[BREAK] Validate incoming message schema

[MarcosSpessatto]

We now verify the message object, when being sent, matches our expected schema. Should it not, we throw an error.

Closes #9878
Closes #10511

[rafaelks]

ts is a String? 🤔

[rafaelks]

Isn't this one REQUIRED?

[rafaelks]

I think we can have more tests here, with lots of different variations and some fail case. Can you do that, please?

[MarcosSpessatto]

Can you see again @rafaelks ?

[rafaelks]

@MarcosSpessatto Looking great, thanks for tests. LGTM.

[rafaelks]

I approved, but I would that someone else also revised the JS code, please. @RocketChat/core

[MarcosSpessatto]

@rafaelks, can you take a look again please? I have added the same verification in chat.sendMessage too.

[graywolf336]

Instead of applying this verification to just these rest api methods, can we instead apply it to the code which these use? As these are duplicated code and too low level when we should instead be applying these at a higher level. Because with these changes, I can use the real time api and bypass the verification. Also, the webhooks would be able to bypass is verification.

[rodrigok]

@graywolf336 should he add the validation to the RocketChat.sendMessage function https://github.com/RocketChat/Rocket.Chat/blob/develop/packages/rocketchat-lib/server/functions/sendMessage.js#L3 ?

And why the webhooks should be able to bypass the verification? I don't agree with that.

[graywolf336]

Yes.

No, I'm saying with the way this pull request currently is they would be able to but my request was to not allow them to. :)

[graywolf336]

Why are we catching an error here to then throw the same error? Let's not do that. Either allow the error to be thrown or throw a customized error.

[graywolf336]

Instead of relying on underscore for this, let's just do it ourselves. :)

[graywolf336]

Can we change this to if(!message.ts) {?

[graywolf336]

As we are now going to be validating the messages and attachments, do we have some place where we document the schema in our documentation?

[MarcosSpessatto]

It seems we don't have @graywolf336, only in the endpoint docs. :(

[graywolf336]

Any recommendations for where to place it?

cc: @MartinSchoeler

[graywolf336]

Hey @MartinSchoeler, any ideas?

[graywolf336]

Let's also check the _id field, since it can be provided.

[graywolf336]

Maybe say The 'rid' property on the message object is missing.? Does that make more sense?

[graywolf336]

@RocketChat/core Thoughts on renaming this to [BREAK] prefix? As we are possibly going to be breaking people's API calls which are passing invalid data types to us.

[sampaiodiego]

@graywolf336 I agree.

[graywolf336]

Changed to [BREAK] prefix.

[graywolf336]

@ggazzo why did you change the code style from parenthesis around the arguments to not?

[ggazzo]

because we dont need ( )in this case :)

Addressed

[tbaehr]

You are breaking a lot of stuff (e.g. webhooks) by now enforcing title on attachments

Exception in callback of async function: Error: Match error: Missing key 'title' at check (/opt/Rocket.Chat/programs/server/packages/check.js:68:17) at validateAttachmentsFields (/opt/Rocket.Chat/programs/server/packages/rocketchat_lib.js:5283:3)

This is not really a good way to do so!

[graywolf336]

@tbaehr Did you open an issue so we can get this fixed?

Edit: Looks like the title property is optional due to this: https://github.com/RocketChat/Rocket.Chat/pull/9922/files#diff-b18deaa461a67499aa1867414e83204eR20

[tbaehr]

• check(attachmentFields, Match.ObjectIncluding({

•   short: Match.Maybe(Boolean),
  

•   title: String,
  

•   value: String
  

• }));

does not mean optional, but before it was not checked so it could be left out, didnt make a separate Bug

[graywolf336]

@tbaehr That is because those two properties are actually required when you are providing a field on the attachment. This is because of the way the mobile applications and everything are setup to display the attachment fields.