From 6ad308da653ae66f22aacaf80f8d4e9c12582f20 Mon Sep 17 00:00:00 2001
From: Jonas Plum <git@cugu.eu>
Date: Mon, 8 Jul 2024 01:09:28 +0200
Subject: [PATCH 01/17] feat: add actions

---
 .gitignore                  |   2 +
 .golangci.yml               |   3 +
 Makefile                    |   6 ++
 action/action.go            |  33 ++++++
 action/action_test.go       |  55 ++++++++++
 action/handle.go            |  75 +++++++++++++
 action/http.go              |  71 +++++++++++++
 action/http_test.go         | 202 ++++++++++++++++++++++++++++++++++++
 action/python.go            |  79 ++++++++++++++
 action/request.go           |  44 ++++++++
 action/response.go          |  39 +++++++
 action/response_test.go     |  51 +++++++++
 fakedata/records.go         |  21 +++-
 go.mod                      |   5 +-
 go.sum                      |   1 +
 migrations/1_collections.go |  22 +++-
 routes.go                   |   3 +
 17 files changed, 707 insertions(+), 5 deletions(-)
 create mode 100644 action/action.go
 create mode 100644 action/action_test.go
 create mode 100644 action/handle.go
 create mode 100644 action/http.go
 create mode 100644 action/http_test.go
 create mode 100644 action/python.go
 create mode 100644 action/request.go
 create mode 100644 action/response.go
 create mode 100644 action/response_test.go

diff --git a/.gitignore b/.gitignore
index 35ed6552..deb0cd8d 100644
--- a/.gitignore
+++ b/.gitignore
@@ -34,3 +34,5 @@ dist
 pb_data
 catalyst
 catalyst_data
+
+coverage.out
diff --git a/.golangci.yml b/.golangci.yml
index 4349820c..92d4e290 100644
--- a/.golangci.yml
+++ b/.golangci.yml
@@ -12,6 +12,7 @@ linters:
     - nestif
 
     # disable
+    - bodyclose
     - depguard
     - dupl
     - err113
@@ -28,6 +29,8 @@ linters:
     - lll
     - makezero
     - mnd
+    - paralleltest
+    - perfsprint
     - prealloc
     - tagalign
     - tagliatelle
diff --git a/Makefile b/Makefile
index 6af92e8d..690ec0c0 100644
--- a/Makefile
+++ b/Makefile
@@ -26,6 +26,12 @@ test:
 	go test -v ./...
 	cd ui && bun test
 
+.PHONY: test-coverage
+test-coverage:
+	@echo "Testing with coverage..."
+	go test -coverprofile=coverage.out ./...
+	go tool cover -html=coverage.out
+
 .PHONY: build-ui
 build-ui:
 	@echo "Building..."
diff --git a/action/action.go b/action/action.go
new file mode 100644
index 00000000..8c759662
--- /dev/null
+++ b/action/action.go
@@ -0,0 +1,33 @@
+package action
+
+import (
+	"errors"
+
+	"github.com/pocketbase/dbx"
+	"github.com/pocketbase/pocketbase/core"
+	"github.com/pocketbase/pocketbase/models"
+
+	"github.com/SecurityBrewery/catalyst/migrations"
+)
+
+func findAction(app core.App, action string) (*models.Record, bool, error) {
+	records, err := app.Dao().FindRecordsByExpr(migrations.ActionCollectionName, dbx.HashExp{"name": action})
+	if err != nil {
+		return nil, false, err
+	}
+
+	if len(records) == 0 {
+		return nil, false, nil
+	}
+
+	return records[0], true, nil
+}
+
+func runAction(actionType, name, bootstrap, script, payload string) ([]byte, error) {
+	switch actionType {
+	case "python":
+		return runPythonAction(name, bootstrap, script, payload)
+	default:
+		return nil, errors.New("unsupported action type")
+	}
+}
diff --git a/action/action_test.go b/action/action_test.go
new file mode 100644
index 00000000..f77aef9e
--- /dev/null
+++ b/action/action_test.go
@@ -0,0 +1,55 @@
+package action
+
+import (
+	"io"
+	"net/http"
+	"strings"
+	"testing"
+
+	"github.com/stretchr/testify/assert"
+)
+
+type testResult struct {
+	Code   int
+	Header http.Header
+	Body   string
+}
+
+func resultEqual(t *testing.T, got *http.Response, want testResult) {
+	t.Helper()
+
+	assert.Equal(t, want.Code, got.StatusCode)
+
+	assertHeaderEqual(t, got.Header, want.Header)
+
+	body, err := io.ReadAll(got.Body)
+	if assert.NoError(t, err) {
+		if strings.Contains(want.Header.Get("Content-Type"), "application/json") {
+			assert.JSONEq(t, want.Body, string(body))
+		} else {
+			assert.Equal(t, want.Body, string(body))
+		}
+	}
+}
+
+func assertHeaderEqual(t *testing.T, got, want http.Header) {
+	t.Helper()
+
+	if assert.Equal(t, len(want), len(got)) {
+		if assert.ElementsMatch(t, mapKeys(got), mapKeys(want)) {
+			for k := range got {
+				assert.ElementsMatch(t, got[k], want[k])
+			}
+		}
+	}
+}
+
+func mapKeys[M ~map[K]V, K comparable, V any](m M) []K {
+	keys := make([]K, 0, len(m))
+
+	for k := range m {
+		keys = append(keys, k)
+	}
+
+	return keys
+}
diff --git a/action/handle.go b/action/handle.go
new file mode 100644
index 00000000..554407cd
--- /dev/null
+++ b/action/handle.go
@@ -0,0 +1,75 @@
+package action
+
+import (
+	"net/http"
+	"strings"
+
+	"github.com/pocketbase/pocketbase/core"
+)
+
+const prefix = "/action/"
+
+func Handle(app core.App) http.HandlerFunc {
+	return func(w http.ResponseWriter, r *http.Request) {
+		if !strings.HasPrefix(r.URL.Path, prefix) {
+			errResponse(app.Logger(), w, http.StatusNotFound, "wrong prefix")
+
+			return
+		}
+
+		actionName := strings.TrimPrefix(r.URL.Path, prefix)
+
+		action, found, err := findAction(app, actionName)
+		if err != nil {
+			errResponse(app.Logger(), w, http.StatusInternalServerError, err.Error())
+
+			return
+		}
+
+		if !found {
+			errResponse(app.Logger(), w, http.StatusNotFound, "action not found")
+
+			return
+		}
+
+		token := action.GetString("token")
+
+		if token != "" && bearerToken(r) != token {
+			errResponse(app.Logger(), w, http.StatusUnauthorized, "invalid token")
+
+			return
+		}
+
+		payload, err := requestToPayload(r)
+		if err != nil {
+			errResponse(app.Logger(), w, http.StatusInternalServerError, err.Error())
+
+			return
+		}
+
+		output, err := runAction(
+			action.GetString("type"),
+			action.GetString("name"),
+			action.GetString("bootstrap"),
+			action.GetString("script"),
+			payload,
+		)
+		if err != nil {
+			errResponse(app.Logger(), w, http.StatusInternalServerError, err.Error())
+
+			return
+		}
+
+		outputToResponse(app.Logger(), w, output)
+	}
+}
+
+func bearerToken(r *http.Request) string {
+	auth := r.Header.Get("Authorization")
+
+	if !strings.HasPrefix(auth, "Bearer ") {
+		return ""
+	}
+
+	return strings.TrimPrefix(auth, "Bearer ")
+}
diff --git a/action/http.go b/action/http.go
new file mode 100644
index 00000000..eecfbe70
--- /dev/null
+++ b/action/http.go
@@ -0,0 +1,71 @@
+package action
+
+import (
+	"encoding/json"
+	"fmt"
+	"log/slog"
+	"net/http"
+)
+
+func requestToPayload(r *http.Request) (string, error) {
+	payload, err := json.Marshal(catalystActionRequest(r))
+	if err != nil {
+		return "", err
+	}
+
+	return string(payload), nil
+}
+
+func outputToResponse(logger *slog.Logger, w http.ResponseWriter, output []byte) {
+	var catalystResponse CatalystActionResponse
+	if err := json.Unmarshal(output, &catalystResponse); err == nil {
+		catalystResponse.toResponse(logger, w)
+
+		return
+	}
+
+	textResponse(logger, w, output)
+}
+
+func response(logger *slog.Logger, w http.ResponseWriter, statusCode int, body []byte) {
+	w.WriteHeader(statusCode)
+
+	_, err := w.Write(body)
+	if err != nil {
+		logger.Error(fmt.Sprintf("Error writing response: %s", err.Error()))
+	}
+}
+
+func errResponse(logger *slog.Logger, w http.ResponseWriter, status int, msg string) {
+	w.Header().Set("Content-Type", "application/json; charset=utf-8")
+
+	body, err := json.Marshal(map[string]string{"error": msg})
+	if err != nil {
+		body = []byte(fmt.Sprintf(`{"error": "%s"}`, msg))
+	}
+
+	response(logger, w, status, body)
+}
+
+const (
+	JSONContentType = "application/json; charset=utf-8"
+	TextContentType = "text/plain; charset=utf-8"
+)
+
+// textResponse returns a response based on the output type.
+func textResponse(logger *slog.Logger, w http.ResponseWriter, output []byte) {
+	if isJSON(output) {
+		w.Header().Set("Content-Type", JSONContentType)
+	} else {
+		w.Header().Set("Content-Type", TextContentType)
+	}
+
+	response(logger, w, http.StatusOK, output)
+}
+
+// isJSON checks if the data is JSON.
+func isJSON(data []byte) bool {
+	var msg json.RawMessage
+
+	return json.Unmarshal(data, &msg) == nil
+}
diff --git a/action/http_test.go b/action/http_test.go
new file mode 100644
index 00000000..d6017d00
--- /dev/null
+++ b/action/http_test.go
@@ -0,0 +1,202 @@
+package action
+
+import (
+	"encoding/json"
+	"fmt"
+	"io"
+	"log/slog"
+	"net/http"
+	"net/http/httptest"
+	"strings"
+	"testing"
+
+	"github.com/stretchr/testify/assert"
+)
+
+func Test_requestToPayload(t *testing.T) {
+	type args struct {
+		r *http.Request
+	}
+
+	tests := []struct {
+		name    string
+		args    args
+		want    any
+		wantErr assert.ErrorAssertionFunc
+	}{
+		{
+			name: "get request",
+			args: args{r: httptest.NewRequest(http.MethodGet, "/action/test", nil)},
+			want: map[string]any{
+				"method":          "GET",
+				"path":            "/action/test",
+				"headers":         map[string]any{},
+				"query":           map[string]any{},
+				"body":            "",
+				"isBase64Encoded": false,
+			},
+			wantErr: assert.NoError,
+		},
+		{
+			name: "post request with query",
+			args: args{r: httptest.NewRequest(http.MethodPost, "/action/test?foo=bar", strings.NewReader("body"))},
+			want: map[string]any{
+				"method":          "POST",
+				"path":            "/action/test",
+				"headers":         map[string]any{},
+				"query":           map[string]any{"foo": []string{"bar"}},
+				"body":            "body",
+				"isBase64Encoded": false,
+			},
+			wantErr: assert.NoError,
+		},
+		{
+			name: "post request with non-utf8 byte",
+			args: args{r: httptest.NewRequest(http.MethodPost, "/action/test", strings.NewReader("body\x80"))},
+			want: map[string]any{
+				"method":          "POST",
+				"path":            "/action/test",
+				"headers":         map[string]any{},
+				"query":           map[string]any{},
+				"body":            "Ym9keYA=",
+				"isBase64Encoded": true,
+			},
+			wantErr: assert.NoError,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			got, err := requestToPayload(tt.args.r)
+
+			if !tt.wantErr(t, err, fmt.Sprintf("requestToPayload(%v)", tt.args.r)) {
+				return
+			}
+
+			want, err := json.Marshal(tt.want)
+			if assert.NoError(t, err, "json.Marshal(%v)", tt.want) {
+				assert.JSONEq(t, string(want), got, "requestToPayload(%v)", tt.args.r)
+			}
+		})
+	}
+}
+
+func Test_outputToResponse(t *testing.T) {
+	logger := slog.New(slog.NewTextHandler(io.Discard, &slog.HandlerOptions{}))
+
+	type args struct {
+		output []byte
+	}
+
+	type want struct {
+		Result testResult
+	}
+
+	tests := []struct {
+		name string
+		args args
+		want want
+	}{
+		{
+			name: "non-http output",
+			args: args{
+				output: []byte(`body`),
+			},
+			want: want{
+				Result: testResult{
+					Code:   200,
+					Header: http.Header{"Content-Type": []string{TextContentType}},
+					Body:   "body",
+				},
+			},
+		},
+		{
+			name: "http text output",
+			args: args{
+				output: []byte(`{"statusCode": 200, "body": "body"}`),
+			},
+			want: want{
+				Result: testResult{
+					Code:   200,
+					Header: http.Header{"Content-Type": []string{TextContentType}},
+					Body:   "body",
+				},
+			},
+		},
+		{
+			name: "http json output",
+			args: args{
+				output: []byte(`{"statusCode": 200,  "body": "{\"key\": \"value\"}"}`),
+			},
+			want: want{
+				Result: testResult{
+					Code:   200,
+					Header: http.Header{"Content-Type": []string{JSONContentType}},
+					Body:   `{"key": "value"}`,
+				},
+			},
+		},
+		{
+			name: "http base64 output",
+			args: args{
+				output: []byte(`{"statusCode": 200, "body": "Ym9keQ==", "isBase64Encoded": true}`),
+			},
+			want: want{
+				Result: testResult{
+					Code:   200,
+					Header: http.Header{"Content-Type": []string{TextContentType}},
+					Body:   "body",
+				},
+			},
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			w := httptest.NewRecorder()
+
+			outputToResponse(logger, w, tt.args.output)
+
+			w.Flush()
+
+			resultEqual(t, w.Result(), tt.want.Result)
+		})
+	}
+}
+
+func Test_errResponse(t *testing.T) {
+	logger := slog.New(slog.NewTextHandler(io.Discard, &slog.HandlerOptions{}))
+
+	type args struct {
+		status int
+		msg    string
+	}
+
+	tests := []struct {
+		name string
+		args args
+		want testResult
+	}{
+		{
+			name: "error response",
+			args: args{
+				status: http.StatusInternalServerError,
+				msg:    "error message",
+			},
+			want: testResult{
+				Code:   http.StatusInternalServerError,
+				Header: http.Header{"Content-Type": []string{JSONContentType}},
+				Body:   `{"error": "error message"}`,
+			},
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			w := httptest.NewRecorder()
+
+			errResponse(logger, w, tt.args.status, tt.args.msg)
+
+			w.Flush()
+
+			resultEqual(t, w.Result(), tt.want)
+		})
+	}
+}
diff --git a/action/python.go b/action/python.go
new file mode 100644
index 00000000..cdf2e75f
--- /dev/null
+++ b/action/python.go
@@ -0,0 +1,79 @@
+package action
+
+import (
+	"errors"
+	"fmt"
+	"os"
+	"os/exec"
+	"strings"
+)
+
+func runPythonAction(name, bootstrap, script, payload string) ([]byte, error) {
+	tempDir, err := os.MkdirTemp("", "catalyst_action_"+name)
+	if err != nil {
+		return nil, err
+	}
+
+	defer os.RemoveAll(tempDir)
+
+	if err := pythonSetup(tempDir); err != nil {
+		return nil, err
+	}
+
+	if err := pythonRunBootstrap(tempDir, bootstrap); err != nil {
+		return nil, err
+	}
+
+	return pythonRunScript(tempDir, script, payload)
+}
+
+func pythonSetup(tempDir string) error {
+	pythonPath, err := findExec("python", "python3")
+	if err != nil {
+		return fmt.Errorf("python or python3 binary not found, %w", err)
+	}
+
+	// setup virtual environment
+	return exec.Command(pythonPath, "-m", "venv", tempDir+"/venv").Run()
+}
+
+func pythonRunBootstrap(tempDir, bootstrap string) error {
+	hasBootstrap := len(strings.TrimSpace(bootstrap)) > 0
+
+	if !hasBootstrap {
+		return nil
+	}
+
+	bootstrapPath := tempDir + "/requirements.txt"
+
+	if err := os.WriteFile(bootstrapPath, []byte(bootstrap), 0o600); err != nil {
+		return err
+	}
+
+	// install dependencies
+	pipPath := tempDir + "/venv/bin/pip"
+
+	return exec.Command(pipPath, "install", "-r", bootstrapPath).Run()
+}
+
+func pythonRunScript(tempDir, script, payload string) ([]byte, error) {
+	scriptPath := tempDir + "/script.py"
+
+	if err := os.WriteFile(scriptPath, []byte(script), 0o600); err != nil {
+		return nil, err
+	}
+
+	pythonPath := tempDir + "/venv/bin/python"
+
+	return exec.Command(pythonPath, scriptPath, payload).Output()
+}
+
+func findExec(name ...string) (string, error) {
+	for _, n := range name {
+		if p, err := exec.LookPath(n); err == nil {
+			return p, nil
+		}
+	}
+
+	return "", errors.New("no executable found")
+}
diff --git a/action/request.go b/action/request.go
new file mode 100644
index 00000000..6d642b87
--- /dev/null
+++ b/action/request.go
@@ -0,0 +1,44 @@
+package action
+
+import (
+	"encoding/base64"
+	"io"
+	"net/http"
+	"net/url"
+	"unicode/utf8"
+)
+
+type CatalystActionRequest struct {
+	Method          string      `json:"method"`
+	Path            string      `json:"path"`
+	Headers         http.Header `json:"headers"`
+	Query           url.Values  `json:"query"`
+	Body            string      `json:"body"`
+	IsBase64Encoded bool        `json:"isBase64Encoded"`
+}
+
+func catalystActionRequest(r *http.Request) *CatalystActionRequest {
+	body, isBase64Encoded := encodeBody(r)
+
+	return &CatalystActionRequest{
+		Method:          r.Method,
+		Path:            r.URL.EscapedPath(),
+		Headers:         r.Header,
+		Query:           r.URL.Query(),
+		Body:            body,
+		IsBase64Encoded: isBase64Encoded,
+	}
+}
+
+func encodeBody(request *http.Request) (string, bool) {
+	body, err := io.ReadAll(request.Body)
+	if err != nil {
+		return "", false
+	}
+
+	if utf8.Valid(body) {
+		return string(body), false
+	}
+
+	return base64.StdEncoding.EncodeToString(body), true
+}
diff --git a/action/response.go b/action/response.go
new file mode 100644
index 00000000..a3121542
--- /dev/null
+++ b/action/response.go
@@ -0,0 +1,39 @@
+package action
+
+import (
+	"encoding/base64"
+	"log/slog"
+	"net/http"
+)
+
+type CatalystActionResponse struct {
+	StatusCode      int         `json:"statusCode"`
+	Headers         http.Header `json:"headers"`
+	Body            string      `json:"body"`
+	IsBase64Encoded bool        `json:"isBase64Encoded"`
+}
+
+func (cr *CatalystActionResponse) toResponse(logger *slog.Logger, w http.ResponseWriter) {
+	for key, values := range cr.Headers {
+		for _, value := range values {
+			w.Header().Add(key, value)
+		}
+	}
+
+	var body []byte
+
+	if cr.IsBase64Encoded {
+		var err error
+
+		body, err = base64.StdEncoding.DecodeString(cr.Body)
+		if err != nil {
+			errResponse(logger, w, http.StatusInternalServerError, "Error decoding base64 body")
+
+			return
+		}
+	} else {
+		body = []byte(cr.Body)
+	}
+
+	textResponse(logger, w, body)
+}
diff --git a/action/response_test.go b/action/response_test.go
new file mode 100644
index 00000000..367d7399
--- /dev/null
+++ b/action/response_test.go
@@ -0,0 +1,51 @@
+package action
+
+import (
+	"io"
+	"log/slog"
+	"net/http"
+	"net/http/httptest"
+	"testing"
+)
+
+func TestCatalystActionResponse_toResponse(t *testing.T) {
+	logger := slog.New(slog.NewTextHandler(io.Discard, &slog.HandlerOptions{}))
+
+	type fields struct {
+		StatusCode      int
+		Headers         http.Header
+		Body            string
+		IsBase64Encoded bool
+	}
+
+	type want struct {
+		Result testResult
+	}
+
+	tests := []struct {
+		name   string
+		fields fields
+		want   want
+	}{
+		{
+			name:   "Test 1",
+			fields: fields{StatusCode: 200, Headers: nil, Body: "body", IsBase64Encoded: false},
+			want:   want{Result: testResult{Code: 200, Header: map[string][]string{"Content-Type": {"text/plain; charset=utf-8"}}, Body: "body"}},
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			w := httptest.NewRecorder()
+
+			cr := &CatalystActionResponse{
+				StatusCode:      tt.fields.StatusCode,
+				Headers:         tt.fields.Headers,
+				Body:            tt.fields.Body,
+				IsBase64Encoded: tt.fields.IsBase64Encoded,
+			}
+			cr.toResponse(logger, w)
+
+			resultEqual(t, w.Result(), tt.want.Result)
+		})
+	}
+}
diff --git a/fakedata/records.go b/fakedata/records.go
index 7fdd0d0f..b54cb9b5 100644
--- a/fakedata/records.go
+++ b/fakedata/records.go
@@ -36,8 +36,9 @@ func Generate(app *pocketbase.PocketBase, userCount, ticketCount int) error {
 	users := userRecords(app.Dao(), userCount)
 	tickets := ticketRecords(app.Dao(), users, types, ticketCount)
 	webhooks := webhookRecords(app.Dao())
+	actions := actionRecords(app.Dao())
 
-	for _, records := range [][]*models.Record{users, tickets, webhooks} {
+	for _, records := range [][]*models.Record{users, tickets, webhooks, actions} {
 		for _, record := range records {
 			if err := app.Dao().SaveRecord(record); err != nil {
 				app.Logger().Error(err.Error())
@@ -222,3 +223,21 @@ func webhookRecords(dao *daos.Dao) []*models.Record {
 
 	return []*models.Record{record}
 }
+
+func actionRecords(dao *daos.Dao) []*models.Record {
+	collection, err := dao.FindCollectionByNameOrId(migrations.ActionCollectionName)
+	if err != nil {
+		panic(err)
+	}
+
+	record := models.NewRecord(collection)
+	record.SetId("w_" + security.PseudorandomString(10))
+	record.Set("name", "test")
+	record.Set("type", "python")
+	record.Set("bootstrap", "requests")
+	record.Set("script", `import sys
+
+print(sys.argv[1])`)
+
+	return []*models.Record{record}
+}
diff --git a/go.mod b/go.mod
index b714f467..02bda449 100644
--- a/go.mod
+++ b/go.mod
@@ -8,6 +8,7 @@ require (
 	github.com/pocketbase/dbx v1.10.1
 	github.com/pocketbase/pocketbase v0.22.10
 	github.com/spf13/cobra v1.8.0
+	github.com/stretchr/testify v1.9.0
 )
 
 require (
@@ -34,6 +35,7 @@ require (
 	github.com/aws/aws-sdk-go-v2/service/ssooidc v1.23.4 // indirect
 	github.com/aws/aws-sdk-go-v2/service/sts v1.28.6 // indirect
 	github.com/aws/smithy-go v1.20.2 // indirect
+	github.com/davecgh/go-spew v1.1.1 // indirect
 	github.com/disintegration/imaging v1.6.2 // indirect
 	github.com/domodwyer/mailyak/v3 v3.6.2 // indirect
 	github.com/dustin/go-humanize v1.0.1 // indirect
@@ -56,11 +58,11 @@ require (
 	github.com/mattn/go-sqlite3 v1.14.22 // indirect
 	github.com/mgutz/ansi v0.0.0-20200706080929-d51e80ef957d // indirect
 	github.com/ncruces/go-strftime v0.1.9 // indirect
+	github.com/pmezard/go-difflib v1.0.0 // indirect
 	github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec // indirect
 	github.com/rogpeppe/go-internal v1.10.0 // indirect
 	github.com/spf13/cast v1.6.0 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
-	github.com/stretchr/testify v1.9.0 // indirect
 	github.com/valyala/bytebufferpool v1.0.0 // indirect
 	github.com/valyala/fasttemplate v1.2.2 // indirect
 	go.opencensus.io v0.24.0 // indirect
@@ -85,6 +87,7 @@ require (
 	google.golang.org/grpc v1.63.2 // indirect
 	google.golang.org/protobuf v1.33.0 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
+	gopkg.in/yaml.v3 v3.0.1 // indirect
 	modernc.org/gc/v3 v3.0.0-20240304020402-f0dba7c97c2b // indirect
 	modernc.org/libc v1.50.2 // indirect
 	modernc.org/mathutil v1.6.0 // indirect
diff --git a/go.sum b/go.sum
index f713614d..5020bd87 100644
--- a/go.sum
+++ b/go.sum
@@ -330,6 +330,7 @@ google.golang.org/protobuf v1.23.1-0.20200526195155-81db48ad09cc/go.mod h1:EGpAD
 google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c=
 google.golang.org/protobuf v1.33.0 h1:uNO2rsAINq/JlFpSdYEKIZ0uKD/R9cpdv0T+yoGwGmI=
 google.golang.org/protobuf v1.33.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
+gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405 h1:yhCVgyC4o1eVCa2tZl7eS0r+SDo693bJlVdllGtEeKM=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
diff --git a/migrations/1_collections.go b/migrations/1_collections.go
index cdbf058f..f7c62ff5 100644
--- a/migrations/1_collections.go
+++ b/migrations/1_collections.go
@@ -11,15 +11,16 @@ import (
 )
 
 const (
-	TimelineCollectionName = "timeline"
+	ActionCollectionName   = "actions"
 	CommentCollectionName  = "comments"
-	fileCollectionName     = "files"
+	FeatureCollectionName  = "features"
 	LinkCollectionName     = "links"
 	TaskCollectionName     = "tasks"
 	TicketCollectionName   = "tickets"
+	TimelineCollectionName = "timeline"
 	TypeCollectionName     = "types"
 	WebhookCollectionName  = "webhooks"
-	FeatureCollectionName  = "features"
+	fileCollectionName     = "files"
 
 	UserCollectionName = "_pb_users_auth_"
 )
@@ -113,6 +114,21 @@ func collectionsUp(db dbx.Builder) error {
 				fmt.Sprintf("CREATE UNIQUE INDEX `unique_name` ON `%s` (`name`)", FeatureCollectionName),
 			},
 		},
+		internalCollection(&models.Collection{
+			Name: ActionCollectionName,
+			Type: models.CollectionTypeBase,
+			Schema: schema.NewSchema(
+				&schema.SchemaField{Name: "name", Type: schema.FieldTypeText, Required: true},
+				&schema.SchemaField{Name: "type", Type: schema.FieldTypeText, Required: true},
+				&schema.SchemaField{Name: "token", Type: schema.FieldTypeText, Required: true},
+				&schema.SchemaField{Name: "description", Type: schema.FieldTypeText},
+				&schema.SchemaField{Name: "bootstrap", Type: schema.FieldTypeText},
+				&schema.SchemaField{Name: "script", Type: schema.FieldTypeText},
+			),
+			Indexes: types.JsonArray[string]{
+				fmt.Sprintf("CREATE UNIQUE INDEX `unique_name` ON `%s` (`name`)", ActionCollectionName),
+			},
+		}),
 	}
 
 	dao := daos.New(db)
diff --git a/routes.go b/routes.go
index dc9fa999..6092f2ea 100644
--- a/routes.go
+++ b/routes.go
@@ -12,6 +12,8 @@ import (
 	"github.com/labstack/echo/v5"
 	"github.com/pocketbase/pocketbase/apis"
 	"github.com/pocketbase/pocketbase/core"
+
+	"github.com/SecurityBrewery/catalyst/action"
 )
 
 //go:embed ui/dist/*
@@ -27,6 +29,7 @@ func addRoutes() func(*core.ServeEvent) error {
 			return c.Redirect(http.StatusFound, "/ui/")
 		})
 		e.Router.GET("/ui/*", staticFiles())
+		e.Router.Any("/action/*", echo.WrapHandler(action.Handle(e.App)))
 		e.Router.GET("/api/config", func(c echo.Context) error {
 			flags, err := flags(e.App)
 			if err != nil {

From 7be63ce5c2c627a24e58b909feb075309b3e7e17 Mon Sep 17 00:00:00 2001
From: Jonas Plum <git@cugu.eu>
Date: Thu, 11 Jul 2024 03:13:09 +0200
Subject: [PATCH 02/17] feat: better reaction ui

---
 action/action.go                              |   2 +-
 fakedata/records.go                           |  32 +++-
 migrations/1_collections.go                   |  16 --
 migrations/5_actions.go                       | 101 ++++++++++
 migrations/migrations.go                      |   1 +
 .../DeleteDialog.vue}                         |  41 +++--
 ui/src/components/form/GrowTextarea.vue       |  49 +++++
 ui/src/components/layout/SideBar.vue          |  21 ++-
 .../components/reaction/ReactionDisplay.vue   | 173 ++++++++++++++++++
 ui/src/components/reaction/ReactionList.vue   |  70 +++++++
 .../components/reaction/ReactionNewDialog.vue | 137 ++++++++++++++
 .../reaction/ReactionPythonDisplay.vue        |  77 ++++++++
 .../reaction/ReactionPythonForm.vue           |  95 ++++++++++
 .../reaction/ReactionWebhookDisplay.vue       |  76 ++++++++
 .../reaction/ReactionWebhookForm.vue          | 105 +++++++++++
 ui/src/components/reaction/TriggerHook.vue    |  75 ++++++++
 .../components/reaction/TriggerTicketType.vue |  57 ++++++
 ui/src/components/reaction/TriggerWebhook.vue |  61 ++++++
 ui/src/components/ticket/TicketActionBar.vue  |  11 +-
 .../components/ticket/TicketDeleteDialog.vue  |  90 ---------
 ui/src/components/ticket/file/TicketFiles.vue |  16 +-
 .../ticket/link/LinkRemoveDialog.vue          |  70 -------
 ui/src/components/ticket/link/TicketLinks.vue |  18 +-
 .../ticket/task/TaskRemoveDialog.vue          |  70 -------
 ui/src/components/ticket/task/TicketTasks.vue |  16 +-
 ui/src/lib/types.ts                           |  32 ++++
 ui/src/router/index.ts                        |   6 +
 ui/src/views/ReactionView.vue                 |  38 ++++
 28 files changed, 1274 insertions(+), 282 deletions(-)
 create mode 100644 migrations/5_actions.go
 rename ui/src/components/{ticket/file/FileRemoveDialog.vue => common/DeleteDialog.vue} (53%)
 create mode 100644 ui/src/components/form/GrowTextarea.vue
 create mode 100644 ui/src/components/reaction/ReactionDisplay.vue
 create mode 100644 ui/src/components/reaction/ReactionList.vue
 create mode 100644 ui/src/components/reaction/ReactionNewDialog.vue
 create mode 100644 ui/src/components/reaction/ReactionPythonDisplay.vue
 create mode 100644 ui/src/components/reaction/ReactionPythonForm.vue
 create mode 100644 ui/src/components/reaction/ReactionWebhookDisplay.vue
 create mode 100644 ui/src/components/reaction/ReactionWebhookForm.vue
 create mode 100644 ui/src/components/reaction/TriggerHook.vue
 create mode 100644 ui/src/components/reaction/TriggerTicketType.vue
 create mode 100644 ui/src/components/reaction/TriggerWebhook.vue
 delete mode 100644 ui/src/components/ticket/TicketDeleteDialog.vue
 delete mode 100644 ui/src/components/ticket/link/LinkRemoveDialog.vue
 delete mode 100644 ui/src/components/ticket/task/TaskRemoveDialog.vue
 create mode 100644 ui/src/views/ReactionView.vue

diff --git a/action/action.go b/action/action.go
index 8c759662..c51f9ee8 100644
--- a/action/action.go
+++ b/action/action.go
@@ -11,7 +11,7 @@ import (
 )
 
 func findAction(app core.App, action string) (*models.Record, bool, error) {
-	records, err := app.Dao().FindRecordsByExpr(migrations.ActionCollectionName, dbx.HashExp{"name": action})
+	records, err := app.Dao().FindRecordsByExpr(migrations.ReactionPythonCollectionName, dbx.HashExp{"name": action}) // TODO
 	if err != nil {
 		return nil, false, err
 	}
diff --git a/fakedata/records.go b/fakedata/records.go
index b54cb9b5..b9ce5191 100644
--- a/fakedata/records.go
+++ b/fakedata/records.go
@@ -36,9 +36,9 @@ func Generate(app *pocketbase.PocketBase, userCount, ticketCount int) error {
 	users := userRecords(app.Dao(), userCount)
 	tickets := ticketRecords(app.Dao(), users, types, ticketCount)
 	webhooks := webhookRecords(app.Dao())
-	actions := actionRecords(app.Dao())
+	reactions := reactionRecords(app.Dao())
 
-	for _, records := range [][]*models.Record{users, tickets, webhooks, actions} {
+	for _, records := range [][]*models.Record{users, tickets, webhooks, reactions} {
 		for _, record := range records {
 			if err := app.Dao().SaveRecord(record); err != nil {
 				app.Logger().Error(err.Error())
@@ -224,8 +224,10 @@ func webhookRecords(dao *daos.Dao) []*models.Record {
 	return []*models.Record{record}
 }
 
-func actionRecords(dao *daos.Dao) []*models.Record {
-	collection, err := dao.FindCollectionByNameOrId(migrations.ActionCollectionName)
+func reactionRecords(dao *daos.Dao) []*models.Record {
+	var records []*models.Record
+
+	collection, err := dao.FindCollectionByNameOrId(migrations.ReactionWebhookCollectionName)
 	if err != nil {
 		panic(err)
 	}
@@ -233,11 +235,23 @@ func actionRecords(dao *daos.Dao) []*models.Record {
 	record := models.NewRecord(collection)
 	record.SetId("w_" + security.PseudorandomString(10))
 	record.Set("name", "test")
-	record.Set("type", "python")
-	record.Set("bootstrap", "requests")
-	record.Set("script", `import sys
+	record.Set("headers", `["Content-Type: application/json"]`)
+	record.Set("destination", "http://localhost:8080/webhook")
 
-print(sys.argv[1])`)
+	records = append(records, record)
 
-	return []*models.Record{record}
+	collection, err = dao.FindCollectionByNameOrId(migrations.ReactionPythonCollectionName)
+	if err != nil {
+		panic(err)
+	}
+
+	record = models.NewRecord(collection)
+	record.SetId("w_" + security.PseudorandomString(10))
+	record.Set("name", "test")
+	record.Set("requirements", "requests")
+	record.Set("script", "import sys\n\nprint(sys.argv[1])")
+
+	records = append(records, record)
+
+	return records
 }
diff --git a/migrations/1_collections.go b/migrations/1_collections.go
index f7c62ff5..7d016384 100644
--- a/migrations/1_collections.go
+++ b/migrations/1_collections.go
@@ -11,7 +11,6 @@ import (
 )
 
 const (
-	ActionCollectionName   = "actions"
 	CommentCollectionName  = "comments"
 	FeatureCollectionName  = "features"
 	LinkCollectionName     = "links"
@@ -114,21 +113,6 @@ func collectionsUp(db dbx.Builder) error {
 				fmt.Sprintf("CREATE UNIQUE INDEX `unique_name` ON `%s` (`name`)", FeatureCollectionName),
 			},
 		},
-		internalCollection(&models.Collection{
-			Name: ActionCollectionName,
-			Type: models.CollectionTypeBase,
-			Schema: schema.NewSchema(
-				&schema.SchemaField{Name: "name", Type: schema.FieldTypeText, Required: true},
-				&schema.SchemaField{Name: "type", Type: schema.FieldTypeText, Required: true},
-				&schema.SchemaField{Name: "token", Type: schema.FieldTypeText, Required: true},
-				&schema.SchemaField{Name: "description", Type: schema.FieldTypeText},
-				&schema.SchemaField{Name: "bootstrap", Type: schema.FieldTypeText},
-				&schema.SchemaField{Name: "script", Type: schema.FieldTypeText},
-			),
-			Indexes: types.JsonArray[string]{
-				fmt.Sprintf("CREATE UNIQUE INDEX `unique_name` ON `%s` (`name`)", ActionCollectionName),
-			},
-		}),
 	}
 
 	dao := daos.New(db)
diff --git a/migrations/5_actions.go b/migrations/5_actions.go
new file mode 100644
index 00000000..e2c511cc
--- /dev/null
+++ b/migrations/5_actions.go
@@ -0,0 +1,101 @@
+package migrations
+
+import (
+	"github.com/pocketbase/dbx"
+	"github.com/pocketbase/pocketbase/daos"
+	"github.com/pocketbase/pocketbase/models"
+	"github.com/pocketbase/pocketbase/models/schema"
+)
+
+const (
+	TriggerWebhookCollectionName  = "triggers_webhooks"
+	TriggerHookCollectionName     = "triggers_hooks"
+	ReactionViewName              = "reactions"
+	ReactionPythonCollectionName  = "reactions_python"
+	ReactionWebhookCollectionName = "reactions_webhooks"
+)
+
+const reactionViewQuery = `SELECT id, name, type, created, updated FROM (
+  SELECT id, name, created, updated, 'python' as type FROM reactions_python
+  UNION
+  SELECT id, name, created, updated, 'webhook' as type FROM reactions_webhooks
+) as reactions;`
+
+func actionsUp(db dbx.Builder) error {
+	hookCollections := []string{TicketCollectionName, TaskCollectionName, CommentCollectionName, TimelineCollectionName, LinkCollectionName, fileCollectionName}
+	hookEvents := []string{"create", "update", "delete"}
+
+	collections := []*models.Collection{
+		internalCollection(&models.Collection{
+			Name: TriggerWebhookCollectionName,
+			Type: models.CollectionTypeBase,
+			Schema: schema.NewSchema(
+				&schema.SchemaField{Name: "name", Type: schema.FieldTypeText, Required: true},
+				&schema.SchemaField{Name: "token", Type: schema.FieldTypeText},
+				&schema.SchemaField{Name: "path", Type: schema.FieldTypeText, Required: true},
+			),
+		}),
+		internalCollection(&models.Collection{
+			Name: TriggerHookCollectionName,
+			Type: models.CollectionTypeBase,
+			Schema: schema.NewSchema(
+				&schema.SchemaField{Name: "name", Type: schema.FieldTypeText, Required: true},
+				&schema.SchemaField{Name: "collection", Type: schema.FieldTypeSelect, Required: true, Options: &schema.SelectOptions{Values: hookCollections}},
+				&schema.SchemaField{Name: "event", Type: schema.FieldTypeSelect, Required: true, Options: &schema.SelectOptions{Values: hookEvents}},
+			),
+		}),
+		internalCollection(&models.Collection{
+			Name: ReactionPythonCollectionName,
+			Type: models.CollectionTypeBase,
+			Schema: schema.NewSchema(
+				&schema.SchemaField{Name: "name", Type: schema.FieldTypeText, Required: true},
+				&schema.SchemaField{Name: "requirements", Type: schema.FieldTypeText},
+				&schema.SchemaField{Name: "script", Type: schema.FieldTypeText, Required: true},
+			),
+		}),
+		internalCollection(&models.Collection{
+			Name: ReactionWebhookCollectionName,
+			Type: models.CollectionTypeBase,
+			Schema: schema.NewSchema(
+				&schema.SchemaField{Name: "name", Type: schema.FieldTypeText, Required: true},
+				&schema.SchemaField{Name: "headers", Type: schema.FieldTypeText},
+				&schema.SchemaField{Name: "destination", Type: schema.FieldTypeText, Required: true},
+			),
+		}),
+		internalView(ReactionViewName, reactionViewQuery),
+	}
+
+	dao := daos.New(db)
+	for _, c := range collections {
+		if err := dao.SaveCollection(c); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+func actionsDown(db dbx.Builder) error {
+	collections := []string{
+		TriggerWebhookCollectionName,
+		TriggerHookCollectionName,
+		ReactionPythonCollectionName,
+		ReactionWebhookCollectionName,
+		ReactionViewName,
+	}
+
+	dao := daos.New(db)
+
+	for _, name := range collections {
+		id, err := dao.FindCollectionByNameOrId(name)
+		if err != nil {
+			return err
+		}
+
+		if err := dao.DeleteCollection(id); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
diff --git a/migrations/migrations.go b/migrations/migrations.go
index d0ab957d..4f0e98e7 100644
--- a/migrations/migrations.go
+++ b/migrations/migrations.go
@@ -9,4 +9,5 @@ func Register() {
 	migrations.Register(collectionsUp, collectionsDown, "1700000001_collections.go")
 	migrations.Register(defaultDataUp, nil, "1700000003_defaultdata.go")
 	migrations.Register(viewsUp, viewsDown, "1700000004_views.go")
+	migrations.Register(actionsUp, actionsDown, "1700000005_actions.go")
 }
diff --git a/ui/src/components/ticket/file/FileRemoveDialog.vue b/ui/src/components/common/DeleteDialog.vue
similarity index 53%
rename from ui/src/components/ticket/file/FileRemoveDialog.vue
rename to ui/src/components/common/DeleteDialog.vue
index 1417b9ff..0c6bdcc9 100644
--- a/ui/src/components/ticket/file/FileRemoveDialog.vue
+++ b/ui/src/components/common/DeleteDialog.vue
@@ -16,24 +16,29 @@ import { Trash2 } from 'lucide-vue-next'
 
 import { useMutation, useQueryClient } from '@tanstack/vue-query'
 import { ref } from 'vue'
+import { type RouteLocationRaw, useRouter } from 'vue-router'
 
 import { pb } from '@/lib/pocketbase'
-import type { File, Ticket } from '@/lib/types'
 
 const queryClient = useQueryClient()
+const router = useRouter()
 
 const props = defineProps<{
-  ticket: Ticket
-  file: File
+  collection: string
+  id: string
+  name: string
+  singular: string
+  queryKey: string[]
+  to?: RouteLocationRaw
 }>()
 
 const isOpen = ref(false)
 
-const removeFileMutation = useMutation({
-  mutationFn: (): Promise<boolean> => pb.collection('files').delete(props.file.id),
+const deleteMutation = useMutation({
+  mutationFn: () => pb.collection(props.collection).delete(props.id),
   onSuccess: () => {
-    queryClient.invalidateQueries({ queryKey: ['tickets', props.ticket.id] })
-    isOpen.value = false
+    queryClient.invalidateQueries({ queryKey: props.queryKey })
+    if (props.to) router.push(props.to)
   },
   onError: (error) =>
     toast({
@@ -47,23 +52,27 @@ const removeFileMutation = useMutation({
 <template>
   <Dialog v-model:open="isOpen">
     <DialogTrigger as-child>
-      <Button variant="ghost" size="icon">
-        <Trash2 class="h-4 w-4" />
-      </Button>
+      <slot>
+        <Button variant="outline">
+          <Trash2 class="mr-2 h-4 w-4" />
+          Delete {{ props.singular }}
+        </Button>
+      </slot>
     </DialogTrigger>
+
     <DialogContent>
       <DialogHeader>
-        <DialogTitle> Delete File "{{ props.file.name }}" </DialogTitle>
-        <DialogDescription> Are you sure you want to delete this file? </DialogDescription>
+        <DialogTitle> Delete {{ props.singular }} "{{ props.name }}"</DialogTitle>
+        <DialogDescription>
+          Are you sure you want to delete this {{ props.singular }}?</DialogDescription
+        >
       </DialogHeader>
 
       <DialogFooter class="mt-2">
         <DialogClose as-child>
-          <Button type="button" variant="secondary"> Cancel</Button>
+          <Button type="button" variant="secondary">Cancel</Button>
         </DialogClose>
-        <Button type="button" variant="destructive" @click="removeFileMutation.mutate()">
-          Delete
-        </Button>
+        <Button type="button" variant="destructive" @click="deleteMutation.mutate"> Delete </Button>
       </DialogFooter>
     </DialogContent>
   </Dialog>
diff --git a/ui/src/components/form/GrowTextarea.vue b/ui/src/components/form/GrowTextarea.vue
new file mode 100644
index 00000000..91f8b524
--- /dev/null
+++ b/ui/src/components/form/GrowTextarea.vue
@@ -0,0 +1,49 @@
+<script setup lang="ts">
+import { Textarea } from '@/components/ui/textarea'
+
+import { useVModel } from '@vueuse/core'
+import { type HTMLAttributes, onMounted, ref } from 'vue'
+
+import { cn } from '@/lib/utils'
+
+const props = defineProps<{
+  class?: HTMLAttributes['class']
+  defaultValue?: string | number
+  modelValue?: string | number
+}>()
+
+const emits = defineEmits<{
+  (e: 'update:modelValue', payload: string | number): void
+}>()
+
+const modelValue = useVModel(props, 'modelValue', emits, {
+  passive: true,
+  defaultValue: props.defaultValue
+})
+
+const textarea = ref<HTMLElement | null>(null)
+
+const resize = () => {
+  if (!textarea.value) return
+  textarea.value.style.height = 'auto' // Reset to default or minimum height
+  textarea.value.style.height = textarea.value.scrollHeight + 2 + 'px'
+}
+
+onMounted(() => resize())
+</script>
+
+<template>
+  <textarea
+    ref="textarea"
+    rows="1"
+    @focus="resize"
+    @input="resize"
+    v-model="modelValue"
+    :class="
+      cn(
+        'flex min-h-20 w-full rounded-md border border-input bg-background px-3 py-2 text-sm ring-offset-background placeholder:text-muted-foreground focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-ring focus-visible:ring-offset-2 disabled:cursor-not-allowed disabled:opacity-50',
+        props.class
+      )
+    "
+  />
+</template>
diff --git a/ui/src/components/layout/SideBar.vue b/ui/src/components/layout/SideBar.vue
index 8c6efc55..61a105a9 100644
--- a/ui/src/components/layout/SideBar.vue
+++ b/ui/src/components/layout/SideBar.vue
@@ -29,7 +29,6 @@ const catalystStore = useCatalystStore()
     <h1 class="text-xl font-bold" v-if="!catalystStore.sidebarCollapsed">Catalyst</h1>
   </div>
   <NavList
-    class="mt-auto"
     :is-collapsed="catalystStore.sidebarCollapsed"
     :links="[
       {
@@ -43,10 +42,26 @@ const catalystStore = useCatalystStore()
   <Separator />
   <IncidentNav :is-collapsed="catalystStore.sidebarCollapsed" />
 
