As part of the FINOS project lifecycle work happening with the Symphony PMC, this project has been given an INCUBATING status.

So an informed decision is made by the Symphony PMC whether to ACTIVATE this project, can active contributors to this repository register themselves with a 👍 to best inform the Symphony PMC.

Thank you.

The property has changed from userName to username (lower case n) so adapter.coffee#L153 needs to be fixed accordingly, see example json response:

{
"id":123,
"emailAddress":"[email protected]",
"firstName":"Jon",
"lastName":"Freedman",
"displayName":"Jon Freedman",
"username":"jfreedman",
"avatars":[
  {"size":"original","url":"../avatars/static/50/default.png"},
  {"size":"small","url":"../avatars/static/50/default.png"}
]}

Have noticed the below in my logs. After a series of successful polls to the data feed,

[Wed Aug 17 2016 22:35:28 GMT-0400 (EDT)] DEBUG received 204 response from /agent/v2/datafeed/d46665fd-e400-4ac4-8303-846eafe1330d/read: undefined
[Wed Aug 17 2016 22:35:28 GMT-0400 (EDT)] DEBUG Polling datafeed d46665fd-e400-4ac4-8303-846eafe1330d
[Wed Aug 17 2016 22:35:59 GMT-0400 (EDT)] DEBUG received 204 response from /agent/v2/datafeed/d46665fd-e400-4ac4-8303-846eafe1330d/read: undefined
[Wed Aug 17 2016 22:35:59 GMT-0400 (EDT)] DEBUG Polling datafeed d46665fd-e400-4ac4-8303-846eafe1330d

We suddenly see a data-feed dissappear,

[Wed Aug 17 2016 22:35:59 GMT-0400 (EDT)] DEBUG received 400 response from /agent/v2/datafeed/d46665fd-e400-4ac4-8303-846eafe1330d/read: {"code":400,"message":"Could not find a datafeed with the provided id"}
[Wed Aug 17 2016 22:35:59 GMT-0400 (EDT)] DEBUG Received 0 datafeed messages
[Wed Aug 17 2016 22:35:59 GMT-0400 (EDT)] DEBUG Polling datafeed d46665fd-e400-4ac4-8303-846eafe1330d
[Wed Aug 17 2016 22:36:00 GMT-0400 (EDT)] DEBUG received 400 response from /agent/v2/datafeed/d46665fd-e400-4ac4-8303-846eafe1330d/read: {"code":400,"message":"Could not find a datafeed with the provided id"}
[Wed Aug 17 2016 22:36:00 GMT-0400 (EDT)] DEBUG Received 0 datafeed messages

Need the reconnect logic to be triggered when this event occurs.
"code":400,"message":"Could not find a datafeed with the provided id"

Currently there are 39 errors to resolve when running npm run flow.

Need to fix https://github.com/symphonyoss/hubot-symphony/blob/master/src/adapter.js#L157 to check across newlines.

I've updated package.json but I had to change the NPM_TOKEN in travis to successfully release so deployments are currently done using my account. I don't really care but you may want to change this to use the symphonyoss account that used to do the releases (seems npm have deleted that...)? As I suspected the versioning has reset to 1.0.0 - not sure how to fix that...

See https://www.npmjs.com/package/@symphonyoss/hubot-symphony

Can you look into how to bump the next version to 3.0.7, do a release and notify the dev list that any users need to update their dependencies from hubot-symphony to @symphonyoss\hubot-symphony please?

You may also want this as a reference for future projects.

• Build 280 : failed using npm publish (c81795a)
• Build 281 : pushed to NPM but failed to update github releases - probably due to version mismatch npm publish --access public (e7b506a)

When writing scripts I would like to be able to lookup the users Symphony role to determine if they are allowed to use the script.

The legal acceptance criteria had previously stated that all contributed code needed to represent that the Symphony Software Foundation was the copyright holder, but this was an unfortunate mistake - in virtually all cases, copyright remains held by the contributor of the project, and (via the CCLA / ICLA) is licensed to the Foundation.

