Github webhook implementation

Author: billsedison

.env.sample

@@ -1,6 +1,9 @@
 POSTGRES_SCHEMA="public"
 DATABASE_URL="postgresql://johndoe:randompassword@localhost:5432/mydb?schema=${POSTGRES_SCHEMA}"
 
+# GitHub Webhook Configuration
+GITHUB_WEBHOOK_SECRET="your_webhook_secret_here"
+
 # API configs
 BUS_API_URL="https://api.topcoder-dev.com/v5/bus/events"
 CHALLENGE_API_URL="https://api.topcoder-dev.com/v5/challenges/"

prisma/migrations/20250802073602_github_webhook/migration.sql

@@ -0,0 +1,32 @@
+-- DropForeignKey
+ALTER TABLE "reviewApplication" DROP CONSTRAINT "reviewApplication_opportunityId_fkey";
+
+-- AlterTable
+ALTER TABLE "reviewApplication" ALTER COLUMN "opportunityId" SET DATA TYPE TEXT,
+ALTER COLUMN "updatedAt" DROP DEFAULT;
+
+-- AlterTable
+ALTER TABLE "reviewOpportunity" ALTER COLUMN "updatedAt" DROP DEFAULT;
+
+-- CreateTable
+CREATE TABLE "gitWebhookLog" (
+    "id" VARCHAR(14) NOT NULL DEFAULT nanoid(),
+    "eventId" TEXT NOT NULL,
+    "event" TEXT NOT NULL,
+    "eventPayload" JSONB NOT NULL,
+    "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
+
+    CONSTRAINT "gitWebhookLog_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateIndex
+CREATE INDEX "gitWebhookLog_eventId_idx" ON "gitWebhookLog"("eventId");
+
+-- CreateIndex
+CREATE INDEX "gitWebhookLog_event_idx" ON "gitWebhookLog"("event");
+
+-- CreateIndex
+CREATE INDEX "gitWebhookLog_createdAt_idx" ON "gitWebhookLog"("createdAt");
+
+-- AddForeignKey
+ALTER TABLE "reviewApplication" ADD CONSTRAINT "reviewApplication_opportunityId_fkey" FOREIGN KEY ("opportunityId") REFERENCES "reviewOpportunity"("id") ON DELETE CASCADE ON UPDATE CASCADE;

prisma/schema.prisma

@@ -381,3 +381,15 @@ model reviewApplication {
   @@index([userId])
   @@index([opportunityId])
 }
+
+model gitWebhookLog {
+  id           String   @id @default(dbgenerated("nanoid()")) @db.VarChar(14)
+  eventId      String   // X-GitHub-Delivery header
+  event        String   // X-GitHub-Event header
+  eventPayload Json     // Complete webhook payload
+  createdAt    DateTime @default(now())
+
+  @@index([eventId])
+  @@index([event])
+  @@index([createdAt])
+}

src/api/api.module.ts

@@ -13,6 +13,9 @@ import { ReviewOpportunityService } from './review-opportunity/reviewOpportunity
 import { ReviewApplicationService } from './review-application/reviewApplication.service';
 import { ReviewHistoryController } from './review-history/reviewHistory.controller';
 import { ChallengeApiService } from 'src/shared/modules/global/challenge.service';
+import { WebhookController } from './webhook/webhook.controller';
+import { WebhookService } from './webhook/webhook.service';
+import { GitHubSignatureGuard } from '../shared/guards/github-signature.guard';
 
 @Module({
   imports: [HttpModule, GlobalProvidersModule],
@@ -26,11 +29,14 @@ import { ChallengeApiService } from 'src/shared/modules/global/challenge.service
     ReviewOpportunityController,
     ReviewApplicationController,
     ReviewHistoryController,
+    WebhookController,
   ],
   providers: [
     ReviewOpportunityService,
     ReviewApplicationService,
     ChallengeApiService,
+    WebhookService,
+    GitHubSignatureGuard,
   ],
 })
 export class ApiModule {}

