trabajo-afectivo/lib/external_credential/twitter.rb

class ExternalCredential::Twitter

  def self.app_verify(params)
    register_webhook(params)
  end

  def self.request_account_to_link(credentials = {}, app_required = true)
    external_credential = ExternalCredential.find_by(name: 'twitter')
    raise Exceptions::UnprocessableEntity, 'No twitter app configured!' if !external_credential && app_required

    if external_credential
      if credentials[:consumer_key].blank?
        credentials[:consumer_key] = external_credential.credentials['consumer_key']
      end
      if credentials[:consumer_secret].blank?
        credentials[:consumer_secret] = external_credential.credentials['consumer_secret']
      end
    end

    raise Exceptions::UnprocessableEntity, 'No consumer_key param!' if credentials[:consumer_key].blank?
    raise Exceptions::UnprocessableEntity, 'No consumer_secret param!' if credentials[:consumer_secret].blank?

    consumer = OAuth::Consumer.new(
      credentials[:consumer_key],
      credentials[:consumer_secret], {
        site: 'https://api.twitter.com'
      }
    )
    begin
      request_token = consumer.get_request_token(oauth_callback: ExternalCredential.callback_url('twitter'))
    rescue => e
      case e.message
      when '401 Authorization Required'
        raise "#{e.message} (Invalid credentials may be to blame.)"
      when '403 Forbidden'
        raise "#{e.message} (Your app's callback URL configuration on developer.twitter.com may be to blame.)"
      else
        raise
      end
    end

    {
      request_token: request_token,
      authorize_url: request_token.authorize_url,
    }
  end

  def self.link_account(request_token, params)
    external_credential = ExternalCredential.find_by(name: 'twitter')
    raise Exceptions::UnprocessableEntity, 'No twitter app configured!' if !external_credential
    raise Exceptions::UnprocessableEntity, 'No request_token for session found!' if !request_token
    raise Exceptions::UnprocessableEntity, 'Invalid oauth_token given!' if request_token.params[:oauth_token] != params[:oauth_token]

    access_token = request_token.get_access_token(oauth_verifier: params[:oauth_verifier])
    client = TwitterSync.new(
      consumer_key:        external_credential.credentials[:consumer_key],
      consumer_secret:     external_credential.credentials[:consumer_secret],
      access_token:        access_token.token,
      access_token_secret: access_token.secret,
    )
    client_user = client.who_am_i

    # check if account already exists
    Channel.where(area: 'Twitter::Account').each do |channel|
      next if !channel.options
      next if !channel.options['user']
      next if !channel.options['user']['id']
      next if channel.options['user']['id'].to_s != client_user.id.to_s && channel.options['user']['screen_name'] != client_user.screen_name

      channel.options['user']['id'] = client_user.id.to_s
      channel.options['user']['screen_name'] = client_user.screen_name
      channel.options['user']['name'] = client_user.name

      # update access_token
      channel.options['auth']['external_credential_id'] = external_credential.id
      channel.options['auth']['oauth_token'] = access_token.token
      channel.options['auth']['oauth_token_secret'] = access_token.secret
      channel.save!

      subscribe_webhook(
        channel:             channel,
        client:              client,
        external_credential: external_credential,
      )

      return channel
    end

    # create channel
    channel = Channel.create!(
      area:          'Twitter::Account',
      options:       {
        adapter: 'twitter',
        user:    {
          id:          client_user.id.to_s,
          screen_name: client_user.screen_name,
          name:        client_user.name,
        },
        auth:    {
          external_credential_id: external_credential.id,
          oauth_token:            access_token.token,
          oauth_token_secret:     access_token.secret,
        },
        sync:    {
          limit:           20,
          search:          [],
          mentions:        {},
          direct_messages: {},
          track_retweets:  false
        }
      },
      active:        true,
      created_by_id: 1,
      updated_by_id: 1,
    )

    subscribe_webhook(
      channel:             channel,
      client:              client,
      external_credential: external_credential,
    )

    channel
  end

  def self.webhook_url
    "#{Setting.get('http_type')}://#{Setting.get('fqdn')}#{Rails.configuration.api_path}/channels_twitter_webhook"
  end

  def self.register_webhook(params)
    request_account_to_link(params, false)

    raise Exceptions::UnprocessableEntity, 'No consumer_key param!' if params[:consumer_key].blank?
    raise Exceptions::UnprocessableEntity, 'No consumer_secret param!' if params[:consumer_secret].blank?
    raise Exceptions::UnprocessableEntity, 'No oauth_token param!' if params[:oauth_token].blank?
    raise Exceptions::UnprocessableEntity, 'No oauth_token_secret param!' if params[:oauth_token_secret].blank?

