RubyGems - attio - Versions diffs - 0.3.0 → 0.4.0 - Mend

attio 0.3.0 → 0.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (20) hide show

checksums.yaml +4 -4
data/.gitignore +1 -0
data/CHANGELOG.md +35 -2
data/CLAUDE.md +35 -4
data/Gemfile.lock +1 -1
data/README.md +234 -31
data/lib/attio/circuit_breaker.rb +299 -0
data/lib/attio/client.rb +2 -10
data/lib/attio/connection_pool.rb +190 -35
data/lib/attio/enhanced_client.rb +257 -0
data/lib/attio/http_client.rb +54 -3
data/lib/attio/observability.rb +424 -0
data/lib/attio/resources/base.rb +53 -0
data/lib/attio/resources/bulk.rb +1 -1
data/lib/attio/resources/records.rb +29 -2
data/lib/attio/version.rb +1 -1
data/lib/attio/webhooks.rb +220 -0
data/lib/attio.rb +8 -1
metadata +5 -2
data/lib/attio/resources/meta.rb +0 -72

data/lib/attio/webhooks.rb ADDED Viewed

@@ -0,0 +1,220 @@
+# frozen_string_literal: true
+require "openssl"
+require "json"
+require "time"
+module Attio
+  # Webhook handling for Attio events
+  #
+  # @example Configure webhooks
+  #   webhooks = Attio::Webhooks.new(secret: ENV['ATTIO_WEBHOOK_SECRET'])
+  #
+  #   webhooks.on('record.created') do |event|
+  #     puts "New record: #{event.data['id']}"
+  #   end
+  #
+  #   # In your webhook endpoint
+  #   webhooks.process(request.body.read, request.headers)
+  class Webhooks
+    class InvalidSignatureError < StandardError; end
+    class InvalidTimestampError < StandardError; end
+    class MissingHeaderError < StandardError; end
+    # Default time window for timestamp validation (5 minutes)
+    DEFAULT_TOLERANCE = 300
+    attr_reader :secret, :handlers, :tolerance
+    # Initialize webhook handler
+    #
+    # @param secret [String] Webhook signing secret from Attio
+    # @param tolerance [Integer] Maximum age of webhook in seconds
+    def initialize(secret:, tolerance: DEFAULT_TOLERANCE)
+      @secret = secret
+      @tolerance = tolerance
+      @handlers = {}
+      @global_handlers = []
+    end
+    # Register an event handler
+    #
+    # @param event_type [String] The event type to handle (e.g., 'record.created')
+    # @yield [event] Block to execute when event is received
+    # @yieldparam event [Event] The webhook event
+    def on(event_type, &block)
+      @handlers[event_type] ||= []
+      @handlers[event_type] << block
+    end
+    # Register a global handler for all events
+    #
+    # @yield [event] Block to execute for any event
+    def on_any(&block)
+      @global_handlers << block
+    end
+    # Process incoming webhook
+    #
+    # @param payload [String] Raw request body
+    # @param headers [Hash] Request headers
+    # @return [Event] Processed webhook event
+    # @raise [InvalidSignatureError] if signature verification fails
+    # @raise [InvalidTimestampError] if timestamp is too old
+    def process(payload, headers)
+      verify_webhook!(payload, headers)
+      event = Event.new(JSON.parse(payload))
+      dispatch_event(event)
+      event
+    end
+    # Verify webhook authenticity using HMAC-SHA256
+    #
+    # @param payload [String] Raw request body
+    # @param signature [String] Signature from headers
+    # @return [Boolean] True if valid
+    def verify_signature?(payload, signature)
+      expected = OpenSSL::HMAC.hexdigest(
+        OpenSSL::Digest.new("sha256"),
+        @secret,
+        payload
+      )
+      # Use secure comparison to prevent timing attacks
+      secure_compare?(expected, signature)
+    end
+    private def verify_webhook!(payload, headers)
+      signature = extract_header(headers, "Attio-Signature")
+      timestamp = extract_header(headers, "Attio-Timestamp")
+      # Verify timestamp to prevent replay attacks
+      verify_timestamp!(timestamp)
+      # Verify signature
+      signed_payload = "#{timestamp}.#{payload}"
+      return if verify_signature?(signed_payload, signature)
+      raise InvalidSignatureError, "Webhook signature verification failed"
+    end
+    private def extract_header(headers, name)
+      # Handle different header formats (Rack, Rails, etc.)
