Introduce project event webhook

[window9u]

What this PR does / why we need it:

This PR implements document creation and document removal events for a new project event webhook. Currently, users who uses Yorkie as a SaaS are not always aware of document status changes. By introducing project-level events—rather than relying solely on doc-level events like attach or push-pull—we can more clearly represent the lifecycle of documents and make those events available to external systems.

Which issue(s) this PR fixes: Fixes #1002

Special notes for your reviewer:

1. Project event webhook

• The original issue suggested a DocEvent, but instead, I'm introducing a Project Event. We already have DocEvent events (DocumentChanged DocumentWatched, DocumentUnwatched, broadcast), and using the same naming might be confusing.
• Additionally, doc-level events(e.g., attach, document-changed, watched, unwatched) don't clearly convey CRUD semantics. For instances:
  • Create: A document is automatically created when a user attaches to a non-existent document. documentAttached alone doesn't explicitly indicate creation.
  • Read/Update: push-pull may imply either reading or updating a document, and it's not always obvious which. (A Change can contain both presence and operations; if it only has presence, it might not mean a real update of document's content.)
  • Delete: Yorkie's removeDocument function only marks a document as "removed" without fully deleting it. In contrast, the removeDocumentByAdmin function permanently deletes the document. When a removeDocument action occurs, Yorkie sends webhook events, allowing the customer's server to decide the next steps—such as moving the document to a recycle bin or directly deleting it using removeDocumentByAdmin.

2. Add HMAC signature in request header

• For the authentication webhook, we provide a token so the receiver can validate the request. However, for the project event webhook, the endpoint may not know which service is calling.
• To address this, I introduced an HMAC signature in the X-Signature header, generated using the project's secret key. The receiving server can verify this signature to ensure the request is from Yorkie.
• In another approach, we could set our public key in projectKey in our request attributes.

type WebhookAttribute struct {
        ProjectKey string `json:"projectKey"`
	DocumentKey string `json:"documentKey"`
	ClientKey   string `json:"clientKey"`
	IssuedAt    string `json:"issuedAt"`
}

3. Handling timeouts and unreachable events

   • Asynchronous work: Authentication must be verified before proceeding, so the auth webhook is synchronous. In contrast, a project event occurs after some action is completed, so it can be handled asynchronously without impacting user response times.
   • Unreachable events and replay: If an endpoint is down or encounters an error, we need a way to track failed events. In this PR, we only log these failures; in the future, the Yorkie dashboard could handle or additional recovery steps.
   • More relaxed timeouts: Currently, the auth webhook uses exponential backoff with a base of 200ms and a maximum wait of 3 seconds. This PR applies the same settings for consistency, although we might later adopt a more extended retry schedule(e.g., Liveblocks' approach: [immediately, 5s, 5m, 30m, 2h, 5h, 10h], etc.).

4. Add an HTTP client with timeout

• Since http.POST does not allow specifying a request timeout directly, using an HTTP client with a configurable timeout is more predictable. Although the auth webhook still uses http.POST, we may consider migrating it to an HTTP client for consistency.

In this PR

This design proposal differs somewhat from the original issue’s requirements. If the idea seems sound, I’ll proceed with the remaining tasks:

• Add config validation and tests
• Add event_webhook tests
• Update the admin server’s UpdateProjectRequest API spec
• Integrate the auth webhook’s exponential backoff logic into pkg/webhook

In a subsequent PR

• Introduce a document-changed event (with caching)

Does this PR introduce a user-facing change?

Additional documentation

There are four configuration options related to timeouts, which can be confusing. Below is a brief explanation:

• EventWebhookRequestTimeout: How long to wait for a response before timing out
• EventWebhookMaxRetries: Number of retry attempts
• EventWebhookBaseWaitInterval: Base interval for exponential backoff
• EventWebhookMaxWaitInterval: Maximum interval between retries

N/A

Checklist

•  Added relevant tests or not required
•  Addressed and resolved all CodeRabbit review comments
•  Ensured no breaking changes

Summary by CodeRabbit

Based on the comprehensive changes, here are the release notes:

Release Notes

• New Features

  • Added support for project event webhooks
  • Introduced event webhook configuration for document creation and removal events
  • Implemented HMAC-based webhook authentication mechanism

• Improvements

  • Enhanced project configuration with event webhook URL and events
  • Added retry and backoff strategies for webhook requests
  • Improved error handling for webhook interactions

• Configuration

  • New configuration options for event webhook max retries, wait intervals, and timeouts
  • Ability to specify webhook events and URL at the project level

• Documentation

  • Updated OpenAPI specifications to include new event webhook fields
  • Refined documentation for project-level configurations

These release notes summarize the key additions and improvements related to the new event webhook functionality across the project.

