mattermost/server/public/model/command.go

// Copyright (c) 2015-present Mattermost, Inc. All Rights Reserved.
// See LICENSE.txt for license information.

package model

import (
	"net/http"
	"strings"
)

const (
	CommandMethodPost = "P"
	CommandMethodGet  = "G"
	MinTriggerLength  = 1
	MaxTriggerLength  = 128
)

type Command struct {
	Id               string `json:"id"`
	Token            string `json:"token"`
	CreateAt         int64  `json:"create_at"`
	UpdateAt         int64  `json:"update_at"`
	DeleteAt         int64  `json:"delete_at"`
	CreatorId        string `json:"creator_id"`
	TeamId           string `json:"team_id"`
	Trigger          string `json:"trigger"`
	Method           string `json:"method"`
	Username         string `json:"username"`
	IconURL          string `json:"icon_url"`
	AutoComplete     bool   `json:"auto_complete"`
	AutoCompleteDesc string `json:"auto_complete_desc"`
	AutoCompleteHint string `json:"auto_complete_hint"`
	DisplayName      string `json:"display_name"`
	Description      string `json:"description"`
	URL              string `json:"url"`
	// PluginId records the id of the plugin that created this Command. If it is blank, the Command
	// was not created by a plugin.
	PluginId         string            `json:"plugin_id"`
	AutocompleteData *AutocompleteData `db:"-" json:"autocomplete_data,omitempty"`
	// AutocompleteIconData is a base64 encoded svg
	AutocompleteIconData string `db:"-" json:"autocomplete_icon_data,omitempty"`
}

func (o *Command) Auditable() map[string]any {
	return map[string]any{
		"id":                 o.Id,
		"create_at":          o.CreateAt,
		"update_at":          o.UpdateAt,
		"delete_at":          o.DeleteAt,
		"creator_id":         o.CreatorId,
		"team_id":            o.TeamId,
		"trigger":            o.Trigger,
		"username":           o.Username,
		"icon_url":           o.IconURL,
		"auto_complete":      o.AutoComplete,
		"auto_complete_desc": o.AutoCompleteDesc,
		"auto_complete_hint": o.AutoCompleteHint,
		"display_name":       o.DisplayName,
		"description":        o.Description,
		"url":                o.URL,
	}
}

func (o *Command) IsValid() *AppError {
	if !IsValidId(o.Id) {
		return NewAppError("Command.IsValid", "model.command.is_valid.id.app_error", nil, "", http.StatusBadRequest)
	}

	if len(o.Token) != 26 {
		return NewAppError("Command.IsValid", "model.command.is_valid.token.app_error", nil, "", http.StatusBadRequest)
	}

	if o.CreateAt == 0 {
		return NewAppError("Command.IsValid", "model.command.is_valid.create_at.app_error", nil, "", http.StatusBadRequest)
	}

	if o.UpdateAt == 0 {
		return NewAppError("Command.IsValid", "model.command.is_valid.update_at.app_error", nil, "", http.StatusBadRequest)
	}

	// If the CreatorId is blank, this should be a command created by a plugin.
	if o.CreatorId == "" && !IsValidPluginId(o.PluginId) {
		return NewAppError("Command.IsValid", "model.command.is_valid.plugin_id.app_error", nil, "", http.StatusBadRequest)
	}

	// If the PluginId is blank, this should be a command associated with a userId.
	if o.PluginId == "" && !IsValidId(o.CreatorId) {
		return NewAppError("Command.IsValid", "model.command.is_valid.user_id.app_error", nil, "", http.StatusBadRequest)
	}

	if o.CreatorId != "" && o.PluginId != "" {
		return NewAppError("Command.IsValid", "model.command.is_valid.plugin_id.app_error", nil, "command cannot have both a CreatorId and a PluginId", http.StatusBadRequest)
	}

	if !IsValidId(o.TeamId) {
		return NewAppError("Command.IsValid", "model.command.is_valid.team_id.app_error", nil, "", http.StatusBadRequest)
	}

	if len(o.Trigger) < MinTriggerLength || len(o.Trigger) > MaxTriggerLength || strings.Index(o.Trigger, "/") == 0 || strings.Contains(o.Trigger, " ") {
		return NewAppError("Command.IsValid", "model.command.is_valid.trigger.app_error", nil, "", http.StatusBadRequest)
	}

