nielsperetzke
/
healthchecks
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 32 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
684 Commits
2 Branches
15 MiB
Tree: 87dabf881a
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '87dabf881a'
${ noResults }
healthchecks/hc/api/views.py

218 lines
6.1 KiB
Raw Normal View History

First stab at API, POST /api/v1/checks
9 years ago
Move timer call to api
9 years ago
Adding "Overall status" badge.
7 years ago
Lightweight 'server status' API endpoint, to be used by external load balancers
8 years ago
Return 403 when API key is wrong. Return 404 when resource not found. Return 405 when request method is wrong. Return 400 when request syntax is wrong.
8 years ago
Initial commit
10 years ago
forwarded for and forwarded protocol
9 years ago
ping is csrf exempt.
9 years ago
Return 403 when API key is wrong. Return 404 when resource not found. Return 405 when request method is wrong. Return 400 when request syntax is wrong.
8 years ago
forwarded for and forwarded protocol
9 years ago
First stab at API, POST /api/v1/checks
9 years ago
Preliminary Django 2 support
7 years ago
Email listener: "./manage.py smtpd"
7 years ago
Badges
8 years ago
Initial commit
10 years ago
ping is csrf exempt.
9 years ago
forwarded for and forwarded protocol
9 years ago
Foundation for "fail" pings (cc: #151)
7 years ago
Return 403 when API key is wrong. Return 404 when resource not found. Return 405 when request method is wrong. Return 400 when request syntax is wrong.
8 years ago
Initial commit
10 years ago
Keep a log of pings
9 years ago
forwarded for and forwarded protocol
9 years ago
Email listener: "./manage.py smtpd"
7 years ago
Preliminary Django 2 support
7 years ago
Email listener: "./manage.py smtpd"
7 years ago
Foundation for "fail" pings (cc: #151)
7 years ago
Keep a log of pings
9 years ago
CORS header for ping call
9 years ago
Move timer call to api
9 years ago
API call for updating checks
8 years ago
API support for cron syntax
8 years ago
API: fix updating kind=cron to kind=simple
8 years ago
API support for cron syntax
8 years ago
API: fix updating kind=cron to kind=simple
8 years ago
API support for cron syntax
8 years ago
API call for updating checks
8 years ago
API support for cron syntax
8 years ago
API call for updating checks
8 years ago
API support for cron syntax
8 years ago
First stab at API, POST /api/v1/checks
9 years ago
Add support for authentication with X-Api-Key header.
8 years ago
Add GET /api/v1/checks/ to the API
9 years ago
More data in API responses.
8 years ago
tags querystring param to filter checks by tags
7 years ago
Tweaks to filtering-by-tag, and to its documentation.
7 years ago
Ensure filter matches tag exactly
7 years ago
Tweaks to filtering-by-tag, and to its documentation.
7 years ago
Ensure filter matches tag exactly
7 years ago
Tweaks to filtering-by-tag, and to its documentation.
7 years ago
More data in API responses.
8 years ago
Add GET /api/v1/checks/ to the API
9 years ago
API call for updating checks
8 years ago
Pricing page tweaks. Limit free accounts to 20 checks per account.
8 years ago
API call for updating checks
8 years ago
Move timer call to api
9 years ago
More data in API responses.
8 years ago
Badges
8 years ago
New feature: pause monitoring of an individual check. Fixes #67
8 years ago
API call for updating checks
8 years ago
Return 403 when API key is wrong. Return 404 when resource not found. Return 405 when request method is wrong. Return 400 when request syntax is wrong.
8 years ago
API call for updating checks
8 years ago
API call for deleting checks.
7 years ago
API call for updating checks
8 years ago
Return 403 when API key is wrong. Return 404 when resource not found. Return 405 when request method is wrong. Return 400 when request syntax is wrong.
8 years ago
New feature: pause monitoring of an individual check. Fixes #67
8 years ago
Return 403 when API key is wrong. Return 404 when resource not found. Return 405 when request method is wrong. Return 400 when request syntax is wrong.
8 years ago
New feature: pause monitoring of an individual check. Fixes #67
8 years ago
Badges
8 years ago
Badges can now return either SVG or JSON
7 years ago
Badges
8 years ago
Return 403 when API key is wrong. Return 404 when resource not found. Return 405 when request method is wrong. Return 400 when request syntax is wrong.
8 years ago
Badges
8 years ago
Adding "Overall status" badge.
7 years ago
Badges
8 years ago
Adding "Overall status" badge.
7 years ago
Badges
8 years ago
Merge Check.get_status() and Check.in_grace_period() into one. This avoids duplicate calls to Check.get_grace_start() in several places.
7 years ago
Badges
8 years ago
Merge Check.get_status() and Check.in_grace_period() into one. This avoids duplicate calls to Check.get_grace_start() in several places.
7 years ago
Badges
8 years ago
Badges can now return either SVG or JSON
7 years ago
Adding "Overall status" badge.
7 years ago
Badges
8 years ago
"X-Bounce-Url" header in email messages. An API endpoint to handle bounce notifications. (#112)
8 years ago
No CSRF check for /bounce endpoint
8 years ago
"X-Bounce-Url" header in email messages. An API endpoint to handle bounce notifications. (#112)
8 years ago
Return 403 when API key is wrong. Return 404 when resource not found. Return 405 when request method is wrong. Return 400 when request syntax is wrong.
8 years ago
"X-Bounce-Url" header in email messages. An API endpoint to handle bounce notifications. (#112)
8 years ago
Return 403 when API key is wrong. Return 404 when resource not found. Return 405 when request method is wrong. Return 400 when request syntax is wrong.
8 years ago
"X-Bounce-Url" header in email messages. An API endpoint to handle bounce notifications. (#112)
8 years ago
Preliminary Django 2 support
7 years ago
"X-Bounce-Url" header in email messages. An API endpoint to handle bounce notifications. (#112)
8 years ago
Disable channel (mark as email_verified=False) when email bounces.
7 years ago
"X-Bounce-Url" header in email messages. An API endpoint to handle bounce notifications. (#112)
8 years ago
Lightweight 'server status' API endpoint, to be used by external load balancers
8 years ago
 