-  <Separator />
-
   <div class="flex-1" />
 
+  <Separator />
+  <NavList
+    :is-collapsed="catalystStore.sidebarCollapsed"
+    :links="[
+      {
+        title: 'Incoming Webhooks',
+        icon: 'Webhook',
+        variant: 'ghost',
+        to: '/webhooks'
+      },
+      {
+        title: 'Reactions',
+        icon: 'Zap',
+        variant: 'ghost',
+        to: '/reactions'
+      }
+    ]"
+  />
   <Separator />
   <UserDropDown :is-collapsed="catalystStore.sidebarCollapsed" />
   <Separator />
diff --git a/ui/src/components/reaction/ReactionDisplay.vue b/ui/src/components/reaction/ReactionDisplay.vue
new file mode 100644
index 00000000..a7032846
--- /dev/null
+++ b/ui/src/components/reaction/ReactionDisplay.vue
@@ -0,0 +1,173 @@
+<script setup lang="ts">
+import TanView from '@/components/TanView.vue'
+import GrowTextarea from '@/components/form/GrowTextarea.vue'
+import DynamicInput from '@/components/input/DynamicInput.vue'
+import ReactionDeleteDialog from '@/components/reaction/ReactionDeleteDialog.vue'
+import ReactionPython from '@/components/reaction/ReactionPython.vue'
+import ReactionWebhook from '@/components/reaction/ReactionWebhook.vue'
+import TriggerHook from '@/components/reaction/TriggerHook.vue'
+import TriggerTicketType from '@/components/reaction/TriggerTicketType.vue'
+import TriggerWebhook from '@/components/reaction/TriggerWebhook.vue'
+import { Card, CardContent, CardHeader, CardTitle } from '@/components/ui/card'
+import { Label } from '@/components/ui/label'
+import { ScrollArea } from '@/components/ui/scroll-area'
+import {
+  Select,
+  SelectContent,
+  SelectGroup,
+  SelectItem,
+  SelectTrigger,
+  SelectValue
+} from '@/components/ui/select'
+import { Separator } from '@/components/ui/separator'
+import { toast } from '@/components/ui/toast'
+
+import { useMutation, useQuery, useQueryClient } from '@tanstack/vue-query'
+
+import { pb } from '@/lib/pocketbase'
+import type { Reaction } from '@/lib/types'
+
+const queryClient = useQueryClient()
+
+const props = defineProps<{
+  id: string
+}>()
+
+const {
+  isPending,
+  isError,
+  data: reaction,
+  error
+} = useQuery({
+  queryKey: ['reactions', props.id],
+  queryFn: (): Promise<Reaction> => pb.collection('reactions').getOne(props.id)
+})
+
+const updateReactionMutation = useMutation({
+  mutationFn: (update: any) => pb.collection('reactions').update(props.id, update),
+  onSuccess: () => queryClient.invalidateQueries({ queryKey: ['reactions'] }),
+  onError: (error) =>
+    toast({
+      title: error.name,
+      description: error.message,
+      variant: 'destructive'
+    })
+})
+
+const updateName = (name: string) => updateReactionMutation.mutate({ name: name })
+const updateDescription = (description: string) =>
+  updateReactionMutation.mutate({ description: description })
+const updateTrigger = (trigger: string) =>
+  updateReactionMutation.mutate({ trigger, triggerdata: {} })
+const updateTriggerData = (triggerdata: any) => updateReactionMutation.mutate({ triggerdata })
+const updateReaction = (reaction: string) =>
+  updateReactionMutation.mutate({ reaction, reactiondata: {} })
+const updateReactionData = (reactiondata: any) => updateReactionMutation.mutate({ reactiondata })
+</script>
+
+<template>
+  <TanView :isError="isError" :isPending="isPending" :error="error" :value="reaction">
+    <div class="flex h-full flex-1 flex-col overflow-hidden">
+      <div class="flex items-center bg-background px-4 py-2">
+        <div class="ml-auto">
+          <ReactionDeleteDialog v-if="reaction" :reaction="reaction" />
+        </div>
+      </div>
+      <Separator />
+
+      <ScrollArea v-if="reaction" class="flex-1">
+        <div class="flex max-w-[640px] flex-col gap-4 p-4">
+          <h1 class="text-3xl font-bold">
+            <DynamicInput :modelValue="reaction.name" @update:modelValue="updateName" />
+          </h1>
+
+          <Label for="description">Description</Label>
+          <GrowTextarea
+            id="description"
+            :modelValue="reaction.description"
+            @update:modelValue="updateDescription"
+            placeholder="Enter a description"
+          />
+
+          <Card>
+            <CardHeader>
+              <CardTitle> Trigger </CardTitle>
+            </CardHeader>
+            <CardContent>
+              <Label for="trigger">Type</Label>
+              <Select
+                id="trigger"
+                :modelValue="reaction.trigger"
+                @update:modelValue="updateTrigger"
+              >
+                <SelectTrigger class="font-medium">
+                  <SelectValue placeholder="Select a trigger" />
+                </SelectTrigger>
+                <SelectContent>
+                  <SelectGroup>
+                    <SelectItem value="playbook">Playbook</SelectItem>
+                    <SelectItem value="ticket">Ticket</SelectItem>
+                    <SelectItem value="webhook">Incoming Webhook</SelectItem>
+                    <SelectItem value="hook">Internal Hook</SelectItem>
+                  </SelectGroup>
+                </SelectContent>
+              </Select>
+
+              <p v-if="reaction.trigger === 'playbook'" class="py-4 text-sm text-muted-foreground">
+                You can add this reaction to a playbooks.
+              </p>
+              <TriggerTicketType
+                v-else-if="reaction.trigger === 'ticket'"
+                :modelValue="reaction.triggerdata"
+                @update:modelValue="updateTriggerData"
+              />
+              <TriggerWebhook
+                v-else-if="reaction.trigger === 'webhook'"
+                :modelValue="reaction.triggerdata"
+                @update:modelValue="updateTriggerData"
+              />
+              <TriggerHook
+                v-else-if="reaction.trigger === 'hook'"
+                :modelValue="reaction.triggerdata"
+                @update:modelValue="updateTriggerData"
+              />
+            </CardContent>
+          </Card>
+
+          <Card>
+            <CardHeader>
+              <CardTitle> Reaction </CardTitle>
+            </CardHeader>
+            <CardContent>
+              <Label>Type</Label>
+              <Select :modelValue="reaction.reaction" @update:modelValue="updateReaction">
+                <SelectTrigger class="font-medium">
+                  <SelectValue placeholder="Select a type" />
+                </SelectTrigger>
+                <SelectContent>
+                  <SelectGroup>
+                    <SelectItem value="python">Python</SelectItem>
+                    <SelectItem value="webhook">Webhook</SelectItem>
+                  </SelectGroup>
+                </SelectContent>
+              </Select>
+
+              <ReactionPython
+                v-if="reaction.reaction === 'python'"
+                :modelValue="reaction.reactiondata"
+                @update:modelValue="updateReactionData"
+              />
+              <ReactionWebhook
+                v-else-if="reaction.reaction === 'webhook'"
+                :modelValue="reaction.reactiondata"
+                @update:modelValue="updateReactionData"
+              />
+            </CardContent>
+          </Card>
+
+          {{ reaction }}
+        </div>
+      </ScrollArea>
+    </div>
+  </TanView>
+</template>
diff --git a/ui/src/components/reaction/ReactionList.vue b/ui/src/components/reaction/ReactionList.vue
new file mode 100644
index 00000000..5680170f
--- /dev/null
+++ b/ui/src/components/reaction/ReactionList.vue
@@ -0,0 +1,70 @@
+<script setup lang="ts">
+import TanView from '@/components/TanView.vue'
+import ResourceListElement from '@/components/common/ResourceListElement.vue'
+import ReactionNewDialog from '@/components/reaction/ReactionNewDialog.vue'
+import ReactionPythonNewDialog from '@/components/reaction/ReactionPythonNewDialog.vue'
+import { Separator } from '@/components/ui/separator'
+
+import { useQuery } from '@tanstack/vue-query'
+import { computed } from 'vue'
+import { useRoute } from 'vue-router'
+
+import { pb } from '@/lib/pocketbase'
+import type { Reaction } from '@/lib/types'
+
+const route = useRoute()
+
+const {
+  isPending,
+  isError,
+  data: reactions,
+  error
+} = useQuery({
+  queryKey: ['reactions'],
+  queryFn: (): Promise<Array<Reaction>> =>
+    pb.collection('reactions').getFullList({
+      sort: '-created'
+    })
+})
+
+const subtitle = (reaction: Reaction) => {
+  if (reaction.type === 'python') {
+    return 'Python'
+  } else if (reaction.type === 'webhook') {
+    return 'Webhook'
+  } else {
+    return 'Unknown'
+  }
+}
+</script>
+
+<template>
+  <TanView :isError="isError" :isPending="isPending" :error="error" :value="reactions">
+    <div class="flex h-screen flex-col">
+      <div class="flex items-center bg-background px-4 py-2">
+        <h1 class="text-xl font-bold">Reactions</h1>
+        <div class="ml-auto">
+          <ReactionNewDialog />
+        </div>
+      </div>
+      <Separator />
+      <div class="mt-2 flex flex-1 flex-col gap-2 p-4 pt-0">
+        <TransitionGroup name="list" appear>
+          <ResourceListElement
+            v-for="reaction in reactions"
+            :key="reaction.id"
+            :title="reaction.name"
+            :created="reaction.created"
+            :subtitle="subtitle(reaction)"
+            description=""
+            :active="route.params.id === reaction.id"
+            :to="{ name: 'reactions', params: { id: reaction.id, type: reaction.type } }"
+            :open="false"
+          >
+            {{ reaction.name }}
+          </ResourceListElement>
+        </TransitionGroup>
+      </div>
+    </div>
+  </TanView>
+</template>
diff --git a/ui/src/components/reaction/ReactionNewDialog.vue b/ui/src/components/reaction/ReactionNewDialog.vue
new file mode 100644
index 00000000..a51ffadb
--- /dev/null
+++ b/ui/src/components/reaction/ReactionNewDialog.vue
@@ -0,0 +1,137 @@
+<script setup lang="ts">
+import ReactionPythonForm from '@/components/reaction/ReactionPythonForm.vue'
+import ReactionWebhookForm from '@/components/reaction/ReactionWebhookForm.vue'
+import { Button } from '@/components/ui/button'
+import {
+  Dialog,
+  DialogClose,
+  DialogContent,
+  DialogDescription,
+  DialogFooter,
+  DialogHeader,
+  DialogTitle,
+  DialogTrigger
+} from '@/components/ui/dialog'
+import { Label } from '@/components/ui/label'
+import {
+  Select,
+  SelectContent,
+  SelectGroup,
+  SelectItem,
+  SelectTrigger,
+  SelectValue
+} from '@/components/ui/select'
+import { toast } from '@/components/ui/toast'
+
+import { useMutation, useQueryClient } from '@tanstack/vue-query'
+import { ref } from 'vue'
+import { useRouter } from 'vue-router'
+
+import { pb } from '@/lib/pocketbase'
+import type { ReactionPython, ReactionWebhook, Ticket } from '@/lib/types'
+
+const queryClient = useQueryClient()
+const router = useRouter()
+
+const isOpen = ref(false)
+
+const addReactionWebhookMutation = useMutation({
+  mutationFn: (values: ReactionWebhook): Promise<ReactionWebhook> =>
+    pb.collection('reactions_webhooks').create(values),
+  onSuccess: (data: Ticket) => {
+    router.push({ name: 'reactions', params: { type: 'webhook', id: data.id } })
+    queryClient.invalidateQueries({ queryKey: ['reactions'] })
+    queryClient.invalidateQueries({ queryKey: ['reactions_webhooks'] })
+    isOpen.value = false
+  },
+  onError: (error) =>
+    toast({
+      title: error.name,
+      description: error.message,
+      variant: 'destructive'
+    })
+})
+
+const addReactionPythonMutation = useMutation({
+  mutationFn: (values: ReactionPython): Promise<ReactionPython> =>
+    pb.collection('reactions_python').create(values),
+  onSuccess: (data: Ticket) => {
+    router.push({ name: 'reactions', params: { type: 'python', id: data.id } })
+    queryClient.invalidateQueries({ queryKey: ['reactions'] })
+    queryClient.invalidateQueries({ queryKey: ['reactions_python'] })
+    isOpen.value = false
+  },
+  onError: (error) =>
+    toast({
+      title: error.name,
+      description: error.message,
+      variant: 'destructive'
+    })
+})
+
+const submitDisabled = ref(true)
+
+const type = ref('')
+</script>
+
+<template>
+  <Dialog v-model:open="isOpen">
+    <DialogTrigger as-child>
+      <Button variant="ghost">New Reaction</Button>
+    </DialogTrigger>
+    <DialogContent>
+      <DialogHeader>
+        <DialogTitle>New Reaction</DialogTitle>
+        <DialogDescription>Create a new reaction</DialogDescription>
+      </DialogHeader>
+
+      <Label>Type</Label>
+      <Select v-model="type">
+        <SelectTrigger class="font-medium">
+          <SelectValue placeholder="Select a type" />
+        </SelectTrigger>
+        <SelectContent>
+          <SelectGroup>
+            <SelectItem value="python">Python</SelectItem>
+            <SelectItem value="webhook">Webhook</SelectItem>
+          </SelectGroup>
+        </SelectContent>
+      </Select>
+
+      <ReactionPythonForm
+        v-if="type === 'python'"
+        @submit="addReactionPythonMutation.mutate"
+        v-model:submitDisabled="submitDisabled"
+      >
+        <DialogFooter class="mt-2">
+          <DialogClose as-child>
+            <Button type="button" variant="secondary" @click="isOpen = false">Cancel</Button>
+          </DialogClose>
+          <Button
+            :title="submitDisabled ? 'Please fill out all required fields' : undefined"
+            :disabled="submitDisabled"
+            type="submit"
+            >Save
+          </Button>
+        </DialogFooter>
+      </ReactionPythonForm>
+      <ReactionWebhookForm
+        v-if="type === 'webhook'"
+        @submit="addReactionWebhookMutation.mutate"
+        v-model:submitDisabled="submitDisabled"
+      >
+        <DialogFooter class="mt-2">
+          <DialogClose as-child>
+            <Button type="button" variant="secondary">Cancel</Button>
+          </DialogClose>
+          <Button
+            :title="submitDisabled ? 'Please fill out all required fields' : undefined"
+            :disabled="submitDisabled"
+            type="submit"
+            >Save
+          </Button>
+        </DialogFooter>
+      </ReactionWebhookForm>
+    </DialogContent>
+  </Dialog>
+</template>
diff --git a/ui/src/components/reaction/ReactionPythonDisplay.vue b/ui/src/components/reaction/ReactionPythonDisplay.vue
new file mode 100644
index 00000000..492b75ad
--- /dev/null
+++ b/ui/src/components/reaction/ReactionPythonDisplay.vue
@@ -0,0 +1,77 @@
+<script setup lang="ts">
+import TanView from '@/components/TanView.vue'
+import DeleteDialog from '@/components/common/DeleteDialog.vue'
+import DynamicInput from '@/components/input/DynamicInput.vue'
+import ReactionPythonForm from '@/components/reaction/ReactionPythonForm.vue'
+import { ScrollArea } from '@/components/ui/scroll-area'
+import { Separator } from '@/components/ui/separator'
+import { toast } from '@/components/ui/toast'
+
+import { useMutation, useQuery, useQueryClient } from '@tanstack/vue-query'
+
+import { pb } from '@/lib/pocketbase'
+import type { ReactionPython } from '@/lib/types'
+
+const queryClient = useQueryClient()
+
+const props = defineProps<{
+  id: string
+}>()
+
+const {
+  isPending,
+  isError,
+  data: reaction,
+  error
+} = useQuery({
+  queryKey: ['reactions_python', props.id],
+  queryFn: (): Promise<ReactionPython> => pb.collection('reactions_python').getOne(props.id)
+})
+
+const updateReactionMutation = useMutation({
+  mutationFn: (update: any) => pb.collection('reactions_python').update(props.id, update),
+  onSuccess: () => {
+    queryClient.invalidateQueries({ queryKey: ['reactions'] })
+    queryClient.invalidateQueries({ queryKey: ['reactions_python'] })
+  },
+  onError: (error) =>
+    toast({
+      title: error.name,
+      description: error.message,
+      variant: 'destructive'
+    })
+})
+</script>
+
+<template>
+  <TanView :isError="isError" :isPending="isPending" :error="error" :value="reaction">
+    <div class="flex h-full flex-1 flex-col overflow-hidden">
+      <div class="flex items-center bg-background px-4 py-2">
+        <div class="ml-auto">
+          <DeleteDialog
+            v-if="reaction"
+            collection="reactions_python"
+            :id="reaction.id"
+            :name="reaction.name"
+            :singular="'Reaction'"
+            :to="{ name: 'reactions' }"
+            :queryKey="['reactions']"
+          />
+        </div>
+      </div>
+      <Separator />
+
+      <ScrollArea v-if="reaction" class="flex-1">
+        <div class="flex max-w-[640px] flex-col gap-4 p-4">
+          <h1 class="text-3xl font-bold">Python Reaction Editor</h1>
+
+          <p class="py-4 text-sm text-muted-foreground">
+            Write a Python script that will be executed when this reaction is triggered.
+          </p>
+
+          <ReactionPythonForm :reaction="reaction" @submit="updateReactionMutation.mutate" />
+        </div>
+      </ScrollArea>
+    </div>
+  </TanView>
+</template>
diff --git a/ui/src/components/reaction/ReactionPythonForm.vue b/ui/src/components/reaction/ReactionPythonForm.vue
new file mode 100644
index 00000000..eddf317d
--- /dev/null
+++ b/ui/src/components/reaction/ReactionPythonForm.vue
@@ -0,0 +1,95 @@
+<script setup lang="ts">
+import GrowTextarea from '@/components/form/GrowTextarea.vue'
+import { Button } from '@/components/ui/button'
+import { FormField, FormItem, FormLabel, FormMessage } from '@/components/ui/form'
+import { Input } from '@/components/ui/input'
+
+import { defineRule, useForm } from 'vee-validate'
+import { watch } from 'vue'
+
+import type { ReactionPython } from '@/lib/types'
+
+const submitDisabled = defineModel('submitDisabled')
+
+const props = defineProps<{
+  reaction?: ReactionPython
+}>()
+
+const emit = defineEmits(['submit'])
+
+defineRule('required', (value: string) => {
+  if (!value || !value.length) {
+    return 'This field is required'
+  }
+
+  return true
+})
+
+const { handleSubmit, validate, values } = useForm({
+  initialValues: props.reaction,
+  validationSchema: {
+    name: 'required',
+    script: 'required'
+  }
+})
+
+const equalReactionPython = (values: ReactionPython, reaction?: ReactionPython): boolean => {
+  if (!reaction) return false
+
+  return (
+    reaction.name === values.name &&
+    reaction.requirements === values.requirements &&
+    reaction.script === values.script
+  )
+}
+
+watch(
+  values,
+  () => {
+    if (equalReactionPython(values, props.reaction)) {
+      submitDisabled.value = true
+
+      return
+    }
+
+    validate({ mode: 'silent' }).then((res) => (submitDisabled.value = !res.valid))
+  },
+  { deep: true, immediate: true }
+)
+
+const onSubmit = handleSubmit((values) => emit('submit', values))
+</script>
+
+<template>
+  <form @submit="onSubmit" class="flex flex-col gap-4">
+    <FormField name="name" v-slot="{ componentField }" validate-on-input>
+      <FormItem>
+        <FormLabel for="name" class="text-right">Name</FormLabel>
+        <Input id="name" class="col-span-3" v-bind="componentField" />
+        <FormMessage />
+      </FormItem>
+    </FormField>
+    <FormField name="requirements" v-slot="{ componentField }">
+      <FormItem>
+        <FormLabel for="requirements" class="text-right">requirements.txt</FormLabel>
+        <GrowTextarea id="requirements" class="col-span-3" v-bind="componentField" />
+        <FormMessage />
+      </FormItem>
+    </FormField>
+    <FormField name="script" v-slot="{ componentField }" validate-on-input>
+      <FormItem>
+        <FormLabel for="script" class="text-right">Script</FormLabel>
+        <GrowTextarea id="script" class="col-span-3" v-bind="componentField" />
+        <FormMessage />
+      </FormItem>
+    </FormField>
+    <slot>
+      <Button
+        type="submit"
+        :variant="submitDisabled ? 'secondary' : 'default'"
+        :disabled="submitDisabled"
+        >Save</Button
+      >
+    </slot>
+  </form>
+</template>
diff --git a/ui/src/components/reaction/ReactionWebhookDisplay.vue b/ui/src/components/reaction/ReactionWebhookDisplay.vue
new file mode 100644
index 00000000..0cfd40b8
--- /dev/null
+++ b/ui/src/components/reaction/ReactionWebhookDisplay.vue
@@ -0,0 +1,76 @@
+<script setup lang="ts">
+import TanView from '@/components/TanView.vue'
+import DeleteDialog from '@/components/common/DeleteDialog.vue'
+import ReactionWebhookForm from '@/components/reaction/ReactionWebhookForm.vue'
+import { ScrollArea } from '@/components/ui/scroll-area'
+import { Separator } from '@/components/ui/separator'
+import { toast } from '@/components/ui/toast'
+
+import { useMutation, useQuery, useQueryClient } from '@tanstack/vue-query'
+
+import { pb } from '@/lib/pocketbase'
+import type { ReactionWebhook } from '@/lib/types'
+
+const queryClient = useQueryClient()
+
+const props = defineProps<{
+  id: string
+}>()
+
+const {
+  isPending,
+  isError,
+  data: reaction,
+  error
+} = useQuery({
+  queryKey: ['reactions_webhooks', props.id],
+  queryFn: (): Promise<ReactionWebhook> => pb.collection('reactions_webhooks').getOne(props.id)
+})
+
+const updateReactionMutation = useMutation({
+  mutationFn: (update: any) => pb.collection('reactions_webhooks').update(props.id, update),
+  onSuccess: () => {
+    queryClient.invalidateQueries({ queryKey: ['reactions'] })
+    queryClient.invalidateQueries({ queryKey: ['reactions_webhooks'] })
+  },
+  onError: (error) =>
+    toast({
+      title: error.name,
+      description: error.message,
+      variant: 'destructive'
+    })
+})
+</script>
+
+<template>
+  <TanView :isError="isError" :isPending="isPending" :error="error" :value="reaction">
+    <div class="flex h-full flex-1 flex-col overflow-hidden">
+      <div class="flex items-center bg-background px-4 py-2">
+        <div class="ml-auto">
+          <DeleteDialog
+            v-if="reaction"
+            collection="reactions_webhooks"
+            :id="reaction.id"
+            :name="reaction.name"
+            :singular="'Reaction'"
+            :to="{ name: 'reactions' }"
+            :queryKey="['reactions']"
+          />
+        </div>
+      </div>
+      <Separator />
+
+      <ScrollArea v-if="reaction" class="flex-1">
+        <div class="flex max-w-[640px] flex-col gap-4 p-4">
+          <h1 class="text-3xl font-bold">Webhook Reaction Editor</h1>
+
+          <p class="py-4 text-sm text-muted-foreground">
+            Sent a POST request to the specified destination URL with the specified headers.
+          </p>
+
+          <ReactionWebhookForm :reaction="reaction" @submit="updateReactionMutation.mutate" />
+        </div>
+      </ScrollArea>
+    </div>
+  </TanView>
+</template>
diff --git a/ui/src/components/reaction/ReactionWebhookForm.vue b/ui/src/components/reaction/ReactionWebhookForm.vue
new file mode 100644
index 00000000..d2841494
--- /dev/null
+++ b/ui/src/components/reaction/ReactionWebhookForm.vue
@@ -0,0 +1,105 @@
+<script setup lang="ts">
+import GrowTextarea from '@/components/form/GrowTextarea.vue'
+import { Button } from '@/components/ui/button'
+import { FormField, FormItem, FormLabel, FormMessage } from '@/components/ui/form'
+import { Input } from '@/components/ui/input'
+
+import { defineRule, useForm } from 'vee-validate'
+import { watch } from 'vue'
+
+import type { ReactionPython, ReactionWebhook } from '@/lib/types'
+
+const submitDisabled = defineModel('submitDisabled')
+
+const props = defineProps<{
+  reaction?: ReactionWebhook
+}>()
+
+const emit = defineEmits(['submit'])
+
+defineRule('required', (value: string) => {
+  if (!value || !value.length) {
+    return 'This field is required'
+  }
+
+  return true
+})
+
+const { handleSubmit, validate, values } = useForm({
+  initialValues: props.reaction,
+  validationSchema: {
+    name: 'required',
+    destination: 'required'
+  }
+})
+
+const equalReactionWebhook = (values: ReactionWebhook, reaction?: ReactionWebhook): boolean => {
+  if (!reaction) return false
+
+  return (
+    reaction.name === values.name &&
+    reaction.headers === values.headers &&
+    reaction.destination === values.destination
+  )
+}
+
+watch(
+  values,
+  () => {
+    if (equalReactionWebhook(values, props.reaction)) {
+      submitDisabled.value = true
+
+      return
+    }
+
+    validate({ mode: 'silent' }).then((res) => (submitDisabled.value = !res.valid))
+  },
+  { deep: true, immediate: true }
+)
+
+const onSubmit = handleSubmit((values) => emit('submit', values))
+</script>
+
+<template>
+  <form @submit="onSubmit" class="flex flex-col gap-4">
+    <FormField name="name" v-slot="{ componentField }" validate-on-input>
+      <FormItem>
+        <FormLabel for="name" class="text-right">Name</FormLabel>
+        <Input id="name" class="col-span-3" v-bind="componentField" />
+        <FormMessage />
+      </FormItem>
+    </FormField>
+    <FormField name="headers" v-slot="{ componentField }">
+      <FormItem>
+        <FormLabel for="headers" class="text-right">Headers (one header per line)</FormLabel>
+        <GrowTextarea
+          id="headers"
+          class="col-span-3"
+          v-bind="componentField"
+          placeholder="Content-Type: application/json"
+        />
+        <FormMessage />
+      </FormItem>
+    </FormField>
+    <FormField name="destination" v-slot="{ componentField }" validate-on-input>
+      <FormItem>
+        <FormLabel for="destination" class="text-right">Destination</FormLabel>
+        <Input
+          id="destination"
+          class="col-span-3"
+          v-bind="componentField"
+          placeholder="https://example.com/webhook"
+        />
+        <FormMessage />
+      </FormItem>
+    </FormField>
+    <slot>
+      <Button
+        type="submit"
+        :variant="submitDisabled ? 'secondary' : 'default'"
+        :disabled="submitDisabled"
+        >Save</Button
+      >
+    </slot>
+  </form>
+</template>
diff --git a/ui/src/components/reaction/TriggerHook.vue b/ui/src/components/reaction/TriggerHook.vue
new file mode 100644
index 00000000..4fea5e98
--- /dev/null
+++ b/ui/src/components/reaction/TriggerHook.vue
@@ -0,0 +1,75 @@
+<script setup lang="ts">
+import { Input } from '@/components/ui/input'
+import { Label } from '@/components/ui/label'
+import {
+  Select,
+  SelectContent,
+  SelectGroup,
+  SelectItem,
+  SelectTrigger,
+  SelectValue
+} from '@/components/ui/select'
+import { Switch } from '@/components/ui/switch'
+
+import { computed } from 'vue'
+
+interface TriggerWebhookData {
+  collection: string
+  create: boolean
+  update: boolean
+  delete: boolean
+}
+
+const props = defineProps<{
+  modelValue: TriggerWebhookData
+}>()
+
+const emit = defineEmits(['update:modelValue'])
+
+const updateCollection = (value: string) =>
+  emit('update:modelValue', { ...props.modelValue, collection: value })
+const updateCreate = (value: boolean) =>
+  emit('update:modelValue', { ...props.modelValue, create: value })
+const updateUpdate = (value: boolean) =>
+  emit('update:modelValue', { ...props.modelValue, update: value })
+const updateDelete = (value: boolean) =>
+  emit('update:modelValue', { ...props.modelValue, delete: value })
+</script>
+
+<template>
+  <p class="py-4 text-sm text-muted-foreground">
+    Trigger an reaction when an event occurs in a collection.
+  </p>
+
+  <Label for="collection">Collection</Label>
+  <Select id="collection" :modelValue="modelValue.collection" @update:modelValue="updateCollection">
+    <SelectTrigger>
+      <SelectValue placeholder="Select a collection" />
+    </SelectTrigger>
+    <SelectContent>
+      <SelectGroup>
+        <SelectItem value="tickets">Tickets</SelectItem>
+        <SelectItem value="tasks">Tasks</SelectItem>
+        <SelectItem value="comments">Comments</SelectItem>
+        <SelectItem value="timeline">Timeline</SelectItem>
+        <SelectItem value="links">Links</SelectItem>
+        <SelectItem value="files">Files</SelectItem>
+      </SelectGroup>
+    </SelectContent>
+  </Select>
+
+  <div class="mt-2 flex items-center space-x-2">
+    <Switch id="create" :checked="modelValue.create" @update:checked="updateCreate" />
+    <Label for="create">Create events</Label>
+  </div>
+
+  <div class="mt-2 flex items-center space-x-2">
+    <Switch id="update" :checked="modelValue.update" @update:checked="updateUpdate" />
+    <Label for="update">Update events</Label>
+  </div>
+
+  <div class="mt-2 flex items-center space-x-2">
+    <Switch id="delete" :checked="modelValue.delete" @update:checked="updateDelete" />
+    <Label for="delete">Delete events</Label>
+  </div>
+</template>
diff --git a/ui/src/components/reaction/TriggerTicketType.vue b/ui/src/components/reaction/TriggerTicketType.vue
new file mode 100644
index 00000000..343a83af
--- /dev/null
+++ b/ui/src/components/reaction/TriggerTicketType.vue
@@ -0,0 +1,57 @@
+<script setup lang="ts">
+import { Label } from '@/components/ui/label'
+import { Switch } from '@/components/ui/switch'
+
+import { useQuery } from '@tanstack/vue-query'
+
+import { pb } from '@/lib/pocketbase'
+import type { Type } from '@/lib/types'
+
+interface TriggerTicketTypeData {
+  tickettype: Array<string>
+}
+
+const props = defineProps<{
+  modelValue: TriggerTicketTypeData
+}>()
+
+const emit = defineEmits(['update:modelValue'])
+
+const updateTicketType = (id: string, value: boolean) => {
+  let tickettype = props.modelValue.tickettype || []
+
+  if (value) {
+    tickettype = [...tickettype, id]
+  } else {
+    tickettype = tickettype.filter((t) => t !== id)
+  }
+
+  emit('update:modelValue', { ...props.modelValue, tickettype })
+}
+
+const {
+  isPending,
+  isError,
+  data: types,
+  error
+} = useQuery({
+  queryKey: ['types'],
+  queryFn: (): Promise<Array<Type>> =>
+    pb.collection('types').getFullList({
+      sort: '-created'
+    })
+})
+</script>
+
+<template>
+  <p class="py-4 text-sm text-muted-foreground">Add controls to tickets of the specified types.</p>
+
+  <div class="mt-2 flex items-center space-x-2" v-for="type in types" :key="type.id">
+    <Switch
+      :id="type.id"
+      :checked="modelValue.tickettype && modelValue.tickettype.includes(type.id)"
+      @update:checked="(value) => updateTicketType(type.id, value)"
+    />
+    <Label :for="type.id">Show controls for {{ type.plural }}</Label>
+  </div>
+</template>
diff --git a/ui/src/components/reaction/TriggerWebhook.vue b/ui/src/components/reaction/TriggerWebhook.vue
new file mode 100644
index 00000000..ff8f00bc
--- /dev/null
+++ b/ui/src/components/reaction/TriggerWebhook.vue
@@ -0,0 +1,61 @@
+<script setup lang="ts">
+import { Input } from '@/components/ui/input'
+import { Label } from '@/components/ui/label'
+
+import { computed } from 'vue'
+
+interface TriggerWebhookData {
+  token: string
+  path: string
+}
+
+const props = defineProps<{
+  modelValue: TriggerWebhookData
+}>()
+
+const emit = defineEmits(['update:modelValue'])
+
+const updateToken = (value: string) =>
+  emit('update:modelValue', { ...props.modelValue, token: value })
+const updatePath = (value: string) =>
+  emit('update:modelValue', { ...props.modelValue, path: value })
+
+const curlExample = computed(() => {
+  let cmd = `curl`
+
+  if (props.modelValue && props.modelValue.token) {
+    cmd += ` -H "Auth: Bearer ${props.modelValue.token}"`
+  }
+
+  if (props.modelValue && props.modelValue.path) {
+    cmd += ` https://${location.hostname}/reaction/${props.modelValue.path}`
+  }
+
+  return cmd
+})
+</script>
+
+<template>
+  <p class="py-4 text-sm text-muted-foreground">
+    Receive a POST request at the specified path with an optional authorization token.
+  </p>
+
+  <Label for="token">Token</Label>
+  <Input
+    id="token"
+    :modelValue="modelValue.token"
+    @update:modelValue="updateToken"
+    placeholder="Enter a token (e.g. 'Bearer xyz...')"
+  />
+
+  <Label for="path">Path</Label>
+  <Input
+    id="path"
+    :modelValue="modelValue.path"
+    @update:modelValue="updatePath"
+    placeholder="Enter a path (e.g. '/webhook')"
+  />
+
+  <Label for="url">Usage</Label>
+  <Input id="url" readonly :modelValue="curlExample" class="bg-accent" />
+</template>
diff --git a/ui/src/components/ticket/TicketActionBar.vue b/ui/src/components/ticket/TicketActionBar.vue
index 6879f092..10337a7d 100644
--- a/ui/src/components/ticket/TicketActionBar.vue
+++ b/ui/src/components/ticket/TicketActionBar.vue
@@ -1,5 +1,6 @@
 <script setup lang="ts">
 import Icon from '@/components/Icon.vue'
+import DeleteDialog from '@/components/common/DeleteDialog.vue'
 import TicketCloseDialog from '@/components/ticket/TicketCloseDialog.vue'
 import TicketDeleteDialog from '@/components/ticket/TicketDeleteDialog.vue'
 import TicketUserSelect from '@/components/ticket/TicketUserSelect.vue'
@@ -154,6 +155,14 @@ const closeTicketDialogOpen = ref(false)
         <TooltipContent>Change User</TooltipContent>
       </Tooltip>
     </div>
-    <TicketDeleteDialog :ticket="ticket" />
+    <DeleteDialog
+      v-if="ticket"
+      :collection="'tickets'"
+      :id="ticket.id"
+      :name="ticket.name"
+      singular="Ticket"
+      :to="{ name: 'tickets' }"
+      :queryKey="['tickets']"
+    />
   </div>
 </template>
diff --git a/ui/src/components/ticket/TicketDeleteDialog.vue b/ui/src/components/ticket/TicketDeleteDialog.vue
deleted file mode 100644
index 6f27a53e..00000000
--- a/ui/src/components/ticket/TicketDeleteDialog.vue
+++ /dev/null
@@ -1,90 +0,0 @@
-<script setup lang="ts">
-import { Button } from '@/components/ui/button'
-import {
-  Dialog,
-  DialogClose,
-  DialogContent,
-  DialogDescription,
-  DialogFooter,
-  DialogHeader,
-  DialogTitle,
-  DialogTrigger
-} from '@/components/ui/dialog'
-import {
-  DropdownMenu,
-  DropdownMenuContent,
-  DropdownMenuItem,
-  DropdownMenuTrigger
-} from '@/components/ui/dropdown-menu'
-import { toast } from '@/components/ui/toast'
-
-import { MoreVertical, Trash2 } from 'lucide-vue-next'
-
-import { useMutation, useQueryClient } from '@tanstack/vue-query'
-import { ref } from 'vue'
-import { useRouter } from 'vue-router'
-
-import { pb } from '@/lib/pocketbase'
-import type { Ticket } from '@/lib/types'
-
-const queryClient = useQueryClient()
-const router = useRouter()
-
-const props = defineProps<{
-  ticket: Ticket
-}>()
-
-const isOpen = ref(false)
-
-const deleteTicketMutation = useMutation({
-  mutationFn: (): Promise<boolean> => pb.collection('tickets').delete(props.ticket.id),
-  onSuccess: () => {
-    router.push({ name: 'tickets', params: { type: props.ticket.expand.type.id } })
-    queryClient.invalidateQueries({ queryKey: ['tickets'] })
-    isOpen.value = false
-  },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
-})
-</script>
-
-<template>
-  <Dialog v-model:open="isOpen">
-    <DropdownMenu>
-      <DropdownMenuTrigger as-child>
-        <Button variant="ghost" size="icon" :disabled="!ticket">
-          <MoreVertical class="size-4" />
-          <span class="sr-only">More</span>
-        </Button>
-      </DropdownMenuTrigger>
-      <DropdownMenuContent align="end">
-        <DropdownMenuItem class="cursor-pointer" as-child>
-          <DialogTrigger class="w-full">
-            <Trash2 class="mr-2 h-4 w-4" />
-            Delete Ticket
-          </DialogTrigger>
-        </DropdownMenuItem>
-      </DropdownMenuContent>
-    </DropdownMenu>
-
-    <DialogContent>
-      <DialogHeader>
-        <DialogTitle> Delete Ticket "{{ props.ticket.name }}"</DialogTitle>
-        <DialogDescription> Are you sure you want to delete this ticket?</DialogDescription>
-      </DialogHeader>
-
-      <DialogFooter class="mt-2">
-        <DialogClose as-child>
-          <Button type="button" variant="secondary"> Cancel</Button>
-        </DialogClose>
-        <Button type="button" variant="destructive" @click="deleteTicketMutation.mutate()">
-          Delete
-        </Button>
-      </DialogFooter>
-    </DialogContent>
-  </Dialog>
-</template>
diff --git a/ui/src/components/ticket/file/TicketFiles.vue b/ui/src/components/ticket/file/TicketFiles.vue
index 0d94605a..d8f0b88c 100644
--- a/ui/src/components/ticket/file/TicketFiles.vue
+++ b/ui/src/components/ticket/file/TicketFiles.vue
@@ -1,10 +1,11 @@
 <script setup lang="ts">
+import DeleteDialog from '@/components/common/DeleteDialog.vue'
 import TicketPanel from '@/components/ticket/TicketPanel.vue'
 import FileAddDialog from '@/components/ticket/file/FileAddDialog.vue'
 import FileRemoveDialog from '@/components/ticket/file/FileRemoveDialog.vue'
 import { Button } from '@/components/ui/button'
 
-import { Download } from 'lucide-vue-next'
+import { Download, Trash2 } from 'lucide-vue-next'
 
 import { useQuery } from '@tanstack/vue-query'
 import { ref, watch } from 'vue'
@@ -70,7 +71,18 @@ watch(config, (newConfig) => {
       >
         <Download class="size-4" />
       </Button>
-      <FileRemoveDialog :ticket="ticket" :file="file" />
+      <DeleteDialog
+        v-if="file"
+        collection="files"
+        :id="file.id"
+        :name="file.name"
+        singular="File"
+        :queryKey="['tickets', ticket.id]"
+      >
+        <Button variant="ghost" size="icon" class="h-8 w-8">
+          <Trash2 class="size-4" />
+        </Button>
+      </DeleteDialog>
     </div>
   </TicketPanel>
 </template>
diff --git a/ui/src/components/ticket/link/LinkRemoveDialog.vue b/ui/src/components/ticket/link/LinkRemoveDialog.vue
deleted file mode 100644
index 59d2fa3d..00000000
--- a/ui/src/components/ticket/link/LinkRemoveDialog.vue
+++ /dev/null
@@ -1,70 +0,0 @@
-<script setup lang="ts">
-import { Button } from '@/components/ui/button'
-import {
-  Dialog,
-  DialogClose,
-  DialogContent,
-  DialogDescription,
-  DialogFooter,
-  DialogHeader,
-  DialogTitle,
-  DialogTrigger
-} from '@/components/ui/dialog'
-import { toast } from '@/components/ui/toast'
-
-import { Trash2 } from 'lucide-vue-next'
-
-import { useMutation, useQueryClient } from '@tanstack/vue-query'
-import { ref } from 'vue'
-
-import { pb } from '@/lib/pocketbase'
-import type { Link, Ticket } from '@/lib/types'
-
-const queryClient = useQueryClient()
-
-const props = defineProps<{
-  ticket: Ticket
-  link: Link
-}>()
-
-const isOpen = ref(false)
-
-const removeLinkMutation = useMutation({
-  mutationFn: (): Promise<boolean> => pb.collection('links').delete(props.link.id),
-  onSuccess: () => {
-    queryClient.invalidateQueries({ queryKey: ['tickets', props.ticket.id] })
-    isOpen.value = false
-  },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
-})
-</script>
-
-<template>
-  <Dialog v-model:open="isOpen">
-    <DialogTrigger as-child>
-      <Button variant="ghost" size="icon" class="h-8 w-8">
-        <Trash2 class="size-4" />
-      </Button>
-    </DialogTrigger>
-    <DialogContent>
-      <DialogHeader>
-        <DialogTitle> Delete Link "{{ props.link.name }}" </DialogTitle>
-        <DialogDescription> Are you sure you want to delete this link? </DialogDescription>
-      </DialogHeader>
-
-      <DialogFooter class="mt-2">
-        <DialogClose as-child>
-          <Button type="button" variant="secondary"> Cancel</Button>
-        </DialogClose>
-        <Button type="button" variant="destructive" @click="removeLinkMutation.mutate()">
-          Delete
-        </Button>
-      </DialogFooter>
-    </DialogContent>
-  </Dialog>
-</template>
diff --git a/ui/src/components/ticket/link/TicketLinks.vue b/ui/src/components/ticket/link/TicketLinks.vue
index 9d9f2322..4134b314 100644
--- a/ui/src/components/ticket/link/TicketLinks.vue
+++ b/ui/src/components/ticket/link/TicketLinks.vue
@@ -1,8 +1,11 @@
 <script setup lang="ts">
+import DeleteDialog from '@/components/common/DeleteDialog.vue'
 import PanelListElement from '@/components/common/PanelListElement.vue'
 import TicketPanel from '@/components/ticket/TicketPanel.vue'
 import LinkAddDialog from '@/components/ticket/link/LinkAddDialog.vue'
-import LinkRemoveDialog from '@/components/ticket/link/LinkRemoveDialog.vue'
+import { Button } from '@/components/ui/button'
+
+import { Trash2 } from 'lucide-vue-next'
 
 import { ref } from 'vue'
 
@@ -38,7 +41,18 @@ const dialogOpen = ref(false)
         </div>
       </a>
 
-      <LinkRemoveDialog :ticket="ticket" :link="link" />
+      <DeleteDialog
+        v-if="link"
+        collection="links"
+        :id="link.id"
+        :name="link.name"
+        singular="Link"
+        :queryKey="['tickets', ticket.id]"
+      >
+        <Button variant="ghost" size="icon" class="h-8 w-8">
+          <Trash2 class="size-4" />
+        </Button>
+      </DeleteDialog>
     </PanelListElement>
   </TicketPanel>
 </template>
diff --git a/ui/src/components/ticket/task/TaskRemoveDialog.vue b/ui/src/components/ticket/task/TaskRemoveDialog.vue
deleted file mode 100644
index dc3af5e6..00000000
--- a/ui/src/components/ticket/task/TaskRemoveDialog.vue
+++ /dev/null
@@ -1,70 +0,0 @@
-<script setup lang="ts">
-import { Button } from '@/components/ui/button'
-import {
-  Dialog,
-  DialogClose,
-  DialogContent,
-  DialogDescription,
-  DialogFooter,
-  DialogHeader,
-  DialogTitle,
-  DialogTrigger
-} from '@/components/ui/dialog'
-import { toast } from '@/components/ui/toast'
-
-import { Trash2 } from 'lucide-vue-next'
-
-import { useMutation, useQueryClient } from '@tanstack/vue-query'
-import { ref } from 'vue'
-
-import { pb } from '@/lib/pocketbase'
-import type { Task, Ticket } from '@/lib/types'
-
-const queryClient = useQueryClient()
-
-const props = defineProps<{
-  ticket: Ticket
-  task: Task
-}>()
-
-const isOpen = ref(false)
-
-const removeTaskMutation = useMutation({
-  mutationFn: (): Promise<boolean> => pb.collection('tasks').delete(props.task.id),
-  onSuccess: () => {
-    queryClient.invalidateQueries({ queryKey: ['tickets', props.ticket.id] })
-    isOpen.value = false
-  },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
-})
-</script>
-
-<template>
-  <Dialog v-model:open="isOpen">
-    <DialogTrigger as-child>
-      <Button variant="ghost" size="icon" class="h-8 w-8">
-        <Trash2 class="size-4" />
-      </Button>
-    </DialogTrigger>
-    <DialogContent>
-      <DialogHeader>
-        <DialogTitle> Delete Task "{{ props.task.name }}" </DialogTitle>
-        <DialogDescription> Are you sure you want to delete this task? </DialogDescription>
-      </DialogHeader>
-
-      <DialogFooter class="mt-2">
-        <DialogClose as-child>
-          <Button type="button" variant="secondary"> Cancel</Button>
-        </DialogClose>
-        <Button type="button" variant="destructive" @click="removeTaskMutation.mutate()">
-          Delete
-        </Button>
-      </DialogFooter>
-    </DialogContent>
-  </Dialog>
-</template>
diff --git a/ui/src/components/ticket/task/TicketTasks.vue b/ui/src/components/ticket/task/TicketTasks.vue
index af428af8..c715349c 100644
--- a/ui/src/components/ticket/task/TicketTasks.vue
+++ b/ui/src/components/ticket/task/TicketTasks.vue
@@ -1,4 +1,5 @@
 <script setup lang="ts">
+import DeleteDialog from '@/components/common/DeleteDialog.vue'
 import PanelListElement from '@/components/common/PanelListElement.vue'
 import UserSelect from '@/components/common/UserSelect.vue'
 import DynamicInput from '@/components/input/DynamicInput.vue'
@@ -9,7 +10,7 @@ import { Card } from '@/components/ui/card'
 import { Checkbox } from '@/components/ui/checkbox'
 import { toast } from '@/components/ui/toast'
 
-import { User2 } from 'lucide-vue-next'
+import { Trash2, User2 } from 'lucide-vue-next'
 
 import { useMutation, useQueryClient } from '@tanstack/vue-query'
 
@@ -105,7 +106,18 @@ const updateTaskName = (id: string, name: string) => updateTaskNameMutation.muta
               {{ task.expand.owner.name }}
             </Button>
           </UserSelect>
-          <TaskRemoveDialog :ticket="ticket" :task="task" />
+          <DeleteDialog
+            v-if="task"
+            collection="tasks"
+            :id="task.id"
+            :name="task.name"
+            :singular="'Task'"
+            :queryKey="['tickets', ticket.id]"
+          >
+            <Button variant="ghost" size="icon" class="h-8 w-8">
+              <Trash2 class="size-4" />
+            </Button>
+          </DeleteDialog>
         </div>
       </PanelListElement>
     </Card>
diff --git a/ui/src/lib/types.ts b/ui/src/lib/types.ts
index 4cfcdc40..58def0fb 100644
--- a/ui/src/lib/types.ts
+++ b/ui/src/lib/types.ts
@@ -130,3 +130,35 @@ export interface JSONSchema {
   >
   required?: Array<string>
 }
+
+export interface Reaction {
+  id: string
+
+  name: string
+  type: string
+
+  created: string
+  updated: string
+}
+
+export interface ReactionPython {
+  id: string
+
+  name: string
+  requirements: string
+  script: string
+
+  created: string
+  updated: string
+}
+
+export interface ReactionWebhook {
+  id: string
+
+  name: string
+  headers: Array<string>
+  destination: string
+
+  created: string
+  updated: string
+}
diff --git a/ui/src/router/index.ts b/ui/src/router/index.ts
index 69c46c96..a58e4df8 100644
--- a/ui/src/router/index.ts
+++ b/ui/src/router/index.ts
@@ -2,6 +2,7 @@ import { createRouter, createWebHistory } from 'vue-router'
 
 import DashboardView from '@/views/DashboardView.vue'
 import LoginView from '@/views/LoginView.vue'
+import ReactionView from '@/views/ReactionView.vue'
 import TicketView from '@/views/TicketView.vue'
 
 const router = createRouter({
@@ -11,6 +12,11 @@ const router = createRouter({
       path: '/',
       redirect: '/dashboard'
     },
+    {
+      path: '/reactions/:type?/:id?',
+      name: 'reactions',
+      component: ReactionView
+    },
     {
       path: '/dashboard',
       name: 'dashboard',
diff --git a/ui/src/views/ReactionView.vue b/ui/src/views/ReactionView.vue
new file mode 100644
index 00000000..4bee3eb1
--- /dev/null
+++ b/ui/src/views/ReactionView.vue
@@ -0,0 +1,38 @@
+<script setup lang="ts">
+import ThreeColumn from '@/components/layout/ThreeColumn.vue'
+import ReactionList from '@/components/reaction/ReactionList.vue'
+import ReactionPythonDisplay from '@/components/reaction/ReactionPythonDisplay.vue'
+import ReactionWebhookDisplay from '@/components/reaction/ReactionWebhookDisplay.vue'
+
+import { computed, onMounted } from 'vue'
+import { useRoute, useRouter } from 'vue-router'
+
+import { pb } from '@/lib/pocketbase'
+
+const route = useRoute()
+const router = useRouter()
+
+const id = computed(() => route.params.id as string)
+const type = computed(() => route.params.type as string)
+
+onMounted(() => {
+  if (!pb.authStore.model) {
+    router.push({ name: 'login' })
+  }
+})
+</script>
+
+<template>
+  <ThreeColumn>
+    <template #list>
+      <ReactionList />
+    </template>
+    <template #single>
+      <div v-if="!id" class="flex h-full w-full items-center justify-center text-lg text-gray-500">
+        No reaction selected
+      </div>
+      <ReactionPythonDisplay v-else-if="type == 'python'" :key="'python_' + id" :id="id" />
+      <ReactionWebhookDisplay v-else-if="type == 'webhook'" :key="'webhook_' + id" :id="id" />
+    </template>
+  </ThreeColumn>
+</template>

From 6d3b654ee5cc403e5530441638ac59c903ded712 Mon Sep 17 00:00:00 2001
From: Jonas Plum <git@cugu.eu>
Date: Fri, 12 Jul 2024 20:43:22 +0200
Subject: [PATCH 03/17] chore: extract handleError function

---
 ui/src/components/common/DeleteDialog.vue     |  9 ++-------
 ui/src/components/dashboard/OpenTickets.vue   |  2 --
 .../components/reaction/ReactionDisplay.vue   |  9 ++-------
 ui/src/components/reaction/ReactionList.vue   |  2 --
 .../components/reaction/ReactionNewDialog.vue | 16 +++------------
 .../reaction/ReactionPythonDisplay.vue        | 10 ++--------
 .../reaction/ReactionWebhookDisplay.vue       |  9 ++-------
 .../reaction/ReactionWebhookForm.vue          |  2 +-
 ui/src/components/reaction/TriggerHook.vue    |  3 ---
 ui/src/components/ticket/TicketActionBar.vue  | 19 +++---------------
 ui/src/components/ticket/TicketCloseBar.vue   | 10 ++--------
 .../components/ticket/TicketCloseDialog.vue   | 10 ++--------
 ui/src/components/ticket/TicketDisplay.vue    | 16 +++------------
 ui/src/components/ticket/TicketHeader.vue     | 11 +++-------
 ui/src/components/ticket/TicketNewDialog.vue  |  9 ++-------
 ui/src/components/ticket/TicketUserSelect.vue |  9 ++-------
 .../ticket/comment/TicketComment.vue          | 16 +++------------
 .../ticket/comment/TicketCommentInput.vue     |  9 ++-------
 .../components/ticket/file/FileAddDialog.vue  | 10 ++--------
 ui/src/components/ticket/file/TicketFiles.vue |  1 -
 .../components/ticket/link/LinkAddDialog.vue  |  9 ++-------
 .../components/ticket/task/TaskAddDialog.vue  |  9 ++-------
 ui/src/components/ticket/task/TicketTasks.vue |  1 -
 .../ticket/timeline/TicketTimelineInput.vue   | 10 ++--------
 .../ticket/timeline/TicketTimelineItem.vue    | 20 ++++---------------
 .../ui/accordion/AccordionTrigger.vue         |  2 --
 ui/src/lib/utils.ts                           | 10 ++++++++++
 27 files changed, 56 insertions(+), 187 deletions(-)

diff --git a/ui/src/components/common/DeleteDialog.vue b/ui/src/components/common/DeleteDialog.vue
index 0c6bdcc9..d95b220e 100644
--- a/ui/src/components/common/DeleteDialog.vue
+++ b/ui/src/components/common/DeleteDialog.vue
@@ -10,7 +10,6 @@ import {
   DialogTitle,
   DialogTrigger
 } from '@/components/ui/dialog'
-import { toast } from '@/components/ui/toast'
 
 import { Trash2 } from 'lucide-vue-next'
 
@@ -19,6 +18,7 @@ import { ref } from 'vue'
 import { type RouteLocationRaw, useRouter } from 'vue-router'
 
 import { pb } from '@/lib/pocketbase'
+import { handleError } from '@/lib/utils'
 
 const queryClient = useQueryClient()
 const router = useRouter()
@@ -40,12 +40,7 @@ const deleteMutation = useMutation({
     queryClient.invalidateQueries({ queryKey: props.queryKey })
     if (props.to) router.push(props.to)
   },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 </script>
 
diff --git a/ui/src/components/dashboard/OpenTickets.vue b/ui/src/components/dashboard/OpenTickets.vue
index bd8ac046..7e90e545 100644
--- a/ui/src/components/dashboard/OpenTickets.vue
+++ b/ui/src/components/dashboard/OpenTickets.vue
@@ -8,8 +8,6 @@ import { ChevronRight } from 'lucide-vue-next'
 
 import { useQuery } from '@tanstack/vue-query'
 import { intervalToDuration } from 'date-fns'
-import format from 'date-fns/format'
-import { computed } from 'vue'
 
 import { pb } from '@/lib/pocketbase'
 import type { Ticket } from '@/lib/types'
diff --git a/ui/src/components/reaction/ReactionDisplay.vue b/ui/src/components/reaction/ReactionDisplay.vue
index a7032846..64088883 100644
--- a/ui/src/components/reaction/ReactionDisplay.vue
+++ b/ui/src/components/reaction/ReactionDisplay.vue
@@ -20,12 +20,12 @@ import {
   SelectValue
 } from '@/components/ui/select'
 import { Separator } from '@/components/ui/separator'
-import { toast } from '@/components/ui/toast'
 
 import { useMutation, useQuery, useQueryClient } from '@tanstack/vue-query'
 
 import { pb } from '@/lib/pocketbase'
 import type { Reaction } from '@/lib/types'
+import { handleError } from '@/lib/utils'
 
 const queryClient = useQueryClient()
 
@@ -46,12 +46,7 @@ const {
 const updateReactionMutation = useMutation({
   mutationFn: (update: any) => pb.collection('reactions').update(props.id, update),
   onSuccess: () => queryClient.invalidateQueries({ queryKey: ['reactions'] }),
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 
 const updateName = (name: string) => updateReactionMutation.mutate({ name: name })
diff --git a/ui/src/components/reaction/ReactionList.vue b/ui/src/components/reaction/ReactionList.vue
index 5680170f..56bc6b8f 100644
--- a/ui/src/components/reaction/ReactionList.vue
+++ b/ui/src/components/reaction/ReactionList.vue
@@ -2,11 +2,9 @@
 import TanView from '@/components/TanView.vue'
 import ResourceListElement from '@/components/common/ResourceListElement.vue'
 import ReactionNewDialog from '@/components/reaction/ReactionNewDialog.vue'
-import ReactionPythonNewDialog from '@/components/reaction/ReactionPythonNewDialog.vue'
 import { Separator } from '@/components/ui/separator'
 
 import { useQuery } from '@tanstack/vue-query'
-import { computed } from 'vue'
 import { useRoute } from 'vue-router'
 
 import { pb } from '@/lib/pocketbase'
diff --git a/ui/src/components/reaction/ReactionNewDialog.vue b/ui/src/components/reaction/ReactionNewDialog.vue
index a51ffadb..03b80051 100644
--- a/ui/src/components/reaction/ReactionNewDialog.vue
+++ b/ui/src/components/reaction/ReactionNewDialog.vue
@@ -21,7 +21,6 @@ import {
   SelectTrigger,
   SelectValue
 } from '@/components/ui/select'
-import { toast } from '@/components/ui/toast'
 
 import { useMutation, useQueryClient } from '@tanstack/vue-query'
 import { ref } from 'vue'
@@ -29,6 +28,7 @@ import { useRouter } from 'vue-router'
 
 import { pb } from '@/lib/pocketbase'
 import type { ReactionPython, ReactionWebhook, Ticket } from '@/lib/types'
+import { handleError } from '@/lib/utils'
 
 const queryClient = useQueryClient()
 const router = useRouter()
@@ -44,12 +44,7 @@ const addReactionWebhookMutation = useMutation({
     queryClient.invalidateQueries({ queryKey: ['reactions_webhooks'] })
     isOpen.value = false
   },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 
 const addReactionPythonMutation = useMutation({
@@ -61,12 +56,7 @@ const addReactionPythonMutation = useMutation({
     queryClient.invalidateQueries({ queryKey: ['reactions_python'] })
     isOpen.value = false
   },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 
 const submitDisabled = ref(true)
diff --git a/ui/src/components/reaction/ReactionPythonDisplay.vue b/ui/src/components/reaction/ReactionPythonDisplay.vue
index 492b75ad..5885931c 100644
--- a/ui/src/components/reaction/ReactionPythonDisplay.vue
+++ b/ui/src/components/reaction/ReactionPythonDisplay.vue
@@ -1,16 +1,15 @@
 <script setup lang="ts">
 import TanView from '@/components/TanView.vue'
 import DeleteDialog from '@/components/common/DeleteDialog.vue'
-import DynamicInput from '@/components/input/DynamicInput.vue'
 import ReactionPythonForm from '@/components/reaction/ReactionPythonForm.vue'
 import { ScrollArea } from '@/components/ui/scroll-area'
 import { Separator } from '@/components/ui/separator'
-import { toast } from '@/components/ui/toast'
 
 import { useMutation, useQuery, useQueryClient } from '@tanstack/vue-query'
 
 import { pb } from '@/lib/pocketbase'
 import type { ReactionPython } from '@/lib/types'
+import { handleError } from '@/lib/utils'
 
 const queryClient = useQueryClient()
 
@@ -34,12 +33,7 @@ const updateReactionMutation = useMutation({
     queryClient.invalidateQueries({ queryKey: ['reactions'] })
     queryClient.invalidateQueries({ queryKey: ['reactions_python'] })
   },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 </script>
 
diff --git a/ui/src/components/reaction/ReactionWebhookDisplay.vue b/ui/src/components/reaction/ReactionWebhookDisplay.vue
index 0cfd40b8..2798bb1e 100644
--- a/ui/src/components/reaction/ReactionWebhookDisplay.vue
+++ b/ui/src/components/reaction/ReactionWebhookDisplay.vue
@@ -4,12 +4,12 @@ import DeleteDialog from '@/components/common/DeleteDialog.vue'
 import ReactionWebhookForm from '@/components/reaction/ReactionWebhookForm.vue'
 import { ScrollArea } from '@/components/ui/scroll-area'
 import { Separator } from '@/components/ui/separator'
-import { toast } from '@/components/ui/toast'
 
 import { useMutation, useQuery, useQueryClient } from '@tanstack/vue-query'
 
 import { pb } from '@/lib/pocketbase'
 import type { ReactionWebhook } from '@/lib/types'
+import { handleError } from '@/lib/utils'
 
 const queryClient = useQueryClient()
 
