Merge pull request #5829 from uktrade/feature/fetch-emails-from-exchange

Email ingestion from Exchange.

Author: elcct

README.md

@@ -450,12 +450,13 @@ Data Hub API can run on any Heroku-style platform. Configuration is performed vi
 | `EXPORT_WIN_LEAD_OFFICER_REJECTED_TEMPLATE_ID`               | Yes                                         | An ID of Notify Template for Export Win Lead Officer Rejected notifications                                                                                                  |
 | `TASK_REMINDER_EMAIL_TEMPLATE_ID`                                    | No                                         | An ID of Notify Template for the generic Task reminder notifications                                                                                                                  |
 | `TASK_NOTIFICATION_FROM_OTHERS_TEMPLATE_ID`                           | Yes                                         | An ID of Notify Template for Task assigned by others notifications                                                                                                               |
-| `MAILBOX_AWS_ACCESS_KEY_ID`                                           | No                                          | Same use as AWS_ACCESS_KEY_ID, but for mailbox.                                                                                                                                  |
-| `MAILBOX_AWS_SECRET_ACCESS_KEY`                                       | No                                          | Same use as AWS_SECRET_ACCESS_KEY, but for mailbox.                                                                                                                              |
-| `MAILBOX_AWS_REGION`                                                  | No                                          | Same use as AWS_DEFAULT_REGION, but for mailbox.                                                                                                                                 |
-| `MAILBOX_BUCKET`                                                      | No                                          | S3 bucket for mailbox storage.                                                                                                                                                   |
-| `MAILBOX_INGESTION_SUCCESS_TEMPLATE_ID`                               | No                                          | An ID of Notify Template for mailbox ingestion success                                                                                                                           |
+| `MAILBOX_INGESTION_CLIENT_ID`                                         | No                                          | An OAuth Client ID for Email Ingestion Exchange Server                                                                                                                           |
+| `MAILBOX_INGESTION_CLIENT_SECRET`                                     | No                                          | An OAuth Client Secret for Email Ingestion Exchange Server                                                                                                                       |
+| `MAILBOX_INGESTION_EMAIL`                                             | No                                          | The email address for Email Ingestion Exchange Server                                                                                                                            |
+| `MAILBOX_INGESTION_GRAPH_URL`                                         | No                                          | Graph API URL for Email Ingestion Exchange Server                                                                                                                                |
+| `MAILBOX_INGESTION_TENANT_ID`                                         | No                                          | A Tenant ID for Email Ingestion Exchange Server                                                                                                                                  |
 | `MAILBOX_INGESTION_FAILURE_TEMPLATE_ID`                               | No                                          | An ID of Notify Template for mailbox ingestion failure                                                                                                                           |
+| `MAILBOX_INGESTION_SUCCESS_TEMPLATE_ID`                               | No                                          | An ID of Notify Template for mailbox ingestion success                                                                                                                           |
 | `MARKET_ACCESS_ACCESS_KEY_ID`                                         | No                                          | A non-secret access key ID used by the Market Access service to access Hawk-authenticated public company endpoints.                                                              |
 | `MARKET_ACCESS_SECRET_ACCESS_KEY`                                     | If `MARKET_ACCESS_ACCESS_KEY_ID` is set     | A secret key used by the Market Access service to access Hawk-authenticated public company endpoints.                                                                            |
 | `NOTIFICATION_SUMMARY_THRESHOLD`                                      | No                                          | Number of notification items that trigger sending a summary email. (default=5)                                                                                                   |

config/settings/common.py

@@ -537,6 +537,26 @@ def _build_redis_url(base_url, db_number, **query_args):
     default='',
 )
 
+MAILBOX_INGESTION_CLIENT_ID = env(
+    'MAILBOX_INGESTION_CLIENT_ID',
+    default='',
+)
+MAILBOX_INGESTION_CLIENT_SECRET = env(
+    'MAILBOX_INGESTION_CLIENT_SECRET',
+    default='',
+)
+MAILBOX_INGESTION_TENANT_ID = env(
+    'MAILBOX_INGESTION_TENANT_ID',
+    default='',
+)
+MAILBOX_INGESTION_GRAPH_URL = env(
+    'MAILBOX_INGESTION_GRAPH_URL',
+    default='https://graph.microsoft.com/v1.0/',
+)
+MAILBOX_INGESTION_EMAIL = env(
+    'MAILBOX_INGESTION_GRAPH_URL',
+    default='',
+)
 
 # GOV.UK PAY
 GOVUK_PAY_URL = env('GOVUK_PAY_URL', default='')
@@ -641,12 +661,6 @@ def _add_hawk_credentials(id_env_name, key_env_name, scopes):
         'aws_secret_access_key': env('REPORT_AWS_SECRET_ACCESS_KEY', default=''),
         'aws_region': env('REPORT_AWS_REGION', default=''),
     },
-    'mailbox': {
-        'bucket': env('MAILBOX_BUCKET', default=''),
-        'aws_access_key_id': env('MAILBOX_AWS_ACCESS_KEY_ID', default=''),
-        'aws_secret_access_key': env('MAILBOX_AWS_SECRET_ACCESS_KEY', default=''),
-        'aws_region': env('MAILBOX_AWS_REGION', default=''),
-    },
 }
 
 DIT_EMAIL_INGEST_BLOCKLIST = [

datahub/email_ingestion/emails.py

@@ -1,90 +1,124 @@
-import tempfile
 from logging import getLogger
 
 import mailparser
+import requests
 from django.conf import settings
-from django.core.exceptions import ImproperlyConfigured
 from django.utils.timezone import now
+from rest_framework import status
 
