Sha256: 58045d7f7a93fe86789e6eaf7d10f40d41019ed5d1ff62ff3bcb7b65369e5107

Contents?: true

Size: 1.36 KB

Versions: 25

Compression:

Stored size: 1.36 KB

Contents

module DiscoApp
  class WebhooksController < ActionController::Base

    before_action :verify_webhook

    def process_webhook
      # Get the topic and domain for this webhook.
      topic = request.headers['HTTP_X_SHOPIFY_TOPIC']
      shopify_domain = request.headers['HTTP_X_SHOPIFY_SHOP_DOMAIN']

      # Ensure a domain was provided in the headers.
      unless shopify_domain
        head :bad_request
      end

      # Try to find a matching background job task for the given topic using class name.
      job_class = DiscoApp::WebhookService.find_job_class(topic)

      # Return bad request if we couldn't match a job class.
      unless job_class.present?
        head :bad_request
      end

      # Decode the body data and enqueue the appropriate job.
      data = ActiveSupport::JSON::decode(request.body.read).with_indifferent_access
      job_class.perform_later(shopify_domain, data)

      render nothing: true
    end

    private

      def verify_webhook
        unless webhook_is_valid?
          head :unauthorized
        end
        request.body.rewind
      end

      def webhook_is_valid?
        return true if Rails.env.development? and DiscoApp.configuration.skip_webhook_verification?
        DiscoApp::WebhookService.is_valid_hmac?(request.body.read.to_s, ShopifyApp.configuration.secret, request.headers['HTTP_X_SHOPIFY_HMAC_SHA256'])
      end

  end
end

Version data entries

25 entries across 25 versions & 1 rubygems

Version Path
disco_app-0.13.6 app/controllers/disco_app/webhooks_controller.rb
disco_app-0.13.7 app/controllers/disco_app/webhooks_controller.rb
disco_app-0.13.8 app/controllers/disco_app/webhooks_controller.rb
disco_app-0.12.7.pre.puma.pre.3 app/controllers/disco_app/webhooks_controller.rb
disco_app-0.13.6.pre.puma.pre.3 app/controllers/disco_app/webhooks_controller.rb