grafana/pkg/services/ngalert/provisioning/compat.go

package provisioning

import (
	"strings"

	alertingModels "github.com/grafana/alerting/models"

	"github.com/grafana/grafana/pkg/components/simplejson"
	"github.com/grafana/grafana/pkg/services/ngalert/api/tooling/definitions"
	"github.com/grafana/grafana/pkg/services/ngalert/models"
)

func EmbeddedContactPointToGrafanaIntegrationConfig(e definitions.EmbeddedContactPoint) (alertingModels.IntegrationConfig, error) {
	data, err := e.Settings.MarshalJSON()
	if err != nil {
		return alertingModels.IntegrationConfig{}, err
	}
	return alertingModels.IntegrationConfig{
		UID:                   e.UID,
		Name:                  e.Name,
		Type:                  e.Type,
		DisableResolveMessage: e.DisableResolveMessage,
		Settings:              data,
		SecureSettings:        nil,
	}, nil
}

func PostableGrafanaReceiverToEmbeddedContactPoint(contactPoint *definitions.PostableGrafanaReceiver, provenance models.Provenance, decryptValue func(string) string) (definitions.EmbeddedContactPoint, error) {
	simpleJson, err := simplejson.NewJson(contactPoint.Settings)
	if err != nil {
		return definitions.EmbeddedContactPoint{}, err
	}
	embeddedContactPoint := definitions.EmbeddedContactPoint{
		UID:                   contactPoint.UID,
		Type:                  contactPoint.Type,
		Name:                  contactPoint.Name,
		DisableResolveMessage: contactPoint.DisableResolveMessage,
		Settings:              simpleJson,
		Provenance:            string(provenance),
	}
	for k, v := range contactPoint.SecureSettings {
		decryptedValue := decryptValue(v)
		if decryptedValue == "" {
			continue
		}
		embeddedContactPoint.Settings.SetPath(strings.Split(k, "."), decryptedValue)
	}
	return embeddedContactPoint, nil
}

func GrafanaIntegrationConfigToEmbeddedContactPoint(r *models.Integration, provenance models.Provenance) definitions.EmbeddedContactPoint {
	settingJson := simplejson.New()
	if r.Settings != nil {
		settingJson = simplejson.NewFromAny(r.Settings)
	}

	// We explicitly do not copy the secure settings to the settings field. This is because the provisioning API
	// never returns decrypted or encrypted values, only redacted values. Redacted values should already exist in the
	// settings field.

	return definitions.EmbeddedContactPoint{
		UID:                   r.UID,
		Name:                  r.Name,
		Type:                  string(r.Config.Type()),
		DisableResolveMessage: r.DisableResolveMessage,
		Settings:              settingJson,
		Provenance:            string(provenance),
	}
}
Alerting: Update alerting module to 20230418161049-5f374e58cb32 + refactoring (#66622) * update to alerting 20230418161049-5f374e58cb32 * rename renamed structs in https://github.com/grafana/alerting/pull/73 * update ValidateContactPoint to use BuildReceiverConfiguration * update logger factory according to changes * rewrite integration builder Co-authored-by: Santiago <santiagohernandez.1997@gmail.com> 2023-04-26 01:39:46 +08:00			`package provisioning`

			`import (`
Alerting: Support secrets in contact points nested fields (#92035) Back-end: * update alerting module * update GetSecretKeysForContactPointType to extract secret fields from nested options * Update RemoveSecretsForContactPoint to support complex settings * update PostableGrafanaReceiverToEmbeddedContactPoint to support nested secrets * update Integration to support nested settings in models.Integration * make sigv4 fields optional Front-end: * add UI support for encrypted subform fields * allow emptying nested secure fields * Omit non touched secure fields in POST payload when saving a contact point * Use SecretInput from grafana-ui instead of the new EncryptedInput * use produce from immer * rename mapClone * rename sliceClone * Don't use produce from immer as we need to delete the fileds afterwards --------- Co-authored-by: Gilles De Mey <gilles.de.mey@gmail.com> Co-authored-by: Sonia Aguilar <soniaaguilarpeiron@gmail.com> Co-authored-by: Matt Jacobson <matthew.jacobson@grafana.com> 2024-09-11 10:26:23 +08:00			`"strings"`