In preparation for a v1.0 release of the Hubot ↔︎ Symphony integration, it would be ideal if the copyright notices in the NOTICE file and headers of all source code files were updated to show the correct copyright holder of the contribution.

• Run a test (dry) execution of git-release - https://www.npmjs.com/package/git-release
• Document (in README.md) what changes when a main/major/minor version change is released (keep it simple for now, considering code has not an extensive architecture)
• Document in details the release process in https://symphonyoss.atlassian.net/wiki/display/FM/Software+Development+Onboarding#SoftwareDevelopmentOnboarding-NodeJsrelease(WIP) and link it from the project's README.md

Will help with error diagnostics.

• Follow https://docs.npmjs.com/orgs/what-are-orgs
• Change package.json to reflect keyword and other elements that identify symphonyoss as "owner/maintainer" of the project
• Document NPM requirements to apply for the Foundation projects and the lifecycle of projects being published (ie. can a published project be removed from the public repository? it appears so)
• Investigate announcement/notification features (something similar to https://www.artifact-listener.org , but for NPMJS repo)

My Hubot (Gifbot) is working all right. Is there a way for me to send a self constructed request (via postman or some cURL request) to the coffee script? If yes, please can someone guide me?

In order to allow users to link webhooks to single-party instant messages rather than rooms add functionality that can be accessed via robot.adapter.sendDirectMessageToUsername or robot.adapter.sendDirectMessageToEmail.

These will need to resolve to a userID via pod/v1/user/name/:username/get or pod/v1/user?email=:email and then call pod/v1/im/create

The yarn file you checked in is never updated, so it's either redundant, or should be updated by semantic-release

Need to change line 65 to pass an object

There are two use cases for this:

• When the Bot is communicating externally, in order to talk to the Bot the external user needs to have requested a connection and the bot needs to approve this.
• If/when someone joins a room you can automatically send a greeting message to a user.

Issue found by bithound - https://www.bithound.io/github/symphonyoss/hubot-symphony/master/dependencies/npm#filter-priority-dep
Issue on Istanbul project - gotwarlost/istanbul#653 (comment)

Currently the README doesn't really describe what this project is, and why I might want to use it. It would be ideal to add this information to the top of the README, so that potential consumers who may not be familiar with the project can figure out what it's for (this should also include links out to Hubot and Symphony docs, so that anyone who isn't familiar with those can educate themselves on them too).

The first section of this README is a good example of what I'm thinking.

Currently tests are double counted as both the es6 and transpiled tests are run.

Currently the adaptor will go into a tight loop of create[200]/read[400]/create[200]/read[400].

It would be very cool to instruct Travis CI to run the diagnostic command (on every commit) against the Foundation Dev Pod (foundation-dev.symphony.com).
In order to achieve it, it is necessary to:

1. download the User Identity certificates in the build box; this is now possible and the symphony-java-sample-bots project already runs integration-tests successfully - https://travis-ci.org/symphonyoss/symphony-java-sample-bots
2. run the diagnostic command with npm (just follow https://github.com/symphonyoss/hubot-symphony/blob/dev/run-odp.sh)
3. send a message - from another service account - to the one that executed the diagnostic command on step 2

The only part that is missing is 3 and I'm not sure if hubot-symphony has the code to allow it.

Rename _sendDirectMessageToUserId to sendDirectMessageToUserId and remove the @Private annotation - some users may want to send a message directly using userId.

When running Coverity on the hubot-symphony codebase it finds 0 lines of code to analyse. It may be possible to analyse compiled JavaScript.

To avoid tampering with NPM artifacts published (and maintained) by the Foundation, it is strongly recommended (if not mandatory, from a Foundation Security standpoint) to sign artifacts in order to prove their authenticity and avoid man-in-the-middle attacks.

The Java (Maven) release already includes such feature, which is widely endorsed by Maven Central (check https://symphonyoss.atlassian.net/wiki/display/FM/Software+Development+Onboarding#SoftwareDevelopmentOnboarding-MavenReleaseFeatures), but for NPM it's up to the project to enforce it, as it's not mandatory.

Looking for an NPM package that helps with the signing/deployment of GPG-signed artifacts.

