skynet-webportal/setup-scripts/blocklist-airtable.py

#!/usr/bin/env python3

import traceback, os, re, asyncio, requests, json, discord
from bot_utils import setup, send_msg
from random import randint
from time import sleep

setup()

AIRTABLE_API_KEY = os.getenv("AIRTABLE_API_KEY")
AIRTABLE_BASE = os.getenv("AIRTABLE_BASE", "app89plJvA9EqTJEc")
AIRTABLE_TABLE = os.getenv("AIRTABLE_TABLE", "Table%201")
AIRTABLE_FIELD = os.getenv("AIRTABLE_FIELD", "Link")

async def run_checks():
    try:
        await block_skylinks_from_airtable()
    except:  # catch all exceptions
        trace = traceback.format_exc()
        await send_msg("```\n{}\n```".format(trace), force_notify=True)


def exec(command):
    return os.popen(command).read().strip()


async def block_skylinks_from_airtable():
    print("Pulling blocked skylinks from Airtable via api integration")
    headers = {"Authorization": "Bearer " + AIRTABLE_API_KEY}
    skylinks = []
    offset = None
    retry = 0
    while len(skylinks) == 0 or offset:
        print("Requesting a batch of records from Airtable with " + (offset if offset else "empty") + " offset" + (" (retry " + str(retry) + ")" if retry else ""))
        query = "&".join(["fields%5B%5D=" + AIRTABLE_FIELD, ("offset=" + offset) if offset else ""])
        response = requests.get(
            "https://api.airtable.com/v0/" + AIRTABLE_BASE + "/" + AIRTABLE_TABLE + "?" + query,
            headers=headers,
        )

        # rate limited - sleep for 2-10 secs and retry (up to 100 times, ~10 minutes)
        # https://support.airtable.com/hc/en-us/articles/203313985-Public-REST-API
        # > 5 requests per second, per base
        if response.status_code == 429:
            if retry < 100:
                retry = retry + 1
                sleep(randint(1,10))
                continue
            else:
                return await send_msg("Airtable: too many retries, aborting!", force_notify=True)
        retry = 0  # reset retry counter

        if response.status_code != 200:
            status_code = str(response.status_code)
            response_text = response.text or "empty response"
            message = "Airtable blocklist integration responded with code " + status_code + ": " + response_text
            return await send_msg(message, force_notify=False)

        data = response.json()

        if len(data["records"]) == 0:
            return print("Airtable returned 0 records - make sure your configuration is correct")

        skylinks = skylinks + [entry["fields"].get(AIRTABLE_FIELD, "") for entry in data["records"]]
        skylinks = [skylink for skylink in skylinks if skylink] # filter empty skylinks, most likely empty rows

        offset = data.get("offset")

    print("Airtable returned total " + str(len(skylinks)) + " skylinks to block")

    skylinks_returned = skylinks
    skylinks = [skylink for skylink in skylinks if re.search("^[a-zA-Z0-9_-]{46}$", skylink)]

    if len(skylinks_returned) != len(skylinks):
        invalid_skylinks = [str(skylink) for skylink in list(set(skylinks_returned) - set(skylinks))]
        message = str(len(invalid_skylinks)) + " of the skylinks returned from Airtable are not valid"
        await send_msg(message, file=("\n".join(invalid_skylinks)))

    apipassword = exec("docker exec sia cat /sia-data/apipassword")
    ipaddress = exec("docker inspect -f '{{range.NetworkSettings.Networks}}{{.IPAddress}}{{end}}' sia")

    print("Sending blocklist request to siad")
    response = requests.post(
        "http://" + ipaddress + ":9980/skynet/blocklist",
        auth=("", apipassword),
        headers={"user-agent": "Sia-Agent"},
        data=json.dumps({"add": skylinks}),
    )

    if response.status_code == 204:
        print("Siad blocklist successfully updated with provided skylink")
    else:
        status_code = str(response.status_code)
        response_text = response.text or "empty response"
        message = "Siad blocklist endpoint responded with code " + status_code + ": " + response_text
        return await send_msg(message, force_notify=False)

    print("Searching nginx cache for blocked files")
    total_cached_files_count = 0
    for i in range(0, len(skylinks), 1000):
        cached_files_command = (
            "find /data/nginx/cache/ -type f | xargs --no-run-if-empty -n1000 grep -Els '^Skynet-Skylink: ("
            + "|".join(skylinks[i:i+1000])
            + ")'"
        )
        cached_files_count = int(exec('docker exec -it nginx bash -c "' + cached_files_command + ' | wc -l"') or 0)
        if cached_files_count:
            total_cached_files_count+= cached_files_count
            removed = int(exec('docker exec -it nginx bash -c "' + cached_files_command + ' | xargs -r rm -v | wc -l"'))
            print(removed)

    if total_cached_files_count == 0:
        return print("No nginx cached files matching blocked skylinks were found")

    message = "Purged " + str(total_cached_files_count) + " blocklisted files from nginx cache"
    return await send_msg(message)


loop = asyncio.get_event_loop()
loop.run_until_complete(run_checks())

