mirror of
https://github.com/openclaw/openclaw.git
synced 2026-06-05 10:32:56 +00:00
277 lines
8.7 KiB
TypeScript
277 lines
8.7 KiB
TypeScript
import { createMockIncomingRequest } from "openclaw/plugin-sdk/test-env";
|
|
import { describe, expect, it, vi } from "vitest";
|
|
import {
|
|
NextcloudTalkRetryableWebhookError,
|
|
processNextcloudTalkReplayGuardedMessage,
|
|
readNextcloudTalkWebhookBody,
|
|
} from "./monitor.js";
|
|
import { createSignedCreateMessageRequest } from "./monitor.test-fixtures.js";
|
|
import { startWebhookServer } from "./monitor.test-harness.js";
|
|
import { createNextcloudTalkReplayGuard } from "./replay-guard.js";
|
|
import { generateNextcloudTalkSignature } from "./signature.js";
|
|
import type { NextcloudTalkInboundMessage } from "./types.js";
|
|
|
|
describe("readNextcloudTalkWebhookBody", () => {
|
|
it("reads valid body within max bytes", async () => {
|
|
const req = createMockIncomingRequest(['{"type":"Create"}']);
|
|
const body = await readNextcloudTalkWebhookBody(req, 1024);
|
|
expect(body).toBe('{"type":"Create"}');
|
|
});
|
|
|
|
it("rejects when payload exceeds max bytes", async () => {
|
|
const req = createMockIncomingRequest(["x".repeat(300)]);
|
|
await expect(readNextcloudTalkWebhookBody(req, 128)).rejects.toThrow("PayloadTooLarge");
|
|
});
|
|
});
|
|
|
|
describe("createNextcloudTalkWebhookServer auth order", () => {
|
|
it("rejects missing signature headers before reading request body", async () => {
|
|
const readBody = vi.fn(async () => {
|
|
throw new Error("should not be called for missing signature headers");
|
|
});
|
|
const harness = await startWebhookServer({
|
|
path: "/nextcloud-auth-order",
|
|
maxBodyBytes: 128,
|
|
readBody,
|
|
onMessage: vi.fn(),
|
|
});
|
|
|
|
const response = await fetch(harness.webhookUrl, {
|
|
method: "POST",
|
|
headers: {
|
|
"content-type": "application/json",
|
|
},
|
|
body: "{}",
|
|
});
|
|
|
|
expect(response.status).toBe(400);
|
|
expect(await response.json()).toEqual({ error: "Missing signature headers" });
|
|
expect(readBody).not.toHaveBeenCalled();
|
|
});
|
|
});
|
|
|
|
describe("createNextcloudTalkWebhookServer backend allowlist", () => {
|
|
it("rejects requests from unexpected backend origins", async () => {
|
|
const onMessage = vi.fn(async () => {});
|
|
const harness = await startWebhookServer({
|
|
path: "/nextcloud-backend-check",
|
|
isBackendAllowed: (backend) => backend === "https://nextcloud.expected",
|
|
onMessage,
|
|
});
|
|
|
|
const { body, headers } = createSignedCreateMessageRequest({
|
|
backend: "https://nextcloud.unexpected",
|
|
});
|
|
const response = await fetch(harness.webhookUrl, {
|
|
method: "POST",
|
|
headers,
|
|
body,
|
|
});
|
|
|
|
expect(response.status).toBe(401);
|
|
expect(await response.json()).toEqual({ error: "Invalid backend" });
|
|
expect(onMessage).not.toHaveBeenCalled();
|
|
});
|
|
});
|
|
|
|
describe("createNextcloudTalkWebhookServer replay handling", () => {
|
|
function createReplayGuardedProcess(params: {
|
|
stateDir?: string;
|
|
accountId?: string;
|
|
handleMessage: () => Promise<void>;
|
|
}) {
|
|
const replayGuard = createNextcloudTalkReplayGuard(
|
|
params.stateDir ? { stateDir: params.stateDir } : {},
|
|
);
|
|
|
|
return (message: NextcloudTalkInboundMessage) =>
|
|
processNextcloudTalkReplayGuardedMessage({
|
|
replayGuard,
|
|
accountId: params.accountId ?? "acct",
|
|
message,
|
|
handleMessage: params.handleMessage,
|
|
});
|
|
}
|
|
|
|
function buildInboundMessage(): NextcloudTalkInboundMessage {
|
|
return {
|
|
messageId: "msg-1",
|
|
roomToken: "room-token",
|
|
roomName: "Room 1",
|
|
senderId: "alice",
|
|
senderName: "Alice",
|
|
text: "hello",
|
|
mediaType: "text/plain",
|
|
timestamp: 1_700_000_000_000,
|
|
isGroupChat: true,
|
|
};
|
|
}
|
|
|
|
it("acknowledges replayed requests and skips onMessage side effects", async () => {
|
|
const seen = new Set<string>();
|
|
const onMessage = vi.fn(async () => {});
|
|
const shouldProcessMessage = vi.fn(async (message: NextcloudTalkInboundMessage) => {
|
|
if (seen.has(message.messageId)) {
|
|
return false;
|
|
}
|
|
seen.add(message.messageId);
|
|
return true;
|
|
});
|
|
const harness = await startWebhookServer({
|
|
path: "/nextcloud-replay",
|
|
shouldProcessMessage,
|
|
onMessage,
|
|
});
|
|
|
|
const { body, headers } = createSignedCreateMessageRequest();
|
|
|
|
const first = await fetch(harness.webhookUrl, {
|
|
method: "POST",
|
|
headers,
|
|
body,
|
|
});
|
|
const second = await fetch(harness.webhookUrl, {
