package main import ( "encoding/json" "io" "net/http" "strconv" "time" "github.com/knadh/listmonk/models" "github.com/labstack/echo/v4" ) // handleGetBounces handles retrieval of bounce records. func handleGetBounces(c echo.Context) error { var ( app = c.Get("app").(*App) pg = app.paginator.NewFromURL(c.Request().URL.Query()) id, _ = strconv.Atoi(c.Param("id")) campID, _ = strconv.Atoi(c.QueryParam("campaign_id")) source = c.FormValue("source") orderBy = c.FormValue("order_by") order = c.FormValue("order") ) // Fetch one bounce. if id > 0 { out, err := app.core.GetBounce(id) if err != nil { return err } return c.JSON(http.StatusOK, okResp{out}) } res, total, err := app.core.QueryBounces(campID, 0, source, orderBy, order, pg.Offset, pg.Limit) if err != nil { return err } // No results. var out models.PageResults if len(res) == 0 { out.Results = []models.Bounce{} return c.JSON(http.StatusOK, okResp{out}) } // Meta. out.Results = res out.Total = total out.Page = pg.Page out.PerPage = pg.PerPage return c.JSON(http.StatusOK, okResp{out}) } // handleGetSubscriberBounces retrieves a subscriber's bounce records. func handleGetSubscriberBounces(c echo.Context) error { var ( app = c.Get("app").(*App) subID, _ = strconv.Atoi(c.Param("id")) ) if subID < 1 { return echo.NewHTTPError(http.StatusBadRequest, app.i18n.T("globals.messages.invalidID")) } out, _, err := app.core.QueryBounces(0, subID, "", "", "", 0, 1000) if err != nil { return err } return c.JSON(http.StatusOK, okResp{out}) } // handleDeleteBounces handles bounce deletion, either a single one (ID in the URI), or a list. func handleDeleteBounces(c echo.Context) error { var ( app = c.Get("app").(*App) pID = c.Param("id") all, _ = strconv.ParseBool(c.QueryParam("all")) IDs = []int{} ) // Is it an /:id call? if pID != "" { id, _ := strconv.Atoi(pID) if id < 1 { return echo.NewHTTPError(http.StatusBadRequest, app.i18n.T("globals.messages.invalidID")) } IDs = append(IDs, id) } else if !all { // Multiple IDs. i, err := parseStringIDs(c.Request().URL.Query()["id"]) if err != nil { return echo.NewHTTPError(http.StatusBadRequest, app.i18n.Ts("globals.messages.invalidID", "error", err.Error())) } if len(i) == 0 { return echo.NewHTTPError(http.StatusBadRequest, app.i18n.Ts("globals.messages.invalidID")) } IDs = i } if err := app.core.DeleteBounces(IDs); err != nil { return err } return c.JSON(http.StatusOK, okResp{true}) } // handleBounceWebhook renders the HTML preview of a template. func handleBounceWebhook(c echo.Context) error { var ( app = c.Get("app").(*App) service = c.Param("service") bounces []models.Bounce ) // Read the request body instead of using c.Bind() to read to save the entire raw request as meta. rawReq, err := io.ReadAll(c.Request().Body) if err != nil { app.log.Printf("error reading ses notification body: %v", err) return echo.NewHTTPError(http.StatusBadRequest, app.i18n.Ts("globals.messages.internalError")) } switch true { // Native internal webhook. case service == "": var b models.Bounce if err := json.Unmarshal(rawReq, &b); err != nil { return echo.NewHTTPError(http.StatusBadRequest, app.i18n.Ts("globals.messages.invalidData")+":"+err.Error()) } if bv, err := validateBounceFields(b, app); err != nil { return err } else { b = bv } if len(b.Meta) == 0 { b.Meta = json.RawMessage("{}") } if b.CreatedAt.Year() == 0 { b.CreatedAt = time.Now() } bounces = append(bounces, b) // Amazon SES. case service == "ses" && app.constants.BounceSESEnabled: switch c.Request().Header.Get("X-Amz-Sns-Message-Type") { // SNS webhook registration confirmation. Only after these are processed will the endpoint // start getting bounce notifications. case "SubscriptionConfirmation", "UnsubscribeConfirmation": if err := app.bounce.SES.ProcessSubscription(rawReq); err != nil { app.log.Printf("error processing SNS (SES) subscription: %v", err) return echo.NewHTTPError(http.StatusBadRequest, app.i18n.T("globals.messages.invalidData")) } break // Bounce notification. case "Notification": b, err := app.bounce.SES.ProcessBounce(rawReq) if err != nil { app.log.Printf("error processing SES notification: %v", err) return echo.NewHTTPError(http.StatusBadRequest, app.i18n.T("globals.messages.invalidData")) } bounces = append(bounces, b) default: return echo.NewHTTPError(http.StatusBadRequest, app.i18n.T("globals.messages.invalidData")) } // SendGrid. case service == "sendgrid" && app.constants.BounceSendgridEnabled: var ( sig = c.Request().Header.Get("X-Twilio-Email-Event-Webhook-Signature") ts = c.Request().Header.Get("X-Twilio-Email-Event-Webhook-Timestamp") ) // Sendgrid sends multiple bounces. bs, err := app.bounce.Sendgrid.ProcessBounce(sig, ts, rawReq) if err != nil { app.log.Printf("error processing sendgrid notification: %v", err) return echo.NewHTTPError(http.StatusBadRequest, app.i18n.T("globals.messages.invalidData")) } bounces = append(bounces, bs...) // Postmark. case service == "postmark" && app.constants.BouncePostmarkEnabled: bs, err := app.bounce.Postmark.ProcessBounce(rawReq, c) if err != nil { app.log.Printf("error processing postmark notification: %v", err) if _, ok := err.(*echo.HTTPError); ok { return err } return echo.NewHTTPError(http.StatusBadRequest, app.i18n.T("globals.messages.invalidData")) } bounces = append(bounces, bs...) default: return echo.NewHTTPError(http.StatusBadRequest, app.i18n.Ts("bounces.unknownService")) } // Record bounces if any. for _, b := range bounces { if err := app.bounce.Record(b); err != nil { app.log.Printf("error recording bounce: %v", err) } } return c.JSON(http.StatusOK, okResp{true}) } func validateBounceFields(b models.Bounce, app *App) (models.Bounce, error) { if b.Email == "" && b.SubscriberUUID == "" { return b, echo.NewHTTPError(http.StatusBadRequest, app.i18n.Ts("globals.messages.invalidFields", "name", "email / subscriber_uuid")) } if b.SubscriberUUID != "" && !reUUID.MatchString(b.SubscriberUUID) { return b, echo.NewHTTPError(http.StatusBadRequest, app.i18n.Ts("globals.messages.invalidFields", "name", "subscriber_uuid")) } if b.Email != "" { em, err := app.importer.SanitizeEmail(b.Email) if err != nil { return b, echo.NewHTTPError(http.StatusBadRequest, err.Error()) } b.Email = em } if b.Type != models.BounceTypeHard && b.Type != models.BounceTypeSoft && b.Type != models.BounceTypeComplaint { return b, echo.NewHTTPError(http.StatusBadRequest, app.i18n.Ts("globals.messages.invalidFields", "name", "type")) } return b, nil }