@@ -33,12 +33,7 @@ const updateReactionMutation = useMutation({
     queryClient.invalidateQueries({ queryKey: ['reactions'] })
     queryClient.invalidateQueries({ queryKey: ['reactions_webhooks'] })
   },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 </script>
 
diff --git a/ui/src/components/reaction/ReactionWebhookForm.vue b/ui/src/components/reaction/ReactionWebhookForm.vue
index d2841494..36f29030 100644
--- a/ui/src/components/reaction/ReactionWebhookForm.vue
+++ b/ui/src/components/reaction/ReactionWebhookForm.vue
@@ -7,7 +7,7 @@ import { Input } from '@/components/ui/input'
 import { defineRule, useForm } from 'vee-validate'
 import { watch } from 'vue'
 
-import type { ReactionPython, ReactionWebhook } from '@/lib/types'
+import type { ReactionWebhook } from '@/lib/types'
 
 const submitDisabled = defineModel('submitDisabled')
 
diff --git a/ui/src/components/reaction/TriggerHook.vue b/ui/src/components/reaction/TriggerHook.vue
index 4fea5e98..7bc9db8d 100644
--- a/ui/src/components/reaction/TriggerHook.vue
+++ b/ui/src/components/reaction/TriggerHook.vue
@@ -1,5 +1,4 @@
 <script setup lang="ts">
-import { Input } from '@/components/ui/input'
 import { Label } from '@/components/ui/label'
 import {
   Select,
@@ -11,8 +10,6 @@ import {
 } from '@/components/ui/select'
 import { Switch } from '@/components/ui/switch'
 
-import { computed } from 'vue'
-
 interface TriggerWebhookData {
   collection: string
   create: boolean
diff --git a/ui/src/components/ticket/TicketActionBar.vue b/ui/src/components/ticket/TicketActionBar.vue
index 10337a7d..49e33a03 100644
--- a/ui/src/components/ticket/TicketActionBar.vue
+++ b/ui/src/components/ticket/TicketActionBar.vue
@@ -2,7 +2,6 @@
 import Icon from '@/components/Icon.vue'
 import DeleteDialog from '@/components/common/DeleteDialog.vue'
 import TicketCloseDialog from '@/components/ticket/TicketCloseDialog.vue'
-import TicketDeleteDialog from '@/components/ticket/TicketDeleteDialog.vue'
 import TicketUserSelect from '@/components/ticket/TicketUserSelect.vue'
 import { Button } from '@/components/ui/button'
 import {
@@ -11,7 +10,6 @@ import {
   DropdownMenuItem,
   DropdownMenuTrigger
 } from '@/components/ui/dropdown-menu'
-import { toast } from '@/components/ui/toast'
 import { Tooltip, TooltipContent, TooltipTrigger } from '@/components/ui/tooltip'
 
 import { Check, CircleDot, Repeat } from 'lucide-vue-next'
@@ -22,6 +20,7 @@ import { useRouter } from 'vue-router'
 
 import { pb } from '@/lib/pocketbase'
 import type { Ticket, Type } from '@/lib/types'
+import { handleError } from '@/lib/utils'
 
 const queryClient = useQueryClient()
 const router = useRouter()
@@ -52,13 +51,7 @@ const changeTypeMutation = useMutation({
     queryClient.invalidateQueries({ queryKey: ['tickets'] })
     router.push({ name: 'tickets', params: { type: data.type, id: props.ticket.id } })
   },
-  onError: (error) => {
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
-  }
+  onError: handleError
 })
 
 const closeTicketMutation = useMutation({
@@ -72,13 +65,7 @@ const closeTicketMutation = useMutation({
       router.push({ name: 'tickets', params: { type: props.ticket.expand.type.id } })
     }
   },
-  onError: (error) => {
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
-  }
+  onError: handleError
 })
 
 const otherTypes = computed(() => types.value?.filter((t) => t.id !== props.ticket.expand.type.id))
diff --git a/ui/src/components/ticket/TicketCloseBar.vue b/ui/src/components/ticket/TicketCloseBar.vue
index cb1d8a79..ac52d338 100644
--- a/ui/src/components/ticket/TicketCloseBar.vue
+++ b/ui/src/components/ticket/TicketCloseBar.vue
@@ -1,7 +1,6 @@
 <script setup lang="ts">
 import { Button } from '@/components/ui/button'
 import { Input } from '@/components/ui/input'
-import { toast } from '@/components/ui/toast'
 
 import { Check, Repeat } from 'lucide-vue-next'
 
@@ -11,6 +10,7 @@ import { useRouter } from 'vue-router'
 
 import { pb } from '@/lib/pocketbase'
 import type { Ticket } from '@/lib/types'
+import { handleError } from '@/lib/utils'
 
 const queryClient = useQueryClient()
 const router = useRouter()
@@ -31,13 +31,7 @@ const closeTicketMutation = useMutation({
     queryClient.invalidateQueries({ queryKey: ['tickets'] })
     router.push({ name: 'tickets', params: { type: props.ticket.expand.type.id } })
   },
-  onError: (error) => {
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
-  }
+  onError: handleError
 })
 
 const closeButtonDisabled = false // computed(() => !props.ticket.open || message.value == '')
diff --git a/ui/src/components/ticket/TicketCloseDialog.vue b/ui/src/components/ticket/TicketCloseDialog.vue
index c383faf9..64bc256a 100644
--- a/ui/src/components/ticket/TicketCloseDialog.vue
+++ b/ui/src/components/ticket/TicketCloseDialog.vue
@@ -10,7 +10,6 @@ import {
   DialogTitle
 } from '@/components/ui/dialog'
 import { Textarea } from '@/components/ui/textarea'
-import { toast } from '@/components/ui/toast'
 
 import { useMutation, useQueryClient } from '@tanstack/vue-query'
 import { ref } from 'vue'
@@ -18,6 +17,7 @@ import { useRouter } from 'vue-router'
 
 import { pb } from '@/lib/pocketbase'
 import type { Ticket } from '@/lib/types'
+import { handleError } from '@/lib/utils'
 
 const queryClient = useQueryClient()
 const router = useRouter()
@@ -42,13 +42,7 @@ const closeTicketMutation = useMutation({
       router.push({ name: 'tickets', params: { type: props.ticket.expand.type.id } })
     }
   },
-  onError: (error) => {
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
-  }
+  onError: handleError
 })
 </script>
 
diff --git a/ui/src/components/ticket/TicketDisplay.vue b/ui/src/components/ticket/TicketDisplay.vue
index a1f606df..fd8fb53e 100644
--- a/ui/src/components/ticket/TicketDisplay.vue
+++ b/ui/src/components/ticket/TicketDisplay.vue
@@ -18,7 +18,6 @@ import { Card } from '@/components/ui/card'
 import { ScrollArea } from '@/components/ui/scroll-area'
 import { Separator } from '@/components/ui/separator'
 import { Tabs, TabsList, TabsTrigger } from '@/components/ui/tabs'
-import { toast } from '@/components/ui/toast'
 
 import { Edit } from 'lucide-vue-next'
 
@@ -28,6 +27,7 @@ import { useRoute } from 'vue-router'
 
 import { pb } from '@/lib/pocketbase'
 import type { Ticket, Type } from '@/lib/types'
+import { handleError } from '@/lib/utils'
 
 const route = useRoute()
 const queryClient = useQueryClient()
@@ -64,12 +64,7 @@ const editDescriptionMutation = useMutation({
     queryClient.invalidateQueries({ queryKey: ['tickets', id.value] })
     editMode.value = false
   },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 
 const edit = () => (editMode.value = true)
@@ -80,12 +75,7 @@ const editStateMutation = useMutation({
       state: state
     }),
   onSuccess: () => queryClient.invalidateQueries({ queryKey: ['tickets', id.value] }),
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 
 const taskStatus = computed(() => {
diff --git a/ui/src/components/ticket/TicketHeader.vue b/ui/src/components/ticket/TicketHeader.vue
index f8e6e468..0bc6f84c 100644
--- a/ui/src/components/ticket/TicketHeader.vue
+++ b/ui/src/components/ticket/TicketHeader.vue
@@ -1,14 +1,14 @@
 <script setup lang="ts">
 import DynamicInput from '@/components/input/DynamicInput.vue'
 import { Separator } from '@/components/ui/separator'
-import { toast } from '@/components/ui/toast'
 
 import { useMutation, useQueryClient } from '@tanstack/vue-query'
 import format from 'date-fns/format'
 import { ref } from 'vue'
 
 import { pb } from '@/lib/pocketbase'
-import type { Ticket, Type } from '@/lib/types'
+import type { Ticket } from '@/lib/types'
+import { handleError } from '@/lib/utils'
 
 const queryClient = useQueryClient()
 
@@ -24,12 +24,7 @@ const editNameMutation = useMutation({
       name: name.value
     }),
   onSuccess: () => queryClient.invalidateQueries({ queryKey: ['tickets', props.ticket.id] }),
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 
 const updateName = (value: string) => {
diff --git a/ui/src/components/ticket/TicketNewDialog.vue b/ui/src/components/ticket/TicketNewDialog.vue
index 85b7360d..67538edb 100644
--- a/ui/src/components/ticket/TicketNewDialog.vue
+++ b/ui/src/components/ticket/TicketNewDialog.vue
@@ -13,7 +13,6 @@ import {
 } from '@/components/ui/dialog'
 import { FormField, FormItem, FormLabel, FormMessage } from '@/components/ui/form'
 import { Input } from '@/components/ui/input'
-import { toast } from '@/components/ui/toast'
 
 import { useMutation, useQueryClient } from '@tanstack/vue-query'
 import { defineRule, useForm } from 'vee-validate'
@@ -22,6 +21,7 @@ import { useRouter } from 'vue-router'
 
 import { pb } from '@/lib/pocketbase'
 import type { Ticket, Type } from '@/lib/types'
+import { handleError } from '@/lib/utils'
 
 const queryClient = useQueryClient()
 const router = useRouter()
@@ -51,12 +51,7 @@ const addTicketMutation = useMutation({
     queryClient.invalidateQueries({ queryKey: ['tickets'] })
     isOpen.value = false
   },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 
 defineRule('required', (value: string) => {
diff --git a/ui/src/components/ticket/TicketUserSelect.vue b/ui/src/components/ticket/TicketUserSelect.vue
index 25d3b8dc..82deb8c3 100644
--- a/ui/src/components/ticket/TicketUserSelect.vue
+++ b/ui/src/components/ticket/TicketUserSelect.vue
@@ -2,7 +2,6 @@
 import UserSelect from '@/components/common/UserSelect.vue'
 import { Alert, AlertDescription, AlertTitle } from '@/components/ui/alert'
 import { Button } from '@/components/ui/button'
-import { toast } from '@/components/ui/toast'
 
 import { LoaderCircle, User2 } from 'lucide-vue-next'
 
@@ -10,6 +9,7 @@ import { useMutation, useQuery, useQueryClient } from '@tanstack/vue-query'
 
 import { pb } from '@/lib/pocketbase'
 import type { Ticket, User } from '@/lib/types'
+import { handleError } from '@/lib/utils'
 
 const queryClient = useQueryClient()
 
@@ -34,12 +34,7 @@ const setTicketOwnerMutation = useMutation({
       owner: user.id
     }),
   onSuccess: () => queryClient.invalidateQueries({ queryKey: ['tickets'] }),
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 
 const update = (user: User) => setTicketOwnerMutation.mutate(user)
diff --git a/ui/src/components/ticket/comment/TicketComment.vue b/ui/src/components/ticket/comment/TicketComment.vue
index ba2c7d14..41692561 100644
--- a/ui/src/components/ticket/comment/TicketComment.vue
+++ b/ui/src/components/ticket/comment/TicketComment.vue
@@ -17,7 +17,6 @@ import {
   DropdownMenuItem,
   DropdownMenuTrigger
 } from '@/components/ui/dropdown-menu'
-import { toast } from '@/components/ui/toast'
 
 import { Edit, MoreVertical, Trash } from 'lucide-vue-next'
 
@@ -27,6 +26,7 @@ import { ref } from 'vue'
 
 import { pb } from '@/lib/pocketbase'
 import type { Comment } from '@/lib/types'
+import { handleError } from '@/lib/utils'
 
 const queryClient = useQueryClient()
 
@@ -44,12 +44,7 @@ const deleteCommentMutation = useMutation({
     queryClient.invalidateQueries({ queryKey: ['tickets', props.comment.ticket] })
     isOpen.value = false
   },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 
 const editCommentMutation = useMutation({
@@ -61,12 +56,7 @@ const editCommentMutation = useMutation({
     queryClient.invalidateQueries({ queryKey: ['tickets', props.comment.ticket] })
     editMode.value = false
   },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 
 const edit = () => (editMode.value = true)
diff --git a/ui/src/components/ticket/comment/TicketCommentInput.vue b/ui/src/components/ticket/comment/TicketCommentInput.vue
index 6ad2aab3..cb30088f 100644
--- a/ui/src/components/ticket/comment/TicketCommentInput.vue
+++ b/ui/src/components/ticket/comment/TicketCommentInput.vue
@@ -2,7 +2,6 @@
 import MDEditor from '@/components/input/MDEditor.vue'
 import { Button } from '@/components/ui/button'
 import { Card } from '@/components/ui/card'
-import { toast } from '@/components/ui/toast'
 
 import { Plus } from 'lucide-vue-next'
 
@@ -11,6 +10,7 @@ import { ref } from 'vue'
 
 import { pb } from '@/lib/pocketbase'
 import type { Ticket } from '@/lib/types'
+import { handleError } from '@/lib/utils'
 
 const props = defineProps<{
   ticket: Ticket
@@ -34,12 +34,7 @@ const addCommentMutation = useMutation({
     queryClient.invalidateQueries({ queryKey: ['tickets', props.ticket.id] })
     message.value = ''
   },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 </script>
 
diff --git a/ui/src/components/ticket/file/FileAddDialog.vue b/ui/src/components/ticket/file/FileAddDialog.vue
index 3e88f6b7..7c82e0c2 100644
--- a/ui/src/components/ticket/file/FileAddDialog.vue
+++ b/ui/src/components/ticket/file/FileAddDialog.vue
@@ -10,13 +10,13 @@ import {
   DialogTitle
 } from '@/components/ui/dialog'
 import { Input } from '@/components/ui/input'
-import { toast } from '@/components/ui/toast'
 
 import { useMutation, useQueryClient } from '@tanstack/vue-query'
 import { ref } from 'vue'
 
 import { pb } from '@/lib/pocketbase'
 import type { File as CFile, Ticket } from '@/lib/types'
+import { handleError } from '@/lib/utils'
 
 const queryClient = useQueryClient()
 
@@ -42,13 +42,7 @@ const addFileMutation = useMutation({
     queryClient.invalidateQueries({ queryKey: ['tickets', props.ticket.id] })
     isOpen.value = false
   },
-  onError: (error) => {
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
-  }
+  onError: handleError
 })
 
 const save = () => addFileMutation.mutate()
diff --git a/ui/src/components/ticket/file/TicketFiles.vue b/ui/src/components/ticket/file/TicketFiles.vue
index d8f0b88c..b0a3ad8d 100644
--- a/ui/src/components/ticket/file/TicketFiles.vue
+++ b/ui/src/components/ticket/file/TicketFiles.vue
@@ -2,7 +2,6 @@
 import DeleteDialog from '@/components/common/DeleteDialog.vue'
 import TicketPanel from '@/components/ticket/TicketPanel.vue'
 import FileAddDialog from '@/components/ticket/file/FileAddDialog.vue'
-import FileRemoveDialog from '@/components/ticket/file/FileRemoveDialog.vue'
 import { Button } from '@/components/ui/button'
 
 import { Download, Trash2 } from 'lucide-vue-next'
diff --git a/ui/src/components/ticket/link/LinkAddDialog.vue b/ui/src/components/ticket/link/LinkAddDialog.vue
index 52c7526c..67c0dc6d 100644
--- a/ui/src/components/ticket/link/LinkAddDialog.vue
+++ b/ui/src/components/ticket/link/LinkAddDialog.vue
@@ -11,7 +11,6 @@ import {
 } from '@/components/ui/dialog'
 import { FormField, FormItem, FormLabel, FormMessage } from '@/components/ui/form'
 import { Input } from '@/components/ui/input'
-import { toast } from '@/components/ui/toast'
 
 import { useMutation, useQueryClient } from '@tanstack/vue-query'
 import { defineRule, useForm } from 'vee-validate'
@@ -19,6 +18,7 @@ import { onMounted, ref } from 'vue'
 
 import { pb } from '@/lib/pocketbase'
 import type { Link, Ticket } from '@/lib/types'
+import { handleError } from '@/lib/utils'
 
 const queryClient = useQueryClient()
 
@@ -39,12 +39,7 @@ const addLinkMutation = useMutation({
     queryClient.invalidateQueries({ queryKey: ['tickets', props.ticket.id] })
     isOpen.value = false
   },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 
 defineRule('required', (value: string) => {
diff --git a/ui/src/components/ticket/task/TaskAddDialog.vue b/ui/src/components/ticket/task/TaskAddDialog.vue
index 648a80b0..cd83bb3d 100644
--- a/ui/src/components/ticket/task/TaskAddDialog.vue
+++ b/ui/src/components/ticket/task/TaskAddDialog.vue
@@ -4,7 +4,6 @@ import UserSelect from '@/components/common/UserSelect.vue'
 import { Button } from '@/components/ui/button'
 import { Card } from '@/components/ui/card'
 import { Input } from '@/components/ui/input'
-import { toast } from '@/components/ui/toast'
 
 import { Plus, User2 } from 'lucide-vue-next'
 
@@ -13,6 +12,7 @@ import { computed, ref } from 'vue'
 
 import { pb } from '@/lib/pocketbase'
 import type { Task, Ticket } from '@/lib/types'
+import { handleError } from '@/lib/utils'
 
 const queryClient = useQueryClient()
 
@@ -40,12 +40,7 @@ const addTaskMutation = useMutation({
     owner.value = pb.authStore.model
     isOpen.value = false
   },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 
 const submitDisabled = computed(() => !name.value || !owner.value)
diff --git a/ui/src/components/ticket/task/TicketTasks.vue b/ui/src/components/ticket/task/TicketTasks.vue
index c715349c..38532872 100644
--- a/ui/src/components/ticket/task/TicketTasks.vue
+++ b/ui/src/components/ticket/task/TicketTasks.vue
@@ -4,7 +4,6 @@ import PanelListElement from '@/components/common/PanelListElement.vue'
 import UserSelect from '@/components/common/UserSelect.vue'
 import DynamicInput from '@/components/input/DynamicInput.vue'
 import TaskAddDialog from '@/components/ticket/task/TaskAddDialog.vue'
-import TaskRemoveDialog from '@/components/ticket/task/TaskRemoveDialog.vue'
 import { Button } from '@/components/ui/button'
 import { Card } from '@/components/ui/card'
 import { Checkbox } from '@/components/ui/checkbox'
diff --git a/ui/src/components/ticket/timeline/TicketTimelineInput.vue b/ui/src/components/ticket/timeline/TicketTimelineInput.vue
index 148e9c12..d61c193a 100644
--- a/ui/src/components/ticket/timeline/TicketTimelineInput.vue
+++ b/ui/src/components/ticket/timeline/TicketTimelineInput.vue
@@ -3,7 +3,6 @@ import MDEditor from '@/components/input/MDEditor.vue'
 import { Button } from '@/components/ui/button'
 import { Card } from '@/components/ui/card'
 import { Popover, PopoverContent, PopoverTrigger } from '@/components/ui/popover'
-import { toast } from '@/components/ui/toast'
 import { Calendar } from '@/components/ui/v-calendar'
 
 import { Calendar as CalendarIcon, Plus } from 'lucide-vue-next'
@@ -14,7 +13,7 @@ import { ref } from 'vue'
 
 import { pb } from '@/lib/pocketbase'
 import type { Ticket, TimelineItem } from '@/lib/types'
-import { cn } from '@/lib/utils'
+import { cn, handleError } from '@/lib/utils'
 
 const props = defineProps<{
   ticket: Ticket
@@ -38,12 +37,7 @@ const addCommentMutation = useMutation({
     message.value = ''
     newTimelineItem.value = false
   },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 
 const addComment = () => addCommentMutation.mutate()
diff --git a/ui/src/components/ticket/timeline/TicketTimelineItem.vue b/ui/src/components/ticket/timeline/TicketTimelineItem.vue
index 295cbaf0..5c5cc75f 100644
--- a/ui/src/components/ticket/timeline/TicketTimelineItem.vue
+++ b/ui/src/components/ticket/timeline/TicketTimelineItem.vue
@@ -1,6 +1,5 @@
 <script setup lang="ts">
 import PanelListElement from '@/components/common/PanelListElement.vue'
-import DynamicInput from '@/components/input/DynamicInput.vue'
 import DynamicMDEditor from '@/components/input/DynamicMDEditor.vue'
 import { Button } from '@/components/ui/button'
 import {
@@ -20,10 +19,9 @@ import {
   DropdownMenuTrigger
 } from '@/components/ui/dropdown-menu'
 import { Popover, PopoverContent, PopoverTrigger } from '@/components/ui/popover'
-import { toast } from '@/components/ui/toast'
 import { Calendar } from '@/components/ui/v-calendar'
 
-import { Calendar as CalendarIcon, Edit, MoreVertical, Trash } from 'lucide-vue-next'
+import { Edit, MoreVertical, Trash } from 'lucide-vue-next'
 
 import { useMutation, useQueryClient } from '@tanstack/vue-query'
 import format from 'date-fns/format'
@@ -31,7 +29,7 @@ import { ref, watch } from 'vue'
 
 import { pb } from '@/lib/pocketbase'
 import type { TimelineItem } from '@/lib/types'
-import { cn } from '@/lib/utils'
+import { cn, handleError } from '@/lib/utils'
 
 const queryClient = useQueryClient()
 
@@ -51,12 +49,7 @@ const updateTimelineMutation = useMutation({
     queryClient.invalidateQueries({ queryKey: ['tickets', props.timelineItem.ticket] })
     editMode.value = false
   },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 
 watch(time, () => {
@@ -71,12 +64,7 @@ const deleteTimelineItemMutation = useMutation({
     queryClient.invalidateQueries({ queryKey: ['tickets', props.timelineItem.ticket] })
     isOpen.value = false
   },
-  onError: (error) =>
-    toast({
-      title: error.name,
-      description: error.message,
-      variant: 'destructive'
-    })
+  onError: handleError
 })
 
 const edit = () => (editMode.value = true)
diff --git a/ui/src/components/ui/accordion/AccordionTrigger.vue b/ui/src/components/ui/accordion/AccordionTrigger.vue
index ee1dd441..f43c2c84 100644
--- a/ui/src/components/ui/accordion/AccordionTrigger.vue
+++ b/ui/src/components/ui/accordion/AccordionTrigger.vue
@@ -1,6 +1,4 @@
 <script setup lang="ts">
-import { ChevronDown } from 'lucide-vue-next'
-
 import { AccordionHeader, AccordionTrigger, type AccordionTriggerProps } from 'radix-vue'
 import { type HTMLAttributes, computed } from 'vue'
 
diff --git a/ui/src/lib/utils.ts b/ui/src/lib/utils.ts
index a109c51d..3f834c34 100644
--- a/ui/src/lib/utils.ts
+++ b/ui/src/lib/utils.ts
@@ -1,3 +1,5 @@
+import { toast } from '@/components/ui/toast'
+
 import { type ClassValue, clsx } from 'clsx'
 import { twMerge } from 'tailwind-merge'
 
@@ -12,3 +14,11 @@ export function human(bytes: number) {
       ? (bytes / 1024).toFixed(1) + ' KB'
       : (bytes / 1048576).toFixed(1) + ' MB'
 }
+
+export function handleError(error: Error) {
+  toast({
+    title: error.name,
+    description: error.message,
+    variant: 'destructive'
+  })
+}

From ca331cedca294206244cdb76b4d89d3019f59e82 Mon Sep 17 00:00:00 2001
From: Jonas Plum <git@cugu.eu>
Date: Sat, 13 Jul 2024 14:59:30 +0200
Subject: [PATCH 04/17] refactor: single collection reactions

---
 action/action.go                              |   2 +-
 fakedata/records.go                           |  30 +-
 migrations/5_actions.go                       | 101 ------
 migrations/5_reactions.go                     |  59 ++++
 migrations/migrations.go                      |   2 +-
 ui/src/components/form/ListInput.vue          |  70 ++++
 ui/src/components/form/MultiSelect.vue        |  98 ++++++
 ui/src/components/form/TextInput.vue          |  75 +++++
 ui/src/components/layout/SideBar.vue          |   6 -
 .../components/reaction/ReactionDisplay.vue   | 130 +-------
 ui/src/components/reaction/ReactionForm.vue   | 298 ++++++++++++++++++
 ui/src/components/reaction/ReactionList.vue   |  21 +-
 .../components/reaction/ReactionNewDialog.vue |  91 +-----
 .../reaction/ReactionPythonDisplay.vue        |  71 -----
 .../reaction/ReactionPythonForm.vue           |  95 ------
 .../reaction/ReactionPythonFormFields.vue     |  36 +++
 .../reaction/ReactionWebhookDisplay.vue       |  71 -----
 .../reaction/ReactionWebhookForm.vue          | 105 ------
 .../reaction/ReactionWebhookFormFields.vue    |  40 +++
 ui/src/components/reaction/TriggerHook.vue    |  72 -----
 .../TriggerHookFormFieldCollections.vue       |  37 +++
 .../reaction/TriggerHookFormFieldEvents.vue   |  36 +++
 .../reaction/TriggerHookFormFields.vue        |  36 +++
 .../components/reaction/TriggerTicketType.vue |  57 ----
 ui/src/components/reaction/TriggerWebhook.vue |  61 ----
 .../reaction/TriggerWebhookFormFields.vue     |  47 +++
 ui/src/components/ticket/TicketPanel.vue      |   2 +-
 ui/src/components/ui/tags-input/TagsInput.vue |  36 +++
 .../ui/tags-input/TagsInputInput.vue          |  23 ++
 .../ui/tags-input/TagsInputItem.vue           |  30 ++
 .../ui/tags-input/TagsInputItemDelete.vue     |  29 ++
 .../ui/tags-input/TagsInputItemText.vue       |  23 ++
 ui/src/components/ui/tags-input/index.ts      |   5 +
 ui/src/lib/types.ts                           |  27 +-
 ui/src/router/index.ts                        |   2 +-
 ui/src/views/ReactionView.vue                 |   5 +-
 36 files changed, 1044 insertions(+), 885 deletions(-)
 delete mode 100644 migrations/5_actions.go
 create mode 100644 migrations/5_reactions.go
 create mode 100644 ui/src/components/form/ListInput.vue
 create mode 100644 ui/src/components/form/MultiSelect.vue
 create mode 100644 ui/src/components/form/TextInput.vue
 create mode 100644 ui/src/components/reaction/ReactionForm.vue
 delete mode 100644 ui/src/components/reaction/ReactionPythonDisplay.vue
 delete mode 100644 ui/src/components/reaction/ReactionPythonForm.vue
 create mode 100644 ui/src/components/reaction/ReactionPythonFormFields.vue
 delete mode 100644 ui/src/components/reaction/ReactionWebhookDisplay.vue
 delete mode 100644 ui/src/components/reaction/ReactionWebhookForm.vue
 create mode 100644 ui/src/components/reaction/ReactionWebhookFormFields.vue
 delete mode 100644 ui/src/components/reaction/TriggerHook.vue
 create mode 100644 ui/src/components/reaction/TriggerHookFormFieldCollections.vue
 create mode 100644 ui/src/components/reaction/TriggerHookFormFieldEvents.vue
 create mode 100644 ui/src/components/reaction/TriggerHookFormFields.vue
 delete mode 100644 ui/src/components/reaction/TriggerTicketType.vue
 delete mode 100644 ui/src/components/reaction/TriggerWebhook.vue
 create mode 100644 ui/src/components/reaction/TriggerWebhookFormFields.vue
 create mode 100644 ui/src/components/ui/tags-input/TagsInput.vue
 create mode 100644 ui/src/components/ui/tags-input/TagsInputInput.vue
 create mode 100644 ui/src/components/ui/tags-input/TagsInputItem.vue
 create mode 100644 ui/src/components/ui/tags-input/TagsInputItemDelete.vue
 create mode 100644 ui/src/components/ui/tags-input/TagsInputItemText.vue
 create mode 100644 ui/src/components/ui/tags-input/index.ts

diff --git a/action/action.go b/action/action.go
index c51f9ee8..d79785c8 100644
--- a/action/action.go
+++ b/action/action.go
@@ -11,7 +11,7 @@ import (
 )
 
 func findAction(app core.App, action string) (*models.Record, bool, error) {
-	records, err := app.Dao().FindRecordsByExpr(migrations.ReactionPythonCollectionName, dbx.HashExp{"name": action}) // TODO
+	records, err := app.Dao().FindRecordsByExpr(migrations.ReactionCollectionName, dbx.HashExp{"name": action})
 	if err != nil {
 		return nil, false, err
 	}
diff --git a/fakedata/records.go b/fakedata/records.go
index b9ce5191..49e3b050 100644
--- a/fakedata/records.go
+++ b/fakedata/records.go
@@ -224,32 +224,38 @@ func webhookRecords(dao *daos.Dao) []*models.Record {
 	return []*models.Record{record}
 }
 
+const (
+	triggerWebhook  = `{"token":"1234567890","path":"webhook"}`
+	reactionPython  = `{"requirements":"requests","script":"import sys\n\nprint(sys.argv[1])"}`
+	triggerHook     = `{"collections":["tickets","comments"],"events":["create","update","delete"]}`
+	reactionWebhook = `{"headers":["Content-Type: application/json"],"url":"http://localhost:8080/webhook"}`
+)
+
 func reactionRecords(dao *daos.Dao) []*models.Record {
 	var records []*models.Record
 
-	collection, err := dao.FindCollectionByNameOrId(migrations.ReactionWebhookCollectionName)
+	collection, err := dao.FindCollectionByNameOrId(migrations.ReactionCollectionName)
 	if err != nil {
 		panic(err)
 	}
 
 	record := models.NewRecord(collection)
 	record.SetId("w_" + security.PseudorandomString(10))
-	record.Set("name", "test")
-	record.Set("headers", `["Content-Type: application/json"]`)
-	record.Set("destination", "http://localhost:8080/webhook")
+	record.Set("name", "Test Reaction")
+	record.Set("trigger", "webhook")
+	record.Set("triggerdata", triggerWebhook)
+	record.Set("reaction", "python")
+	record.Set("reactiondata", reactionPython)
 
 	records = append(records, record)
 
-	collection, err = dao.FindCollectionByNameOrId(migrations.ReactionPythonCollectionName)
-	if err != nil {
-		panic(err)
-	}
-
 	record = models.NewRecord(collection)
 	record.SetId("w_" + security.PseudorandomString(10))
-	record.Set("name", "test")
-	record.Set("requirements", "requests")
-	record.Set("script", "import sys\n\nprint(sys.argv[1])")
+	record.Set("name", "Test Reaction 2")
+	record.Set("trigger", "hook")
+	record.Set("triggerdata", triggerHook)
+	record.Set("reaction", "webhook")
+	record.Set("reactiondata", reactionWebhook)
 
 	records = append(records, record)
 
diff --git a/migrations/5_actions.go b/migrations/5_actions.go
deleted file mode 100644
index e2c511cc..00000000
--- a/migrations/5_actions.go
+++ /dev/null
@@ -1,101 +0,0 @@
-package migrations
-
-import (
-	"github.com/pocketbase/dbx"
-	"github.com/pocketbase/pocketbase/daos"
-	"github.com/pocketbase/pocketbase/models"
-	"github.com/pocketbase/pocketbase/models/schema"
-)
-
-const (
-	TriggerWebhookCollectionName  = "triggers_webhooks"
-	TriggerHookCollectionName     = "triggers_hooks"
-	ReactionViewName              = "reactions"
-	ReactionPythonCollectionName  = "reactions_python"
-	ReactionWebhookCollectionName = "reactions_webhooks"
-)
-
-const reactionViewQuery = `SELECT id, name, type, created, updated FROM (
-  SELECT id, name, created, updated, 'python' as type FROM reactions_python
-  UNION
-  SELECT id, name, created, updated, 'webhook' as type FROM reactions_webhooks
-) as reactions;`
-
-func actionsUp(db dbx.Builder) error {
-	hookCollections := []string{TicketCollectionName, TaskCollectionName, CommentCollectionName, TimelineCollectionName, LinkCollectionName, fileCollectionName}
-	hookEvents := []string{"create", "update", "delete"}
-
-	collections := []*models.Collection{
-		internalCollection(&models.Collection{
-			Name: TriggerWebhookCollectionName,
-			Type: models.CollectionTypeBase,
-			Schema: schema.NewSchema(
-				&schema.SchemaField{Name: "name", Type: schema.FieldTypeText, Required: true},
-				&schema.SchemaField{Name: "token", Type: schema.FieldTypeText},
-				&schema.SchemaField{Name: "path", Type: schema.FieldTypeText, Required: true},
-			),
-		}),
-		internalCollection(&models.Collection{
-			Name: TriggerHookCollectionName,
-			Type: models.CollectionTypeBase,
-			Schema: schema.NewSchema(
-				&schema.SchemaField{Name: "name", Type: schema.FieldTypeText, Required: true},
-				&schema.SchemaField{Name: "collection", Type: schema.FieldTypeSelect, Required: true, Options: &schema.SelectOptions{Values: hookCollections}},
-				&schema.SchemaField{Name: "event", Type: schema.FieldTypeSelect, Required: true, Options: &schema.SelectOptions{Values: hookEvents}},
-			),
-		}),
-		internalCollection(&models.Collection{
-			Name: ReactionPythonCollectionName,
-			Type: models.CollectionTypeBase,
-			Schema: schema.NewSchema(
-				&schema.SchemaField{Name: "name", Type: schema.FieldTypeText, Required: true},
-				&schema.SchemaField{Name: "requirements", Type: schema.FieldTypeText},
-				&schema.SchemaField{Name: "script", Type: schema.FieldTypeText, Required: true},
-			),
-		}),
-		internalCollection(&models.Collection{
-			Name: ReactionWebhookCollectionName,
-			Type: models.CollectionTypeBase,
-			Schema: schema.NewSchema(
-				&schema.SchemaField{Name: "name", Type: schema.FieldTypeText, Required: true},
-				&schema.SchemaField{Name: "headers", Type: schema.FieldTypeText},
-				&schema.SchemaField{Name: "destination", Type: schema.FieldTypeText, Required: true},
-			),
-		}),
-		internalView(ReactionViewName, reactionViewQuery),
-	}
-
-	dao := daos.New(db)
-	for _, c := range collections {
-		if err := dao.SaveCollection(c); err != nil {
-			return err
-		}
-	}
-
-	return nil
-}
-
-func actionsDown(db dbx.Builder) error {
-	collections := []string{
-		TriggerWebhookCollectionName,
-		TriggerHookCollectionName,
-		ReactionPythonCollectionName,
-		ReactionWebhookCollectionName,
-		ReactionViewName,
-	}
-
-	dao := daos.New(db)
-
-	for _, name := range collections {
-		id, err := dao.FindCollectionByNameOrId(name)
-		if err != nil {
-			return err
-		}
-
-		if err := dao.DeleteCollection(id); err != nil {
-			return err
-		}
-	}
-
-	return nil
-}
diff --git a/migrations/5_reactions.go b/migrations/5_reactions.go
new file mode 100644
index 00000000..c98572e3
--- /dev/null
+++ b/migrations/5_reactions.go
@@ -0,0 +1,59 @@
+package migrations
+
+import (
+	"github.com/pocketbase/dbx"
+	"github.com/pocketbase/pocketbase/daos"
+	"github.com/pocketbase/pocketbase/models"
+	"github.com/pocketbase/pocketbase/models/schema"
+)
+
+const ReactionCollectionName = "reactions"
+
+func reactionsUp(db dbx.Builder) error {
+	triggers := []string{"webhook", "hook"}
+	reactions := []string{"python", "webhook"}
+
+	collections := []*models.Collection{
+		internalCollection(&models.Collection{
+			Name: ReactionCollectionName,
+			Type: models.CollectionTypeBase,
+			Schema: schema.NewSchema(
+				&schema.SchemaField{Name: "name", Type: schema.FieldTypeText, Required: true},
+				&schema.SchemaField{Name: "trigger", Type: schema.FieldTypeSelect, Required: true, Options: &schema.SelectOptions{MaxSelect: 1, Values: triggers}},
+				&schema.SchemaField{Name: "triggerdata", Type: schema.FieldTypeJson, Required: true},
+				&schema.SchemaField{Name: "reaction", Type: schema.FieldTypeSelect, Required: true, Options: &schema.SelectOptions{MaxSelect: 1, Values: reactions}},
+				&schema.SchemaField{Name: "reactiondata", Type: schema.FieldTypeJson, Required: true},
+			),
+		}),
+	}
+
+	dao := daos.New(db)
+	for _, c := range collections {
+		if err := dao.SaveCollection(c); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+func reactionsDown(db dbx.Builder) error {
+	collections := []string{
+		ReactionCollectionName,
+	}
+
+	dao := daos.New(db)
+
+	for _, name := range collections {
+		id, err := dao.FindCollectionByNameOrId(name)
+		if err != nil {
+			return err
+		}
+
+		if err := dao.DeleteCollection(id); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
diff --git a/migrations/migrations.go b/migrations/migrations.go
index 4f0e98e7..7632d1f7 100644
--- a/migrations/migrations.go
+++ b/migrations/migrations.go
@@ -9,5 +9,5 @@ func Register() {
 	migrations.Register(collectionsUp, collectionsDown, "1700000001_collections.go")
 	migrations.Register(defaultDataUp, nil, "1700000003_defaultdata.go")
 	migrations.Register(viewsUp, viewsDown, "1700000004_views.go")
-	migrations.Register(actionsUp, actionsDown, "1700000005_actions.go")
+	migrations.Register(reactionsUp, reactionsDown, "1700000005_reactions.go")
 }
diff --git a/ui/src/components/form/ListInput.vue b/ui/src/components/form/ListInput.vue
new file mode 100644
index 00000000..eab56a62
--- /dev/null
+++ b/ui/src/components/form/ListInput.vue
@@ -0,0 +1,70 @@
+<script setup lang="ts">
+import TextInput from '@/components/form/TextInput.vue'
+import { Button } from '@/components/ui/button'
+import { Input } from '@/components/ui/input'
+
+import { Plus, Trash2 } from 'lucide-vue-next'
+
+import { ref } from 'vue'
+
+const props = withDefaults(
+  defineProps<{
+    modelValue?: string[]
+    placeholder?: string
+  }>(),
+  {
+    modelValue: () => [],
+    placeholder: ''
+  }
+)
+
+const emit = defineEmits(['update:modelValue'])
+
+const newItem = ref('')
+
+const updateModelValue = (value: string, index: number) => {
+  const newValue = props.modelValue
+  newValue[index] = value
+  emit('update:modelValue', newValue)
+}
+
+const addModelValue = () => {
+  emit('update:modelValue', [...props.modelValue, newItem.value])
+  newItem.value = ''
+}
+
+const removeModelValue = (index: number) =>
+  emit(
+    'update:modelValue',
+    props.modelValue.filter((_, i) => i !== index)
+  )
+</script>
+
+<template>
+  <div class="flex flex-col gap-2">
+    <div v-for="(item, index) in modelValue" :key="item" class="flex flex-row items-center gap-2">
+      <TextInput
+        :modelValue="item"
+        @update:modelValue="updateModelValue($event, index)"
+        :placeholder="placeholder"
+      />
+      <Button variant="outline" size="icon" @click="removeModelValue(index)" class="shrink-0">
+        <Trash2 class="size-4" />
+        <span class="sr-only">Remove item</span>
+      </Button>
+    </div>
+    <div class="flex flex-row items-center gap-2">
+      <Input v-model="newItem" :placeholder="placeholder" @keydown.enter.prevent="addModelValue" />
+      <Button
+        variant="outline"
+        size="icon"
+        @click="addModelValue"
+        :disabled="newItem === ''"
+        class="shrink-0"
+      >
+        <Plus class="size-4" />
+        <span class="sr-only">Add item</span>
+      </Button>
+    </div>
+  </div>
+</template>
diff --git a/ui/src/components/form/MultiSelect.vue b/ui/src/components/form/MultiSelect.vue
new file mode 100644
index 00000000..b16ca03d
--- /dev/null
+++ b/ui/src/components/form/MultiSelect.vue
@@ -0,0 +1,98 @@
+<script setup lang="ts">
+import { CommandEmpty, CommandGroup, CommandItem, CommandList } from '@/components/ui/command'
+import {
+  TagsInput,
+  TagsInputInput,
+  TagsInputItem,
+  TagsInputItemDelete,
+  TagsInputItemText
+} from '@/components/ui/tags-input'
+
+import { ComboboxAnchor, ComboboxInput, ComboboxPortal, ComboboxRoot } from 'radix-vue'
+import { computed, ref, watch } from 'vue'
+
+const props = withDefaults(
+  defineProps<{
+    modelValue?: string[]
+    items: string[]
+    placeholder?: string
+  }>(),
+  {
+    modelValue: () => [],
+    items: () => [],
+    placeholder: ''
+  }
+)
+
+const emit = defineEmits(['update:modelValue'])
+
+const open = ref(false)
+const searchTerm = ref('')
+const selectedItems = ref<string[]>(props.modelValue)
+
+watch(selectedItems.value, (value) => emit('update:modelValue', value))
+
+const filteredItems = computed(() => {
+  if (!selectedItems.value) return props.items
+  return props.items.filter((i) => !selectedItems.value.includes(i))
+})
+</script>
+
+<template>
+  <TagsInput class="flex items-center gap-2 px-0" :modelValue="selectedItems">
+    <div class="flex flex-wrap items-center">
+      <TagsInputItem v-for="item in selectedItems" :key="item" :value="item" class="ml-2">
+        <TagsInputItemText />
+        <TagsInputItemDelete />
+      </TagsInputItem>
+    </div>
+
+    <ComboboxRoot
+      v-model="selectedItems"
+      v-model:open="open"
+      v-model:searchTerm="searchTerm"
+      class="flex-1"
+    >
+      <ComboboxAnchor as-child>
+        <ComboboxInput
+          :placeholder="placeholder"
+          as-child
+          :class="selectedItems.length < items.length ? '' : 'hidden'"
+        >
+          <TagsInputInput @keydown.enter.prevent @focus="open = true" @blur="open = false" />
+        </ComboboxInput>
+      </ComboboxAnchor>
+
+      <ComboboxPortal>
+        <CommandList
+          v-if="selectedItems.length < items.length"
+          position="popper"
+          class="mt-2 w-[--radix-popper-anchor-width] rounded-md border bg-popover text-popover-foreground shadow-md outline-none data-[state=open]:animate-in data-[state=closed]:animate-out data-[state=closed]:fade-out-0 data-[state=open]:fade-in-0 data-[state=closed]:zoom-out-95 data-[state=open]:zoom-in-95 data-[side=bottom]:slide-in-from-top-2 data-[side=left]:slide-in-from-right-2 data-[side=right]:slide-in-from-left-2 data-[side=top]:slide-in-from-bottom-2"
+        >
+          <CommandEmpty />
+          <CommandGroup>
+            <CommandItem
+              v-for="item in filteredItems"
+              :key="item"
+              :value="item"
+              @select.prevent="
+                (ev) => {
+                  if (typeof ev.detail.value === 'string') {
+                    searchTerm = ''
+                    selectedItems.push(ev.detail.value)
+                  }
+
+                  if (filteredItems.length === 0) {
+                    open = false
+                  }
+                }
+              "
+            >
+              {{ item }}
+            </CommandItem>
+          </CommandGroup>
+        </CommandList>
+      </ComboboxPortal>
+    </ComboboxRoot>
+  </TagsInput>
+</template>
diff --git a/ui/src/components/form/TextInput.vue b/ui/src/components/form/TextInput.vue
new file mode 100644
index 00000000..4f1dbc61
--- /dev/null
+++ b/ui/src/components/form/TextInput.vue
@@ -0,0 +1,75 @@
+<script setup lang="ts">
+import { Button } from '@/components/ui/button'
+import { Input } from '@/components/ui/input'
+
+import { Save, X } from 'lucide-vue-next'
+
+import { type HTMLAttributes, ref, watchEffect } from 'vue'
+
+const props = withDefaults(
+  defineProps<{
+    modelValue?: string
+    placeholder?: string
+    class?: HTMLAttributes['class']
+  }>(),
+  {
+    modelValue: '',
+    placeholder: ''
+  }
+)
+
+const emit = defineEmits(['update:modelValue'])
+
+const text = ref(props.modelValue)
+const editMode = ref(false)
+const input = ref<HTMLInputElement | null>(null)
+
+const setValue = () => emit('update:modelValue', text.value)
+
+watchEffect(() => {
+  if (editMode.value && input.value) {
+    input.value.$el.focus()
+  }
+})
+
+const edit = () => {
+  text.value = props.modelValue
+  editMode.value = true
+}
+
+const cancel = () => {
+  text.value = props.modelValue
+  editMode.value = false
+}
+</script>
+
+<template>
+  <Button v-if="!editMode" variant="outline" size="icon" @click="edit" class="flex-1">
+    <div class="ml-3 w-full text-start font-normal">
+      {{ text }}
+    </div>
+  </Button>
+  <div v-else class="flex w-full flex-row gap-2">
+    <Input
+      ref="input"
+      v-model="text"
+      :placeholder="placeholder"
+      @keydown.enter="setValue"
+      class="flex-1"
+    />
+    <Button variant="outline" size="icon" @click="cancel" class="shrink-0">
+      <X class="size-4" />
+      <span class="sr-only">Cancel</span>
+    </Button>
+    <Button
+      variant="outline"
+      size="icon"
+      @click="setValue"
+      :disabled="text === modelValue"
+      class="shrink-0"
+    >
+      <Save class="size-4" />
+      <span class="sr-only">Save</span>
+    </Button>
+  </div>
+</template>
diff --git a/ui/src/components/layout/SideBar.vue b/ui/src/components/layout/SideBar.vue
index 61a105a9..17190cd2 100644
--- a/ui/src/components/layout/SideBar.vue
+++ b/ui/src/components/layout/SideBar.vue
@@ -48,12 +48,6 @@ const catalystStore = useCatalystStore()
   <NavList
     :is-collapsed="catalystStore.sidebarCollapsed"
     :links="[
-      {
-        title: 'Incoming Webhooks',
-        icon: 'Webhook',
-        variant: 'ghost',
-        to: '/webhooks'
-      },
       {
         title: 'Reactions',
         icon: 'Zap',
diff --git a/ui/src/components/reaction/ReactionDisplay.vue b/ui/src/components/reaction/ReactionDisplay.vue
index 64088883..59082f7a 100644
--- a/ui/src/components/reaction/ReactionDisplay.vue
+++ b/ui/src/components/reaction/ReactionDisplay.vue
@@ -1,24 +1,8 @@
 <script setup lang="ts">
 import TanView from '@/components/TanView.vue'
-import GrowTextarea from '@/components/form/GrowTextarea.vue'
-import DynamicInput from '@/components/input/DynamicInput.vue'
-import ReactionDeleteDialog from '@/components/reaction/ReactionDeleteDialog.vue'
-import ReactionPython from '@/components/reaction/ReactionPython.vue'
-import ReactionWebhook from '@/components/reaction/ReactionWebhook.vue'
-import TriggerHook from '@/components/reaction/TriggerHook.vue'
-import TriggerTicketType from '@/components/reaction/TriggerTicketType.vue'
-import TriggerWebhook from '@/components/reaction/TriggerWebhook.vue'
-import { Card, CardContent, CardHeader, CardTitle } from '@/components/ui/card'
-import { Label } from '@/components/ui/label'
+import DeleteDialog from '@/components/common/DeleteDialog.vue'
+import ReactionForm from '@/components/reaction/ReactionForm.vue'
 import { ScrollArea } from '@/components/ui/scroll-area'
-import {
-  Select,
-  SelectContent,
-  SelectGroup,
-  SelectItem,
-  SelectTrigger,
-  SelectValue
-} from '@/components/ui/select'
 import { Separator } from '@/components/ui/separator'
 
 import { useMutation, useQuery, useQueryClient } from '@tanstack/vue-query'
@@ -48,16 +32,6 @@ const updateReactionMutation = useMutation({
   onSuccess: () => queryClient.invalidateQueries({ queryKey: ['reactions'] }),
   onError: handleError
 })
-
-const updateName = (name: string) => updateReactionMutation.mutate({ name: name })
-const updateDescription = (description: string) =>
-  updateReactionMutation.mutate({ description: description })
-const updateTrigger = (trigger: string) =>
-  updateReactionMutation.mutate({ trigger, triggerdata: {} })
-const updateTriggerData = (triggerdata: any) => updateReactionMutation.mutate({ triggerdata })
-const updateReaction = (reaction: string) =>
-  updateReactionMutation.mutate({ reaction, reactiondata: {} })
-const updateReactionData = (reactiondata: any) => updateReactionMutation.mutate({ reactiondata })
 </script>
 
 <template>
@@ -65,102 +39,22 @@ const updateReactionData = (reactiondata: any) => updateReactionMutation.mutate(
     <div class="flex h-full flex-1 flex-col overflow-hidden">
       <div class="flex items-center bg-background px-4 py-2">
         <div class="ml-auto">
-          <ReactionDeleteDialog v-if="reaction" :reaction="reaction" />
+          <DeleteDialog
+            v-if="reaction"
+            collection="reactions"
+            :id="reaction.id"
+            :name="reaction.name"
+            :singular="'Reaction'"
+            :to="{ name: 'reactions' }"
+            :queryKey="['reactions']"
+          />
         </div>
       </div>
       <Separator />
 
