feat: add incidentio provider (#1313)

Signed-off-by: 35C4n0r <[email protected]>
Co-authored-by: Tal <[email protected]>
Co-authored-by: Matvey Kukuy <[email protected]>
Co-authored-by: Ezhil Shanmugham <[email protected]>

Author: 4 people

README.md

@@ -196,6 +196,8 @@ Workflow triggers can either be executed manually when an alert is activated or
               
     <img width=32 height=32 src="https://github.com/keephq/keep/blob/main/keep-ui/public/icons/netdata-icon.png?raw=true"/>
     &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+    <img width=32 height=32 src="https://github.com/keephq/keep/blob/main/keep-ui/public/icons/incidentio-icon.png?raw=true"/>
+    &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
     <img width=32 height=32 src="https://github.com/keephq/keep/blob/main/keep-ui/public/icons/grafana_incident-icon.png?raw=true"/>
 </p>
 <h3 align="center">Ticketing tools</h2>

docs/mint.json

@@ -100,6 +100,7 @@
             "providers/documentation/grafana-provider",
             "providers/documentation/http-provider",
             "providers/documentation/ilert-provider",
+            "providers/documentation/incidentio-provider",
             "providers/documentation/jira-provider",
             "providers/documentation/kibana-provider",
             "providers/documentation/kubernetes-provider",

docs/providers/documentation/incidentio-provider.mdx

@@ -0,0 +1,53 @@
+---
+title: "Incident.io Provider"
+sidebarTitle: "Incident.io Provider"
+description: "The Incident.io provider enables the querying of incidents on Incident.io, leveraging incident management capabilities for effective response."
+---
+
+## Overview
+
+The Incident.io provider facilitates interaction with Incident.io's API, allowing for the management of incidents. This includes the ability to query specific incidents, retrieve all incidents, and manage incident details. This provider integrates Keep's system with Incident.io's robust incident management platform.
+
+
+### Query Specific Incident
+
+- `incident_id`: The ID of the incident to be queried. Required for fetching specific incident details.
+
+## Outputs
+
+Returns the specific incident with id=`incident_id`
+
+## Authentication Parameters
+
+- `incidentIoApiKey`: API key for authenticating with Incident.io's API.
+
+## Scopes
+
+- `authenticated`: Mandatory for all operations, ensures the user is authenticated.
+- `read_access`: Mandatory for querying incidents, ensures the user has read access.
+
+## Connecting with the Provider
+
+### API Key
+
+To use the Incident.io API:
+1. Log in to your Incident.io account.
+2. Navigate to the "API Keys" section under your account settings.
+3. Generate a new API key or use an existing one.
+4. Ensure it has `read` permissions enabled for reading and managing incidents.
+
+### Incident Endpoint
+
+The Incident.io incident endpoint allows querying and managing incidents. Operations include retrieving specific incident details or fetching a list of all incidents. This is crucial for monitoring and responding to incidents efficiently.
+
+For more details, refer to the [Incident.io API Documentation](https://api-docs.incident.io/).
+
+## Notes
+
+This provider is part of Keep's integration with Incident.io, designed to enhance operational resilience by enabling efficient incident management and response.
+
+## Useful Links
+
+- [Incident.io API Documentation](https://api-docs.incident.io/)
+- [Incident.io Incidents](https://api-docs.incident.io/tag/Incidents-V2)
+- [Incident.io Api_Keys and Permissions](https://help.incident.io/en/articles/6149651-our-api)