    return if params[:env].blank?

    env_name = params[:env]

    client = TwitterSync.new(
      consumer_key:        params[:consumer_key],
      consumer_secret:     params[:consumer_secret],
      access_token:        params[:oauth_token],
      access_token_secret: params[:oauth_token_secret],
    )

    # needed for verify callback
    Cache.write('external_credential_twitter', {
                  consumer_key:        params[:consumer_key],
                  consumer_secret:     params[:consumer_secret],
                  access_token:        params[:oauth_token],
                  access_token_secret: params[:oauth_token_secret],
                })

    # verify if webhook is already registered
    begin
      webhooks = client.webhooks_by_env_name(env_name)
    rescue
      begin
        webhooks = client.webhooks
        raise "Unable to get list of webooks. You use the wrong 'Dev environment label', only #{webhooks.inspect} available."
      rescue => e
        raise "Unable to get list of webooks. Maybe you do not have an Twitter developer approval right now or you use the wrong 'Dev environment label': #{e.message}"
      end
    end
    webhook_id = nil
    webhook_valid = nil
    webhooks.each do |webhook|
      next if webhook[:url] != webhook_url

      webhook_id = webhook[:id]
      webhook_valid = webhook[:valid]
    end

    # if webhook is already registered
    # - in case if webhook is invalid, just send a new verification request
    # - in case if webhook is valid return
    if webhook_id
      if webhook_valid == false
        client.webhook_request_verification(webhook_id, env_name, webhook_url)
      end
      params[:webhook_id] = webhook_id
      return params
    end

    # delete already registered webhooks
    webhooks.each do |webhook|
      client.webhook_delete(webhook[:id], env_name)
    end

    # register new webhook
    response = client.webhook_register(env_name, webhook_url)

    params[:webhook_id] = response[:id]
    params
  end

  def self.subscribe_webhook(channel:, client:, external_credential:)
    env_name = external_credential.credentials[:env]
    webhook_id = external_credential.credentials[:webhook_id]

    Rails.logger.debug { "Starting Twitter subscription for webhook_id #{webhook_id} and Channel #{channel.id}" }
    client.webhook_subscribe(env_name)

    channel.options['subscribed_to_webhook_id'] = webhook_id
    channel.save!

    true
  end

end
Init backend of generic external credentials. 2015-12-17 11:49:40 +00:00			`class ExternalCredential::Twitter`

			`def self.app_verify(params)`
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`register_webhook(params)`
Init backend of generic external credentials. 2015-12-17 11:49:40 +00:00			`end`

Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`def self.request_account_to_link(credentials = {}, app_required = true)`
Init backend of generic external credentials. 2015-12-17 11:49:40 +00:00			`external_credential = ExternalCredential.find_by(name: 'twitter')`
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`raise Exceptions::UnprocessableEntity, 'No twitter app configured!' if !external_credential && app_required`
Updated rubocop to latest version (0.59.2) and applied required changes. 2018-10-09 06:17:41 +00:00
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`if external_credential`
			`if credentials[:consumer_key].blank?`
			`credentials[:consumer_key] = external_credential.credentials['consumer_key']`
			`end`
			`if credentials[:consumer_secret].blank?`
			`credentials[:consumer_secret] = external_credential.credentials['consumer_secret']`
			`end`
Init version of twitter admin. 2015-12-21 00:48:49 +00:00			`end`
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00
			`raise Exceptions::UnprocessableEntity, 'No consumer_key param!' if credentials[:consumer_key].blank?`
			`raise Exceptions::UnprocessableEntity, 'No consumer_secret param!' if credentials[:consumer_secret].blank?`