  1. from datetime import timedelta as td
  2. 

  3. from django.conf import settings
  4. from django.db import connection
  5. from django.http import (HttpResponse, HttpResponseForbidden,
  6.                          HttpResponseNotFound, JsonResponse)
  7. from django.shortcuts import get_object_or_404
  8. from django.utils import timezone
  9. from django.views.decorators.cache import never_cache
  10. from django.views.decorators.csrf import csrf_exempt
  11. from django.views.decorators.http import require_POST
  12. 

  13. from hc.api import schemas
  14. from hc.api.decorators import check_api_key, validate_json
  15. from hc.api.models import Check, Notification
  16. from hc.lib.badges import check_signature, get_badge_svg
  17. 

  18. 

  19. @csrf_exempt
  20. @never_cache
  21. def ping(request, code, is_fail=False):
  22.     check = get_object_or_404(Check, code=code)
  23. 

  24.     headers = request.META
  25.     remote_addr = headers.get("HTTP_X_FORWARDED_FOR", headers["REMOTE_ADDR"])
  26.     remote_addr = remote_addr.split(",")[0]
  27.     scheme = headers.get("HTTP_X_FORWARDED_PROTO", "http")
  28.     method = headers["REQUEST_METHOD"]
  29.     ua = headers.get("HTTP_USER_AGENT", "")
  30.     body = request.body.decode()
  31. 

  32.     check.ping(remote_addr, scheme, method, ua, body, is_fail)
  33. 

  34.     response = HttpResponse("OK")
  35.     response["Access-Control-Allow-Origin"] = "*"
  36.     return response
  37. 

  38. 

  39. def _lookup(user, spec):
  40.     unique_fields = spec.get("unique", [])
  41.     if unique_fields:
  42.         existing_checks = Check.objects.filter(user=user)
  43.         if "name" in unique_fields:
  44.             existing_checks = existing_checks.filter(name=spec.get("name"))
  45.         if "tags" in unique_fields:
  46.             existing_checks = existing_checks.filter(tags=spec.get("tags"))
  47.         if "timeout" in unique_fields:
  48.             timeout = td(seconds=spec["timeout"])
  49.             existing_checks = existing_checks.filter(timeout=timeout)
  50.         if "grace" in unique_fields:
  51.             grace = td(seconds=spec["grace"])
  52.             existing_checks = existing_checks.filter(grace=grace)
  53. 

  54.         return existing_checks.first()
  55. 

  56. 

  57. def _update(check, spec):
  58.     if "name" in spec:
  59.         check.name = spec["name"]
  60. 

  61.     if "tags" in spec:
  62.         check.tags = spec["tags"]
  63. 

  64.     if "timeout" in spec and "schedule" not in spec:
  65.         check.kind = "simple"
  66.         check.timeout = td(seconds=spec["timeout"])
  67. 

  68.     if "grace" in spec:
  69.         check.grace = td(seconds=spec["grace"])
  70. 

  71.     if "schedule" in spec:
  72.         check.kind = "cron"
  73.         check.schedule = spec["schedule"]
  74.         if "tz" in spec:
  75.             check.tz = spec["tz"]
  76. 