When writing scripts I would like to be able to lookup the users email address to determine if they are allowed to use the script.

Add specific items in https://symphonyoss.atlassian.net/wiki/display/FM/Quality+Acceptance+Criteria that apply to NodeJS/NPM ecosystem (especially for NPMJS artifact publication, see QUAL-4 as example)

Wait for issue #3 to understand how a package.json must be defined in order to run a release.

As described @ https://rest-api.symphony.com/docs/read-messagesevents-stream-v4

See https://github.com/gajus/canonical

Although switching to husky is supposed to be trivial it's possible to commit to github with an invalid message from Windows. I've re-added the ghooks dependency for now pending further investigation across multiple OS.

https://github.com/symphonyoss/hubot-symphony/blob/master/src/diagnostic.js#L103 currently prints out "Failed to fetch key manager token" but should say something like "Was it something I said? You didn't send me a message..."

Hello
i'm behind a corporate proxy
I export HTTP_PROXY and HTTPS_PROXY environment value in the script which start the Symphony Hubot.
We have a Local KeyManager, and we setup the environment variable HUBOT_SYMPHONY_KM_HOST to the correct value. When Symphony redirec to the KM url , the Hubot reach the Proxy as well...and should not for internal url.
So we need to bypass proxy settings for internal url. How can we do that ?

Thanks for your help

The following package is fetched a transitive dependency of hubot-symphony (via [email protected], [email protected], [email protected])

https://www.npmjs.com/package/bcrypt-pbkdf

It uses a BSD Clause 4 license - https://spdx.org/licenses/BSD-4-Clause , which is catalogued by Apache as "MAY NOT BE INCLUDED WITHIN APACHE PRODUCTS" - http://apache.org/legal/resolved.html#category-x

I'm trying to run the diagnostic on the foundation-dev pod.
For clarity, below are reported the endpoints needed to connect to the Foundation Dev Pod:

• Pod: https://foundation-dev.symphony.com/pod
• Agent: https://foundation-dev-api.symphony.com/agent
• KeyManager: https://foundation-dev-api.symphony.com/keyauth
• SessionAuth: https://foundation-dev-api.symphony.com/sessionauth

It seems that Pod, Agent and SessionAuth endpoints share the same hostname, hence the issue.

npm run diagnostic -- --publicKey ./certs/publicCert.pem --privateKey ./certs/privateKey.pem --passphrase changeit --host foundation-dev.symphony.com --kmhost foundation-dev-api.symphony.com

> hubot-symphony@ diagnostic /Users/m/w/projects/hubot-symphony
> coffee src/diagnostic.coffee "--publicKey" "./certs/publicCert.pem" "--privateKey" "./certs/privateKey.pem" "--passphrase" "changeit" "--host" "foundation-dev.symphony.com" "--kmhost" "foundation-dev-api.symphony.com"