       <ScrollArea v-if="reaction" class="flex-1">
         <div class="flex max-w-[640px] flex-col gap-4 p-4">
-          <h1 class="text-3xl font-bold">
-            <DynamicInput :modelValue="reaction.name" @update:modelValue="updateName" />
-          </h1>
-
-          <Label for="description">Description</Label>
-          <GrowTextarea
-            id="description"
-            :modelValue="reaction.description"
-            @update:modelValue="updateDescription"
-            placeholder="Enter a description"
-          />
-
-          <Card>
-            <CardHeader>
-              <CardTitle> Trigger </CardTitle>
-            </CardHeader>
-            <CardContent>
-              <Label for="trigger">Type</Label>
-              <Select
-                id="trigger"
-                :modelValue="reaction.trigger"
-                @update:modelValue="updateTrigger"
-              >
-                <SelectTrigger class="font-medium">
-                  <SelectValue placeholder="Select a trigger" />
-                </SelectTrigger>
-                <SelectContent>
-                  <SelectGroup>
-                    <SelectItem value="playbook">Playbook</SelectItem>
-                    <SelectItem value="ticket">Ticket</SelectItem>
-                    <SelectItem value="webhook">Incoming Webhook</SelectItem>
-                    <SelectItem value="hook">Internal Hook</SelectItem>
-                  </SelectGroup>
-                </SelectContent>
-              </Select>
-
-              <p v-if="reaction.trigger === 'playbook'" class="py-4 text-sm text-muted-foreground">
-                You can add this reaction to a playbooks.
-              </p>
-              <TriggerTicketType
-                v-else-if="reaction.trigger === 'ticket'"
-                :modelValue="reaction.triggerdata"
-                @update:modelValue="updateTriggerData"
-              />
-              <TriggerWebhook
-                v-else-if="reaction.trigger === 'webhook'"
-                :modelValue="reaction.triggerdata"
-                @update:modelValue="updateTriggerData"
-              />
-              <TriggerHook
-                v-else-if="reaction.trigger === 'hook'"
-                :modelValue="reaction.triggerdata"
-                @update:modelValue="updateTriggerData"
-              />
-            </CardContent>
-          </Card>
-
-          <Card>
-            <CardHeader>
-              <CardTitle> Reaction </CardTitle>
-            </CardHeader>
-            <CardContent>
-              <Label>Type</Label>
-              <Select :modelValue="reaction.reaction" @update:modelValue="updateReaction">
-                <SelectTrigger class="font-medium">
-                  <SelectValue placeholder="Select a type" />
-                </SelectTrigger>
-                <SelectContent>
-                  <SelectGroup>
-                    <SelectItem value="python">Python</SelectItem>
-                    <SelectItem value="webhook">Webhook</SelectItem>
-                  </SelectGroup>
-                </SelectContent>
-              </Select>
-
-              <ReactionPython
-                v-if="reaction.reaction === 'python'"
-                :modelValue="reaction.reactiondata"
-                @update:modelValue="updateReactionData"
-              />
-              <ReactionWebhook
-                v-else-if="reaction.reaction === 'webhook'"
-                :modelValue="reaction.reactiondata"
-                @update:modelValue="updateReactionData"
-              />
-            </CardContent>
-          </Card>
-
-          {{ reaction }}
+          <ReactionForm :reaction="reaction" @submit="updateReactionMutation.mutate" />
         </div>
       </ScrollArea>
     </div>
diff --git a/ui/src/components/reaction/ReactionForm.vue b/ui/src/components/reaction/ReactionForm.vue
new file mode 100644
index 00000000..58d8269b
--- /dev/null
+++ b/ui/src/components/reaction/ReactionForm.vue
@@ -0,0 +1,298 @@
+<script setup lang="ts">
+import ReactionPythonFormFields from '@/components/reaction/ReactionPythonFormFields.vue'
+import ReactionWebhookFormFields from '@/components/reaction/ReactionWebhookFormFields.vue'
+import TriggerHookFormFields from '@/components/reaction/TriggerHookFormFields.vue'
+import TriggerWebhookFormFields from '@/components/reaction/TriggerWebhookFormFields.vue'
+import { Button } from '@/components/ui/button'
+import { Card, CardContent, CardHeader, CardTitle } from '@/components/ui/card'
+import {
+  FormControl,
+  FormDescription,
+  FormField,
+  FormItem,
+  FormLabel,
+  FormMessage
+} from '@/components/ui/form'
+import { Input } from '@/components/ui/input'
+import { Label } from '@/components/ui/label'
+import {
+  Select,
+  SelectContent,
+  SelectGroup,
+  SelectItem,
+  SelectTrigger,
+  SelectValue
+} from '@/components/ui/select'
+
+import { defineRule, useForm } from 'vee-validate'
+import { computed, watch } from 'vue'
+
+import type { Reaction } from '@/lib/types'
+
+const submitDisabled = defineModel('submitDisabled')
+
+const props = defineProps<{
+  reaction?: Reaction
+}>()
+
+const emit = defineEmits(['submit'])
+
+defineRule('required', (value: string) => {
+  if (!value || !value.length) {
+    return 'This field is required'
+  }
+
+  return true
+})
+
+defineRule('triggerdata.token', (value: string) => {
+  return true
+})
+
+defineRule('triggerdata.path', (value: string) => {
+  if (values.trigger !== 'webhook') {
+    return true
+  }
+
+  if (!value) {
+    return 'This field is required'
+  }
+
+  const expression = /^[a-zA-Z0-9-_]+$/
+
+  if (!value.match(expression)) {
+    return 'Invalid path, only letters, numbers, dashes, and underscores are allowed'
+  }
+
+  return true
+})
+
+defineRule('triggerdata.collections', (value: string[]) => {
+  if (values.trigger !== 'hook') {
+    return true
+  }
+
+  if (!value) {
+    return 'This field is required'
+  }
+
+  if (value.length === 0) {
+    return 'At least one collection is required'
+  }
+
+  return true
+})
+
+defineRule('triggerdata.events', (value: string[]) => {
+  if (values.trigger !== 'hook') {
+    return true
+  }
+
+  if (!value) {
+    return 'This field is required'
+  }
+
+  if (value.length === 0) {
+    return 'At least one event is required'
+  }
+
+  return true
+})
+
+defineRule('reactiondata.script', (value: string) => {
+  if (values.reaction !== 'python') {
+    return true
+  }
+
+  if (!value) {
+    return 'This field is required'
+  }
+
+  return true
+})
+
+defineRule('reactiondata.url', (value: string) => {
+  if (values.reaction !== 'webhook') {
+    return true
+  }
+
+  if (!value) {
+    return 'This field is required'
+  }
+
+  if (!(value.startsWith('http://') || value.startsWith('https://'))) {
+    return 'Invalid URL, must start with http:// or https://'
+  }
+
+  return true
+})
+
+const { handleSubmit, validate, values } = useForm({
+  initialValues: props.reaction || {
+    name: '',
+    trigger: '',
+    triggerdata: {},
+    reaction: '',
+    reactiondata: {}
+  },
+  validationSchema: {
+    name: 'required',
+    trigger: 'required',
+    'triggerdata.token': 'triggerdata.token',
+    'triggerdata.path': 'triggerdata.path',
+    'triggerdata.collections': 'triggerdata.collections',
+    'triggerdata.events': 'triggerdata.events',
+    'reactiondata.script': 'reactiondata.script',
+    'reactiondata.url': 'reactiondata.url',
+    reaction: 'required'
+  }
+})
+
+const equalReaction = (values: Reaction, reaction?: Reaction): boolean => {
+  if (!reaction) return false
+
+  return (
+    reaction.name === values.name &&
+    reaction.trigger === values.trigger &&
+    JSON.stringify(reaction.triggerdata) === JSON.stringify(values.triggerdata) &&
+    reaction.reaction === values.reaction &&
+    JSON.stringify(reaction.reactiondata) === JSON.stringify(values.reactiondata)
+  )
+}
+
+watch(
+  () => props.reaction,
+  () => {
+    if (equalReaction(values, props.reaction)) {
+      submitDisabled.value = true
+    }
+  },
+  { immediate: true }
+)
+
+watch(
+  values,
+  () => {
+    if (equalReaction(values, props.reaction)) {
+      submitDisabled.value = true
+
+      return
+    }
+
+    validate({ mode: 'silent' }).then((res) => {
+      submitDisabled.value = !res.valid
+    })
+  },
+  { deep: true, immediate: true }
+)
+
+const onSubmit = handleSubmit((values) => emit('submit', values))
+
+const curlExample = computed(() => {
+  let cmd = `curl`
+
+  if (values.triggerdata.token) {
+    cmd += ` -H "Auth: Bearer ${values.triggerdata.token}"`
+  }
+
+  if (values.triggerdata.path) {
+    cmd += ` https://${location.hostname}/reaction/${values.triggerdata.path}`
+  }
+
+  return cmd
+})
+</script>
+
+<template>
+  <form @submit="onSubmit" class="flex flex-col gap-4">
+    <FormField name="name" v-slot="{ componentField }" validate-on-input>
+      <FormItem>
+        <FormLabel for="name" class="text-right">Name</FormLabel>
+        <Input id="name" class="col-span-3" v-bind="componentField" />
+        <FormMessage />
+      </FormItem>
+    </FormField>
+
+    <Card>
+      <CardHeader>
+        <CardTitle>Trigger</CardTitle>
+      </CardHeader>
+      <CardContent class="flex flex-col gap-4">
+        <FormField name="trigger" v-slot="{ componentField }" validate-on-input>
+          <FormItem>
+            <FormLabel for="trigger" class="text-right">Type</FormLabel>
+            <FormControl>
+              <Select id="trigger" class="col-span-3" v-bind="componentField">
+                <SelectTrigger class="font-medium">
+                  <SelectValue placeholder="Select a type" />
+                </SelectTrigger>
+                <SelectContent>
+                  <SelectGroup>
+                    <SelectItem value="webhook">Webhook</SelectItem>
+                    <SelectItem value="hook">Hook</SelectItem>
+                  </SelectGroup>
+                </SelectContent>
+              </Select>
+            </FormControl>
+            <FormDescription>
+              <p>Webhook: Receive a HTTP request.</p>
+              <p>Hook: Triggered by a collection and event.</p>
+            </FormDescription>
+            <FormMessage />
+          </FormItem>
+        </FormField>
+
+        <TriggerWebhookFormFields v-if="values.trigger === 'webhook'" />
+        <TriggerHookFormFields v-else-if="values.trigger === 'hook'" />
+
+        <div v-if="values.trigger === 'webhook'">
+          <Label for="url">Usage</Label>
+          <Input id="url" readonly :modelValue="curlExample" class="bg-accent" />
+        </div>
+      </CardContent>
+    </Card>
+
+    <Card>
+      <CardHeader>
+        <CardTitle>Reaction</CardTitle>
+      </CardHeader>
+      <CardContent class="flex flex-col gap-4">
+        <FormField name="reaction" v-slot="{ componentField }" validate-on-input>
+          <FormItem>
+            <FormLabel for="reaction" class="text-right">Type</FormLabel>
+            <FormControl>
+              <Select id="reaction" class="col-span-3" v-bind="componentField">
+                <SelectTrigger class="font-medium">
+                  <SelectValue placeholder="Select a type" />
+                </SelectTrigger>
+                <SelectContent>
+                  <SelectGroup>
+                    <SelectItem value="python">Python</SelectItem>
+                    <SelectItem value="webhook">Webhook</SelectItem>
+                  </SelectGroup>
+                </SelectContent>
+              </Select>
+            </FormControl>
+            <FormDescription>
+              <p>Python: Execute a Python script.</p>
+              <p>Webhook: Send an HTTP request.</p>
+            </FormDescription>
+            <FormMessage />
+          </FormItem>
+        </FormField>
+
+        <ReactionPythonFormFields v-if="values.reaction === 'python'" />
+        <ReactionWebhookFormFields v-else-if="values.reaction === 'webhook'" />
+      </CardContent>
+    </Card>
+
+    <slot>
+      <Button
+        type="submit"
+        :variant="submitDisabled ? 'secondary' : 'default'"
+        :disabled="submitDisabled"
+        >Save
+      </Button>
+    </slot>
+  </form>
+</template>
diff --git a/ui/src/components/reaction/ReactionList.vue b/ui/src/components/reaction/ReactionList.vue
index 56bc6b8f..4c86f22f 100644
--- a/ui/src/components/reaction/ReactionList.vue
+++ b/ui/src/components/reaction/ReactionList.vue
@@ -25,10 +25,23 @@ const {
     })
 })
 
-const subtitle = (reaction: Reaction) => {
-  if (reaction.type === 'python') {
+const subtitle = (reaction: Reaction) =>
+  triggerNiceName(reaction) + ' to ' + reactionNiceName(reaction)
+
+const triggerNiceName = (reaction: Reaction) => {
+  if (reaction.trigger === 'hook') {
+    return 'Hook'
+  } else if (reaction.trigger === 'webhook') {
+    return 'Webhook'
+  } else {
+    return 'Unknown'
+  }
+}
+
+const reactionNiceName = (reaction: Reaction) => {
+  if (reaction.reaction === 'python') {
     return 'Python'
-  } else if (reaction.type === 'webhook') {
+  } else if (reaction.reaction === 'webhook') {
     return 'Webhook'
   } else {
     return 'Unknown'
@@ -56,7 +69,7 @@ const subtitle = (reaction: Reaction) => {
             :subtitle="subtitle(reaction)"
             description=""
             :active="route.params.id === reaction.id"
-            :to="{ name: 'reactions', params: { id: reaction.id, type: reaction.type } }"
+            :to="{ name: 'reactions', params: { id: reaction.id } }"
             :open="false"
           >
             {{ reaction.name }}
diff --git a/ui/src/components/reaction/ReactionNewDialog.vue b/ui/src/components/reaction/ReactionNewDialog.vue
index 03b80051..776f1d50 100644
--- a/ui/src/components/reaction/ReactionNewDialog.vue
+++ b/ui/src/components/reaction/ReactionNewDialog.vue
@@ -1,33 +1,22 @@
 <script setup lang="ts">
-import ReactionPythonForm from '@/components/reaction/ReactionPythonForm.vue'
-import ReactionWebhookForm from '@/components/reaction/ReactionWebhookForm.vue'
+import ReactionForm from '@/components/reaction/ReactionForm.vue'
 import { Button } from '@/components/ui/button'
 import {
   Dialog,
-  DialogClose,
   DialogContent,
   DialogDescription,
-  DialogFooter,
   DialogHeader,
+  DialogScrollContent,
   DialogTitle,
   DialogTrigger
 } from '@/components/ui/dialog'
-import { Label } from '@/components/ui/label'
-import {
-  Select,
-  SelectContent,
-  SelectGroup,
-  SelectItem,
-  SelectTrigger,
-  SelectValue
-} from '@/components/ui/select'
 
 import { useMutation, useQueryClient } from '@tanstack/vue-query'
 import { ref } from 'vue'
 import { useRouter } from 'vue-router'
 
 import { pb } from '@/lib/pocketbase'
-import type { ReactionPython, ReactionWebhook, Ticket } from '@/lib/types'
+import type { Reaction, Ticket } from '@/lib/types'
 import { handleError } from '@/lib/utils'
 
 const queryClient = useQueryClient()
@@ -35,33 +24,15 @@ const router = useRouter()
 
 const isOpen = ref(false)
 
-const addReactionWebhookMutation = useMutation({
-  mutationFn: (values: ReactionWebhook): Promise<ReactionWebhook> =>
-    pb.collection('reactions_webhooks').create(values),
+const addReactionMutation = useMutation({
+  mutationFn: (values: Reaction): Promise<Reaction> => pb.collection('reactions').create(values),
   onSuccess: (data: Ticket) => {
-    router.push({ name: 'reactions', params: { type: 'webhook', id: data.id } })
+    router.push({ name: 'reactions', params: { id: data.id } })
     queryClient.invalidateQueries({ queryKey: ['reactions'] })
-    queryClient.invalidateQueries({ queryKey: ['reactions_webhooks'] })
     isOpen.value = false
   },
   onError: handleError
 })
-
-const addReactionPythonMutation = useMutation({
-  mutationFn: (values: ReactionPython): Promise<ReactionPython> =>
-    pb.collection('reactions_python').create(values),
-  onSuccess: (data: Ticket) => {
-    router.push({ name: 'reactions', params: { type: 'python', id: data.id } })
-    queryClient.invalidateQueries({ queryKey: ['reactions'] })
-    queryClient.invalidateQueries({ queryKey: ['reactions_python'] })
-    isOpen.value = false
-  },
-  onError: handleError
-})
-
-const submitDisabled = ref(true)
-
-const type = ref('')
 </script>
 
 <template>
@@ -75,53 +46,9 @@ const type = ref('')
         <DialogDescription>Create a new reaction</DialogDescription>
       </DialogHeader>
 
-      <Label>Type</Label>
-      <Select v-model="type">
-        <SelectTrigger class="font-medium">
-          <SelectValue placeholder="Select a type" />
-        </SelectTrigger>
-        <SelectContent>
-          <SelectGroup>
-            <SelectItem value="python">Python</SelectItem>
-            <SelectItem value="webhook">Webhook</SelectItem>
-          </SelectGroup>
-        </SelectContent>
-      </Select>
-
-      <ReactionPythonForm
-        v-if="type === 'python'"
-        @submit="addReactionPythonMutation.mutate"
-        v-model:submitDisabled="submitDisabled"
-      >
-        <DialogFooter class="mt-2">
-          <DialogClose as-child>
-            <Button type="button" variant="secondary" @click="isOpen = false">Cancel</Button>
-          </DialogClose>
-          <Button
-            :title="submitDisabled ? 'Please fill out all required fields' : undefined"
-            :disabled="submitDisabled"
-            type="submit"
-            >Save
-          </Button>
-        </DialogFooter>
-      </ReactionPythonForm>
-      <ReactionWebhookForm
-        v-if="type === 'webhook'"
-        @submit="addReactionWebhookMutation.mutate"
-        v-model:submitDisabled="submitDisabled"
-      >
-        <DialogFooter class="mt-2">
-          <DialogClose as-child>
-            <Button type="button" variant="secondary">Cancel</Button>
-          </DialogClose>
-          <Button
-            :title="submitDisabled ? 'Please fill out all required fields' : undefined"
-            :disabled="submitDisabled"
-            type="submit"
-            >Save
-          </Button>
-        </DialogFooter>
-      </ReactionWebhookForm>
+      <DialogScrollContent>
+        <ReactionForm @submit="addReactionMutation.mutate" />
+      </DialogScrollContent>
     </DialogContent>
   </Dialog>
 </template>
diff --git a/ui/src/components/reaction/ReactionPythonDisplay.vue b/ui/src/components/reaction/ReactionPythonDisplay.vue
deleted file mode 100644
index 5885931c..00000000
--- a/ui/src/components/reaction/ReactionPythonDisplay.vue
+++ /dev/null
@@ -1,71 +0,0 @@
-<script setup lang="ts">
-import TanView from '@/components/TanView.vue'
-import DeleteDialog from '@/components/common/DeleteDialog.vue'
-import ReactionPythonForm from '@/components/reaction/ReactionPythonForm.vue'
-import { ScrollArea } from '@/components/ui/scroll-area'
-import { Separator } from '@/components/ui/separator'
-
-import { useMutation, useQuery, useQueryClient } from '@tanstack/vue-query'
-
-import { pb } from '@/lib/pocketbase'
-import type { ReactionPython } from '@/lib/types'
-import { handleError } from '@/lib/utils'
-
-const queryClient = useQueryClient()
-
-const props = defineProps<{
-  id: string
-}>()
-
-const {
-  isPending,
-  isError,
-  data: reaction,
-  error
-} = useQuery({
-  queryKey: ['reactions_python', props.id],
-  queryFn: (): Promise<ReactionPython> => pb.collection('reactions_python').getOne(props.id)
-})
-
-const updateReactionMutation = useMutation({
-  mutationFn: (update: any) => pb.collection('reactions_python').update(props.id, update),
-  onSuccess: () => {
-    queryClient.invalidateQueries({ queryKey: ['reactions'] })
-    queryClient.invalidateQueries({ queryKey: ['reactions_python'] })
-  },
-  onError: handleError
-})
-</script>
-
-<template>
-  <TanView :isError="isError" :isPending="isPending" :error="error" :value="reaction">
-    <div class="flex h-full flex-1 flex-col overflow-hidden">
-      <div class="flex items-center bg-background px-4 py-2">
-        <div class="ml-auto">
-          <DeleteDialog
-            v-if="reaction"
-            collection="reactions_python"
-            :id="reaction.id"
-            :name="reaction.name"
-            :singular="'Reaction'"
-            :to="{ name: 'reactions' }"
-            :queryKey="['reactions']"
-          />
-        </div>
-      </div>
-      <Separator />
-
-      <ScrollArea v-if="reaction" class="flex-1">
-        <div class="flex max-w-[640px] flex-col gap-4 p-4">
-          <h1 class="text-3xl font-bold">Python Reaction Editor</h1>
-
-          <p class="py-4 text-sm text-muted-foreground">
-            Write a Python script that will be executed when this reaction is triggered.
-          </p>
-
-          <ReactionPythonForm :reaction="reaction" @submit="updateReactionMutation.mutate" />
-        </div>
-      </ScrollArea>
-    </div>
-  </TanView>
-</template>
diff --git a/ui/src/components/reaction/ReactionPythonForm.vue b/ui/src/components/reaction/ReactionPythonForm.vue
deleted file mode 100644
index eddf317d..00000000
--- a/ui/src/components/reaction/ReactionPythonForm.vue
+++ /dev/null
@@ -1,95 +0,0 @@
-<script setup lang="ts">
-import GrowTextarea from '@/components/form/GrowTextarea.vue'
-import { Button } from '@/components/ui/button'
-import { FormField, FormItem, FormLabel, FormMessage } from '@/components/ui/form'
-import { Input } from '@/components/ui/input'
-
-import { defineRule, useForm } from 'vee-validate'
-import { watch } from 'vue'
-
-import type { ReactionPython } from '@/lib/types'
-
-const submitDisabled = defineModel('submitDisabled')
-
-const props = defineProps<{
-  reaction?: ReactionPython
-}>()
-
-const emit = defineEmits(['submit'])
-
-defineRule('required', (value: string) => {
-  if (!value || !value.length) {
-    return 'This field is required'
-  }
-
-  return true
-})
-
-const { handleSubmit, validate, values } = useForm({
-  initialValues: props.reaction,
-  validationSchema: {
-    name: 'required',
-    script: 'required'
-  }
-})
-
-const equalReactionPython = (values: ReactionPython, reaction?: ReactionPython): boolean => {
-  if (!reaction) return false
-
-  return (
-    reaction.name === values.name &&
-    reaction.requirements === values.requirements &&
-    reaction.script === values.script
-  )
-}
-
-watch(
-  values,
-  () => {
-    if (equalReactionPython(values, props.reaction)) {
-      submitDisabled.value = true
-
-      return
-    }
-
-    validate({ mode: 'silent' }).then((res) => (submitDisabled.value = !res.valid))
-  },
-  { deep: true, immediate: true }
-)
-
-const onSubmit = handleSubmit((values) => emit('submit', values))
-</script>
-
-<template>
-  <form @submit="onSubmit" class="flex flex-col gap-4">
-    <FormField name="name" v-slot="{ componentField }" validate-on-input>
-      <FormItem>
-        <FormLabel for="name" class="text-right">Name</FormLabel>
-        <Input id="name" class="col-span-3" v-bind="componentField" />
-        <FormMessage />
-      </FormItem>
-    </FormField>
-    <FormField name="requirements" v-slot="{ componentField }">
-      <FormItem>
-        <FormLabel for="requirements" class="text-right">requirements.txt</FormLabel>
-        <GrowTextarea id="requirements" class="col-span-3" v-bind="componentField" />
-        <FormMessage />
-      </FormItem>
-    </FormField>
-    <FormField name="script" v-slot="{ componentField }" validate-on-input>
-      <FormItem>
-        <FormLabel for="script" class="text-right">Script</FormLabel>
-        <GrowTextarea id="script" class="col-span-3" v-bind="componentField" />
-        <FormMessage />
-      </FormItem>
-    </FormField>
-    <slot>
-      <Button
-        type="submit"
-        :variant="submitDisabled ? 'secondary' : 'default'"
-        :disabled="submitDisabled"
-        >Save</Button
-      >
-    </slot>
-  </form>
-</template>
diff --git a/ui/src/components/reaction/ReactionPythonFormFields.vue b/ui/src/components/reaction/ReactionPythonFormFields.vue
new file mode 100644
index 00000000..68b41f87
--- /dev/null
+++ b/ui/src/components/reaction/ReactionPythonFormFields.vue
@@ -0,0 +1,36 @@
+<script setup lang="ts">
+import GrowTextarea from '@/components/form/GrowTextarea.vue'
+import {
+  FormControl,
+  FormDescription,
+  FormField,
+  FormItem,
+  FormLabel,
+  FormMessage
+} from '@/components/ui/form'
+</script>
+
+<template>
+  <FormField name="reactiondata.requirements" v-slot="{ componentField }">
+    <FormItem>
+      <FormLabel for="requirements" class="text-right">requirements.txt</FormLabel>
+      <FormControl>
+        <GrowTextarea id="requirements" class="col-span-3" v-bind="componentField" />
+      </FormControl>
+      <FormDescription> Specify the Python packages required to run the script. </FormDescription>
+      <FormMessage />
+    </FormItem>
+  </FormField>
+  <FormField name="reactiondata.script" v-slot="{ componentField }" validate-on-input>
+    <FormItem>
+      <FormLabel for="script" class="text-right">Script</FormLabel>
+      <FormControl>
+        <GrowTextarea id="script" class="col-span-3" v-bind="componentField" />
+      </FormControl>
+      <FormDescription>
+        Write a Python script to run when the reaction is triggered.
+      </FormDescription>
+      <FormMessage />
+    </FormItem>
+  </FormField>
+</template>
diff --git a/ui/src/components/reaction/ReactionWebhookDisplay.vue b/ui/src/components/reaction/ReactionWebhookDisplay.vue
deleted file mode 100644
index 2798bb1e..00000000
--- a/ui/src/components/reaction/ReactionWebhookDisplay.vue
+++ /dev/null
@@ -1,71 +0,0 @@
-<script setup lang="ts">
-import TanView from '@/components/TanView.vue'
-import DeleteDialog from '@/components/common/DeleteDialog.vue'
-import ReactionWebhookForm from '@/components/reaction/ReactionWebhookForm.vue'
-import { ScrollArea } from '@/components/ui/scroll-area'
-import { Separator } from '@/components/ui/separator'
-
-import { useMutation, useQuery, useQueryClient } from '@tanstack/vue-query'
-
-import { pb } from '@/lib/pocketbase'
-import type { ReactionWebhook } from '@/lib/types'
-import { handleError } from '@/lib/utils'
-
-const queryClient = useQueryClient()
-
-const props = defineProps<{
-  id: string
-}>()
-
-const {
-  isPending,
-  isError,
-  data: reaction,
-  error
-} = useQuery({
-  queryKey: ['reactions_webhooks', props.id],
-  queryFn: (): Promise<ReactionWebhook> => pb.collection('reactions_webhooks').getOne(props.id)
-})
-
-const updateReactionMutation = useMutation({
-  mutationFn: (update: any) => pb.collection('reactions_webhooks').update(props.id, update),
-  onSuccess: () => {
-    queryClient.invalidateQueries({ queryKey: ['reactions'] })
-    queryClient.invalidateQueries({ queryKey: ['reactions_webhooks'] })
-  },
-  onError: handleError
-})
-</script>
-
-<template>
-  <TanView :isError="isError" :isPending="isPending" :error="error" :value="reaction">
-    <div class="flex h-full flex-1 flex-col overflow-hidden">
-      <div class="flex items-center bg-background px-4 py-2">
-        <div class="ml-auto">
-          <DeleteDialog
-            v-if="reaction"
-            collection="reactions_webhooks"
-            :id="reaction.id"
-            :name="reaction.name"
-            :singular="'Reaction'"
-            :to="{ name: 'reactions' }"
-            :queryKey="['reactions']"
-          />
-        </div>
-      </div>
-      <Separator />
-
-      <ScrollArea v-if="reaction" class="flex-1">
-        <div class="flex max-w-[640px] flex-col gap-4 p-4">
-          <h1 class="text-3xl font-bold">Webhook Reaction Editor</h1>
-
-          <p class="py-4 text-sm text-muted-foreground">
-            Sent a POST request to the specified destination URL with the specified headers.
-          </p>
-
-          <ReactionWebhookForm :reaction="reaction" @submit="updateReactionMutation.mutate" />
-        </div>
-      </ScrollArea>
-    </div>
-  </TanView>
-</template>
diff --git a/ui/src/components/reaction/ReactionWebhookForm.vue b/ui/src/components/reaction/ReactionWebhookForm.vue
deleted file mode 100644
index 36f29030..00000000
--- a/ui/src/components/reaction/ReactionWebhookForm.vue
+++ /dev/null
@@ -1,105 +0,0 @@
-<script setup lang="ts">
-import GrowTextarea from '@/components/form/GrowTextarea.vue'
-import { Button } from '@/components/ui/button'
-import { FormField, FormItem, FormLabel, FormMessage } from '@/components/ui/form'
-import { Input } from '@/components/ui/input'
-
-import { defineRule, useForm } from 'vee-validate'
-import { watch } from 'vue'
-
-import type { ReactionWebhook } from '@/lib/types'
-
-const submitDisabled = defineModel('submitDisabled')
-
-const props = defineProps<{
-  reaction?: ReactionWebhook
-}>()
-
-const emit = defineEmits(['submit'])
-
-defineRule('required', (value: string) => {
-  if (!value || !value.length) {
-    return 'This field is required'
-  }
-
-  return true
-})
-
-const { handleSubmit, validate, values } = useForm({
-  initialValues: props.reaction,
-  validationSchema: {
-    name: 'required',
-    destination: 'required'
-  }
-})
-
-const equalReactionWebhook = (values: ReactionWebhook, reaction?: ReactionWebhook): boolean => {
-  if (!reaction) return false
-
-  return (
-    reaction.name === values.name &&
-    reaction.headers === values.headers &&
-    reaction.destination === values.destination
-  )
-}
-
-watch(
-  values,
-  () => {
-    if (equalReactionWebhook(values, props.reaction)) {
-      submitDisabled.value = true
-
-      return
-    }
-
-    validate({ mode: 'silent' }).then((res) => (submitDisabled.value = !res.valid))
-  },
-  { deep: true, immediate: true }
-)
-
-const onSubmit = handleSubmit((values) => emit('submit', values))
-</script>
-
-<template>
-  <form @submit="onSubmit" class="flex flex-col gap-4">
-    <FormField name="name" v-slot="{ componentField }" validate-on-input>
-      <FormItem>
-        <FormLabel for="name" class="text-right">Name</FormLabel>
-        <Input id="name" class="col-span-3" v-bind="componentField" />
-        <FormMessage />
-      </FormItem>
-    </FormField>
-    <FormField name="headers" v-slot="{ componentField }">
-      <FormItem>
-        <FormLabel for="headers" class="text-right">Headers (one header per line)</FormLabel>
-        <GrowTextarea
-          id="headers"
-          class="col-span-3"
-          v-bind="componentField"
-          placeholder="Content-Type: application/json"
-        />
-        <FormMessage />
-      </FormItem>
-    </FormField>
-    <FormField name="destination" v-slot="{ componentField }" validate-on-input>
-      <FormItem>
-        <FormLabel for="destination" class="text-right">Destination</FormLabel>
-        <Input
-          id="destination"
-          class="col-span-3"
-          v-bind="componentField"
-          placeholder="https://example.com/webhook"
-        />
-        <FormMessage />
-      </FormItem>
-    </FormField>
-    <slot>
-      <Button
-        type="submit"
-        :variant="submitDisabled ? 'secondary' : 'default'"
-        :disabled="submitDisabled"
-        >Save</Button
-      >
-    </slot>
-  </form>
-</template>
diff --git a/ui/src/components/reaction/ReactionWebhookFormFields.vue b/ui/src/components/reaction/ReactionWebhookFormFields.vue
new file mode 100644
index 00000000..405428b7
--- /dev/null
+++ b/ui/src/components/reaction/ReactionWebhookFormFields.vue
@@ -0,0 +1,40 @@
+<script setup lang="ts">
+import GrowListTextarea from '@/components/form/ListInput.vue'
+import {
+  FormControl,
+  FormDescription,
+  FormField,
+  FormItem,
+  FormLabel,
+  FormMessage
+} from '@/components/ui/form'
+import { Input } from '@/components/ui/input'
+</script>
+
+<template>
+  <FormField name="reactiondata.headers" v-slot="{ value, handleChange }">
+    <FormItem>
+      <FormLabel for="headers" class="text-right">Headers</FormLabel>
+      <FormControl>
+        <GrowListTextarea
+          id="headers"
+          :modelValue="value"
+          @update:modelValue="handleChange"
+          placeholder="Content-Type: application/json"
+        />
+      </FormControl>
+      <FormDescription> Specify the headers to include in the request. </FormDescription>
+      <FormMessage />
+    </FormItem>
+  </FormField>
+  <FormField name="reactiondata.url" v-slot="{ componentField }" validate-on-input>
+    <FormItem>
+      <FormLabel for="url" class="text-right">URL</FormLabel>
+      <FormControl>
+        <Input id="url" v-bind="componentField" placeholder="https://example.com/webhook" />
+      </FormControl>
+      <FormDescription> Specify the URL to send the request to. </FormDescription>
+      <FormMessage />
+    </FormItem>
+  </FormField>
+</template>
diff --git a/ui/src/components/reaction/TriggerHook.vue b/ui/src/components/reaction/TriggerHook.vue
deleted file mode 100644
index 7bc9db8d..00000000
--- a/ui/src/components/reaction/TriggerHook.vue
+++ /dev/null
@@ -1,72 +0,0 @@
-<script setup lang="ts">
-import { Label } from '@/components/ui/label'
-import {
-  Select,
-  SelectContent,
-  SelectGroup,
-  SelectItem,
-  SelectTrigger,
-  SelectValue
-} from '@/components/ui/select'
-import { Switch } from '@/components/ui/switch'
-
-interface TriggerWebhookData {
-  collection: string
-  create: boolean
-  update: boolean
-  delete: boolean
-}
-
-const props = defineProps<{
-  modelValue: TriggerWebhookData
-}>()
-
-const emit = defineEmits(['update:modelValue'])
-
-const updateCollection = (value: string) =>
-  emit('update:modelValue', { ...props.modelValue, collection: value })
-const updateCreate = (value: boolean) =>
-  emit('update:modelValue', { ...props.modelValue, create: value })
-const updateUpdate = (value: boolean) =>
-  emit('update:modelValue', { ...props.modelValue, update: value })
-const updateDelete = (value: boolean) =>
-  emit('update:modelValue', { ...props.modelValue, delete: value })
-</script>
-
-<template>
-  <p class="py-4 text-sm text-muted-foreground">
-    Trigger an reaction when an event occurs in a collection.
-  </p>
-
-  <Label for="collection">Collection</Label>
-  <Select id="collection" :modelValue="modelValue.collection" @update:modelValue="updateCollection">
-    <SelectTrigger>
-      <SelectValue placeholder="Select a collection" />
-    </SelectTrigger>
-    <SelectContent>
-      <SelectGroup>
-        <SelectItem value="tickets">Tickets</SelectItem>
-        <SelectItem value="tasks">Tasks</SelectItem>
-        <SelectItem value="comments">Comments</SelectItem>
-        <SelectItem value="timeline">Timeline</SelectItem>
-        <SelectItem value="links">Links</SelectItem>
-        <SelectItem value="files">Files</SelectItem>
-      </SelectGroup>
-    </SelectContent>
-  </Select>
-
-  <div class="mt-2 flex items-center space-x-2">
-    <Switch id="create" :checked="modelValue.create" @update:checked="updateCreate" />
-    <Label for="create">Create events</Label>
-  </div>
-
-  <div class="mt-2 flex items-center space-x-2">
-    <Switch id="update" :checked="modelValue.update" @update:checked="updateUpdate" />
-    <Label for="update">Update events</Label>
-  </div>
-
-  <div class="mt-2 flex items-center space-x-2">
-    <Switch id="delete" :checked="modelValue.delete" @update:checked="updateDelete" />
-    <Label for="delete">Delete events</Label>
-  </div>
-</template>
diff --git a/ui/src/components/reaction/TriggerHookFormFieldCollections.vue b/ui/src/components/reaction/TriggerHookFormFieldCollections.vue
new file mode 100644
index 00000000..91fbab5d
--- /dev/null
+++ b/ui/src/components/reaction/TriggerHookFormFieldCollections.vue
@@ -0,0 +1,37 @@
+<script setup lang="ts">
+import MultiSelect from '@/components/form/MultiSelect.vue'
+
+import { computed } from 'vue'
+
+const modelValue = defineModel<string[]>({
+  default: []
+})
+
+const items = ['Tickets', 'Tasks', 'Comments', 'Timeline', 'Links', 'Files']
+
+const mapping: Record<string, string> = {
+  tickets: 'Tickets',
+  tasks: 'Tasks',
+  comments: 'Comments',
+  timeline: 'Timeline',
+  links: 'Links',
+  files: 'Files'
+}
+
+const niceNames = computed(() => modelValue.value.map((collection) => mapping[collection]))
+
+const updateModelValue = (values: string[]) => {
+  modelValue.value = values.map(
+    (value) => Object.keys(mapping).find((key) => mapping[key] === value)!
+  )
+}
+</script>
+
+<template>
+  <MultiSelect
+    :modelValue="niceNames"
+    @update:modelValue="updateModelValue"
+    :items="items"
+    placeholder="Select collections..."
+  />
+</template>
diff --git a/ui/src/components/reaction/TriggerHookFormFieldEvents.vue b/ui/src/components/reaction/TriggerHookFormFieldEvents.vue
new file mode 100644
index 00000000..62dceed0
--- /dev/null
+++ b/ui/src/components/reaction/TriggerHookFormFieldEvents.vue
@@ -0,0 +1,36 @@
+<script setup lang="ts">
+import MultiSelect from '@/components/form/MultiSelect.vue'
+
+import { computed } from 'vue'
+
+const modelValue = defineModel<string[]>({
+  default: []
+})
+
+const items = ['Create Events', 'Update Events', 'Delete Events']
+
+const mapping: Record<string, string> = {
+  create: 'Create Events',
+  update: 'Update Events',
+  delete: 'Delete Events'
+}
+
+const niceNames = computed(() =>
+  modelValue.value.map((collection) => mapping[collection] as string)
+)
+
+const updateModelValue = (values: string[]) => {
+  modelValue.value = values.map(
+    (value) => Object.keys(mapping).find((key) => mapping[key] === value)!
+  )
+}
+</script>
+
+<template>
+  <MultiSelect
+    :modelValue="niceNames"
+    @update:modelValue="updateModelValue"
+    :items="items"
+    placeholder="Select events..."
+  />
+</template>
diff --git a/ui/src/components/reaction/TriggerHookFormFields.vue b/ui/src/components/reaction/TriggerHookFormFields.vue
new file mode 100644
index 00000000..8fbb7ba8
--- /dev/null
+++ b/ui/src/components/reaction/TriggerHookFormFields.vue
@@ -0,0 +1,36 @@
+<script setup lang="ts">
+import TriggerHookFormFieldCollections from '@/components/reaction/TriggerHookFormFieldCollections.vue'
+import TriggerHookFormFieldEvents from '@/components/reaction/TriggerHookFormFieldEvents.vue'
+import {
+  FormControl,
+  FormDescription,
+  FormField,
+  FormItem,
+  FormLabel,
+  FormMessage
+} from '@/components/ui/form'
+</script>
+
+<template>
+  <FormField name="triggerdata.collections" v-slot="{ componentField }" validate-on-input>
+    <FormItem>
+      <FormLabel for="collections" class="text-right">Collections</FormLabel>
+      <FormControl>
+        <TriggerHookFormFieldCollections id="collections" v-bind="componentField" />
+      </FormControl>
+      <FormDescription> Specify the collections to trigger the reaction. </FormDescription>
+      <FormMessage />
+    </FormItem>
+  </FormField>
+
+  <FormField name="triggerdata.events" v-slot="{ componentField }" validate-on-input>
+    <FormItem>
+      <FormLabel for="events" class="text-right">Events</FormLabel>
+      <FormControl>
+        <TriggerHookFormFieldEvents id="events" v-bind="componentField" />
+      </FormControl>
+      <FormDescription> Specify the events to trigger the reaction. </FormDescription>
+      <FormMessage />
+    </FormItem>
+  </FormField>
+</template>
diff --git a/ui/src/components/reaction/TriggerTicketType.vue b/ui/src/components/reaction/TriggerTicketType.vue
deleted file mode 100644
index 343a83af..00000000
--- a/ui/src/components/reaction/TriggerTicketType.vue
+++ /dev/null
@@ -1,57 +0,0 @@
-<script setup lang="ts">
-import { Label } from '@/components/ui/label'
-import { Switch } from '@/components/ui/switch'
-
-import { useQuery } from '@tanstack/vue-query'
-
-import { pb } from '@/lib/pocketbase'
-import type { Type } from '@/lib/types'
-
-interface TriggerTicketTypeData {
-  tickettype: Array<string>
-}
-
-const props = defineProps<{
-  modelValue: TriggerTicketTypeData
-}>()
-
-const emit = defineEmits(['update:modelValue'])
-
-const updateTicketType = (id: string, value: boolean) => {
-  let tickettype = props.modelValue.tickettype || []
-
-  if (value) {
-    tickettype = [...tickettype, id]
-  } else {
-    tickettype = tickettype.filter((t) => t !== id)
-  }
-
-  emit('update:modelValue', { ...props.modelValue, tickettype })
-}
-
-const {
-  isPending,
-  isError,
-  data: types,
-  error
-} = useQuery({
-  queryKey: ['types'],
-  queryFn: (): Promise<Array<Type>> =>
-    pb.collection('types').getFullList({
-      sort: '-created'
-    })
-})
-</script>
-
-<template>
-  <p class="py-4 text-sm text-muted-foreground">Add controls to tickets of the specified types.</p>
-
-  <div class="mt-2 flex items-center space-x-2" v-for="type in types" :key="type.id">
-    <Switch
-      :id="type.id"
-      :checked="modelValue.tickettype && modelValue.tickettype.includes(type.id)"
-      @update:checked="(value) => updateTicketType(type.id, value)"
-    />
-    <Label :for="type.id">Show controls for {{ type.plural }}</Label>
-  </div>
-</template>
diff --git a/ui/src/components/reaction/TriggerWebhook.vue b/ui/src/components/reaction/TriggerWebhook.vue
deleted file mode 100644
index ff8f00bc..00000000
--- a/ui/src/components/reaction/TriggerWebhook.vue
+++ /dev/null
@@ -1,61 +0,0 @@
-<script setup lang="ts">
-import { Input } from '@/components/ui/input'
-import { Label } from '@/components/ui/label'
-
-import { computed } from 'vue'
-
-interface TriggerWebhookData {
-  token: string
-  path: string
-}
-
-const props = defineProps<{
-  modelValue: TriggerWebhookData
-}>()
-
-const emit = defineEmits(['update:modelValue'])
-
-const updateToken = (value: string) =>
-  emit('update:modelValue', { ...props.modelValue, token: value })
-const updatePath = (value: string) =>
-  emit('update:modelValue', { ...props.modelValue, path: value })
-
-const curlExample = computed(() => {
-  let cmd = `curl`
-
-  if (props.modelValue && props.modelValue.token) {
-    cmd += ` -H "Auth: Bearer ${props.modelValue.token}"`
-  }
-
-  if (props.modelValue && props.modelValue.path) {
-    cmd += ` https://${location.hostname}/reaction/${props.modelValue.path}`
-  }
-
-  return cmd
-})
-</script>
-
-<template>
-  <p class="py-4 text-sm text-muted-foreground">
-    Receive a POST request at the specified path with an optional authorization token.
-  </p>
-
-  <Label for="token">Token</Label>
-  <Input
-    id="token"
-    :modelValue="modelValue.token"
-    @update:modelValue="updateToken"
-    placeholder="Enter a token (e.g. 'Bearer xyz...')"
-  />
-
-  <Label for="path">Path</Label>
-  <Input
-    id="path"
-    :modelValue="modelValue.path"
-    @update:modelValue="updatePath"
-    placeholder="Enter a path (e.g. '/webhook')"
-  />
-
-  <Label for="url">Usage</Label>
-  <Input id="url" readonly :modelValue="curlExample" class="bg-accent" />
-</template>
diff --git a/ui/src/components/reaction/TriggerWebhookFormFields.vue b/ui/src/components/reaction/TriggerWebhookFormFields.vue
new file mode 100644
index 00000000..2415a503
--- /dev/null
+++ b/ui/src/components/reaction/TriggerWebhookFormFields.vue
@@ -0,0 +1,47 @@
+<script setup lang="ts">
+import {
+  FormControl,
+  FormDescription,
+  FormField,
+  FormItem,
+  FormLabel,
+  FormMessage
+} from '@/components/ui/form'
+import { Input } from '@/components/ui/input'
+</script>
+
+<template>
+  <FormField name="triggerdata.token" v-slot="{ componentField }" validate-on-input>
+    <FormItem>
+      <FormLabel for="token" class="text-right">Token</FormLabel>
+      <FormControl>
+        <Input
+          id="token"
+          class="col-span-3"
+          v-bind="componentField"
+          placeholder="Enter a token (e.g. 'xyz...')"
+        />
+      </FormControl>
+      <FormDescription>
+        Optional. Include an authorization token in the request headers.
+      </FormDescription>
+      <FormMessage />
+    </FormItem>
+  </FormField>
+
+  <FormField name="triggerdata.path" v-slot="{ componentField }" validate-on-input>
+    <FormItem>
+      <FormLabel for="path" class="text-right">Path</FormLabel>
+      <FormControl>
+        <Input
+          id="path"
+          class="col-span-3"
+          v-bind="componentField"
+          placeholder="Enter a path (e.g. 'action1')"
+        />
+      </FormControl>
+      <FormDescription> Specify the path to trigger the reaction. </FormDescription>
+      <FormMessage />
+    </FormItem>
+  </FormField>
+</template>
diff --git a/ui/src/components/ticket/TicketPanel.vue b/ui/src/components/ticket/TicketPanel.vue
index 185ef7d5..24bd7258 100644
--- a/ui/src/components/ticket/TicketPanel.vue
+++ b/ui/src/components/ticket/TicketPanel.vue
@@ -25,7 +25,7 @@ withDefaults(defineProps<Props>(), {
 
       <Button v-if="!hideAdd" variant="ghost" size="icon" class="h-8 w-8" @click="emit('add')">
         <Plus class="size-4" />
-        <span class="sr-only">Add link</span>
+        <span class="sr-only">Add item</span>
       </Button>
     </div>
     <Card v-if="$slots.default" class="p-0">
diff --git a/ui/src/components/ui/tags-input/TagsInput.vue b/ui/src/components/ui/tags-input/TagsInput.vue
new file mode 100644
index 00000000..4f1eef06
--- /dev/null
+++ b/ui/src/components/ui/tags-input/TagsInput.vue
@@ -0,0 +1,36 @@
+<script setup lang="ts">
+import {
+  TagsInputRoot,
+  type TagsInputRootEmits,
+  type TagsInputRootProps,
+  useForwardPropsEmits
+} from 'radix-vue'
+import { type HTMLAttributes, computed } from 'vue'
+
+import { cn } from '@/lib/utils'
+
+const props = defineProps<TagsInputRootProps & { class?: HTMLAttributes['class'] }>()
+const emits = defineEmits<TagsInputRootEmits>()
+
+const delegatedProps = computed(() => {
+  const { class: _, ...delegated } = props
+
+  return delegated
+})
+
+const forwarded = useForwardPropsEmits(delegatedProps, emits)
+</script>
+
+<template>
+  <TagsInputRoot
+    v-bind="forwarded"
+    :class="
+      cn(
+        'flex flex-wrap items-center gap-2 rounded-md border border-input bg-background px-3 py-2 text-sm',
+        props.class
+      )
+    "
+  >
+    <slot />
+  </TagsInputRoot>
+</template>
diff --git a/ui/src/components/ui/tags-input/TagsInputInput.vue b/ui/src/components/ui/tags-input/TagsInputInput.vue
new file mode 100644
index 00000000..646bf32c
--- /dev/null
+++ b/ui/src/components/ui/tags-input/TagsInputInput.vue
@@ -0,0 +1,23 @@
+<script setup lang="ts">
+import { TagsInputInput, type TagsInputInputProps, useForwardProps } from 'radix-vue'
+import { type HTMLAttributes, computed } from 'vue'
+
+import { cn } from '@/lib/utils'
+
+const props = defineProps<TagsInputInputProps & { class?: HTMLAttributes['class'] }>()
+
+const delegatedProps = computed(() => {
+  const { class: _, ...delegated } = props
+
+  return delegated
+})
+
+const forwardedProps = useForwardProps(delegatedProps)
+</script>
+
+<template>
+  <TagsInputInput
+    v-bind="forwardedProps"
+    :class="cn('min-h-6 flex-1 bg-transparent px-1 text-sm focus:outline-none', props.class)"
+  />
+</template>
diff --git a/ui/src/components/ui/tags-input/TagsInputItem.vue b/ui/src/components/ui/tags-input/TagsInputItem.vue
new file mode 100644
index 00000000..4a546d14
--- /dev/null
+++ b/ui/src/components/ui/tags-input/TagsInputItem.vue
@@ -0,0 +1,30 @@
+<script setup lang="ts">
+import { TagsInputItem, type TagsInputItemProps, useForwardProps } from 'radix-vue'
+import { type HTMLAttributes, computed } from 'vue'
+
+import { cn } from '@/lib/utils'
+
+const props = defineProps<TagsInputItemProps & { class?: HTMLAttributes['class'] }>()
+
+const delegatedProps = computed(() => {
+  const { class: _, ...delegated } = props
+
+  return delegated
+})
+
+const forwardedProps = useForwardProps(delegatedProps)
+</script>
+
+<template>
+  <TagsInputItem
+    v-bind="forwardedProps"
+    :class="
+      cn(
+        'flex h-6 items-center rounded bg-secondary ring-offset-background data-[state=active]:ring-2 data-[state=active]:ring-ring data-[state=active]:ring-offset-2',
+        props.class
+      )
+    "
+  >
+    <slot />
+  </TagsInputItem>
+</template>
diff --git a/ui/src/components/ui/tags-input/TagsInputItemDelete.vue b/ui/src/components/ui/tags-input/TagsInputItemDelete.vue
new file mode 100644
index 00000000..94fd737e
--- /dev/null
+++ b/ui/src/components/ui/tags-input/TagsInputItemDelete.vue
@@ -0,0 +1,29 @@
+<script setup lang="ts">
+import { X } from 'lucide-vue-next'
+
+import { TagsInputItemDelete, type TagsInputItemDeleteProps, useForwardProps } from 'radix-vue'
+import { type HTMLAttributes, computed } from 'vue'
+
+import { cn } from '@/lib/utils'
+
+const props = defineProps<TagsInputItemDeleteProps & { class?: HTMLAttributes['class'] }>()
+
+const delegatedProps = computed(() => {
+  const { class: _, ...delegated } = props
+
+  return delegated
+})
+
+const forwardedProps = useForwardProps(delegatedProps)
+</script>
+
+<template>
+  <TagsInputItemDelete
+    v-bind="forwardedProps"
+    :class="cn('mr-1 flex rounded bg-transparent', props.class)"
+  >
+    <slot>
+      <X class="h-4 w-4" />
+    </slot>
+  </TagsInputItemDelete>
+</template>
diff --git a/ui/src/components/ui/tags-input/TagsInputItemText.vue b/ui/src/components/ui/tags-input/TagsInputItemText.vue
new file mode 100644
index 00000000..2b77bee9
--- /dev/null
+++ b/ui/src/components/ui/tags-input/TagsInputItemText.vue
@@ -0,0 +1,23 @@
+<script setup lang="ts">
+import { TagsInputItemText, type TagsInputItemTextProps, useForwardProps } from 'radix-vue'
+import { type HTMLAttributes, computed } from 'vue'
+
+import { cn } from '@/lib/utils'
+
+const props = defineProps<TagsInputItemTextProps & { class?: HTMLAttributes['class'] }>()
+
+const delegatedProps = computed(() => {
+  const { class: _, ...delegated } = props
+
+  return delegated
+})
+
+const forwardedProps = useForwardProps(delegatedProps)
+</script>
+
+<template>
+  <TagsInputItemText
+    v-bind="forwardedProps"
+    :class="cn('rounded bg-transparent px-2 py-1 text-sm', props.class)"
+  />
+</template>
diff --git a/ui/src/components/ui/tags-input/index.ts b/ui/src/components/ui/tags-input/index.ts
new file mode 100644
index 00000000..31305f34
--- /dev/null
+++ b/ui/src/components/ui/tags-input/index.ts
@@ -0,0 +1,5 @@
+export { default as TagsInput } from './TagsInput.vue'
+export { default as TagsInputInput } from './TagsInputInput.vue'
+export { default as TagsInputItem } from './TagsInputItem.vue'
+export { default as TagsInputItemDelete } from './TagsInputItemDelete.vue'
+export { default as TagsInputItemText } from './TagsInputItemText.vue'
diff --git a/ui/src/lib/types.ts b/ui/src/lib/types.ts
index 58def0fb..1b4eff22 100644
--- a/ui/src/lib/types.ts
+++ b/ui/src/lib/types.ts
@@ -135,29 +135,10 @@ export interface Reaction {
   id: string
 
   name: string
-  type: string
-
-  created: string
-  updated: string
-}
-
-export interface ReactionPython {
-  id: string
-
-  name: string
-  requirements: string
-  script: string
-
-  created: string
-  updated: string
-}
-
-export interface ReactionWebhook {
-  id: string
-
-  name: string
-  headers: Array<string>
-  destination: string
+  trigger: string
+  triggerdata: any
+  reaction: string
+  reactiondata: any
 
   created: string
   updated: string
diff --git a/ui/src/router/index.ts b/ui/src/router/index.ts
index a58e4df8..38ed57b0 100644
--- a/ui/src/router/index.ts
+++ b/ui/src/router/index.ts
@@ -13,7 +13,7 @@ const router = createRouter({
       redirect: '/dashboard'
     },
     {
-      path: '/reactions/:type?/:id?',
+      path: '/reactions/:id?',
       name: 'reactions',
       component: ReactionView
     },
diff --git a/ui/src/views/ReactionView.vue b/ui/src/views/ReactionView.vue
index 4bee3eb1..f8e7ddf4 100644
--- a/ui/src/views/ReactionView.vue
+++ b/ui/src/views/ReactionView.vue
@@ -1,5 +1,6 @@
 <script setup lang="ts">
 import ThreeColumn from '@/components/layout/ThreeColumn.vue'
+import ReactionDisplay from '@/components/reaction/ReactionDisplay.vue'
 import ReactionList from '@/components/reaction/ReactionList.vue'
 import ReactionPythonDisplay from '@/components/reaction/ReactionPythonDisplay.vue'
 import ReactionWebhookDisplay from '@/components/reaction/ReactionWebhookDisplay.vue'
@@ -13,7 +14,6 @@ const route = useRoute()
 const router = useRouter()
 
 const id = computed(() => route.params.id as string)
-const type = computed(() => route.params.type as string)
 
 onMounted(() => {
   if (!pb.authStore.model) {
@@ -31,8 +31,7 @@ onMounted(() => {
       <div v-if="!id" class="flex h-full w-full items-center justify-center text-lg text-gray-500">
         No reaction selected
       </div>
-      <ReactionPythonDisplay v-else-if="type == 'python'" :key="'python_' + id" :id="id" />
-      <ReactionWebhookDisplay v-else-if="type == 'webhook'" :key="'webhook_' + id" :id="id" />
+      <ReactionDisplay v-else :key="id" :id="id" />
     </template>
   </ThreeColumn>
 </template>

From d39996a23e583150176b8818db28b3704c22096d Mon Sep 17 00:00:00 2001
From: Jonas Plum <git@cugu.eu>
Date: Sat, 13 Jul 2024 15:17:16 +0200
Subject: [PATCH 05/17] fix: remove unused imports

