getsentry · mitsuhiko · Nov 19, 2016 · Feb 16, 2017 · Feb 17, 2017
diff --git a/src/sentry/http.py b/src/sentry/http.py
@@ -118,15 +118,16 @@ def build_session():
 
 def safe_urlopen(url, method=None, params=None, data=None, json=None,
                  headers=None, allow_redirects=False, timeout=30,
-                 verify_ssl=True, user_agent=None):
+                 verify_ssl=True, user_agent=None, session=None):
     """
     A slightly safer version of ``urlib2.urlopen`` which prevents redirection
     and ensures the URL isn't attempting to hit a blacklisted IP range.
     """
     if user_agent is not None:
         warnings.warn('user_agent is no longer used with safe_urlopen')
 
-    session = build_session()
+    if session is None:
+        session = build_session()
 
     kwargs = {}
 

@@ -0,0 +1,215 @@
+from __future__ import absolute_import
+
+import re
+from six.moves.urllib.parse import urljoin
+
+from requests.utils import dict_from_cookiejar, add_dict_to_cookiejar
+
+from sentry.http import safe_urlopen, build_session
+
+
+BASE_URL = 'https://itunesconnect.apple.com/'
+API_BASE = urljoin(BASE_URL, 'WebObjects/iTunesConnect.woa/')
+LOGIN_URL = 'https://idmsa.apple.com/appleauth/auth/signin'
+ISK_JS_URL = urljoin(BASE_URL, 'itc/static-resources/controllers/login_cntrl.js')
+
+_isk_re = re.compile(r'itcServiceKey\s+=\s+["\'](.*)["\']')
+
+
+class ItcError(Exception):
+    pass
+
+
+class Itc(object):
+
+    def __init__(self, email=None, password=None):
+        self._session = build_session()
+        self._service_key = None
+        self._user_details = None
+        self._current_team = None
+
+        if email is not None:
+            login_url = '%s?widgetKey=%s' % (
+                LOGIN_URL,
+                self._get_service_key(),
+            )
+            rv = safe_urlopen(login_url, method='POST', json={
+                'accountName': email,
+                'password': password,
+                'rememberMe': False,
+            }, session=self._session)
+            rv.raise_for_status()
+
+            # This is necessary because it sets some further cookies
+            rv = safe_urlopen(API_BASE, method='GET', session=self._session)
+            rv.raise_for_status()
+
+    @classmethod
+    def from_json(cls, data):
+        """Creates an Itc object from json."""
+        rv = cls()
+
+        val = data.get('user_details')
+        if val is not None:
+            rv._user_details = val
+
+        val = data.get('service_key')
+        if val is not None:
+            rv._service_key = val
+
+        val = data.get('cookies')
+        if val:
+            add_dict_to_cookiejar(rv._session.cookies, val)
+
+        return rv
+
+    def to_json(self, ensure_user_details=True):
+        """Converts an ITC into a JSON object for caching."""
+        if ensure_user_details:
+            self.get_user_details()
+        return {
+            'user_details': self._user_details,
+            'service_key': self._service_key,
+            'cookies': dict_from_cookiejar(self._session.cookies),
+        }
+
+    def get_user_details(self):
+        """Returns the user details.  If they were not loaded yet this
+        triggers a refresh.
+        """
+        if self._user_details is None:
+            self.refresh_user_details()
+        return self._user_details
+
+    def refresh_user_details(self):
+        """Refreshes the user details."""
+        rv = safe_urlopen(urljoin(API_BASE, 'ra/user/detail'),
+                          method='GET', session=self._session)
+        rv.raise_for_status()
+        data = rv.json()['data']
+        teams = []
+        for acnt in data['associatedAccounts']:
+            team_id = acnt['contentProvider']['contentProviderId']
+            teams.append({
+                'id': team_id,
+                'name': acnt['contentProvider']['name'],
+                'roles': acnt['roles'],
+                'apps': self._list_apps(team_id, data['sessionToken']['dsId']),
+            })
+        self._user_details = {
+            'teams': teams,
+            'session': {
+                'ds_id': data['sessionToken']['dsId']
+            },
+            'email': data['userName'],
+            'name': data['displayName'],
+            'user_id': data['userId'],
+        }
+
+    def iter_apps(self):
+        """Iterates over all apps the user has access to."""