	if o.URL == "" || len(o.URL) > 1024 {
		return NewAppError("Command.IsValid", "model.command.is_valid.url.app_error", nil, "", http.StatusBadRequest)
	}

	if !IsValidHTTPURL(o.URL) {
		return NewAppError("Command.IsValid", "model.command.is_valid.url_http.app_error", nil, "", http.StatusBadRequest)
	}

	if !(o.Method == CommandMethodGet || o.Method == CommandMethodPost) {
		return NewAppError("Command.IsValid", "model.command.is_valid.method.app_error", nil, "", http.StatusBadRequest)
	}

	if len(o.DisplayName) > 64 {
		return NewAppError("Command.IsValid", "model.command.is_valid.display_name.app_error", nil, "", http.StatusBadRequest)
	}

	if len(o.Description) > 128 {
		return NewAppError("Command.IsValid", "model.command.is_valid.description.app_error", nil, "", http.StatusBadRequest)
	}

	if o.AutocompleteData != nil {
		if err := o.AutocompleteData.IsValid(); err != nil {
			return NewAppError("Command.IsValid", "model.command.is_valid.autocomplete_data.app_error", nil, "", http.StatusBadRequest).Wrap(err)
		}
	}

	return nil
}

func (o *Command) PreSave() {
	if o.Id == "" {
		o.Id = NewId()
	}

	if o.Token == "" {
		o.Token = NewId()
	}

	o.CreateAt = GetMillis()
	o.UpdateAt = o.CreateAt
}

func (o *Command) PreUpdate() {
	o.UpdateAt = GetMillis()
}

func (o *Command) Sanitize() {
	o.Token = ""
	o.CreatorId = ""
	o.Method = ""
	o.URL = ""
	o.Username = ""
	o.IconURL = ""
}
Consistent license message for all the go files (#13235) * Consistent license message for all the go files * Fixing the last set of unconsistencies with the license headers * Addressing PR review comments * Fixing busy.go and busy_test.go license header 2019-11-29 06:59:40 -05:00			`// Copyright (c) 2015-present Mattermost, Inc. All Rights Reserved.`
			`// See LICENSE.txt for license information.`
first commit 2015-06-15 03:53:32 -04:00
			`package model`

			`import (`
Model: NewLocAppError -> NewAppError (#7450) 2017-09-15 08:32:11 -04:00			`"net/http"`
Added validation for command triggers (#3068) 2016-05-20 14:47:10 -04:00			`"strings"`
first commit 2015-06-15 03:53:32 -04:00			`)`

			`const (`
[MM-16751] golint model (#17896) 2021-07-12 14:05:36 -04:00			`CommandMethodPost = "P"`
			`CommandMethodGet = "G"`
			`MinTriggerLength = 1`
			`MaxTriggerLength = 128`
first commit 2015-06-15 03:53:32 -04:00			`)`

			`type Command struct {`
MM-26057 - Add CreateCommand plugin API (#14916) Automatic Merge 2020-07-31 11:40:15 -04:00			Id string `json:"id"`
			Token string `json:"token"`
			CreateAt int64 `json:"create_at"`
			UpdateAt int64 `json:"update_at"`
			DeleteAt int64 `json:"delete_at"`
			CreatorId string `json:"creator_id"`
			TeamId string `json:"team_id"`
			Trigger string `json:"trigger"`
			Method string `json:"method"`
			Username string `json:"username"`
			IconURL string `json:"icon_url"`
			AutoComplete bool `json:"auto_complete"`
			AutoCompleteDesc string `json:"auto_complete_desc"`
			AutoCompleteHint string `json:"auto_complete_hint"`
			DisplayName string `json:"display_name"`
			Description string `json:"description"`
			URL string `json:"url"`
			`// PluginId records the id of the plugin that created this Command. If it is blank, the Command`
			`// was not created by a plugin.`
			PluginId string `json:"plugin_id"`
[MM-20684] Slash Command Autocomplete (#14557) * [MM-20684] Initial implementation of the Command Autocomplete (#13602) * Implement Autocomplete Data * Change CommandName to Trigger * Fix Autocomplete test * Make stylistic changes * Rename a bunch of fields and methods * Fix variable names, safer type assertions * [MM-20684] plugin autocomplete implementation (#14259) * Add an endpoint for command autocomplete suggestions * Add full Suggestion to the AutocompleteSugestion struct * Add Dynamic Argument support * Tidy up things * Fix missed test case * Add support of the named arguments * Update autocomplete API Fix review issues Implement dynamic args as a local request * Fix ineffassign * Add support of the uppercase letters in arguments * Add support of the optional arguments * Remove ineffectual assignment * Add support for icons (#14489) * Address couple of nits * Add comment to IconData * Add types to all consts Co-authored-by: mattermod <mattermod@users.noreply.github.com> 2020-05-21 04:24:56 -04:00			AutocompleteData *AutocompleteData `db:"-" json:"autocomplete_data,omitempty"`
			`// AutocompleteIconData is a base64 encoded svg`
			AutocompleteIconData string `db:"-" json:"autocomplete_icon_data,omitempty"`
first commit 2015-06-15 03:53:32 -04:00			`}`

