Add request validation to TaskHandler

Author: marickvantuil

src/TaskHandler.php

@@ -9,6 +9,8 @@
 use Illuminate\Queue\Jobs\Job;
 use Illuminate\Queue\WorkerOptions;
 use Illuminate\Support\Str;
+use Illuminate\Validation\ValidationException;
+use Safe\Exceptions\JsonException;
 use stdClass;
 use UnexpectedValueException;
 use function Safe\json_decode;
@@ -40,9 +42,9 @@ public function __construct(CloudTasksClient $client)
         $this->client = $client;
     }
 
-    public function handle(?array $task = null): void
+    public function handle(?string $task = null): void
     {
-        $task = $task ?: $this->captureTask();
+        $task = $this->captureTask($task);
 
         $this->loadQueueConnectionConfiguration($task);
 
@@ -53,6 +55,47 @@ public function handle(?array $task = null): void
         $this->handleTask($task);
     }
 
+    /**
+     * @param string|array|null $task
+     * @return array
+     * @throws JsonException
+     */
+    private function captureTask($task): array
+    {
+        $task = $task ?: (string) (request()->getContent());
+
+        try {
+            $array = json_decode($task, true);
+        } catch (JsonException $e) {
+            $array = [];
+        }
+
+        $validator = validator([
+            'json' => $task,
+            'task' => $array,
+            'name_header' => request()->header('X-CloudTasks-Taskname'),
+            'retry_count_header' => request()->header('X-CloudTasks-TaskRetryCount'),
+        ], [
+            'json' => 'required|json',
+            'task' => 'required|array',
+            'task.data' => 'required|array',
+            'name_header' => 'required|string',
+            'retry_count_header' => 'required|numeric',
+        ]);
+
+        try {
+            $validator->validate();
+        } catch (ValidationException $e) {
+            if (config('app.debug')) {
+                throw $e;
+            } else {
+                abort(404);
+            }
+        }
+
+        return json_decode($task, true);
+    }
+
     private function loadQueueConnectionConfiguration(array $task): void
     {
         /**
@@ -71,26 +114,6 @@ private function setQueue(): void
         $this->queue = new CloudTasksQueue($this->config, $this->client);
     }
 
-    /**
-     * @throws CloudTasksException
-     */
-    private function captureTask(): array
-    {
-        $input = (string) (request()->getContent());
-
-        if (!$input) {
-            throw new CloudTasksException('Could not read incoming task');
-        }
-
-        $task = json_decode($input, true);
-
-        if (!is_array($task)) {
-            throw new CloudTasksException('Could not decode incoming task');
-        }
-
-        return $task;
-    }
-
     private function handleTask(array $task): void
     {
         $job = new CloudTasksJob($task, $this->queue);

tests/CloudTasksDashboardTest.php

@@ -259,7 +259,7 @@ public function when_a_job_is_dispatched_it_will_be_added_to_the_dashboard()
             'name' => SimpleJob::class,
         ]);
         $payload = \Safe\json_decode($task->getMetadata()['payload'], true);
-        $this->assertSame($payload, $job->payload);
+        $this->assertSame($payload, $job->payloadAsArray);
     }
 
     /**

tests/TaskHandlerTest.php

@@ -9,11 +9,14 @@
 use Illuminate\Queue\Events\JobProcessing;
 use Illuminate\Support\Facades\Event;
 use Illuminate\Support\Facades\Log;
+use Illuminate\Validation\ValidationException;
 use Stackkit\LaravelGoogleCloudTasksQueue\CloudTasksApi;
 use Stackkit\LaravelGoogleCloudTasksQueue\CloudTasksException;
 use Stackkit\LaravelGoogleCloudTasksQueue\LogFake;
 use Stackkit\LaravelGoogleCloudTasksQueue\OpenIdVerificator;
 use Stackkit\LaravelGoogleCloudTasksQueue\StackkitCloudTask;
+use Stackkit\LaravelGoogleCloudTasksQueue\TaskHandler;
+use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
 use Tests\Support\EncryptedJob;
 use Tests\Support\FailingJob;
 use Tests\Support\SimpleJob;
@@ -28,6 +31,118 @@ protected function setUp(): void
         CloudTasksApi::fake();
     }
 
