nylas_types/

webhook.rs

//! Webhook types for Nylas API v3
//!
//! Webhooks allow you to receive real-time notifications about changes to your Nylas data.
//! This module provides types for webhook configuration, notifications, and signature verification.

use serde::{Deserialize, Serialize};
use serde_json::Value;

use crate::common::WebhookId;

/// A webhook configuration.
///
/// Webhooks send HTTP POST requests to your specified callback URL when events occur.
///
/// # Example
///
/// ```
/// # use nylas_types::{Webhook, WebhookId, WebhookTrigger};
/// let webhook = Webhook {
///     id: WebhookId::new("webhook_123"),
///     description: Some("Production webhook for message events".to_string()),
///     trigger_types: vec![WebhookTrigger::MessageCreated, WebhookTrigger::MessageUpdated],
///     webhook_url: "https://api.example.com/webhooks".to_string(),
///     webhook_secret: Some("secret_key_xyz".to_string()),
///     notification_email_addresses: vec!["admin@example.com".to_string()],
/// };
/// ```
#[derive(Debug, Clone, PartialEq, Eq, Serialize, Deserialize)]
pub struct Webhook {
    /// Unique identifier for the webhook.
    pub id: WebhookId,

    /// Description of the webhook.
    #[serde(skip_serializing_if = "Option::is_none")]
    pub description: Option<String>,

    /// List of trigger types this webhook listens for.
    pub trigger_types: Vec<WebhookTrigger>,

    /// URL where webhook notifications will be sent.
    pub webhook_url: String,

    /// Secret key for webhook signature verification.
    #[serde(skip_serializing_if = "Option::is_none")]
    pub webhook_secret: Option<String>,

    /// Email addresses to notify when webhook fails.
    #[serde(default)]
    pub notification_email_addresses: Vec<String>,
}

/// Webhook trigger types.
///
/// Specifies which events will trigger webhook notifications.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Hash, Serialize, Deserialize)]
#[serde(rename_all = "kebab-case")]
pub enum WebhookTrigger {
    /// Message created
    MessageCreated,
    /// Message updated
    MessageUpdated,
    /// Message deleted (not sent)
    MessageDeleted,

    /// Thread created
    ThreadCreated,
    /// Thread updated
    ThreadUpdated,

    /// Draft created
    DraftCreated,
    /// Draft updated
    DraftUpdated,
    /// Draft deleted (not sent)
    DraftDeleted,

    /// Event created
    EventCreated,
    /// Event updated
    EventUpdated,
    /// Event deleted
    EventDeleted,

    /// Calendar created
    CalendarCreated,
    /// Calendar updated
    CalendarUpdated,
    /// Calendar deleted
    CalendarDeleted,

    /// Contact created
    ContactCreated,
    /// Contact updated
    ContactUpdated,
    /// Contact deleted
    ContactDeleted,

    /// Folder created
    FolderCreated,
    /// Folder updated
    FolderUpdated,
    /// Folder deleted
    FolderDeleted,

    /// Grant created
    GrantCreated,
    /// Grant updated
    GrantUpdated,
    /// Grant deleted
    GrantDeleted,
    /// Grant expired
    GrantExpired,
}

/// Webhook notification payload.
///
/// This is the payload sent by Nylas to your webhook URL when an event occurs.
///
/// # Example
///
/// ```
/// # use nylas_types::WebhookNotification;
/// # use serde_json::json;
/// let payload = r#"{
///     "id": "notif_123",
///     "grant_id": "grant_456",
///     "application_id": "app_789",
///     "trigger": "message.created",
///     "timestamp": 1609459200,
///     "data": {"id": "msg_abc", "subject": "Hello"}
/// }"#;
///
/// let notification: WebhookNotification = serde_json::from_str(payload).unwrap();
/// assert_eq!(notification.trigger, "message.created");
/// ```
#[derive(Debug, Clone, PartialEq, Eq, Serialize, Deserialize)]
pub struct WebhookNotification {
    /// Unique notification ID.
    pub id: String,

