onlime
diff --git a/‎CHANGELOG.md‎
Lines changed: 1 addition & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎README.md‎
Lines changed: 16 additions & 4 deletions b/‎README.md‎
Lines changed: 16 additions & 4 deletions
diff --git a/‎app/conf.py‎
Lines changed: 3 additions & 2 deletions b/‎app/conf.py‎
Lines changed: 3 additions & 2 deletions
diff --git a/‎app/db.py‎
Lines changed: 3 additions & 3 deletions b/‎app/db.py‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎app/handler.py‎
Lines changed: 19 additions & 14 deletions b/‎app/handler.py‎
Lines changed: 19 additions & 14 deletions
diff --git a/‎app/logging.py‎
Lines changed: 2 additions & 1 deletion b/‎app/logging.py‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎app/message.py‎
Lines changed: 14 additions & 4 deletions b/‎app/message.py‎
Lines changed: 14 additions & 4 deletions
diff --git a/‎app/prefixed_logger.py‎
Lines changed: 3 additions & 2 deletions b/‎app/prefixed_logger.py‎
Lines changed: 3 additions & 2 deletions
diff --git a/‎app/ratelimit.py‎
Lines changed: 12 additions & 8 deletions b/‎app/ratelimit.py‎
Lines changed: 12 additions & 8 deletions
diff --git a/‎app/webhook.py‎
Lines changed: 6 additions & 2 deletions b/‎app/webhook.py‎
Lines changed: 6 additions & 2 deletions
@@ -5,6 +5,7 @@
 **Improved:**
 
 - Updated docker-compose `policyd` service Docker image from `python:3.8` to `python:3.11`
+- Improved Python code style by fixing all Flake8 linting warnings.
 
 **Added:**
 
 
@@ -96,8 +96,8 @@ $ git clone https://github.com/onlime/policyd-rate-guard.git
 
 ```bash
 $ cd /opt/policyd-rate-guard
-$ python3 -m venv venv
-$ . venv/bin/activate
+$ python3 -m venv .venv
+$ . .venv/bin/activate
 (venv)$ pip install --upgrade pip
 (venv)$ pip install -r requirements.txt
 (venv)$ cp yoyo.ini.example yoyo.ini # & Adjust the settings
@@ -389,8 +389,8 @@ To set up a basic developer environment, run the following commands:
 ```bash
 $ git clone git@gitlab.onlime.ch:onlime/policyd-rate-guard.git
 $ cd policyd-rate-guard
-$ python3 -m venv venv
-$ . venv/bin/activate
+$ python3 -m venv .venv
+$ . .venv/bin/activate
 (venv)$ pip install --upgrade pip
 (venv)$ pip install -r requirements.txt
 $ docker-compose up -d db
@@ -487,6 +487,18 @@ $ . venv/bin/activate
 > [!IMPORTANT]
 > Make sure to always run the tests inside your venv!
 
+### Linting with flake8
+
+You can run Python code style linting with [Flake8](https://flake8.pycqa.org/) locally in your venv:
+
+```bash
+$ . venv/bin/activate
+(venv)$ pip install flake8
+(venv)$ flake8 . --count --exit-zero --max-complexity=10 --max-line-length=127 --statistics --exclude=venv
+```
+
+The same will also be done in our [Github workflow `ci.yml`](https://github.com/onlime/policyd-rate-guard/actions/workflows/ci.yml).
+
 ### Configure Sentry SDK
 
 Sentry integration can be both used in your development environment and on production.
 
@@ -3,8 +3,9 @@
 from distutils.util import strtobool
 from typing import Any
 
+
 class Config:
-    def __init__(self, path = None) -> None:
+    def __init__(self, path: str = None) -> None:
         load_dotenv(dotenv_path=path)
 
     def get(self, key: str, default: Any = None) -> str:
@@ -15,4 +16,4 @@ def get(self, key: str, default: Any = None) -> str:
             return value
 
     def get_array(self, key: str, default: Any = None) -> list:
-        return getenv(key, default).split(',')
+        return getenv(key, default).split(',')
@@ -1,30 +1,30 @@
 from importlib import import_module
 from dbutils.pooled_db import PooledDB
 
+
 class DbConnectionPool:
     def __init__(self, conf: object):
         self.driver = conf.get('DB_DRIVER', 'pymysql').lower()
         self.backend = import_module(self.driver)
         db_config = getattr(self, 'get_dbconfig_' + self.driver)(conf)
 
         self.pool = PooledDB(
-            creator=self.backend, # pymysql or sqlite3
+            creator=self.backend,  # pymysql or sqlite3
             mincached=int(conf.get('DB_POOL_MINCACHED', 0)),
             maxcached=int(conf.get('DB_POOL_MAXCACHED', 10)),
             maxshared=int(conf.get('DB_POOL_MAXSHARED', 10)),
             maxusage=int(conf.get('DB_POOL_MAXUSAGE', 10000)),
             # maxconnections=int(conf.get('DB_POOL_MAXCONNECTIONS', 20)),
             **db_config
         )
-    
+
     def connection(self):
         connection = self.pool.connection()
         if self.driver == 'sqlite3':
             # https://docs.python.org/3/library/sqlite3.html#sqlite3.Row
             connection.row_factory = self.backend.Row
         return connection
 