# --- BASH EQUIVALENT
# skylinks=$(curl "https://api.airtable.com/v0/${AIRTABLE_BASE}/${AIRTABLE_TABLE}?fields%5B%5D=${AIRTABLE_FIELD}" -H "Authorization: Bearer ${AIRTABLE_KEY}" | python3 -c "import sys, json; print('[\"' + '\",\"'.join([entry['fields']['Link'] for entry in json.load(sys.stdin)['records']]) + '\"]')")
# apipassword=$(docker exec sia cat /sia-data/apipassword)
# ipaddress=$(docker inspect -f '{{range.NetworkSettings.Networks}}{{.IPAddress}}{{end}}' sia)
# curl -A "Sia-Agent" --user "":"${apipassword}" --data "{\"add\" : ${skylinks}}" "${ipaddress}:9980/skynet/blocklist"
airtable blocklist integration 2021-03-01 15:47:06 +00:00			`#!/usr/bin/env python3`

filter invalid skylinks 2021-03-02 12:41:23 +00:00			`import traceback, os, re, asyncio, requests, json, discord`
discord integration 2021-03-01 15:59:38 +00:00			`from bot_utils import setup, send_msg`
airtable retries logic 2021-07-18 06:22:32 +00:00			`from random import randint`
			`from time import sleep`
airtable blocklist integration 2021-03-01 15:47:06 +00:00
use webhook instead of discrod bot to send messages (#979) * initial refactor * do not use before define * forgot to remove client * test notification * add /cc * fix /cc * fix /cc role * fix /cc * test file upload * test file upload * test file upload * default to no mentions * unformat * replace discord with DiscordWebhook * add readme * don't fail on failures in message send 2021-07-16 11:12:58 +00:00			`setup()`
AIRTABLE_API_KEY 2021-03-01 16:13:00 +00:00
black 2021-03-01 22:39:28 +00:00			`AIRTABLE_API_KEY = os.getenv("AIRTABLE_API_KEY")`
			`AIRTABLE_BASE = os.getenv("AIRTABLE_BASE", "app89plJvA9EqTJEc")`
			`AIRTABLE_TABLE = os.getenv("AIRTABLE_TABLE", "Table%201")`
			`AIRTABLE_FIELD = os.getenv("AIRTABLE_FIELD", "Link")`

use webhook instead of discrod bot to send messages (#979) * initial refactor * do not use before define * forgot to remove client * test notification * add /cc * fix /cc * fix /cc role * fix /cc * test file upload * test file upload * test file upload * default to no mentions * unformat * replace discord with DiscordWebhook * add readme * don't fail on failures in message send 2021-07-16 11:12:58 +00:00			`async def run_checks():`
			`try:`
			`await block_skylinks_from_airtable()`
			`except: # catch all exceptions`
			`trace = traceback.format_exc()`
			await send_msg("```\n{}\n```".format(trace), force_notify=True)

black 2021-03-01 22:39:28 +00:00
			`def exec(command):`
			`return os.popen(command).read().strip()`

