Skip to content

Commit

Permalink
Release/1.19.0 (#134)
Browse files Browse the repository at this point in the history
* Update README.md

* Sender: images. Preview and AssetData

* Sender: images. Preview and AssetData

* xenon 1.5.2

* minor changes

* lithium 3.5.2

* updated dependancies

* trace more

* trace more

* Lithium 3.5.4

* Lithium 3.6.0

* fix: migrate jakarta deps to comply with lithium 3.6.x (pt1) (#119)

* Lithium 3.6.0

* WebsocketBundle

* chore: cleanup depedencies

* chore: cleanup depedencies to jakarta

* chore: fixing tests

* chore: fixing tests

* chore: comments - [skip-ci]

* feat: fixing tests and dependencies

* feat: fixing tests and dependencies

* chore: fixing ws config to jakarta

* chore: removing local fix docker image platform

---------

Co-authored-by: Dejan <[email protected]>

* fix: frontend config with new assetbundle aproach dropwizard4 (#129)

* fix: frontend config with new assetbundle aproach dropwizard4

* fix: frontend config with new assetbundle aproach dropwizard4

* check for empty payload.url (#130)

* check for empty payload.url

* more logging

* more logging

* Skip the enable service

* More logging

* Dont send Enable=false in UpdateService

* Use single WebTarge in ProviderClient

* .accept(MediaType.TEXT_PLAIN)

* .accept(MediaType.TEXT_PLAIN)

* .request(MediaType.TEXT_PLAIN)

* .request(MediaType.TEXT_PLAIN)

* fixed the build

* Bump word-wrap from 1.2.3 to 1.2.5 in /frontend (#123)

Bumps [word-wrap](https://github.com/jonschlinkert/word-wrap) from 1.2.3 to 1.2.5.
- [Release notes](https://github.com/jonschlinkert/word-wrap/releases)
- [Commits](jonschlinkert/word-wrap@1.2.3...1.2.5)

---
updated-dependencies:
- dependency-name: word-wrap
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump @adobe/css-tools from 4.2.0 to 4.3.2 in /frontend (#122)

Bumps [@adobe/css-tools](https://github.com/adobe/css-tools) from 4.2.0 to 4.3.2.
- [Changelog](https://github.com/adobe/css-tools/blob/main/History.md)
- [Commits](https://github.com/adobe/css-tools/commits)

---
updated-dependencies:
- dependency-name: "@adobe/css-tools"
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump browserify-sign from 4.2.1 to 4.2.2 in /frontend (#125)

Bumps [browserify-sign](https://github.com/crypto-browserify/browserify-sign) from 4.2.1 to 4.2.2.
- [Changelog](https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md)
- [Commits](browserify/browserify-sign@v4.2.1...v4.2.2)

---
updated-dependencies:
- dependency-name: browserify-sign
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump semver from 5.7.1 to 5.7.2 in /frontend (#124)

Bumps [semver](https://github.com/npm/node-semver) from 5.7.1 to 5.7.2.
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md)
- [Commits](npm/node-semver@v5.7.1...v5.7.2)

---
updated-dependencies:
- dependency-name: semver
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump @babel/traverse from 7.21.2 to 7.23.5 in /frontend (#126)

Bumps [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) from 7.21.2 to 7.23.5.
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.23.5/packages/babel-traverse)

---
updated-dependencies:
- dependency-name: "@babel/traverse"
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump tough-cookie from 4.1.2 to 4.1.3 in /frontend (#128)

Bumps [tough-cookie](https://github.com/salesforce/tough-cookie) from 4.1.2 to 4.1.3.
- [Release notes](https://github.com/salesforce/tough-cookie/releases)
- [Changelog](https://github.com/salesforce/tough-cookie/blob/master/CHANGELOG.md)
- [Commits](salesforce/tough-cookie@v4.1.2...v4.1.3)

---
updated-dependencies:
- dependency-name: tough-cookie
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* chore: cancel concurrent builds to avoid multiple runs and only run last (#132)

* chore: cancel concurrent builds to avoid multiple runs and only run last

* Empty-Commit test

* chore: configure new swagger version for roman in dropwizard4 (WPB-5816) (#133)