-
     def get_dbconfig_pymysql(self, conf: object) -> dict:
         return {
             'host': conf.get('DB_HOST', 'localhost'),
 
@@ -1,5 +1,6 @@
 from .message import Message
 
+
 class Handler:
     """Handle request"""
 
@@ -14,21 +15,24 @@ def __init__(self, conn: object, addr: str, conf: object, logger: object, db_poo
         self.db_pool = db_pool
         try:
             self.handle()
-        except Exception as e: # pragma: no cover
+        except Exception as e:  # pragma: no cover
             self.logger.exception('Unhandled Exception: %s', e)
             self.logger.warning('Received DATA: %s', self.data)
-            self.send_response('DUNNO') # use DUNNO as accept action, just to distinguish between OK and unhandled exception
+            self.send_response('DUNNO')  # use DUNNO as accept action, just to distinguish between OK and unhandled exception
 
     def handle(self) -> None:
         """Handle request"""
         # Read data
-        self.data = self.conn.recv(2048).decode('utf-8') # Attention: We only read first 2048 bytes, which is sufficient for our needs
+        # Attention: We only read first 2048 bytes, which is sufficient for our needs
+        self.data = self.conn.recv(2048).decode('utf-8')
         if not self.data:
             raise Exception('No data received')
         self.logger.debug('Received data: %s', self.data)
 
         # Parse data using a dictionary comprehension
-        request = { key: value for line in self.data.strip().split("\n") for key, value in [line.strip().split('=', 1)] if value }
+        request = {
+            key: value for line in self.data.strip().split("\n") for key, value in [line.strip().split('=', 1)] if value
+        }
         self.logger.debug('Parsed request: %s', request)
 
         # Add msgid to logger
@@ -60,17 +64,18 @@ def handle(self) -> None:
         )
         message.get_ratelimit()
         was_blocked = message.is_blocked()
-        message.update_ratelimit() # Always update counter, even if quota limit was already reached before (was_blocked)!
-        blocked = message.is_blocked() # ... and make sure we check for blocked after having raised the counter.
+        message.update_ratelimit()  # Always update counter, even if quota limit was already reached before (was_blocked)!
+        blocked = message.is_blocked()  # ... and make sure we check for blocked after having raised the counter.
         message.store()
 
         # Detailed log message in the following format:
-        # TEST1234567: client=unknown[8.8.8.8], helo=myCLIENTPC, sasl_method=PLAIN, sasl_username=test@example.com, recipient_count=1, curr_count=2/1000, status=ACCEPTED
-        log_message = 'client={}[{}], helo={}, sasl_method={}, sasl_username={}, from={}, to={}, recipient_count={}, curr_count={}/{}, status={}{}'.format(
+        # TEST1234567: client=unknown[8.8.8.8], helo=myCLIENTPC, sasl_method=PLAIN, sasl_username=test@example.com,
+        # recipient_count=1, curr_count=2/1000, status=ACCEPTED
+        log_msg = 'client={}[{}], helo={}, sasl_method={}, sasl_username={}, from={}, to={}, recipient_count={}, curr_count={}/{}, status={}{}'.format(  # noqa: E501
             message.client_name,
             message.client_address,
-            request.get('helo_name'), # currently not stored in Message object or `messages` table
-            request['sasl_method'], # currently not stored in Message object or `messages` table
+            request.get('helo_name'),  # currently not stored in Message object or `messages` table
+            request['sasl_method'],  # currently not stored in Message object or `messages` table
             message.sender,
             message.from_addr,
             message.to_addr,
@@ -89,11 +94,11 @@ def handle(self) -> None:
                 self.logger.debug('Rate limit reached for %s, notifying sender via webhook!', message.sender)
                 from .webhook import Webhook
                 Webhook(self.conf, self.logger, message).call()
-            self.logger.warning(log_message)
+            self.logger.warning(log_msg)
             self.send_response('DEFER_IF_PERMIT ' + self.conf.get('ACTION_TEXT_BLOCKED', 'Rate limit reached, retry later'))
         else:
             self.logger.debug('Message ACCEPTED: %s', message.get_props_description())
-            self.logger.info(log_message)
+            self.logger.info(log_msg)
             self.send_response('OK')
 
     def send_response(self, message: str = 'OK') -> None:
@@ -106,9 +111,9 @@ def send_response(self, message: str = 'OK') -> None:
 
     def __del__(self):
         """Destructor"""
-        self.logger.msgid = None # Reset msgid in logger
+        self.logger.msgid = None  # Reset msgid in logger
         # TODO: Do we need to close the cursor as well? (prior to closing the connection)
         if self.db is not None:
-            self.db.close() # Close database connection
+            self.db.close()  # Close database connection
             self.db = None
         self.logger.debug('Handler destroyed')
@@ -3,6 +3,7 @@
 from .conf import Config
 from .prefixed_logger import PrefixedLogger
 
