feat: add gitlab support

Author: SergioRibera

crates/origin/src/gitlab.rs

@@ -0,0 +1,50 @@
+use super::{Error, WebhookOrigin};
+use axum::http::HeaderMap;
+
+pub struct GitLabValidator;
+
+impl WebhookOrigin for GitLabValidator {
+    fn validate_headers(&self, headers: &HeaderMap) -> Result<(), Error> {
+        const REQUIRED_HEADERS: [&str; 3] =
+            ["X-Gitlab-Event", "X-Gitlab-Webhook-UUID", "X-Gitlab-UUID"];
+
+        for header in REQUIRED_HEADERS {
+            if !headers.contains_key(header) {
+                return Err(Error::MissingHeader(header));
+            }
+        }
+
+        let user_agent = headers
+            .get("User-Agent")
+            .and_then(|v| v.to_str().ok())
+            .ok_or(Error::MissingHeader("User-Agent"))?;
+
+        if !user_agent.starts_with("Gitlab/") {
+            return Err(Error::InvalidUserAgent);
+        }
+
+        Ok(())
+    }
+
+    fn extract_event_type(&self, headers: &HeaderMap) -> Result<String, Error> {
+        headers
+            .get("X-Gitlab-Event")
+            .and_then(|v| v.to_str().ok())
+            .map(|s| s.to_string())
+            .ok_or(Error::MissingHeader("X-Gitlab-Event"))
+    }
+
+    fn validate_signature(
+        &self,
+        headers: &HeaderMap,
+        _secret: &str,
+        _body: &[u8],
+    ) -> Result<(), Error> {
+        _ = headers
+            .get("X-Gitlab-Instance")
+            .and_then(|v| v.to_str().ok())
+            .ok_or(Error::MissingHeader("X-Gitlab-Event-UUID"))?;
+
+        Ok(())
+    }
+}

crates/origin/src/lib.rs

@@ -1,16 +1,18 @@
-mod errors;
-mod github;
-
 use axum::http::HeaderMap;
 use serde::Deserialize;
 
 pub use crate::errors::Error;
 
+mod errors;
+mod github;
+mod gitlab;
+
 #[derive(Clone, Copy, Debug, Default, Deserialize)]
 #[serde(rename_all = "lowercase")]
 pub enum Origin {
     #[default]
     GitHub,
+    GitLab,
 }
 
 pub trait WebhookOrigin {
@@ -28,12 +30,14 @@ impl WebhookOrigin for Origin {
     fn validate_headers(&self, headers: &HeaderMap) -> Result<(), Error> {
         match self {
             Origin::GitHub => github::GitHubValidator.validate_headers(headers),
+            Origin::GitLab => gitlab::GitLabValidator.validate_headers(headers),
         }
     }
 
     fn extract_event_type(&self, headers: &HeaderMap) -> Result<String, Error> {
         match self {
             Origin::GitHub => github::GitHubValidator.extract_event_type(headers),
+            Origin::GitLab => gitlab::GitLabValidator.extract_event_type(headers),
         }
     }
 
@@ -45,6 +49,7 @@ impl WebhookOrigin for Origin {
     ) -> Result<(), Error> {
         match self {
             Origin::GitHub => github::GitHubValidator.validate_signature(headers, secret, body),
+            Origin::GitLab => gitlab::GitLabValidator.validate_signature(headers, secret, body),
         }
     }
 }

src/validator.rs

@@ -56,6 +56,8 @@ pub async fn validate_signature_middleware(
 fn determine_origin(headers: &HeaderMap) -> Result<Origin, OriginError> {
     if headers.contains_key("X-GitHub-Event") {
         Ok(Origin::GitHub)
+    } else if headers.contains_key("X-Gitlab-Event") {
+        Ok(Origin::GitLab)
     } else {
         Err(OriginError::MissingHeader("X-*-Event"))
     }