feat[webhook]: added generic webhook (#130)

* added logic to support generic webhooks

* fixed style of generic webhook

* fixed style of generic webhook

Author: waleedlatif1

.github/PULL_REQUEST_TEMPLATE.md

@@ -1,5 +1,3 @@
-# Pull Request Template
-
 ## Description
 
 Please include a summary of the change and which issue is fixed. Please also include relevant motivation and context.

package-lock.json

@@ -0,0 +1,5 @@
+{
+  "dependencies": {
+    "framer-motion": "^12.5.0"
+  }
+}

package.json

@@ -170,6 +170,60 @@ export async function GET(request: NextRequest) {
         })
       }
 
+      case 'generic': {
+        // Get the general webhook configuration
+        const token = providerConfig.token
+        const secretHeaderName = providerConfig.secretHeaderName
+        const requireAuth = providerConfig.requireAuth
+        const allowedIps = providerConfig.allowedIps
+
+        // Generate sample curl command for testing
+        let curlCommand = `curl -X POST "${webhookUrl}" -H "Content-Type: application/json"`
+
+        // Add auth headers to the curl command if required
+        if (requireAuth && token) {
+          if (secretHeaderName) {
+            curlCommand += ` -H "${secretHeaderName}: ${token}"`
+          } else {
+            curlCommand += ` -H "Authorization: Bearer ${token}"`
+          }
+        }
+
+        // Add a sample payload
+        curlCommand += ` -d '{"event":"test_event","timestamp":"${new Date().toISOString()}"}'`
+
+        logger.info(`[${requestId}] General webhook test successful: ${webhookId}`)
+        return NextResponse.json({
+          success: true,
+          webhook: {
+            id: foundWebhook.id,
+            url: webhookUrl,
+            isActive: foundWebhook.isActive,
+          },
+          message:
+            'General webhook configuration is valid. Use the URL and authentication details as needed.',
+          details: {
+            requireAuth: requireAuth || false,
+            hasToken: !!token,
+            hasCustomHeader: !!secretHeaderName,
+            customHeaderName: secretHeaderName,
+            hasIpRestrictions: Array.isArray(allowedIps) && allowedIps.length > 0,
+          },
+          test: {
+            curlCommand,
+            headers: requireAuth
+              ? secretHeaderName
+                ? { [secretHeaderName]: token }
+                : { Authorization: `Bearer ${token}` }
+              : {},
+            samplePayload: {
+              event: 'test_event',
+              timestamp: new Date().toISOString(),
+            },
+          },
+        })
+      }
+
       default: {
         // Generic webhook test
         logger.info(`[${requestId}] Generic webhook test successful: ${webhookId}`)

sim/app/api/webhooks/test/route.ts

@@ -13,9 +13,7 @@ import { Serializer } from '@/serializer'
 
 const logger = createLogger('WebhookTriggerAPI')
 
-// Force dynamic rendering for webhook endpoints
 export const dynamic = 'force-dynamic'
-// Increase the response size limit for webhook payloads
 export const maxDuration = 300 // 5 minutes max execution time for long-running webhooks
 
 /**
@@ -306,8 +304,58 @@ async function processWebhook(
           // Stripe verification would go here if needed
           break
 
+        case 'generic':
+          // Enhanced general webhook authentication
+          if (providerConfig.requireAuth) {
+            let isAuthenticated = false
+
+            // Check for token in Authorization header (Bearer token)
+            if (providerConfig.token) {
+              const providedToken = authHeader?.startsWith('Bearer ')
+                ? authHeader.substring(7)
+                : null
+              if (providedToken === providerConfig.token) {
+                isAuthenticated = true
+              }
+
+              // Check for token in custom header if specified
+              if (!isAuthenticated && providerConfig.secretHeaderName) {
+                const customHeaderValue = request.headers.get(providerConfig.secretHeaderName)
+                if (customHeaderValue === providerConfig.token) {
+                  isAuthenticated = true
+                }
+              }
+
+              // Return 401 if authentication failed
+              if (!isAuthenticated) {
+                logger.warn(`[${requestId}] Unauthorized webhook access attempt - invalid token`)
+                return new NextResponse('Unauthorized', { status: 401 })
+              }
+            }
+          }
+
+          // IP restriction check
+          if (
+            providerConfig.allowedIps &&
+            Array.isArray(providerConfig.allowedIps) &&
+            providerConfig.allowedIps.length > 0
+          ) {
+            const clientIp =
+              request.headers.get('x-forwarded-for')?.split(',')[0].trim() ||
+              request.headers.get('x-real-ip') ||
+              'unknown'
+
+            if (clientIp === 'unknown' || !providerConfig.allowedIps.includes(clientIp)) {
+              logger.warn(
+                `[${requestId}] Forbidden webhook access attempt - IP not allowed: ${clientIp}`
+              )
+              return new NextResponse('Forbidden - IP not allowed', { status: 403 })
+            }
+          }
+          break
+
         default:
-          // For generic webhooks, check for a token if provided in providerConfig
+          // For other generic webhooks, check for a token if provided in providerConfig
           if (providerConfig.token) {
             const providedToken = authHeader?.startsWith('Bearer ') ? authHeader.substring(7) : null
             if (!providedToken || providedToken !== providerConfig.token) {

sim/app/api/webhooks/trigger/[path]/route.ts

@@ -40,8 +40,8 @@ export const StarterBlock: BlockConfig<StarterBlockOutput> = {
       options: [
         { label: 'Generic', id: 'generic' },
         { label: 'WhatsApp', id: 'whatsapp' },
-        { label: 'GitHub', id: 'github' },
-        { label: 'Stripe', id: 'stripe' },
+        // { label: 'GitHub', id: 'github' },
+        // { label: 'Stripe', id: 'stripe' },
       ],
       value: () => 'generic',
       condition: { field: 'startWorkflow', value: 'webhook' },