[coderabbitai]

Walkthrough

This pull request introduces comprehensive support for project event webhooks in the Yorkie system. The changes span multiple files and packages, adding new configuration options, data structures, and methods to handle webhook events for document creation and removal. The implementation allows projects to configure a webhook URL and specify which events should trigger the webhook, providing a flexible mechanism for external services to receive notifications about document lifecycle events.

Changes

File	Change Summary
api/types/project.go	Added EventWebhookURL and EventWebhookEvents fields to Project struct
api/types/project_event.go	Introduced new types for project events and webhook requests
api/converter/from_pb.go, api/converter/to_pb.go	Updated conversion functions to handle new event webhook fields
server/rpc/yorkie_server.go	Added calls to projectevent.DocumentCreated and projectevent.DocumentRemoved
server/rpc/projectevent/webhook.go	Implemented webhook event sending logic with retry mechanism
pkg/webhook/client.go, pkg/webhook/retry.go	Added HMAC-based webhook client and retry strategy

Sequence Diagram

sequenceDiagram
    participant Client
    participant YorkieServer
    participant WebhookEndpoint
    
    alt Document Creation
        Client->>YorkieServer: AttachDocument
        YorkieServer->>YorkieServer: Check Project Webhook Config
        YorkieServer->>WebhookEndpoint: Send DocumentCreated Webhook
    end
    
    alt Document Removal
        Client->>YorkieServer: RemoveDocument
        YorkieServer->>YorkieServer: Check Project Webhook Config
        YorkieServer->>WebhookEndpoint: Send DocumentRemoved Webhook
    end

Loading

Possibly related issues

• Provide DocEvent Webhook #1002: This issue directly aligns with the implemented feature, proposing a webhook mechanism for document events to enable integration with external services like vector stores and search engines.

Possibly related PRs

• Refactor webhook method configuration and add CLI commands #1082: Modifies the Project struct for authorization webhook methods, which shares architectural similarities with this event webhook implementation.

Suggested reviewers

• hackerwins: The original proposer of the document event webhook feature and primary maintainer of the project.

✨ Finishing Touches

• 📝 Generate Docstrings (Beta)

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai generate docstrings to generate docstrings for this PR. (Beta)
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 8

🔭 Outside diff range comments (1)

api/docs/yorkie/v1/cluster.openapi.yaml (1)

Line range hint 313-316: Add HMAC signature security scheme.

The PR objectives mention HMAC signature authentication in the X-Signature header, but it's not defined in the security schemes.

Add the HMAC signature security scheme:

   ApiKeyAuth:
     in: header
     name: Authorization
     type: apiKey
+  HmacSignature:
+    type: apiKey
+    in: header
+    name: X-Signature
+    description: "HMAC SHA-256 signature of the request payload using the project's secret key"

🧹 Nitpick comments (13)

api/types/project_event.go (2)

20-27: Duplicate comment for ProjectEvent type.

The comment "ProjectEvent represents the event of the project." appears twice - once for the type and once for the constants block.

Apply this diff to fix the duplicate comment:

-// ProjectEvent represents the event of the project.
+// List of supported project events.
const (

---

29-37: Consider using a map for O(1) lookup.

The current implementation iterates through all events for each check. For better performance, consider using a map when dealing with a larger set of events.

+var projectEventSet = map[string]bool{
+    string(DocumentCreated): true,
+    string(DocumentRemoved): true,
+}

func IsProjectEvent(event string) bool {
-    for _, e := range ProjectEvents() {
-        if event == string(e) {
-            return true
-        }
-    }
-    return false
+    return projectEventSet[event]
}

server/backend/config_test.go (1)

58-71: Add test cases for invalid duration formats.

The current test cases only verify basic invalid formats. Consider adding more edge cases for duration validation.

Add test cases for:

• Negative durations
• Zero durations
• Very large durations
• Invalid units (e.g., "10y")

server/backend/database/project_info_test.go (1)

37-37: Enhance test coverage for event webhook fields.