+
 class Logging:
 
     logger = None
@@ -44,7 +45,7 @@ def get_logger(conf: Config):
         logging.basicConfig(level=log_level, format=log_format, handlers=log_handlers)
         logger = logging.getLogger('policyd-rate-guard')
         logger.setLevel(log_level)
-        logger.msg_prefix = conf.get('LOG_MSG_PREFIX', True) # Enable/disable custom log message prefix feature
+        logger.msg_prefix = conf.get('LOG_MSG_PREFIX', True)  # Enable/disable custom log message prefix feature
 
         Logging.logger = logger
         return logger
@@ -1,6 +1,7 @@
 from .ratelimit import Ratelimit
 from datetime import datetime
 
+
 class Message:
 
     created_at = datetime.now()
@@ -38,7 +39,9 @@ def store(self):
         """Store message in database"""
         self.logger.debug('Storing message')
         self.cursor.execute(
-            'INSERT INTO `messages` (`ratelimit_id`, `msgid`, `sender`, `rcpt_count`, `blocked`, `from_addr`, `to_addr`, `cc_addr`, `bcc_addr`, `client_address`, `client_name`) VALUES (%s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s)',
+            '''INSERT INTO `messages` (`ratelimit_id`, `msgid`, `sender`, `rcpt_count`, `blocked`, `from_addr`,
+            `to_addr`, `cc_addr`, `bcc_addr`, `client_address`, `client_name`)
+            VALUES (%s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s)''',
             (
                 self.ratelimit.get_id(),
                 self.msgid,
@@ -59,7 +62,7 @@ def get_ratelimit(self) -> None:
         """Get ratelimit for sender"""
         self.logger.debug('Getting ratelimit for sender {}'.format(self.sender))
         self.ratelimit = Ratelimit.find(self.sender, self.db, self.logger, self.conf)
-    
+
     def update_ratelimit(self) -> None:
         """Update ratelimit for sender"""
         self.logger.debug('Updating ratelimit counters for sender {}'.format(self.sender))
@@ -77,7 +80,11 @@ def is_blocked(self) -> bool:
         self.blocked = False
         return False
 
-    def get_props_description(self, props: list = ['sender', 'rcpt_count', 'from_addr', 'client_address', 'client_name'], separator: str = ' '):
+    def get_props_description(
+        self,
+        props: list = ['sender', 'rcpt_count', 'from_addr', 'client_address', 'client_name'],
+        separator: str = ' '
+    ) -> str:
         return separator.join(f"{name}={getattr(self, name)}" for name in props)
 
     @staticmethod
@@ -86,7 +93,10 @@ def purge_old_messages(db_pool: object, logger: object, days: int = 90) -> None:
         logger.debug('Purge old messages')
         db = db_pool.connection()
         try:
-            deleted = db.cursor().execute('DELETE FROM `messages` WHERE `created_at` < DATE_SUB(CURDATE(), INTERVAL %s DAY)', (days,))
+            deleted = db.cursor().execute(
+                'DELETE FROM `messages` WHERE `created_at` < DATE_SUB(CURDATE(), INTERVAL %s DAY)',
+                (days,)
+            )
             db.commit()
             if deleted > 0:
                 logger.info('Deleted {} old messages (retention: {} days)'.format(deleted, days))
 
@@ -2,6 +2,7 @@
 import logging
 from os import path
 
+
 class PrefixedLogger(logging.Logger):
     """Custom logger that prefixes messages with msgid, the filename, class and function name of the caller"""
 