+    /**
+     * @test
+     * @testWith [true]
+     *           [false]
+     */
+    public function it_returns_responses_for_empty_payloads($debug)
+    {
+        // Arrange
+        config()->set('app.debug', $debug);
+
+        // Act
+        $response = $this->postJson(action([TaskHandler::class, 'handle']));
+
+        // Assert
+        if ($debug) {
+            $response->assertJsonValidationErrorFor('task');
+        } else {
+            $response->assertNotFound();
+        }
+    }
+
+    /**
+     * @test
+     * @testWith [true]
+     *           [false]
+     */
+    public function it_returns_responses_for_invalid_json($debug)
+    {
+        // Arrange
+        config()->set('app.debug', $debug);
+
+        // Act
+        $response = $this->call(
+            'POST',
+            action([TaskHandler::class, 'handle']),
+            [],
+            [],
+            [],
+            [
+                'HTTP_ACCEPT' => 'application/json',
+            ],
+            'test',
+        );
+
+        // Assert
+        if ($debug) {
+            $response->assertJsonValidationErrorFor('task');
+            $this->assertEquals('The json must be a valid JSON string.', $response->json('errors.json.0'));
+        } else {
+            $response->assertNotFound();
+        }
+    }
+
+    /**
+     * @test
+     * @testWith ["{\"invalid\": \"data\"}", "The task.data field is required."]
+     *           ["{\"data\": \"\"}", "The task.data field is required."]
+     *           ["{\"data\": \"test\"}", "The task.data must be an array."]
+     */
+    public function it_returns_responses_for_invalid_payloads(string $payload, string $expectedMessage)
+    {
+        // Arrange
+
+        // Act
+        $response = $this->call(
+            'POST',
+            action([TaskHandler::class, 'handle']),
+            [],
+            [],
+            [],
+            [
+                'HTTP_ACCEPT' => 'application/json',
+            ],
+            $payload,
+        );
+
+        // Assert
+        $response->assertJsonValidationErrorFor('task.data');
+        $this->assertEquals($expectedMessage, $response->json(['errors', 'task.data', 0]));
+    }
+
+    /**
+     * @test
+     * @testWith [true]
+     *           [false]
+     */
+    public function it_validates_headers(bool $withHeaders)
+    {
+        // Arrange
+        $this->withExceptionHandling();
+
+        // Act
+        $response = $this->postJson(
+            action([TaskHandler::class, 'handle']),
+            [],
+            $withHeaders
+                ? [
+                    'X-CloudTasks-Taskname' => 'MyTask',
+                    'X-CloudTasks-TaskRetryCount' => 0,
+                ] : []
+        );
+
+        // Assert
+        if ($withHeaders) {
+            $response->assertJsonMissingValidationErrors('name_header');
+            $response->assertJsonMissingValidationErrors('retry_count_header');
+        } else {
+            $response->assertJsonValidationErrors('name_header');
+            $response->assertJsonValidationErrors('retry_count_header');
+        }
+    }
+
     /**
      * @test
      */
@@ -245,7 +360,7 @@ public function test_max_attempts_in_combination_with_retry_until()
         $job->run();
 
         # After 2 attempts both Laravel versions should report the same: 2 errors and 0 failures.
-        $task = StackkitCloudTask::whereTaskUuid($job->payload['uuid'])->firstOrFail();
+        $task = StackkitCloudTask::whereTaskUuid($job->payloadAsArray['uuid'])->firstOrFail();
         $this->assertEquals(2, $task->getNumberOfAttempts());
         $this->assertEquals('error', $task->status);
 
@@ -288,7 +403,7 @@ public function it_can_handle_encrypted_jobs()
         // Assert
         $this->assertStringContainsString(
             'O:26:"Tests\Support\EncryptedJob"',
-            decrypt($job->payload['data']['command']),
+            decrypt($job->payloadAsArray['data']['command']),
         );
 
         Log::assertLogged('EncryptedJob:success');

tests/TestCase.php

@@ -116,43 +116,48 @@ protected function setConfigValue($key, $value)
     public function dispatch($job)
     {
         $payload = null;
+        $payloadAsArray = [];
         $task = null;
 
-        Event::listen(TaskCreated::class, function (TaskCreated $event) use (&$payload, &$task) {
-            $payload = json_decode($event->task->getHttpRequest()->getBody(), true);
+        Event::listen(TaskCreated::class, function (TaskCreated $event) use (&$payload, &$payloadAsArray, &$task) {
+            $payload = $event->task->getHttpRequest()->getBody();
+            $payloadAsArray = json_decode($payload, true);
             $task = $event->task;
 
             request()->headers->set('X-Cloudtasks-Taskname', $task->getName());
         });
 
         dispatch($job);
 
-        return new class($payload, $task) {
-            public array $payload = [];
+        return new class($payload, $payloadAsArray, $task) {
+            public string $payload;
+            public array $payloadAsArray;
             public Task $task;
 
-            public function __construct(array $payload, Task $task)
+            public function __construct(string $payload, array $payloadAsArray, Task $task)
             {
                 $this->payload = $payload;
+                $this->payloadAsArray = $payloadAsArray;
                 $this->task = $task;
             }
 
             public function run(): void
             {
+                $taskRetryCount = request()->header('X-CloudTasks-TaskRetryCount', -1);
+                request()->headers->set('X-CloudTasks-TaskRetryCount', $taskRetryCount + 1);
+
                 rescue(function (): void {
                     app(TaskHandler::class)->handle($this->payload);
                 });
-
-                $taskRetryCount = request()->header('X-CloudTasks-TaskRetryCount', 0);
-                request()->headers->set('X-CloudTasks-TaskRetryCount', $taskRetryCount + 1);
             }
 
             public function runWithoutExceptionHandler(): void
             {
+                $taskRetryCount = request()->header('X-CloudTasks-TaskRetryCount', -1);
+                request()->headers->set('X-CloudTasks-TaskRetryCount', $taskRetryCount + 1);
+
                 app(TaskHandler::class)->handle($this->payload);
 
-                $taskRetryCount = request()->header('X-CloudTasks-TaskRetryCount', 0);
-                request()->headers->set('X-CloudTasks-TaskRetryCount', $taskRetryCount + 1);
             }
         };
     }