mirror of
https://github.com/gitpod-io/gitpod.git
synced 2025-12-08 17:36:30 +00:00
78 lines
2.2 KiB
Go
78 lines
2.2 KiB
Go
// Copyright (c) 2022 Gitpod GmbH. All rights reserved.
|
|
// Licensed under the GNU Affero General Public License (AGPL).
|
|
// See License-AGPL.txt in the project root for license information.
|
|
|
|
package webhooks
|
|
|
|
import (
|
|
"github.com/gitpod-io/gitpod/common-go/log"
|
|
"github.com/gitpod-io/gitpod/public-api-server/pkg/billingservice"
|
|
"github.com/stripe/stripe-go/v72/webhook"
|
|
"io"
|
|
"net/http"
|
|
)
|
|
|
|
const maxBodyBytes = int64(65536)
|
|
|
|
type webhookHandler struct {
|
|
billingService billingservice.Interface
|
|
stripeWebhookSignature string
|
|
}
|
|
|
|
func NewStripeWebhookHandler(billingService billingservice.Interface, stripeWebhookSignature string) *webhookHandler {
|
|
return &webhookHandler{
|
|
billingService: billingService,
|
|
stripeWebhookSignature: stripeWebhookSignature,
|
|
}
|
|
}
|
|
|
|
func (h *webhookHandler) ServeHTTP(w http.ResponseWriter, req *http.Request) {
|
|
if req.Method != http.MethodPost {
|
|
log.Errorf("Bad HTTP method: %s", req.Method)
|
|
w.WriteHeader(http.StatusMethodNotAllowed)
|
|
return
|
|
}
|
|
|
|
stripeSignature := req.Header.Get("Stripe-Signature")
|
|
if stripeSignature == "" {
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
return
|
|
}
|
|
|
|
req.Body = http.MaxBytesReader(w, req.Body, maxBodyBytes)
|
|
|
|
payload, err := io.ReadAll(req.Body)
|
|
if err != nil {
|
|
log.WithError(err).Error("Failed to read payload body.")
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
return
|
|
}
|
|
|
|
// https://stripe.com/docs/webhooks/signatures#verify-official-libraries
|
|
event, err := webhook.ConstructEvent(payload, req.Header.Get("Stripe-Signature"), h.stripeWebhookSignature)
|
|
if err != nil {
|
|
log.WithError(err).Error("Failed to verify webhook signature.")
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
return
|
|
}
|
|
|
|
if event.Type != "invoice.finalized" {
|
|
log.Errorf("Unexpected Stripe event type: %s", event.Type)
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
return
|
|
}
|
|
|
|
invoiceId, ok := event.Data.Object["id"].(string)
|
|
if !ok {
|
|
log.Error("failed to find invoice id in Stripe event payload")
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
}
|
|
|
|
err = h.billingService.FinalizeInvoice(req.Context(), invoiceId)
|
|
if err != nil {
|
|
log.WithError(err).Error("Failed to finalize invoice")
|
|
w.WriteHeader(http.StatusInternalServerError)
|
|
return
|
|
}
|
|
}
|