* chore: configure new swagger version for roman

* chore: configure new swagger version for roman

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: Yamil Medina <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
  • Loading branch information
3 people authored Dec 11, 2023
1 parent 52ad420 commit bec3ea6
Show file tree
Hide file tree
Showing 59 changed files with 2,077 additions and 1,613 deletions.
4 changes: 4 additions & 0 deletions .github/workflows/ci.yml
Original file line number Diff line number Diff line change
Expand Up @@ -8,6 +8,10 @@ on:

pull_request:

concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true

jobs:
docker-build:
runs-on: ubuntu-20.04
Expand Down
6 changes: 5 additions & 1 deletion .github/workflows/prod.yml
Original file line number Diff line number Diff line change
Expand Up @@ -2,12 +2,16 @@ name: Release Pipeline

on:
release:
types: [published]
types: [ published ]

env:
DOCKER_IMAGE: wire-bot/roman
SERVICE_NAME: roman

concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true

jobs:
deploy:
name: Build and deploy service
Expand Down
4 changes: 4 additions & 0 deletions .github/workflows/staging.yml
Original file line number Diff line number Diff line change
Expand Up @@ -16,6 +16,10 @@ env:

NAMESPACE: staging

concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true

jobs:
publish:
name: Deploy to staging
Expand Down
11 changes: 6 additions & 5 deletions Dockerfile
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@ WORKDIR ./frontend
RUN npm i
RUN npm run build

FROM maven:3-openjdk-11 AS build
FROM maven:3-openjdk-17 AS build
WORKDIR /app

COPY backend/pom.xml ./
Expand All @@ -16,9 +16,13 @@ RUN mvn verify --fail-never -U

COPY backend/ ./

# Copy frontend build to local resources classpath folder
ENV FRONTEND_PATH=/app/src/main/resources/frontend
COPY --from=frontend-build ./frontend/build $FRONTEND_PATH

RUN mvn -Dmaven.test.skip=true package

FROM wirebot/runtime:1.3.0 AS runtime
FROM wirebot/runtime:1.4.0 AS runtime
LABEL description="Wire Roman"
LABEL project="wire-bots:roman"

Expand All @@ -28,9 +32,6 @@ RUN apt-get update && apt-get upgrade -y
# Copy backend
COPY --from=build /app/target/roman.jar /opt/roman/backend/
COPY backend/roman.yaml /etc/roman/
# Copy frontend
ENV FRONTEND_PATH=/opt/roman/frontend
COPY --from=frontend-build ./frontend/build $FRONTEND_PATH

# create version file
ARG release_version=development
Expand Down
108 changes: 80 additions & 28 deletions README.md
Original file line number Diff line number Diff line change
Expand Up @@ -45,8 +45,10 @@ Uses [lithium](https://github.com/wireapp/lithium) to utilize Wire Bot API.
}
```

Only `name` is mandatory. Specify `url` if you want to use your _Webhook_ to receive events from Wire Backend. Leave `url` _null_ if you
prefer _Websocket_. `avatar` for your bot is optional, and it is `Base64` encoded `jpeg`|`png` image. If `avatar` field is left _null_
Only `name` is mandatory. Specify `url` if you want to use your _Webhook_ to receive events from Wire Backend.
Leave `url` _null_ if you
prefer _Websocket_. `avatar` for your bot is optional, and it is `Base64` encoded `jpeg`|`png` image. If `avatar` field
is left _null_
default avatar is assigned for the Service.

After creating your Service the following json is returned:
Expand All @@ -62,15 +64,19 @@ After creating your Service the following json is returned:
}
```

Go to your _Team Settings_ page and navigate to _Services_ tab. Add this `service_code` and enable this service for your team. Now your team
Go to your _Team Settings_ page and navigate to _Services_ tab. Add this `service_code` and enable this service for your
team. Now your team
members should be able to see your _Service_ when they open _people picker_ and navigate to _services_ tab.

### Webhook

In case `url` was specified when creating the service webhook will be used. All requests coming from Wire to your Service's endpoint will
In case `url` was specified when creating the service webhook will be used. All requests coming from Wire to your
Service's endpoint will
have HTTP Header `Authorization` with value:
`Bearer <service_authentication>`. Make sure you verify this value in your webhook implementation. Wire will send events as `POST` HTTP
request to the `url` you specified when creating the Service. Your webhook should always return HTTP code `200` as the result.
`Bearer <service_authentication>`. Make sure you verify this value in your webhook implementation. Wire will send events
as `POST` HTTP
request to the `url` you specified when creating the Service. Your webhook should always return HTTP code `200` as the
result.