+      value = headers[name] ||
+              headers[name.downcase] ||
+              headers[name.upcase.gsub("-", "_")]
+      raise MissingHeaderError, "Missing required header: #{name}" unless value
+      value
+    end
+    private def verify_timestamp!(timestamp)
+      webhook_time = Time.at(timestamp.to_i)
+      current_time = Time.now
+      return unless (current_time - webhook_time).abs > tolerance
+      raise InvalidTimestampError,
+            "Webhook timestamp outside of tolerance (#{tolerance}s)"
+    end
+    private def dispatch_event(event)
+      # Call specific handlers
+      @handlers[event.type].each { |handler| handler.call(event) } if @handlers[event.type]
+      # Call global handlers
+      @global_handlers.each { |handler| handler.call(event) }
+    end
+    private def secure_compare?(expected, actual)
+      return false unless expected.bytesize == actual.bytesize
+      expected_bytes = expected.unpack("C*")
+      actual_bytes = actual.unpack("C*")
+      result = 0
+      expected_bytes.zip(actual_bytes) { |x, y| result |= x ^ y }
+      result == 0
+    end
+    # Represents a webhook event
+    class Event
+      attr_reader :id, :type, :created_at, :data, :workspace_id, :raw
+      def initialize(payload)
+        @raw = payload
+        @id = payload["id"]
+        @type = payload["type"]
+        @created_at = Time.parse(payload["created_at"]) if payload["created_at"]
+        @data = payload["data"] || {}
+        @workspace_id = payload["workspace_id"]
+      end
+      # Check if event is of a specific type
+      #
+      # @param type [String] Event type to check
+      # @return [Boolean]
+      def is?(type)
+        @type == type
+      end
+      # Get nested data value
+      #
+      # @param path [String] Dot-separated path (e.g., 'record.id')
+      # @return [Object] Value at path
+      def dig(*path)
+        @data.dig(*path)
+      end
+    end
+  end
+  # Webhook server for development/testing
+  class WebhookServer
+    attr_reader :port, :webhooks, :events
+    def initialize(port: 3001, secret: "test_secret")
+      @port = port
+      @webhooks = Webhooks.new(secret: secret)
+      @events = []
+      @server = nil
+      begin
+        require "webrick"
+      rescue LoadError
+        raise "Please add 'webrick' to your Gemfile to use WebhookServer"
+      end
+    end
+    def start
+      @server = WEBrick::HTTPServer.new(Port: @port, Logger: WEBrick::Log.new(File::NULL))
+      @server.mount_proc "/webhooks" do |req, res|
+        if req.request_method == "POST"
+          begin
+            event = @webhooks.process(req.body, req.header)
+            @events << event
+            res.status = 200
+            res.body = JSON.generate(status: "ok", event_id: event.id)
+          rescue StandardError => e
+            res.status = 400
+            res.body = JSON.generate(error: e.message)
+          end
+        else
+          res.status = 405
+          res.body = JSON.generate(error: "Method not allowed")
+        end
+      end
+      trap("INT") { stop }
+      puts "Webhook server listening on http://localhost:#{@port}/webhooks"
+      @server.start
+    end
+    def stop
+      @server&.shutdown
+    end
+  end
+end

data/lib/attio.rb CHANGED Viewed

@@ -7,6 +7,7 @@ require "attio/errors"
 require "attio/http_client"
 require "attio/client"
+# Resources
 require "attio/resources/base"
 require "attio/resources/records"
 require "attio/resources/objects"
@@ -20,9 +21,15 @@ require "attio/resources/comments"
 require "attio/resources/threads"
 require "attio/resources/workspace_members"
 require "attio/resources/deals"
-require "attio/resources/meta"
 require "attio/resources/bulk"
+# Enterprise features
 require "attio/rate_limiter"
+require "attio/webhooks"
+require "attio/connection_pool"
+require "attio/circuit_breaker"
+require "attio/observability"
+require "attio/enhanced_client"
 # The main Attio module provides access to the Attio API client.
 #