src/api/webhook/interfaces/github-webhook.interface.ts

@@ -0,0 +1,24 @@
+export interface GitHubWebhookHeaders {
+  'x-github-delivery': string;
+  'x-github-event': string;
+  'x-hub-signature-256': string;
+  'content-type': string;
+}
+
+export interface WebhookRequest {
+  headers: GitHubWebhookHeaders;
+  body: any; // GitHub webhook payload (varies by event type)
+}
+
+export interface WebhookResponse {
+  success: boolean;
+  message?: string;
+}
+
+export interface ErrorResponse {
+  statusCode: number;
+  message: string;
+  error: string;
+  timestamp: string;
+  path: string;
+}

src/api/webhook/webhook.controller.ts

@@ -0,0 +1,109 @@
+import {
+  Controller,
+  Post,
+  Body,
+  Headers,
+  HttpCode,
+  HttpStatus,
+  UseGuards,
+} from '@nestjs/common';
+import { ApiTags, ApiOperation, ApiResponse, ApiHeader } from '@nestjs/swagger';
+import { WebhookService } from './webhook.service';
+import {
+  WebhookEventDto,
+  WebhookResponseDto,
+} from '../../dto/webhook-event.dto';
+import { GitHubSignatureGuard } from '../../shared/guards/github-signature.guard';
+import { LoggerService } from '../../shared/modules/global/logger.service';
+
+@ApiTags('Webhooks')
+@Controller('webhooks')
+export class WebhookController {
+  private readonly logger = LoggerService.forRoot('WebhookController');
+
+  constructor(private readonly webhookService: WebhookService) {}
+
+  @Post('git')
+  @HttpCode(HttpStatus.OK)
+  @UseGuards(GitHubSignatureGuard)
+  @ApiOperation({
+    summary: 'GitHub Webhook Endpoint',
+    description:
+      'Receives and processes GitHub webhook events with signature verification',
+  })
+  @ApiHeader({
+    name: 'X-GitHub-Delivery',
+    description: 'GitHub delivery UUID',
+    required: true,
+  })
+  @ApiHeader({
+    name: 'X-GitHub-Event',
+    description: 'GitHub event type',
+    required: true,
+  })
+  @ApiHeader({
+    name: 'X-Hub-Signature-256',
+    description: 'HMAC-SHA256 signature for request verification',
+    required: true,
+  })
+  @ApiResponse({
+    status: 200,
+    description: 'Webhook processed successfully',
+    type: WebhookResponseDto,
+  })
+  @ApiResponse({
+    status: 400,
+    description: 'Bad Request - Missing required headers or invalid payload',
+  })
+  @ApiResponse({
+    status: 403,
+    description: 'Forbidden - Invalid signature',
+  })
+  @ApiResponse({
+    status: 500,
+    description: 'Internal Server Error - Processing failed',
+  })
+  async handleGitHubWebhook(
+    @Body() payload: any,
+    @Headers('x-github-delivery') delivery: string,
+    @Headers('x-github-event') event: string,
+  ): Promise<WebhookResponseDto> {
+    try {
+      this.logger.log({
+        message: 'Received GitHub webhook',
+        delivery,
+        event,
+        timestamp: new Date().toISOString(),
+      });
+
+      // Create webhook event DTO
+      const webhookEvent: WebhookEventDto = {
+        eventId: delivery,
+        event: event,
+        eventPayload: payload,
+      };
+
+      // Process the webhook
+      const result = await this.webhookService.processWebhook(webhookEvent);
+
+      this.logger.log({
+        message: 'Successfully processed GitHub webhook',
+        delivery,
+        event,
+        success: result.success,
+      });
+
+      return result;
+    } catch (error) {
+      this.logger.error({
+        message: 'Failed to process GitHub webhook',
+        delivery,
+        event,
+        error: error.message,
+        stack: error.stack,
+      });
+
+      throw error;
+    }
+  }
+}