---
 ui/src/components/ticket/task/TicketTasks.vue | 1 -
 ui/src/views/ReactionView.vue                 | 2 --
 2 files changed, 3 deletions(-)

diff --git a/ui/src/components/ticket/task/TicketTasks.vue b/ui/src/components/ticket/task/TicketTasks.vue
index 5f33790a..1c70415c 100644
--- a/ui/src/components/ticket/task/TicketTasks.vue
+++ b/ui/src/components/ticket/task/TicketTasks.vue
@@ -7,7 +7,6 @@ import TaskAddDialog from '@/components/ticket/task/TaskAddDialog.vue'
 import { Button } from '@/components/ui/button'
 import { Card } from '@/components/ui/card'
 import { Checkbox } from '@/components/ui/checkbox'
-import { toast } from '@/components/ui/toast'
 
 import { Trash2, User2 } from 'lucide-vue-next'
 
diff --git a/ui/src/views/ReactionView.vue b/ui/src/views/ReactionView.vue
index f8e7ddf4..fcebb2af 100644
--- a/ui/src/views/ReactionView.vue
+++ b/ui/src/views/ReactionView.vue
@@ -2,8 +2,6 @@
 import ThreeColumn from '@/components/layout/ThreeColumn.vue'
 import ReactionDisplay from '@/components/reaction/ReactionDisplay.vue'
 import ReactionList from '@/components/reaction/ReactionList.vue'
-import ReactionPythonDisplay from '@/components/reaction/ReactionPythonDisplay.vue'
-import ReactionWebhookDisplay from '@/components/reaction/ReactionWebhookDisplay.vue'
 
 import { computed, onMounted } from 'vue'
 import { useRoute, useRouter } from 'vue-router'

From cce1a217f54d290e490fdbd754b5f8501c22fee6 Mon Sep 17 00:00:00 2001
From: Jonas Plum <git@cugu.eu>
Date: Sat, 13 Jul 2024 15:50:13 +0200
Subject: [PATCH 06/17] refactor: rename to reactions

---
 {action => reaction}/handle.go                     | 8 ++++----
 {action => reaction}/http.go                       | 6 +++---
 {action => reaction}/http_test.go                  | 2 +-
 {action => reaction}/python.go                     | 4 ++--
 action/action.go => reaction/reaction.go           | 8 ++++----
 action/action_test.go => reaction/reaction_test.go | 2 +-
 {action => reaction}/request.go                    | 8 ++++----
 {action => reaction}/response.go                   | 6 +++---
 {action => reaction}/response_test.go              | 6 +++---
 routes.go                                          | 4 ++--
 10 files changed, 27 insertions(+), 27 deletions(-)
 rename {action => reaction}/handle.go (91%)
 rename {action => reaction}/http.go (92%)
 rename {action => reaction}/http_test.go (99%)
 rename {action => reaction}/python.go (94%)
 rename action/action.go => reaction/reaction.go (68%)
 rename action/action_test.go => reaction/reaction_test.go (98%)
 rename {action => reaction}/request.go (83%)
 rename {action => reaction}/response.go (81%)
 rename {action => reaction}/response_test.go (89%)

diff --git a/action/handle.go b/reaction/handle.go
similarity index 91%
rename from action/handle.go
rename to reaction/handle.go
index 554407cd..c5159637 100644
--- a/action/handle.go
+++ b/reaction/handle.go
@@ -1,4 +1,4 @@
-package action
+package reaction
 
 import (
 	"net/http"
@@ -7,7 +7,7 @@ import (
 	"github.com/pocketbase/pocketbase/core"
 )
 
-const prefix = "/action/"
+const prefix = "/reaction/"
 
 func Handle(app core.App) http.HandlerFunc {
 	return func(w http.ResponseWriter, r *http.Request) {
@@ -19,7 +19,7 @@ func Handle(app core.App) http.HandlerFunc {
 
 		actionName := strings.TrimPrefix(r.URL.Path, prefix)
 
-		action, found, err := findAction(app, actionName)
+		action, found, err := findReaction(app, actionName)
 		if err != nil {
 			errResponse(app.Logger(), w, http.StatusInternalServerError, err.Error())
 
@@ -47,7 +47,7 @@ func Handle(app core.App) http.HandlerFunc {
 			return
 		}
 
-		output, err := runAction(
+		output, err := runReaction(
 			action.GetString("type"),
 			action.GetString("name"),
 			action.GetString("bootstrap"),
diff --git a/action/http.go b/reaction/http.go
similarity index 92%
rename from action/http.go
rename to reaction/http.go
index eecfbe70..22efa7ea 100644
--- a/action/http.go
+++ b/reaction/http.go
@@ -1,4 +1,4 @@
-package action
+package reaction
 
 import (
 	"encoding/json"
@@ -8,7 +8,7 @@ import (
 )
 
 func requestToPayload(r *http.Request) (string, error) {
-	payload, err := json.Marshal(catalystActionRequest(r))
+	payload, err := json.Marshal(catalystReactionRequest(r))
 	if err != nil {
 		return "", err
 	}
@@ -17,7 +17,7 @@ func requestToPayload(r *http.Request) (string, error) {
 }
 
 func outputToResponse(logger *slog.Logger, w http.ResponseWriter, output []byte) {
-	var catalystResponse CatalystActionResponse
+	var catalystResponse CatalystReactionResponse
 	if err := json.Unmarshal(output, &catalystResponse); err == nil {
 		catalystResponse.toResponse(logger, w)
 
diff --git a/action/http_test.go b/reaction/http_test.go
similarity index 99%
rename from action/http_test.go
rename to reaction/http_test.go
index d6017d00..dcc7ee43 100644
--- a/action/http_test.go
+++ b/reaction/http_test.go
@@ -1,4 +1,4 @@
-package action
+package reaction
 
 import (
 	"encoding/json"
diff --git a/action/python.go b/reaction/python.go
similarity index 94%
rename from action/python.go
rename to reaction/python.go
index cdf2e75f..e02ba188 100644
--- a/action/python.go
+++ b/reaction/python.go
@@ -1,4 +1,4 @@
-package action
+package reaction
 
 import (
 	"errors"
@@ -8,7 +8,7 @@ import (
 	"strings"
 )
 
-func runPythonAction(name, bootstrap, script, payload string) ([]byte, error) {
+func runPythonReaction(name, bootstrap, script, payload string) ([]byte, error) {
 	tempDir, err := os.MkdirTemp("", "catalyst_action_"+name)
 	if err != nil {
 		return nil, err
diff --git a/action/action.go b/reaction/reaction.go
similarity index 68%
rename from action/action.go
rename to reaction/reaction.go
index d79785c8..c33264f1 100644
--- a/action/action.go
+++ b/reaction/reaction.go
@@ -1,4 +1,4 @@
-package action
+package reaction
 
 import (
 	"errors"
@@ -10,7 +10,7 @@ import (
 	"github.com/SecurityBrewery/catalyst/migrations"
 )
 
-func findAction(app core.App, action string) (*models.Record, bool, error) {
+func findReaction(app core.App, action string) (*models.Record, bool, error) {
 	records, err := app.Dao().FindRecordsByExpr(migrations.ReactionCollectionName, dbx.HashExp{"name": action})
 	if err != nil {
 		return nil, false, err
@@ -23,10 +23,10 @@ func findAction(app core.App, action string) (*models.Record, bool, error) {
 	return records[0], true, nil
 }
 
-func runAction(actionType, name, bootstrap, script, payload string) ([]byte, error) {
+func runReaction(actionType, name, bootstrap, script, payload string) ([]byte, error) {
 	switch actionType {
 	case "python":
-		return runPythonAction(name, bootstrap, script, payload)
+		return runPythonReaction(name, bootstrap, script, payload)
 	default:
 		return nil, errors.New("unsupported action type")
 	}
diff --git a/action/action_test.go b/reaction/reaction_test.go
similarity index 98%
rename from action/action_test.go
rename to reaction/reaction_test.go
index f77aef9e..61e0ab35 100644
--- a/action/action_test.go
+++ b/reaction/reaction_test.go
@@ -1,4 +1,4 @@
-package action
+package reaction
 
 import (
 	"io"
diff --git a/action/request.go b/reaction/request.go
similarity index 83%
rename from action/request.go
rename to reaction/request.go
index 6d642b87..dac72d85 100644
--- a/action/request.go
+++ b/reaction/request.go
@@ -1,4 +1,4 @@
-package action
+package reaction
 
 import (
 	"encoding/base64"
@@ -8,7 +8,7 @@ import (
 	"unicode/utf8"
 )
 
-type CatalystActionRequest struct {
+type CatalystReactionRequest struct {
 	Method          string      `json:"method"`
 	Path            string      `json:"path"`
 	Headers         http.Header `json:"headers"`
@@ -17,10 +17,10 @@ type CatalystActionRequest struct {
 	IsBase64Encoded bool        `json:"isBase64Encoded"`
 }
 
-func catalystActionRequest(r *http.Request) *CatalystActionRequest {
+func catalystReactionRequest(r *http.Request) *CatalystReactionRequest {
 	body, isBase64Encoded := encodeBody(r)
 
-	return &CatalystActionRequest{
+	return &CatalystReactionRequest{
 		Method:          r.Method,
 		Path:            r.URL.EscapedPath(),
 		Headers:         r.Header,
diff --git a/action/response.go b/reaction/response.go
similarity index 81%
rename from action/response.go
rename to reaction/response.go
index a3121542..bb01b008 100644
--- a/action/response.go
+++ b/reaction/response.go
@@ -1,4 +1,4 @@
-package action
+package reaction
 
 import (
 	"encoding/base64"
@@ -6,14 +6,14 @@ import (
 	"net/http"
 )
 
-type CatalystActionResponse struct {
+type CatalystReactionResponse struct {
 	StatusCode      int         `json:"statusCode"`
 	Headers         http.Header `json:"headers"`
 	Body            string      `json:"body"`
 	IsBase64Encoded bool        `json:"isBase64Encoded"`
 }
 
-func (cr *CatalystActionResponse) toResponse(logger *slog.Logger, w http.ResponseWriter) {
+func (cr *CatalystReactionResponse) toResponse(logger *slog.Logger, w http.ResponseWriter) {
 	for key, values := range cr.Headers {
 		for _, value := range values {
 			w.Header().Add(key, value)
diff --git a/action/response_test.go b/reaction/response_test.go
similarity index 89%
rename from action/response_test.go
rename to reaction/response_test.go
index 367d7399..1e3983d0 100644
--- a/action/response_test.go
+++ b/reaction/response_test.go
@@ -1,4 +1,4 @@
-package action
+package reaction
 
 import (
 	"io"
@@ -8,7 +8,7 @@ import (
 	"testing"
 )
 
-func TestCatalystActionResponse_toResponse(t *testing.T) {
+func TestCatalystReactionResponse_toResponse(t *testing.T) {
 	logger := slog.New(slog.NewTextHandler(io.Discard, &slog.HandlerOptions{}))
 
 	type fields struct {
@@ -37,7 +37,7 @@ func TestCatalystActionResponse_toResponse(t *testing.T) {
 		t.Run(tt.name, func(t *testing.T) {
 			w := httptest.NewRecorder()
 
-			cr := &CatalystActionResponse{
+			cr := &CatalystReactionResponse{
 				StatusCode:      tt.fields.StatusCode,
 				Headers:         tt.fields.Headers,
 				Body:            tt.fields.Body,
diff --git a/routes.go b/routes.go
index 6092f2ea..cfed64c2 100644
--- a/routes.go
+++ b/routes.go
@@ -13,7 +13,7 @@ import (
 	"github.com/pocketbase/pocketbase/apis"
 	"github.com/pocketbase/pocketbase/core"
 
-	"github.com/SecurityBrewery/catalyst/action"
+	"github.com/SecurityBrewery/catalyst/reaction"
 )
 
 //go:embed ui/dist/*
@@ -29,7 +29,7 @@ func addRoutes() func(*core.ServeEvent) error {
 			return c.Redirect(http.StatusFound, "/ui/")
 		})
 		e.Router.GET("/ui/*", staticFiles())
-		e.Router.Any("/action/*", echo.WrapHandler(action.Handle(e.App)))
+		e.Router.Any("/reaction/*", echo.WrapHandler(reaction.Handle(e.App)))
 		e.Router.GET("/api/config", func(c echo.Context) error {
 			flags, err := flags(e.App)
 			if err != nil {

From a6b0ca527c7c465e730afb0d78bbdefcb5e7d88d Mon Sep 17 00:00:00 2001
From: Jonas Plum <git@cugu.eu>
Date: Sun, 14 Jul 2024 00:38:36 +0200
Subject: [PATCH 07/17] test: add reaction tests

---
 .github/workflows/ci.yml          |   7 +
 app/app.go                        |  34 ++++
 app/bootstrap.go                  |  27 ++++
 app/fakedata.go                   |  29 ++++
 cmd.go => app/flags.go            |  29 ++--
 bootstrapcmd.go => app/migrate.go |  24 +--
 routes.go => app/routes.go        |  18 +--
 webhooks.go => app/webhooks.go    |   7 +-
 fakedata/records.go               |   4 +-
 flags.go                          |  22 ---
 main.go                           |  26 +---
 testing/reaction_test.go          | 250 ++++++++++++++++++++++++++++++
 testing/testdata_test.go          |  79 ++++++++++
 testing/testing_test.go           | 156 +++++++++++++++++++
 ui/ui.go                          |  15 ++
 15 files changed, 622 insertions(+), 105 deletions(-)
 create mode 100644 app/app.go
 create mode 100644 app/bootstrap.go
 create mode 100644 app/fakedata.go
 rename cmd.go => app/flags.go (66%)
 rename bootstrapcmd.go => app/migrate.go (57%)
 rename routes.go => app/routes.go (81%)
 rename webhooks.go => app/webhooks.go (94%)
 delete mode 100644 flags.go
 create mode 100644 testing/reaction_test.go
 create mode 100644 testing/testdata_test.go
 create mode 100644 testing/testing_test.go
 create mode 100644 ui/ui.go

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index a718585b..07cfe06c 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -31,3 +31,10 @@ jobs:
       - run: make build-ui
 
       - run: make test
+
+      - run: make test-coverage
+
+      - uses: codecov/codecov-action@v4
+        with:
+          files: ./coverage.out
+          token: ${{ secrets.CODECOV_TOKEN }}
diff --git a/app/app.go b/app/app.go
new file mode 100644
index 00000000..125b6dfb
--- /dev/null
+++ b/app/app.go
@@ -0,0 +1,34 @@
+package app
+
+import (
+	"os"
+	"strings"
+
+	"github.com/pocketbase/pocketbase"
+
+	"github.com/SecurityBrewery/catalyst/migrations"
+)
+
+func App(dir string) *pocketbase.PocketBase {
+	migrations.Register()
+
+	app := pocketbase.NewWithConfig(pocketbase.Config{
+		DefaultDev:     dev(),
+		DefaultDataDir: dir,
+	})
+
+	attachWebhooks(app)
+
+	app.OnBeforeServe().Add(addRoutes())
+
+	// Register additional commands
+	app.RootCmd.AddCommand(bootstrapCmd(app))
+	app.RootCmd.AddCommand(fakeDataCmd(app))
+	app.RootCmd.AddCommand(setFeatureFlagsCmd(app))
+
+	return app
+}
+
+func dev() bool {
+	return strings.HasPrefix(os.Args[0], os.TempDir())
+}
diff --git a/app/bootstrap.go b/app/bootstrap.go
new file mode 100644
index 00000000..92a85f67
--- /dev/null
+++ b/app/bootstrap.go
@@ -0,0 +1,27 @@
+package app
+
+import (
+	"log"
+
+	"github.com/pocketbase/pocketbase/core"
+	"github.com/spf13/cobra"
+)
+
+func Bootstrap(app core.App) error {
+	if err := app.Bootstrap(); err != nil {
+		return err
+	}
+
+	return migrateDBs(app)
+}
+
+func bootstrapCmd(app core.App) *cobra.Command {
+	return &cobra.Command{
+		Use: "bootstrap",
+		Run: func(_ *cobra.Command, _ []string) {
+			if err := Bootstrap(app); err != nil {
+				log.Fatal(err)
+			}
+		},
+	}
+}
diff --git a/app/fakedata.go b/app/fakedata.go
new file mode 100644
index 00000000..fb775a69
--- /dev/null
+++ b/app/fakedata.go
@@ -0,0 +1,29 @@
+package app
+
+import (
+	"log"
+
+	"github.com/pocketbase/pocketbase/core"
+	"github.com/spf13/cobra"
+
+	"github.com/SecurityBrewery/catalyst/fakedata"
+)
+
+func fakeDataCmd(app core.App) *cobra.Command {
+	var userCount, ticketCount int
+
+	cmd := &cobra.Command{
+		Use: "fake-data",
+		Run: func(_ *cobra.Command, _ []string) {
+			if err := fakedata.Generate(app, userCount, ticketCount); err != nil {
+				log.Fatal(err)
+			}
+		},
+	}
+
+	cmd.PersistentFlags().IntVar(&userCount, "users", 10, "Number of users to generate")
+
+	cmd.PersistentFlags().IntVar(&ticketCount, "tickets", 100, "Number of tickets to generate")
+
+	return cmd
+}
diff --git a/cmd.go b/app/flags.go
similarity index 66%
rename from cmd.go
rename to app/flags.go
index 1dea1753..82d11cb0 100644
--- a/cmd.go
+++ b/app/flags.go
@@ -1,37 +1,32 @@
-package main
+package app
 
 import (
 	"log"
 	"slices"
 
-	"github.com/pocketbase/pocketbase"
+	"github.com/pocketbase/pocketbase/core"
 	"github.com/pocketbase/pocketbase/models"
 	"github.com/spf13/cobra"
 
-	"github.com/SecurityBrewery/catalyst/fakedata"
 	"github.com/SecurityBrewery/catalyst/migrations"
 )
 
-func fakeDataCmd(app *pocketbase.PocketBase) *cobra.Command {
-	var userCount, ticketCount int
-
-	cmd := &cobra.Command{
-		Use: "fake-data",
-		Run: func(_ *cobra.Command, _ []string) {
-			if err := fakedata.Generate(app, userCount, ticketCount); err != nil {
-				log.Fatal(err)
-			}
-		},
+func flags(app core.App) ([]string, error) {
+	records, err := app.Dao().FindRecordsByExpr(migrations.FeatureCollectionName)
+	if err != nil {
+		return nil, err
 	}
 
-	cmd.PersistentFlags().IntVar(&userCount, "users", 10, "Number of users to generate")
+	var flags []string
 
-	cmd.PersistentFlags().IntVar(&ticketCount, "tickets", 100, "Number of tickets to generate")
+	for _, r := range records {
+		flags = append(flags, r.GetString("name"))
+	}
 
-	return cmd
+	return flags, nil
 }
 
-func setFeatureFlagsCmd(app *pocketbase.PocketBase) *cobra.Command {
+func setFeatureFlagsCmd(app core.App) *cobra.Command {
 	return &cobra.Command{
 		Use: "set-feature-flags",
 		Run: func(_ *cobra.Command, args []string) {
diff --git a/bootstrapcmd.go b/app/migrate.go
similarity index 57%
rename from bootstrapcmd.go
rename to app/migrate.go
index dd1b237c..a4d4772a 100644
--- a/bootstrapcmd.go
+++ b/app/migrate.go
@@ -1,37 +1,19 @@
-package main
+package app
 
 import (
-	"log"
-
 	"github.com/pocketbase/dbx"
-	"github.com/pocketbase/pocketbase"
+	"github.com/pocketbase/pocketbase/core"
 	"github.com/pocketbase/pocketbase/migrations"
 	"github.com/pocketbase/pocketbase/migrations/logs"
 	"github.com/pocketbase/pocketbase/tools/migrate"
-	"github.com/spf13/cobra"
 )
 
-func bootstrapCmd(app *pocketbase.PocketBase) *cobra.Command {
-	return &cobra.Command{
-		Use: "bootstrap",
-		Run: func(_ *cobra.Command, _ []string) {
-			if err := app.Bootstrap(); err != nil {
-				log.Fatal(err)
-			}
-
-			if err := migrateDBs(app); err != nil {
-				log.Fatal(err)
-			}
-		},
-	}
-}
-
 type migration struct {
 	db         *dbx.DB
 	migrations migrate.MigrationsList
 }
 
-func migrateDBs(app *pocketbase.PocketBase) error {
+func migrateDBs(app core.App) error {
 	for _, m := range []migration{
 		{db: app.DB(), migrations: migrations.AppMigrations},
 		{db: app.LogsDB(), migrations: logs.LogsMigrations},
diff --git a/routes.go b/app/routes.go
similarity index 81%
rename from routes.go
rename to app/routes.go
index cfed64c2..adb46696 100644
--- a/routes.go
+++ b/app/routes.go
@@ -1,28 +1,18 @@
-package main
+package app
 
 import (
-	"embed"
-	"io/fs"
 	"net/http"
 	"net/http/httputil"
 	"net/url"
-	"os"
-	"strings"
 
 	"github.com/labstack/echo/v5"
 	"github.com/pocketbase/pocketbase/apis"
 	"github.com/pocketbase/pocketbase/core"
 
 	"github.com/SecurityBrewery/catalyst/reaction"
+	"github.com/SecurityBrewery/catalyst/ui"
 )
 
-//go:embed ui/dist/*
-var ui embed.FS
-
-func dev() bool {
-	return strings.HasPrefix(os.Args[0], os.TempDir())
-}
-
 func addRoutes() func(*core.ServeEvent) error {
 	return func(e *core.ServeEvent) error {
 		e.Router.GET("/", func(c echo.Context) error {
@@ -58,8 +48,6 @@ func staticFiles() func(echo.Context) error {
 			return nil
 		}
 
-		fsys, _ := fs.Sub(ui, "ui/dist")
-
-		return apis.StaticDirectoryHandler(fsys, true)(c)
+		return apis.StaticDirectoryHandler(ui.UI(), true)(c)
 	}
 }
diff --git a/webhooks.go b/app/webhooks.go
similarity index 94%
rename from webhooks.go
rename to app/webhooks.go
index b9bb5b30..50d3ae55 100644
--- a/webhooks.go
+++ b/app/webhooks.go
@@ -1,4 +1,4 @@
-package main
+package app
 
 import (
 	"bytes"
@@ -10,7 +10,6 @@ import (
 
 	"github.com/labstack/echo/v5"
 	"github.com/pocketbase/dbx"
-	"github.com/pocketbase/pocketbase"
 	"github.com/pocketbase/pocketbase/apis"
 	"github.com/pocketbase/pocketbase/core"
 	"github.com/pocketbase/pocketbase/daos"
@@ -28,7 +27,7 @@ type Webhook struct {
 	Destination string `db:"destination" json:"destination"`
 }
 
-func attachWebhooks(app *pocketbase.PocketBase) {
+func attachWebhooks(app core.App) {
 	migrations.Register(func(db dbx.Builder) error {
 		return daos.New(db).SaveCollection(&models.Collection{
 			Name:   webhooksCollection,
@@ -82,7 +81,7 @@ type Payload struct {
 	Admin      *models.Admin  `json:"admin,omitempty"`
 }
 
-func event(app *pocketbase.PocketBase, action, collection string, record *models.Record, ctx echo.Context) error {
+func event(app core.App, action, collection string, record *models.Record, ctx echo.Context) error {
 	auth, _ := ctx.Get(apis.ContextAuthRecordKey).(*models.Record)
 	admin, _ := ctx.Get(apis.ContextAdminKey).(*models.Admin)
 
diff --git a/fakedata/records.go b/fakedata/records.go
index 49e3b050..f6936f0c 100644
--- a/fakedata/records.go
+++ b/fakedata/records.go
@@ -6,7 +6,7 @@ import (
 	"time"
 
 	"github.com/brianvoe/gofakeit/v7"
-	"github.com/pocketbase/pocketbase"
+	"github.com/pocketbase/pocketbase/core"
 	"github.com/pocketbase/pocketbase/daos"
 	"github.com/pocketbase/pocketbase/models"
 	"github.com/pocketbase/pocketbase/tools/security"
@@ -19,7 +19,7 @@ const (
 	minimumTicketCount = 1
 )
 
-func Generate(app *pocketbase.PocketBase, userCount, ticketCount int) error {
+func Generate(app core.App, userCount, ticketCount int) error {
 	if userCount < minimumUserCount {
 		userCount = minimumUserCount
 	}
diff --git a/flags.go b/flags.go
deleted file mode 100644
index d1aea9db..00000000
--- a/flags.go
+++ /dev/null
@@ -1,22 +0,0 @@
-package main
-
-import (
-	"github.com/pocketbase/pocketbase/core"
-
-	"github.com/SecurityBrewery/catalyst/migrations"
-)
-
-func flags(app core.App) ([]string, error) {
-	records, err := app.Dao().FindRecordsByExpr(migrations.FeatureCollectionName)
-	if err != nil {
-		return nil, err
-	}
-
-	var flags []string
-
-	for _, r := range records {
-		flags = append(flags, r.GetString("name"))
-	}
-
-	return flags, nil
-}
diff --git a/main.go b/main.go
index 4dc326b5..9b6c95e6 100644
--- a/main.go
+++ b/main.go
@@ -3,33 +3,11 @@ package main
 import (
 	"log"
 
-	"github.com/pocketbase/pocketbase"
-
-	"github.com/SecurityBrewery/catalyst/migrations"
+	"github.com/SecurityBrewery/catalyst/app"
 )
 
 func main() {
-	if err := run(); err != nil {
+	if err := app.App("./catalyst_data").Start(); err != nil {
 		log.Fatal(err)
 	}
 }
-
-func run() error {
-	migrations.Register()
-
-	app := pocketbase.NewWithConfig(pocketbase.Config{
-		DefaultDev:     dev(),
-		DefaultDataDir: "catalyst_data",
-	})
-
-	attachWebhooks(app)
-
-	// Register additional commands
-	app.RootCmd.AddCommand(bootstrapCmd(app))
-	app.RootCmd.AddCommand(fakeDataCmd(app))
-	app.RootCmd.AddCommand(setFeatureFlagsCmd(app))
-
-	app.OnBeforeServe().Add(addRoutes())
-
-	return app.Start()
-}
diff --git a/testing/reaction_test.go b/testing/reaction_test.go
new file mode 100644
index 00000000..84aee23d
--- /dev/null
+++ b/testing/reaction_test.go
@@ -0,0 +1,250 @@
+package testing
+
+import (
+	"net/http"
+	"testing"
+)
+
+func TestReactions(t *testing.T) {
+	baseApp, adminToken, analystToken, baseAppCleanup := baseTestApp(t)
+	defer baseAppCleanup()
+
+	testSets := []authMatrixText{
+		{
+			baseTest: BaseTest{
+				Name:           "ListReactions",
+				Method:         http.MethodGet,
+				URL:            "/api/collections/reactions/records",
+				TestAppFactory: testAppFactory(baseApp),
+			},
+			authBasedExpectations: []AuthBasedExpectation{
+				{
+					Name:           "Unauthorized",
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"totalItems":0`,
+						`"items":[]`,
+					},
+					ExpectedEvents: map[string]int{"OnRecordsListRequest": 1},
+				},
+				{
+					Name:           "Analyst",
+					RequestHeaders: map[string]string{"Authorization": analystToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"totalItems":1`,
+						`"id":"r_reaction"`,
+					},
+					NotExpectedContent: []string{
+						`"items":[]`,
+					},
+					ExpectedEvents: map[string]int{"OnRecordsListRequest": 1},
+				},
+				{
+					Name:           "Admin",
+					RequestHeaders: map[string]string{"Authorization": adminToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"totalItems":1`,
+						`"id":"r_reaction"`,
+					},
+					NotExpectedContent: []string{
+						`"items":[]`,
+					},
+					ExpectedEvents: map[string]int{"OnRecordsListRequest": 1},
+				},
+			},
+		},
+		{
+			baseTest: BaseTest{
+				Name:           "CreateReaction",
+				Method:         http.MethodPost,
+				RequestHeaders: map[string]string{"Content-Type": "application/json"},
+				URL:            "/api/collections/reactions/records",
+				Body: s(map[string]any{
+					"name":         "test",
+					"trigger":      "webhook",
+					"triggerdata":  map[string]any{"path": "test"},
+					"reaction":     "python",
+					"reactiondata": map[string]any{"script": "print('Hello, World!')"},
+				}),
+				TestAppFactory: testAppFactory(baseApp),
+			},
+			authBasedExpectations: []AuthBasedExpectation{
+				{
+					Name:           "Unauthorized",
+					ExpectedStatus: http.StatusBadRequest,
+					ExpectedContent: []string{
+						`"message":"Failed to create record."`,
+					},
+				},
+				{
+					Name:           "Analyst",
+					RequestHeaders: map[string]string{"Authorization": analystToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"name":"test"`,
+					},
+					NotExpectedContent: []string{
+						`"items":[]`,
+					},
+					ExpectedEvents: map[string]int{
+						"OnModelAfterCreate":          1,
+						"OnModelBeforeCreate":         1,
+						"OnRecordAfterCreateRequest":  1,
+						"OnRecordBeforeCreateRequest": 1,
+					},
+				},
+				{
+					Name:           "Admin",
+					RequestHeaders: map[string]string{"Authorization": adminToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"name":"test"`,
+					},
+					NotExpectedContent: []string{
+						`"items":[]`,
+					},
+					ExpectedEvents: map[string]int{
+						"OnModelAfterCreate":          1,
+						"OnModelBeforeCreate":         1,
+						"OnRecordAfterCreateRequest":  1,
+						"OnRecordBeforeCreateRequest": 1,
+					},
+				},
+			},
+		},
+		{
+			baseTest: BaseTest{
+				Name:           "GetReaction",
+				Method:         http.MethodGet,
+				RequestHeaders: map[string]string{"Content-Type": "application/json"},
+				URL:            "/api/collections/reactions/records/r_reaction",
+				TestAppFactory: testAppFactory(baseApp),
+			},
+			authBasedExpectations: []AuthBasedExpectation{
+				{
+					Name:           "Unauthorized",
+					ExpectedStatus: http.StatusNotFound,
+					ExpectedContent: []string{
+						`"message":"The requested resource wasn't found."`,
+					},
+				},
+				{
+					Name:           "Analyst",
+					RequestHeaders: map[string]string{"Authorization": analystToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"id":"r_reaction"`,
+					},
+					ExpectedEvents: map[string]int{"OnRecordViewRequest": 1},
+				},
+				{
+					Name:           "Admin",
+					RequestHeaders: map[string]string{"Authorization": adminToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"id":"r_reaction"`,
+					},
+					ExpectedEvents: map[string]int{"OnRecordViewRequest": 1},
+				},
+			},
+		},
+		{
+			baseTest: BaseTest{
+				Name:           "UpdateReaction",
+				Method:         http.MethodPatch,
+				RequestHeaders: map[string]string{"Content-Type": "application/json"},
+				URL:            "/api/collections/reactions/records/r_reaction",
+				Body:           s(map[string]any{"name": "update"}),
+				TestAppFactory: testAppFactory(baseApp),
+			},
+			authBasedExpectations: []AuthBasedExpectation{
+				{
+					Name:           "Unauthorized",
+					ExpectedStatus: http.StatusNotFound,
+					ExpectedContent: []string{
+						`"message":"The requested resource wasn't found."`,
+					},
+				},
+				{
+					Name:           "Analyst",
+					RequestHeaders: map[string]string{"Authorization": analystToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"id":"r_reaction"`,
+						`"name":"update"`,
+					},
+					ExpectedEvents: map[string]int{
+						"OnModelAfterUpdate":          1,
+						"OnModelBeforeUpdate":         1,
+						"OnRecordAfterUpdateRequest":  1,
+						"OnRecordBeforeUpdateRequest": 1,
+					},
+				},
+				{
+					Name:           "Admin",
+					RequestHeaders: map[string]string{"Authorization": adminToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"id":"r_reaction"`,
+						`"name":"update"`,
+					},
+					ExpectedEvents: map[string]int{
+						"OnModelAfterUpdate":          1,
+						"OnModelBeforeUpdate":         1,
+						"OnRecordAfterUpdateRequest":  1,
+						"OnRecordBeforeUpdateRequest": 1,
+					},
+				},
+			},
+		},
+		{
+			baseTest: BaseTest{
+				Name:           "DeleteReaction",
+				Method:         http.MethodDelete,
+				URL:            "/api/collections/reactions/records/r_reaction",
+				TestAppFactory: testAppFactory(baseApp),
+			},
+			authBasedExpectations: []AuthBasedExpectation{
+				{
+					Name:           "Unauthorized",
+					ExpectedStatus: http.StatusNotFound,
+					ExpectedContent: []string{
+						`"message":"The requested resource wasn't found."`,
+					},
+				},
+				{
+					Name:           "Analyst",
+					RequestHeaders: map[string]string{"Authorization": analystToken},
+					ExpectedStatus: http.StatusNoContent,
+					ExpectedEvents: map[string]int{
+						"OnModelAfterDelete":          1,
+						"OnModelBeforeDelete":         1,
+						"OnRecordAfterDeleteRequest":  1,
+						"OnRecordBeforeDeleteRequest": 1,
+					},
+				},
+				{
+					Name:           "Admin",
+					RequestHeaders: map[string]string{"Authorization": adminToken},
+					ExpectedStatus: http.StatusNoContent,
+					ExpectedEvents: map[string]int{
+						"OnModelAfterDelete":          1,
+						"OnModelBeforeDelete":         1,
+						"OnRecordAfterDeleteRequest":  1,
+						"OnRecordBeforeDeleteRequest": 1,
+					},
+				},
+			},
+		},
+	}
+	for _, testSet := range testSets {
+		t.Run(testSet.baseTest.Name, func(t *testing.T) {
+			for _, authBasedExpectation := range testSet.authBasedExpectations {
+				scenario := mergeScenario(testSet.baseTest, authBasedExpectation)
+				scenario.Test(t)
+			}
+		})
+	}
+}
diff --git a/testing/testdata_test.go b/testing/testdata_test.go
new file mode 100644
index 00000000..4b719f87
--- /dev/null
+++ b/testing/testdata_test.go
@@ -0,0 +1,79 @@
+package testing
+
+import (
+	"testing"
+
+	"github.com/pocketbase/pocketbase/core"
+	"github.com/pocketbase/pocketbase/models"
+
+	"github.com/SecurityBrewery/catalyst/migrations"
+)
+
+const (
+	adminEmail   = "admin@catalyst-soar.com"
+	analystEmail = "analyst@catalyst-soar.com"
+)
+
+func defaultTestData(t *testing.T, app core.App) {
+	t.Helper()
+
+	adminTestData(t, app)
+	userTestData(t, app)
+	reactionTestData(t, app)
+}
+
+func adminTestData(t *testing.T, app core.App) {
+	t.Helper()
+
+	admin := &models.Admin{Email: adminEmail}
+
+	if err := admin.SetPassword("password"); err != nil {
+		t.Fatal(err)
+	}
+
+	if err := app.Dao().SaveAdmin(admin); err != nil {
+		t.Fatal(err)
+	}
+}
+
+func userTestData(t *testing.T, app core.App) {
+	t.Helper()
+
+	collection, err := app.Dao().FindCollectionByNameOrId(migrations.UserCollectionName)
+	if err != nil {
+		t.Fatal(err)
+	}
+
+	record := models.NewRecord(collection)
+	record.SetId("u_bob_analyst")
+	_ = record.SetUsername("u_bob_analyst")
+	_ = record.SetPassword("password")
+	record.Set("name", "Bob Analyst")
+	record.Set("email", analystEmail)
+	_ = record.SetVerified(true)
+
+	if err := app.Dao().SaveRecord(record); err != nil {
+		t.Fatal(err)
+	}
+}
+
+func reactionTestData(t *testing.T, app core.App) {
+	t.Helper()
+
+	collection, err := app.Dao().FindCollectionByNameOrId(migrations.ReactionCollectionName)
+	if err != nil {
+		t.Fatal(err)
+	}
+
+	record := models.NewRecord(collection)
+	record.SetId("r_reaction")
+	record.Set("name", "Reaction")
+	record.Set("trigger", "webhook")
+	record.Set("triggerdata", `{"path":"test"}`)
+	record.Set("reaction", "python")
+	record.Set("reactiondata", `{"script":"print('Hello, World!')"}`)
+
+	if err := app.Dao().SaveRecord(record); err != nil {
+		t.Fatal(err)
+	}
+}
diff --git a/testing/testing_test.go b/testing/testing_test.go
new file mode 100644
index 00000000..fd2b4525
--- /dev/null
+++ b/testing/testing_test.go
@@ -0,0 +1,156 @@
+package testing
+
+import (
+	"bytes"
+	"encoding/json"
+	"os"
+	"testing"
+
+	"github.com/pocketbase/pocketbase/core"
+	"github.com/pocketbase/pocketbase/tests"
+	"github.com/pocketbase/pocketbase/tokens"
+
+	"github.com/SecurityBrewery/catalyst/app"
+	"github.com/SecurityBrewery/catalyst/migrations"
+)
+
+func baseTestApp(t *testing.T) (core.App, string, string, func()) {
+	t.Helper()
+
+	temp, err := os.MkdirTemp("", "catalyst_test_data")
+	if err != nil {
+		t.Fatal(err)
+	}
+
+	baseApp := app.App(temp)
+
+	if err := app.Bootstrap(baseApp); err != nil {
+		t.Fatal(err)
+	}
+
+	defaultTestData(t, baseApp)
+
+	adminToken, err := generateAdminToken(t, baseApp, adminEmail)
+	if err != nil {
+		t.Fatal(err)
+	}
+
+	analystToken, err := generateRecordToken(t, baseApp, analystEmail)
+	if err != nil {
+		t.Fatal(err)
+	}
+
+	return baseApp, adminToken, analystToken, func() { _ = os.RemoveAll(temp) }
+}
+
+func testAppFactory(baseApp core.App) func(t *testing.T) *tests.TestApp {
+	return func(t *testing.T) *tests.TestApp {
+		t.Helper()
+
+		testApp, err := tests.NewTestApp(baseApp.DataDir())
+		if err != nil {
+			t.Fatal(err)
+		}
+
+		return testApp
+	}
+}
+
+func generateAdminToken(t *testing.T, baseApp core.App, email string) (string, error) {
+	t.Helper()
+
+	app, err := tests.NewTestApp(baseApp.DataDir())
+	if err != nil {
+		return "", err
+	}
+	defer app.Cleanup()
+
+	admin, err := app.Dao().FindAdminByEmail(email)
+	if err != nil {
+		return "", err
+	}
+
+	return tokens.NewAdminAuthToken(app, admin)
+}
+
+func generateRecordToken(t *testing.T, baseApp core.App, email string) (string, error) {
+	t.Helper()
+
+	app, err := tests.NewTestApp(baseApp.DataDir())
+	if err != nil {
+		t.Fatal(err)
+	}
+	defer app.Cleanup()
+
+	record, err := app.Dao().FindAuthRecordByEmail(migrations.UserCollectionName, email)
+	if err != nil {
+		return "", err
+	}
+
+	return tokens.NewRecordAuthToken(app, record)
+}
+
+type BaseTest struct {
+	Name           string
+	Method         string
+	RequestHeaders map[string]string
+	URL            string
+	Body           string
+	TestAppFactory func(t *testing.T) *tests.TestApp
+}
+
+type AuthBasedExpectation struct {
+	Name               string
+	RequestHeaders     map[string]string
+	ExpectedStatus     int
+	ExpectedContent    []string
+	NotExpectedContent []string
+	ExpectedEvents     map[string]int
+}
+
+type authMatrixText struct {
+	baseTest              BaseTest
+	authBasedExpectations []AuthBasedExpectation
+}
+
+func mergeScenario(base BaseTest, expectation AuthBasedExpectation) tests.ApiScenario {
+	return tests.ApiScenario{
+		Name:           expectation.Name,
+		Method:         base.Method,
+		Url:            base.URL,
+		Body:           bytes.NewBufferString(base.Body),
+		TestAppFactory: base.TestAppFactory,
+
+		RequestHeaders:     mergeMaps(base.RequestHeaders, expectation.RequestHeaders),
+		ExpectedStatus:     expectation.ExpectedStatus,
+		ExpectedContent:    expectation.ExpectedContent,
+		NotExpectedContent: expectation.NotExpectedContent,
+		ExpectedEvents:     expectation.ExpectedEvents,
+	}
+}
+
+func mergeMaps(a, b map[string]string) map[string]string {
+	if a == nil {
+		return b
+	}
+
+	if b == nil {
+		return a
+	}
+
+	for k, v := range b {
+		a[k] = v
+	}
+
+	return a
+}
+
+func b(data map[string]any) []byte {
+	b, _ := json.Marshal(data) //nolint:errchkjson
+
+	return b
+}
+
+func s(data map[string]any) string {
+	return string(b(data))
+}
diff --git a/ui/ui.go b/ui/ui.go
new file mode 100644
index 00000000..71f464cc
--- /dev/null
+++ b/ui/ui.go
@@ -0,0 +1,15 @@
+package ui
+
+import (
+	"embed"
+	"io/fs"
+)
+
+//go:embed dist/*
+var ui embed.FS
+
+func UI() fs.FS {
+	fsys, _ := fs.Sub(ui, "dist")
+
+	return fsys
+}

From 18c31bdf82ae04604bece4dc53cef0c97f7dd78c Mon Sep 17 00:00:00 2001
From: Jonas Plum <git@cugu.eu>
Date: Sun, 14 Jul 2024 04:25:54 +0200
Subject: [PATCH 08/17] test: add tests

---
 .github/workflows/semantic-pull-request.yml   |   2 +-
 Makefile                                      |   3 +-
 app/app.go                                    |  15 +-
 app/bootstrap.go                              |   6 +-
 app/fakedata.go                               |   4 +-
 app/flags.go                                  |  75 +++---
 app/flags_test.go                             |  41 +++
 app/migrate.go                                |  42 ++-
 app/migrate_test.go                           |  21 ++
 app/routes.go                                 |   4 +-
 app/webhooks.go                               |  11 +-
 fakedata/records.go                           |  32 ++-
 fakedata/records_test.go                      |  29 ++
 fakedata/text_test.go                         |  48 ++++
 migrations/1_collections.go                   |   4 +-
 migrations/5_reactions.go                     |  53 ++--
 reaction/handle.go                            |  51 ++--
 reaction/{http.go => handle_request.go}       |  52 +++-
 reaction/handle_request_test.go               |  79 ++++++
 reaction/{response.go => handle_response.go}  |  12 +
 .../{http_test.go => handle_response_test.go} | 114 +++-----
 reaction/handle_test.go                       |  41 +++
 reaction/reaction.go                          |  65 ++++-
 reaction/{python.go => reaction_python.go}    |  21 +-
 reaction/reaction_webhook.go                  |  26 ++
 reaction/request.go                           |  44 ---
 reaction/response_test.go                     |  51 ----
 testing/collection_reaction_test.go           | 250 ++++++++++++++++++
 testing/reaction_test.go                      | 194 ++------------
 testing/routes_test.go                        |  79 ++++++
 testing/{testdata_test.go => testdata.go}     |  14 +-
 testing/{testing_test.go => testing.go}       |  20 +-
 ui/ui_test.go                                 |  42 +++
 33 files changed, 1028 insertions(+), 517 deletions(-)
 create mode 100644 app/flags_test.go
 create mode 100644 app/migrate_test.go
 create mode 100644 fakedata/records_test.go
 create mode 100644 fakedata/text_test.go
 rename reaction/{http.go => handle_request.go} (59%)
 create mode 100644 reaction/handle_request_test.go
 rename reaction/{response.go => handle_response.go} (72%)
 rename reaction/{http_test.go => handle_response_test.go} (59%)
 create mode 100644 reaction/handle_test.go
 rename reaction/{python.go => reaction_python.go} (59%)
 create mode 100644 reaction/reaction_webhook.go
 delete mode 100644 reaction/request.go
 delete mode 100644 reaction/response_test.go
 create mode 100644 testing/collection_reaction_test.go
 create mode 100644 testing/routes_test.go
 rename testing/{testdata_test.go => testdata.go} (76%)
 rename testing/{testing_test.go => testing.go} (88%)
 create mode 100644 ui/ui_test.go

diff --git a/.github/workflows/semantic-pull-request.yml b/.github/workflows/semantic-pull-request.yml
index 51816c8a..ed9e972e 100644
--- a/.github/workflows/semantic-pull-request.yml
+++ b/.github/workflows/semantic-pull-request.yml
@@ -20,6 +20,6 @@ jobs:
         with:
           scopes: |
             deps
-          subjectPattern: "^(?!deps$).+"
+          subjectPattern: ^(?![A-Z]).+$
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
diff --git a/Makefile b/Makefile
index 690ec0c0..6b1fed38 100644
--- a/Makefile
+++ b/Makefile
@@ -29,7 +29,8 @@ test:
 .PHONY: test-coverage
 test-coverage:
 	@echo "Testing with coverage..."
-	go test -coverprofile=coverage.out ./...
+	go test -coverpkg=./... -coverprofile=coverage.out ./...
+	go tool cover -func=coverage.out
 	go tool cover -html=coverage.out
 
 .PHONY: build-ui
diff --git a/app/app.go b/app/app.go
index 125b6dfb..750e3ce9 100644
--- a/app/app.go
+++ b/app/app.go
@@ -5,21 +5,22 @@ import (
 	"strings"
 
 	"github.com/pocketbase/pocketbase"
+	"github.com/pocketbase/pocketbase/core"
 
 	"github.com/SecurityBrewery/catalyst/migrations"
 )
 
-func App(dir string) *pocketbase.PocketBase {
+func init() {
 	migrations.Register()
+}
 
+func App(dir string) *pocketbase.PocketBase {
 	app := pocketbase.NewWithConfig(pocketbase.Config{
 		DefaultDev:     dev(),
 		DefaultDataDir: dir,
 	})
 
-	attachWebhooks(app)
-
-	app.OnBeforeServe().Add(addRoutes())
+	BindHooks(app)
 
 	// Register additional commands
 	app.RootCmd.AddCommand(bootstrapCmd(app))
@@ -29,6 +30,12 @@ func App(dir string) *pocketbase.PocketBase {
 	return app
 }
 
+func BindHooks(app core.App) {
+	attachWebhooks(app)
+
+	app.OnBeforeServe().Add(addRoutes())
+}
+
 func dev() bool {
 	return strings.HasPrefix(os.Args[0], os.TempDir())
 }
diff --git a/app/bootstrap.go b/app/bootstrap.go
index 92a85f67..684efc5a 100644
--- a/app/bootstrap.go
+++ b/app/bootstrap.go
@@ -1,8 +1,6 @@
 package app
 
 import (
-	"log"
-
 	"github.com/pocketbase/pocketbase/core"
 	"github.com/spf13/cobra"
 )
@@ -12,7 +10,7 @@ func Bootstrap(app core.App) error {
 		return err
 	}
 
-	return migrateDBs(app)
+	return MigrateDBs(app)
 }
 
 func bootstrapCmd(app core.App) *cobra.Command {
@@ -20,7 +18,7 @@ func bootstrapCmd(app core.App) *cobra.Command {
 		Use: "bootstrap",
 		Run: func(_ *cobra.Command, _ []string) {
 			if err := Bootstrap(app); err != nil {
-				log.Fatal(err)
+				app.Logger().Error(err.Error())
 			}
 		},
 	}
diff --git a/app/fakedata.go b/app/fakedata.go
index fb775a69..53cd9b7b 100644
--- a/app/fakedata.go
+++ b/app/fakedata.go
@@ -1,8 +1,6 @@
 package app
 
 import (
-	"log"
-
 	"github.com/pocketbase/pocketbase/core"
 	"github.com/spf13/cobra"
 
@@ -16,7 +14,7 @@ func fakeDataCmd(app core.App) *cobra.Command {
 		Use: "fake-data",
 		Run: func(_ *cobra.Command, _ []string) {
 			if err := fakedata.Generate(app, userCount, ticketCount); err != nil {
-				log.Fatal(err)
+				app.Logger().Error(err.Error())
 			}
 		},
 	}
diff --git a/app/flags.go b/app/flags.go
index 82d11cb0..4267c318 100644
--- a/app/flags.go
+++ b/app/flags.go
@@ -1,7 +1,6 @@
 package app
 
 import (
-	"log"
 	"slices"
 
 	"github.com/pocketbase/pocketbase/core"
@@ -11,7 +10,7 @@ import (
 	"github.com/SecurityBrewery/catalyst/migrations"
 )
 
-func flags(app core.App) ([]string, error) {
+func Flags(app core.App) ([]string, error) {
 	records, err := app.Dao().FindRecordsByExpr(migrations.FeatureCollectionName)
 	if err != nil {
 		return nil, err
@@ -26,47 +25,55 @@ func flags(app core.App) ([]string, error) {
 	return flags, nil
 }
 
-func setFeatureFlagsCmd(app core.App) *cobra.Command {
-	return &cobra.Command{
-		Use: "set-feature-flags",
-		Run: func(_ *cobra.Command, args []string) {
-			featureCollection, err := app.Dao().FindCollectionByNameOrId(migrations.FeatureCollectionName)
-			if err != nil {
-				log.Fatal(err)
-			}
+func SetFlags(app core.App, args []string) error {
+	featureCollection, err := app.Dao().FindCollectionByNameOrId(migrations.FeatureCollectionName)
+	if err != nil {
+		return err
+	}
+
+	featureRecords, err := app.Dao().FindRecordsByExpr(migrations.FeatureCollectionName)
+	if err != nil {
+		return err
+	}
 
-			featureRecords, err := app.Dao().FindRecordsByExpr(migrations.FeatureCollectionName)
-			if err != nil {
-				log.Fatal(err)
+	var existingFlags []string
+
+	for _, featureRecord := range featureRecords {
+		// remove feature flags that are not in the args
+		if !slices.Contains(args, featureRecord.GetString("name")) {
+			if err := app.Dao().DeleteRecord(featureRecord); err != nil {
+				return err
 			}
 
-			var existingFlags []string
+			continue
+		}
 
-			for _, featureRecord := range featureRecords {
-				// remove feature flags that are not in the args
-				if !slices.Contains(args, featureRecord.GetString("name")) {
-					if err := app.Dao().DeleteRecord(featureRecord); err != nil {
-						log.Fatal(err)
-					}
+		existingFlags = append(existingFlags, featureRecord.GetString("name"))
+	}
 
-					continue
-				}
+	for _, arg := range args {
+		if slices.Contains(existingFlags, arg) {
+			continue
+		}
 
-				existingFlags = append(existingFlags, featureRecord.GetString("name"))
-			}
+		// add feature flags that are not in the args
+		record := models.NewRecord(featureCollection)
+		record.Set("name", arg)
 
-			for _, arg := range args {
-				if slices.Contains(existingFlags, arg) {
-					continue
-				}
+		if err := app.Dao().SaveRecord(record); err != nil {
+			return err
+		}
+	}
 
-				// add feature flags that are not in the args
-				record := models.NewRecord(featureCollection)
-				record.Set("name", arg)
+	return nil
+}
 
-				if err := app.Dao().SaveRecord(record); err != nil {
-					log.Fatal(err)
-				}
+func setFeatureFlagsCmd(app core.App) *cobra.Command {
+	return &cobra.Command{
+		Use: "set-feature-flags",
+		Run: func(_ *cobra.Command, args []string) {
+			if err := SetFlags(app, args); err != nil {
+				app.Logger().Error(err.Error())
 			}
 		},
 	}
diff --git a/app/flags_test.go b/app/flags_test.go
new file mode 100644
index 00000000..0256ff50
--- /dev/null
+++ b/app/flags_test.go
@@ -0,0 +1,41 @@
+package app_test
+
+import (
+	"testing"
+
+	"github.com/stretchr/testify/assert"
+	"github.com/stretchr/testify/require"
+
+	"github.com/SecurityBrewery/catalyst/app"
+	catalystTesting "github.com/SecurityBrewery/catalyst/testing"
+)
+
+func Test_flags(t *testing.T) {
+	catalystApp, cleanup := catalystTesting.App(t)
+	defer cleanup()
+
+	got, err := app.Flags(catalystApp)
+	require.NoError(t, err)
+
+	want := []string{}
+	assert.ElementsMatch(t, want, got)
+}
+
+func Test_setFlags(t *testing.T) {
+	catalystApp, cleanup := catalystTesting.App(t)
+	defer cleanup()
+
+	require.NoError(t, app.SetFlags(catalystApp, []string{"test"}))
+
+	got, err := app.Flags(catalystApp)
+	require.NoError(t, err)
+
+	assert.ElementsMatch(t, []string{"test"}, got)
+
+	require.NoError(t, app.SetFlags(catalystApp, []string{"test2"}))
+
+	got, err = app.Flags(catalystApp)
+	require.NoError(t, err)
+
+	assert.ElementsMatch(t, []string{"test2"}, got)
+}
diff --git a/app/migrate.go b/app/migrate.go
index a4d4772a..ddc03f70 100644
--- a/app/migrate.go
+++ b/app/migrate.go
@@ -1,6 +1,8 @@
 package app
 
 import (
+	"strings"
+
 	"github.com/pocketbase/dbx"
 	"github.com/pocketbase/pocketbase/core"
 	"github.com/pocketbase/pocketbase/migrations"
@@ -13,7 +15,7 @@ type migration struct {
 	migrations migrate.MigrationsList
 }
 
-func migrateDBs(app core.App) error {
+func MigrateDBs(app core.App) error {
 	for _, m := range []migration{
 		{db: app.DB(), migrations: migrations.AppMigrations},
 		{db: app.LogsDB(), migrations: logs.LogsMigrations},
@@ -30,3 +32,41 @@ func migrateDBs(app core.App) error {
 
 	return nil
 }
+
+// this fix ignores some errors that come from upstream migrations.
+var ignoreErrors = []string{
+	"1673167670_multi_match_migrate",
+	"1660821103_add_user_ip_column",
+}
+
+func isIgnored(err error) bool {
+	for _, ignore := range ignoreErrors {
+		if strings.Contains(err.Error(), ignore) {
+			return true
+		}
+	}
+
+	return false
+}
+
+func MigrateDBsDown(app core.App) error {
+	for _, m := range []migration{
+		{db: app.DB(), migrations: migrations.AppMigrations},
+		{db: app.LogsDB(), migrations: logs.LogsMigrations},
+	} {
+		runner, err := migrate.NewRunner(m.db, m.migrations)
+		if err != nil {
+			return err
+		}
+
+		if _, err := runner.Down(len(m.migrations.Items())); err != nil {
+			if isIgnored(err) {
+				continue
+			}
+
+			return err
+		}
+	}
+
+	return nil
+}
diff --git a/app/migrate_test.go b/app/migrate_test.go
new file mode 100644
index 00000000..442cb588
--- /dev/null
+++ b/app/migrate_test.go
@@ -0,0 +1,21 @@
+package app_test
+
+import (
+	"testing"
+
+	"github.com/stretchr/testify/require"
+
+	"github.com/SecurityBrewery/catalyst/app"
+	"github.com/SecurityBrewery/catalyst/migrations"
+	catalystTesting "github.com/SecurityBrewery/catalyst/testing"
+)
+
+func Test_MigrateDBsDown(t *testing.T) {
+	catalystApp, cleanup := catalystTesting.App(t)
+	defer cleanup()
+
+	_, err := catalystApp.Dao().FindCollectionByNameOrId(migrations.ReactionCollectionName)
+	require.NoError(t, err)
+
+	require.NoError(t, app.MigrateDBsDown(catalystApp))
+}
diff --git a/app/routes.go b/app/routes.go
index adb46696..4e9a118f 100644
--- a/app/routes.go
+++ b/app/routes.go
@@ -19,9 +19,9 @@ func addRoutes() func(*core.ServeEvent) error {
 			return c.Redirect(http.StatusFound, "/ui/")
 		})
 		e.Router.GET("/ui/*", staticFiles())
-		e.Router.Any("/reaction/*", echo.WrapHandler(reaction.Handle(e.App)))
+		e.Router.Any("/reaction/*", reaction.Handle(e.App))
 		e.Router.GET("/api/config", func(c echo.Context) error {
-			flags, err := flags(e.App)
+			flags, err := Flags(e.App)
 			if err != nil {
 				return err
 			}
diff --git a/app/webhooks.go b/app/webhooks.go
index 50d3ae55..2f137741 100644
--- a/app/webhooks.go
+++ b/app/webhooks.go
@@ -51,16 +51,7 @@ func attachWebhooks(app core.App) {
 				},
 			),
 		})
-	}, func(db dbx.Builder) error {
-		dao := daos.New(db)
-
-		id, err := dao.FindCollectionByNameOrId(webhooksCollection)
-		if err != nil {
-			return err
-		}
-
-		return dao.DeleteCollection(id)
-	}, "1690000000_webhooks.go")
+	}, nil, "1690000000_webhooks.go")
 
 	app.OnRecordAfterCreateRequest().Add(func(e *core.RecordCreateEvent) error {
 		return event(app, "create", e.Collection.Name, e.Record, e.HttpContext)
diff --git a/fakedata/records.go b/fakedata/records.go
index f6936f0c..cab85e17 100644
--- a/fakedata/records.go
+++ b/fakedata/records.go
@@ -28,25 +28,39 @@ func Generate(app core.App, userCount, ticketCount int) error {
 		ticketCount = minimumTicketCount
 	}
 
-	types, err := app.Dao().FindRecordsByExpr(migrations.TypeCollectionName)
+	records, err := Records(app, userCount, ticketCount)
 	if err != nil {
 		return err
 	}
 
+	for _, record := range records {
+		if err := app.Dao().SaveRecord(record); err != nil {
+			return err
+		}
+	}
+
+	return nil
+}
+
+func Records(app core.App, userCount int, ticketCount int) ([]*models.Record, error) {
+	types, err := app.Dao().FindRecordsByExpr(migrations.TypeCollectionName)
+	if err != nil {
+		return nil, err
+	}
+
 	users := userRecords(app.Dao(), userCount)
 	tickets := ticketRecords(app.Dao(), users, types, ticketCount)
 	webhooks := webhookRecords(app.Dao())
 	reactions := reactionRecords(app.Dao())
 
-	for _, records := range [][]*models.Record{users, tickets, webhooks, reactions} {
-		for _, record := range records {
-			if err := app.Dao().SaveRecord(record); err != nil {
-				app.Logger().Error(err.Error())
-			}
-		}
-	}
+	var records []*models.Record
+	records = append(records, users...)
+	records = append(records, types...)
+	records = append(records, tickets...)
+	records = append(records, webhooks...)
+	records = append(records, reactions...)
 