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: attio
 version: !ruby/object:Gem::Version
-  version: 0.3.0
+  version: 0.4.0
 platform: ruby
 authors:
 - Ernest Sim
@@ -110,11 +110,14 @@ files:
 - examples/full_workflow.rb
 - examples/notes_and_tasks.rb
 - lib/attio.rb
+- lib/attio/circuit_breaker.rb
 - lib/attio/client.rb
 - lib/attio/connection_pool.rb
+- lib/attio/enhanced_client.rb
 - lib/attio/errors.rb
 - lib/attio/http_client.rb
 - lib/attio/logger.rb
+- lib/attio/observability.rb
 - lib/attio/rate_limiter.rb
 - lib/attio/resources/attributes.rb
 - lib/attio/resources/base.rb
@@ -122,7 +125,6 @@ files:
 - lib/attio/resources/comments.rb
 - lib/attio/resources/deals.rb
 - lib/attio/resources/lists.rb
-- lib/attio/resources/meta.rb
 - lib/attio/resources/notes.rb
 - lib/attio/resources/objects.rb
 - lib/attio/resources/records.rb
@@ -133,6 +135,7 @@ files:
 - lib/attio/resources/workspaces.rb
 - lib/attio/retry_handler.rb
 - lib/attio/version.rb
+- lib/attio/webhooks.rb
 homepage: https://github.com/idl3/attio
 licenses:
 - MIT

data/lib/attio/resources/meta.rb DELETED Viewed

@@ -1,72 +0,0 @@
-# frozen_string_literal: true
-module Attio
-  module Resources
-    # Meta resource for API metadata and identification
-    #
-    # @example Identify the current API key
-    #   client.meta.identify
-    #   # => { "workspace" => { "id" => "...", "name" => "..." }, "user" => { ... } }
-    #
-    # @example Get API status
-    #   client.meta.status
-    #   # => { "status" => "operational", "version" => "v2" }
-    class Meta < Base
-      # Identify the current API key and get workspace/user information
-      #
-      # @return [Hash] Information about the authenticated workspace and user
-      def identify
-        request(:get, "meta/identify")
-      end
-      # Get API status and version information
-      #
-      # @return [Hash] API status and version details
-      def status
-        request(:get, "meta/status")
-      end
-      # Get rate limit information for the current API key
-      #
-      # @return [Hash] Current rate limit status
-      def rate_limits
-        request(:get, "meta/rate_limits")
-      end
-      # Get workspace configuration and settings
-      #
-      # @return [Hash] Workspace configuration details
-      def workspace_config
-        request(:get, "meta/workspace_config")
-      end
-      # Validate an API key without making changes
-      #
-      # @return [Hash] Validation result with key permissions
-      def validate_key
-        request(:post, "meta/validate", {})
-      end
-      # Get available API endpoints and their documentation
-      #
-      # @return [Hash] List of available endpoints with descriptions
-      def endpoints
-        request(:get, "meta/endpoints")
-      end
-      # Get workspace usage statistics
-      #
-      # @return [Hash] Usage statistics including record counts, API calls, etc.
-      def usage_stats
-        request(:get, "meta/usage")
-      end
-      # Get feature flags and capabilities for the workspace
-      #
-      # @return [Hash] Enabled features and capabilities
-      def features
-        request(:get, "meta/features")
-      end
-    end
-  end
-end