+        seen = set()
+        for team in self.get_user_details()['teams']:
+            for app in team['apps']:
+                if app['id'] not in seen:
+                    seen.add(app['id'])
+                    yield app
+
+    def iter_app_builds(self, app_id):
+        """Given an app ID, this iterates over all the builds that exist
+        for it.
+        """
+        rv = self._find_app(app_id)
+        if rv is None:
+            return
+        app, team = rv
+        self._select_team(team['id'])
+
+        for platform in app['platforms']:
+            rv = safe_urlopen(urljoin(
+                API_BASE, 'ra/apps/%s/buildHistory?platform=%s' % (
+                    app_id, platform)),
+                method='GET', session=self._session)
+            rv.raise_for_status()
+
+            trains = rv.json()['data']['trains']
+            for train in trains:
+                for item in train.get('items') or ():
+                    yield {
+                        'app_id': app['id'],
+                        'platform': platform,
+                        'version': train['versionString'],
+                        'build_id': item['buildVersion'],
+                    }
+
+    def get_dsym_url(self, app_id, platform, version, build_id):
+        """Looks up the dsym URL for a given build"""
+        rv = safe_urlopen(urljoin(
+            API_BASE, 'ra/apps/%s/platforms/%s/trains/%s/builds/%s/details' % (
+                app_id, platform, version, build_id)),
+            method='GET', session=self._session)
+        rv.raise_for_status()
+        return rv.json()['data']['dsymurl']
+
+    def _get_service_key(self):
+        if self._service_key is not None:
+            return self._service_key
+        rv = safe_urlopen(ISK_JS_URL, method='GET', session=self._session)
+        match = _isk_re.search(rv.text)
+        if match is not None:
+            self._service_key = match.group(1)
+            return self._service_key
+        raise ItcError('Could not find service key')
+
+    def _find_app(self, app_id):
+        for team in self.get_user_details()['teams']:
+            for app in team['apps']:
+                if app['id'] == app_id:
+                    return app, team
+
+    def _select_team(self, team_id, ds_id=None):
+        if self._current_team == team_id:
+            return
+        if ds_id is None:
+            ds_id = self.get_user_details()['session']['ds_id']
+        safe_urlopen(urljoin(
+            API_BASE, 'ra/v1/session/webSession'), json={
+            'contentProviderId': team_id,
+            'dsId': ds_id,
+        }, method='POST', session=self._session).raise_for_status()
+        self._current_team = team_id
+
+    def _list_apps(self, team_id, ds_id=None):
+        self._select_team(team_id, ds_id)
+
+        rv = safe_urlopen(urljoin(
+            API_BASE, 'ra/apps/manageyourapps/summary/v2'),
+            method='GET', session=self._session)
+        rv.raise_for_status()
+
+        apps = rv.json()['data']['summaries']
+        rv = []
+
+        for app in apps:
+            platforms = set()
+            for x in app['versionSets']:
+                if x['type'] == 'APP':
+                    platforms.add(x['platformString'])
+            rv.append({
+                'id': app['adamId'],
+                'icon_url': app['iconUrl'],
+                'bundle_id': app['bundleId'],
+                'name': app['name'],
+                'platforms': sorted(platforms),
+            })
+
+        return rv
+
+    def close(self):
+        self._session.close()
+
+    def __enter__(self):
+        return self
+
+    def __exit__(self, exc_type, exc_value, tb):
+        self.close()
diff --git a/tests/sentry/lang/native/test_itc.py b/tests/sentry/lang/native/test_itc.py
@@ -0,0 +1,16 @@
+from __future__ import absolute_import
+
+from sentry.lang.native.itc import Itc
+
+
+def test_itc():
+    import pprint
+    itc = Itc('username', 'pw')
+    pprint.pprint(itc.to_json())
+    for app in itc.iter_apps():
+        pprint.pprint(app)
+        for build in itc.iter_app_builds(app['id']):
+            # print '       ', build
+            # (self, app_id, platform, version, build_id):
+            print '       ', itc.get_dsym_url(app['id'], build['platform'], build['version'], build['build_id'])
+    itc.close()