#![allow(dead_code)]
use anyhow::Context;
use base64::Engine as _;
use base64::engine::general_purpose::STANDARD;
use greentic_types::ChannelMessageEnvelope;
use serde_json::{Map as JsonMap, Value as JsonValue, json};
use crate::domains::Domain;
use crate::ingress_types::{
EventEnvelopeV1, IngressDispatchResult, IngressHttpResponse, IngressRequestV1,
};
use crate::messaging_dto::HttpInV1;
use crate::operator_log;
use crate::post_ingress_hooks::apply_post_ingress_hooks_dispatch;
use crate::runner_host::{DemoRunnerHost, OperatorContext};
use crate::secret_requirements::load_secret_keys_from_pack;
pub fn dispatch_http_ingress(
runner_host: &DemoRunnerHost,
domain: Domain,
request: &IngressRequestV1,
ctx: &OperatorContext,
) -> anyhow::Result<IngressDispatchResult> {
dispatch_http_ingress_with_op(runner_host, domain, request, ctx, "ingest_http")
}
pub fn dispatch_http_ingress_with_op(
runner_host: &DemoRunnerHost,
domain: Domain,
request: &IngressRequestV1,
ctx: &OperatorContext,
op_name: &str,
) -> anyhow::Result<IngressDispatchResult> {
let config = build_injected_config(runner_host, domain, &request.provider, ctx).or_else(|| {
if matches!(domain, Domain::Events) {
Some(json!({
"target_url": "http://0.0.0.0:0/events/noop",
"timeout_ms": 1
}))
} else {
None
}
});
let http_in = build_ingress_request(
&request.provider,
request.handler.clone(),
&request.method,
&request.path,
request.headers.clone(),
request.query.clone(),
&request.body,
None,
Some(request.tenant.clone()),
request.team.clone(),
config,
);
let payload_json = serde_json::to_vec(&http_in)?;
let outcome =
runner_host.invoke_provider_op(domain, &request.provider, op_name, &payload_json, ctx)?;
if !outcome.success {
let message = outcome
.error
.or(outcome.raw)
.unwrap_or_else(|| "provider ingest_http failed".to_string());
anyhow::bail!("{message}");
}
if let Some(output) = outcome.output.as_ref()
&& output
.get("ok")
.and_then(JsonValue::as_bool)
.is_some_and(|ok| !ok)
{
let message = output
.get("error")
.and_then(JsonValue::as_str)
.or_else(|| output.get("message").and_then(JsonValue::as_str))
.unwrap_or("provider ingest_http reported ok=false");
anyhow::bail!("{message}");
}
let value = outcome.output.unwrap_or_else(|| json!({}));
let mut decoded = parse_dispatch_result(&value).with_context(|| "decode ingest_http output")?;
if !decoded.events.is_empty()
&& !request.body.is_empty()
&& let Ok(body) = serde_json::from_slice::<JsonValue>(&request.body)
{
for event in &mut decoded.events {
if event.payload.is_null() {
event.payload = body.clone();
}
}
}
apply_post_ingress_hooks_dispatch(
runner_host.bundle_root(),
runner_host,
domain,
request,
&mut decoded,
ctx,
)?;
Ok(decoded)
}
fn build_injected_config(
runner_host: &DemoRunnerHost,
domain: Domain,
provider: &str,
ctx: &OperatorContext,
) -> Option<JsonValue> {
let pack_path = runner_host.get_provider_pack_path(domain, provider)?;
let secret_keys = match load_secret_keys_from_pack(pack_path) {
Ok(keys) => keys,
Err(err) => {
operator_log::debug(
module_path!(),
format!(
"failed to load secret requirements for {provider}: {err}, skipping injection"
),
);
return None;
}
};
if secret_keys.is_empty() {
return None;
}
let mut config_map = serde_json::Map::new();
let mut any_found = false;
for key in &secret_keys {
match runner_host.get_secret(provider, key, ctx) {
Ok(Some(bytes)) => {
let key_b64 = format!("{}_b64", key);
config_map.insert(key_b64, JsonValue::String(STANDARD.encode(&bytes)));
any_found = true;
}
Ok(None) => {
operator_log::debug(
module_path!(),
format!(
"secret {key} not found for provider {provider}, component will try secrets_store"
),
);
}
Err(err) => {
operator_log::debug(
module_path!(),
format!(
"failed to fetch secret {key} for provider {provider}: {err}, component will try secrets_store"
),
);
}
}
}
if any_found {
Some(JsonValue::Object(config_map))
} else {
None
}
}
#[allow(clippy::too_many_arguments)]
fn build_ingress_request(
provider: &str,
route: Option<String>,
method: &str,
path: &str,
headers: Vec<(String, String)>,
query: Vec<(String, String)>,
body: &[u8],
binding_id: Option<String>,