-	return nil
+	return records, nil
 }
 
 func userRecords(dao *daos.Dao, count int) []*models.Record {
diff --git a/fakedata/records_test.go b/fakedata/records_test.go
new file mode 100644
index 00000000..d540eced
--- /dev/null
+++ b/fakedata/records_test.go
@@ -0,0 +1,29 @@
+package fakedata_test
+
+import (
+	"testing"
+
+	"github.com/stretchr/testify/assert"
+	"github.com/stretchr/testify/require"
+
+	"github.com/SecurityBrewery/catalyst/fakedata"
+	catalystTesting "github.com/SecurityBrewery/catalyst/testing"
+)
+
+func Test_records(t *testing.T) {
+	app, cleanup := catalystTesting.App(t)
+	defer cleanup()
+
+	got, err := fakedata.Records(app, 2, 2)
+	require.NoError(t, err)
+
+	assert.Greater(t, len(got), 2)
+}
+
+func TestGenerate(t *testing.T) {
+	app, cleanup := catalystTesting.App(t)
+	defer cleanup()
+
+	err := fakedata.Generate(app, 0, 0)
+	require.NoError(t, err)
+}
diff --git a/fakedata/text_test.go b/fakedata/text_test.go
new file mode 100644
index 00000000..9ffce2f1
--- /dev/null
+++ b/fakedata/text_test.go
@@ -0,0 +1,48 @@
+package fakedata
+
+import (
+	"testing"
+
+	"github.com/stretchr/testify/assert"
+)
+
+func Test_fakeTicketComment(t *testing.T) {
+	assert.NotEmpty(t, fakeTicketComment())
+}
+
+func Test_fakeTicketDescription(t *testing.T) {
+	assert.NotEmpty(t, fakeTicketDescription())
+}
+
+func Test_fakeTicketTask(t *testing.T) {
+	assert.NotEmpty(t, fakeTicketTask())
+}
+
+func Test_fakeTicketTimelineMessage(t *testing.T) {
+	assert.NotEmpty(t, fakeTicketTimelineMessage())
+}
+
+func Test_random(t *testing.T) {
+	type args[T any] struct {
+		e []T
+	}
+
+	type testCase[T any] struct {
+		name string
+		args args[T]
+	}
+
+	tests := []testCase[int]{
+		{
+			name: "Test random",
+			args: args[int]{e: []int{1, 2, 3, 4, 5}},
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			got := random(tt.args.e)
+
+			assert.Contains(t, tt.args.e, got)
+		})
+	}
+}
diff --git a/migrations/1_collections.go b/migrations/1_collections.go
index 7d016384..7cdc8d05 100644
--- a/migrations/1_collections.go
+++ b/migrations/1_collections.go
@@ -138,14 +138,14 @@ func internalCollection(c *models.Collection) *models.Collection {
 
 func collectionsDown(db dbx.Builder) error {
 	collections := []string{
-		TicketCollectionName,
-		TypeCollectionName,
 		fileCollectionName,
 		LinkCollectionName,
 		TaskCollectionName,
 		CommentCollectionName,
 		TimelineCollectionName,
 		FeatureCollectionName,
+		TicketCollectionName,
+		TypeCollectionName,
 	}
 
 	dao := daos.New(db)
diff --git a/migrations/5_reactions.go b/migrations/5_reactions.go
index c98572e3..aa9e5601 100644
--- a/migrations/5_reactions.go
+++ b/migrations/5_reactions.go
@@ -1,6 +1,8 @@
 package migrations
 
 import (
+	"fmt"
+
 	"github.com/pocketbase/dbx"
 	"github.com/pocketbase/pocketbase/daos"
 	"github.com/pocketbase/pocketbase/models"
@@ -13,47 +15,26 @@ func reactionsUp(db dbx.Builder) error {
 	triggers := []string{"webhook", "hook"}
 	reactions := []string{"python", "webhook"}
 
-	collections := []*models.Collection{
-		internalCollection(&models.Collection{
-			Name: ReactionCollectionName,
-			Type: models.CollectionTypeBase,
-			Schema: schema.NewSchema(
-				&schema.SchemaField{Name: "name", Type: schema.FieldTypeText, Required: true},
-				&schema.SchemaField{Name: "trigger", Type: schema.FieldTypeSelect, Required: true, Options: &schema.SelectOptions{MaxSelect: 1, Values: triggers}},
-				&schema.SchemaField{Name: "triggerdata", Type: schema.FieldTypeJson, Required: true},
-				&schema.SchemaField{Name: "reaction", Type: schema.FieldTypeSelect, Required: true, Options: &schema.SelectOptions{MaxSelect: 1, Values: reactions}},
-				&schema.SchemaField{Name: "reactiondata", Type: schema.FieldTypeJson, Required: true},
-			),
-		}),
-	}
-
-	dao := daos.New(db)
-	for _, c := range collections {
-		if err := dao.SaveCollection(c); err != nil {
-			return err
-		}
-	}
-
-	return nil
+	return daos.New(db).SaveCollection(internalCollection(&models.Collection{
+		Name: ReactionCollectionName,
+		Type: models.CollectionTypeBase,
+		Schema: schema.NewSchema(
+			&schema.SchemaField{Name: "name", Type: schema.FieldTypeText, Required: true},
+			&schema.SchemaField{Name: "trigger", Type: schema.FieldTypeSelect, Required: true, Options: &schema.SelectOptions{MaxSelect: 1, Values: triggers}},
+			&schema.SchemaField{Name: "triggerdata", Type: schema.FieldTypeJson, Required: true},
+			&schema.SchemaField{Name: "reaction", Type: schema.FieldTypeSelect, Required: true, Options: &schema.SelectOptions{MaxSelect: 1, Values: reactions}},
+			&schema.SchemaField{Name: "reactiondata", Type: schema.FieldTypeJson, Required: true},
+		),
+	}))
 }
 
 func reactionsDown(db dbx.Builder) error {
-	collections := []string{
-		ReactionCollectionName,
-	}
-
 	dao := daos.New(db)
 
-	for _, name := range collections {
-		id, err := dao.FindCollectionByNameOrId(name)
-		if err != nil {
-			return err
-		}
-
-		if err := dao.DeleteCollection(id); err != nil {
-			return err
-		}
+	id, err := dao.FindCollectionByNameOrId(ReactionCollectionName)
+	if err != nil {
+		return fmt.Errorf("failed to find collection %s: %w", ReactionCollectionName, err)
 	}
 
-	return nil
+	return dao.DeleteCollection(id)
 }
diff --git a/reaction/handle.go b/reaction/handle.go
index c5159637..3c4aaff3 100644
--- a/reaction/handle.go
+++ b/reaction/handle.go
@@ -4,63 +4,50 @@ import (
 	"net/http"
 	"strings"
 
+	"github.com/labstack/echo/v5"
+	"github.com/pocketbase/pocketbase/apis"
 	"github.com/pocketbase/pocketbase/core"
 )
 
 const prefix = "/reaction/"
 
-func Handle(app core.App) http.HandlerFunc {
-	return func(w http.ResponseWriter, r *http.Request) {
-		if !strings.HasPrefix(r.URL.Path, prefix) {
-			errResponse(app.Logger(), w, http.StatusNotFound, "wrong prefix")
+func Handle(app core.App) func(c echo.Context) error {
+	return func(c echo.Context) error {
+		r := c.Request()
+		w := c.Response()
 
-			return
+		if !strings.HasPrefix(r.URL.Path, prefix) {
+			return apis.NewApiError(http.StatusNotFound, "wrong prefix", nil)
 		}
 
-		actionName := strings.TrimPrefix(r.URL.Path, prefix)
+		reactionName := strings.TrimPrefix(r.URL.Path, prefix)
 
-		action, found, err := findReaction(app, actionName)
+		reaction, trigger, found, err := findReaction(app, reactionName)
 		if err != nil {
-			errResponse(app.Logger(), w, http.StatusInternalServerError, err.Error())
-
-			return
+			return apis.NewNotFoundError(err.Error(), nil)
 		}
 
 		if !found {
-			errResponse(app.Logger(), w, http.StatusNotFound, "action not found")
-
-			return
+			return apis.NewNotFoundError("reaction not found", nil)
 		}
 
-		token := action.GetString("token")
-
-		if token != "" && bearerToken(r) != token {
-			errResponse(app.Logger(), w, http.StatusUnauthorized, "invalid token")
-
-			return
+		if trigger.Token != "" && bearerToken(r) != trigger.Token {
+			return apis.NewUnauthorizedError("invalid token", nil)
 		}
 
 		payload, err := requestToPayload(r)
 		if err != nil {
-			errResponse(app.Logger(), w, http.StatusInternalServerError, err.Error())
-
-			return
+			return apis.NewApiError(http.StatusInternalServerError, err.Error(), nil)
 		}
 
-		output, err := runReaction(
-			action.GetString("type"),
-			action.GetString("name"),
-			action.GetString("bootstrap"),
-			action.GetString("script"),
-			payload,
-		)
+		output, err := runReaction(r.Context(), reaction, payload)
 		if err != nil {
-			errResponse(app.Logger(), w, http.StatusInternalServerError, err.Error())
-
-			return
+			return apis.NewApiError(http.StatusInternalServerError, err.Error(), nil)
 		}
 
 		outputToResponse(app.Logger(), w, output)
+
+		return nil
 	}
 }
 
diff --git a/reaction/http.go b/reaction/handle_request.go
similarity index 59%
rename from reaction/http.go
rename to reaction/handle_request.go
index 22efa7ea..c4ca76fd 100644
--- a/reaction/http.go
+++ b/reaction/handle_request.go
@@ -1,10 +1,14 @@
 package reaction
 
 import (
+	"encoding/base64"
 	"encoding/json"
 	"fmt"
+	"io"
 	"log/slog"
 	"net/http"
+	"net/url"
+	"unicode/utf8"
 )
 
 func requestToPayload(r *http.Request) (string, error) {
@@ -16,24 +20,39 @@ func requestToPayload(r *http.Request) (string, error) {
 	return string(payload), nil
 }
 
-func outputToResponse(logger *slog.Logger, w http.ResponseWriter, output []byte) {
-	var catalystResponse CatalystReactionResponse
-	if err := json.Unmarshal(output, &catalystResponse); err == nil {
-		catalystResponse.toResponse(logger, w)
+type CatalystReactionRequest struct {
+	Method          string      `json:"method"`
+	Path            string      `json:"path"`
+	Headers         http.Header `json:"headers"`
+	Query           url.Values  `json:"query"`
+	Body            string      `json:"body"`
+	IsBase64Encoded bool        `json:"isBase64Encoded"`
+}
 
-		return
-	}
+func catalystReactionRequest(r *http.Request) *CatalystReactionRequest {
+	body, isBase64Encoded := encodeBody(r)
 
-	textResponse(logger, w, output)
+	return &CatalystReactionRequest{
+		Method:          r.Method,
+		Path:            r.URL.EscapedPath(),
+		Headers:         r.Header,
+		Query:           r.URL.Query(),
+		Body:            body,
+		IsBase64Encoded: isBase64Encoded,
+	}
 }
 
-func response(logger *slog.Logger, w http.ResponseWriter, statusCode int, body []byte) {
-	w.WriteHeader(statusCode)
-
-	_, err := w.Write(body)
+func encodeBody(request *http.Request) (string, bool) {
+	body, err := io.ReadAll(request.Body)
 	if err != nil {
-		logger.Error(fmt.Sprintf("Error writing response: %s", err.Error()))
+		return "", false
+	}
+
+	if utf8.Valid(body) {
+		return string(body), false
 	}
+
+	return base64.StdEncoding.EncodeToString(body), true
 }
 
 func errResponse(logger *slog.Logger, w http.ResponseWriter, status int, msg string) {
@@ -63,6 +82,15 @@ func textResponse(logger *slog.Logger, w http.ResponseWriter, output []byte) {
 	response(logger, w, http.StatusOK, output)
 }
 
+func response(logger *slog.Logger, w http.ResponseWriter, statusCode int, body []byte) {
+	w.WriteHeader(statusCode)
+
+	_, err := w.Write(body)
+	if err != nil {
+		logger.Error(fmt.Sprintf("Error writing response: %s", err.Error()))
+	}
+}
+
 // isJSON checks if the data is JSON.
 func isJSON(data []byte) bool {
 	var msg json.RawMessage
diff --git a/reaction/handle_request_test.go b/reaction/handle_request_test.go
new file mode 100644
index 00000000..c1f6fb36
--- /dev/null
+++ b/reaction/handle_request_test.go
@@ -0,0 +1,79 @@
+package reaction
+
+import (
+	"encoding/json"
+	"fmt"
+	"net/http"
+	"net/http/httptest"
+	"strings"
+	"testing"
+
+	"github.com/stretchr/testify/assert"
+)
+
+func Test_requestToPayload(t *testing.T) {
+	type args struct {
+		r *http.Request
+	}
+
+	tests := []struct {
+		name    string
+		args    args
+		want    any
+		wantErr assert.ErrorAssertionFunc
+	}{
+		{
+			name: "get request",
+			args: args{r: httptest.NewRequest(http.MethodGet, "/action/test", nil)},
+			want: map[string]any{
+				"method":          "GET",
+				"path":            "/action/test",
+				"headers":         map[string]any{},
+				"query":           map[string]any{},
+				"body":            "",
+				"isBase64Encoded": false,
+			},
+			wantErr: assert.NoError,
+		},
+		{
+			name: "post request with query",
+			args: args{r: httptest.NewRequest(http.MethodPost, "/action/test?foo=bar", strings.NewReader("body"))},
+			want: map[string]any{
+				"method":          "POST",
+				"path":            "/action/test",
+				"headers":         map[string]any{},
+				"query":           map[string]any{"foo": []string{"bar"}},
+				"body":            "body",
+				"isBase64Encoded": false,
+			},
+			wantErr: assert.NoError,
+		},
+		{
+			name: "post request with non-utf8 byte",
+			args: args{r: httptest.NewRequest(http.MethodPost, "/action/test", strings.NewReader("body\x80"))},
+			want: map[string]any{
+				"method":          "POST",
+				"path":            "/action/test",
+				"headers":         map[string]any{},
+				"query":           map[string]any{},
+				"body":            "Ym9keYA=",
+				"isBase64Encoded": true,
+			},
+			wantErr: assert.NoError,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			got, err := requestToPayload(tt.args.r)
+
+			if !tt.wantErr(t, err, fmt.Sprintf("requestToPayload(%v)", tt.args.r)) {
+				return
+			}
+
+			want, err := json.Marshal(tt.want)
+			if assert.NoError(t, err, "json.Marshal(%v)", tt.want) {
+				assert.JSONEq(t, string(want), got, "requestToPayload(%v)", tt.args.r)
+			}
+		})
+	}
+}
diff --git a/reaction/response.go b/reaction/handle_response.go
similarity index 72%
rename from reaction/response.go
rename to reaction/handle_response.go
index bb01b008..9d2a7826 100644
--- a/reaction/response.go
+++ b/reaction/handle_response.go
@@ -2,10 +2,22 @@ package reaction
 
 import (
 	"encoding/base64"
+	"encoding/json"
 	"log/slog"
 	"net/http"
 )
 
+func outputToResponse(logger *slog.Logger, w http.ResponseWriter, output []byte) {
+	var catalystResponse CatalystReactionResponse
+	if err := json.Unmarshal(output, &catalystResponse); err == nil {
+		catalystResponse.toResponse(logger, w)
+
+		return
+	}
+
+	textResponse(logger, w, output)
+}
+
 type CatalystReactionResponse struct {
 	StatusCode      int         `json:"statusCode"`
 	Headers         http.Header `json:"headers"`
diff --git a/reaction/http_test.go b/reaction/handle_response_test.go
similarity index 59%
rename from reaction/http_test.go
rename to reaction/handle_response_test.go
index dcc7ee43..1a0e2981 100644
--- a/reaction/http_test.go
+++ b/reaction/handle_response_test.go
@@ -1,85 +1,13 @@
 package reaction
 
 import (
-	"encoding/json"
-	"fmt"
 	"io"
 	"log/slog"
 	"net/http"
 	"net/http/httptest"
-	"strings"
 	"testing"
-
-	"github.com/stretchr/testify/assert"
 )
 
-func Test_requestToPayload(t *testing.T) {
-	type args struct {
-		r *http.Request
-	}
-
-	tests := []struct {
-		name    string
-		args    args
-		want    any
-		wantErr assert.ErrorAssertionFunc
-	}{
-		{
-			name: "get request",
-			args: args{r: httptest.NewRequest(http.MethodGet, "/action/test", nil)},
-			want: map[string]any{
-				"method":          "GET",
-				"path":            "/action/test",
-				"headers":         map[string]any{},
-				"query":           map[string]any{},
-				"body":            "",
-				"isBase64Encoded": false,
-			},
-			wantErr: assert.NoError,
-		},
-		{
-			name: "post request with query",
-			args: args{r: httptest.NewRequest(http.MethodPost, "/action/test?foo=bar", strings.NewReader("body"))},
-			want: map[string]any{
-				"method":          "POST",
-				"path":            "/action/test",
-				"headers":         map[string]any{},
-				"query":           map[string]any{"foo": []string{"bar"}},
-				"body":            "body",
-				"isBase64Encoded": false,
-			},
-			wantErr: assert.NoError,
-		},
-		{
-			name: "post request with non-utf8 byte",
-			args: args{r: httptest.NewRequest(http.MethodPost, "/action/test", strings.NewReader("body\x80"))},
-			want: map[string]any{
-				"method":          "POST",
-				"path":            "/action/test",
-				"headers":         map[string]any{},
-				"query":           map[string]any{},
-				"body":            "Ym9keYA=",
-				"isBase64Encoded": true,
-			},
-			wantErr: assert.NoError,
-		},
-	}
-	for _, tt := range tests {
-		t.Run(tt.name, func(t *testing.T) {
-			got, err := requestToPayload(tt.args.r)
-
-			if !tt.wantErr(t, err, fmt.Sprintf("requestToPayload(%v)", tt.args.r)) {
-				return
-			}
-
-			want, err := json.Marshal(tt.want)
-			if assert.NoError(t, err, "json.Marshal(%v)", tt.want) {
-				assert.JSONEq(t, string(want), got, "requestToPayload(%v)", tt.args.r)
-			}
-		})
-	}
-}
-
 func Test_outputToResponse(t *testing.T) {
 	logger := slog.New(slog.NewTextHandler(io.Discard, &slog.HandlerOptions{}))
 
@@ -162,6 +90,48 @@ func Test_outputToResponse(t *testing.T) {
 	}
 }
 
+func TestCatalystReactionResponse_toResponse(t *testing.T) {
+	logger := slog.New(slog.NewTextHandler(io.Discard, &slog.HandlerOptions{}))
+
+	type fields struct {
+		StatusCode      int
+		Headers         http.Header
+		Body            string
+		IsBase64Encoded bool
+	}
+
+	type want struct {
+		Result testResult
+	}
+
+	tests := []struct {
+		name   string
+		fields fields
+		want   want
+	}{
+		{
+			name:   "Test 1",
+			fields: fields{StatusCode: 200, Headers: nil, Body: "body", IsBase64Encoded: false},
+			want:   want{Result: testResult{Code: 200, Header: map[string][]string{"Content-Type": {"text/plain; charset=utf-8"}}, Body: "body"}},
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			w := httptest.NewRecorder()
+
+			cr := &CatalystReactionResponse{
+				StatusCode:      tt.fields.StatusCode,
+				Headers:         tt.fields.Headers,
+				Body:            tt.fields.Body,
+				IsBase64Encoded: tt.fields.IsBase64Encoded,
+			}
+			cr.toResponse(logger, w)
+
+			resultEqual(t, w.Result(), tt.want.Result)
+		})
+	}
+}
+
 func Test_errResponse(t *testing.T) {
 	logger := slog.New(slog.NewTextHandler(io.Discard, &slog.HandlerOptions{}))
 
diff --git a/reaction/handle_test.go b/reaction/handle_test.go
new file mode 100644
index 00000000..80c578b1
--- /dev/null
+++ b/reaction/handle_test.go
@@ -0,0 +1,41 @@
+package reaction
+
+import (
+	"net/http"
+	"testing"
+
+	"github.com/stretchr/testify/assert"
+)
+
+func Test_bearerToken(t *testing.T) {
+	type args struct {
+		r *http.Request
+	}
+
+	tests := []struct {
+		name string
+		args args
+		want string
+	}{
+		{
+			name: "no token",
+			args: args{r: &http.Request{}},
+			want: "",
+		},
+		{
+			name: "no bearer token",
+			args: args{r: &http.Request{Header: map[string][]string{"Authorization": {"xxx"}}}},
+			want: "",
+		},
+		{
+			name: "token in header",
+			args: args{r: &http.Request{Header: map[string][]string{"Authorization": {"Bearer token"}}}},
+			want: "token",
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			assert.Equalf(t, tt.want, bearerToken(tt.args.r), "bearerToken(%v)", tt.args.r)
+		})
+	}
+}
diff --git a/reaction/reaction.go b/reaction/reaction.go
index c33264f1..b012207a 100644
--- a/reaction/reaction.go
+++ b/reaction/reaction.go
@@ -1,6 +1,8 @@
 package reaction
 
 import (
+	"context"
+	"encoding/json"
 	"errors"
 
 	"github.com/pocketbase/dbx"
@@ -10,23 +12,70 @@ import (
 	"github.com/SecurityBrewery/catalyst/migrations"
 )
 
-func findReaction(app core.App, action string) (*models.Record, bool, error) {
-	records, err := app.Dao().FindRecordsByExpr(migrations.ReactionCollectionName, dbx.HashExp{"name": action})
+type WebhookTrigger struct {
+	Token string `json:"token"`
+	Path  string `json:"path"`
+}
+
+func findReaction(app core.App, action string) (*models.Record, *WebhookTrigger, bool, error) {
+	exp := dbx.HashExp{"trigger": "webhook"}
+
+	records, err := app.Dao().FindRecordsByExpr(migrations.ReactionCollectionName, exp)
 	if err != nil {
-		return nil, false, err
+		return nil, nil, false, err
 	}
 
 	if len(records) == 0 {
-		return nil, false, nil
+		return nil, nil, false, nil
+	}
+
+	for _, record := range records {
+		triggerdata := record.GetString("triggerdata")
+
+		var trigger WebhookTrigger
+		if err := json.Unmarshal([]byte(triggerdata), &trigger); err != nil {
+			return nil, nil, false, err
+		}
+
+		if trigger.Path == action {
+			return record, &trigger, true, nil
+		}
 	}
 
-	return records[0], true, nil
+	return nil, nil, false, nil
 }
 
-func runReaction(actionType, name, bootstrap, script, payload string) ([]byte, error) {
-	switch actionType {
+type PythonReaction struct {
+	Bootstrap string `json:"bootstrap"`
+	Script    string `json:"script"`
+}
+
+type WebhookReaction struct {
+	Headers map[string]string `json:"headers"`
+	URL     string            `json:"url"`
+}
+
+func runReaction(ctx context.Context, record *models.Record, payload string) ([]byte, error) {
+	switch record.GetString("reaction") {
 	case "python":
-		return runPythonReaction(name, bootstrap, script, payload)
+		name := record.GetString("name")
+		reactionData := record.GetString("reactiondata")
+
+		var reaction PythonReaction
+		if err := json.Unmarshal([]byte(reactionData), &reaction); err != nil {
+			return nil, err
+		}
+
+		return runPythonReaction(ctx, name, reaction.Bootstrap, reaction.Script, payload)
+	case "webhook":
+		reactionData := record.GetString("reactiondata")
+
+		var reaction WebhookReaction
+		if err := json.Unmarshal([]byte(reactionData), &reaction); err != nil {
+			return nil, err
+		}
+
+		return runWebhookReaction(ctx, reaction.URL, reaction.Headers, payload)
 	default:
 		return nil, errors.New("unsupported action type")
 	}
diff --git a/reaction/python.go b/reaction/reaction_python.go
similarity index 59%
rename from reaction/python.go
rename to reaction/reaction_python.go
index e02ba188..bd227eb7 100644
--- a/reaction/python.go
+++ b/reaction/reaction_python.go
@@ -1,6 +1,7 @@
 package reaction
 
 import (
+	"context"
 	"errors"
 	"fmt"
 	"os"
@@ -8,7 +9,7 @@ import (
 	"strings"
 )
 
-func runPythonReaction(name, bootstrap, script, payload string) ([]byte, error) {
+func runPythonReaction(ctx context.Context, name, bootstrap, script, payload string) ([]byte, error) {
 	tempDir, err := os.MkdirTemp("", "catalyst_action_"+name)
 	if err != nil {
 		return nil, err
@@ -16,28 +17,28 @@ func runPythonReaction(name, bootstrap, script, payload string) ([]byte, error)
 
 	defer os.RemoveAll(tempDir)
 
-	if err := pythonSetup(tempDir); err != nil {
+	if err := pythonSetup(ctx, tempDir); err != nil {
 		return nil, err
 	}
 
-	if err := pythonRunBootstrap(tempDir, bootstrap); err != nil {
+	if err := pythonRunBootstrap(ctx, tempDir, bootstrap); err != nil {
 		return nil, err
 	}
 
-	return pythonRunScript(tempDir, script, payload)
+	return pythonRunScript(ctx, tempDir, script, payload)
 }
 
-func pythonSetup(tempDir string) error {
+func pythonSetup(ctx context.Context, tempDir string) error {
 	pythonPath, err := findExec("python", "python3")
 	if err != nil {
 		return fmt.Errorf("python or python3 binary not found, %w", err)
 	}
 
 	// setup virtual environment
-	return exec.Command(pythonPath, "-m", "venv", tempDir+"/venv").Run()
+	return exec.CommandContext(ctx, pythonPath, "-m", "venv", tempDir+"/venv").Run()
 }
 
-func pythonRunBootstrap(tempDir, bootstrap string) error {
+func pythonRunBootstrap(ctx context.Context, tempDir, bootstrap string) error {
 	hasBootstrap := len(strings.TrimSpace(bootstrap)) > 0
 
 	if !hasBootstrap {
@@ -53,10 +54,10 @@ func pythonRunBootstrap(tempDir, bootstrap string) error {
 	// install dependencies
 	pipPath := tempDir + "/venv/bin/pip"
 
-	return exec.Command(pipPath, "install", "-r", bootstrapPath).Run()
+	return exec.CommandContext(ctx, pipPath, "install", "-r", bootstrapPath).Run()
 }
 
-func pythonRunScript(tempDir, script, payload string) ([]byte, error) {
+func pythonRunScript(ctx context.Context, tempDir, script, payload string) ([]byte, error) {
 	scriptPath := tempDir + "/script.py"
 
 	if err := os.WriteFile(scriptPath, []byte(script), 0o600); err != nil {
@@ -65,7 +66,7 @@ func pythonRunScript(tempDir, script, payload string) ([]byte, error) {
 
 	pythonPath := tempDir + "/venv/bin/python"
 
-	return exec.Command(pythonPath, scriptPath, payload).Output()
+	return exec.CommandContext(ctx, pythonPath, scriptPath, payload).Output()
 }
 
 func findExec(name ...string) (string, error) {
diff --git a/reaction/reaction_webhook.go b/reaction/reaction_webhook.go
new file mode 100644
index 00000000..06595f49
--- /dev/null
+++ b/reaction/reaction_webhook.go
@@ -0,0 +1,26 @@
+package reaction
+
+import (
+	"context"
+	"io"
+	"net/http"
+	"strings"
+)
+
+func runWebhookReaction(ctx context.Context, url string, headers map[string]string, payload string) ([]byte, error) {
+	req, err := http.NewRequestWithContext(ctx, http.MethodPost, url, strings.NewReader(payload))
+	if err != nil {
+		return nil, err
+	}
+
+	for key, value := range headers {
+		req.Header.Set(key, value)
+	}
+
+	res, err := http.DefaultClient.Do(req)
+	if err != nil {
+		return nil, err
+	}
+
+	return io.ReadAll(res.Body)
+}
diff --git a/reaction/request.go b/reaction/request.go
deleted file mode 100644
index dac72d85..00000000
--- a/reaction/request.go
+++ /dev/null
@@ -1,44 +0,0 @@
-package reaction
-
-import (
-	"encoding/base64"
-	"io"
-	"net/http"
-	"net/url"
-	"unicode/utf8"
-)
-
-type CatalystReactionRequest struct {
-	Method          string      `json:"method"`
-	Path            string      `json:"path"`
-	Headers         http.Header `json:"headers"`
-	Query           url.Values  `json:"query"`
-	Body            string      `json:"body"`
-	IsBase64Encoded bool        `json:"isBase64Encoded"`
-}
-
-func catalystReactionRequest(r *http.Request) *CatalystReactionRequest {
-	body, isBase64Encoded := encodeBody(r)
-
-	return &CatalystReactionRequest{
-		Method:          r.Method,
-		Path:            r.URL.EscapedPath(),
-		Headers:         r.Header,
-		Query:           r.URL.Query(),
-		Body:            body,
-		IsBase64Encoded: isBase64Encoded,
-	}
-}
-
-func encodeBody(request *http.Request) (string, bool) {
-	body, err := io.ReadAll(request.Body)
-	if err != nil {
-		return "", false
-	}
-
-	if utf8.Valid(body) {
-		return string(body), false
-	}
-
-	return base64.StdEncoding.EncodeToString(body), true
-}
diff --git a/reaction/response_test.go b/reaction/response_test.go
deleted file mode 100644
index 1e3983d0..00000000
--- a/reaction/response_test.go
+++ /dev/null
@@ -1,51 +0,0 @@
-package reaction
-
-import (
-	"io"
-	"log/slog"
-	"net/http"
-	"net/http/httptest"
-	"testing"
-)
-
-func TestCatalystReactionResponse_toResponse(t *testing.T) {
-	logger := slog.New(slog.NewTextHandler(io.Discard, &slog.HandlerOptions{}))
-
-	type fields struct {
-		StatusCode      int
-		Headers         http.Header
-		Body            string
-		IsBase64Encoded bool
-	}
-
-	type want struct {
-		Result testResult
-	}
-
-	tests := []struct {
-		name   string
-		fields fields
-		want   want
-	}{
-		{
-			name:   "Test 1",
-			fields: fields{StatusCode: 200, Headers: nil, Body: "body", IsBase64Encoded: false},
-			want:   want{Result: testResult{Code: 200, Header: map[string][]string{"Content-Type": {"text/plain; charset=utf-8"}}, Body: "body"}},
-		},
-	}
-	for _, tt := range tests {
-		t.Run(tt.name, func(t *testing.T) {
-			w := httptest.NewRecorder()
-
-			cr := &CatalystReactionResponse{
-				StatusCode:      tt.fields.StatusCode,
-				Headers:         tt.fields.Headers,
-				Body:            tt.fields.Body,
-				IsBase64Encoded: tt.fields.IsBase64Encoded,
-			}
-			cr.toResponse(logger, w)
-
-			resultEqual(t, w.Result(), tt.want.Result)
-		})
-	}
-}
diff --git a/testing/collection_reaction_test.go b/testing/collection_reaction_test.go
new file mode 100644
index 00000000..8e548cab
--- /dev/null
+++ b/testing/collection_reaction_test.go
@@ -0,0 +1,250 @@
+package testing
+
+import (
+	"net/http"
+	"testing"
+)
+
+func TestReactionsCollection(t *testing.T) {
+	baseApp, adminToken, analystToken, baseAppCleanup := BaseApp(t)
+	defer baseAppCleanup()
+
+	testSets := []authMatrixText{
+		{
+			baseTest: BaseTest{
+				Name:           "ListReactions",
+				Method:         http.MethodGet,
+				URL:            "/api/collections/reactions/records",
+				TestAppFactory: AppFactory(baseApp),
+			},
+			authBasedExpectations: []AuthBasedExpectation{
+				{
+					Name:           "Unauthorized",
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"totalItems":0`,
+						`"items":[]`,
+					},
+					ExpectedEvents: map[string]int{"OnRecordsListRequest": 1},
+				},
+				{
+					Name:           "Analyst",
+					RequestHeaders: map[string]string{"Authorization": analystToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"totalItems":2`,
+						`"id":"r_reaction"`,
+					},
+					NotExpectedContent: []string{
+						`"items":[]`,
+					},
+					ExpectedEvents: map[string]int{"OnRecordsListRequest": 1},
+				},
+				{
+					Name:           "Admin",
+					RequestHeaders: map[string]string{"Authorization": adminToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"totalItems":2`,
+						`"id":"r_reaction"`,
+					},
+					NotExpectedContent: []string{
+						`"items":[]`,
+					},
+					ExpectedEvents: map[string]int{"OnRecordsListRequest": 1},
+				},
+			},
+		},
+		{
+			baseTest: BaseTest{
+				Name:           "CreateReaction",
+				Method:         http.MethodPost,
+				RequestHeaders: map[string]string{"Content-Type": "application/json"},
+				URL:            "/api/collections/reactions/records",
+				Body: s(map[string]any{
+					"name":         "test",
+					"trigger":      "webhook",
+					"triggerdata":  map[string]any{"path": "test"},
+					"reaction":     "python",
+					"reactiondata": map[string]any{"script": "print('Hello, World!')"},
+				}),
+				TestAppFactory: AppFactory(baseApp),
+			},
+			authBasedExpectations: []AuthBasedExpectation{
+				{
+					Name:           "Unauthorized",
+					ExpectedStatus: http.StatusBadRequest,
+					ExpectedContent: []string{
+						`"message":"Failed to create record."`,
+					},
+				},
+				{
+					Name:           "Analyst",
+					RequestHeaders: map[string]string{"Authorization": analystToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"name":"test"`,
+					},
+					NotExpectedContent: []string{
+						`"items":[]`,
+					},
+					ExpectedEvents: map[string]int{
+						"OnModelAfterCreate":          1,
+						"OnModelBeforeCreate":         1,
+						"OnRecordAfterCreateRequest":  1,
+						"OnRecordBeforeCreateRequest": 1,
+					},
+				},
+				{
+					Name:           "Admin",
+					RequestHeaders: map[string]string{"Authorization": adminToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"name":"test"`,
+					},
+					NotExpectedContent: []string{
+						`"items":[]`,
+					},
+					ExpectedEvents: map[string]int{
+						"OnModelAfterCreate":          1,
+						"OnModelBeforeCreate":         1,
+						"OnRecordAfterCreateRequest":  1,
+						"OnRecordBeforeCreateRequest": 1,
+					},
+				},
+			},
+		},
+		{
+			baseTest: BaseTest{
+				Name:           "GetReaction",
+				Method:         http.MethodGet,
+				RequestHeaders: map[string]string{"Content-Type": "application/json"},
+				URL:            "/api/collections/reactions/records/r_reaction",
+				TestAppFactory: AppFactory(baseApp),
+			},
+			authBasedExpectations: []AuthBasedExpectation{
+				{
+					Name:           "Unauthorized",
+					ExpectedStatus: http.StatusNotFound,
+					ExpectedContent: []string{
+						`"message":"The requested resource wasn't found."`,
+					},
+				},
+				{
+					Name:           "Analyst",
+					RequestHeaders: map[string]string{"Authorization": analystToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"id":"r_reaction"`,
+					},
+					ExpectedEvents: map[string]int{"OnRecordViewRequest": 1},
+				},
+				{
+					Name:           "Admin",
+					RequestHeaders: map[string]string{"Authorization": adminToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"id":"r_reaction"`,
+					},
+					ExpectedEvents: map[string]int{"OnRecordViewRequest": 1},
+				},
+			},
+		},
+		{
+			baseTest: BaseTest{
+				Name:           "UpdateReaction",
+				Method:         http.MethodPatch,
+				RequestHeaders: map[string]string{"Content-Type": "application/json"},
+				URL:            "/api/collections/reactions/records/r_reaction",
+				Body:           s(map[string]any{"name": "update"}),
+				TestAppFactory: AppFactory(baseApp),
+			},
+			authBasedExpectations: []AuthBasedExpectation{
+				{
+					Name:           "Unauthorized",
+					ExpectedStatus: http.StatusNotFound,
+					ExpectedContent: []string{
+						`"message":"The requested resource wasn't found."`,
+					},
+				},
+				{
+					Name:           "Analyst",
+					RequestHeaders: map[string]string{"Authorization": analystToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"id":"r_reaction"`,
+						`"name":"update"`,
+					},
+					ExpectedEvents: map[string]int{
+						"OnModelAfterUpdate":          1,
+						"OnModelBeforeUpdate":         1,
+						"OnRecordAfterUpdateRequest":  1,
+						"OnRecordBeforeUpdateRequest": 1,
+					},
+				},
+				{
+					Name:           "Admin",
+					RequestHeaders: map[string]string{"Authorization": adminToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"id":"r_reaction"`,
+						`"name":"update"`,
+					},
+					ExpectedEvents: map[string]int{
+						"OnModelAfterUpdate":          1,
+						"OnModelBeforeUpdate":         1,
+						"OnRecordAfterUpdateRequest":  1,
+						"OnRecordBeforeUpdateRequest": 1,
+					},
+				},
+			},
+		},
+		{
+			baseTest: BaseTest{
+				Name:           "DeleteReaction",
+				Method:         http.MethodDelete,
+				URL:            "/api/collections/reactions/records/r_reaction",
+				TestAppFactory: AppFactory(baseApp),
+			},
+			authBasedExpectations: []AuthBasedExpectation{
+				{
+					Name:           "Unauthorized",
+					ExpectedStatus: http.StatusNotFound,
+					ExpectedContent: []string{
+						`"message":"The requested resource wasn't found."`,
+					},
+				},
+				{
+					Name:           "Analyst",
+					RequestHeaders: map[string]string{"Authorization": analystToken},
+					ExpectedStatus: http.StatusNoContent,
+					ExpectedEvents: map[string]int{
+						"OnModelAfterDelete":          1,
+						"OnModelBeforeDelete":         1,
+						"OnRecordAfterDeleteRequest":  1,
+						"OnRecordBeforeDeleteRequest": 1,
+					},
+				},
+				{
+					Name:           "Admin",
+					RequestHeaders: map[string]string{"Authorization": adminToken},
+					ExpectedStatus: http.StatusNoContent,
+					ExpectedEvents: map[string]int{
+						"OnModelAfterDelete":          1,
+						"OnModelBeforeDelete":         1,
+						"OnRecordAfterDeleteRequest":  1,
+						"OnRecordBeforeDeleteRequest": 1,
+					},
+				},
+			},
+		},
+	}
+	for _, testSet := range testSets {
+		t.Run(testSet.baseTest.Name, func(t *testing.T) {
+			for _, authBasedExpectation := range testSet.authBasedExpectations {
+				scenario := mergeScenario(testSet.baseTest, authBasedExpectation)
+				scenario.Test(t)
+			}
+		})
+	}
+}
diff --git a/testing/reaction_test.go b/testing/reaction_test.go
index 84aee23d..febffc58 100644
--- a/testing/reaction_test.go
+++ b/testing/reaction_test.go
@@ -6,234 +6,72 @@ import (
 )
 
 func TestReactions(t *testing.T) {
-	baseApp, adminToken, analystToken, baseAppCleanup := baseTestApp(t)
+	baseApp, adminToken, analystToken, baseAppCleanup := BaseApp(t)
 	defer baseAppCleanup()
 
 	testSets := []authMatrixText{
 		{
 			baseTest: BaseTest{
-				Name:           "ListReactions",
+				Name:           "TriggerReaction",
 				Method:         http.MethodGet,
-				URL:            "/api/collections/reactions/records",
-				TestAppFactory: testAppFactory(baseApp),
+				URL:            "/reaction/test",
+				TestAppFactory: AppFactory(baseApp),
 			},
 			authBasedExpectations: []AuthBasedExpectation{
 				{
 					Name:           "Unauthorized",
 					ExpectedStatus: http.StatusOK,
 					ExpectedContent: []string{
-						`"totalItems":0`,
-						`"items":[]`,
+						`Hello, World!`,
 					},
-					ExpectedEvents: map[string]int{"OnRecordsListRequest": 1},
 				},
 				{
 					Name:           "Analyst",
 					RequestHeaders: map[string]string{"Authorization": analystToken},
 					ExpectedStatus: http.StatusOK,
 					ExpectedContent: []string{
-						`"totalItems":1`,
-						`"id":"r_reaction"`,
+						`Hello, World!`,
 					},
-					NotExpectedContent: []string{
-						`"items":[]`,
-					},
-					ExpectedEvents: map[string]int{"OnRecordsListRequest": 1},
 				},
 				{
 					Name:           "Admin",
 					RequestHeaders: map[string]string{"Authorization": adminToken},
 					ExpectedStatus: http.StatusOK,
 					ExpectedContent: []string{
-						`"totalItems":1`,
-						`"id":"r_reaction"`,
-					},
-					NotExpectedContent: []string{
-						`"items":[]`,
+						`Hello, World!`,
 					},
-					ExpectedEvents: map[string]int{"OnRecordsListRequest": 1},
 				},
 			},
 		},
 		{
 			baseTest: BaseTest{
-				Name:           "CreateReaction",
-				Method:         http.MethodPost,
-				RequestHeaders: map[string]string{"Content-Type": "application/json"},
-				URL:            "/api/collections/reactions/records",
-				Body: s(map[string]any{
-					"name":         "test",
-					"trigger":      "webhook",
-					"triggerdata":  map[string]any{"path": "test"},
-					"reaction":     "python",
-					"reactiondata": map[string]any{"script": "print('Hello, World!')"},
-				}),
-				TestAppFactory: testAppFactory(baseApp),
-			},
-			authBasedExpectations: []AuthBasedExpectation{
-				{
-					Name:           "Unauthorized",
-					ExpectedStatus: http.StatusBadRequest,
-					ExpectedContent: []string{
-						`"message":"Failed to create record."`,
-					},
-				},
-				{
-					Name:           "Analyst",
-					RequestHeaders: map[string]string{"Authorization": analystToken},
-					ExpectedStatus: http.StatusOK,
-					ExpectedContent: []string{
-						`"name":"test"`,
-					},
-					NotExpectedContent: []string{
-						`"items":[]`,
-					},
-					ExpectedEvents: map[string]int{
-						"OnModelAfterCreate":          1,
-						"OnModelBeforeCreate":         1,
-						"OnRecordAfterCreateRequest":  1,
-						"OnRecordBeforeCreateRequest": 1,
-					},
-				},
-				{
-					Name:           "Admin",
-					RequestHeaders: map[string]string{"Authorization": adminToken},
-					ExpectedStatus: http.StatusOK,
-					ExpectedContent: []string{
-						`"name":"test"`,
-					},
-					NotExpectedContent: []string{
-						`"items":[]`,
-					},
-					ExpectedEvents: map[string]int{
-						"OnModelAfterCreate":          1,
-						"OnModelBeforeCreate":         1,
-						"OnRecordAfterCreateRequest":  1,
-						"OnRecordBeforeCreateRequest": 1,
-					},
-				},
-			},
-		},
-		{
-			baseTest: BaseTest{
-				Name:           "GetReaction",
+				Name:           "TriggerReaction2",
 				Method:         http.MethodGet,
-				RequestHeaders: map[string]string{"Content-Type": "application/json"},
-				URL:            "/api/collections/reactions/records/r_reaction",
-				TestAppFactory: testAppFactory(baseApp),
+				URL:            "/reaction/test2",
+				TestAppFactory: AppFactory(baseApp),
 			},
 			authBasedExpectations: []AuthBasedExpectation{
 				{
 					Name:           "Unauthorized",
-					ExpectedStatus: http.StatusNotFound,
+					ExpectedStatus: http.StatusInternalServerError,
 					ExpectedContent: []string{
-						`"message":"The requested resource wasn't found."`,
+						`"message":"Post \"http://localhost:8080/test\": dial tcp [::1]:8080: connect: connection refused."`,
 					},
 				},
 				{
 					Name:           "Analyst",
 					RequestHeaders: map[string]string{"Authorization": analystToken},
-					ExpectedStatus: http.StatusOK,
+					ExpectedStatus: http.StatusInternalServerError,
 					ExpectedContent: []string{
-						`"id":"r_reaction"`,
+						`"message":"Post \"http://localhost:8080/test\": dial tcp [::1]:8080: connect: connection refused."`,
 					},
-					ExpectedEvents: map[string]int{"OnRecordViewRequest": 1},
 				},
 				{
 					Name:           "Admin",
 					RequestHeaders: map[string]string{"Authorization": adminToken},
-					ExpectedStatus: http.StatusOK,
+					ExpectedStatus: http.StatusInternalServerError,
 					ExpectedContent: []string{
-						`"id":"r_reaction"`,
-					},
-					ExpectedEvents: map[string]int{"OnRecordViewRequest": 1},
-				},
-			},
-		},
-		{
-			baseTest: BaseTest{
-				Name:           "UpdateReaction",
-				Method:         http.MethodPatch,
-				RequestHeaders: map[string]string{"Content-Type": "application/json"},
-				URL:            "/api/collections/reactions/records/r_reaction",
-				Body:           s(map[string]any{"name": "update"}),
-				TestAppFactory: testAppFactory(baseApp),
-			},
-			authBasedExpectations: []AuthBasedExpectation{
-				{
-					Name:           "Unauthorized",
-					ExpectedStatus: http.StatusNotFound,
-					ExpectedContent: []string{
-						`"message":"The requested resource wasn't found."`,
-					},
-				},
-				{
-					Name:           "Analyst",
-					RequestHeaders: map[string]string{"Authorization": analystToken},
-					ExpectedStatus: http.StatusOK,
-					ExpectedContent: []string{
-						`"id":"r_reaction"`,
-						`"name":"update"`,
-					},
-					ExpectedEvents: map[string]int{
-						"OnModelAfterUpdate":          1,
-						"OnModelBeforeUpdate":         1,
-						"OnRecordAfterUpdateRequest":  1,
-						"OnRecordBeforeUpdateRequest": 1,
-					},
-				},
-				{
-					Name:           "Admin",
-					RequestHeaders: map[string]string{"Authorization": adminToken},
-					ExpectedStatus: http.StatusOK,
-					ExpectedContent: []string{
-						`"id":"r_reaction"`,
-						`"name":"update"`,
-					},
-					ExpectedEvents: map[string]int{
-						"OnModelAfterUpdate":          1,
-						"OnModelBeforeUpdate":         1,
-						"OnRecordAfterUpdateRequest":  1,
-						"OnRecordBeforeUpdateRequest": 1,
-					},
-				},
-			},
-		},
-		{
-			baseTest: BaseTest{
-				Name:           "DeleteReaction",
-				Method:         http.MethodDelete,
-				URL:            "/api/collections/reactions/records/r_reaction",
-				TestAppFactory: testAppFactory(baseApp),
-			},
-			authBasedExpectations: []AuthBasedExpectation{
-				{
-					Name:           "Unauthorized",
-					ExpectedStatus: http.StatusNotFound,
-					ExpectedContent: []string{
-						`"message":"The requested resource wasn't found."`,
-					},
-				},
-				{
-					Name:           "Analyst",
-					RequestHeaders: map[string]string{"Authorization": analystToken},
-					ExpectedStatus: http.StatusNoContent,
-					ExpectedEvents: map[string]int{
-						"OnModelAfterDelete":          1,
-						"OnModelBeforeDelete":         1,
-						"OnRecordAfterDeleteRequest":  1,
-						"OnRecordBeforeDeleteRequest": 1,
-					},
-				},
-				{
-					Name:           "Admin",
-					RequestHeaders: map[string]string{"Authorization": adminToken},
-					ExpectedStatus: http.StatusNoContent,
-					ExpectedEvents: map[string]int{
-						"OnModelAfterDelete":          1,
-						"OnModelBeforeDelete":         1,
-						"OnRecordAfterDeleteRequest":  1,
-						"OnRecordBeforeDeleteRequest": 1,
+						`"message":"Post \"http://localhost:8080/test\": dial tcp [::1]:8080: connect: connection refused."`,
 					},
 				},
 			},
diff --git a/testing/routes_test.go b/testing/routes_test.go
new file mode 100644
index 00000000..b0c5ad65
--- /dev/null
+++ b/testing/routes_test.go
@@ -0,0 +1,79 @@
+package testing
+
+import (
+	"net/http"
+	"testing"
+)
+
+func Test_Routes(t *testing.T) {
+	baseApp, adminToken, analystToken, baseAppCleanup := BaseApp(t)
+	defer baseAppCleanup()
+
+	testSets := []authMatrixText{
+		{
+			baseTest: BaseTest{
+				Name:           "Root",
+				Method:         http.MethodGet,
+				URL:            "/",
+				TestAppFactory: AppFactory(baseApp),
+			},
+			authBasedExpectations: []AuthBasedExpectation{
+				{
+					Name:           "Unauthorized",
+					ExpectedStatus: http.StatusFound,
+				},
+				{
+					Name:           "Analyst",
+					RequestHeaders: map[string]string{"Authorization": analystToken},
+					ExpectedStatus: http.StatusFound,
+				},
+				{
+					Name:           "Admin",
+					RequestHeaders: map[string]string{"Authorization": adminToken},
+					ExpectedStatus: http.StatusFound,
+				},
+			},
+		},
+		{
+			baseTest: BaseTest{
+				Name:           "Config",
+				Method:         http.MethodGet,
+				URL:            "/api/config",
+				TestAppFactory: AppFactory(baseApp),
+			},
+			authBasedExpectations: []AuthBasedExpectation{
+				{
+					Name:           "Unauthorized",
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"flags":null`,
+					},
+				},
+				{
+					Name:           "Analyst",
+					RequestHeaders: map[string]string{"Authorization": analystToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"flags":null`,
+					},
+				},
+				{
+					Name:           "Admin",
+					RequestHeaders: map[string]string{"Authorization": adminToken},
+					ExpectedStatus: http.StatusOK,
+					ExpectedContent: []string{
+						`"flags":null`,
+					},
+				},
+			},
+		},
+	}
+	for _, testSet := range testSets {
+		t.Run(testSet.baseTest.Name, func(t *testing.T) {
+			for _, authBasedExpectation := range testSet.authBasedExpectations {
+				scenario := mergeScenario(testSet.baseTest, authBasedExpectation)
+				scenario.Test(t)
+			}
+		})
+	}
+}
diff --git a/testing/testdata_test.go b/testing/testdata.go
similarity index 76%
rename from testing/testdata_test.go
rename to testing/testdata.go
index 4b719f87..f41c44be 100644
--- a/testing/testdata_test.go
+++ b/testing/testdata.go
@@ -71,7 +71,19 @@ func reactionTestData(t *testing.T, app core.App) {
 	record.Set("trigger", "webhook")
 	record.Set("triggerdata", `{"path":"test"}`)
 	record.Set("reaction", "python")
-	record.Set("reactiondata", `{"script":"print('Hello, World!')"}`)
+	record.Set("reactiondata", `{"bootstrap":"requests","script":"print('Hello, World!')"}`)
+
+	if err := app.Dao().SaveRecord(record); err != nil {
+		t.Fatal(err)
+	}
+
+	record = models.NewRecord(collection)
+	record.SetId("r_reaction_webhook")
+	record.Set("name", "Reaction")
+	record.Set("trigger", "webhook")
+	record.Set("triggerdata", `{"path":"test2"}`)
+	record.Set("reaction", "webhook")
+	record.Set("reactiondata", `{"header":{"Content-Type":"application/json"},"url":"http://localhost:8080/test"}`)
 
 	if err := app.Dao().SaveRecord(record); err != nil {
 		t.Fatal(err)
diff --git a/testing/testing_test.go b/testing/testing.go
similarity index 88%
rename from testing/testing_test.go
rename to testing/testing.go
index fd2b4525..2264623e 100644
--- a/testing/testing_test.go
+++ b/testing/testing.go
@@ -14,7 +14,7 @@ import (
 	"github.com/SecurityBrewery/catalyst/migrations"
 )
 