Init backend of generic external credentials. 2015-12-17 11:49:40 +00:00			`consumer = OAuth::Consumer.new(`
Init version of twitter admin. 2015-12-21 00:48:49 +00:00			`credentials[:consumer_key],`
			`credentials[:consumer_secret], {`
Init backend of generic external credentials. 2015-12-17 11:49:40 +00:00			`site: 'https://api.twitter.com'`
Init version of twitter and facebook channel connector. 2015-12-30 13:24:13 +00:00			`}`
			`)`
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`begin`
			`request_token = consumer.get_request_token(oauth_callback: ExternalCredential.callback_url('twitter'))`
			`rescue => e`
Bugfix: Improve error messaging in Twitter app configuration flow 2020-03-20 10:29:50 +00:00			`case e.message`
			`when '401 Authorization Required'`
			`raise "#{e.message} (Invalid credentials may be to blame.)"`
			`when '403 Forbidden'`
			`raise "#{e.message} (Your app's callback URL configuration on developer.twitter.com may be to blame.)"`
			`else`
			`raise`
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`end`
			`end`

Init backend of generic external credentials. 2015-12-17 11:49:40 +00:00			`{`
			`request_token: request_token,`
			`authorize_url: request_token.authorize_url,`
			`}`
			`end`

			`def self.link_account(request_token, params)`
			`external_credential = ExternalCredential.find_by(name: 'twitter')`
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`raise Exceptions::UnprocessableEntity, 'No twitter app configured!' if !external_credential`
			`raise Exceptions::UnprocessableEntity, 'No request_token for session found!' if !request_token`
			`raise Exceptions::UnprocessableEntity, 'Invalid oauth_token given!' if request_token.params[:oauth_token] != params[:oauth_token]`

Init backend of generic external credentials. 2015-12-17 11:49:40 +00:00			`access_token = request_token.get_access_token(oauth_verifier: params[:oauth_verifier])`
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`client = TwitterSync.new(`
Updated rubocop - applied custom Layout/AlignHash style. 2018-12-19 17:31:51 +00:00			`consumer_key: external_credential.credentials[:consumer_key],`
			`consumer_secret: external_credential.credentials[:consumer_secret],`
			`access_token: access_token.token,`
Init backend of generic external credentials. 2015-12-17 11:49:40 +00:00			`access_token_secret: access_token.secret,`
			`)`
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`client_user = client.who_am_i`
Init backend of generic external credentials. 2015-12-17 11:49:40 +00:00
Init version of twitter and facebook channel connector. 2015-12-30 13:24:13 +00:00			`# check if account already exists`
Applied RuboCop Style/BlockDelimiters to improve readability. 2017-10-01 12:25:52 +00:00			`Channel.where(area: 'Twitter::Account').each do \|channel\|`
Init version of twitter and facebook channel connector. 2015-12-30 13:24:13 +00:00			`next if !channel.options`
			`next if !channel.options['user']`
			`next if !channel.options['user']['id']`
Fix issue #2460 - corrupted IDs on Twitter channels break Direct Message functionality In some cases, editing a Twitter account via the admin panel would cause new DMs to stop coming in. Why? All Twitter usernames correspond to a numeric user ID (see https://tweeterid.com/). Zammad stores this ID on Twitter channels (under `channel.options['user']['id']`) and uses it to monitor incoming DMs. Zammad was storing these user IDs to the DB as integers, then passing those values to the frontend (JS) for account editing. Some user IDs are longer than JavaScript's `Number.MAX_SAFE_INTEGER`, and so got truncated on their way back to the update endpoint (e.g., 984608854112718800 instead of 984608854112718848). This commit enforces string storage of Twitter user IDs on new channels, and includes a migration to verify and stringify IDs on existing ones. Zammad Community: https://community.zammad.org/t/1799/34 GitHub: https://github.com/zammad/zammad/issues/2460 2019-11-07 06:21:46 +00:00			`next if channel.options['user']['id'].to_s != client_user.id.to_s && channel.options['user']['screen_name'] != client_user.screen_name`
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00
Fix issue #2460 - corrupted IDs on Twitter channels break Direct Message functionality In some cases, editing a Twitter account via the admin panel would cause new DMs to stop coming in. Why? All Twitter usernames correspond to a numeric user ID (see https://tweeterid.com/). Zammad stores this ID on Twitter channels (under `channel.options['user']['id']`) and uses it to monitor incoming DMs. Zammad was storing these user IDs to the DB as integers, then passing those values to the frontend (JS) for account editing. Some user IDs are longer than JavaScript's `Number.MAX_SAFE_INTEGER`, and so got truncated on their way back to the update endpoint (e.g., 984608854112718800 instead of 984608854112718848). This commit enforces string storage of Twitter user IDs on new channels, and includes a migration to verify and stringify IDs on existing ones. Zammad Community: https://community.zammad.org/t/1799/34 GitHub: https://github.com/zammad/zammad/issues/2460 2019-11-07 06:21:46 +00:00			`channel.options['user']['id'] = client_user.id.to_s`
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`channel.options['user']['screen_name'] = client_user.screen_name`
			`channel.options['user']['name'] = client_user.name`
Init version of twitter and facebook channel connector. 2015-12-30 13:24:13 +00:00
			`# update access_token`
			`channel.options['auth']['external_credential_id'] = external_credential.id`
			`channel.options['auth']['oauth_token'] = access_token.token`
			`channel.options['auth']['oauth_token_secret'] = access_token.secret`
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`channel.save!`