airtable blocklist integration 2021-03-01 15:47:06 +00:00
			`async def block_skylinks_from_airtable():`
black 2021-03-01 22:39:28 +00:00			`print("Pulling blocked skylinks from Airtable via api integration")`
			`headers = {"Authorization": "Bearer " + AIRTABLE_API_KEY}`
pagination 2021-03-01 22:08:38 +00:00			`skylinks = []`
pagination 2021-03-01 22:15:54 +00:00			`offset = None`
airtable retries logic 2021-07-18 06:22:32 +00:00			`retry = 0`
pagination 2021-03-01 22:08:38 +00:00			`while len(skylinks) == 0 or offset:`
concatenate string 2021-07-18 06:55:29 +00:00			`print("Requesting a batch of records from Airtable with " + (offset if offset else "empty") + " offset" + (" (retry " + str(retry) + ")" if retry else ""))`
black 2021-03-01 22:39:28 +00:00			`query = "&".join(["fields%5B%5D=" + AIRTABLE_FIELD, ("offset=" + offset) if offset else ""])`
			`response = requests.get(`
			`"https://api.airtable.com/v0/" + AIRTABLE_BASE + "/" + AIRTABLE_TABLE + "?" + query,`
			`headers=headers,`
pagination 2021-03-01 22:08:38 +00:00			`)`
better error handling 2021-03-01 16:19:13 +00:00
airtable retries logic 2021-07-18 06:22:32 +00:00			`# rate limited - sleep for 2-10 secs and retry (up to 100 times, ~10 minutes)`
			`# https://support.airtable.com/hc/en-us/articles/203313985-Public-REST-API`
			`# > 5 requests per second, per base`
			`if response.status_code == 429:`
			`if retry < 100:`
			`retry = retry + 1`
			`sleep(randint(1,10))`
			`continue`
			`else:`
			`return await send_msg("Airtable: too many retries, aborting!", force_notify=True)`
			`retry = 0 # reset retry counter`

black 2021-03-01 22:39:28 +00:00			`if response.status_code != 200:`
			`status_code = str(response.status_code)`
			`response_text = response.text or "empty response"`
			`message = "Airtable blocklist integration responded with code " + status_code + ": " + response_text`
use webhook instead of discrod bot to send messages (#979) * initial refactor * do not use before define * forgot to remove client * test notification * add /cc * fix /cc * fix /cc role * fix /cc * test file upload * test file upload * test file upload * default to no mentions * unformat * replace discord with DiscordWebhook * add readme * don't fail on failures in message send 2021-07-16 11:12:58 +00:00			`return await send_msg(message, force_notify=False)`
black 2021-03-01 22:39:28 +00:00
			`data = response.json()`
clear nginx cache 2021-03-01 16:56:30 +00:00
filter empty skylinks 2021-03-03 13:07:29 +00:00			`if len(data["records"]) == 0:`
			`return print("Airtable returned 0 records - make sure your configuration is correct")`

			`skylinks = skylinks + [entry["fields"].get(AIRTABLE_FIELD, "") for entry in data["records"]]`
			`skylinks = [skylink for skylink in skylinks if skylink] # filter empty skylinks, most likely empty rows`
black 2021-03-01 22:39:28 +00:00
			`offset = data.get("offset")`

pagination 2021-03-01 22:22:53 +00:00			`print("Airtable returned total " + str(len(skylinks)) + " skylinks to block")`
black 2021-03-01 22:39:28 +00:00
filter invalid skylinks 2021-03-02 12:40:18 +00:00			`skylinks_returned = skylinks`
			`skylinks = [skylink for skylink in skylinks if re.search("^[a-zA-Z0-9_-]{46}$", skylink)]`

			`if len(skylinks_returned) != len(skylinks):`
			`invalid_skylinks = [str(skylink) for skylink in list(set(skylinks_returned) - set(skylinks))]`
filter invalid skylinks 2021-03-02 12:44:27 +00:00			`message = str(len(invalid_skylinks)) + " of the skylinks returned from Airtable are not valid"`
use webhook instead of discrod bot to send messages (#979) * initial refactor * do not use before define * forgot to remove client * test notification * add /cc * fix /cc * fix /cc role * fix /cc * test file upload * test file upload * test file upload * default to no mentions * unformat * replace discord with DiscordWebhook * add readme * don't fail on failures in message send 2021-07-16 11:12:58 +00:00			`await send_msg(message, file=("\n".join(invalid_skylinks)))`
filter invalid skylinks 2021-03-02 12:40:18 +00:00
black 2021-03-01 22:39:28 +00:00			`apipassword = exec("docker exec sia cat /sia-data/apipassword")`
			`ipaddress = exec("docker inspect -f '{{range.NetworkSettings.Networks}}{{.IPAddress}}{{end}}' sia")`

more logging 2021-03-01 16:08:10 +00:00			`print("Sending blocklist request to siad")`
black 2021-03-01 22:39:28 +00:00			`response = requests.post(`
			`"http://" + ipaddress + ":9980/skynet/blocklist",`
			`auth=("", apipassword),`
			`headers={"user-agent": "Sia-Agent"},`
			`data=json.dumps({"add": skylinks}),`
			`)`

