Kezdőlap Felfedezés Súgó
Bejelentkezés
kingkong
/
timelapse-2
1
0
Másolás 0
Fájlok Problémák 0 Beolvasztási kérések 0 Wiki
Fa: f6d08119ab
Branch-ok Tag-ek
timelapse-2
/
scripts
/
webhook-server.js

webhook-server.js 2.1 KB
Előzmények Nyers

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364 
  1. #!/usr/bin/env node
    2. 

  2. // webhook-server.js — nhận webhook từ Gogs và trigger deploy
    3. 

  3. // Run: node webhook-server.js [port]
    4. 

  4. //
    5. 

  5. // Gogs webhook URL: http://<pi-ip>:9000/webhook
    6. 

  6. 

  7. const http = require('http')
    8. 

  8. 

  9. const PORT = process.env['WEBHOOK_PORT'] || 9000
    10. 

  10. const DEPLOY_SCRIPT = process.env['DEPLOY_SCRIPT'] || '/opt/timelapse/scripts/deploy.sh'
    11. 

  11. const WEBHOOK_SECRET = process.env['WEBHOOK_SECRET'] || ''
    12. 

  12. 

  13. function verifySignature(body, signature) {
    14. 

  14.   if (!WEBHOOK_SECRET) return true
    15. 

  15.   const crypto = require('crypto')
    16. 

  16.   const hmac = crypto.createHmac('sha256', WEBHOOK_SECRET)
    17. 

  17.   hmac.update(body)
    18. 

  18.   const expected = 'sha256=' + hmac.digest('hex')
    19. 

  19.   return crypto.timingSafeEqual(Buffer.from(signature || ''), Buffer.from(expected))
    20. 

  20. }
    21. 

  21. 

  22. const server = http.createServer((req, res) => {
    23. 

  23.   if (req.method !== 'POST' || req.url !== '/webhook') {
    24. 

  24.     res.writeHead(404)
    25. 

  25.     res.end('Not found')
    26. 

  26.     return
    27. 

  27.   }
    28. 

  28. 

  29.   let body = ''
    30. 

  30.   req.on('data', chunk => { body += chunk.toString() })
    31. 

  31.   req.on('end', () => {
    32. 

  32.     const signature = req.headers['x-gogs-signature'] || req.headers['x-hub-signature-256'] || ''
    33. 

  33.     if (!verifySignature(body, signature)) {
    34. 

  34.       res.writeHead(401)
    35. 

  35.       res.end('Unauthorized')
    36. 

  36.       return
    37. 

  37.     }
    38. 

  38. 

  39.     let payload
    40. 

  40.     try { payload = JSON.parse(body) } catch { payload = {} }
    41. 

  41. 

  42.     const branch = payload.ref ? payload.ref.replace('refs/heads/', '') : 'main'
    43. 

  43.     console.log(`[${new Date().toISOString()}] Webhook received — branch: ${branch}`)
    44. 

  44. 

  45.     res.writeHead(200, { 'Content-Type': 'application/json' })
    46. 

  46.     res.end(JSON.stringify({ ok: true, branch }))
    47. 

  47. 

  48.     // Trigger deploy async
    49. 

  49.     const { spawn } = require('child_process')
    50. 

  50.     const deploy = spawn('bash', [DEPLOY_SCRIPT, branch], {
    51. 

  51.       cwd: '/opt/timelapse',
    52. 

  52.       env: { ...process.env, DEPLOY_BRANCH: branch },
    53. 

  53.     })
    54. 

  54.     deploy.stdout.on('data', d => process.stdout.write(d))
    55. 

  55.     deploy.stderr.on('data', d => process.stderr.write(d))
    56. 

  56.     deploy.on('exit', code => {
    57. 

  57.       console.log(`[${new Date().toISOString()}] Deploy exited with code ${code}`)
    58. 

  58.     })
    59. 

  59.   })
    60. 

  60. })
    61. 

  61. 

  62. server.listen(PORT, () => {
    63. 

  63.   console.log(`Webhook server listening on http://0.0.0.0:${PORT}/webhook`)
    64. 

  64. })
    65.