Skip to content
This repository was archived by the owner on Feb 7, 2025. It is now read-only.

Turning messages on and off using config flag #259

Merged
merged 12 commits into from
Jan 3, 2025
Merged

Turning messages on and off using config flag #259

merged 12 commits into from
Jan 3, 2025
+68 −51

Conversation

jcrichlake
Copy link
Contributor

@jcrichlake jcrichlake commented Jan 2, 2025
edited
Loading

Description

We are adding a check of the config files to turn off SFTP for a given partner.

Issue

devex item

Checklist

  • I have added tests to cover my changes
  • I have added logging where useful (with appropriate log level)

Sorry, something went wrong.

somesylvie and others added 10 commits December 20, 2024 10:30
@somesylvie @jcrichlake @jherrflexion
start on using configs
29da432 
Co-Authored-By: jcrichlake <145698165+jcrichlake@users.noreply.github.com>
Co-Authored-By: jherrflexion <118225331+jherrflexion@users.noreply.github.com>
@somesylvie
use partnerId more places
b43f6f5
@somesylvie
update TODOs
7c66bf0
@somesylvie @jcrichlake @pluckyswan
some cleanup and refactoring
41925f1 
Co-Authored-By: jcrichlake <145698165+jcrichlake@users.noreply.github.com>
Co-Authored-By: Bella L. Quintero <96704946+pluckyswan@users.noreply.github.com>
@somesylvie @jcrichlake @jherrflexion
start on using configs
1ad1ee6 
Co-Authored-By: jcrichlake <145698165+jcrichlake@users.noreply.github.com>
Co-Authored-By: jherrflexion <118225331+jherrflexion@users.noreply.github.com>
@somesylvie @jcrichlake
use partnerId more places
b954cc6
@somesylvie @jcrichlake
update TODOs
f430ed1
@somesylvie @jcrichlake @pluckyswan
some cleanup and refactoring
2fbe07e 
Co-Authored-By: jcrichlake <145698165+jcrichlake@users.noreply.github.com>
Co-Authored-By: Bella L. Quintero <96704946+pluckyswan@users.noreply.github.com>
@jcrichlake
Merge branch 'use-queue-message-to-retrieve-config' of https://github…
05b496d 
….com/CDCgov/reportstream-sftp-ingestion into use-queue-message-to-retrieve-config
@jcrichlake
Updating todo comment
5ec4bb0
@github-actions GitHub Actions
Copy link

github-actions bot commented Jan 2, 2025

PR Reviewer Guide 🔍

Here are some key observations to aid the review process:

⏱️ Estimated effort to review: 3 🔵🔵🔵⚪⚪
🧪 No relevant tests
🔒 No security concerns identified
⚡ Recommended focus areas for review

Hardcoded Secrets

The code constructs secret keys using a pattern that includes the environment name and partner ID. This could potentially expose the pattern of secret keys, making it easier for an attacker to guess other secret keys.

hostPublicKeyName := partnerId + "-sftp-host-public-key-" + utils.EnvironmentName() // pragma: allowlist secret
Error Handling

The function checkIsActive logs an error and returns false if the partner ID is not found in the configuration, which could lead to silent failures in processing messages if the configuration is not set up correctly.

func checkIsActive(partnerId string) bool {
	isActive := false
	if val, ok := config.Configs[partnerId]; ok {
		isActive = val.PartnerSettings.IsActive
	} else {
		slog.Error("Partner not found in config", slog.String("partnerId", partnerId))
		return false
	}

	if !isActive {
		slog.Warn("Partner not active, skipping", slog.String("partnerId", partnerId))
		return false
	}
	return true
}

@github-actions GitHub Actions
Copy link

github-actions bot commented Jan 2, 2025

PR Code Suggestions ✨

Explore these optional code suggestions:

CategorySuggestion                                                                                                                                    Score
Possible issue
Add nil check for message.MessageText to prevent potential runtime panics

Ensure that the checkIsActive function handles potential panics or errors when
dereferencing message.MessageText which could be nil.

src/orchestration/polling_message_handler.go [17]

+if message.MessageText == nil {
+    return errors.New("message text is nil")
+}
 partnerId := *message.MessageText
 ...
Suggestion importance[1-10]: 8

Why: This suggestion correctly identifies a potential runtime panic due to dereferencing a possible nil pointer. Adding a nil check enhances the robustness and reliability of the code.

8
Add checks to handle nil values in configuration retrieval to prevent panics

Handle the case where config.Configs[partnerId] might not exist to avoid potential
runtime panics from nil dereferencing.

src/orchestration/polling_message_handler.go [50-56]

-if val, ok := config.Configs[partnerId]; ok {
-    isActive = val.PartnerSettings.IsActive
-} else {
+val, ok := config.Configs[partnerId]
+if !ok {
     slog.Error("Partner not found in config", slog.String("partnerId", partnerId))
     return false
 }
+if val == nil || val.PartnerSettings == nil {
+    slog.Error("Invalid config for partner", slog.String("partnerId", partnerId))
+    return false
+}
+isActive = val.PartnerSettings.IsActive
Suggestion importance[1-10]: 8

Why: This suggestion is highly relevant as it addresses the risk of runtime panics due to nil dereferencing in configuration retrieval, enhancing the code's safety and stability.

8
Security
Validate partnerId to ensure it meets expected format and content before usage

Validate partnerId for correctness before using it to construct key names to prevent
potential security risks or errors in key retrieval.

src/sftp/handler.go [36]

+if !isValidPartnerId(partnerId) {
+    return nil, errors.New("invalid partner ID")
+}
 hostPublicKeyName := partnerId + "-sftp-host-public-key-" + utils.EnvironmentName()
 ...
Suggestion importance[1-10]: 7

Why: Validating partnerId before using it in key construction is crucial for security and correctness, preventing misuse and potential errors in key retrieval.

7
General
Improve error handling by wrapping errors for better traceability and management

Ensure error handling is in place for all secret retrieval operations to manage
failures gracefully.

src/sftp/handler.go [38-39]

 hostPublicKey, err := credentialGetter.GetSecret(hostPublicKeyName)
 if err != nil {
     slog.Error("Unable to get host public key", slog.String("KeyName", hostPublicKeyName), slog.Any(utils.ErrorKey, err))
-    return nil, err
+    return nil, fmt.Errorf("failed to retrieve host public key: %w", err)
 }
Suggestion importance[1-10]: 6

Why: Wrapping errors provides better error traceability and management, which is a good practice, especially when dealing with external resources like secrets retrieval.

6

@jcrichlake jcrichlake marked this pull request as ready for review January 2, 2025 19:35
saquino0827
saquino0827 reviewed Jan 2, 2025
View reviewed changes
saquino0827
saquino0827 reviewed Jan 2, 2025
View reviewed changes
@sonarqubecloud SonarQubeCloud
Copy link

sonarqubecloud bot commented Jan 2, 2025

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
25.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@saquino0827
Copy link
Contributor

Nice work, overall it looks good but I made some minor comments

@jcrichlake jcrichlake merged commit 783ee5e into main Jan 3, 2025
15 checks passed
@jcrichlake jcrichlake deleted the use-queue-message-to-retrieve-config branch January 3, 2025 20:30
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@saquino0827 saquino0827

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@jcrichlake @saquino0827 @somesylvie