Jason Woltje
e23c09f1f2
Implement FastAPI webhook receiver for Gitea issue assignment events with HMAC SHA256 signature verification and event routing. Implementation details: - FastAPI application with /webhook/gitea POST endpoint - HMAC SHA256 signature verification in security.py - Event routing for assigned, unassigned, closed actions - Comprehensive logging for all webhook events - Health check endpoint at /health - Docker containerization with health checks - 91% test coverage (exceeds 85% requirement) TDD workflow followed: - Wrote 16 tests first (RED phase) - Implemented features to pass tests (GREEN phase) - All tests passing with 91% coverage - Type checking with mypy: success - Linting with ruff: success Files created: - apps/coordinator/src/main.py - FastAPI application - apps/coordinator/src/webhook.py - Webhook handlers - apps/coordinator/src/security.py - HMAC verification - apps/coordinator/src/config.py - Configuration management - apps/coordinator/tests/ - Comprehensive test suite - apps/coordinator/Dockerfile - Production container - apps/coordinator/pyproject.toml - Python project config Configuration: - Updated .env.example with GITEA_WEBHOOK_SECRET - Updated docker-compose.yml with coordinator service Testing: - 16 unit and integration tests - Security tests for signature verification - Event handler tests for all supported actions - Health check endpoint tests - All tests passing with 91% coverage This unblocks issue #158 (issue parser). Fixes #157 Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
1.7 KiB
1.7 KiB
Issue #157: Set up webhook receiver endpoint
Objective
Implement FastAPI webhook receiver that handles Gitea issue assignment events with HMAC SHA256 signature verification.
Approach
- Create new Python service:
apps/coordinator/(FastAPI app) - Structure:
src/main.py- FastAPI application entry pointsrc/webhook.py- Webhook endpoint handlerssrc/security.py- HMAC signature verificationsrc/config.py- Configuration managementtests/- Unit and integration tests
- Follow TDD: Write tests first, then implementation
- Add Docker support with health checks
- Update docker-compose for coordinator service
Progress
- Create directory structure
- Write tests for HMAC signature verification (RED)
- Implement signature verification (GREEN)
- Write tests for webhook endpoint (RED)
- Implement webhook endpoint (GREEN)
- Write tests for event routing (RED)
- Implement event routing (GREEN)
- Add health check endpoint
- Create Dockerfile
- Update docker-compose.yml
- Run quality gates (build, lint, test, coverage)
- Update .env.example with webhook secret
- Commit implementation
- Update issue status
Testing
- Unit tests for
security.verify_signature() - Unit tests for each event handler (assigned, unassigned, closed)
- Integration test with mock Gitea webhook payload
- Security test: Invalid signature returns 401
- Health check test
Notes
- Python service alongside NestJS apps (polyglot monorepo)
- Use pytest for testing framework
- Use pydantic for request validation
- Minimum 85% coverage required
- Need to add webhook secret to .env.example
Token Tracking
- Estimated: 52,000 tokens
- Actual: TBD