-func baseTestApp(t *testing.T) (core.App, string, string, func()) {
+func BaseApp(t *testing.T) (core.App, string, string, func()) {
 	t.Helper()
 
 	temp, err := os.MkdirTemp("", "catalyst_test_data")
@@ -43,7 +43,7 @@ func baseTestApp(t *testing.T) (core.App, string, string, func()) {
 	return baseApp, adminToken, analystToken, func() { _ = os.RemoveAll(temp) }
 }
 
-func testAppFactory(baseApp core.App) func(t *testing.T) *tests.TestApp {
+func AppFactory(baseApp core.App) func(t *testing.T) *tests.TestApp {
 	return func(t *testing.T) *tests.TestApp {
 		t.Helper()
 
@@ -52,10 +52,26 @@ func testAppFactory(baseApp core.App) func(t *testing.T) *tests.TestApp {
 			t.Fatal(err)
 		}
 
+		app.BindHooks(testApp)
+
+		if err := app.Bootstrap(testApp); err != nil {
+			t.Fatal(err)
+		}
+
 		return testApp
 	}
 }
 
+func App(t *testing.T) (*tests.TestApp, func()) {
+	t.Helper()
+
+	baseApp, _, _, cleanup := BaseApp(t)
+
+	testApp := AppFactory(baseApp)(t)
+
+	return testApp, cleanup
+}
+
 func generateAdminToken(t *testing.T, baseApp core.App, email string) (string, error) {
 	t.Helper()
 
diff --git a/ui/ui_test.go b/ui/ui_test.go
new file mode 100644
index 00000000..3787d388
--- /dev/null
+++ b/ui/ui_test.go
@@ -0,0 +1,42 @@
+package ui
+
+import (
+	"io/fs"
+	"testing"
+
+	"github.com/stretchr/testify/assert"
+	"github.com/stretchr/testify/require"
+)
+
+func TestUI(t *testing.T) {
+	tests := []struct {
+		name      string
+		wantFiles []string
+	}{
+		{
+			name: "TestUI",
+			wantFiles: []string{
+				"index.html",
+			},
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			got := UI()
+
+			var gotFiles []string
+
+			require.NoError(t, fs.WalkDir(got, ".", func(path string, d fs.DirEntry, _ error) error {
+				if !d.IsDir() {
+					gotFiles = append(gotFiles, path)
+				}
+
+				return nil
+			}))
+
+			for _, wantFile := range tt.wantFiles {
+				assert.Contains(t, gotFiles, wantFile)
+			}
+		})
+	}
+}

From 44b1cb89a27e1f1b757da962dc4062d183701b88 Mon Sep 17 00:00:00 2001
From: Jonas Plum <git@cugu.eu>
Date: Sun, 14 Jul 2024 04:37:13 +0200
Subject: [PATCH 09/17] fix: headers test reaction

---
 testing/testdata.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/testing/testdata.go b/testing/testdata.go
index f41c44be..2eb1b0ae 100644
--- a/testing/testdata.go
+++ b/testing/testdata.go
@@ -83,7 +83,7 @@ func reactionTestData(t *testing.T, app core.App) {
 	record.Set("trigger", "webhook")
 	record.Set("triggerdata", `{"path":"test2"}`)
 	record.Set("reaction", "webhook")
-	record.Set("reactiondata", `{"header":{"Content-Type":"application/json"},"url":"http://localhost:8080/test"}`)
+	record.Set("reactiondata", `{"headers":{"Content-Type":"application/json"},"url":"http://localhost:8080/test"}`)
 
 	if err := app.Dao().SaveRecord(record); err != nil {
 		t.Fatal(err)

From 0d7d1d0aec057a095c4faf7e5adeeae1e35a7e4d Mon Sep 17 00:00:00 2001
From: Jonas Plum <git@cugu.eu>
Date: Sun, 14 Jul 2024 12:52:43 +0200
Subject: [PATCH 10/17] feat: rename webhooks

---
 ui/src/components/reaction/ReactionForm.vue | 12 ++++++------
 ui/src/components/reaction/ReactionList.vue |  6 +++---
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/ui/src/components/reaction/ReactionForm.vue b/ui/src/components/reaction/ReactionForm.vue
index 58d8269b..7e634b9d 100644
--- a/ui/src/components/reaction/ReactionForm.vue
+++ b/ui/src/components/reaction/ReactionForm.vue
@@ -228,15 +228,15 @@ const curlExample = computed(() => {
                 </SelectTrigger>
                 <SelectContent>
                   <SelectGroup>
-                    <SelectItem value="webhook">Webhook</SelectItem>
-                    <SelectItem value="hook">Hook</SelectItem>
+                    <SelectItem value="webhook">HTTP / Webhook</SelectItem>
+                    <SelectItem value="hook">Collection Hook</SelectItem>
                   </SelectGroup>
                 </SelectContent>
               </Select>
             </FormControl>
             <FormDescription>
-              <p>Webhook: Receive a HTTP request.</p>
-              <p>Hook: Triggered by a collection and event.</p>
+              <p>HTTP / Webhook: Receive a HTTP request.</p>
+              <p>Collection Hook: Triggered by a collection and event.</p>
             </FormDescription>
             <FormMessage />
           </FormItem>
@@ -268,14 +268,14 @@ const curlExample = computed(() => {
                 <SelectContent>
                   <SelectGroup>
                     <SelectItem value="python">Python</SelectItem>
-                    <SelectItem value="webhook">Webhook</SelectItem>
+                    <SelectItem value="webhook">HTTP / Webhook</SelectItem>
                   </SelectGroup>
                 </SelectContent>
               </Select>
             </FormControl>
             <FormDescription>
               <p>Python: Execute a Python script.</p>
-              <p>Webhook: Send an HTTP request.</p>
+              <p>HTTP / Webhook: Send an HTTP request.</p>
             </FormDescription>
             <FormMessage />
           </FormItem>
diff --git a/ui/src/components/reaction/ReactionList.vue b/ui/src/components/reaction/ReactionList.vue
index 4c86f22f..7f7f9e1b 100644
--- a/ui/src/components/reaction/ReactionList.vue
+++ b/ui/src/components/reaction/ReactionList.vue
@@ -30,9 +30,9 @@ const subtitle = (reaction: Reaction) =>
 
 const triggerNiceName = (reaction: Reaction) => {
   if (reaction.trigger === 'hook') {
-    return 'Hook'
+    return 'Collection Hook'
   } else if (reaction.trigger === 'webhook') {
-    return 'Webhook'
+    return 'HTTP / Webhook'
   } else {
     return 'Unknown'
   }
@@ -42,7 +42,7 @@ const reactionNiceName = (reaction: Reaction) => {
   if (reaction.reaction === 'python') {
     return 'Python'
   } else if (reaction.reaction === 'webhook') {
-    return 'Webhook'
+    return 'HTTP / Webhook'
   } else {
     return 'Unknown'
   }

From 6d7ae99cc130d8a8a40c883ee7013dc001179d1c Mon Sep 17 00:00:00 2001
From: Jonas Plum <git@cugu.eu>
Date: Thu, 18 Jul 2024 21:08:30 -0700
Subject: [PATCH 11/17] refactor: reaction format

---
 app/app.go                                    |   5 +-
 app/routes.go                                 |   3 +-
 fakedata/records.go                           |   8 +-
 migrations/5_reactions.go                     |   4 +-
 reaction/action/action.go                     |  44 +++++
 .../python/python.go}                         |  55 ++++--
 reaction/action/webhook/payload.go            |  20 +++
 .../webhook/request.go}                       |  58 +++----
 .../webhook/request_test.go}                  |   4 +-
 .../webhook/response.go}                      |  21 ++-
 reaction/action/webhook/webhook.go            |  41 +++++
 reaction/handle.go                            |  62 -------
 reaction/reaction.go                          |  82 ---------
 reaction/reaction_webhook.go                  |  26 ---
 reaction/trigger.go                           |  13 ++
 reaction/trigger/hook/hook.go                 |  96 +++++++++++
 .../{ => trigger/webhook}/reaction_test.go    |   2 +-
 reaction/trigger/webhook/webhook.go           | 107 ++++++++++++
 .../webhook/webhook_response_test.go}         |  30 ++--
 .../webhook/webhook_test.go}                  |   2 +-
 testing/collection_reaction_test.go           |  14 +-
 testing/reaction_test.go                      | 157 ++++++++++++++----
 testing/testdata.go                           |  20 ++-
 ui/src/components/reaction/ReactionForm.vue   |  20 +--
 .../reaction/ReactionPythonFormFields.vue     |   4 +-
 .../reaction/ReactionWebhookFormFields.vue    |   4 +-
 ui/src/lib/types.ts                           |   4 +-
 {app => webhook}/webhooks.go                  |  12 +-
 28 files changed, 585 insertions(+), 333 deletions(-)
 create mode 100644 reaction/action/action.go
 rename reaction/{reaction_python.go => action/python/python.go} (52%)
 create mode 100644 reaction/action/webhook/payload.go
 rename reaction/{handle_request.go => action/webhook/request.go} (56%)
 rename reaction/{handle_request_test.go => action/webhook/request_test.go} (96%)
 rename reaction/{handle_response.go => action/webhook/response.go} (56%)
 create mode 100644 reaction/action/webhook/webhook.go
 delete mode 100644 reaction/handle.go
 delete mode 100644 reaction/reaction.go
 delete mode 100644 reaction/reaction_webhook.go
 create mode 100644 reaction/trigger.go
 create mode 100644 reaction/trigger/hook/hook.go
 rename reaction/{ => trigger/webhook}/reaction_test.go (98%)
 create mode 100644 reaction/trigger/webhook/webhook.go
 rename reaction/{handle_response_test.go => trigger/webhook/webhook_response_test.go} (77%)
 rename reaction/{handle_test.go => trigger/webhook/webhook_test.go} (97%)
 rename {app => webhook}/webhooks.go (86%)

diff --git a/app/app.go b/app/app.go
index 750e3ce9..68e80b40 100644
--- a/app/app.go
+++ b/app/app.go
@@ -8,6 +8,8 @@ import (
 	"github.com/pocketbase/pocketbase/core"
 
 	"github.com/SecurityBrewery/catalyst/migrations"
+	"github.com/SecurityBrewery/catalyst/reaction"
+	"github.com/SecurityBrewery/catalyst/webhook"
 )
 
 func init() {
@@ -31,7 +33,8 @@ func App(dir string) *pocketbase.PocketBase {
 }
 
 func BindHooks(app core.App) {
-	attachWebhooks(app)
+	webhook.BindHooks(app)
+	reaction.BindHooks(app)
 
 	app.OnBeforeServe().Add(addRoutes())
 }
diff --git a/app/routes.go b/app/routes.go
index 4e9a118f..d3bc493c 100644
--- a/app/routes.go
+++ b/app/routes.go
@@ -9,7 +9,6 @@ import (
 	"github.com/pocketbase/pocketbase/apis"
 	"github.com/pocketbase/pocketbase/core"
 
-	"github.com/SecurityBrewery/catalyst/reaction"
 	"github.com/SecurityBrewery/catalyst/ui"
 )
 
@@ -19,7 +18,7 @@ func addRoutes() func(*core.ServeEvent) error {
 			return c.Redirect(http.StatusFound, "/ui/")
 		})
 		e.Router.GET("/ui/*", staticFiles())
-		e.Router.Any("/reaction/*", reaction.Handle(e.App))
+
 		e.Router.GET("/api/config", func(c echo.Context) error {
 			flags, err := Flags(e.App)
 			if err != nil {
diff --git a/fakedata/records.go b/fakedata/records.go
index cab85e17..f1b9be8d 100644
--- a/fakedata/records.go
+++ b/fakedata/records.go
@@ -258,8 +258,8 @@ func reactionRecords(dao *daos.Dao) []*models.Record {
 	record.Set("name", "Test Reaction")
 	record.Set("trigger", "webhook")
 	record.Set("triggerdata", triggerWebhook)
-	record.Set("reaction", "python")
-	record.Set("reactiondata", reactionPython)
+	record.Set("action", "python")
+	record.Set("actiondata", reactionPython)
 
 	records = append(records, record)
 
@@ -268,8 +268,8 @@ func reactionRecords(dao *daos.Dao) []*models.Record {
 	record.Set("name", "Test Reaction 2")
 	record.Set("trigger", "hook")
 	record.Set("triggerdata", triggerHook)
-	record.Set("reaction", "webhook")
-	record.Set("reactiondata", reactionWebhook)
+	record.Set("action", "webhook")
+	record.Set("actiondata", reactionWebhook)
 
 	records = append(records, record)
 
diff --git a/migrations/5_reactions.go b/migrations/5_reactions.go
index aa9e5601..a8693ff8 100644
--- a/migrations/5_reactions.go
+++ b/migrations/5_reactions.go
@@ -22,8 +22,8 @@ func reactionsUp(db dbx.Builder) error {
 			&schema.SchemaField{Name: "name", Type: schema.FieldTypeText, Required: true},
 			&schema.SchemaField{Name: "trigger", Type: schema.FieldTypeSelect, Required: true, Options: &schema.SelectOptions{MaxSelect: 1, Values: triggers}},
 			&schema.SchemaField{Name: "triggerdata", Type: schema.FieldTypeJson, Required: true},
-			&schema.SchemaField{Name: "reaction", Type: schema.FieldTypeSelect, Required: true, Options: &schema.SelectOptions{MaxSelect: 1, Values: reactions}},
-			&schema.SchemaField{Name: "reactiondata", Type: schema.FieldTypeJson, Required: true},
+			&schema.SchemaField{Name: "action", Type: schema.FieldTypeSelect, Required: true, Options: &schema.SelectOptions{MaxSelect: 1, Values: reactions}},
+			&schema.SchemaField{Name: "actiondata", Type: schema.FieldTypeJson, Required: true},
 		),
 	}))
 }
diff --git a/reaction/action/action.go b/reaction/action/action.go
new file mode 100644
index 00000000..a5641341
--- /dev/null
+++ b/reaction/action/action.go
@@ -0,0 +1,44 @@
+package action
+
+import (
+	"context"
+	"encoding/json"
+	"fmt"
+
+	"github.com/SecurityBrewery/catalyst/reaction/action/python"
+	"github.com/SecurityBrewery/catalyst/reaction/action/webhook"
+)
+
+func Run(ctx context.Context, actionName, actionData, payload string) ([]byte, error) {
+	action, err := decode(actionName, actionData)
+	if err != nil {
+		return nil, err
+	}
+
+	return action.Run(ctx, payload)
+}
+
+type action interface {
+	Run(ctx context.Context, payload string) ([]byte, error)
+}
+
+func decode(actionName, actionData string) (action, error) {
+	switch actionName {
+	case "python":
+		var reaction python.Python
+		if err := json.Unmarshal([]byte(actionData), &reaction); err != nil {
+			return nil, err
+		}
+
+		return &reaction, nil
+	case "webhook":
+		var reaction webhook.Webhook
+		if err := json.Unmarshal([]byte(actionData), &reaction); err != nil {
+			return nil, err
+		}
+
+		return &reaction, nil
+	default:
+		return nil, fmt.Errorf("action %q not found", actionName)
+	}
+}
diff --git a/reaction/reaction_python.go b/reaction/action/python/python.go
similarity index 52%
rename from reaction/reaction_python.go
rename to reaction/action/python/python.go
index bd227eb7..1c1cc667 100644
--- a/reaction/reaction_python.go
+++ b/reaction/action/python/python.go
@@ -1,4 +1,4 @@
-package reaction
+package python
 
 import (
 	"context"
@@ -9,52 +9,77 @@ import (
 	"strings"
 )
 
-func runPythonReaction(ctx context.Context, name, bootstrap, script, payload string) ([]byte, error) {
-	tempDir, err := os.MkdirTemp("", "catalyst_action_"+name)
+type Python struct {
+	Bootstrap string `json:"bootstrap"`
+	Script    string `json:"script"`
+}
+
+func (a *Python) Run(ctx context.Context, payload string) ([]byte, error) {
+	tempDir, err := os.MkdirTemp("", "catalyst_action")
 	if err != nil {
 		return nil, err
 	}
 
 	defer os.RemoveAll(tempDir)
 
-	if err := pythonSetup(ctx, tempDir); err != nil {
-		return nil, err
+	if b, err := pythonSetup(ctx, tempDir); err != nil {
+		var ee *exec.ExitError
+		if errors.As(err, &ee) {
+			b = append(b, ee.Stderr...)
+		}
+
+		return nil, fmt.Errorf("failed to setup python, %w: %s", err, string(b))
 	}
 
-	if err := pythonRunBootstrap(ctx, tempDir, bootstrap); err != nil {
-		return nil, err
+	if b, err := pythonRunBootstrap(ctx, tempDir, a.Bootstrap); err != nil {
+		var ee *exec.ExitError
+		if errors.As(err, &ee) {
+			b = append(b, ee.Stderr...)
+		}
+
+		return nil, fmt.Errorf("failed to run bootstrap, %w: %s", err, string(b))
 	}
 
-	return pythonRunScript(ctx, tempDir, script, payload)
+	b, err := pythonRunScript(ctx, tempDir, a.Script, payload)
+	if err != nil {
+		var ee *exec.ExitError
+		if errors.As(err, &ee) {
+			b = append(b, ee.Stderr...)
+		}
+
+		return nil, fmt.Errorf("failed to run script, %w: %s", err, string(b))
+	}
+
+	return b, nil
 }
 
-func pythonSetup(ctx context.Context, tempDir string) error {
+func pythonSetup(ctx context.Context, tempDir string) ([]byte, error) {
 	pythonPath, err := findExec("python", "python3")
 	if err != nil {
-		return fmt.Errorf("python or python3 binary not found, %w", err)
+		return nil, fmt.Errorf("python or python3 binary not found, %w", err)
 	}
 
 	// setup virtual environment
-	return exec.CommandContext(ctx, pythonPath, "-m", "venv", tempDir+"/venv").Run()
+	return exec.CommandContext(ctx, pythonPath, "-m", "venv", tempDir+"/venv").Output()
 }
 
-func pythonRunBootstrap(ctx context.Context, tempDir, bootstrap string) error {
+func pythonRunBootstrap(ctx context.Context, tempDir, bootstrap string) ([]byte, error) {
 	hasBootstrap := len(strings.TrimSpace(bootstrap)) > 0
 
 	if !hasBootstrap {
-		return nil
+		return nil, nil
 	}
 
 	bootstrapPath := tempDir + "/requirements.txt"
 
 	if err := os.WriteFile(bootstrapPath, []byte(bootstrap), 0o600); err != nil {
-		return err
+		return nil, err
 	}
 
 	// install dependencies
 	pipPath := tempDir + "/venv/bin/pip"
 
-	return exec.CommandContext(ctx, pipPath, "install", "-r", bootstrapPath).Run()
+	return exec.CommandContext(ctx, pipPath, "install", "-r", bootstrapPath).Output()
 }
 
 func pythonRunScript(ctx context.Context, tempDir, script, payload string) ([]byte, error) {
diff --git a/reaction/action/webhook/payload.go b/reaction/action/webhook/payload.go
new file mode 100644
index 00000000..966bbd19
--- /dev/null
+++ b/reaction/action/webhook/payload.go
@@ -0,0 +1,20 @@
+package webhook
+
+import (
+	"encoding/base64"
+	"io"
+	"unicode/utf8"
+)
+
+func encodeBody(requestBody io.Reader) (string, bool) {
+	body, err := io.ReadAll(requestBody)
+	if err != nil {
+		return "", false
+	}
+
+	if utf8.Valid(body) {
+		return string(body), false
+	}
+
+	return base64.StdEncoding.EncodeToString(body), true
+}
diff --git a/reaction/handle_request.go b/reaction/action/webhook/request.go
similarity index 56%
rename from reaction/handle_request.go
rename to reaction/action/webhook/request.go
index c4ca76fd..506514a9 100644
--- a/reaction/handle_request.go
+++ b/reaction/action/webhook/request.go
@@ -1,18 +1,24 @@
-package reaction
+package webhook
 
 import (
-	"encoding/base64"
 	"encoding/json"
 	"fmt"
-	"io"
 	"log/slog"
 	"net/http"
 	"net/url"
-	"unicode/utf8"
 )
 
-func requestToPayload(r *http.Request) (string, error) {
-	payload, err := json.Marshal(catalystReactionRequest(r))
+func RequestFromHTTPRequest(r *http.Request) (string, error) {
+	body, isBase64Encoded := encodeBody(r.Body)
+
+	payload, err := json.Marshal(&Request{
+		Method:          r.Method,
+		Path:            r.URL.EscapedPath(),
+		Headers:         r.Header,
+		Query:           r.URL.Query(),
+		Body:            body,
+		IsBase64Encoded: isBase64Encoded,
+	})
 	if err != nil {
 		return "", err
 	}
@@ -20,7 +26,7 @@ func requestToPayload(r *http.Request) (string, error) {
 	return string(payload), nil
 }
 
-type CatalystReactionRequest struct {
+type Request struct {
 	Method          string      `json:"method"`
 	Path            string      `json:"path"`
 	Headers         http.Header `json:"headers"`
@@ -29,33 +35,7 @@ type CatalystReactionRequest struct {
 	IsBase64Encoded bool        `json:"isBase64Encoded"`
 }
 
-func catalystReactionRequest(r *http.Request) *CatalystReactionRequest {
-	body, isBase64Encoded := encodeBody(r)
-
-	return &CatalystReactionRequest{
-		Method:          r.Method,
-		Path:            r.URL.EscapedPath(),
-		Headers:         r.Header,
-		Query:           r.URL.Query(),
-		Body:            body,
-		IsBase64Encoded: isBase64Encoded,
-	}
-}
-
-func encodeBody(request *http.Request) (string, bool) {
-	body, err := io.ReadAll(request.Body)
-	if err != nil {
-		return "", false
-	}
-
-	if utf8.Valid(body) {
-		return string(body), false
-	}
-
-	return base64.StdEncoding.EncodeToString(body), true
-}
-
-func errResponse(logger *slog.Logger, w http.ResponseWriter, status int, msg string) {
+func ErrResponse(w http.ResponseWriter, status int, msg string) {
 	w.Header().Set("Content-Type", "application/json; charset=utf-8")
 
 	body, err := json.Marshal(map[string]string{"error": msg})
@@ -63,7 +43,7 @@ func errResponse(logger *slog.Logger, w http.ResponseWriter, status int, msg str
 		body = []byte(fmt.Sprintf(`{"error": "%s"}`, msg))
 	}
 
-	response(logger, w, status, body)
+	response(w, status, body)
 }
 
 const (
@@ -72,22 +52,22 @@ const (
 )
 
 // textResponse returns a response based on the output type.
-func textResponse(logger *slog.Logger, w http.ResponseWriter, output []byte) {
+func textResponse(w http.ResponseWriter, output []byte) {
 	if isJSON(output) {
 		w.Header().Set("Content-Type", JSONContentType)
 	} else {
 		w.Header().Set("Content-Type", TextContentType)
 	}
 
-	response(logger, w, http.StatusOK, output)
+	response(w, http.StatusOK, output)
 }
 
-func response(logger *slog.Logger, w http.ResponseWriter, statusCode int, body []byte) {
+func response(w http.ResponseWriter, statusCode int, body []byte) {
 	w.WriteHeader(statusCode)
 
 	_, err := w.Write(body)
 	if err != nil {
-		logger.Error(fmt.Sprintf("Error writing response: %s", err.Error()))
+		slog.Error(fmt.Sprintf("Error writing response: %s", err.Error()))
 	}
 }
 
diff --git a/reaction/handle_request_test.go b/reaction/action/webhook/request_test.go
similarity index 96%
rename from reaction/handle_request_test.go
rename to reaction/action/webhook/request_test.go
index c1f6fb36..f36a7a4c 100644
--- a/reaction/handle_request_test.go
+++ b/reaction/action/webhook/request_test.go
@@ -1,4 +1,4 @@
-package reaction
+package webhook
 
 import (
 	"encoding/json"
@@ -64,7 +64,7 @@ func Test_requestToPayload(t *testing.T) {
 	}
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
-			got, err := requestToPayload(tt.args.r)
+			got, err := RequestFromHTTPRequest(tt.args.r)
 
 			if !tt.wantErr(t, err, fmt.Sprintf("requestToPayload(%v)", tt.args.r)) {
 				return
diff --git a/reaction/handle_response.go b/reaction/action/webhook/response.go
similarity index 56%
rename from reaction/handle_response.go
rename to reaction/action/webhook/response.go
index 9d2a7826..2b708a95 100644
--- a/reaction/handle_response.go
+++ b/reaction/action/webhook/response.go
@@ -1,31 +1,30 @@
-package reaction
+package webhook
 
 import (
 	"encoding/base64"
 	"encoding/json"
-	"log/slog"
 	"net/http"
 )
 
-func outputToResponse(logger *slog.Logger, w http.ResponseWriter, output []byte) {
-	var catalystResponse CatalystReactionResponse
-	if err := json.Unmarshal(output, &catalystResponse); err == nil {
-		catalystResponse.toResponse(logger, w)
+func OutputToResponse(w http.ResponseWriter, output []byte) {
+	var catalystResponse Response
+	if err := json.Unmarshal(output, &catalystResponse); err == nil && catalystResponse.StatusCode != 0 {
+		catalystResponse.ToResponse(w)
 
 		return
 	}
 
-	textResponse(logger, w, output)
+	textResponse(w, output)
 }
 
-type CatalystReactionResponse struct {
+type Response struct {
 	StatusCode      int         `json:"statusCode"`
 	Headers         http.Header `json:"headers"`
 	Body            string      `json:"body"`
 	IsBase64Encoded bool        `json:"isBase64Encoded"`
 }
 
-func (cr *CatalystReactionResponse) toResponse(logger *slog.Logger, w http.ResponseWriter) {
+func (cr *Response) ToResponse(w http.ResponseWriter) {
 	for key, values := range cr.Headers {
 		for _, value := range values {
 			w.Header().Add(key, value)
@@ -39,7 +38,7 @@ func (cr *CatalystReactionResponse) toResponse(logger *slog.Logger, w http.Respo
 
 		body, err = base64.StdEncoding.DecodeString(cr.Body)
 		if err != nil {
-			errResponse(logger, w, http.StatusInternalServerError, "Error decoding base64 body")
+			ErrResponse(w, http.StatusInternalServerError, "Error decoding base64 body")
 
 			return
 		}
@@ -47,5 +46,5 @@ func (cr *CatalystReactionResponse) toResponse(logger *slog.Logger, w http.Respo
 		body = []byte(cr.Body)
 	}
 
-	textResponse(logger, w, body)
+	textResponse(w, body)
 }
diff --git a/reaction/action/webhook/webhook.go b/reaction/action/webhook/webhook.go
new file mode 100644
index 00000000..4168444a
--- /dev/null
+++ b/reaction/action/webhook/webhook.go
@@ -0,0 +1,41 @@
+package webhook
+
+import (
+	"context"
+	"encoding/json"
+	"net/http"
+	"strings"
+)
+
+type Webhook struct {
+	Headers map[string]string `json:"headers"`
+	URL     string            `json:"url"`
+}
+
+func (a *Webhook) Run(ctx context.Context, payload string) ([]byte, error) {
+	req, err := http.NewRequestWithContext(ctx, http.MethodPost, a.URL, strings.NewReader(payload))
+	if err != nil {
+		return nil, err
+	}
+
+	for key, value := range a.Headers {
+		req.Header.Set(key, value)
+	}
+
+	res, err := http.DefaultClient.Do(req)
+	if err != nil {
+		return nil, err
+	}
+	defer res.Body.Close()
+
+	body, isBase64Encoded := encodeBody(res.Body)
+
+	catalystResponse := Response{
+		StatusCode:      res.StatusCode,
+		Headers:         res.Header,
+		Body:            body,
+		IsBase64Encoded: isBase64Encoded,
+	}
+
+	return json.Marshal(catalystResponse)
+}
diff --git a/reaction/handle.go b/reaction/handle.go
deleted file mode 100644
index 3c4aaff3..00000000
--- a/reaction/handle.go
+++ /dev/null
@@ -1,62 +0,0 @@
-package reaction
-
-import (
-	"net/http"
-	"strings"
-
-	"github.com/labstack/echo/v5"
-	"github.com/pocketbase/pocketbase/apis"
-	"github.com/pocketbase/pocketbase/core"
-)
-
-const prefix = "/reaction/"
-
-func Handle(app core.App) func(c echo.Context) error {
-	return func(c echo.Context) error {
-		r := c.Request()
-		w := c.Response()
-
-		if !strings.HasPrefix(r.URL.Path, prefix) {
-			return apis.NewApiError(http.StatusNotFound, "wrong prefix", nil)
-		}
-
-		reactionName := strings.TrimPrefix(r.URL.Path, prefix)
-
-		reaction, trigger, found, err := findReaction(app, reactionName)
-		if err != nil {
-			return apis.NewNotFoundError(err.Error(), nil)
-		}
-
-		if !found {
-			return apis.NewNotFoundError("reaction not found", nil)
-		}
-
-		if trigger.Token != "" && bearerToken(r) != trigger.Token {
-			return apis.NewUnauthorizedError("invalid token", nil)
-		}
-
-		payload, err := requestToPayload(r)
-		if err != nil {
-			return apis.NewApiError(http.StatusInternalServerError, err.Error(), nil)
-		}
-
-		output, err := runReaction(r.Context(), reaction, payload)
-		if err != nil {
-			return apis.NewApiError(http.StatusInternalServerError, err.Error(), nil)
-		}
-
-		outputToResponse(app.Logger(), w, output)
-
-		return nil
-	}
-}
-
-func bearerToken(r *http.Request) string {
-	auth := r.Header.Get("Authorization")
-
-	if !strings.HasPrefix(auth, "Bearer ") {
-		return ""
-	}
-
-	return strings.TrimPrefix(auth, "Bearer ")
-}
diff --git a/reaction/reaction.go b/reaction/reaction.go
deleted file mode 100644
index b012207a..00000000
--- a/reaction/reaction.go
+++ /dev/null
@@ -1,82 +0,0 @@
-package reaction
-
-import (
-	"context"
-	"encoding/json"
-	"errors"
-
-	"github.com/pocketbase/dbx"
-	"github.com/pocketbase/pocketbase/core"
-	"github.com/pocketbase/pocketbase/models"
-
-	"github.com/SecurityBrewery/catalyst/migrations"
-)
-
-type WebhookTrigger struct {
-	Token string `json:"token"`
-	Path  string `json:"path"`
-}
-
-func findReaction(app core.App, action string) (*models.Record, *WebhookTrigger, bool, error) {
-	exp := dbx.HashExp{"trigger": "webhook"}
-
-	records, err := app.Dao().FindRecordsByExpr(migrations.ReactionCollectionName, exp)
-	if err != nil {
-		return nil, nil, false, err
-	}
-
-	if len(records) == 0 {
-		return nil, nil, false, nil
-	}
-
-	for _, record := range records {
-		triggerdata := record.GetString("triggerdata")
-
-		var trigger WebhookTrigger
-		if err := json.Unmarshal([]byte(triggerdata), &trigger); err != nil {
-			return nil, nil, false, err
-		}
-
-		if trigger.Path == action {
-			return record, &trigger, true, nil
-		}
-	}
-
-	return nil, nil, false, nil
-}
-
-type PythonReaction struct {
-	Bootstrap string `json:"bootstrap"`
-	Script    string `json:"script"`
-}
-
-type WebhookReaction struct {
-	Headers map[string]string `json:"headers"`
-	URL     string            `json:"url"`
-}
-
-func runReaction(ctx context.Context, record *models.Record, payload string) ([]byte, error) {
-	switch record.GetString("reaction") {
-	case "python":
-		name := record.GetString("name")
-		reactionData := record.GetString("reactiondata")
-
-		var reaction PythonReaction
-		if err := json.Unmarshal([]byte(reactionData), &reaction); err != nil {
-			return nil, err
-		}
-
-		return runPythonReaction(ctx, name, reaction.Bootstrap, reaction.Script, payload)
-	case "webhook":
-		reactionData := record.GetString("reactiondata")
-
-		var reaction WebhookReaction
-		if err := json.Unmarshal([]byte(reactionData), &reaction); err != nil {
-			return nil, err
-		}
-
-		return runWebhookReaction(ctx, reaction.URL, reaction.Headers, payload)
-	default:
-		return nil, errors.New("unsupported action type")
-	}
-}
diff --git a/reaction/reaction_webhook.go b/reaction/reaction_webhook.go
deleted file mode 100644
index 06595f49..00000000
--- a/reaction/reaction_webhook.go
+++ /dev/null
@@ -1,26 +0,0 @@
-package reaction
-
-import (
-	"context"
-	"io"
-	"net/http"
-	"strings"
-)
-
-func runWebhookReaction(ctx context.Context, url string, headers map[string]string, payload string) ([]byte, error) {
-	req, err := http.NewRequestWithContext(ctx, http.MethodPost, url, strings.NewReader(payload))
-	if err != nil {
-		return nil, err
-	}
-
-	for key, value := range headers {
-		req.Header.Set(key, value)
-	}
-
-	res, err := http.DefaultClient.Do(req)
-	if err != nil {
-		return nil, err
-	}
-
-	return io.ReadAll(res.Body)
-}
diff --git a/reaction/trigger.go b/reaction/trigger.go
new file mode 100644
index 00000000..235522c7
--- /dev/null
+++ b/reaction/trigger.go
@@ -0,0 +1,13 @@
+package reaction
+
+import (
+	"github.com/pocketbase/pocketbase/core"
+
+	"github.com/SecurityBrewery/catalyst/reaction/trigger/hook"
+	"github.com/SecurityBrewery/catalyst/reaction/trigger/webhook"
+)
+
+func BindHooks(app core.App) {
+	hook.BindHooks(app)
+	webhook.BindHooks(app)
+}
diff --git a/reaction/trigger/hook/hook.go b/reaction/trigger/hook/hook.go
new file mode 100644
index 00000000..ddfaba0c
--- /dev/null
+++ b/reaction/trigger/hook/hook.go
@@ -0,0 +1,96 @@
+package hook
+
+import (
+	"encoding/json"
+	"slices"
+
+	"github.com/labstack/echo/v5"
+	"github.com/pocketbase/dbx"
+	"github.com/pocketbase/pocketbase/apis"
+	"github.com/pocketbase/pocketbase/core"
+	"github.com/pocketbase/pocketbase/models"
+
+	"github.com/SecurityBrewery/catalyst/migrations"
+	"github.com/SecurityBrewery/catalyst/reaction/action"
+	"github.com/SecurityBrewery/catalyst/webhook"
+)
+
+type Hook struct {
+	Collections []string `json:"collections"`
+	Events      []string `json:"events"`
+}
+
+func BindHooks(app core.App) {
+	// Bind hooks
+	app.OnRecordAfterCreateRequest().Add(func(e *core.RecordCreateEvent) error {
+		return hook(app, "create", e.Collection.Name, e.Record, e.HttpContext)
+	})
+	app.OnRecordAfterUpdateRequest().Add(func(e *core.RecordUpdateEvent) error {
+		return hook(app, "update", e.Collection.Name, e.Record, e.HttpContext)
+	})
+	app.OnRecordAfterDeleteRequest().Add(func(e *core.RecordDeleteEvent) error {
+		return hook(app, "delete", e.Collection.Name, e.Record, e.HttpContext)
+	})
+}
+
+func hook(app core.App, event, collection string, record *models.Record, ctx echo.Context) error {
+	auth, _ := ctx.Get(apis.ContextAuthRecordKey).(*models.Record)
+	admin, _ := ctx.Get(apis.ContextAdminKey).(*models.Admin)
+
+	hook, found, err := findByHookTrigger(app, collection, event)
+	if err != nil {
+		app.Logger().Error("failed to find hook reaction", "error", err.Error())
+
+		return nil
+	}
+
+	if !found {
+		return nil
+	}
+
+	payload, err := json.Marshal(&webhook.Payload{
+		Action:     event,
+		Collection: collection,
+		Record:     record,
+		Auth:       auth,
+		Admin:      admin,
+	})
+	if err != nil {
+		app.Logger().Error("failed to marshal payload", "error", err.Error())
+
+		return nil
+	}
+
+	_, err = action.Run(ctx.Request().Context(), hook.GetString("action"), hook.GetString("actiondata"), string(payload))
+	if err != nil {
+		app.Logger().Error("failed to run hook reaction", "error", err.Error())
+
+		return nil
+	}
+
+	return nil
+}
+
+func findByHookTrigger(app core.App, collection, event string) (*models.Record, bool, error) {
+	records, err := app.Dao().FindRecordsByExpr(migrations.ReactionCollectionName, dbx.HashExp{"trigger": "hook"})
+	if err != nil {
+		return nil, false, err
+	}
+
+	if len(records) == 0 {
+		return nil, false, nil
+	}
+
+	for _, record := range records {
+		var hook Hook
+		if err := json.Unmarshal([]byte(record.GetString("triggerdata")), &hook); err != nil {
+			return nil, false, err
+		}
+
+		if slices.Contains(hook.Collections, collection) && slices.Contains(hook.Events, event) {
+			return record, true, nil
+		}
+	}
+
+	return nil, false, nil
+}
diff --git a/reaction/reaction_test.go b/reaction/trigger/webhook/reaction_test.go
similarity index 98%
rename from reaction/reaction_test.go
rename to reaction/trigger/webhook/reaction_test.go
index 61e0ab35..b974bdb7 100644
--- a/reaction/reaction_test.go
+++ b/reaction/trigger/webhook/reaction_test.go
@@ -1,4 +1,4 @@
-package reaction
+package webhook
 
 import (
 	"io"
diff --git a/reaction/trigger/webhook/webhook.go b/reaction/trigger/webhook/webhook.go
new file mode 100644
index 00000000..f34a5a1d
--- /dev/null
+++ b/reaction/trigger/webhook/webhook.go
@@ -0,0 +1,107 @@
+package webhook
+
+import (
+	"encoding/json"
+	"net/http"
+	"strings"
+
+	"github.com/labstack/echo/v5"
+	"github.com/pocketbase/dbx"
+	"github.com/pocketbase/pocketbase/apis"
+	"github.com/pocketbase/pocketbase/core"
+	"github.com/pocketbase/pocketbase/models"
+
+	"github.com/SecurityBrewery/catalyst/migrations"
+	"github.com/SecurityBrewery/catalyst/reaction/action"
+	"github.com/SecurityBrewery/catalyst/reaction/action/webhook"
+)
+
+type Webhook struct {
+	Token string `json:"token"`
+	Path  string `json:"path"`
+}
+
+func BindHooks(app core.App) {
+	// Bind webhooks
+	app.OnBeforeServe().Add(func(e *core.ServeEvent) error {
+		e.Router.Any("/reaction/*", handle(e.App))
+
+		return nil
+	})
+}
+
+const prefix = "/reaction/"
+
+func handle(app core.App) func(c echo.Context) error {
+	return func(c echo.Context) error {
+		r := c.Request()
+		w := c.Response()
+
+		if !strings.HasPrefix(r.URL.Path, prefix) {
+			return apis.NewApiError(http.StatusNotFound, "wrong prefix", nil)
+		}
+
+		reactionName := strings.TrimPrefix(r.URL.Path, prefix)
+
+		record, trigger, found, err := findByWebhookTrigger(app, reactionName)
+		if err != nil {
+			return apis.NewNotFoundError(err.Error(), nil)
+		}
+
+		if !found {
+			return apis.NewNotFoundError("reaction not found", nil)
+		}
+
+		if trigger.Token != "" && bearerToken(r) != trigger.Token {
+			return apis.NewUnauthorizedError("invalid token", nil)
+		}
+
+		payload, err := webhook.RequestFromHTTPRequest(r)
+		if err != nil {
+			return apis.NewApiError(http.StatusInternalServerError, err.Error(), nil)
+		}
+
+		output, err := action.Run(r.Context(), record.GetString("action"), record.GetString("actiondata"), payload)
+		if err != nil {
+			return apis.NewApiError(http.StatusInternalServerError, err.Error(), nil)
+		}
+
+		webhook.OutputToResponse(w, output)
+
+		return nil
+	}
+}
+
+func findByWebhookTrigger(app core.App, path string) (*models.Record, *Webhook, bool, error) {
+	records, err := app.Dao().FindRecordsByExpr(migrations.ReactionCollectionName, dbx.HashExp{"trigger": "webhook"})
+	if err != nil {
+		return nil, nil, false, err
+	}
+
+	if len(records) == 0 {
+		return nil, nil, false, nil
+	}
+
+	for _, record := range records {
+		var webhook Webhook
+		if err := json.Unmarshal([]byte(record.GetString("triggerdata")), &webhook); err != nil {
+			return nil, nil, false, err
+		}
+
+		if webhook.Path == path {
+			return record, &webhook, true, nil
+		}
+	}
+
+	return nil, nil, false, nil
+}
+
+func bearerToken(r *http.Request) string {
+	auth := r.Header.Get("Authorization")
+
+	if !strings.HasPrefix(auth, "Bearer ") {
+		return ""
+	}
+
+	return strings.TrimPrefix(auth, "Bearer ")
+}
diff --git a/reaction/handle_response_test.go b/reaction/trigger/webhook/webhook_response_test.go
similarity index 77%
rename from reaction/handle_response_test.go
rename to reaction/trigger/webhook/webhook_response_test.go
index 1a0e2981..1494ae99 100644
--- a/reaction/handle_response_test.go
+++ b/reaction/trigger/webhook/webhook_response_test.go
@@ -1,16 +1,14 @@
-package reaction
+package webhook
 
 import (
-	"io"
-	"log/slog"
 	"net/http"
 	"net/http/httptest"
 	"testing"
+
+	"github.com/SecurityBrewery/catalyst/reaction/action/webhook"
 )
 
 func Test_outputToResponse(t *testing.T) {
-	logger := slog.New(slog.NewTextHandler(io.Discard, &slog.HandlerOptions{}))
-
 	type args struct {
 		output []byte
 	}
@@ -32,7 +30,7 @@ func Test_outputToResponse(t *testing.T) {
 			want: want{
 				Result: testResult{
 					Code:   200,
-					Header: http.Header{"Content-Type": []string{TextContentType}},
+					Header: http.Header{"Content-Type": []string{webhook.TextContentType}},
 					Body:   "body",
 				},
 			},
@@ -45,7 +43,7 @@ func Test_outputToResponse(t *testing.T) {
 			want: want{
 				Result: testResult{
 					Code:   200,
-					Header: http.Header{"Content-Type": []string{TextContentType}},
+					Header: http.Header{"Content-Type": []string{webhook.TextContentType}},
 					Body:   "body",
 				},
 			},
@@ -58,7 +56,7 @@ func Test_outputToResponse(t *testing.T) {
 			want: want{
 				Result: testResult{
 					Code:   200,
-					Header: http.Header{"Content-Type": []string{JSONContentType}},
+					Header: http.Header{"Content-Type": []string{webhook.JSONContentType}},
 					Body:   `{"key": "value"}`,
 				},
 			},
@@ -71,7 +69,7 @@ func Test_outputToResponse(t *testing.T) {
 			want: want{
 				Result: testResult{
 					Code:   200,
-					Header: http.Header{"Content-Type": []string{TextContentType}},
+					Header: http.Header{"Content-Type": []string{webhook.TextContentType}},
 					Body:   "body",
 				},
 			},
@@ -81,7 +79,7 @@ func Test_outputToResponse(t *testing.T) {
 		t.Run(tt.name, func(t *testing.T) {
 			w := httptest.NewRecorder()
 
-			outputToResponse(logger, w, tt.args.output)
+			webhook.OutputToResponse(w, tt.args.output)
 
 			w.Flush()
 
@@ -91,8 +89,6 @@ func Test_outputToResponse(t *testing.T) {
 }
 
 func TestCatalystReactionResponse_toResponse(t *testing.T) {
-	logger := slog.New(slog.NewTextHandler(io.Discard, &slog.HandlerOptions{}))
-
 	type fields struct {
 		StatusCode      int
 		Headers         http.Header
@@ -119,13 +115,13 @@ func TestCatalystReactionResponse_toResponse(t *testing.T) {
 		t.Run(tt.name, func(t *testing.T) {
 			w := httptest.NewRecorder()
 
-			cr := &CatalystReactionResponse{
+			cr := &webhook.Response{
 				StatusCode:      tt.fields.StatusCode,
 				Headers:         tt.fields.Headers,
 				Body:            tt.fields.Body,
 				IsBase64Encoded: tt.fields.IsBase64Encoded,
 			}
-			cr.toResponse(logger, w)
+			cr.ToResponse(w)
 
 			resultEqual(t, w.Result(), tt.want.Result)
 		})
@@ -133,8 +129,6 @@ func TestCatalystReactionResponse_toResponse(t *testing.T) {
 }
 
 func Test_errResponse(t *testing.T) {
-	logger := slog.New(slog.NewTextHandler(io.Discard, &slog.HandlerOptions{}))
-
 	type args struct {
 		status int
 		msg    string
@@ -153,7 +147,7 @@ func Test_errResponse(t *testing.T) {
 			},
 			want: testResult{
 				Code:   http.StatusInternalServerError,
-				Header: http.Header{"Content-Type": []string{JSONContentType}},
+				Header: http.Header{"Content-Type": []string{webhook.JSONContentType}},
 				Body:   `{"error": "error message"}`,
 			},
 		},
@@ -162,7 +156,7 @@ func Test_errResponse(t *testing.T) {
 		t.Run(tt.name, func(t *testing.T) {
 			w := httptest.NewRecorder()
 
-			errResponse(logger, w, tt.args.status, tt.args.msg)
+			webhook.ErrResponse(w, tt.args.status, tt.args.msg)
 
 			w.Flush()
 
diff --git a/reaction/handle_test.go b/reaction/trigger/webhook/webhook_test.go
similarity index 97%
rename from reaction/handle_test.go
rename to reaction/trigger/webhook/webhook_test.go
index 80c578b1..05ec8844 100644
--- a/reaction/handle_test.go
+++ b/reaction/trigger/webhook/webhook_test.go
@@ -1,4 +1,4 @@
-package reaction
+package webhook
 
 import (
 	"net/http"
diff --git a/testing/collection_reaction_test.go b/testing/collection_reaction_test.go
index 8e548cab..995401c2 100644
--- a/testing/collection_reaction_test.go
+++ b/testing/collection_reaction_test.go
@@ -32,7 +32,7 @@ func TestReactionsCollection(t *testing.T) {
 					RequestHeaders: map[string]string{"Authorization": analystToken},
 					ExpectedStatus: http.StatusOK,
 					ExpectedContent: []string{
-						`"totalItems":2`,
+						`"totalItems":3`,
 						`"id":"r_reaction"`,
 					},
 					NotExpectedContent: []string{
@@ -45,7 +45,7 @@ func TestReactionsCollection(t *testing.T) {
 					RequestHeaders: map[string]string{"Authorization": adminToken},
 					ExpectedStatus: http.StatusOK,
 					ExpectedContent: []string{
-						`"totalItems":2`,
+						`"totalItems":3`,
 						`"id":"r_reaction"`,
 					},
 					NotExpectedContent: []string{
@@ -62,11 +62,11 @@ func TestReactionsCollection(t *testing.T) {
 				RequestHeaders: map[string]string{"Content-Type": "application/json"},
 				URL:            "/api/collections/reactions/records",
 				Body: s(map[string]any{
-					"name":         "test",
-					"trigger":      "webhook",
-					"triggerdata":  map[string]any{"path": "test"},
-					"reaction":     "python",
-					"reactiondata": map[string]any{"script": "print('Hello, World!')"},
+					"name":        "test",
+					"trigger":     "webhook",
+					"triggerdata": map[string]any{"path": "test"},
+					"action":      "python",
+					"actiondata":  map[string]any{"script": "print('Hello, World!')"},
 				}),
 				TestAppFactory: AppFactory(baseApp),
 			},
diff --git a/testing/reaction_test.go b/testing/reaction_test.go
index febffc58..5eb65a38 100644
--- a/testing/reaction_test.go
+++ b/testing/reaction_test.go
@@ -3,77 +3,164 @@ package testing
 import (
 	"net/http"
 	"testing"
+	"time"
+
+	"github.com/stretchr/testify/require"
 )
 
-func TestReactions(t *testing.T) {
+func TestWebhookReactions(t *testing.T) {
 	baseApp, adminToken, analystToken, baseAppCleanup := BaseApp(t)
 	defer baseAppCleanup()
 