[Mon Oct 03 2016 13:26:24 GMT-0400 (EDT)] INFO Running diagnostics against https://foundation-dev.symphony.com
[Mon Oct 03 2016 13:26:24 GMT-0400 (EDT)] INFO Connecting to foundation-dev.symphony.com
[Mon Oct 03 2016 13:26:24 GMT-0400 (EDT)] INFO Using separate KeyManager foundation-dev-api.symphony.com
[Mon Oct 03 2016 13:26:24 GMT-0400 (EDT)] INFO Connection initiated, starting tests...
[Mon Oct 03 2016 13:26:24 GMT-0400 (EDT)] INFO Key manager token: 0100af4aed8f3bc6895fc512e8c1150b93eb9c172a0c929c081a6b3e8c46405a1cfc5c315dd6c4421929c7576e7363def4162d67a5def78b1bf058adc6059b53f3cb55ac181b82a6835ba622a5c5aaf00248d6539ba88338f74d7c1e73dd71f9a0394b17c08b215ee9e18197ea2d779b2a41a5f0d22f5b9b074d4e2de330cb50b7426e73a0759bac28bd88e8d82cf174eec4c42a82fd24b48b0d483630bb78f1734f49f7b7e03e6a12d049904963154b1e5d9457e003fc6934758fcd4214
[Mon Oct 03 2016 13:26:24 GMT-0400 (EDT)] INFO Session token: undefined
[Mon Oct 03 2016 13:26:24 GMT-0400 (EDT)] INFO Initialising with sessionToken: undefined and keyManagerToken: 0100af4aed8f3bc6895fc512e8c1150b93eb9c172a0c929c081a6b3e8c46405a1cfc5c315dd6c4421929c7576e7363def4162d67a5def78b1bf058adc6059b53f3cb55ac181b82a6835ba622a5c5aaf00248d6539ba88338f74d7c1e73dd71f9a0394b17c08b215ee9e18197ea2d779b2a41a5f0d22f5b9b074d4e2de330cb50b7426e73a0759bac28bd88e8d82cf174eec4c42a82fd24b48b0d483630bb78f1734f49f7b7e03e6a12d049904963154b1e5d9457e003fc6934758fcd4214
[Mon Oct 03 2016 13:26:25 GMT-0400 (EDT)] WARNING received 404 response from /agent/v1/datafeed/create: "<html>\n<head><title>404 Not Found</title></head>\n<body bgcolor=\"white\">\n<center><h1>404 Not Found</h1></center>\n<hr><center>nginx/1.6.3</center>\n</body>\n</html>\n"
[Mon Oct 03 2016 13:26:25 GMT-0400 (EDT)] ERROR Failed to receive a message: Error: received 404 response from /agent/v1/datafeed/create: "<html>\n<head><title>404 Not Found</title></head>\n<body bgcolor=\"white\">\n<center><h1>404 Not Found</h1></center>\n<hr><center>nginx/1.6.3</center>\n</body>\n</html>\n"
[Mon Oct 03 2016 13:26:25 GMT-0400 (EDT)] WARNING received 401 response from /pod/v1/sessioninfo: {"code":301,"message":"No sessionToken token"}
[Mon Oct 03 2016 13:26:25 GMT-0400 (EDT)] ERROR Failed to fetch userId: Error: received 401 response from /pod/v1/sessioninfo: {"code":301,"message":"No sessionToken token"}

The solution may be to add to the hubot-symphony constructor the following parameters:

• sessionhost
• agenthost
• podhost

Hi!
fs is a node core module, there is no need to include it as npm dependency
See npm/npm#13743

May get better code coverage metrics with babel-plugin-istanbul, not sure that the current coverage is wrong though.

Currently if Symphony refuses to create a datafeed the adaptor will bomb

[Fri Aug 12 2016 08:24:40 GMT-0400 (EDT)] WARNING received undefined error response from /agent/v1/datafeed/create: Error: connect ECONNREFUSED 104.196.126.237:8444
[Fri Aug 12 2016 08:24:40 GMT-0400 (EDT)] ERROR Error: Unable to create datafeed: Error: Error: connect ECONNREFUSED 104.196.126.237:8444
at ~/node_modules/hubot-symphony/src/adapter.coffee:82:41, <js>:117:42

Should probably do an exponential backoff and call process.exit 1 after a timeout using https://github.com/MathieuTurcotte/node-backoff

Add room management to symphony.coffee.

This would include,

• create room
• update room
• deactivate room
• room members
• room info

Here are the API endpoints to perform these calls,
https://rest-api.symphony.com/docs/message-format

Using VersionEye, it is possible to parse a yarn.lock file (located in the project root folder) and get useful information regarding transitive dependencies used (in production) by hubot-symphony.

Changes added to https://github.com/symphonyoss/hubot-symphony/pull/34/files

A preview of VersionEye dashboard is available on https://www.versioneye.com/user/projects/58a2d0a90f3d4f00445dabee

Thanks @reiz for helping figuring out VersionEye configuration!

https://github.com/github/hubot/blob/master/CONTRIBUTING.md says

We like to at least comment on, if not accept, pull requests within a few days.

but the last commit to hubot was May 2016 and the pull request to add Symphony to the list of adapters has sat in their queue for 8 months (hubotio/hubot#1228).

Would be great to get some colour from GitHub directly on what's going on with the project (if it's long-term maintenance no big deal, just clear the PR queue...)