    /// Grant ID that triggered this notification.
    pub grant_id: String,

    /// Application ID.
    pub application_id: String,

    /// Trigger type (e.g., "message.created").
    pub trigger: String,

    /// Unix timestamp when event occurred.
    pub timestamp: i64,

    /// Event data payload.
    pub data: Value,

    /// Calendar ID (for calendar/event triggers).
    #[serde(skip_serializing_if = "Option::is_none")]
    pub calendar_id: Option<String>,

    /// Master event ID (for recurring event triggers).
    #[serde(skip_serializing_if = "Option::is_none")]
    pub master_event_id: Option<String>,
}

/// Request to create a new webhook.
///
/// # Example
///
/// ```
/// # use nylas_types::{CreateWebhookRequest, WebhookTrigger};
/// let request = CreateWebhookRequest::builder()
///     .description("My webhook")
///     .webhook_url("https://api.example.com/webhooks")
///     .trigger_types(vec![WebhookTrigger::MessageCreated])
///     .webhook_secret("my_secret_key")
///     .build();
/// ```
#[derive(Debug, Clone, PartialEq, Eq, Serialize, Deserialize)]
pub struct CreateWebhookRequest {
    /// Description of the webhook.
    #[serde(skip_serializing_if = "Option::is_none")]
    pub description: Option<String>,

    /// URL where webhook notifications will be sent.
    pub webhook_url: String,

    /// List of trigger types this webhook listens for.
    pub trigger_types: Vec<WebhookTrigger>,

    /// Secret key for webhook signature verification.
    #[serde(skip_serializing_if = "Option::is_none")]
    pub webhook_secret: Option<String>,

    /// Email addresses to notify when webhook fails.
    #[serde(skip_serializing_if = "Option::is_none")]
    pub notification_email_addresses: Option<Vec<String>>,
}

impl CreateWebhookRequest {
    /// Create a builder for CreateWebhookRequest.
    pub fn builder() -> CreateWebhookRequestBuilder {
        CreateWebhookRequestBuilder::default()
    }
}

/// Builder for CreateWebhookRequest.
#[derive(Debug, Clone, Default)]
pub struct CreateWebhookRequestBuilder {
    description: Option<String>,
    webhook_url: Option<String>,
    trigger_types: Option<Vec<WebhookTrigger>>,
    webhook_secret: Option<String>,
    notification_email_addresses: Option<Vec<String>>,
}

impl CreateWebhookRequestBuilder {
    /// Set webhook description.
    pub fn description(mut self, description: impl Into<String>) -> Self {
        self.description = Some(description.into());
        self
    }

    /// Set webhook URL.
    pub fn webhook_url(mut self, url: impl Into<String>) -> Self {
        self.webhook_url = Some(url.into());
        self
    }

    /// Set trigger types.
    pub fn trigger_types(mut self, triggers: Vec<WebhookTrigger>) -> Self {
        self.trigger_types = Some(triggers);
        self
    }

    /// Set webhook secret for signature verification.
    pub fn webhook_secret(mut self, secret: impl Into<String>) -> Self {
        self.webhook_secret = Some(secret.into());
        self
    }

    /// Set notification email addresses.
    pub fn notification_email_addresses(mut self, emails: Vec<String>) -> Self {
        self.notification_email_addresses = Some(emails);
        self
    }

    /// Build the CreateWebhookRequest.
    ///
    /// # Panics
    ///
    /// Panics if webhook_url or trigger_types are not set.
    pub fn build(self) -> CreateWebhookRequest {
        CreateWebhookRequest {
            description: self.description,
            webhook_url: self.webhook_url.expect("webhook_url is required"),
            trigger_types: self.trigger_types.expect("trigger_types is required"),
            webhook_secret: self.webhook_secret,
            notification_email_addresses: self.notification_email_addresses,
        }
    }
}