			`subscribe_webhook(`
			`channel: channel,`
			`client: client,`
			`external_credential: external_credential,`
			`)`

Init version of twitter and facebook channel connector. 2015-12-30 13:24:13 +00:00			`return channel`
Applied RuboCop Style/BlockDelimiters to improve readability. 2017-10-01 12:25:52 +00:00			`end`
Init version of twitter and facebook channel connector. 2015-12-30 13:24:13 +00:00
Init backend of generic external credentials. 2015-12-17 11:49:40 +00:00			`# create channel`
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`channel = Channel.create!(`
Updated rubocop - applied custom Layout/AlignHash style. 2018-12-19 17:31:51 +00:00			`area: 'Twitter::Account',`
			`options: {`
Init backend of generic external credentials. 2015-12-17 11:49:40 +00:00			`adapter: 'twitter',`
Updated rubocop - applied custom Layout/AlignHash style. 2018-12-19 17:31:51 +00:00			`user: {`
Fix issue #2460 - corrupted IDs on Twitter channels break Direct Message functionality In some cases, editing a Twitter account via the admin panel would cause new DMs to stop coming in. Why? All Twitter usernames correspond to a numeric user ID (see https://tweeterid.com/). Zammad stores this ID on Twitter channels (under `channel.options['user']['id']`) and uses it to monitor incoming DMs. Zammad was storing these user IDs to the DB as integers, then passing those values to the frontend (JS) for account editing. Some user IDs are longer than JavaScript's `Number.MAX_SAFE_INTEGER`, and so got truncated on their way back to the update endpoint (e.g., 984608854112718800 instead of 984608854112718848). This commit enforces string storage of Twitter user IDs on new channels, and includes a migration to verify and stringify IDs on existing ones. Zammad Community: https://community.zammad.org/t/1799/34 GitHub: https://github.com/zammad/zammad/issues/2460 2019-11-07 06:21:46 +00:00			`id: client_user.id.to_s,`
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`screen_name: client_user.screen_name,`
Updated rubocop - applied custom Layout/AlignHash style. 2018-12-19 17:31:51 +00:00			`name: client_user.name,`
Init backend of generic external credentials. 2015-12-17 11:49:40 +00:00			`},`
Updated rubocop - applied custom Layout/AlignHash style. 2018-12-19 17:31:51 +00:00			`auth: {`
Init backend of generic external credentials. 2015-12-17 11:49:40 +00:00			`external_credential_id: external_credential.id,`
			`oauth_token: access_token.token,`
			`oauth_token_secret: access_token.secret,`
			`},`
Updated rubocop - applied custom Layout/AlignHash style. 2018-12-19 17:31:51 +00:00			`sync: {`
			`limit: 20,`
			`search: [],`
			`mentions: {},`
Merged pull request #630 - add sync setting 'track_retweets' to twitter channel - Big thanks to @schurig. 2017-01-19 15:23:41 +00:00			`direct_messages: {},`
Updated rubocop - applied custom Layout/AlignHash style. 2018-12-19 17:31:51 +00:00			`track_retweets: false`
Init backend of generic external credentials. 2015-12-17 11:49:40 +00:00			`}`
			`},`
Updated rubocop - applied custom Layout/AlignHash style. 2018-12-19 17:31:51 +00:00			`active: true,`
Init backend of generic external credentials. 2015-12-17 11:49:40 +00:00			`created_by_id: 1,`
			`updated_by_id: 1,`
			`)`

Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`subscribe_webhook(`
			`channel: channel,`
			`client: client,`
			`external_credential: external_credential,`
			`)`

			`channel`
			`end`

			`def self.webhook_url`
			`"#{Setting.get('http_type')}://#{Setting.get('fqdn')}#{Rails.configuration.api_path}/channels_twitter_webhook"`
			`end`

			`def self.register_webhook(params)`
			`request_account_to_link(params, false)`

			`raise Exceptions::UnprocessableEntity, 'No consumer_key param!' if params[:consumer_key].blank?`
			`raise Exceptions::UnprocessableEntity, 'No consumer_secret param!' if params[:consumer_secret].blank?`
			`raise Exceptions::UnprocessableEntity, 'No oauth_token param!' if params[:oauth_token].blank?`
			`raise Exceptions::UnprocessableEntity, 'No oauth_token_secret param!' if params[:oauth_token_secret].blank?`

			`return if params[:env].blank?`

			`env_name = params[:env]`

			`client = TwitterSync.new(`
Updated rubocop - applied custom Layout/AlignHash style. 2018-12-19 17:31:51 +00:00			`consumer_key: params[:consumer_key],`
			`consumer_secret: params[:consumer_secret],`
			`access_token: params[:oauth_token],`
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`access_token_secret: params[:oauth_token_secret],`
			`)`

			`# needed for verify callback`
			`Cache.write('external_credential_twitter', {`
Updated rubocop - applied custom Layout/AlignHash style. 2018-12-19 17:31:51 +00:00			`consumer_key: params[:consumer_key],`
			`consumer_secret: params[:consumer_secret],`
			`access_token: params[:oauth_token],`
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`access_token_secret: params[:oauth_token_secret],`
			`})`

			`# verify if webhook is already registered`
			`begin`
			`webhooks = client.webhooks_by_env_name(env_name)`
Enable Lint/UselessAssignment cop. 2019-06-28 11:38:49 +00:00			`rescue`
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`begin`
			`webhooks = client.webhooks`
			`raise "Unable to get list of webooks. You use the wrong 'Dev environment label', only #{webhooks.inspect} available."`
			`rescue => e`
			`raise "Unable to get list of webooks. Maybe you do not have an Twitter developer approval right now or you use the wrong 'Dev environment label': #{e.message}"`
			`end`
			`end`
			`webhook_id = nil`
			`webhook_valid = nil`
			`webhooks.each do \|webhook\|`
			`next if webhook[:url] != webhook_url`

			`webhook_id = webhook[:id]`
			`webhook_valid = webhook[:valid]`
			`end`

			`# if webhook is already registered`
			`# - in case if webhook is invalid, just send a new verification request`
			`# - in case if webhook is valid return`
			`if webhook_id`
			`if webhook_valid == false`
			`client.webhook_request_verification(webhook_id, env_name, webhook_url)`
			`end`
			`params[:webhook_id] = webhook_id`
			`return params`
			`end`

			`# delete already registered webhooks`
			`webhooks.each do \|webhook\|`
Fixed issue #2730: Registering of Twitter App fails for Twitter App with existing webhooks. 2019-09-03 18:23:29 +00:00			`client.webhook_delete(webhook[:id], env_name)`
Implemented issue #2023 - Twitter Account Activity API support. 2018-12-03 14:10:36 +00:00			`end`

			`# register new webhook`
			`response = client.webhook_register(env_name, webhook_url)`

			`params[:webhook_id] = response[:id]`
			`params`
			`end`

			`def self.subscribe_webhook(channel:, client:, external_credential:)`
			`env_name = external_credential.credentials[:env]`
			`webhook_id = external_credential.credentials[:webhook_id]`

			`Rails.logger.debug { "Starting Twitter subscription for webhook_id #{webhook_id} and Channel #{channel.id}" }`
			`client.webhook_subscribe(env_name)`

			`channel.options['subscribed_to_webhook_id'] = webhook_id`
			`channel.save!`

			`true`
Init backend of generic external credentials. 2015-12-17 11:49:40 +00:00			`end`

			`end`