The current tests only verify basic field updates. Consider adding test cases for:

• Invalid webhook URLs
• Invalid event types
• Empty event lists
• Duplicate events

Add test cases:

// Test invalid webhook URL
invalidURL := "not-a-url"
project.UpdateFields(&types.UpdatableProjectFields{EventWebhookURL: &invalidURL})
assert.Equal(t, invalidURL, project.EventWebhookURL) // Verify storage
// URL validation should happen at the API level

// Test invalid event type
invalidEvents := []string{"InvalidEvent"}
project.UpdateFields(&types.UpdatableProjectFields{EventWebhookEvents: &invalidEvents})
assert.Equal(t, invalidEvents, project.EventWebhookEvents) // Verify storage
// Event validation should happen at the API level

Also applies to: 50-54

pkg/webhook/retry.go (1)

38-81: Consider adding jitter to the exponential backoff.

While the implementation is solid, adding jitter to the backoff intervals would help prevent the "thundering herd" problem when multiple clients retry simultaneously.

 func waitInterval(retries uint64, baseInterval, maxWaitInterval gotime.Duration) gotime.Duration {
     interval := gotime.Duration(math.Pow(2, float64(retries))) * baseInterval
+    // Add jitter by multiplying by a random value between 0.5 and 1.5
+    jitter := 0.5 + rand.Float64()
+    interval = gotime.Duration(float64(interval) * jitter)
     if maxWaitInterval < interval {
         return maxWaitInterval
     }
     return interval
 }

api/types/updatable_project_fields.go (1)

86-104: Consider adding error details to invalid event messages.

While the validation is correct, the error message could be more helpful by including the list of valid events.

-    if err := validation.RegisterTranslation("invalid_event_webhook_events", "given {0} is invalid event"); err != nil {
+    validEvents := strings.Join(GetValidProjectEvents(), ", ")
+    if err := validation.RegisterTranslation("invalid_event_webhook_events", fmt.Sprintf("given {0} is invalid event. Valid events are: %s", validEvents)); err != nil {
         fmt.Fprintln(os.Stderr, "updatable project fields: ", err)
         os.Exit(1)
     }

server/rpc/projectevent/webhook.go (3)

48-48: Consider using RFC3339 format for timestamp.

The IssuedAt field uses time.Now().String() which may not be ideal for webhook consumers.

-				IssuedAt:    gotime.Now().String(),
+				IssuedAt:    gotime.Now().UTC().Format(time.RFC3339),

---

58-60: Consider implementing event recovery mechanism.

The comment suggests implementing event recovery through the dashboard. This is a good idea for handling failed events.

Consider implementing:

1. Event persistence for failed deliveries
2. Dashboard UI for viewing and manually retrying failed events
3. Automated retry queue for failed events

---

118-122: Consider logging response body for non-2xx responses.

When receiving non-2xx responses, it would be helpful to log the response body for debugging purposes.

 			if resp.StatusCode != http.StatusOK &&
 				resp.StatusCode != http.StatusUnauthorized &&
 				resp.StatusCode != http.StatusForbidden {
+				body, _ := io.ReadAll(resp.Body)
+				logging.From(ctx).With(
+					"status_code", resp.StatusCode,
+					"response_body", string(body),
+				).Error("unexpected webhook response")
 				return resp.StatusCode, webhook.ErrUnexpectedStatusCode
 			}

cmd/yorkie/project/update.go (1)

246-263: Consider improving flag descriptions.

The flag descriptions could be more descriptive to help users understand the expected values and format.

-		"project-event-webhook update url",
+		"URL endpoint where project events will be sent (e.g., https://example.com/webhook)",
-		"project-event-webhook methods to add ('ALL' for all events)",
+		"Event types to subscribe to. Use 'ALL' for all events or specify individual events: document-created, document-removed",
-		"project-event-webhook events to remove ('ALL' for all events)",
+		"Event types to unsubscribe from. Use 'ALL' to remove all events or specify individual events to remove",

server/config.go (1)

68-71: Consider adding comments explaining configuration values.

The default values would benefit from comments explaining why these specific values were chosen.

+// DefaultEventWebhookMaxRetries is set to 10 to provide sufficient retry attempts while avoiding excessive load
 const DefaultEventWebhookMaxRetries = 10
+// DefaultEventWebhookBaseWaitInterval is set to 3s to provide a reasonable initial delay between retries
 const DefaultEventWebhookBaseWaitInterval = 3000 * time.Millisecond
+// DefaultEventWebhookMaxWaitInterval caps the maximum delay to 3s to ensure timely delivery
 const DefaultEventWebhookMaxWaitInterval = 3000 * time.Millisecond
+// DefaultEventWebhookRequestTimeout is set to 10s to allow for slower webhook endpoints while preventing hanging requests
 const DefaultEventWebhookRequestTimeout = 10 * time.Second

server/backend/config.go (1)

135-157: Consider consolidating duplicate validation logic.