/// Request to update a webhook.
///
/// All fields are optional - only provide the fields you want to update.
///
/// # Example
///
/// ```
/// # use nylas_types::{UpdateWebhookRequest, WebhookTrigger};
/// let update = UpdateWebhookRequest::builder()
///     .description("Updated description")
///     .trigger_types(vec![WebhookTrigger::MessageCreated, WebhookTrigger::MessageUpdated])
///     .build();
/// ```
#[derive(Debug, Clone, PartialEq, Eq, Serialize, Deserialize, Default)]
pub struct UpdateWebhookRequest {
    /// Update webhook description.
    #[serde(skip_serializing_if = "Option::is_none")]
    pub description: Option<String>,

    /// Update webhook URL.
    #[serde(skip_serializing_if = "Option::is_none")]
    pub webhook_url: Option<String>,

    /// Update trigger types.
    #[serde(skip_serializing_if = "Option::is_none")]
    pub trigger_types: Option<Vec<WebhookTrigger>>,

    /// Update webhook secret.
    #[serde(skip_serializing_if = "Option::is_none")]
    pub webhook_secret: Option<String>,

    /// Update notification email addresses.
    #[serde(skip_serializing_if = "Option::is_none")]
    pub notification_email_addresses: Option<Vec<String>>,
}

impl UpdateWebhookRequest {
    /// Create a builder for UpdateWebhookRequest.
    pub fn builder() -> UpdateWebhookRequestBuilder {
        UpdateWebhookRequestBuilder::default()
    }
}

/// Builder for UpdateWebhookRequest.
#[derive(Debug, Clone, Default)]
pub struct UpdateWebhookRequestBuilder {
    description: Option<String>,
    webhook_url: Option<String>,
    trigger_types: Option<Vec<WebhookTrigger>>,
    webhook_secret: Option<String>,
    notification_email_addresses: Option<Vec<String>>,
}

impl UpdateWebhookRequestBuilder {
    /// Set webhook description.
    pub fn description(mut self, description: impl Into<String>) -> Self {
        self.description = Some(description.into());
        self
    }

    /// Set webhook URL.
    pub fn webhook_url(mut self, url: impl Into<String>) -> Self {
        self.webhook_url = Some(url.into());
        self
    }

    /// Set trigger types.
    pub fn trigger_types(mut self, triggers: Vec<WebhookTrigger>) -> Self {
        self.trigger_types = Some(triggers);
        self
    }

    /// Set webhook secret.
    pub fn webhook_secret(mut self, secret: impl Into<String>) -> Self {
        self.webhook_secret = Some(secret.into());
        self
    }

    /// Set notification email addresses.
    pub fn notification_email_addresses(mut self, emails: Vec<String>) -> Self {
        self.notification_email_addresses = Some(emails);
        self
    }

    /// Build the UpdateWebhookRequest.
    pub fn build(self) -> UpdateWebhookRequest {
        UpdateWebhookRequest {
            description: self.description,
            webhook_url: self.webhook_url,
            trigger_types: self.trigger_types,
            webhook_secret: self.webhook_secret,
            notification_email_addresses: self.notification_email_addresses,
        }
    }
}

/// Verifies the HMAC signature of a webhook payload.
///
/// Use this to verify that a webhook notification actually came from Nylas.
///
/// # Arguments
///
/// * `payload` - The raw webhook payload bytes
/// * `signature` - The signature from the X-Nylas-Signature header
/// * `secret` - Your webhook secret key
///
/// # Returns
///
/// Returns `true` if the signature is valid, `false` otherwise.
///
/// # Example
///
/// ```
/// # use nylas_types::verify_webhook_signature;
/// let payload = b"{\"id\":\"123\",\"trigger\":\"message.created\"}";
/// let signature = "abc123def456...";
/// let secret = "my_webhook_secret";
///
/// if verify_webhook_signature(payload, signature, secret) {
///     println!("Webhook signature is valid!");
/// } else {
///     println!("Invalid webhook signature!");
/// }
/// ```
pub fn verify_webhook_signature(payload: &[u8], signature: &str, secret: &str) -> bool {
    use hmac::{Hmac, Mac};
    use sha2::Sha256;

