vvalorous · October 2, 2018 03:47
diff --git a/lambda_function.py b/lambda_function.py
 '''
 This function handles a Slack slash command and echoes the details back to the user.

 Follow these steps to configure the slash command in Slack:

  1. Navigate to https://<your-team-domain>.slack.com/services/new

  2. Search for and select "Slash Commands".

  3. Enter a name for your command and click "Add Slash Command Integration".

  4. Copy the token string from the integration settings and use it in the next section.

  5. After you complete this blueprint, enter the provided API endpoint URL in the URL field.


 To encrypt your secrets use the following steps:

  1. Create or use an existing KMS Key - http://docs.aws.amazon.com/kms/latest/developerguide/create-keys.html

  2. Click the "Enable Encryption Helpers" checkbox

  3. Paste <COMMAND_TOKEN> into the kmsEncryptedToken environment variable and click encrypt


 Follow these steps to complete the configuration of your command API endpoint

  1. When completing the blueprint configuration select "Open" for security
     on the "Configure triggers" page.

  2. Enter a name for your execution role in the "Role name" field.
     Your function's execution role needs kms:Decrypt permissions. We have
     pre-selected the "KMS decryption permissions" policy template that will
     automatically add these permissions.

  3. Update the URL for your Slack slash command with the invocation URL for the
     created API resource in the prod stage.
 '''

 import boto3
 import json
 import logging
 import os

 from base64 import b64decode
 from urllib.parse import parse_qs


 ENCRYPTED_EXPECTED_TOKEN = os.environ['kmsEncryptedToken']

 kms = boto3.client('kms')
 expected_token = kms.decrypt(CiphertextBlob=b64decode(ENCRYPTED_EXPECTED_TOKEN))['Plaintext'].decode('utf-8')

 logger = logging.getLogger()
 logger.setLevel(logging.INFO)


 def respond(err, res=None):
    return {
        'statusCode': '400' if err else '200',
        'body': str(err) if err else json.dumps(res),
        'headers': {
            'Content-Type': 'application/json',
        },
    }


 def lambda_handler(event, context):
    params = parse_qs(event['body'])
    token = params['token'][0]
    if token != expected_token:
        logger.error("Request token (%s) does not match expected ", token)
        return respond(Exception('Invalid request token'))

    user = params['user_name'][0]
    command = params['command'][0]
    channel = params['channel_name'][0]
    command_text = params.get('text', [None])[0]
    
    logger.info("OK")

    return respond(None, "%s invoked %s in %s with the following text: %s" % (user, command, channel, command_text))
	'''
	This function handles a Slack slash command and echoes the details back to the user.

	Follow these steps to configure the slash command in Slack:

	1. Navigate to https://<your-team-domain>.slack.com/services/new

	2. Search for and select "Slash Commands".

	3. Enter a name for your command and click "Add Slash Command Integration".

	4. Copy the token string from the integration settings and use it in the next section.

	5. After you complete this blueprint, enter the provided API endpoint URL in the URL field.


	To encrypt your secrets use the following steps:

	1. Create or use an existing KMS Key - http://docs.aws.amazon.com/kms/latest/developerguide/create-keys.html

	2. Click the "Enable Encryption Helpers" checkbox

	3. Paste <COMMAND_TOKEN> into the kmsEncryptedToken environment variable and click encrypt


	Follow these steps to complete the configuration of your command API endpoint

	1. When completing the blueprint configuration select "Open" for security
	on the "Configure triggers" page.

	2. Enter a name for your execution role in the "Role name" field.
	Your function's execution role needs kms:Decrypt permissions. We have
	pre-selected the "KMS decryption permissions" policy template that will
	automatically add these permissions.

	3. Update the URL for your Slack slash command with the invocation URL for the
	created API resource in the prod stage.
	'''

	import boto3
	import json
	import logging
	import os

	from base64 import b64decode
	from urllib.parse import parse_qs


	ENCRYPTED_EXPECTED_TOKEN = os.environ['kmsEncryptedToken']

	kms = boto3.client('kms')
	expected_token = kms.decrypt(CiphertextBlob=b64decode(ENCRYPTED_EXPECTED_TOKEN))['Plaintext'].decode('utf-8')

	logger = logging.getLogger()
	logger.setLevel(logging.INFO)


	def respond(err, res=None):
	return {
	'statusCode': '400' if err else '200',
	'body': str(err) if err else json.dumps(res),
	'headers': {
	'Content-Type': 'application/json',
	},
	}


	def lambda_handler(event, context):
	params = parse_qs(event['body'])
	token = params['token'][0]
	if token != expected_token:
	logger.error("Request token (%s) does not match expected ", token)
	return respond(Exception('Invalid request token'))

	user = params['user_name'][0]
	command = params['command'][0]
	channel = params['channel_name'][0]
	command_text = params.get('text', [None])[0]

	logger.info("OK")

	return respond(None, "%s invoked %s in %s with the following text: %s" % (user, command, channel, command_text))