  77.     check.save()
  78. 

  79.     # This needs to be done after saving the check, because of
  80.     # the M2M relation between checks and channels:
  81.     if "channels" in spec:
  82.         if spec["channels"] == "*":
  83.             check.assign_all_channels()
  84.         elif spec["channels"] == "":
  85.             check.channel_set.clear()
  86. 

  87.     return check
  88. 

  89. 

  90. @csrf_exempt
  91. @check_api_key
  92. @validate_json(schemas.check)
  93. def checks(request):
  94.     if request.method == "GET":
  95.         q = Check.objects.filter(user=request.user)
  96. 

  97.         tags = set(request.GET.getlist("tag"))
  98.         for tag in tags:
  99.             # approximate filtering by tags
  100.             q = q.filter(tags__contains=tag)
  101. 

  102.         checks = []
  103.         for check in q:
  104.             # precise, final filtering
  105.             if not tags or check.matches_tag_set(tags):
  106.                 checks.append(check.to_dict())
  107. 

  108.         return JsonResponse({"checks": checks})
  109. 

  110.     elif request.method == "POST":
  111.         created = False
  112.         check = _lookup(request.user, request.json)
  113.         if check is None:
  114.             num_checks = Check.objects.filter(user=request.user).count()
  115.             if num_checks >= request.user.profile.check_limit:
  116.                 return HttpResponseForbidden()
  117. 

  118.             check = Check(user=request.user)
  119.             created = True
  120. 

  121.         _update(check, request.json)
  122. 

  123.         return JsonResponse(check.to_dict(), status=201 if created else 200)
  124. 

  125.     # If request is neither GET nor POST, return "405 Method not allowed"
  126.     return HttpResponse(status=405)
  127. 

  128. 

  129. @csrf_exempt
  130. @check_api_key
  131. @validate_json(schemas.check)
  132. def update(request, code):
  133.     check = get_object_or_404(Check, code=code)
  134.     if check.user != request.user:
  135.         return HttpResponseForbidden()
  136. 

  137.     if request.method == "POST":
  138.         _update(check, request.json)
  139.         return JsonResponse(check.to_dict())
  140. 

  141.     elif request.method == "DELETE":
  142.         response = check.to_dict()
  143.         check.delete()
  144.         return JsonResponse(response)
  145. 

  146.     # Otherwise, method not allowed
  147.     return HttpResponse(status=405)
  148. 

  149. 

  150. @csrf_exempt
  151. @require_POST
  152. @check_api_key
  153. def pause(request, code):
  154.     check = get_object_or_404(Check, code=code)
  155.     if check.user != request.user:
  156.         return HttpResponseForbidden()
  157. 

  158.     check.status = "paused"
  159.     check.save()
  160.     return JsonResponse(check.to_dict())
  161. 

  162. 

  163. @never_cache
  164. def badge(request, username, signature, tag, format="svg"):
  165.     if not check_signature(username, tag, signature):
  166.         return HttpResponseNotFound()
  167. 

  168.     status = "up"
  169.     q = Check.objects.filter(user__username=username)
  170.     if tag != "*":
  171.         q = q.filter(tags__contains=tag)
  172.         label = tag
  173.     else:
  174.         label = settings.MASTER_BADGE_LABEL
  175. 

  176.     for check in q:
  177.         if tag != "*" and tag not in check.tags_list():
  178.             continue
  179. 

  180.         check_status = check.get_status()
  181.         if status == "up" and check_status == "grace":
  182.             status = "late"
  183. 

  184.         if check_status == "down":
  185.             status = "down"
  186.             break
  187. 

  188.     if format == "json":
  189.         return JsonResponse({"status": status})
  190. 

  191.     svg = get_badge_svg(label, status)
  192.     return HttpResponse(svg, content_type="image/svg+xml")
  193. 

  194. 

  195. @csrf_exempt
  196. def bounce(request, code):
  197.     notification = get_object_or_404(Notification, code=code)
  198. 

  199.     # If webhook is more than 10 minutes late, don't accept it:
  200.     td = timezone.now() - notification.created
  201.     if td.total_seconds() > 600:
  202.         return HttpResponseForbidden()
  203. 

  204.     notification.error = request.body.decode()[:200]
  205.     notification.save()
  206. 

  207.     notification.channel.email_verified = False
  208.     notification.channel.save()
  209. 

  210.     return HttpResponse()
  211. 

  212. 

  213. def status(request):
  214.     with connection.cursor() as c:
  215.         c.execute("SELECT 1")
  216.         c.fetchone()
  217. 

  218.     return HttpResponse("OK")