### Websocket

Expand All @@ -97,7 +103,8 @@ wss://proxy.services.wire.com/api/await/`<app_key>`
}
```

Your service must be available at the moment `bot_request` event is sent. It must respond with http code `200`. In case of Websocket
Your service must be available at the moment `bot_request` event is sent. It must respond with http code `200`. In case
of Websocket
implementation it is enough the socket is connected to the Proxy at that moment.

- `conversation.init` If your Service responded with `200` to a `bot_request` another event is sent: `init`.
Expand Down Expand Up @@ -232,7 +239,8 @@ implementation it is enough the socket is connected to the Proxy at that moment.

### Posting back to Wire conversation

If the event contains `token` field this `token` can be used to respond to this event by sending `Outgoing Message` like:
If the event contains `token` field this `token` can be used to respond to this event by sending `Outgoing Message`
like:

Example:

Expand All @@ -242,7 +250,8 @@ curl -X POST https://proxy.services.wire.com/api/conversation -d '{"type": "text
```

In order to post text, or an image as a bot into Wire conversation you need to send a `POST` request to `/conversation`
You must also specify the HTTP header as `Authorization:Bearer <token>` where `token` was obtained in `init` or other events
You must also specify the HTTP header as `Authorization:Bearer <token>` where `token` was obtained in `init` or other
events
like: `new_text` or `new_image`.

_Outgoing Message_ can be of 4 types:
Expand All @@ -263,7 +272,33 @@ _Outgoing Message_ can be of 4 types:
```
{
"type": "attachment",
"attachment": { "mimeType" : "image/jpeg", "data" : "..." }
"attachment": {
"mimeType" : "image/jpeg",
"height" : 320,
"width" : 160,
"size" : 2048,
"meta" : {
"assetId" : "3-cef231a2-23f2-429e-b76a-b7649594d3fe",
"assetToken" : "...", // Optional
"sha256" : "...", // Base64 encoded SHA256 digest of the file
"otrKey" : "..." // Base64 encoded otr key used to encrypt the file
}
}
}
```

or

```
{
"type": "attachment",
"attachment": {
"mimeType" : "image/jpeg",
"height" : 320,
"width" : 160,
"size" : 2048,
"data" : "..." // Base64 encoded image data
}
}
```

Expand Down Expand Up @@ -323,7 +358,8 @@ The best way how to run Roman is to use Docker, another option is to run the Rom

### Configuration

Almost all necessary variables and configurations are located in the [roman.yaml](roman.yaml). Following environment variables should be
Almost all necessary variables and configurations are located in the [roman.yaml](roman.yaml). Following environment
variables should be
set.

```bash
Expand Down Expand Up @@ -365,7 +401,8 @@ openssl rand -hex 32

We provide [Dockerfile](Dockerfile) and the
prepared [runtime image](https://github.com/wireapp/cryptobox4j/blob/master/dockerfiles/Dockerfile.runtime) -
[wirebot/runtime](https://hub.docker.com/r/wirebot/runtime). We don't provide the whole Roman docker image, but feel free to build one from
[wirebot/runtime](https://hub.docker.com/r/wirebot/runtime). We don't provide the whole Roman docker image, but feel
free to build one from
the code, all necessary files are present in this repository.

#### Build docker image from source code
Expand All @@ -379,7 +416,8 @@ docker build -t roman:latest .

#### Example of Docker run command on local machine (without HTTPS)

In order to run the Roman locally, to test the proxy itself (not sending data to Wire backend) one do not need to specify the HTTPS
In order to run the Roman locally, to test the proxy itself (not sending data to Wire backend) one do not need to
specify the HTTPS
certificate and run following command:

