akanealw/Charon
1
0
Fork 0
Code Issues Pull Requests Actions 5 Packages Projects Releases Wiki Activity
Files
e5dab58b42bb30f7ed8bfb184e4389cf305a9d06
Charon/backend/internal/models/notification_config.go
T
GitHub Actions 2f83526966 fix: resolve email provider test regression from Stage 2 flag registration 
After email was recognised as a supported provider type, the existing
rejection assertion for unsupported types incorrectly included email
in its denial list, causing a nil-dereference panic.

- Remove email from the unsupported-type rejection list and cover it
  in the accepted-types path instead
- Correct allFeaturesEnabled fixture to set email flag to true, keeping
  the fixture semantically consistent with all other service flags
2026-03-05 04:22:04 +00:00

51 lines
1.9 KiB
Go
Raw Blame History

package models
import (
"time"
"github.com/google/uuid"
"gorm.io/gorm"
)
// NotificationConfig stores configuration for security notifications.
type NotificationConfig struct {
ID string `gorm:"primaryKey" json:"id"`
Enabled bool `json:"enabled"`
MinLogLevel string `json:"min_log_level"` // error, warn, info, debug
WebhookURL string `json:"webhook_url"`
// Blocker 2 Fix: API surface uses security_* field names per spec (internal fields remain notify_*)
NotifyWAFBlocks bool `json:"security_waf_enabled"`
NotifyACLDenies bool `json:"security_acl_enabled"`
NotifyRateLimitHits bool `json:"security_rate_limit_enabled"`
NotifyCrowdSecDecisions bool `json:"security_crowdsec_enabled"`
// Legacy destination fields (compatibility, not stored in DB)
DiscordWebhookURL string `gorm:"-" json:"discord_webhook_url,omitempty"`
SlackWebhookURL string `gorm:"-" json:"slack_webhook_url,omitempty"`
GotifyURL string `gorm:"-" json:"gotify_url,omitempty"`
GotifyToken string `gorm:"-" json:"-"` // Security: Never expose token in JSON (OWASP A02)
DestinationAmbiguous bool `gorm:"-" json:"destination_ambiguous,omitempty"`
CreatedAt time.Time `json:"created_at"`
UpdatedAt time.Time `json:"updated_at"`
}
// BeforeCreate sets the ID if not already set.
func (nc *NotificationConfig) BeforeCreate(tx *gorm.DB) error {
if nc.ID == "" {
nc.ID = uuid.New().String()
}
return nil
}
// SecurityEvent represents a security event for notification dispatch.
type SecurityEvent struct {
EventType string `json:"event_type"` // waf_block, acl_deny, etc.
Severity string `json:"severity"` // error, warn, info
Message string `json:"message"`
ClientIP string `json:"client_ip"`
Path string `json:"path"`
Timestamp time.Time `json:"timestamp"`
Metadata map[string]any `json:"metadata"`
}
Reference in New Issue View Git Blame Copy Permalink