more logging 2021-03-01 16:08:10 +00:00			`if response.status_code == 204:`
typo 2021-03-01 17:50:01 +00:00			`print("Siad blocklist successfully updated with provided skylink")`
more logging 2021-03-01 16:08:10 +00:00			`else:`
black 2021-03-01 22:39:28 +00:00			`status_code = str(response.status_code)`
			`response_text = response.text or "empty response"`
			`message = "Siad blocklist endpoint responded with code " + status_code + ": " + response_text`
use webhook instead of discrod bot to send messages (#979) * initial refactor * do not use before define * forgot to remove client * test notification * add /cc * fix /cc * fix /cc role * fix /cc * test file upload * test file upload * test file upload * default to no mentions * unformat * replace discord with DiscordWebhook * add readme * don't fail on failures in message send 2021-07-16 11:12:58 +00:00			`return await send_msg(message, force_notify=False)`
airtable blocklist integration 2021-03-01 15:47:06 +00:00
typo 2021-03-01 17:41:41 +00:00			`print("Searching nginx cache for blocked files")`
fix cache busting 2021-07-18 07:07:15 +00:00			`total_cached_files_count = 0`
xrange 2021-03-05 22:45:44 +00:00			`for i in range(0, len(skylinks), 1000):`
batching 2021-03-05 22:43:18 +00:00			`cached_files_command = (`
fix cache busting 2021-07-18 07:07:15 +00:00			`"find /data/nginx/cache/ -type f \| xargs --no-run-if-empty -n1000 grep -Els '^Skynet-Skylink: ("`
batching 2021-03-05 22:43:18 +00:00			`+ "\|".join(skylinks[i:i+1000])`
			`+ ")'"`
			`)`
fix cache busting 2021-07-18 07:07:15 +00:00			`cached_files_count = int(exec('docker exec -it nginx bash -c "' + cached_files_command + ' \| wc -l"') or 0)`
			`if cached_files_count:`
			`total_cached_files_count+= cached_files_count`
improve 2021-07-18 07:09:55 +00:00			`removed = int(exec('docker exec -it nginx bash -c "' + cached_files_command + ' \| xargs -r rm -v \| wc -l"'))`
			`print(removed)`
purging script 2021-03-01 17:39:43 +00:00
fix cache busting 2021-07-18 07:07:15 +00:00			`if total_cached_files_count == 0:`
purging script 2021-03-01 17:39:43 +00:00			`return print("No nginx cached files matching blocked skylinks were found")`

fix cache busting 2021-07-18 07:07:15 +00:00			`message = "Purged " + str(total_cached_files_count) + " blocklisted files from nginx cache"`
use webhook instead of discrod bot to send messages (#979) * initial refactor * do not use before define * forgot to remove client * test notification * add /cc * fix /cc * fix /cc role * fix /cc * test file upload * test file upload * test file upload * default to no mentions * unformat * replace discord with DiscordWebhook * add readme * don't fail on failures in message send 2021-07-16 11:12:58 +00:00			`return await send_msg(message)`
black 2021-03-01 22:39:28 +00:00

use webhook instead of discrod bot to send messages (#979) * initial refactor * do not use before define * forgot to remove client * test notification * add /cc * fix /cc * fix /cc role * fix /cc * test file upload * test file upload * test file upload * default to no mentions * unformat * replace discord with DiscordWebhook * add readme * don't fail on failures in message send 2021-07-16 11:12:58 +00:00			`loop = asyncio.get_event_loop()`
			`loop.run_until_complete(run_checks())`
running param 2021-03-01 16:09:18 +00:00
airtable blocklist integration 2021-03-01 15:47:06 +00:00			`# --- BASH EQUIVALENT`
remove leftover 2021-03-02 11:43:23 +00:00			`# skylinks=$(curl "https://api.airtable.com/v0/${AIRTABLE_BASE}/${AIRTABLE_TABLE}?fields%5B%5D=${AIRTABLE_FIELD}" -H "Authorization: Bearer ${AIRTABLE_KEY}" \| python3 -c "import sys, json; print('[\"' + '\",\"'.join([entry['fields']['Link'] for entry in json.load(sys.stdin)['records']]) + '\"]')")`
airtable blocklist integration 2021-03-01 15:47:06 +00:00			`# apipassword=$(docker exec sia cat /sia-data/apipassword)`
			`# ipaddress=$(docker inspect -f '{{range.NetworkSettings.Networks}}{{.IPAddress}}{{end}}' sia)`
			`# curl -A "Sia-Agent" --user "":"${apipassword}" --data "{\"add\" : ${skylinks}}" "${ipaddress}:9980/skynet/blocklist"`