tenant_hint: Option<String>,
team_hint: Option<String>,
config: Option<JsonValue>,
) -> HttpInV1 {
HttpInV1 {
v: 1,
provider: provider.to_string(),
route,
binding_id,
tenant_hint,
team_hint,
method: method.to_string(),
path: path.to_string(),
query,
headers,
body_b64: STANDARD.encode(body),
config,
}
}
fn parse_dispatch_result(value: &JsonValue) -> anyhow::Result<IngressDispatchResult> {
let value = if value.get("ok").is_some()
&& value.get("events").is_none()
&& value.get("status").is_none()
{
value.get("ok").unwrap_or(value)
} else {
value
};
if value.get("http").is_none() && value.get("response").is_none() {
if let Some(error) = value.get("error").and_then(JsonValue::as_str)
&& !error.trim().is_empty()
{
anyhow::bail!("{error}");
}
if value
.get("ok")
.and_then(JsonValue::as_bool)
.is_some_and(|ok| !ok)
{
anyhow::bail!("provider returned ok=false without http response");
}
}
let http_value = value
.get("http")
.or_else(|| value.get("response"))
.unwrap_or(value);
let response = parse_http_response(http_value)?;
let events_value = value.get("events").or_else(|| value.get("emitted_events"));
let events = parse_events(events_value)?;
let messaging_envelopes = parse_messaging_envelopes(events_value);
operator_log::info(
module_path!(),
format!(
"[DEBUG] parsed events={}, messaging_envelopes={}",
events.len(),
messaging_envelopes.len()
),
);
Ok(IngressDispatchResult {
response,
events,
messaging_envelopes,
})
}
fn parse_http_response(value: &JsonValue) -> anyhow::Result<IngressHttpResponse> {
let status = value
.get("status")
.and_then(JsonValue::as_u64)
.unwrap_or(200) as u16;
let headers = parse_headers(value.get("headers"));
let body = parse_body_bytes(value)?;
Ok(IngressHttpResponse {
status,
headers,
body,
})
}
fn parse_headers(value: Option<&JsonValue>) -> Vec<(String, String)> {
let Some(value) = value else {
return Vec::new();
};
if let Some(map) = value.as_object() {
return map
.iter()
.map(|(k, v)| {
(
k.to_string(),
v.as_str()
.map(str::to_string)
.unwrap_or_else(|| v.to_string()),
)
})
.collect();
}
if let Some(array) = value.as_array() {
let mut headers = Vec::new();
for entry in array {
if let Some(pair) = entry.as_array()
&& pair.len() >= 2
&& let (Some(name), Some(value)) = (pair[0].as_str(), pair[1].as_str())
{
headers.push((name.to_string(), value.to_string()));
continue;
}
if let Some(obj) = entry.as_object()
&& let (Some(name), Some(value)) = (
obj.get("name").and_then(JsonValue::as_str),
obj.get("value").and_then(JsonValue::as_str),
)
{
headers.push((name.to_string(), value.to_string()));
}
}
return headers;
}
Vec::new()
}
fn parse_body_bytes(value: &JsonValue) -> anyhow::Result<Option<Vec<u8>>> {
if let Some(body_b64) = value.get("body_b64").and_then(JsonValue::as_str) {
let decoded = STANDARD
.decode(body_b64)
.with_context(|| "body_b64 is not valid base64")?;
return Ok(Some(decoded));
}
if let Some(body_text) = value.get("body").and_then(JsonValue::as_str) {
return Ok(Some(body_text.as_bytes().to_vec()));
}
if let Some(body_json) = value.get("body_json") {
let encoded = serde_json::to_vec(body_json)?;
return Ok(Some(encoded));
}
Ok(None)
}
fn parse_events(value: Option<&JsonValue>) -> anyhow::Result<Vec<EventEnvelopeV1>> {
let Some(value) = value else {
return Ok(Vec::new());
};
let Some(array) = value.as_array() else {
return Ok(Vec::new());
};
let mut events = Vec::new();
for entry in array {
match serde_json::from_value::<EventEnvelopeV1>(entry.clone()) {
Ok(event) => events.push(event),
Err(_) => continue,
}
}
Ok(events)
}
fn parse_messaging_envelopes(value: Option<&JsonValue>) -> Vec<ChannelMessageEnvelope> {
let Some(value) = value else {
return Vec::new();
};
let Some(array) = value.as_array() else {
return Vec::new();
};
let mut envelopes = Vec::new();
for (i, entry) in array.iter().enumerate() {
match serde_json::from_value::<ChannelMessageEnvelope>(entry.clone()) {
Ok(envelope) => {
envelopes.push(envelope);
}
Err(err) => {
operator_log::warn(
module_path!(),
format!(
"[DEBUG] parse_messaging_envelopes: failed to parse envelope {}: {} entry={}",
i,
err,
serde_json::to_string(entry).unwrap_or_default()