```bash
Expand All @@ -399,7 +437,8 @@ docker run \

#### Example with docker-compose (without HTTPS)

We include [docker-compose.yml](docker-compose.yml) file to run the testing instance of Roman locally using Docker Compose. It includes all
We include [docker-compose.yml](docker-compose.yml) file to run the testing instance of Roman locally using Docker
Compose. It includes all
necessary variables and PostgreSQL instance, to get the testing instance up and running. Simply execute:

```bash
Expand All @@ -408,18 +447,22 @@ docker-compose -f docker-compose.yml up

#### Production deployment

In order to run the Roman in the production, one needs to have an HTTPS and to set the `ROMAN_PUB_KEY_BASE64` as well as `PROXY_DOMAIN`
In order to run the Roman in the production, one needs to have an HTTPS and to set the `ROMAN_PUB_KEY_BASE64` as well
as `PROXY_DOMAIN`
env variables. See [Configuration section](#configuration) how to obtain them.

### Native JVM

As previously mentioned, Wire recommends running the Roman as a docker container. However, you can run it natively on the JVM as well.
Please note that Roman requires JVM >= 11. To run it natively, one needs to install [Cryptobox4j](https://github.com/wireapp/cryptobox4j)
As previously mentioned, Wire recommends running the Roman as a docker container. However, you can run it natively on
the JVM as well.
Please note that Roman requires JVM >= 11. To run it natively, one needs to
install [Cryptobox4j](https://github.com/wireapp/cryptobox4j)
and other cryptographic libraries. You can use
[Docker Build Image](https://github.com/wireapp/cryptobox4j/blob/master/dockerfiles/Dockerfile.cryptobox)
as an inspiration what needs to be installed and what environment variables need to be set to get the Cryptobox working.

Also, don't forget to read the [Configuration section](#configuration) and set all necessary environment variables for the Roman itselgf.
Also, don't forget to read the [Configuration section](#configuration) and set all necessary environment variables for
the Roman itselgf.

First, it is necessary to build the application:

Expand All @@ -437,16 +480,20 @@ java -jar target/roman.jar server roman.yaml

## Simple Guide to Roman Deployment

The previous lines should give you all necessary material you need how to deploy the Roman in multiple environment and how to set everything
up. Even though Wire runs Roman in cloud and uses Kubernetes setup, we decided to provide as simple guide as possible to deploy your own
Roman using just a `docker-compose`. The following lines provides specific and opinionated simple guide, that requires just few basic
The previous lines should give you all necessary material you need how to deploy the Roman in multiple environment and
how to set everything
up. Even though Wire runs Roman in cloud and uses Kubernetes setup, we decided to provide as simple guide as possible to
deploy your own
Roman using just a `docker-compose`. The following lines provides specific and opinionated simple guide, that requires
just few basic
things:

- a machine with Docker, Docker Compose and OpenSSL installed
- the machine has a public IP address and DNS record pointing to that IP address
- *(optional)* install `jq` in order to browse and search in logs

In this example we take the DNS as `roman.example.com`, when deploying, change this value to your own domain. In order to obtain the
In this example we take the DNS as `roman.example.com`, when deploying, change this value to your own domain. In order
to obtain the
certificate, we will use [Traefik](https://traefik.io/) edge router and [Let's Encrypt](https://letsencrypt.org/).

### Step by step
Expand All @@ -457,7 +504,8 @@ certificate, we will use [Traefik](https://traefik.io/) edge router and [Let's E
git clone [email protected]:wireapp/roman.git
```

2. Set the correct DNS in the [docker-compose.prod.yml](docker-compose.prod.yml) - replace `roman.example.com` with your own and replace
2. Set the correct DNS in the [docker-compose.prod.yml](docker-compose.prod.yml) - replace `roman.example.com` with your
own and replace
the `[email protected]` email address with our own email.

3. Create `.env.prod` file that will contain all necessary environmental variables.
Expand All @@ -483,11 +531,15 @@ docker-compose -f docker-compose.prod.yml --env-file .env.prod up --build -d
```

5. Check the logs
* proxy - `docker-compose -f docker-compose.prod.yml logs proxy` - should show some noise about certificate and routes registration
* Roman - `docker-compose -f docker-compose.prod.yml logs roman` - should show normal starting procedure and no errors
* with Roman, you can pipe logs data to `jq` (if installed), that way you will see nice and formatted JSONs instead of just lines.

6. Give it some time to obtain necessary certificates - around 10 minutes should be fine. Then try to access the `https://roman.example.com`
* proxy - `docker-compose -f docker-compose.prod.yml logs proxy` - should show some noise about certificate and
routes registration
* Roman - `docker-compose -f docker-compose.prod.yml logs roman` - should show normal starting procedure and no
errors
* with Roman, you can pipe logs data to `jq` (if installed), that way you will see nice and formatted JSONs instead
of just lines.

6. Give it some time to obtain necessary certificates - around 10 minutes should be fine. Then try to access
the `https://roman.example.com`
to see whether the HTTPS works as expected. If yes, proceed, if no troubleshoot with Traefik proxy.
7. Now you need to download real public key and encode it in base64 -
see [Getting the ROMAN_PUB_KEY_BASE64](#getting-the-roman_pub_key_base64)
Expand Down
Loading

0 comments on commit bec3ea6

Please sign in to comment.