Enforce use of any instead of interface{} (#30588) 2025-03-31 04:44:34 -04:00			`func (o *Command) Auditable() map[string]any {`
			`return map[string]any{`
Audit logging -- convert audit logs to use the new schema (#20526) * Audit logging - new schema added, old schema removed. * fix linter error by running goimports * Address review comments * Address review comments * Example usage of new audit logging API for the updateUserAuth call * fixed unit test on auditing updating user record * Changed the `TestUpdateConfigDiffInAuditRecord` testcase---it failed, because this PR changes how the `meta` field is serialized into the audit log records. * fix linter error * use string constants for record keys * new audit api calls for api4/bot * `Auditable` interface implementations for model classes * New audit calls for channel api * New audit calls for channel_local * renamed receivers for required style reasons * New audit calls for api4/command * renamed receiver * New audit calls for api4/command_local * renamed receiver * fix unit test to reflect changes in the Auditable implementation of the user class * new audit calls for compliance * new audit calls for configs * remove auditRec.addMeta from updateConfig and patchConfig * new audit calls for config_local * new audit calls * new audit calls for ldap, license apis * new audit calls * new audit calls * new audit calls * new audit calls * new audit calls * new audit calls * new audit calls * new audit calls * fix linter error * fixed linter error * fixed "user update" test * Don't include all of config when audit logging config changes. Also fix unit test on TestUpdateConfigDiffInAuditRecord * address review comments * Added Auditable() method for UserPatch * Fix duplicative method declaration from merge * Fix styling and API changes issues introduced with merge * Fix broken test Co-authored-by: Daniel Schalla <daniel@schalla.me> 2022-07-14 07:52:46 -04:00			`"id": o.Id,`
			`"create_at": o.CreateAt,`
			`"update_at": o.UpdateAt,`
			`"delete_at": o.DeleteAt,`
			`"creator_id": o.CreatorId,`
			`"team_id": o.TeamId,`
			`"trigger": o.Trigger,`
			`"username": o.Username,`
			`"icon_url": o.IconURL,`
			`"auto_complete": o.AutoComplete,`
			`"auto_complete_desc": o.AutoCompleteDesc,`
			`"auto_complete_hint": o.AutoCompleteHint,`
			`"display_name": o.DisplayName,`
			`"description": o.Description,`
			`"url": o.URL,`
			`}`
			`}`

PLT-1429 adding sql storage for slash commands 2016-01-06 22:09:05 -05:00			`func (o Command) IsValid() AppError {`
MM_22682_Centralize_ID_Validation (#14237) Co-authored-by: mattermod <mattermod@users.noreply.github.com> 2020-05-07 13:27:35 -04:00			`if !IsValidId(o.Id) {`
Model: NewLocAppError -> NewAppError (#7450) 2017-09-15 08:32:11 -04:00			`return NewAppError("Command.IsValid", "model.command.is_valid.id.app_error", nil, "", http.StatusBadRequest)`
PLT-1429 adding sql storage for slash commands 2016-01-06 22:09:05 -05:00			`}`

			`if len(o.Token) != 26 {`
Model: NewLocAppError -> NewAppError (#7450) 2017-09-15 08:32:11 -04:00			`return NewAppError("Command.IsValid", "model.command.is_valid.token.app_error", nil, "", http.StatusBadRequest)`
PLT-1429 adding sql storage for slash commands 2016-01-06 22:09:05 -05:00			`}`

			`if o.CreateAt == 0 {`
Model: NewLocAppError -> NewAppError (#7450) 2017-09-15 08:32:11 -04:00			`return NewAppError("Command.IsValid", "model.command.is_valid.create_at.app_error", nil, "", http.StatusBadRequest)`
PLT-1429 adding sql storage for slash commands 2016-01-06 22:09:05 -05:00			`}`