),
);
}
}
}
envelopes
}
pub fn events_debug_json(events: &[EventEnvelopeV1]) -> JsonValue {
let mut items = Vec::new();
for event in events {
let mut item = JsonMap::new();
item.insert(
"event_id".to_string(),
JsonValue::String(event.event_id.clone()),
);
item.insert(
"event_type".to_string(),
JsonValue::String(event.event_type.clone()),
);
item.insert(
"provider".to_string(),
JsonValue::String(event.source.provider.clone()),
);
item.insert(
"tenant".to_string(),
JsonValue::String(event.scope.tenant.clone()),
);
items.push(JsonValue::Object(item));
}
JsonValue::Array(items)
}
pub fn log_invalid_event_warning(err: &anyhow::Error) {
operator_log::warn(
module_path!(),
format!("ingress events decode warning: {err}"),
);
}
#[cfg(test)]
mod tests {
use super::*;
fn messaging_envelope() -> JsonValue {
json!({
"id": "msg-1",
"tenant": {
"env": "dev",
"tenant": "demo",
"tenant_id": "demo",
"team": "default",
"attempt": 0
},
"channel": "conv-1",
"session_id": "conv-1",
"from": {
"id": "user-1",
"kind": "user"
},
"text": "hello",
"metadata": {}
})
}
fn event() -> JsonValue {
json!({
"event_id": "evt-1",
"event_type": "subscription.created",
"occurred_at": "2026-04-01T00:00:00Z",
"source": {
"domain": "events",
"provider": "events-webhook"
},
"scope": {
"tenant": "demo",
"team": "default"
},
"payload": {"id": "1"}
})
}
#[test]
fn build_ingress_request_and_parse_headers_cover_supported_shapes() {
let request = build_ingress_request(
"provider-a",
Some("hook".to_string()),
"POST",
"/v1/events",
vec![("x-test".to_string(), "1".to_string())],
vec![("q".to_string(), "v".to_string())],
b"body",
Some("binding-1".to_string()),
Some("demo".to_string()),
Some("ops".to_string()),
Some(json!({"token_b64": "e30="})),
);
assert_eq!(request.provider, "provider-a");
assert_eq!(request.route.as_deref(), Some("hook"));
assert_eq!(request.method, "POST");
assert_eq!(request.binding_id.as_deref(), Some("binding-1"));
assert_eq!(request.tenant_hint.as_deref(), Some("demo"));
assert_eq!(request.team_hint.as_deref(), Some("ops"));
assert_eq!(request.body_b64, STANDARD.encode(b"body"));
assert_eq!(
parse_headers(Some(&json!({"x-a": "1", "x-b": 2}))),
vec![
("x-a".to_string(), "1".to_string()),
("x-b".to_string(), "2".to_string())
]
);
assert_eq!(
parse_headers(Some(&json!([
["x-a", "1"],
{"name": "x-b", "value": "2"},
["ignored"]
]))),
vec![
("x-a".to_string(), "1".to_string()),
("x-b".to_string(), "2".to_string())
]
);
}
#[test]
fn body_event_and_messaging_parsers_handle_multiple_shapes() {
assert_eq!(
parse_body_bytes(&json!({"body_b64": STANDARD.encode(b"hello")})).expect("b64"),
Some(b"hello".to_vec())
);
assert_eq!(
parse_body_bytes(&json!({"body": "hello"})).expect("text"),
Some(b"hello".to_vec())
);
assert_eq!(
parse_body_bytes(&json!({"body_json": {"ok": true}})).expect("json"),
Some(br#"{"ok":true}"#.to_vec())
);
assert_eq!(parse_body_bytes(&json!({})).expect("missing"), None);
let events = parse_events(Some(&json!([event(), {"bad": true}]))).expect("events");
assert_eq!(events.len(), 1);
assert_eq!(events[0].event_id, "evt-1");
let envelopes =
parse_messaging_envelopes(Some(&json!([messaging_envelope(), {"bad": true}])));
assert_eq!(envelopes.len(), 1);
assert_eq!(envelopes[0].id, "msg-1");
}
#[test]
fn parse_dispatch_result_supports_wit_envelopes_and_debug_helpers() {
let result = parse_dispatch_result(&json!({
"ok": {
"response": {
"status": 202,
"headers": [{"name": "content-type", "value": "application/json"}],
"body_json": {"ok": true}
},
"events": [event(), messaging_envelope()]
}
}))
.expect("dispatch result");
assert_eq!(result.response.status, 202);
assert_eq!(
result.response.headers,
vec![("content-type".to_string(), "application/json".to_string())]
);
assert_eq!(result.response.body, Some(br#"{"ok":true}"#.to_vec()));
assert_eq!(result.events.len(), 1);
assert_eq!(result.messaging_envelopes.len(), 1);
let debug = events_debug_json(&result.events);
assert_eq!(debug.as_array().expect("array").len(), 1);
assert_eq!(debug[0]["provider"], "events-webhook");
log_invalid_event_warning(&anyhow::anyhow!("bad event"));
}
}