@@ -28,7 +29,7 @@ def _get_caller_info(self):
         co_class = frame.f_locals.get('self', None).__class__.__name__ if 'self' in frame.f_locals else None
         co_function = frame.f_code.co_name
         return co_filename, co_class, co_function
-    
+
     def _get_caller_frame(self):
         frame = inspect.currentframe().f_back
         try:
@@ -37,5 +38,5 @@ def _get_caller_frame(self):
             while frame and self.__class__.__name__ == frame.f_locals.get('self', None).__class__.__name__:
                 frame = frame.f_back
         except (AttributeError):
-            pass # Ignore AttributeError: 'NoneType' object has no attribute '__class__'
+            pass  # Ignore AttributeError: 'NoneType' object has no attribute '__class__'
         return frame
@@ -32,7 +32,6 @@ def __init__(
 
         self.changed = self.id is None
 
-
     def store(self):
         """Store ratelimit in database"""
         if not self.changed:
@@ -47,8 +46,9 @@ def store_new(self):
         """Store new ratelimit in database"""
         self.logger.debug('Storing ratelimit')
         self.cursor.execute(
-            """INSERT INTO `ratelimits` (`sender`, `quota`, `quota_reset`, `quota_locked`, `msg_counter`, `rcpt_counter`, `msg_total`, `rcpt_total`)
-               VALUES (%s, %s, %s, %s, %s, %s, %s, %s)""",
+            '''INSERT INTO `ratelimits` (`sender`, `quota`, `quota_reset`, `quota_locked`, `msg_counter`,
+              `rcpt_counter`, `msg_total`, `rcpt_total`)
+               VALUES (%s, %s, %s, %s, %s, %s, %s, %s)''',
             (
                 self.sender,
                 self.quota,
@@ -68,7 +68,8 @@ def update(self):
         """Update ratelimit in database"""
         self.logger.debug('Updating ratelimit')
         self.cursor.execute(
-            'UPDATE `ratelimits` SET `quota` = %s, `msg_counter` = %s, `rcpt_counter` = %s, `msg_total` = %s, `rcpt_total` = %s WHERE `id` = %s',
+            '''UPDATE `ratelimits` SET `quota` = %s, `msg_counter` = %s, `rcpt_counter` = %s, `msg_total` = %s,
+            `rcpt_total` = %s WHERE `id` = %s''',
             (
                 self.quota,
                 self.msg_counter,
@@ -103,11 +104,12 @@ def add_rcpt(self, count: int):
     def check_over_quota(self) -> bool:
         """Check if ratelimit is over quota"""
         self.logger.debug('Checking if ratelimit is over quota for %s', self.sender)
-        if self.rcpt_counter > self.quota or self.msg_counter > self.quota: # rcpt_counter should always be greater than msg_counter
+        # rcpt_counter should always be greater than msg_counter, but just in case...
+        if self.rcpt_counter > self.quota or self.msg_counter > self.quota:
             self.logger.debug('Ratelimit is over quota for %s', self.sender)
             return True
         return False
-    
+
     @staticmethod
     def find(sender: str, db: object, logger: object, conf: object) -> object:
         """Get ratelimit for sender"""
@@ -136,7 +138,7 @@ def find(sender: str, db: object, logger: object, conf: object) -> object:
             conf,
             logger,
         )
-    
+
     @staticmethod
     def reset_all_counters(db_pool: object, logger: object):
         """Reset all ratelimit counters"""
@@ -149,7 +151,9 @@ def reset_all_counters(db_pool: object, logger: object):
             # reset all counters, but don't change updated_at timestamp
             cursor.execute('UPDATE `ratelimits` SET `msg_counter` = 0, `rcpt_counter` = 0, `updated_at` = `updated_at`')
             # only reset quota if it is not locked
-            cursor.execute('UPDATE `ratelimits` SET `quota` = `quota_reset`, `updated_at` = `updated_at` WHERE `quota_locked` = 0')
+            cursor.execute(
+                'UPDATE `ratelimits` SET `quota` = `quota_reset`, `updated_at` = `updated_at` WHERE `quota_locked` = 0'
+            )
             db.commit()
         finally:
             db.close()
@@ -1,18 +1,22 @@
 import requests
 from ._version import __version__ as app_version
 
+
 class Webhook:
     """Trigger webhook for sender notification"""
 
     def __init__(self, conf: object, logger: object, message: object):
         self.conf = conf
         self.logger = logger
         self.message = message
-    
+
     def call(self) -> None:
         """Call webhook"""
         webhook_url_tpl = self.conf.get('WEBHOOK_URL')
         webhook_secret = self.conf.get('WEBHOOK_SECRET')
+        if webhook_url_tpl is None or webhook_secret is None:
+            raise ValueError('WEBHOOK_URL and WEBHOOK_SECRET must be configured')
+
         user_agent = f'policyd-rate-guard/{app_version}'
         headers = {
             # 'Content-Type': 'application/json', # not needed when using 'json' param
@@ -36,7 +40,7 @@ def call(self) -> None:
             self.logger.info(f'Webhook call successful: POST {webhook_url_tpl} (User-Agent: {user_agent})')
         else:
             self.logger.warning(f'Webhook call failed with status code: {response.status_code} {response.text}')
-    
+
     def get_data(self) -> dict:
         """Get data for webhook"""
         return {