			`if o.UpdateAt == 0 {`
Model: NewLocAppError -> NewAppError (#7450) 2017-09-15 08:32:11 -04:00			`return NewAppError("Command.IsValid", "model.command.is_valid.update_at.app_error", nil, "", http.StatusBadRequest)`
PLT-1429 adding sql storage for slash commands 2016-01-06 22:09:05 -05:00			`}`

MM-26057 - Add CreateCommand plugin API (#14916) Automatic Merge 2020-07-31 11:40:15 -04:00			`// If the CreatorId is blank, this should be a command created by a plugin.`
			`if o.CreatorId == "" && !IsValidPluginId(o.PluginId) {`
			`return NewAppError("Command.IsValid", "model.command.is_valid.plugin_id.app_error", nil, "", http.StatusBadRequest)`
			`}`

			`// If the PluginId is blank, this should be a command associated with a userId.`
			`if o.PluginId == "" && !IsValidId(o.CreatorId) {`
Model: NewLocAppError -> NewAppError (#7450) 2017-09-15 08:32:11 -04:00			`return NewAppError("Command.IsValid", "model.command.is_valid.user_id.app_error", nil, "", http.StatusBadRequest)`
PLT-1429 adding sql storage for slash commands 2016-01-06 22:09:05 -05:00			`}`

MM-26057 - Add CreateCommand plugin API (#14916) Automatic Merge 2020-07-31 11:40:15 -04:00			`if o.CreatorId != "" && o.PluginId != "" {`
			`return NewAppError("Command.IsValid", "model.command.is_valid.plugin_id.app_error", nil, "command cannot have both a CreatorId and a PluginId", http.StatusBadRequest)`
			`}`

MM_22682_Centralize_ID_Validation (#14237) Co-authored-by: mattermod <mattermod@users.noreply.github.com> 2020-05-07 13:27:35 -04:00			`if !IsValidId(o.TeamId) {`
Model: NewLocAppError -> NewAppError (#7450) 2017-09-15 08:32:11 -04:00			`return NewAppError("Command.IsValid", "model.command.is_valid.team_id.app_error", nil, "", http.StatusBadRequest)`
PLT-1429 adding sql storage for slash commands 2016-01-06 22:09:05 -05:00			`}`

[MM-16751] golint model (#17896) 2021-07-12 14:05:36 -04:00			`if len(o.Trigger) < MinTriggerLength \|\| len(o.Trigger) > MaxTriggerLength \|\| strings.Index(o.Trigger, "/") == 0 \|\| strings.Contains(o.Trigger, " ") {`
Model: NewLocAppError -> NewAppError (#7450) 2017-09-15 08:32:11 -04:00			`return NewAppError("Command.IsValid", "model.command.is_valid.trigger.app_error", nil, "", http.StatusBadRequest)`
PLT-1429 adding sql storage for slash commands 2016-01-06 22:09:05 -05:00			`}`

Fix empty string comparison issues in the codebase (#16686) Automatic Merge 2021-01-25 05:15:17 -05:00			`if o.URL == "" \|\| len(o.URL) > 1024 {`
Model: NewLocAppError -> NewAppError (#7450) 2017-09-15 08:32:11 -04:00			`return NewAppError("Command.IsValid", "model.command.is_valid.url.app_error", nil, "", http.StatusBadRequest)`
PLT-1429 adding sql storage for slash commands 2016-01-06 22:09:05 -05:00			`}`

[MM-37772] Idiomatic naming (URL, URI, API) (#18128) * s/Url/URL/g & s/Uri/URI/g * s/Api/API/g 2021-08-16 13:46:44 -04:00			`if !IsValidHTTPURL(o.URL) {`
Model: NewLocAppError -> NewAppError (#7450) 2017-09-15 08:32:11 -04:00			`return NewAppError("Command.IsValid", "model.command.is_valid.url_http.app_error", nil, "", http.StatusBadRequest)`
PLT-1429 adding sql storage for slash commands 2016-01-06 22:09:05 -05:00			`}`

[MM-16751] golint model (#17896) 2021-07-12 14:05:36 -04:00			`if !(o.Method == CommandMethodGet \|\| o.Method == CommandMethodPost) {`
Model: NewLocAppError -> NewAppError (#7450) 2017-09-15 08:32:11 -04:00			`return NewAppError("Command.IsValid", "model.command.is_valid.method.app_error", nil, "", http.StatusBadRequest)`
PLT-1429 adding sql storage for slash commands 2016-01-06 22:09:05 -05:00			`}`