-from datahub.documents import utils as documents
 from datahub.email_ingestion.models import MailboxLogging, MailboxProcessingStatus
-from datahub.interaction.email_processors.processors import CalendarInteractionEmailProcessor
+from datahub.interaction.email_processors.processors import InteractionPlainEmailProcessor
+
 
 logger = getLogger(__name__)
 
 BUCKET_ID = 'mailbox'
 
 
-def get_mail_docs_in_bucket():
-    """
-    Gets all mail documents in the bucket.
-    """
-    if BUCKET_ID not in settings.DOCUMENT_BUCKETS:
-        raise ImproperlyConfigured(f'Bucket "{BUCKET_ID}" is missing in settings')
+def _get_headers(token):
+    return {
+        'Authorization': f'Bearer {token}',
+    }
 
-    config = settings.DOCUMENT_BUCKETS[BUCKET_ID]
-    if 'bucket' not in config:
-        raise ImproperlyConfigured(f'Bucket "{BUCKET_ID}" not configured properly in settings')
 
-    name = config['bucket']
-    if not name:
-        raise ImproperlyConfigured(
-            f'Bucket "{BUCKET_ID}" bucket value not configured properly in settings',
-        )
+def _get_base_url():
+    user_email = settings.MAILBOX_INGESTION_EMAIL
+    return f'{settings.MAILBOX_INGESTION_GRAPH_URL}users/{user_email}'
+
+
+def get_access_token(tenant_id, client_id, client_secret):
+    token_url = f'https://login.microsoftonline.com/{tenant_id}/oauth/v2.0/token'
+    token_data = {
+        'grant_type': 'client_credentials',
+        'client_id': client_id,
+        'client_secret': client_secret,
+        'scope': 'https://graph.microsoft.com/.default',
+    }
+    token_request = requests.post(token_url, data=token_data)
+    return token_request.json().get('access_token')
+
+
+def read_messages(token):
+    base_url = _get_base_url()
+    messages_url = f'{base_url}/mailFolders/Inbox/messages'
+
+    messages_request = requests.get(
+        messages_url,
+        headers=_get_headers(token),
+    )
+    messages = messages_request.json().get('value', [])
+    return messages
+
 
-    client = documents.get_s3_client_for_bucket(bucket_id=BUCKET_ID)
+def fetch_message(token, message_id):
+    base_url = _get_base_url()
+    content_url = f'{base_url}/messages/{message_id}/$value'
 
-    paginator = client.get_paginator('list_objects')
-    for page in paginator.paginate(Bucket=name):
-        for doc in page.get('Contents') or []:
-            key = doc['Key']
-            with tempfile.TemporaryFile(mode='w+b') as f:
-                client.download_fileobj(Bucket=name, Key=key, Fileobj=f)
-                f.seek(0)
-                content = f.read()
-            yield {'source': key, 'content': content}
+    content_request = requests.get(content_url, headers=_get_headers(token))
+    if content_request.status_code == status.HTTP_200_OK:
+        content = content_request.text
+        return content
+
+    return None
+
+
+def delete_message(token, message_id):
+    base_url = _get_base_url()
+    delete_path = '/mailFolders/Inbox/messages/'
+    delete_url = f'{base_url}{delete_path}{message_id}'
+
+    delete_request = requests.delete(delete_url, headers=_get_headers(token))
+    return delete_request.status_code == status.HTTP_204_NO_CONTENT
 
 
 def process_ingestion_emails():
     """
     Gets all new mail documents in the bucket and process each message.
     """
-    processor = CalendarInteractionEmailProcessor()
+    processor = InteractionPlainEmailProcessor()
 
-    for message in get_mail_docs_in_bucket():
-        source = message['source']
-        try:
-            documents.delete_document(bucket_id=BUCKET_ID, document_key=message['source'])
-        except Exception as e:
-            logger.exception('Error deleting message: "%s", error: "%s"', source, e)
+    token = get_access_token(
+        settings.MAILBOX_INGESTION_TENANT_ID,
+        settings.MAILBOX_INGESTION_CLIENT_ID,
+        settings.MAILBOX_INGESTION_CLIENT_SECRET,
+    )
+
+    for message in read_messages(token):
+        message_id = message['id']
+
+        content = fetch_message(token, message_id)
+        if not content:
+            logger.error('Error fetching message: "%s"', message_id)
+            continue
+        if not delete_message(token, message_id):
+            logger.error('Error deleting message: "%s"', message_id)
             continue
 
         try:
-            log = _create_log_entry(source, message)
+            log = _create_log_entry(message_id, message, content)
 
-            email = mailparser.parse_from_bytes(message['content'])
+            email = mailparser.parse_from_string(content)
             processed, reason, interaction_id = processor.process_email(message=email)
             if not processed:
                 _update_log_status(log, MailboxProcessingStatus.FAILURE, reason, None)
-                logger.error('Error parsing message: "%s", error: "%s"', source, reason)
+                logger.error('Error parsing message: "%s", error: "%s"', message_id, reason)
             else:
                 _update_log_status(log, MailboxProcessingStatus.PROCESSED, reason, interaction_id)
                 logger.info(reason)
         except Exception as e:
             _update_log_status(log, MailboxProcessingStatus.FAILURE, repr(e), None)
-            logger.exception('Error processing message: "%s", error: "%s"', source, e)
+            logger.exception('Error processing message: "%s", error: "%s"', message_id, e)
 
         logger.info(
-            'Successfully processed message "%s" and deleted document from bucket "%s"',
-            source,
-            BUCKET_ID,
+            'Successfully processed message "%s" and deleted it from mailbox.',
+            message_id,
         )
 
 
-def _create_log_entry(source, message):
+def _create_log_entry(source, message, content):
     log = MailboxLogging(
         retrieved_on=now(),
-        content=message['content'].decode('utf-8'),
+        content=content,
         source=source,
         status=MailboxProcessingStatus.RETRIEVED,
     )