|
|
method: "POST",
|
|
headers,
|
|
body,
|
|
});
|
|
|
|
expect(first.status).toBe(200);
|
|
expect(second.status).toBe(200);
|
|
expect(shouldProcessMessage).toHaveBeenCalledTimes(2);
|
|
expect(onMessage).toHaveBeenCalledTimes(1);
|
|
});
|
|
|
|
it("allows a retry after replay-guarded processing fails before commit", async () => {
|
|
let attempts = 0;
|
|
const handleMessage = vi.fn(async () => {
|
|
attempts += 1;
|
|
if (attempts === 1) {
|
|
throw new NextcloudTalkRetryableWebhookError("transient nextcloud failure");
|
|
}
|
|
});
|
|
const processMessage = createReplayGuardedProcess({
|
|
handleMessage,
|
|
});
|
|
const message = buildInboundMessage();
|
|
|
|
await expect(processMessage(message)).rejects.toThrow("transient nextcloud failure");
|
|
await expect(processMessage(message)).resolves.toBe("processed");
|
|
|
|
expect(handleMessage).toHaveBeenCalledTimes(2);
|
|
});
|
|
|
|
it("keeps replay committed after a non-retryable replay-guarded processing failure", async () => {
|
|
const visibleSideEffect = vi.fn();
|
|
const handleMessage = vi.fn(async () => {
|
|
visibleSideEffect();
|
|
throw new Error("post-send failure");
|
|
});
|
|
const processMessage = createReplayGuardedProcess({
|
|
handleMessage,
|
|
});
|
|
const message = buildInboundMessage();
|
|
|
|
await expect(processMessage(message)).rejects.toThrow("post-send failure");
|
|
await expect(processMessage(message)).resolves.toBe("duplicate");
|
|
|
|
expect(handleMessage).toHaveBeenCalledTimes(1);
|
|
expect(visibleSideEffect).toHaveBeenCalledTimes(1);
|
|
});
|
|
});
|
|
|
|
describe("createNextcloudTalkWebhookServer payload validation", () => {
|
|
it("rejects malformed webhook payloads after signature verification", async () => {
|
|
const payload = {
|
|
type: "Create",
|
|
actor: { type: "Person", id: "alice", name: "Alice" },
|
|
object: {
|
|
type: "Note",
|
|
id: "msg-1",
|
|
name: "hello",
|
|
content: "hello",
|
|
mediaType: "text/plain",
|
|
},
|
|
target: { type: "Collection", id: "", name: "Room 1" },
|
|
};
|
|
const body = JSON.stringify(payload);
|
|
const { random, signature } = generateNextcloudTalkSignature({
|
|
body,
|
|
secret: "nextcloud-secret", // pragma: allowlist secret
|
|
});
|
|
const harness = await startWebhookServer({
|
|
path: "/nextcloud-invalid-payload",
|
|
onMessage: vi.fn(),
|
|
});
|
|
|
|
const response = await fetch(harness.webhookUrl, {
|
|
method: "POST",
|
|
headers: {
|
|
"content-type": "application/json",
|
|
"x-nextcloud-talk-random": random,
|
|
"x-nextcloud-talk-signature": signature,
|
|
"x-nextcloud-talk-backend": "https://nextcloud.example",
|
|
},
|
|
body,
|
|
});
|
|
|
|
expect(response.status).toBe(400);
|
|
expect(await response.json()).toEqual({ error: "Invalid payload format" });
|
|
});
|
|
});
|
|
|
|
describe("createNextcloudTalkWebhookServer auth rate limiting", () => {
|
|
it("rate limits repeated invalid signature attempts from the same source", async () => {
|
|
const maxRequests = 1;
|
|
const harness = await startWebhookServer({
|
|
path: "/nextcloud-auth-rate-limit",
|
|
authRateLimit: { maxRequests },
|
|
onMessage: vi.fn(),
|
|
});
|
|
const { body, headers } = createSignedCreateMessageRequest();
|
|
const invalidHeaders = {
|
|
...headers,
|
|
"x-nextcloud-talk-signature": "invalid-signature",
|
|
};
|
|
|
|
let firstResponse: Response | undefined;
|
|
let lastResponse: Response | undefined;
|
|
for (let attempt = 0; attempt <= maxRequests; attempt += 1) {
|
|
const response = await fetch(harness.webhookUrl, {
|
|
method: "POST",
|
|
headers: invalidHeaders,
|
|
body,
|
|
});
|
|
if (attempt === 0) {
|
|
firstResponse = response;
|
|
}
|
|
lastResponse = response;
|
|
}
|
|
|
|
expect(firstResponse?.status).toBe(401);
|
|
expect(lastResponse?.status).toBe(429);
|
|
expect(await lastResponse?.text()).toBe("Too Many Requests");
|
|
});
|
|
|
|
it("does not rate limit valid signed webhook bursts from the same source", async () => {
|
|
const maxRequests = 1;
|
|
const harness = await startWebhookServer({
|
|
path: "/nextcloud-auth-rate-limit-valid",
|
|
authRateLimit: { maxRequests },
|
|
onMessage: vi.fn(),
|
|
});
|
|
const { body, headers } = createSignedCreateMessageRequest();
|
|
|
|
let lastResponse: Response | undefined;
|
|
for (let attempt = 0; attempt <= maxRequests; attempt += 1) {
|
|
lastResponse = await fetch(harness.webhookUrl, {
|
|
method: "POST",
|
|
headers,
|
|
body,
|
|
});
|
|
}
|
|
|
|
expect(lastResponse?.status).toBe(200);
|
|
});
|
|
});
|