Alerting: Update alerting module + refactor (#111761) * update alerting module * replace compat with ones from alerting * update type references Receiver and Integration to Status update route in provisioning test that is invalid after recent change * use right type for LINE ingtegration 2025-10-03 22:37:49 +08:00			`alertingModels "github.com/grafana/alerting/models"`
Alerting: Update alerting module to 20230418161049-5f374e58cb32 + refactoring (#66622) * update to alerting 20230418161049-5f374e58cb32 * rename renamed structs in https://github.com/grafana/alerting/pull/73 * update ValidateContactPoint to use BuildReceiverConfiguration * update logger factory according to changes * rewrite integration builder Co-authored-by: Santiago <santiagohernandez.1997@gmail.com> 2023-04-26 01:39:46 +08:00
Add compat function for notify.GrafanaIntegrationConfig to EmbeddedContactPoint (#75995) Co-authored-by: Matthew Jacobson <matthew.jacobson@grafana.com> 2023-10-06 04:13:34 +08:00			`"github.com/grafana/grafana/pkg/components/simplejson"`
Alerting: Update alerting module to 20230418161049-5f374e58cb32 + refactoring (#66622) * update to alerting 20230418161049-5f374e58cb32 * rename renamed structs in https://github.com/grafana/alerting/pull/73 * update ValidateContactPoint to use BuildReceiverConfiguration * update logger factory according to changes * rewrite integration builder Co-authored-by: Santiago <santiagohernandez.1997@gmail.com> 2023-04-26 01:39:46 +08:00			`"github.com/grafana/grafana/pkg/services/ngalert/api/tooling/definitions"`
Add compat function for notify.GrafanaIntegrationConfig to EmbeddedContactPoint (#75995) Co-authored-by: Matthew Jacobson <matthew.jacobson@grafana.com> 2023-10-06 04:13:34 +08:00			`"github.com/grafana/grafana/pkg/services/ngalert/models"`
Alerting: Update alerting module to 20230418161049-5f374e58cb32 + refactoring (#66622) * update to alerting 20230418161049-5f374e58cb32 * rename renamed structs in https://github.com/grafana/alerting/pull/73 * update ValidateContactPoint to use BuildReceiverConfiguration * update logger factory according to changes * rewrite integration builder Co-authored-by: Santiago <santiagohernandez.1997@gmail.com> 2023-04-26 01:39:46 +08:00			`)`