The validation logic for duration parsing is repeated for each webhook configuration field. Consider extracting this into a helper function to improve maintainability.

+func validateDuration(value, flagName string) error {
+    if _, err := time.ParseDuration(value); err != nil {
+        return fmt.Errorf(
+            `invalid argument "%s" for "--%s" flag: %w`,
+            value,
+            flagName,
+            err,
+        )
+    }
+    return nil
+}

 func (c *Config) Validate() error {
-    if _, err := time.ParseDuration(c.EventWebhookBaseWaitInterval); err != nil {
-        return fmt.Errorf(
-            `invalid argument "%s" for "--event-webhook-base-wait-interval" flag: %w`,
-            c.EventWebhookBaseWaitInterval,
-            err,
-        )
-    }
+    if err := validateDuration(c.EventWebhookBaseWaitInterval, "event-webhook-base-wait-interval"); err != nil {
+        return err
+    }

test/helper/helper.go (1)

73-85: Consider using constants for magic numbers in test configurations.

The test configuration values use magic numbers. Consider defining these as named constants for better maintainability.

+const (
+    defaultTestTimeout = 10 * gotime.Second
+    defaultTestWaitInterval = 3 * gotime.Millisecond
+)

-AdminTokenDuration           = "10s"
-ClientDeactivateThreshold    = "10s"
-AuthWebhookCacheAuthTTL      = 10 * gotime.Second
-AuthWebhookCacheUnauthTTL    = 10 * gotime.Second
-EventWebhookRequestTimeout   = 10 * gotime.Second
+AdminTokenDuration           = defaultTestTimeout.String()
+ClientDeactivateThreshold    = defaultTestTimeout.String()
+AuthWebhookCacheAuthTTL      = defaultTestTimeout
+AuthWebhookCacheUnauthTTL    = defaultTestTimeout
+EventWebhookRequestTimeout   = defaultTestTimeout

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 3bd66ce and b53cad0.

⛔ Files ignored due to path filters (1)

• api/yorkie/v1/resources.pb.go is excluded by !**/*.pb.go

📒 Files selected for processing (24)

• api/converter/from_pb.go (2 hunks)
• api/converter/to_pb.go (1 hunks)
• api/docs/yorkie/v1/admin.openapi.yaml (58 hunks)
• api/docs/yorkie/v1/cluster.openapi.yaml (7 hunks)
• api/docs/yorkie/v1/resources.openapi.yaml (67 hunks)
• api/docs/yorkie/v1/yorkie.openapi.yaml (52 hunks)
• api/types/project.go (2 hunks)
• api/types/project_event.go (1 hunks)
• api/types/updatable_project_fields.go (3 hunks)
• api/yorkie/v1/resources.proto (1 hunks)
• cmd/yorkie/project/update.go (6 hunks)
• cmd/yorkie/server.go (3 hunks)
• pkg/webhook/client.go (1 hunks)
• pkg/webhook/retry.go (1 hunks)
• server/backend/config.go (3 hunks)
• server/backend/config_test.go (2 hunks)
• server/backend/database/project_info.go (4 hunks)
• server/backend/database/project_info_test.go (2 hunks)
• server/backend/database/testcases/testcases.go (6 hunks)
• server/config.go (2 hunks)
• server/config_test.go (2 hunks)
• server/rpc/projectevent/webhook.go (1 hunks)
• server/rpc/yorkie_server.go (3 hunks)
• test/helper/helper.go (2 hunks)

✅ Files skipped from review due to trivial changes (3)

• api/docs/yorkie/v1/yorkie.openapi.yaml
• api/docs/yorkie/v1/resources.openapi.yaml
• api/docs/yorkie/v1/admin.openapi.yaml

⏰ Context from checks skipped due to timeout of 90000ms (3)

• GitHub Check: complex-test
• GitHub Check: bench
• GitHub Check: build

🔇 Additional comments (29)

server/backend/config_test.go (1)

34-36: Verify interval relationships.

The test configuration shows:

• EventWebhookBaseWaitInterval: "10ms"
• EventWebhookMaxWaitInterval: "10ms"

These values being equal might not test the expected relationship where max interval should be greater than base interval.

