob::DeployAlreadyRunningException'] + ExceptionNotifier.ignored_exceptions)
+  config.middleware.use ExceptionNotification::Rack, gitlab: {}, ignore_exceptions: ['DeployJob::DeployAlreadyRunningException']

  Rails.application.routes.default_url_options[:host] = "panel.#{ENV.fetch('SUTTY', 'sutty.nl')}"
  Rails.application.routes.default_url_options[:protocol] = 'https'