Alerting: Update alerting module + refactor (#111761) * update alerting module * replace compat with ones from alerting * update type references Receiver and Integration to Status update route in provisioning test that is invalid after recent change * use right type for LINE ingtegration 2025-10-03 22:37:49 +08:00			`func EmbeddedContactPointToGrafanaIntegrationConfig(e definitions.EmbeddedContactPoint) (alertingModels.IntegrationConfig, error) {`
Alerting: Update alerting module to 20230418161049-5f374e58cb32 + refactoring (#66622) * update to alerting 20230418161049-5f374e58cb32 * rename renamed structs in https://github.com/grafana/alerting/pull/73 * update ValidateContactPoint to use BuildReceiverConfiguration * update logger factory according to changes * rewrite integration builder Co-authored-by: Santiago <santiagohernandez.1997@gmail.com> 2023-04-26 01:39:46 +08:00			`data, err := e.Settings.MarshalJSON()`
			`if err != nil {`
Alerting: Update alerting module + refactor (#111761) * update alerting module * replace compat with ones from alerting * update type references Receiver and Integration to Status update route in provisioning test that is invalid after recent change * use right type for LINE ingtegration 2025-10-03 22:37:49 +08:00			`return alertingModels.IntegrationConfig{}, err`
Alerting: Update alerting module to 20230418161049-5f374e58cb32 + refactoring (#66622) * update to alerting 20230418161049-5f374e58cb32 * rename renamed structs in https://github.com/grafana/alerting/pull/73 * update ValidateContactPoint to use BuildReceiverConfiguration * update logger factory according to changes * rewrite integration builder Co-authored-by: Santiago <santiagohernandez.1997@gmail.com> 2023-04-26 01:39:46 +08:00			`}`
Alerting: Update alerting module + refactor (#111761) * update alerting module * replace compat with ones from alerting * update type references Receiver and Integration to Status update route in provisioning test that is invalid after recent change * use right type for LINE ingtegration 2025-10-03 22:37:49 +08:00			`return alertingModels.IntegrationConfig{`
Alerting: Update alerting module to 20230418161049-5f374e58cb32 + refactoring (#66622) * update to alerting 20230418161049-5f374e58cb32 * rename renamed structs in https://github.com/grafana/alerting/pull/73 * update ValidateContactPoint to use BuildReceiverConfiguration * update logger factory according to changes * rewrite integration builder Co-authored-by: Santiago <santiagohernandez.1997@gmail.com> 2023-04-26 01:39:46 +08:00			`UID: e.UID,`
			`Name: e.Name,`
			`Type: e.Type,`
			`DisableResolveMessage: e.DisableResolveMessage,`
			`Settings: data,`
			`SecureSettings: nil,`
			`}, nil`
			`}`
Add compat function for notify.GrafanaIntegrationConfig to EmbeddedContactPoint (#75995) Co-authored-by: Matthew Jacobson <matthew.jacobson@grafana.com> 2023-10-06 04:13:34 +08:00
			`func PostableGrafanaReceiverToEmbeddedContactPoint(contactPoint *definitions.PostableGrafanaReceiver, provenance models.Provenance, decryptValue func(string) string) (definitions.EmbeddedContactPoint, error) {`
			`simpleJson, err := simplejson.NewJson(contactPoint.Settings)`
			`if err != nil {`
			`return definitions.EmbeddedContactPoint{}, err`
			`}`
			`embeddedContactPoint := definitions.EmbeddedContactPoint{`
			`UID: contactPoint.UID,`
			`Type: contactPoint.Type,`
			`Name: contactPoint.Name,`
			`DisableResolveMessage: contactPoint.DisableResolveMessage,`
			`Settings: simpleJson,`
			`Provenance: string(provenance),`
			`}`
			`for k, v := range contactPoint.SecureSettings {`
			`decryptedValue := decryptValue(v)`
			`if decryptedValue == "" {`
			`continue`
			`}`
Alerting: Support secrets in contact points nested fields (#92035) Back-end: * update alerting module * update GetSecretKeysForContactPointType to extract secret fields from nested options * Update RemoveSecretsForContactPoint to support complex settings * update PostableGrafanaReceiverToEmbeddedContactPoint to support nested secrets * update Integration to support nested settings in models.Integration * make sigv4 fields optional Front-end: * add UI support for encrypted subform fields * allow emptying nested secure fields * Omit non touched secure fields in POST payload when saving a contact point * Use SecretInput from grafana-ui instead of the new EncryptedInput * use produce from immer * rename mapClone * rename sliceClone * Don't use produce from immer as we need to delete the fileds afterwards --------- Co-authored-by: Gilles De Mey <gilles.de.mey@gmail.com> Co-authored-by: Sonia Aguilar <soniaaguilarpeiron@gmail.com> Co-authored-by: Matt Jacobson <matthew.jacobson@grafana.com> 2024-09-11 10:26:23 +08:00			`embeddedContactPoint.Settings.SetPath(strings.Split(k, "."), decryptedValue)`