Consider adding test cases to verify the relationship between intervals:

conf9 := validConf
conf9.EventWebhookMaxWaitInterval = "5ms" // Less than base interval
assert.Error(t, conf9.Validate(), "max wait interval should be greater than base interval")

api/types/project.go (2)

41-45: LGTM! Well-documented fields for event webhook configuration.

The new fields are properly documented and follow the existing pattern in the struct.

---

83-100: LGTM! Clean implementation of RequireEventWebhook.

The method follows the same pattern as RequireAuth, making it consistent and easy to understand. It properly checks both the URL and events list before determining if a webhook is required.

pkg/webhook/retry.go (2)

29-36: LGTM! Clear error definitions.

The error variables are well-defined and properly exported for external use.

---

93-106: LGTM! Well-documented retry conditions.

The shouldRetry function follows Kubernetes patterns and handles appropriate HTTP status codes for retries.

api/types/updatable_project_fields.go (2)

42-46: LGTM! Well-structured field additions.

The new fields follow the existing pattern and include proper validation tags.

---

54-59: LGTM! Comprehensive null check in Validate method.

The validation logic properly includes the new fields in the emptiness check.

server/config_test.go (1)

64-64: LGTM! Comprehensive test coverage for event webhook configuration.

The test cases properly verify all new configuration parameters including max retries, base wait interval, max wait interval, and request timeout.

Also applies to: 82-92

server/rpc/projectevent/webhook.go (1)

94-96: LGTM: Good use of configuration for timeouts.

The implementation properly uses configurable timeouts from the config, which is a good practice for webhook clients.

server/backend/database/project_info.go (1)

60-64: LGTM: Clean integration of new webhook fields.

The new fields are well-documented and follow the existing pattern of the codebase.

cmd/yorkie/project/update.go (1)

186-218: LGTM: Robust string slice update implementation.

The updateStringSlice function is well-implemented with proper handling of the "ALL" special case.

server/config.go (1)

201-215: LGTM: Proper default value handling.

The implementation correctly ensures default values are set when not provided in the configuration.

server/backend/config.go (1)

76-86: LGTM! Well-structured configuration fields for event webhooks.

The new configuration fields are well-documented and follow the existing pattern. The YAML tags are correctly defined.

cmd/yorkie/server.go (3)

50-56: LGTM! Well-organized variable declarations.

The new event webhook variables are properly declared alongside related configuration variables.

---

73-75: LGTM! Proper configuration assignments.

The event webhook configurations are correctly assigned to the backend configuration.

---

336-359: LGTM! Well-documented command-line flags.

The new command-line flags are well-documented with clear descriptions and proper default values.

test/helper/helper.go (1)

261-279: LGTM! Proper test configuration setup.

The test configuration is properly set up with all required fields.

api/converter/to_pb.go (1)

564-575: LGTM! Event webhook fields are handled correctly.

The implementation follows the established pattern for handling optional fields in the ToUpdatableProjectFields function, using appropriate wrapper types and handling nil cases correctly.

api/converter/from_pb.go (2)

57-58: LGTM! Event webhook fields are correctly mapped in FromProject.

The implementation correctly maps the event webhook fields from the Protobuf format to the model format.

---

926-931: LGTM! Event webhook fields are handled correctly in FromUpdatableProjectFields.

The implementation follows the established pattern for handling optional fields, checking for nil before setting the values.

server/backend/database/testcases/testcases.go (5)

770-774: LGTM! Test data is well-defined.

The test data for event webhook fields is properly defined with realistic values.

---

789-790: LGTM! Test case covers updating all fields.

The test case verifies that event webhook fields can be updated along with other fields.

---

802-803: LGTM! Test assertions are comprehensive.

The test assertions verify that event webhook fields are correctly updated and persisted.

---

841-858: LGTM! Test case covers individual event webhook URL updates.

The test case verifies that the event webhook URL can be updated independently while preserving other fields.

---

859-876: LGTM! Test case covers individual event webhook events updates.

The test case verifies that the event webhook events can be updated independently while preserving other fields.

api/yorkie/v1/resources.proto (3)

300-304: LGTM! Project message fields are well-defined.

The event webhook fields are correctly added to the Project message with appropriate field numbers and types.

---

311-313: LGTM! EventWebhookEvents message is well-defined.

The EventWebhookEvents message is correctly defined with a repeated string field for events.

