tracks/app/controllers/integrations_controller.rb

class IntegrationsController < ApplicationController
  require 'mail'

  skip_before_action :login_required, :only => [:cloudmailin, :search_plugin]
  skip_before_action :verify_authenticity_token, only: [:cloudmailin]

  def index
    @page_title = 'TRACKS::Integrations'
  end

  def rest_api
    @page_title = 'TRACKS::REST API Documentation'
  end

  def search_plugin
    @icon_data = [File.open(File.join(Rails.root, 'app', 'assets', 'images', 'done.png')).read].
      pack('m').gsub(/\n/, '')
  end

  def cloudmailin
    if !verify_cloudmailin_signature
      render :text => "Message signature verification failed.", :status => 403
      return false
    end

    if process_message(params[:message])
      render :text => 'success', :status => 200
    else
      render :text => "No user found or other error", :status => 404
    end
  end

  private

  def process_message(message)
    MessageGateway::receive(Mail.new(message))
  end

  def verify_cloudmailin_signature
    provided = request.request_parameters.delete(:signature)
    signature = Digest::MD5.hexdigest(flatten_params(request.request_parameters).sort.map{|k,v| v}.join + SITE_CONFIG['cloudmailin'])
    return provided == signature
  end

  def flatten_params(params, title = nil, result = {})
    params.each do |key, value|
      if value.kind_of?(Hash)
        key_name = title ? "#{title}[#{key}]" : key
        flatten_params(value, key_name, result)
      else
        key_name = title ? "#{title}[#{key}]" : key
        result[key_name] = value
      end
    end

    return result
  end

end
Add an Integrations page, with assistance for implementing AppleScripts and cron jobs that integrate with Tracks. git-svn-id: http://www.rousette.org.uk/svn/tracks-repos/trunk@619 a4c988fc-2ded-0310-b66e-134b36920a42 2007-10-14 05:33:00 +00:00			`class IntegrationsController < ApplicationController`
Adding cloudmailin support for adding tasks 2011-10-04 20:14:36 +02:00			`require 'mail'`
Remove trailing whitespace and tabs 2014-08-14 21:05:05 -05:00
Convert `before_filter` to `before_action` `before_filter` has been removed in future versions of rails. Co-Authored-By: Dan Rice <dnrce@users.noreply.github.com> 2018-09-22 12:55:27 -05:00			`skip_before_action :login_required, :only => [:cloudmailin, :search_plugin]`
			`skip_before_action :verify_authenticity_token, only: [:cloudmailin]`
Remove trailing whitespace and tabs 2014-08-14 21:05:05 -05:00
Add an Integrations page, with assistance for implementing AppleScripts and cron jobs that integrate with Tracks. git-svn-id: http://www.rousette.org.uk/svn/tracks-repos/trunk@619 a4c988fc-2ded-0310-b66e-134b36920a42 2007-10-14 05:33:00 +00:00			`def index`
			`@page_title = 'TRACKS::Integrations'`
			`end`
Remove trailing whitespace and tabs 2014-08-14 21:05:05 -05:00
Added documentation for REST API. git-svn-id: http://www.rousette.org.uk/svn/tracks-repos/trunk@674 a4c988fc-2ded-0310-b66e-134b36920a42 2007-12-05 06:48:24 +00:00			`def rest_api`
			`@page_title = 'TRACKS::REST API Documentation'`
			`end`
Remove trailing whitespace and tabs 2014-08-14 21:05:05 -05:00
OpenSearch support. This implements #804. 2008-12-10 21:30:43 +01:00			`def search_plugin`
fix #1287. Fix various small bugs and some small improvements 2012-06-29 16:48:30 +02:00			`@icon_data = [File.open(File.join(Rails.root, 'app', 'assets', 'images', 'done.png')).read].`
Adding cloudmailin support for adding tasks 2011-10-04 20:14:36 +02:00			`pack('m').gsub(/\n/, '')`
OpenSearch support. This implements #804. 2008-12-10 21:30:43 +01:00			`end`

Adding cloudmailin support for adding tasks 2011-10-04 20:14:36 +02:00			`def cloudmailin`
small refactorings 2013-05-05 20:32:32 +02:00			`if !verify_cloudmailin_signature`
Removing signatures from output and adding two test cases: invalid signature and unknown sender 2011-10-06 16:41:46 +02:00			`render :text => "Message signature verification failed.", :status => 403`
adding test for cloudmailin and fixing some bugs found with it 2011-10-05 23:53:49 +02:00			`return false`
			`end`
Remove trailing whitespace and tabs 2014-08-14 21:05:05 -05:00
small refactorings 2013-05-05 20:32:32 +02:00			`if process_message(params[:message])`
small refactorings 2012-07-12 13:14:21 +02:00			`render :text => 'success', :status => 200`
Adding cloudmailin support for adding tasks 2011-10-04 20:14:36 +02:00			`else`
small refactorings 2012-07-12 13:14:21 +02:00			`render :text => "No user found or other error", :status => 404`
Adding cloudmailin support for adding tasks 2011-10-04 20:14:36 +02:00			`end`
			`end`
Remove trailing whitespace and tabs 2014-08-14 21:05:05 -05:00
small refactorings 2012-07-12 13:14:21 +02:00			`private`
small refactorings 2013-05-05 20:32:32 +02:00
			`def process_message(message)`
			`MessageGateway::receive(Mail.new(message))`
			`end`

			`def verify_cloudmailin_signature`
			`provided = request.request_parameters.delete(:signature)`
Fix CloudMailin signature digest calculation Adopt current (deprecated) code from http://docs.cloudmailin.com/receiving_email/securing_your_email_url_target/ Fixes #1402 2014-09-08 00:29:22 -04:00			`signature = Digest::MD5.hexdigest(flatten_params(request.request_parameters).sort.map{\|k,v\| v}.join + SITE_CONFIG['cloudmailin'])`
small refactorings 2013-05-05 20:32:32 +02:00			`return provided == signature`
			`end`
Remove trailing whitespace and tabs 2014-08-14 21:05:05 -05:00
Fix CloudMailin signature digest calculation Adopt current (deprecated) code from http://docs.cloudmailin.com/receiving_email/securing_your_email_url_target/ Fixes #1402 2014-09-08 00:29:22 -04:00			`def flatten_params(params, title = nil, result = {})`
			`params.each do \|key, value\|`
			`if value.kind_of?(Hash)`
			`key_name = title ? "#{title}[#{key}]" : key`
			`flatten_params(value, key_name, result)`
			`else`
			`key_name = title ? "#{title}[#{key}]" : key`
			`result[key_name] = value`
			`end`
			`end`

			`return result`
			`end`

Add an Integrations page, with assistance for implementing AppleScripts and cron jobs that integrate with Tracks. git-svn-id: http://www.rousette.org.uk/svn/tracks-repos/trunk@619 a4c988fc-2ded-0310-b66e-134b36920a42 2007-10-14 05:33:00 +00:00			`end`
Remove applescript integration. Closes #1723 2015-01-01 23:50:50 +00:00