Add compat function for notify.GrafanaIntegrationConfig to EmbeddedContactPoint (#75995) Co-authored-by: Matthew Jacobson <matthew.jacobson@grafana.com> 2023-10-06 04:13:34 +08:00			`}`
			`return embeddedContactPoint, nil`
			`}`
Alerting: Introduce initial common receiver service (#81211) * Create locking config store that mimics existing provisioning store * Rename existing receivers(_test).go * Introduce shared receiver group service * Fix test * Move query model to models package * ReceiverGroup -> Receiver * Remove locking config store * Move convert methods to compat.go * Cleanup 2024-02-02 03:42:59 +08:00
Alerting: Receiver API complete core implementation (#91738) * Replace global authz abstraction with one compatible with uid scope * Replace GettableApiReceiver with models.Receiver in receiver_svc * GrafanaIntegrationConfig -> models.Integration * Implement Create/Update methods * Add optimistic concurrency to receiver API * Add scope to ReceiversRead & ReceiversReadSecrets migrates existing permissions to include implicit global scope * Add receiver create, update, delete actions * Check if receiver is used by rules before delete * On receiver name change update in routes and notification settings * Improve errors * Linting * Include read permissions are requirements for create/update/delete * Alias ngalert/models to ngmodels to differentiate from v0alpha1 model * Ensure integration UIDs are valid, unique, and generated if empty * Validate integration settings on create/update * Leverage UidToName to GetReceiver instead of GetReceivers * Remove some unnecessary uses of simplejson * alerting.notifications.receiver -> alerting.notifications.receivers * validator -> provenanceValidator * Only validate the modified receiver stops existing invalid receivers from preventing modification of a valid receiver. * Improve error in Integration.Encrypt * Remove scope from alert.notifications.receivers:create * Add todos for receiver renaming * Use receiverAC precondition checks in k8s api * Linting * Optional optimistic concurrency for delete * make update-workspace * More specific auth checks in k8s authorize.go * Add debug log when delete optimistic concurrency is skipped * Improve error message on authorizer.DecisionDeny * Keep error for non-forbidden errutil errors 2024-08-26 22:47:53 +08:00			`func GrafanaIntegrationConfigToEmbeddedContactPoint(r *models.Integration, provenance models.Provenance) definitions.EmbeddedContactPoint {`
Alerting: Fix contact point export 500 error and notifications/receivers missing settings (#90342) * Regression test * Fix 500 error when exporting redacted receivers * Fix tests to check permissions 2024-07-12 23:42:22 +08:00			`settingJson := simplejson.New()`
			`if r.Settings != nil {`
Alerting: Receiver API complete core implementation (#91738) * Replace global authz abstraction with one compatible with uid scope * Replace GettableApiReceiver with models.Receiver in receiver_svc * GrafanaIntegrationConfig -> models.Integration * Implement Create/Update methods * Add optimistic concurrency to receiver API * Add scope to ReceiversRead & ReceiversReadSecrets migrates existing permissions to include implicit global scope * Add receiver create, update, delete actions * Check if receiver is used by rules before delete * On receiver name change update in routes and notification settings * Improve errors * Linting * Include read permissions are requirements for create/update/delete * Alias ngalert/models to ngmodels to differentiate from v0alpha1 model * Ensure integration UIDs are valid, unique, and generated if empty * Validate integration settings on create/update * Leverage UidToName to GetReceiver instead of GetReceivers * Remove some unnecessary uses of simplejson * alerting.notifications.receiver -> alerting.notifications.receivers * validator -> provenanceValidator * Only validate the modified receiver stops existing invalid receivers from preventing modification of a valid receiver. * Improve error in Integration.Encrypt * Remove scope from alert.notifications.receivers:create * Add todos for receiver renaming * Use receiverAC precondition checks in k8s api * Linting * Optional optimistic concurrency for delete * make update-workspace * More specific auth checks in k8s authorize.go * Add debug log when delete optimistic concurrency is skipped * Improve error message on authorizer.DecisionDeny * Keep error for non-forbidden errutil errors 2024-08-26 22:47:53 +08:00			`settingJson = simplejson.NewFromAny(r.Settings)`
Alerting: Introduce initial common receiver service (#81211) * Create locking config store that mimics existing provisioning store * Rename existing receivers(_test).go * Introduce shared receiver group service * Fix test * Move query model to models package * ReceiverGroup -> Receiver * Remove locking config store * Move convert methods to compat.go * Cleanup 2024-02-02 03:42:59 +08:00			`}`