---

318-320: LGTM! UpdatableProjectFields message fields are well-defined.

The event webhook fields are correctly added to the UpdatableProjectFields message with appropriate field numbers and wrapper types.

api/docs/yorkie/v1/cluster.openapi.yaml (1)

3-11: Consider updating the version number.

Given the significant addition of webhook functionality, consider if the version number (v0.5.8) should be incremented according to your versioning strategy.

[coderabbitai]

💡 Codebase verification

Use the internal validation framework for WebhookAttribute validation

The codebase consistently uses an internal validation framework. Instead of implementing a standalone validation method, add field validation tags and use validation.ValidateStruct():

type WebhookAttribute struct {
    DocumentKey string `json:"documentKey" validate:"required"`
    ClientKey   string `json:"clientKey" validate:"required"`
    IssuedAt    string `json:"issuedAt" validate:"required,datetime=2006-01-02T15:04:05Z07:00"`
}

func (w *WebhookAttribute) Validate() error {
    return validation.ValidateStruct(w)
}

🔗 Analysis chain

Add validation for WebhookAttribute fields.

The WebhookAttribute struct should include validation for required fields and proper time format for IssuedAt.

Consider adding a validation method:

func (w *WebhookAttribute) Validate() error {
    if w.DocumentKey == "" {
        return errors.New("documentKey is required")
    }
    if w.ClientKey == "" {
        return errors.New("clientKey is required")
    }
    if _, err := time.Parse(time.RFC3339, w.IssuedAt); err != nil {
        return fmt.Errorf("invalid issuedAt format: %w", err)
    }
    return nil
}

🏁 Scripts executed

The following scripts were executed for the analysis:

Error: No shell scripts found

---

Script:

#!/bin/bash
# Check for existing validation methods for WebhookAttribute
echo "=== Checking WebhookAttribute validation ==="
ast-grep --pattern 'func (w *WebhookAttribute) Validate() $_'

echo -e "\n=== Checking similar validation patterns ==="
# Look for other Validate methods to understand validation patterns
ast-grep --pattern 'func ($_ *$_) Validate() error'

echo -e "\n=== Checking time format usage ==="
# Search for time.Parse usage to understand time format conventions
rg "time\.Parse\(" -A 1

echo -e "\n=== Checking validation frameworks ==="
# Look for common validation imports
rg "validator|validation" --type go

Length of output: 16939

[coderabbitai]

🛠️ Refactor suggestion

Consider adding request retry mechanism.

The client should handle transient failures with retries, especially for webhook delivery.

Consider implementing retries with exponential backoff:

type RetryConfig struct {
    MaxRetries int
    BaseDelay  time.Duration
    MaxDelay   time.Duration
}

func NewClientWithRetry(timeout time.Duration, privateKey string, retryConfig RetryConfig) *http.Client {
    return &http.Client{
        Timeout: timeout,
        Transport: &RetryTransport{
            Base: &HMACTransport{
                PrivateKey: privateKey,
            },
            RetryConfig: retryConfig,
        },
    }
}

[coderabbitai]

⚠️ Potential issue

Potential memory leak in RoundTrip implementation.

The original request body is not being closed after reading.

Apply this diff to fix the memory leak:

func (t *HMACTransport) RoundTrip(r *http.Request) (*http.Response, error) {
    reqCopy := r.Clone(r.Context())

    rawBody, err := io.ReadAll(r.Body)
+   if r.Body != nil {
+       defer r.Body.Close()
+   }
    if err != nil {
        return nil, fmt.Errorf("failed to read request: %w", err)
    }
    reqCopy.Body = io.NopCloser(bytes.NewBuffer(rawBody))

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	func (t *HMACTransport) RoundTrip(r *http.Request) (*http.Response, error) {
	reqCopy := r.Clone(r.Context())
	rawBody, err := io.ReadAll(r.Body)
	if err != nil {
	return nil, fmt.Errorf("failed to read request: %w", err)
	}
	reqCopy.Body = io.NopCloser(bytes.NewBuffer(rawBody))
	signature := GenerateHMACSignature(t.PrivateKey, rawBody)
	reqCopy.Header.Set("X-Signature", signature)
	resp, err := http.DefaultTransport.RoundTrip(reqCopy)
	if err != nil {
	return nil, fmt.Errorf("failed to send request: %w", err)
	}
	return resp, nil
	}
	func (t *HMACTransport) RoundTrip(r *http.Request) (*http.Response, error) {
	reqCopy := r.Clone(r.Context())
	rawBody, err := io.ReadAll(r.Body)
	if r.Body != nil {
	defer r.Body.Close()
	}
	if err != nil {
	return nil, fmt.Errorf("failed to read request: %w", err)
	}
	reqCopy.Body = io.NopCloser(bytes.NewBuffer(rawBody))
	signature := GenerateHMACSignature(t.PrivateKey, rawBody)
	reqCopy.Header.Set("X-Signature", signature)
	resp, err := http.DefaultTransport.RoundTrip(reqCopy)
	if err != nil {
	return nil, fmt.Errorf("failed to send request: %w", err)
	}
	return resp, nil
	}