    type HmacSha256 = Hmac<Sha256>;

    let mut mac = match HmacSha256::new_from_slice(secret.as_bytes()) {
        Ok(m) => m,
        Err(_) => return false,
    };

    mac.update(payload);

    let result = mac.finalize();
    let expected = hex::encode(result.into_bytes());

    signature == expected
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_webhook_serialization() {
        let webhook = Webhook {
            id: WebhookId::new("webhook_123"),
            description: Some("Test webhook".to_string()),
            trigger_types: vec![WebhookTrigger::MessageCreated],
            webhook_url: "https://example.com/webhook".to_string(),
            webhook_secret: Some("secret".to_string()),
            notification_email_addresses: vec!["admin@example.com".to_string()],
        };

        let json = serde_json::to_string(&webhook).unwrap();
        assert!(json.contains("webhook_123"));
        assert!(json.contains("https://example.com/webhook"));
    }

    #[test]
    fn test_webhook_notification_deserialization() {
        let json = r#"{
            "id": "notif_123",
            "grant_id": "grant_456",
            "application_id": "app_789",
            "trigger": "message.created",
            "timestamp": 1609459200,
            "data": {"id": "msg_abc", "subject": "Test"}
        }"#;

        let notification: WebhookNotification = serde_json::from_str(json).unwrap();
        assert_eq!(notification.id, "notif_123");
        assert_eq!(notification.trigger, "message.created");
        assert_eq!(notification.timestamp, 1609459200);
    }

    #[test]
    fn test_webhook_trigger_serialization() {
        let trigger = WebhookTrigger::MessageCreated;
        let json = serde_json::to_string(&trigger).unwrap();
        assert_eq!(json, "\"message-created\"");

        let trigger = WebhookTrigger::EventUpdated;
        let json = serde_json::to_string(&trigger).unwrap();
        assert_eq!(json, "\"event-updated\"");
    }

    #[test]
    fn test_create_webhook_request_builder() {
        let request = CreateWebhookRequest::builder()
            .description("My webhook")
            .webhook_url("https://api.example.com/webhooks")
            .trigger_types(vec![WebhookTrigger::MessageCreated])
            .webhook_secret("secret_key")
            .notification_email_addresses(vec!["admin@example.com".to_string()])
            .build();

        assert_eq!(request.description, Some("My webhook".to_string()));
        assert_eq!(request.webhook_url, "https://api.example.com/webhooks");
        assert_eq!(request.trigger_types.len(), 1);
        assert_eq!(request.webhook_secret, Some("secret_key".to_string()));
    }

    #[test]
    fn test_update_webhook_request_builder() {
        let update = UpdateWebhookRequest::builder()
            .description("Updated")
            .trigger_types(vec![
                WebhookTrigger::MessageCreated,
                WebhookTrigger::MessageUpdated,
            ])
            .build();

        assert_eq!(update.description, Some("Updated".to_string()));
        assert_eq!(update.trigger_types.as_ref().unwrap().len(), 2);
        assert!(update.webhook_url.is_none());
    }

    #[test]
    fn test_verify_webhook_signature() {
        let payload = b"test payload";
        let secret = "test_secret";

        // Generate a valid signature
        use hmac::{Hmac, Mac};
        use sha2::Sha256;
        type HmacSha256 = Hmac<Sha256>;

        let mut mac = HmacSha256::new_from_slice(secret.as_bytes()).unwrap();
        mac.update(payload);
        let result = mac.finalize();
        let signature = hex::encode(result.into_bytes());

        // Verify it
        assert!(verify_webhook_signature(payload, &signature, secret));

        // Verify wrong signature fails
        assert!(!verify_webhook_signature(
            payload,
            "wrong_signature",
            secret
        ));

        // Verify wrong secret fails
        assert!(!verify_webhook_signature(
            payload,
            &signature,
            "wrong_secret"
        ));
    }
}