func createIncomingHook(c *Context, w http.ResponseWriter, r *http.Request) { if !utils.Cfg.ServiceSettings.EnableIncomingWebhooks { c.Err = model.NewLocAppError("createIncomingHook", "api.webhook.create_incoming.disabled.app_errror", nil, "") c.Err.StatusCode = http.StatusNotImplemented return } if *utils.Cfg.ServiceSettings.EnableOnlyAdminIntegrations { if !(c.IsSystemAdmin() || c.IsTeamAdmin()) { c.Err = model.NewLocAppError("createIncomingHook", "api.command.admin_only.app_error", nil, "") c.Err.StatusCode = http.StatusForbidden return } } c.LogAudit("attempt") hook := model.IncomingWebhookFromJson(r.Body) if hook == nil { c.SetInvalidParam("createIncomingHook", "webhook") return } cchan := Srv.Store.Channel().Get(hook.ChannelId) pchan := Srv.Store.Channel().CheckPermissionsTo(c.TeamId, hook.ChannelId, c.Session.UserId) hook.UserId = c.Session.UserId hook.TeamId = c.TeamId var channel *model.Channel if result := <-cchan; result.Err != nil { c.Err = result.Err return } else { channel = result.Data.(*model.Channel) } if !c.HasPermissionsToChannel(pchan, "createIncomingHook") { if channel.Type != model.CHANNEL_OPEN || channel.TeamId != c.TeamId { c.LogAudit("fail - bad channel permissions") return } c.Err = nil } if result := <-Srv.Store.Webhook().SaveIncoming(hook); result.Err != nil { c.Err = result.Err return } else { c.LogAudit("success") rhook := result.Data.(*model.IncomingWebhook) w.Write([]byte(rhook.ToJson())) } }
func createIncomingHook(c *Context, w http.ResponseWriter, r *http.Request) { if !utils.Cfg.ServiceSettings.EnableIncomingWebhooks { c.Err = model.NewLocAppError("createIncomingHook", "api.webhook.create_incoming.disabled.app_errror", nil, "") c.Err.StatusCode = http.StatusNotImplemented return } if !HasPermissionToCurrentTeamContext(c, model.PERMISSION_MANAGE_WEBHOOKS) { return } c.LogAudit("attempt") hook := model.IncomingWebhookFromJson(r.Body) if hook == nil { c.SetInvalidParam("createIncomingHook", "webhook") return } cchan := app.Srv.Store.Channel().Get(hook.ChannelId, true) hook.UserId = c.Session.UserId hook.TeamId = c.TeamId var channel *model.Channel if result := <-cchan; result.Err != nil { c.Err = result.Err return } else { channel = result.Data.(*model.Channel) } if channel.Type != model.CHANNEL_OPEN && !HasPermissionToChannelContext(c, channel.Id, model.PERMISSION_READ_CHANNEL) { c.LogAudit("fail - bad channel permissions") return } if result := <-app.Srv.Store.Webhook().SaveIncoming(hook); result.Err != nil { c.Err = result.Err return } else { c.LogAudit("success") rhook := result.Data.(*model.IncomingWebhook) w.Write([]byte(rhook.ToJson())) } }
func createIncomingHook(c *Context, w http.ResponseWriter, r *http.Request) { if !utils.Cfg.ServiceSettings.EnableIncomingWebhooks { c.Err = model.NewAppError("createIncomingHook", "Incoming webhooks have been disabled by the system admin.", "") c.Err.StatusCode = http.StatusNotImplemented return } c.LogAudit("attempt") hook := model.IncomingWebhookFromJson(r.Body) if hook == nil { c.SetInvalidParam("createIncomingHook", "webhook") return } cchan := Srv.Store.Channel().Get(hook.ChannelId) pchan := Srv.Store.Channel().CheckPermissionsTo(c.Session.TeamId, hook.ChannelId, c.Session.UserId) hook.UserId = c.Session.UserId hook.TeamId = c.Session.TeamId var channel *model.Channel if result := <-cchan; result.Err != nil { c.Err = result.Err return } else { channel = result.Data.(*model.Channel) } if !c.HasPermissionsToChannel(pchan, "createIncomingHook") { if channel.Type != model.CHANNEL_OPEN || channel.TeamId != c.Session.TeamId { c.LogAudit("fail - bad channel permissions") return } } if result := <-Srv.Store.Webhook().SaveIncoming(hook); result.Err != nil { c.Err = result.Err return } else { c.LogAudit("success") rhook := result.Data.(*model.IncomingWebhook) w.Write([]byte(rhook.ToJson())) } }