apunkt/SurfSense
1
0
Fork 0
mirror of https://github.com/MODSetter/SurfSense.git synced 2026-06-02 19:55:18 +02:00
Code Issues Projects Releases Packages Wiki Activity

fix(gateway): harden Telegram webhook intake

Browse source
This commit is contained in:
Anish Sarkar 2026-05-28 04:37:41 +05:30
parent a57b741d5e
commit 72024353f9
3 changed files with 231 additions and 67 deletions
Download patch file Download diff file Expand all files Collapse all files

11
surfsense_backend/scripts/register_webhook.py
View file

@ -10,6 +10,9 @@ import sys
from dotenv import load_dotenv
from telegram import Bot
from app.db import async_session_maker
from app.gateway.accounts import get_or_create_system_telegram_account
load_dotenv()
WEBHOOK_SECRET_RE = re.compile(r"^[A-Za-z0-9_-]{1,256}$")
@ -32,7 +35,13 @@ async def main() -> int:
)
return 1
webhook_url = f"{base_url.rstrip('/')}/api/v1/gateway/webhooks/telegram/{secret}"
async with async_session_maker() as session:
account = await get_or_create_system_telegram_account(session)
account.webhook_secret = secret
await session.commit()
account_id = int(account.id)
webhook_url = f"{base_url.rstrip('/')}/api/v1/gateway/webhooks/telegram/{account_id}"
bot = Bot(token=token)
ok = await bot.set_webhook(
url=webhook_url,