Alerting: Receiver API complete core implementation (#91738) * Replace global authz abstraction with one compatible with uid scope * Replace GettableApiReceiver with models.Receiver in receiver_svc * GrafanaIntegrationConfig -> models.Integration * Implement Create/Update methods * Add optimistic concurrency to receiver API * Add scope to ReceiversRead & ReceiversReadSecrets migrates existing permissions to include implicit global scope * Add receiver create, update, delete actions * Check if receiver is used by rules before delete * On receiver name change update in routes and notification settings * Improve errors * Linting * Include read permissions are requirements for create/update/delete * Alias ngalert/models to ngmodels to differentiate from v0alpha1 model * Ensure integration UIDs are valid, unique, and generated if empty * Validate integration settings on create/update * Leverage UidToName to GetReceiver instead of GetReceivers * Remove some unnecessary uses of simplejson * alerting.notifications.receiver -> alerting.notifications.receivers * validator -> provenanceValidator * Only validate the modified receiver stops existing invalid receivers from preventing modification of a valid receiver. * Improve error in Integration.Encrypt * Remove scope from alert.notifications.receivers:create * Add todos for receiver renaming * Use receiverAC precondition checks in k8s api * Linting * Optional optimistic concurrency for delete * make update-workspace * More specific auth checks in k8s authorize.go * Add debug log when delete optimistic concurrency is skipped * Improve error message on authorizer.DecisionDeny * Keep error for non-forbidden errutil errors 2024-08-26 22:47:53 +08:00			`// We explicitly do not copy the secure settings to the settings field. This is because the provisioning API`
			`// never returns decrypted or encrypted values, only redacted values. Redacted values should already exist in the`
			`// settings field.`
Alerting: Introduce initial common receiver service (#81211) * Create locking config store that mimics existing provisioning store * Rename existing receivers(_test).go * Introduce shared receiver group service * Fix test * Move query model to models package * ReceiverGroup -> Receiver * Remove locking config store * Move convert methods to compat.go * Cleanup 2024-02-02 03:42:59 +08:00
			`return definitions.EmbeddedContactPoint{`
			`UID: r.UID,`
			`Name: r.Name,`
Alerting: Replace IntegrationConfig with IntegrationSchemaVersion (#112010) * remove unused compat functions * update to alerting module from pr * replace IntegrationConfig with IntegrationSchemaVersion * safely resolve a string into integration type * change usages of integration config 2025-10-07 23:08:16 +08:00			`Type: string(r.Config.Type()),`
Alerting: Introduce initial common receiver service (#81211) * Create locking config store that mimics existing provisioning store * Rename existing receivers(_test).go * Introduce shared receiver group service * Fix test * Move query model to models package * ReceiverGroup -> Receiver * Remove locking config store * Move convert methods to compat.go * Cleanup 2024-02-02 03:42:59 +08:00			`DisableResolveMessage: r.DisableResolveMessage,`
			`Settings: settingJson,`
Alerting: Receiver API complete core implementation (#91738) * Replace global authz abstraction with one compatible with uid scope * Replace GettableApiReceiver with models.Receiver in receiver_svc * GrafanaIntegrationConfig -> models.Integration * Implement Create/Update methods * Add optimistic concurrency to receiver API * Add scope to ReceiversRead & ReceiversReadSecrets migrates existing permissions to include implicit global scope * Add receiver create, update, delete actions * Check if receiver is used by rules before delete * On receiver name change update in routes and notification settings * Improve errors * Linting * Include read permissions are requirements for create/update/delete * Alias ngalert/models to ngmodels to differentiate from v0alpha1 model * Ensure integration UIDs are valid, unique, and generated if empty * Validate integration settings on create/update * Leverage UidToName to GetReceiver instead of GetReceivers * Remove some unnecessary uses of simplejson * alerting.notifications.receiver -> alerting.notifications.receivers * validator -> provenanceValidator * Only validate the modified receiver stops existing invalid receivers from preventing modification of a valid receiver. * Improve error in Integration.Encrypt * Remove scope from alert.notifications.receivers:create * Add todos for receiver renaming * Use receiverAC precondition checks in k8s api * Linting * Optional optimistic concurrency for delete * make update-workspace * More specific auth checks in k8s authorize.go * Add debug log when delete optimistic concurrency is skipped * Improve error message on authorizer.DecisionDeny * Keep error for non-forbidden errutil errors 2024-08-26 22:47:53 +08:00			`Provenance: string(provenance),`
			`}`
Alerting: Introduce initial common receiver service (#81211) * Create locking config store that mimics existing provisioning store * Rename existing receivers(_test).go * Introduce shared receiver group service * Fix test * Move query model to models package * ReceiverGroup -> Receiver * Remove locking config store * Move convert methods to compat.go * Cleanup 2024-02-02 03:42:59 +08:00			`}`