[coderabbitai]

⚠️ Potential issue

Error messages need correction in ParseProjectWebhook methods.

The error messages in ParseProjectWebhookBaseWaitInterval and ParseProjectWebhookTimeout incorrectly mention "max wait interval".

Apply this diff to fix the error messages:

 func (c *Config) ParseProjectWebhookBaseWaitInterval() time.Duration {
     result, err := time.ParseDuration(c.EventWebhookBaseWaitInterval)
     if err != nil {
-        fmt.Fprintln(os.Stderr, "parse project webhook max wait interval: %w", err)
+        fmt.Fprintln(os.Stderr, "parse project webhook base wait interval: %w", err)
         os.Exit(1)
     }
     return result
 }

 func (c *Config) ParseProjectWebhookTimeout() time.Duration {
     result, err := time.ParseDuration(c.EventWebhookRequestTimeout)
     if err != nil {
-        fmt.Fprintln(os.Stderr, "parse project webhook max wait interval: %w", err)
+        fmt.Fprintln(os.Stderr, "parse project webhook request timeout: %w", err)
         os.Exit(1)
     }
     return result
 }

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	// ParseProjectWebhookMaxWaitInterval returns max wait interval.
	func (c *Config) ParseProjectWebhookMaxWaitInterval() time.Duration {
	result, err := time.ParseDuration(c.EventWebhookMaxWaitInterval)
	if err != nil {
	fmt.Fprintln(os.Stderr, "parse project webhook max wait interval: %w", err)
	os.Exit(1)
	}
	return result
	}
	// ParseProjectWebhookBaseWaitInterval returns base wait interval.
	func (c *Config) ParseProjectWebhookBaseWaitInterval() time.Duration {
	result, err := time.ParseDuration(c.EventWebhookBaseWaitInterval)
	if err != nil {
	fmt.Fprintln(os.Stderr, "parse project webhook max wait interval: %w", err)
	os.Exit(1)
	}
	return result
	}
	// ParseProjectWebhookTimeout returns timeout for request.
	func (c *Config) ParseProjectWebhookTimeout() time.Duration {
	result, err := time.ParseDuration(c.EventWebhookRequestTimeout)
	if err != nil {
	fmt.Fprintln(os.Stderr, "parse project webhook max wait interval: %w", err)
	os.Exit(1)
	}
	return result
	}
	// ParseProjectWebhookMaxWaitInterval returns max wait interval.
	func (c *Config) ParseProjectWebhookMaxWaitInterval() time.Duration {
	result, err := time.ParseDuration(c.EventWebhookMaxWaitInterval)
	if err != nil {
	fmt.Fprintln(os.Stderr, "parse project webhook max wait interval: %w", err)
	os.Exit(1)
	}
	return result
	}
	// ParseProjectWebhookBaseWaitInterval returns base wait interval.
	func (c *Config) ParseProjectWebhookBaseWaitInterval() time.Duration {
	result, err := time.ParseDuration(c.EventWebhookBaseWaitInterval)
	if err != nil {
	fmt.Fprintln(os.Stderr, "parse project webhook base wait interval: %w", err)
	os.Exit(1)
	}
	return result
	}
	// ParseProjectWebhookTimeout returns timeout for request.
	func (c *Config) ParseProjectWebhookTimeout() time.Duration {
	result, err := time.ParseDuration(c.EventWebhookRequestTimeout)
	if err != nil {
	fmt.Fprintln(os.Stderr, "parse project webhook request timeout: %w", err)
	os.Exit(1)
	}
	return result
	}

[coderabbitai]

🛠️ Refactor suggestion

Add error handling for document removal event.

Similar to the document creation event, the document removal event should include error handling.