src/api/webhook/webhook.service.ts

@@ -0,0 +1,174 @@
+import { Injectable } from '@nestjs/common';
+import { PrismaService } from '../../shared/modules/global/prisma.service';
+import { LoggerService } from '../../shared/modules/global/logger.service';
+import { PrismaErrorService } from '../../shared/modules/global/prisma-error.service';
+import {
+  WebhookEventDto,
+  WebhookResponseDto,
+} from '../../dto/webhook-event.dto';
+
+@Injectable()
+export class WebhookService {
+  private readonly logger = LoggerService.forRoot('WebhookService');
+
+  constructor(
+    private readonly prisma: PrismaService,
+    private readonly prismaErrorService: PrismaErrorService,
+  ) {}
+
+  async processWebhook(
+    webhookEvent: WebhookEventDto,
+  ): Promise<WebhookResponseDto> {
+    try {
+      this.logger.log({
+        message: 'Processing GitHub webhook event',
+        eventId: webhookEvent.eventId,
+        event: webhookEvent.event,
+        timestamp: new Date().toISOString(),
+      });
+
+      // Store webhook event in database
+      const storedEvent = await this.prisma.gitWebhookLog.create({
+        data: {
+          eventId: webhookEvent.eventId,
+          event: webhookEvent.event,
+          eventPayload: webhookEvent.eventPayload,
+        },
+      });
+
+      this.logger.log({
+        message: 'Successfully stored webhook event',
+        eventId: webhookEvent.eventId,
+        event: webhookEvent.event,
+        storedId: storedEvent.id,
+        createdAt: storedEvent.createdAt,
+      });
+
+      // Future extensibility: Add event-specific handlers here
+      this.handleEventSpecificProcessing(
+        webhookEvent.event,
+        webhookEvent.eventPayload,
+      );
+
+      return {
+        success: true,
+        message: 'Webhook processed successfully',
+      };
+    } catch (error) {
+      this.logger.error({
+        message: 'Failed to process webhook event',
+        eventId: webhookEvent.eventId,
+        event: webhookEvent.event,
+        error: error.message,
+        stack: error.stack,
+      });
+
+      // Handle Prisma errors with the existing error service
+      if (error.code) {
+        this.prismaErrorService.handleError(error);
+      }
+
+      throw error;
+    }
+  }
+
+  /**
+   * Placeholder for future event-specific processing logic
+   * This method can be extended to handle different GitHub events differently
+   */
+  private handleEventSpecificProcessing(event: string, payload: any): void {
+    this.logger.log({
+      message: 'Event-specific processing placeholder',
+      event,
+      payloadSize: JSON.stringify(payload).length,
+    });
+
+    // Future implementation examples:
+    // switch (event) {
+    //   case 'push':
+    //     await this.handlePushEvent(payload);
+    //     break;
+    //   case 'pull_request':
+    //     await this.handlePullRequestEvent(payload);
+    //     break;
+    //   case 'issues':
+    //     await this.handleIssuesEvent(payload);
+    //     break;
+    //   default:
+    //     this.logger.log(`No specific handler for event type: ${event}`);
+    // }
+  }
+
+  /**
+   * Get webhook logs with pagination and filtering
+   * This method provides basic querying capabilities for webhook events
+   */
+  async getWebhookLogs(options: {
+    eventId?: string;
+    event?: string;
+    limit?: number;
+    offset?: number;
+    startDate?: Date;
+    endDate?: Date;
+  }) {
+    try {
+      const {
+        eventId,
+        event,
+        limit = 50,
+        offset = 0,
+        startDate,
+        endDate,
+      } = options;
+
+      const where: any = {};
+
+      if (eventId) {
+        where.eventId = eventId;
+      }
+
+      if (event) {
+        where.event = event;
+      }
+
+      if (startDate || endDate) {
+        where.createdAt = {};
+        if (startDate) {
+          where.createdAt.gte = startDate;
+        }
+        if (endDate) {
+          where.createdAt.lte = endDate;
+        }
+      }
+
+      const [logs, total] = await this.prisma.$transaction([
+        this.prisma.gitWebhookLog.findMany({
+          where,
+          orderBy: { createdAt: 'desc' },
+          take: limit,
+          skip: offset,
+        }),
+        this.prisma.gitWebhookLog.count({ where }),
+      ]);
+
+      return {
+        logs,
+        total,
+        limit,
+        offset,
+      };
+    } catch (error) {
+      this.logger.error({
+        message: 'Failed to retrieve webhook logs',
+        error: error.message,
+        options,
+      });
+
+      if (error.code) {
+        this.prismaErrorService.handleError(error);
+      }
+
+      throw error;
+    }
+  }
+}