keep-ui/public/icons/incidentio-icon.png

@@ -0,0 +1,247 @@
+"""
+IncidentioProvider is a class that allows to get all incidents as well query specific incidents in Incidentio.
+"""
+
+import dataclasses
+from typing import List
+from urllib.parse import urlencode, urljoin
+
+import pydantic
+import requests
+
+from keep.api.models.alert import AlertDto, AlertSeverity, AlertStatus
+from keep.contextmanager.contextmanager import ContextManager
+from keep.providers.base.base_provider import BaseProvider
+from keep.providers.models.provider_config import ProviderConfig, ProviderScope
+
+
+class ResourceAlreadyExists(Exception):
+    def __init__(self, *args):
+        super().__init__(*args)
+
+
+@pydantic.dataclasses.dataclass
+class IncidentioProviderAuthConfig:
+    """
+    Incidentio authentication configuration.
+    """
+    incidentIoApiKey: str = dataclasses.field(
+        metadata={
+            "required": True,
+            "description": "IncidentIO's API_KEY",
+            "hint": "API KEY for incident.io",
+            "sensitive": True,
+        },
+    )
+
+
+class IncidentioProvider(BaseProvider):
+    """Receive Incidents from Incidentio."""
+
+    PROVIDER_SCOPES = [
+        ProviderScope(
+            name="authenticated",
+            description="User is Authenticated",
+            mandatory=True,
+            alias="authenticated",
+        ),
+        ProviderScope(
+            name="read_access",
+            description="User has read access",
+            mandatory=True,
+            alias="can_read",
+        )
+    ]
+
+    SEVERITIES_MAP = {
+        "Warning": AlertSeverity.WARNING,
+        "Major": AlertSeverity.HIGH,
+        "Info": AlertSeverity.INFO,
+        "Critical": AlertSeverity.CRITICAL,
+        "Minor": AlertSeverity.LOW
+    }
+
+    STATUS_MAP = {
+        "triage": AlertStatus.ACKNOWLEDGED,
+        "declined": AlertStatus.SUPPRESSED,
+        "merged": AlertStatus.RESOLVED,
+        "canceled": AlertStatus.SUPPRESSED,
+        "live": AlertStatus.FIRING,
+        "learning": AlertStatus.PENDING,
+        "closed": AlertStatus.RESOLVED,
+        "paused": AlertStatus.SUPPRESSED
+    }
+
+    def __init__(
+            self, context_manager: ContextManager, provider_id: str, config: ProviderConfig
+    ):
+        super().__init__(context_manager, provider_id, config)
+
+    def dispose(self):
+        """
+        Dispose the provider.
+        """
+        pass
+
+    def validate_config(self):
+        """
+        Validates required configuration for Incidentio provider.
+        """
+        self.authentication_config = IncidentioProviderAuthConfig(
+            **self.config.authentication
+        )
+
+    def __get_url(self, paths: List[str] = [], query_params: dict = None, **kwargs):
+        """
+        Helper method to build the url for Incidentio api requests.
+
+        Example:
+
+        paths = ["issue", "createmeta"]
+        query_params = {"projectKeys": "key1"}
+        url = __get_url("test", paths, query_params)
+
+        # url = https://incidentio.com/api/2/issue/createmeta?projectKeys=key1
+        """
+
+        base_url = "https://api.incident.io/v2/"
+        path_str = "/".join(str(path) for path in paths)
+        url = urljoin(base_url, path_str)
+
+        # add query params
+        if query_params:
+            url = f"{url}?{urlencode(query_params)}"
+
+        return url
+
+    def __get_headers(self):
+        """
+        Building the headers for api requests
+        """
+        return {
+            'Authorization': f'Bearer {self.authentication_config.incidentIoApiKey}',
+        }
+
+    def validate_scopes(self) -> dict[str, bool | str]:
+        self.logger.info("Validating IncidentIO scopes...")
+        try:
+            print(self.__get_url(paths=["incidents"]))
+            response = requests.get(
+                url=self.__get_url(paths=["incidents"]),
+                timeout=10,
+                headers=self.__get_headers(),
+            )
+
+            if response.ok:
+                return {"authenticated": True, "read_access": True}
+            else:
+                self.logger.error(f"Failed to validate scopes: {response.status_code}")
+                scopes = {"authenticated": "Unable to query incidents: {response.status_code}", "read_access": False}
+        except Exception as e:
+            self.logger.error("Error getting IncidentIO scopes:", extra={"exception": str(e)})
+            scopes = {"authenticated": "Unable to query incidents: {e}", "read_access": False}
+
+        return scopes
+
+    def _query(self, incident_id, **kwargs) -> AlertDto:
+        """query IncidentIO Incident"""
+        self.logger.info("Querying IncidentIO incident",
+                         extra={
+                             "incident_id": incident_id,
+                             **kwargs,
+                         }, )
+        try:
+            response = requests.get(
+                url=self.__get_url(paths=["incidents", incident_id]),
+                headers=self.__get_headers(),
+            )
+        except Exception as e:
+            self.logger.error("Error while fetching Incident",
+                              extra={"incident_id": incident_id, "kwargs": kwargs, "exception": str(e)})
+            raise e
+        else:
+            if response.ok:
+                res = response.json()
+                return self.__map_alert_to_AlertDTO({"event": res})
+            else:
+                self.logger.error("Error while fetching Incident",
+                                  extra={"incident_id": incident_id, "kwargs": kwargs, "res": response.text})
+
+    def _get_alerts(self) -> list[AlertDto]:
+        alerts = []
+        next_page = None
+
+        while True:
+            try:
+                params = {'page_size': 100}
+                if next_page:
+                    params['after'] = next_page
+
+                response = requests.get(self.__get_url(paths=["incidents"]), headers=self.__get_headers(), params=params,
+                                        timeout=15)
+                response.raise_for_status()
+            except requests.RequestException as e:
+                self.logger.error("Error getting IncidentIO scopes:", extra={"exception": str(e)})
+                raise e
+            else:
+                data = response.json()
+                try:
+                    for incident in data.get('incidents', []):
+                        alerts.append(
+                            self.__map_alert_to_AlertDTO(incident)
+                        )
+                except Exception as e:
+                    self.logger.error("Error while mapping incidents to AlertDTO", extra={"exception": str(e)})
+                    raise e
+                pagination_meta = data.get('pagination_meta', {})
+                next_page = pagination_meta.get('after')
+
+                if not next_page:
+                    break
+
+        return alerts
+
+    def __map_alert_to_AlertDTO(self, incident) -> AlertDto:
+        return AlertDto(
+            id=incident['id'],
+            fingerprint=incident['id'],
+            name=incident['name'],
+            status=IncidentioProvider.STATUS_MAP[incident['incident_status']["category"]],
+            severity=IncidentioProvider.SEVERITIES_MAP.get(
+                incident.get("severity", {}).get("name", "minor"), AlertSeverity.WARNING),
+            lastReceived=incident.get('created_at'),
+            description=incident.get('summary', ""),
+            apiKeyRef=incident["creator"]["api_key"]["id"],
+            assignee=", ".join(
+                assignment["role"]["name"] for assignment in
+                incident["incident_role_assignments"]),
+            url=incident.get("permalink", "https://app.incident.io/")
+        )
+
+if __name__ == "__main__":
+    import logging
+
+    logging.basicConfig(level=logging.DEBUG, handlers=[logging.StreamHandler()])
+    context_manager = ContextManager(
+        tenant_id="singletenant",
+        workflow_id="test",
+    )
+
+    import os
+
+    api_key = os.getenv("INCIDENTIO_API_KEY")
+
+    config = ProviderConfig(
+        description="Incidentio Provider",
+        authentication={
+            "incidentIoApiKey": api_key
+        },
+    )
+
+    provider = IncidentioProvider(
+        context_manager,
+        provider_id="incidentio_provider",
+        config=config,
+    )
+    print(provider.validate_scopes())
+    print(provider._get_alerts())