-projectevent.DocumentRemoved(ctx, s.backend, docInfo.Key.String(), clientInfo.Key)
+if err := projectevent.DocumentRemoved(ctx, s.backend, docInfo.Key.String(), clientInfo.Key); err != nil {
+    logging.From(ctx).Error(err)
+}

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	projectevent.DocumentRemoved(ctx, s.backend, docInfo.Key.String(), clientInfo.Key)
	if err := projectevent.DocumentRemoved(ctx, s.backend, docInfo.Key.String(), clientInfo.Key); err != nil {
	logging.From(ctx).Error(err)
	}

[coderabbitai]

🛠️ Refactor suggestion

Consider error handling for event webhook calls.

The DocumentCreated event is triggered without error handling. Consider handling potential errors to ensure system stability.

 if docInfo.ServerSeq == 0 {
-    projectevent.DocumentCreated(ctx, s.backend, docInfo.Key.String(), clientInfo.Key)
+    if err := projectevent.DocumentCreated(ctx, s.backend, docInfo.Key.String(), clientInfo.Key); err != nil {
+        logging.From(ctx).Error(err)
+    }
 }

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	if docInfo.ServerSeq == 0 {
	projectevent.DocumentCreated(ctx, s.backend, docInfo.Key.String(), clientInfo.Key)
	}
	if docInfo.ServerSeq == 0 {
	if err := projectevent.DocumentCreated(ctx, s.backend, docInfo.Key.String(), clientInfo.Key); err != nil {
	logging.From(ctx).Error(err)
	}
	}

[coderabbitai]

⚠️ Potential issue

Add webhook-related endpoint specifications.

The PR objectives mention webhook functionality and HMAC signature authentication, but the API specification is missing:

1. Webhook configuration endpoints
2. HMAC signature header definition (X-Signature)
3. Webhook event payload schemas

Would you like me to help generate the missing API specifications for the webhook functionality?

Also applies to: 313-321

[coderabbitai]

🛠️ Refactor suggestion

Enhance webhook property definitions.

The new webhook properties need more detailed specifications:

1. Add descriptions explaining the purpose and usage of each property
2. Add URL format validation for eventWebhookUrl
3. Define allowed values for eventWebhookEvents using an enum

Apply this diff to enhance the property definitions:

   eventWebhookEvents:
     additionalProperties: false
-    description: ""
+    description: "List of event types that trigger webhook notifications (e.g., document.created, document.removed)"
     items:
-      type: string
+      type: string
+      enum:
+        - document.created
+        - document.removed
     title: event_webhook_events
     type: array
   eventWebhookUrl:
     additionalProperties: false
-    description: ""
+    description: "HTTPS URL that will receive webhook event notifications"
     title: event_webhook_url
     type: string
+    format: uri
+    pattern: "^https://"

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	eventWebhookEvents:
	additionalProperties: false
	description: ""
	items:
	type: string
	title: event_webhook_events
	type: array
	eventWebhookUrl:
	additionalProperties: false
	description: ""
	title: event_webhook_url
	type: string
	eventWebhookEvents:
	additionalProperties: false
	description: "List of event types that trigger webhook notifications (e.g., document.created, document.removed)"
	items:
	type: string
	enum:
	- document.created
	- document.removed
	title: event_webhook_events
	type: array
	eventWebhookUrl:
	additionalProperties: false
	description: "HTTPS URL that will receive webhook event notifications"
	title: event_webhook_url
	type: string
	format: uri
	pattern: "^https://"

[codecov]

Codecov Report

Attention: Patch coverage is 39.13043% with 84 lines in your changes missing coverage. Please review.

Project coverage is 46.73%. Comparing base (3bd66ce) to head (b53cad0).

Files with missing lines	Patch %	Lines
server/backend/config.go	51.16%	21 Missing ⚠️
api/types/updatable_project_fields.go	36.00%	13 Missing and 3 partials ⚠️
api/converter/to_pb.go	0.00%	12 Missing ⚠️
api/types/project.go	0.00%	12 Missing ⚠️
api/types/project_event.go	0.00%	11 Missing ⚠️
api/converter/from_pb.go	0.00%	8 Missing ⚠️
server/backend/database/project_info.go	60.00%	4 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #1131      +/-   ##
==========================================
- Coverage   46.82%   46.73%   -0.10%     
==========================================
  Files          84       85       +1     
  Lines       12282    12417     +135     
==========================================
+ Hits         5751     5803      +52     
- Misses       5954     6035      +81     
- Partials      577      579       +2     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.