Added DisplayName and Description fields to both types of webhooks and slash commands 2016-03-30 10:56:20 -04:00			`if len(o.DisplayName) > 64 {`
Model: NewLocAppError -> NewAppError (#7450) 2017-09-15 08:32:11 -04:00			`return NewAppError("Command.IsValid", "model.command.is_valid.display_name.app_error", nil, "", http.StatusBadRequest)`
Added DisplayName and Description fields to both types of webhooks and slash commands 2016-03-30 10:56:20 -04:00			`}`

			`if len(o.Description) > 128 {`
Model: NewLocAppError -> NewAppError (#7450) 2017-09-15 08:32:11 -04:00			`return NewAppError("Command.IsValid", "model.command.is_valid.description.app_error", nil, "", http.StatusBadRequest)`
Added DisplayName and Description fields to both types of webhooks and slash commands 2016-03-30 10:56:20 -04:00			`}`

[MM-20684] Slash Command Autocomplete (#14557) * [MM-20684] Initial implementation of the Command Autocomplete (#13602) * Implement Autocomplete Data * Change CommandName to Trigger * Fix Autocomplete test * Make stylistic changes * Rename a bunch of fields and methods * Fix variable names, safer type assertions * [MM-20684] plugin autocomplete implementation (#14259) * Add an endpoint for command autocomplete suggestions * Add full Suggestion to the AutocompleteSugestion struct * Add Dynamic Argument support * Tidy up things * Fix missed test case * Add support of the named arguments * Update autocomplete API Fix review issues Implement dynamic args as a local request * Fix ineffassign * Add support of the uppercase letters in arguments * Add support of the optional arguments * Remove ineffectual assignment * Add support for icons (#14489) * Address couple of nits * Add comment to IconData * Add types to all consts Co-authored-by: mattermod <mattermod@users.noreply.github.com> 2020-05-21 04:24:56 -04:00			`if o.AutocompleteData != nil {`
			`if err := o.AutocompleteData.IsValid(); err != nil {`
MM-45991 Wrap errors (#20785) 2022-08-18 05:01:37 -04:00			`return NewAppError("Command.IsValid", "model.command.is_valid.autocomplete_data.app_error", nil, "", http.StatusBadRequest).Wrap(err)`
[MM-20684] Slash Command Autocomplete (#14557) * [MM-20684] Initial implementation of the Command Autocomplete (#13602) * Implement Autocomplete Data * Change CommandName to Trigger * Fix Autocomplete test * Make stylistic changes * Rename a bunch of fields and methods * Fix variable names, safer type assertions * [MM-20684] plugin autocomplete implementation (#14259) * Add an endpoint for command autocomplete suggestions * Add full Suggestion to the AutocompleteSugestion struct * Add Dynamic Argument support * Tidy up things * Fix missed test case * Add support of the named arguments * Update autocomplete API Fix review issues Implement dynamic args as a local request * Fix ineffassign * Add support of the uppercase letters in arguments * Add support of the optional arguments * Remove ineffectual assignment * Add support for icons (#14489) * Address couple of nits * Add comment to IconData * Add types to all consts Co-authored-by: mattermod <mattermod@users.noreply.github.com> 2020-05-21 04:24:56 -04:00			`}`
			`}`

PLT-1429 adding sql storage for slash commands 2016-01-06 22:09:05 -05:00			`return nil`
			`}`

			`func (o *Command) PreSave() {`
			`if o.Id == "" {`
			`o.Id = NewId()`
			`}`

			`if o.Token == "" {`
			`o.Token = NewId()`
			`}`

			`o.CreateAt = GetMillis()`
			`o.UpdateAt = o.CreateAt`
			`}`

			`func (o *Command) PreUpdate() {`
			`o.UpdateAt = GetMillis()`
			`}`
Adding web service methods 2016-01-08 23:57:38 -05:00
Fixing based on feedback 2016-02-03 15:16:37 -05:00			`func (o *Command) Sanitize() {`
Adding web service methods 2016-01-08 23:57:38 -05:00			`o.Token = ""`
			`o.CreatorId = ""`
			`o.Method = ""`
			`o.URL = ""`
			`o.Username = ""`
			`o.IconURL = ""`
			`}`