mirror of
https://github.com/GSA/notifications-api.git
synced 2025-12-17 10:42:25 -05:00
67 lines
2.5 KiB
Python
67 lines
2.5 KiB
Python
|
import enum
|
||
|
|
from datetime import timedelta
|
||
|
|
from json import decoder
|
||
|
|
|
||
|
|
import requests
|
||
|
|
from flask import current_app, json
|
||
|
|
|
||
|
|
from app.celery.validate_sns_cert import validate_sns_cert
|
||
|
|
from app.errors import InvalidRequest
|
||
|
|
|
||
|
|
|
||
|
|
DEFAULT_MAX_AGE = timedelta(days=10000)
|
||
|
|
|
||
|
|
|
||
|
|
class SNSMessageType(enum.Enum):
|
||
|
|
SubscriptionConfirmation = 'SubscriptionConfirmation'
|
||
|
|
Notification = 'Notification'
|
||
|
|
UnsubscribeConfirmation = 'UnsubscribeConfirmation'
|
||
|
|
|
||
|
|
|
||
|
|
class InvalidMessageTypeException(Exception):
|
||
|
|
pass
|
||
|
|
|
||
|
|
|
||
|
|
def verify_message_type(message_type: str):
|
||
|
|
try:
|
||
|
|
SNSMessageType(message_type)
|
||
|
|
except ValueError:
|
||
|
|
raise InvalidRequest("SES-SNS callback failed: invalid message type", 400)
|
||
|
|
|
||
|
|
|
||
|
|
def sns_notification_handler(data, headers):
|
||
|
|
message_type = headers.get('x-amz-sns-message-type')
|
||
|
|
try:
|
||
|
|
verify_message_type(message_type)
|
||
|
|
except InvalidMessageTypeException:
|
||
|
|
current_app.logger.exception(f"Response headers: {headers}\nResponse data: {data}")
|
||
|
|
raise InvalidRequest("SES-SNS callback failed: invalid message type", 400)
|
||
|
|
|
||
|
|
try:
|
||
|
|
message = json.loads(data.decode('utf-8'))
|
||
|
|
except decoder.JSONDecodeError:
|
||
|
|
current_app.logger.exception(f"Response headers: {headers}\nResponse data: {data}")
|
||
|
|
raise InvalidRequest("SES-SNS callback failed: invalid JSON given", 400)
|
||
|
|
|
||
|
|
try:
|
||
|
|
validate_sns_cert(message)
|
||
|
|
except Exception as e:
|
||
|
|
current_app.logger.error(f"SES-SNS callback failed: validation failed with error: Signature validation failed with error {e}")
|
||
|
|
raise InvalidRequest("SES-SNS callback failed: validation failed", 400)
|
||
|
|
|
||
|
|
if message.get('Type') == 'SubscriptionConfirmation':
|
||
|
|
url = message.get('SubscribeUrl') if 'SubscribeUrl' in message else message.get('SubscribeURL')
|
||
|
|
response = requests.get(url)
|
||
|
|
try:
|
||
|
|
response.raise_for_status()
|
||
|
|
except Exception as e:
|
||
|
|
current_app.logger.warning(f"Attempt to raise_for_status()SubscriptionConfirmation Type message files for response: {response.text} with error {e}")
|
||
|
|
raise InvalidRequest("SES-SNS callback failed: attempt to raise_for_status()SubscriptionConfirmation Type message failed", 400)
|
||
|
|
current_app.logger.info("SES-SNS auto-confirm subscription callback succeeded")
|
||
|
|
return message
|
||
|
|
|
||
|
|
# TODO remove after smoke testing on prod is implemented
|
||
|
|
current_app.logger.info(f"SNS message: {message} is a valid message. Attempting to process it now.")
|
||
|
|
|
||
|
|
return message
|