+	server := testWebhookServer()
+	defer server.Close()
+
+	go server.ListenAndServe() //nolint:errcheck
+
 	testSets := []authMatrixText{
 		{
 			baseTest: BaseTest{
-				Name:           "TriggerReaction",
+				Name:           "TriggerWebhookReaction",
 				Method:         http.MethodGet,
 				URL:            "/reaction/test",
 				TestAppFactory: AppFactory(baseApp),
 			},
 			authBasedExpectations: []AuthBasedExpectation{
 				{
-					Name:           "Unauthorized",
-					ExpectedStatus: http.StatusOK,
-					ExpectedContent: []string{
-						`Hello, World!`,
-					},
+					Name:            "Unauthorized",
+					ExpectedStatus:  http.StatusOK,
+					ExpectedContent: []string{`Hello, World!`},
 				},
 				{
-					Name:           "Analyst",
-					RequestHeaders: map[string]string{"Authorization": analystToken},
-					ExpectedStatus: http.StatusOK,
-					ExpectedContent: []string{
-						`Hello, World!`,
-					},
+					Name:            "Analyst",
+					RequestHeaders:  map[string]string{"Authorization": analystToken},
+					ExpectedStatus:  http.StatusOK,
+					ExpectedContent: []string{`Hello, World!`},
 				},
 				{
-					Name:           "Admin",
-					RequestHeaders: map[string]string{"Authorization": adminToken},
-					ExpectedStatus: http.StatusOK,
-					ExpectedContent: []string{
-						`Hello, World!`,
-					},
+					Name:            "Admin",
+					RequestHeaders:  map[string]string{"Authorization": adminToken},
+					ExpectedStatus:  http.StatusOK,
+					ExpectedContent: []string{`Hello, World!`},
 				},
 			},
 		},
 		{
 			baseTest: BaseTest{
-				Name:           "TriggerReaction2",
+				Name:           "TriggerWebhookReaction2",
 				Method:         http.MethodGet,
 				URL:            "/reaction/test2",
 				TestAppFactory: AppFactory(baseApp),
 			},
 			authBasedExpectations: []AuthBasedExpectation{
 				{
-					Name:           "Unauthorized",
-					ExpectedStatus: http.StatusInternalServerError,
-					ExpectedContent: []string{
-						`"message":"Post \"http://localhost:8080/test\": dial tcp [::1]:8080: connect: connection refused."`,
-					},
+					Name:            "Unauthorized",
+					ExpectedStatus:  http.StatusOK,
+					ExpectedContent: []string{`"test":true`},
+				},
+				{
+					Name:            "Analyst",
+					RequestHeaders:  map[string]string{"Authorization": analystToken},
+					ExpectedStatus:  http.StatusOK,
+					ExpectedContent: []string{`"test":true`},
 				},
+				{
+					Name:            "Admin",
+					RequestHeaders:  map[string]string{"Authorization": adminToken},
+					ExpectedStatus:  http.StatusOK,
+					ExpectedContent: []string{`"test":true`},
+				},
+			},
+		},
+	}
+	for _, testSet := range testSets {
+		t.Run(testSet.baseTest.Name, func(t *testing.T) {
+			for _, authBasedExpectation := range testSet.authBasedExpectations {
+				scenario := mergeScenario(testSet.baseTest, authBasedExpectation)
+				scenario.Test(t)
+			}
+		})
+	}
+}
+
+func testWebhookServer() *http.Server {
+	mux := http.NewServeMux()
+	mux.HandleFunc("/webhook", func(w http.ResponseWriter, _ *http.Request) {
+		w.WriteHeader(http.StatusOK)
+		w.Header().Set("Content-Type", "application/json")
+		w.Write([]byte(`{"test":true}`)) //nolint:errcheck
+	})
+
+	return &http.Server{
+		Addr:              "127.0.0.1:12345",
+		Handler:           mux,
+		ReadHeaderTimeout: 3 * time.Second,
+	}
+}
+
+type RecordingServer struct {
+	Entries []string
+}
+
+func NewRecordingServer() *RecordingServer {
+	return &RecordingServer{}
+}
+
+func (s *RecordingServer) ServeHTTP(w http.ResponseWriter, r *http.Request) {
+	s.Entries = append(s.Entries, r.URL.Path)
+
+	w.WriteHeader(http.StatusOK)
+	w.Header().Set("Content-Type", "application/json")
+	w.Write([]byte(`{"test":true}`)) //nolint:errcheck
+}
+
+func TestHookReactions(t *testing.T) {
+	baseApp, _, analystToken, baseAppCleanup := BaseApp(t)
+	defer baseAppCleanup()
+
+	server := NewRecordingServer()
+
+	go http.ListenAndServe("127.0.0.1:12346", server) //nolint:gosec,errcheck
+
+	testSets := []authMatrixText{
+		{
+			baseTest: BaseTest{
+				Name:           "TriggerHookReaction",
+				Method:         http.MethodPost,
+				RequestHeaders: map[string]string{"Content-Type": "application/json"},
+				URL:            "/api/collections/tickets/records",
+				Body: s(map[string]any{
+					"name": "test",
+				}),
+				TestAppFactory: AppFactory(baseApp),
+			},
+			authBasedExpectations: []AuthBasedExpectation{
+				// {
+				// 	Name:            "Unauthorized",
+				// 	ExpectedStatus:  http.StatusOK,
+				// 	ExpectedContent: []string{`Hello, World!`},
+				// },
 				{
 					Name:           "Analyst",
 					RequestHeaders: map[string]string{"Authorization": analystToken},
-					ExpectedStatus: http.StatusInternalServerError,
+					ExpectedStatus: http.StatusOK,
 					ExpectedContent: []string{
-						`"message":"Post \"http://localhost:8080/test\": dial tcp [::1]:8080: connect: connection refused."`,
+						`"collectionName":"tickets"`,
+						`"name":"test"`,
 					},
-				},
-				{
-					Name:           "Admin",
-					RequestHeaders: map[string]string{"Authorization": adminToken},
-					ExpectedStatus: http.StatusInternalServerError,
-					ExpectedContent: []string{
-						`"message":"Post \"http://localhost:8080/test\": dial tcp [::1]:8080: connect: connection refused."`,
+					ExpectedEvents: map[string]int{
+						"OnModelAfterCreate":          1,
+						"OnModelBeforeCreate":         1,
+						"OnRecordAfterCreateRequest":  1,
+						"OnRecordBeforeCreateRequest": 1,
 					},
 				},
+				// {
+				// 	Name:            "Admin",
+				// 	RequestHeaders:  map[string]string{"Authorization": adminToken},
+				// 	ExpectedStatus:  http.StatusOK,
+				// 	ExpectedContent: []string{`Hello, World!`},
+				// },
 			},
 		},
 	}
@@ -83,6 +170,8 @@ func TestReactions(t *testing.T) {
 				scenario := mergeScenario(testSet.baseTest, authBasedExpectation)
 				scenario.Test(t)
 			}
+
+			require.NotEmpty(t, server.Entries)
 		})
 	}
 }
diff --git a/testing/testdata.go b/testing/testdata.go
index 2eb1b0ae..55431f52 100644
--- a/testing/testdata.go
+++ b/testing/testdata.go
@@ -70,8 +70,8 @@ func reactionTestData(t *testing.T, app core.App) {
 	record.Set("name", "Reaction")
 	record.Set("trigger", "webhook")
 	record.Set("triggerdata", `{"path":"test"}`)
-	record.Set("reaction", "python")
-	record.Set("reactiondata", `{"bootstrap":"requests","script":"print('Hello, World!')"}`)
+	record.Set("action", "python")
+	record.Set("actiondata", `{"bootstrap":"requests","script":"print('Hello, World!')"}`)
 
 	if err := app.Dao().SaveRecord(record); err != nil {
 		t.Fatal(err)
@@ -82,8 +82,20 @@ func reactionTestData(t *testing.T, app core.App) {
 	record.Set("name", "Reaction")
 	record.Set("trigger", "webhook")
 	record.Set("triggerdata", `{"path":"test2"}`)
-	record.Set("reaction", "webhook")
-	record.Set("reactiondata", `{"headers":{"Content-Type":"application/json"},"url":"http://localhost:8080/test"}`)
+	record.Set("action", "webhook")
+	record.Set("actiondata", `{"headers":{"Content-Type":"application/json"},"url":"http://127.0.0.1:12345/webhook"}`)
+
+	if err := app.Dao().SaveRecord(record); err != nil {
+		t.Fatal(err)
+	}
+
+	record = models.NewRecord(collection)
+	record.SetId("r_reaction_hook")
+	record.Set("name", "Hook")
+	record.Set("trigger", "hook")
+	record.Set("triggerdata", `{"collections":["tickets"],"events":["create"]}`)
+	record.Set("action", "python")
+	record.Set("actiondata", `{"bootstrap":"requests","script":"import requests\nrequests.post('http://127.0.0.1:12346/test', json={'test':True})"}`)
 
 	if err := app.Dao().SaveRecord(record); err != nil {
 		t.Fatal(err)
diff --git a/ui/src/components/reaction/ReactionForm.vue b/ui/src/components/reaction/ReactionForm.vue
index 7e634b9d..4be4041d 100644
--- a/ui/src/components/reaction/ReactionForm.vue
+++ b/ui/src/components/reaction/ReactionForm.vue
@@ -99,8 +99,8 @@ defineRule('triggerdata.events', (value: string[]) => {
   return true
 })
 
-defineRule('reactiondata.script', (value: string) => {
-  if (values.reaction !== 'python') {
+defineRule('actiondata.script', (value: string) => {
+  if (values.action !== 'python') {
     return true
   }
 
@@ -111,8 +111,8 @@ defineRule('reactiondata.script', (value: string) => {
   return true
 })
 
-defineRule('reactiondata.url', (value: string) => {
-  if (values.reaction !== 'webhook') {
+defineRule('actiondata.url', (value: string) => {
+  if (values.action !== 'webhook') {
     return true
   }
 
@@ -132,8 +132,8 @@ const { handleSubmit, validate, values } = useForm({
     name: '',
     trigger: '',
     triggerdata: {},
-    reaction: '',
-    reactiondata: {}
+    action: '',
+    actiondata: {}
   },
   validationSchema: {
     name: 'required',
@@ -142,8 +142,8 @@ const { handleSubmit, validate, values } = useForm({
     'triggerdata.path': 'triggerdata.path',
     'triggerdata.collections': 'triggerdata.collections',
     'triggerdata.events': 'triggerdata.events',
-    'reactiondata.script': 'reactiondata.script',
-    'reactiondata.url': 'reactiondata.url',
+    'actiondata.script': 'actiondata.script',
+    'actiondata.url': 'actiondata.url',
     reaction: 'required'
   }
 })
@@ -155,8 +155,8 @@ const equalReaction = (values: Reaction, reaction?: Reaction): boolean => {
     reaction.name === values.name &&
     reaction.trigger === values.trigger &&
     JSON.stringify(reaction.triggerdata) === JSON.stringify(values.triggerdata) &&
-    reaction.reaction === values.reaction &&
-    JSON.stringify(reaction.reactiondata) === JSON.stringify(values.reactiondata)
+    reaction.action === values.action &&
+    JSON.stringify(reaction.actiondata) === JSON.stringify(values.actiondata)
   )
 }
 
diff --git a/ui/src/components/reaction/ReactionPythonFormFields.vue b/ui/src/components/reaction/ReactionPythonFormFields.vue
index 68b41f87..52ed45e7 100644
--- a/ui/src/components/reaction/ReactionPythonFormFields.vue
+++ b/ui/src/components/reaction/ReactionPythonFormFields.vue
@@ -11,7 +11,7 @@ import {
 </script>
 
 <template>
-  <FormField name="reactiondata.requirements" v-slot="{ componentField }">
+  <FormField name="actiondata.requirements" v-slot="{ componentField }">
     <FormItem>
       <FormLabel for="requirements" class="text-right">requirements.txt</FormLabel>
       <FormControl>
@@ -21,7 +21,7 @@ import {
       <FormMessage />
     </FormItem>
   </FormField>
-  <FormField name="reactiondata.script" v-slot="{ componentField }" validate-on-input>
+  <FormField name="actiondata.script" v-slot="{ componentField }" validate-on-input>
     <FormItem>
       <FormLabel for="script" class="text-right">Script</FormLabel>
       <FormControl>
diff --git a/ui/src/components/reaction/ReactionWebhookFormFields.vue b/ui/src/components/reaction/ReactionWebhookFormFields.vue
index 405428b7..aa05b5e2 100644
--- a/ui/src/components/reaction/ReactionWebhookFormFields.vue
+++ b/ui/src/components/reaction/ReactionWebhookFormFields.vue
@@ -12,7 +12,7 @@ import { Input } from '@/components/ui/input'
 </script>
 
 <template>
-  <FormField name="reactiondata.headers" v-slot="{ value, handleChange }">
+  <FormField name="actiondata.headers" v-slot="{ value, handleChange }">
     <FormItem>
       <FormLabel for="headers" class="text-right">Headers</FormLabel>
       <FormControl>
@@ -27,7 +27,7 @@ import { Input } from '@/components/ui/input'
       <FormMessage />
     </FormItem>
   </FormField>
-  <FormField name="reactiondata.url" v-slot="{ componentField }" validate-on-input>
+  <FormField name="actiondata.url" v-slot="{ componentField }" validate-on-input>
     <FormItem>
       <FormLabel for="url" class="text-right">URL</FormLabel>
       <FormControl>
diff --git a/ui/src/lib/types.ts b/ui/src/lib/types.ts
index 1b4eff22..36c271a4 100644
--- a/ui/src/lib/types.ts
+++ b/ui/src/lib/types.ts
@@ -137,8 +137,8 @@ export interface Reaction {
   name: string
   trigger: string
   triggerdata: any
-  reaction: string
-  reactiondata: any
+  action: string
+  actiondata: any
 
   created: string
   updated: string
diff --git a/app/webhooks.go b/webhook/webhooks.go
similarity index 86%
rename from app/webhooks.go
rename to webhook/webhooks.go
index 2f137741..2d367336 100644
--- a/app/webhooks.go
+++ b/webhook/webhooks.go
@@ -1,4 +1,4 @@
-package app
+package webhook
 
 import (
 	"bytes"
@@ -27,7 +27,7 @@ type Webhook struct {
 	Destination string `db:"destination" json:"destination"`
 }
 
-func attachWebhooks(app core.App) {
+func BindHooks(app core.App) {
 	migrations.Register(func(db dbx.Builder) error {
 		return daos.New(db).SaveCollection(&models.Collection{
 			Name:   webhooksCollection,
@@ -72,7 +72,7 @@ type Payload struct {
 	Admin      *models.Admin  `json:"admin,omitempty"`
 }
 
-func event(app core.App, action, collection string, record *models.Record, ctx echo.Context) error {
+func event(app core.App, event, collection string, record *models.Record, ctx echo.Context) error {
 	auth, _ := ctx.Get(apis.ContextAuthRecordKey).(*models.Record)
 	admin, _ := ctx.Get(apis.ContextAdminKey).(*models.Admin)
 
@@ -90,7 +90,7 @@ func event(app core.App, action, collection string, record *models.Record, ctx e
 	}
 
 	payload, err := json.Marshal(&Payload{
-		Action:     action,
+		Action:     event,
 		Collection: collection,
 		Record:     record,
 		Auth:       auth,
@@ -102,9 +102,9 @@ func event(app core.App, action, collection string, record *models.Record, ctx e
 
 	for _, webhook := range webhooks {
 		if err := sendWebhook(ctx.Request().Context(), webhook, payload); err != nil {
-			app.Logger().Error("failed to send webhook", "action", action, "name", webhook.Name, "collection", webhook.Collection, "destination", webhook.Destination, "error", err.Error())
+			app.Logger().Error("failed to send webhook", "action", event, "name", webhook.Name, "collection", webhook.Collection, "destination", webhook.Destination, "error", err.Error())
 		} else {
-			app.Logger().Info("webhook sent", "action", action, "name", webhook.Name, "collection", webhook.Collection, "destination", webhook.Destination)
+			app.Logger().Info("webhook sent", "action", event, "name", webhook.Name, "collection", webhook.Collection, "destination", webhook.Destination)
 		}
 	}
 

From 4d780f559541636f4249b67adefb40b23cf12ee0 Mon Sep 17 00:00:00 2001
From: Jonas Plum <git@cugu.eu>
Date: Thu, 18 Jul 2024 22:15:01 -0700
Subject: [PATCH 12/17] refactor: cleanup

---
 reaction/action/webhook/payload.go            |   2 +-
 reaction/action/webhook/payload_test.go       |  49 ++++++
 reaction/action/webhook/request.go            |  79 ---------
 reaction/action/webhook/request_test.go       |  79 ---------
 reaction/action/webhook/response.go           |  38 ----
 reaction/action/webhook/webhook.go            |   8 +-
 reaction/trigger/hook/hook.go                 |  41 +++--
 reaction/trigger/webhook/reaction_test.go     |  55 ------
 reaction/trigger/webhook/request.go           |  23 +++
 reaction/trigger/webhook/request_test.go      |  37 ++++
 reaction/trigger/webhook/webhook.go           | 105 +++++++----
 .../trigger/webhook/webhook_response_test.go  | 166 ------------------
 reaction/trigger/webhook/webhook_test.go      |  41 -----
 13 files changed, 209 insertions(+), 514 deletions(-)
 create mode 100644 reaction/action/webhook/payload_test.go
 delete mode 100644 reaction/action/webhook/request.go
 delete mode 100644 reaction/action/webhook/request_test.go
 delete mode 100644 reaction/trigger/webhook/reaction_test.go
 create mode 100644 reaction/trigger/webhook/request.go
 create mode 100644 reaction/trigger/webhook/request_test.go
 delete mode 100644 reaction/trigger/webhook/webhook_response_test.go
 delete mode 100644 reaction/trigger/webhook/webhook_test.go

diff --git a/reaction/action/webhook/payload.go b/reaction/action/webhook/payload.go
index 966bbd19..0da9b1c2 100644
--- a/reaction/action/webhook/payload.go
+++ b/reaction/action/webhook/payload.go
@@ -6,7 +6,7 @@ import (
 	"unicode/utf8"
 )
 
-func encodeBody(requestBody io.Reader) (string, bool) {
+func EncodeBody(requestBody io.Reader) (string, bool) {
 	body, err := io.ReadAll(requestBody)
 	if err != nil {
 		return "", false
diff --git a/reaction/action/webhook/payload_test.go b/reaction/action/webhook/payload_test.go
new file mode 100644
index 00000000..cb838eed
--- /dev/null
+++ b/reaction/action/webhook/payload_test.go
@@ -0,0 +1,49 @@
+package webhook
+
+import (
+	"bytes"
+	"io"
+	"testing"
+)
+
+func TestEncodeBody(t *testing.T) {
+	type args struct {
+		requestBody io.Reader
+	}
+
+	tests := []struct {
+		name  string
+		args  args
+		want  string
+		want1 bool
+	}{
+		{
+			name: "utf8",
+			args: args{
+				requestBody: bytes.NewBufferString("body"),
+			},
+			want:  "body",
+			want1: false,
+		},
+		{
+			name: "non-utf8",
+			args: args{
+				requestBody: bytes.NewBufferString("body\xe0"),
+			},
+			want:  "Ym9keeA=",
+			want1: true,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			got, got1 := EncodeBody(tt.args.requestBody)
+			if got != tt.want {
+				t.Errorf("EncodeBody() got = %v, want %v", got, tt.want)
+			}
+
+			if got1 != tt.want1 {
+				t.Errorf("EncodeBody() got1 = %v, want %v", got1, tt.want1)
+			}
+		})
+	}
+}
diff --git a/reaction/action/webhook/request.go b/reaction/action/webhook/request.go
deleted file mode 100644
index 506514a9..00000000
--- a/reaction/action/webhook/request.go
+++ /dev/null
@@ -1,79 +0,0 @@
-package webhook
-
-import (
-	"encoding/json"
-	"fmt"
-	"log/slog"
-	"net/http"
-	"net/url"
-)
-
-func RequestFromHTTPRequest(r *http.Request) (string, error) {
-	body, isBase64Encoded := encodeBody(r.Body)
-
-	payload, err := json.Marshal(&Request{
-		Method:          r.Method,
-		Path:            r.URL.EscapedPath(),
-		Headers:         r.Header,
-		Query:           r.URL.Query(),
-		Body:            body,
-		IsBase64Encoded: isBase64Encoded,
-	})
-	if err != nil {
-		return "", err
-	}
-
-	return string(payload), nil
-}
-
-type Request struct {
-	Method          string      `json:"method"`
-	Path            string      `json:"path"`
-	Headers         http.Header `json:"headers"`
-	Query           url.Values  `json:"query"`
-	Body            string      `json:"body"`
-	IsBase64Encoded bool        `json:"isBase64Encoded"`
-}
-
-func ErrResponse(w http.ResponseWriter, status int, msg string) {
-	w.Header().Set("Content-Type", "application/json; charset=utf-8")
-
-	body, err := json.Marshal(map[string]string{"error": msg})
-	if err != nil {
-		body = []byte(fmt.Sprintf(`{"error": "%s"}`, msg))
-	}
-
-	response(w, status, body)
-}
-
-const (
-	JSONContentType = "application/json; charset=utf-8"
-	TextContentType = "text/plain; charset=utf-8"
-)
-
-// textResponse returns a response based on the output type.
-func textResponse(w http.ResponseWriter, output []byte) {
-	if isJSON(output) {
-		w.Header().Set("Content-Type", JSONContentType)
-	} else {
-		w.Header().Set("Content-Type", TextContentType)
-	}
-
-	response(w, http.StatusOK, output)
-}
-
-func response(w http.ResponseWriter, statusCode int, body []byte) {
-	w.WriteHeader(statusCode)
-
-	_, err := w.Write(body)
-	if err != nil {
-		slog.Error(fmt.Sprintf("Error writing response: %s", err.Error()))
-	}
-}
-
-// isJSON checks if the data is JSON.
-func isJSON(data []byte) bool {
-	var msg json.RawMessage
-
-	return json.Unmarshal(data, &msg) == nil
-}
diff --git a/reaction/action/webhook/request_test.go b/reaction/action/webhook/request_test.go
deleted file mode 100644
index f36a7a4c..00000000
--- a/reaction/action/webhook/request_test.go
+++ /dev/null
@@ -1,79 +0,0 @@
-package webhook
-
-import (
-	"encoding/json"
-	"fmt"
-	"net/http"
-	"net/http/httptest"
-	"strings"
-	"testing"
-
-	"github.com/stretchr/testify/assert"
-)
-
-func Test_requestToPayload(t *testing.T) {
-	type args struct {
-		r *http.Request
-	}
-
-	tests := []struct {
-		name    string
-		args    args
-		want    any
-		wantErr assert.ErrorAssertionFunc
-	}{
-		{
-			name: "get request",
-			args: args{r: httptest.NewRequest(http.MethodGet, "/action/test", nil)},
-			want: map[string]any{
-				"method":          "GET",
-				"path":            "/action/test",
-				"headers":         map[string]any{},
-				"query":           map[string]any{},
-				"body":            "",
-				"isBase64Encoded": false,
-			},
-			wantErr: assert.NoError,
-		},
-		{
-			name: "post request with query",
-			args: args{r: httptest.NewRequest(http.MethodPost, "/action/test?foo=bar", strings.NewReader("body"))},
-			want: map[string]any{
-				"method":          "POST",
-				"path":            "/action/test",
-				"headers":         map[string]any{},
-				"query":           map[string]any{"foo": []string{"bar"}},
-				"body":            "body",
-				"isBase64Encoded": false,
-			},
-			wantErr: assert.NoError,
-		},
-		{
-			name: "post request with non-utf8 byte",
-			args: args{r: httptest.NewRequest(http.MethodPost, "/action/test", strings.NewReader("body\x80"))},
-			want: map[string]any{
-				"method":          "POST",
-				"path":            "/action/test",
-				"headers":         map[string]any{},
-				"query":           map[string]any{},
-				"body":            "Ym9keYA=",
-				"isBase64Encoded": true,
-			},
-			wantErr: assert.NoError,
-		},
-	}
-	for _, tt := range tests {
-		t.Run(tt.name, func(t *testing.T) {
-			got, err := RequestFromHTTPRequest(tt.args.r)
-
-			if !tt.wantErr(t, err, fmt.Sprintf("requestToPayload(%v)", tt.args.r)) {
-				return
-			}
-
-			want, err := json.Marshal(tt.want)
-			if assert.NoError(t, err, "json.Marshal(%v)", tt.want) {
-				assert.JSONEq(t, string(want), got, "requestToPayload(%v)", tt.args.r)
-			}
-		})
-	}
-}
diff --git a/reaction/action/webhook/response.go b/reaction/action/webhook/response.go
index 2b708a95..fca807ac 100644
--- a/reaction/action/webhook/response.go
+++ b/reaction/action/webhook/response.go
@@ -1,50 +1,12 @@
 package webhook
 
 import (
-	"encoding/base64"
-	"encoding/json"
 	"net/http"
 )
 
-func OutputToResponse(w http.ResponseWriter, output []byte) {
-	var catalystResponse Response
-	if err := json.Unmarshal(output, &catalystResponse); err == nil && catalystResponse.StatusCode != 0 {
-		catalystResponse.ToResponse(w)
-
-		return
-	}
-
-	textResponse(w, output)
-}
-
 type Response struct {
 	StatusCode      int         `json:"statusCode"`
 	Headers         http.Header `json:"headers"`
 	Body            string      `json:"body"`
 	IsBase64Encoded bool        `json:"isBase64Encoded"`
 }
-
-func (cr *Response) ToResponse(w http.ResponseWriter) {
-	for key, values := range cr.Headers {
-		for _, value := range values {
-			w.Header().Add(key, value)
-		}
-	}
-
-	var body []byte
-
-	if cr.IsBase64Encoded {
-		var err error
-
-		body, err = base64.StdEncoding.DecodeString(cr.Body)
-		if err != nil {
-			ErrResponse(w, http.StatusInternalServerError, "Error decoding base64 body")
-
-			return
-		}
-	} else {
-		body = []byte(cr.Body)
-	}
-
-	textResponse(w, body)
-}
diff --git a/reaction/action/webhook/webhook.go b/reaction/action/webhook/webhook.go
index 4168444a..4bf0c24b 100644
--- a/reaction/action/webhook/webhook.go
+++ b/reaction/action/webhook/webhook.go
@@ -28,14 +28,12 @@ func (a *Webhook) Run(ctx context.Context, payload string) ([]byte, error) {
 	}
 	defer res.Body.Close()
 
-	body, isBase64Encoded := encodeBody(res.Body)
+	body, isBase64Encoded := EncodeBody(res.Body)
 
-	catalystResponse := Response{
+	return json.Marshal(Response{
 		StatusCode:      res.StatusCode,
 		Headers:         res.Header,
 		Body:            body,
 		IsBase64Encoded: isBase64Encoded,
-	}
-
-	return json.Marshal(catalystResponse)
+	})
 }
diff --git a/reaction/trigger/hook/hook.go b/reaction/trigger/hook/hook.go
index ddfaba0c..36bf048e 100644
--- a/reaction/trigger/hook/hook.go
+++ b/reaction/trigger/hook/hook.go
@@ -2,12 +2,14 @@ package hook
 
 import (
 	"encoding/json"
+	"fmt"
 	"slices"
 
 	"github.com/labstack/echo/v5"
 	"github.com/pocketbase/dbx"
 	"github.com/pocketbase/pocketbase/apis"
 	"github.com/pocketbase/pocketbase/core"
+	"github.com/pocketbase/pocketbase/daos"
 	"github.com/pocketbase/pocketbase/models"
 
 	"github.com/SecurityBrewery/catalyst/migrations"
@@ -21,27 +23,36 @@ type Hook struct {
 }
 
 func BindHooks(app core.App) {
-	// Bind hooks
 	app.OnRecordAfterCreateRequest().Add(func(e *core.RecordCreateEvent) error {
-		return hook(app, "create", e.Collection.Name, e.Record, e.HttpContext)
+		if err := hook(app.Dao(), "create", e.Collection.Name, e.Record, e.HttpContext); err != nil {
+			app.Logger().Error("failed to find hook reaction", "error", err.Error())
+		}
+
+		return nil
 	})
 	app.OnRecordAfterUpdateRequest().Add(func(e *core.RecordUpdateEvent) error {
-		return hook(app, "update", e.Collection.Name, e.Record, e.HttpContext)
+		if err := hook(app.Dao(), "update", e.Collection.Name, e.Record, e.HttpContext); err != nil {
+			app.Logger().Error("failed to find hook reaction", "error", err.Error())
+		}
+
+		return nil
 	})
 	app.OnRecordAfterDeleteRequest().Add(func(e *core.RecordDeleteEvent) error {
-		return hook(app, "delete", e.Collection.Name, e.Record, e.HttpContext)
+		if err := hook(app.Dao(), "delete", e.Collection.Name, e.Record, e.HttpContext); err != nil {
+			app.Logger().Error("failed to find hook reaction", "error", err.Error())
+		}
+
+		return nil
 	})
 }
 
-func hook(app core.App, event, collection string, record *models.Record, ctx echo.Context) error {
+func hook(dao *daos.Dao, event, collection string, record *models.Record, ctx echo.Context) error {
 	auth, _ := ctx.Get(apis.ContextAuthRecordKey).(*models.Record)
 	admin, _ := ctx.Get(apis.ContextAdminKey).(*models.Admin)
 
-	hook, found, err := findByHookTrigger(app, collection, event)
+	hook, found, err := findByHookTrigger(dao, collection, event)
 	if err != nil {
-		app.Logger().Error("failed to find hook reaction", "error", err.Error())
-
-		return nil
+		return fmt.Errorf("failed to find hook reaction: %w", err)
 	}
 
 	if !found {
@@ -56,23 +67,19 @@ func hook(app core.App, event, collection string, record *models.Record, ctx ech
 		Admin:      admin,
 	})
 	if err != nil {
-		app.Logger().Error("failed to marshal payload", "error", err.Error())
-
-		return nil
+		return fmt.Errorf("failed to marshal payload: %w", err)
 	}
 
 	_, err = action.Run(ctx.Request().Context(), hook.GetString("action"), hook.GetString("actiondata"), string(payload))
 	if err != nil {
-		app.Logger().Error("failed to run hook reaction", "error", err.Error())
-
-		return nil
+		return fmt.Errorf("failed to run hook reaction: %w", err)
 	}
 
 	return nil
 }
 
-func findByHookTrigger(app core.App, collection, event string) (*models.Record, bool, error) {
-	records, err := app.Dao().FindRecordsByExpr(migrations.ReactionCollectionName, dbx.HashExp{"trigger": "hook"})
+func findByHookTrigger(dao *daos.Dao, collection, event string) (*models.Record, bool, error) {
+	records, err := dao.FindRecordsByExpr(migrations.ReactionCollectionName, dbx.HashExp{"trigger": "hook"})
 	if err != nil {
 		return nil, false, err
 	}
diff --git a/reaction/trigger/webhook/reaction_test.go b/reaction/trigger/webhook/reaction_test.go
deleted file mode 100644
index b974bdb7..00000000
--- a/reaction/trigger/webhook/reaction_test.go
+++ /dev/null
@@ -1,55 +0,0 @@
-package webhook
-
-import (
-	"io"
-	"net/http"
-	"strings"
-	"testing"
-
-	"github.com/stretchr/testify/assert"
-)
-
-type testResult struct {
-	Code   int
-	Header http.Header
-	Body   string
-}
-
-func resultEqual(t *testing.T, got *http.Response, want testResult) {
-	t.Helper()
-
-	assert.Equal(t, want.Code, got.StatusCode)
-
-	assertHeaderEqual(t, got.Header, want.Header)
-
-	body, err := io.ReadAll(got.Body)
-	if assert.NoError(t, err) {
-		if strings.Contains(want.Header.Get("Content-Type"), "application/json") {
-			assert.JSONEq(t, want.Body, string(body))
-		} else {
-			assert.Equal(t, want.Body, string(body))
-		}
-	}
-}
-
-func assertHeaderEqual(t *testing.T, got, want http.Header) {
-	t.Helper()
-
-	if assert.Equal(t, len(want), len(got)) {
-		if assert.ElementsMatch(t, mapKeys(got), mapKeys(want)) {
-			for k := range got {
-				assert.ElementsMatch(t, got[k], want[k])
-			}
-		}
-	}
-}
-
-func mapKeys[M ~map[K]V, K comparable, V any](m M) []K {
-	keys := make([]K, 0, len(m))
-
-	for k := range m {
-		keys = append(keys, k)
-	}
-
-	return keys
-}
diff --git a/reaction/trigger/webhook/request.go b/reaction/trigger/webhook/request.go
new file mode 100644
index 00000000..af19c984
--- /dev/null
+++ b/reaction/trigger/webhook/request.go
@@ -0,0 +1,23 @@
+package webhook
+
+import (
+	"encoding/json"
+	"net/http"
+	"net/url"
+)
+
+type Request struct {
+	Method          string      `json:"method"`
+	Path            string      `json:"path"`
+	Headers         http.Header `json:"headers"`
+	Query           url.Values  `json:"query"`
+	Body            string      `json:"body"`
+	IsBase64Encoded bool        `json:"isBase64Encoded"`
+}
+
+// isJSON checks if the data is JSON.
+func isJSON(data []byte) bool {
+	var msg json.RawMessage
+
+	return json.Unmarshal(data, &msg) == nil
+}
diff --git a/reaction/trigger/webhook/request_test.go b/reaction/trigger/webhook/request_test.go
new file mode 100644
index 00000000..cb8dbc28
--- /dev/null
+++ b/reaction/trigger/webhook/request_test.go
@@ -0,0 +1,37 @@
+package webhook
+
+import "testing"
+
+func Test_isJSON(t *testing.T) {
+	type args struct {
+		data []byte
+	}
+
+	tests := []struct {
+		name string
+		args args
+		want bool
+	}{
+		{
+			name: "valid JSON",
+			args: args{
+				data: []byte(`{"key": "value"}`),
+			},
+			want: true,
+		},
+		{
+			name: "invalid JSON",
+			args: args{
+				data: []byte(`{"key": "value"`),
+			},
+			want: false,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			if got := isJSON(tt.args.data); got != tt.want {
+				t.Errorf("isJSON() = %v, want %v", got, tt.want)
+			}
+		})
+	}
+}
diff --git a/reaction/trigger/webhook/webhook.go b/reaction/trigger/webhook/webhook.go
index f34a5a1d..9df9e064 100644
--- a/reaction/trigger/webhook/webhook.go
+++ b/reaction/trigger/webhook/webhook.go
@@ -1,7 +1,9 @@
 package webhook
 
 import (
+	"encoding/base64"
 	"encoding/json"
+	"fmt"
 	"net/http"
 	"strings"
 
@@ -9,6 +11,7 @@ import (
 	"github.com/pocketbase/dbx"
 	"github.com/pocketbase/pocketbase/apis"
 	"github.com/pocketbase/pocketbase/core"
+	"github.com/pocketbase/pocketbase/daos"
 	"github.com/pocketbase/pocketbase/models"
 
 	"github.com/SecurityBrewery/catalyst/migrations"
@@ -22,9 +25,8 @@ type Webhook struct {
 }
 
 func BindHooks(app core.App) {
-	// Bind webhooks
 	app.OnBeforeServe().Add(func(e *core.ServeEvent) error {
-		e.Router.Any("/reaction/*", handle(e.App))
+		e.Router.Any("/reaction/*", handle(e.App.Dao()))
 
 		return nil
 	})
@@ -32,48 +34,69 @@ func BindHooks(app core.App) {
 
 const prefix = "/reaction/"
 
-func handle(app core.App) func(c echo.Context) error {
+func handle(dao *daos.Dao) func(c echo.Context) error {
 	return func(c echo.Context) error {
-		r := c.Request()
-		w := c.Response()
-
-		if !strings.HasPrefix(r.URL.Path, prefix) {
-			return apis.NewApiError(http.StatusNotFound, "wrong prefix", nil)
+		record, payload, apiErr := parseRequest(dao, c.Request())
+		if apiErr != nil {
+			return apiErr
 		}
 
-		reactionName := strings.TrimPrefix(r.URL.Path, prefix)
-
-		record, trigger, found, err := findByWebhookTrigger(app, reactionName)
+		output, err := action.Run(c.Request().Context(), record.GetString("action"), record.GetString("actiondata"), string(payload))
 		if err != nil {
-			return apis.NewNotFoundError(err.Error(), nil)
+			return apis.NewApiError(http.StatusInternalServerError, err.Error(), nil)
 		}
 
-		if !found {
-			return apis.NewNotFoundError("reaction not found", nil)
-		}
+		return writeOutput(c, output)
+	}
+}
 
-		if trigger.Token != "" && bearerToken(r) != trigger.Token {
-			return apis.NewUnauthorizedError("invalid token", nil)
-		}
+func parseRequest(dao *daos.Dao, r *http.Request) (*models.Record, []byte, *apis.ApiError) {
+	if !strings.HasPrefix(r.URL.Path, prefix) {
+		return nil, nil, apis.NewApiError(http.StatusNotFound, "wrong prefix", nil)
+	}
 
-		payload, err := webhook.RequestFromHTTPRequest(r)
-		if err != nil {
-			return apis.NewApiError(http.StatusInternalServerError, err.Error(), nil)
+	reactionName := strings.TrimPrefix(r.URL.Path, prefix)
+
+	record, trigger, found, err := findByWebhookTrigger(dao, reactionName)
+	if err != nil {
+		return nil, nil, apis.NewNotFoundError(err.Error(), nil)
+	}
+
+	if !found {
+		return nil, nil, apis.NewNotFoundError("reaction not found", nil)
+	}
+
+	if trigger.Token != "" {
+		auth := r.Header.Get("Authorization")
+
+		if !strings.HasPrefix(auth, "Bearer ") {
+			return nil, nil, apis.NewUnauthorizedError("missing token", nil)
 		}
 
-		output, err := action.Run(r.Context(), record.GetString("action"), record.GetString("actiondata"), payload)
-		if err != nil {
-			return apis.NewApiError(http.StatusInternalServerError, err.Error(), nil)
+		if trigger.Token != strings.TrimPrefix(auth, "Bearer ") {
+			return nil, nil, apis.NewUnauthorizedError("invalid token", nil)
 		}
+	}
 
-		webhook.OutputToResponse(w, output)
+	body, isBase64Encoded := webhook.EncodeBody(r.Body)
 
-		return nil
+	payload, err := json.Marshal(&Request{
+		Method:          r.Method,
+		Path:            r.URL.EscapedPath(),
+		Headers:         r.Header,
+		Query:           r.URL.Query(),
+		Body:            body,
+		IsBase64Encoded: isBase64Encoded,
+	})
+	if err != nil {
+		return nil, nil, apis.NewApiError(http.StatusInternalServerError, err.Error(), nil)
 	}
+
+	return record, payload, nil
 }
 
-func findByWebhookTrigger(app core.App, path string) (*models.Record, *Webhook, bool, error) {
-	records, err := app.Dao().FindRecordsByExpr(migrations.ReactionCollectionName, dbx.HashExp{"trigger": "webhook"})
+func findByWebhookTrigger(dao *daos.Dao, path string) (*models.Record, *Webhook, bool, error) {
+	records, err := dao.FindRecordsByExpr(migrations.ReactionCollectionName, dbx.HashExp{"trigger": "webhook"})
 	if err != nil {
 		return nil, nil, false, err
 	}
@@ -96,12 +119,28 @@ func findByWebhookTrigger(app core.App, path string) (*models.Record, *Webhook,
 	return nil, nil, false, nil
 }
 
-func bearerToken(r *http.Request) string {
-	auth := r.Header.Get("Authorization")
+func writeOutput(c echo.Context, output []byte) error {
+	var catalystResponse webhook.Response
+	if err := json.Unmarshal(output, &catalystResponse); err == nil && catalystResponse.StatusCode != 0 {
+		for key, values := range catalystResponse.Headers {
+			for _, value := range values {
+				c.Response().Header().Add(key, value)
+			}
+		}
+
+		if catalystResponse.IsBase64Encoded {
+			output, err = base64.StdEncoding.DecodeString(catalystResponse.Body)
+			if err != nil {
+				return fmt.Errorf("error decoding base64 body: %w", err)
+			}
+		} else {
+			output = []byte(catalystResponse.Body)
+		}
+	}
 
-	if !strings.HasPrefix(auth, "Bearer ") {
-		return ""
+	if isJSON(output) {
+		return c.JSON(http.StatusOK, json.RawMessage(output))
 	}
 
-	return strings.TrimPrefix(auth, "Bearer ")
+	return c.String(http.StatusOK, string(output))
 }
diff --git a/reaction/trigger/webhook/webhook_response_test.go b/reaction/trigger/webhook/webhook_response_test.go
deleted file mode 100644
index 1494ae99..00000000
--- a/reaction/trigger/webhook/webhook_response_test.go
+++ /dev/null
@@ -1,166 +0,0 @@
-package webhook
-
-import (
-	"net/http"
-	"net/http/httptest"
-	"testing"
-
-	"github.com/SecurityBrewery/catalyst/reaction/action/webhook"
-)
-
-func Test_outputToResponse(t *testing.T) {
-	type args struct {
-		output []byte
-	}
-
-	type want struct {
-		Result testResult
-	}
-
-	tests := []struct {
-		name string
-		args args
-		want want
-	}{
-		{
-			name: "non-http output",
-			args: args{
-				output: []byte(`body`),
-			},
-			want: want{
-				Result: testResult{
-					Code:   200,
-					Header: http.Header{"Content-Type": []string{webhook.TextContentType}},
-					Body:   "body",
-				},
-			},
-		},
-		{
-			name: "http text output",
-			args: args{
-				output: []byte(`{"statusCode": 200, "body": "body"}`),
-			},
-			want: want{
-				Result: testResult{
-					Code:   200,
-					Header: http.Header{"Content-Type": []string{webhook.TextContentType}},
-					Body:   "body",
-				},
-			},
-		},
-		{
-			name: "http json output",
-			args: args{
-				output: []byte(`{"statusCode": 200,  "body": "{\"key\": \"value\"}"}`),
-			},
-			want: want{
-				Result: testResult{
-					Code:   200,
-					Header: http.Header{"Content-Type": []string{webhook.JSONContentType}},
-					Body:   `{"key": "value"}`,
-				},
-			},
-		},
-		{
-			name: "http base64 output",
-			args: args{
-				output: []byte(`{"statusCode": 200, "body": "Ym9keQ==", "isBase64Encoded": true}`),
-			},
-			want: want{
-				Result: testResult{
-					Code:   200,
-					Header: http.Header{"Content-Type": []string{webhook.TextContentType}},
-					Body:   "body",
-				},
-			},
-		},
-	}
-	for _, tt := range tests {
-		t.Run(tt.name, func(t *testing.T) {
-			w := httptest.NewRecorder()
-
-			webhook.OutputToResponse(w, tt.args.output)
-
-			w.Flush()
-
-			resultEqual(t, w.Result(), tt.want.Result)
-		})
-	}
-}
-
-func TestCatalystReactionResponse_toResponse(t *testing.T) {
-	type fields struct {
-		StatusCode      int
-		Headers         http.Header
-		Body            string
-		IsBase64Encoded bool
-	}
-
-	type want struct {
-		Result testResult
-	}
-
-	tests := []struct {
-		name   string
-		fields fields
-		want   want
-	}{
-		{
-			name:   "Test 1",
-			fields: fields{StatusCode: 200, Headers: nil, Body: "body", IsBase64Encoded: false},
-			want:   want{Result: testResult{Code: 200, Header: map[string][]string{"Content-Type": {"text/plain; charset=utf-8"}}, Body: "body"}},
-		},
-	}
-	for _, tt := range tests {
-		t.Run(tt.name, func(t *testing.T) {
-			w := httptest.NewRecorder()
-
-			cr := &webhook.Response{
-				StatusCode:      tt.fields.StatusCode,
-				Headers:         tt.fields.Headers,
-				Body:            tt.fields.Body,
-				IsBase64Encoded: tt.fields.IsBase64Encoded,
-			}
-			cr.ToResponse(w)
-
-			resultEqual(t, w.Result(), tt.want.Result)
-		})
-	}
-}
-
-func Test_errResponse(t *testing.T) {
-	type args struct {
-		status int
-		msg    string
-	}
-
-	tests := []struct {
-		name string
-		args args
-		want testResult
-	}{
-		{
-			name: "error response",
-			args: args{
-				status: http.StatusInternalServerError,
-				msg:    "error message",
-			},
-			want: testResult{
-				Code:   http.StatusInternalServerError,
-				Header: http.Header{"Content-Type": []string{webhook.JSONContentType}},
-				Body:   `{"error": "error message"}`,
-			},
-		},
-	}
-	for _, tt := range tests {
-		t.Run(tt.name, func(t *testing.T) {
-			w := httptest.NewRecorder()
-
-			webhook.ErrResponse(w, tt.args.status, tt.args.msg)
-
-			w.Flush()
-
-			resultEqual(t, w.Result(), tt.want)
-		})
-	}
-}
diff --git a/reaction/trigger/webhook/webhook_test.go b/reaction/trigger/webhook/webhook_test.go
deleted file mode 100644
index 05ec8844..00000000
--- a/reaction/trigger/webhook/webhook_test.go
+++ /dev/null
@@ -1,41 +0,0 @@
-package webhook
-
-import (
-	"net/http"
-	"testing"
-
-	"github.com/stretchr/testify/assert"
-)
-
-func Test_bearerToken(t *testing.T) {
-	type args struct {
-		r *http.Request
-	}
-
-	tests := []struct {
-		name string
-		args args
-		want string
-	}{
-		{
-			name: "no token",
-			args: args{r: &http.Request{}},
-			want: "",
-		},
-		{
-			name: "no bearer token",
-			args: args{r: &http.Request{Header: map[string][]string{"Authorization": {"xxx"}}}},
-			want: "",
-		},
-		{
-			name: "token in header",
-			args: args{r: &http.Request{Header: map[string][]string{"Authorization": {"Bearer token"}}}},
-			want: "token",
-		},
-	}
-	for _, tt := range tests {
-		t.Run(tt.name, func(t *testing.T) {
-			assert.Equalf(t, tt.want, bearerToken(tt.args.r), "bearerToken(%v)", tt.args.r)
-		})
-	}
-}

From caa9d788a22f2d88f339a1294375b085b0276b5f Mon Sep 17 00:00:00 2001
From: Jonas Plum <git@cugu.eu>
Date: Sat, 20 Jul 2024 06:15:16 +0200
Subject: [PATCH 13/17] refactor: sort buttons

---
 reaction/trigger/webhook/webhook.go           |  6 +-
 ui/src/components/common/DeleteDialog.vue     |  4 +-
 ...mFields.vue => ActionPythonFormFields.vue} |  0
 ...Fields.vue => ActionWebhookFormFields.vue} |  0
 .../components/reaction/ReactionDisplay.vue   |  2 +-
 ui/src/components/reaction/ReactionForm.vue   | 90 ++++++++++---------
 ui/src/components/reaction/ReactionList.vue   |  4 +-
 .../components/reaction/ReactionNewDialog.vue | 11 ++-
 .../components/ticket/TicketCloseDialog.vue   |  8 +-
 ui/src/components/ticket/TicketList.vue       |  2 +-
 ui/src/components/ticket/TicketNewDialog.vue  |  4 +-
 .../ticket/comment/TicketComment.vue          |  6 +-
 .../components/ticket/file/FileAddDialog.vue  |  6 +-
 .../components/ticket/link/LinkAddDialog.vue  |  8 +-
 .../ticket/timeline/TicketTimelineItem.vue    |  8 +-
 15 files changed, 87 insertions(+), 72 deletions(-)
 rename ui/src/components/reaction/{ReactionPythonFormFields.vue => ActionPythonFormFields.vue} (100%)
 rename ui/src/components/reaction/{ReactionWebhookFormFields.vue => ActionWebhookFormFields.vue} (100%)

diff --git a/reaction/trigger/webhook/webhook.go b/reaction/trigger/webhook/webhook.go
index 9df9e064..b145aca7 100644
--- a/reaction/trigger/webhook/webhook.go
+++ b/reaction/trigger/webhook/webhook.go
@@ -24,16 +24,16 @@ type Webhook struct {
 	Path  string `json:"path"`
 }
 
+const prefix = "/reaction/"
+
 func BindHooks(app core.App) {
 	app.OnBeforeServe().Add(func(e *core.ServeEvent) error {
-		e.Router.Any("/reaction/*", handle(e.App.Dao()))
+		e.Router.Any(prefix+"*", handle(e.App.Dao()))
 
 		return nil
 	})
 }
 
-const prefix = "/reaction/"
-
 func handle(dao *daos.Dao) func(c echo.Context) error {
 	return func(c echo.Context) error {
 		record, payload, apiErr := parseRequest(dao, c.Request())
diff --git a/ui/src/components/common/DeleteDialog.vue b/ui/src/components/common/DeleteDialog.vue
index d95b220e..19e98bf1 100644
--- a/ui/src/components/common/DeleteDialog.vue
+++ b/ui/src/components/common/DeleteDialog.vue
@@ -63,11 +63,11 @@ const deleteMutation = useMutation({
         >
       </DialogHeader>
 
-      <DialogFooter class="mt-2">
+      <DialogFooter class="mt-2 sm:justify-start">
+        <Button type="button" variant="destructive" @click="deleteMutation.mutate"> Delete </Button>
         <DialogClose as-child>
           <Button type="button" variant="secondary">Cancel</Button>
         </DialogClose>
-        <Button type="button" variant="destructive" @click="deleteMutation.mutate"> Delete </Button>
       </DialogFooter>
     </DialogContent>
   </Dialog>
diff --git a/ui/src/components/reaction/ReactionPythonFormFields.vue b/ui/src/components/reaction/ActionPythonFormFields.vue
similarity index 100%
rename from ui/src/components/reaction/ReactionPythonFormFields.vue
rename to ui/src/components/reaction/ActionPythonFormFields.vue
diff --git a/ui/src/components/reaction/ReactionWebhookFormFields.vue b/ui/src/components/reaction/ActionWebhookFormFields.vue
similarity index 100%
rename from ui/src/components/reaction/ReactionWebhookFormFields.vue
rename to ui/src/components/reaction/ActionWebhookFormFields.vue
diff --git a/ui/src/components/reaction/ReactionDisplay.vue b/ui/src/components/reaction/ReactionDisplay.vue
index 59082f7a..869515d7 100644
--- a/ui/src/components/reaction/ReactionDisplay.vue
+++ b/ui/src/components/reaction/ReactionDisplay.vue
@@ -54,7 +54,7 @@ const updateReactionMutation = useMutation({
 
       <ScrollArea v-if="reaction" class="flex-1">
         <div class="flex max-w-[640px] flex-col gap-4 p-4">
-          <ReactionForm :reaction="reaction" @submit="updateReactionMutation.mutate" />
+          <ReactionForm :reaction="reaction" @submit="updateReactionMutation.mutate" hide-cancel />
         </div>
       </ScrollArea>
     </div>
diff --git a/ui/src/components/reaction/ReactionForm.vue b/ui/src/components/reaction/ReactionForm.vue
index 4be4041d..028e5481 100644
--- a/ui/src/components/reaction/ReactionForm.vue
+++ b/ui/src/components/reaction/ReactionForm.vue
@@ -1,35 +1,22 @@
 <script setup lang="ts">
-import ReactionPythonFormFields from '@/components/reaction/ReactionPythonFormFields.vue'
-import ReactionWebhookFormFields from '@/components/reaction/ReactionWebhookFormFields.vue'
+import ActionPythonFormFields from '@/components/reaction/ActionPythonFormFields.vue'
+import ActionWebhookFormFields from '@/components/reaction/ActionWebhookFormFields.vue'
 import TriggerHookFormFields from '@/components/reaction/TriggerHookFormFields.vue'
 import TriggerWebhookFormFields from '@/components/reaction/TriggerWebhookFormFields.vue'
 import { Button } from '@/components/ui/button'
 import { Card, CardContent, CardHeader, CardTitle } from '@/components/ui/card'
-import {
-  FormControl,
-  FormDescription,
-  FormField,
-  FormItem,
-  FormLabel,
-  FormMessage
-} from '@/components/ui/form'
+import { FormControl, FormDescription, FormField, FormItem, FormLabel, FormMessage } from '@/components/ui/form'
 import { Input } from '@/components/ui/input'
 import { Label } from '@/components/ui/label'
-import {
-  Select,
-  SelectContent,
-  SelectGroup,
-  SelectItem,
-  SelectTrigger,
-  SelectValue
-} from '@/components/ui/select'
+import { Select, SelectContent, SelectGroup, SelectItem, SelectTrigger, SelectValue } from '@/components/ui/select'
+import { Tooltip, TooltipContent, TooltipProvider, TooltipTrigger } from '@/components/ui/tooltip'
 
 import { defineRule, useForm } from 'vee-validate'
-import { computed, watch } from 'vue'
+import { computed, ref, watch } from 'vue'
 
 import type { Reaction } from '@/lib/types'
 
-const submitDisabled = defineModel('submitDisabled')
+const submitDisabledReason = ref<string>('')
 
 const props = defineProps<{
   reaction?: Reaction
@@ -144,7 +131,7 @@ const { handleSubmit, validate, values } = useForm({
     'triggerdata.events': 'triggerdata.events',
     'actiondata.script': 'actiondata.script',
     'actiondata.url': 'actiondata.url',
-    reaction: 'required'
+    action: 'required'
   }
 })
 
@@ -164,7 +151,7 @@ watch(
   () => props.reaction,
   () => {
     if (equalReaction(values, props.reaction)) {
-      submitDisabled.value = true
+      submitDisabledReason.value = 'Make changes to save'
     }
   },
   { immediate: true }
@@ -174,13 +161,17 @@ watch(
   values,
   () => {
     if (equalReaction(values, props.reaction)) {
-      submitDisabled.value = true
+      submitDisabledReason.value = 'Make changes to save'
 
       return
     }
 
     validate({ mode: 'silent' }).then((res) => {
-      submitDisabled.value = !res.valid
+      if (res.valid) {
+        submitDisabledReason.value = ''
+      } else {
+        submitDisabledReason.value = 'Please fix the errors'
+      }
     })
   },
   { deep: true, immediate: true }
@@ -204,16 +195,16 @@ const curlExample = computed(() => {
 </script>
 
 <template>
-  <form @submit="onSubmit" class="flex flex-col gap-4">
+  <form @submit="onSubmit" class="flex flex-col gap-4 items-start">
     <FormField name="name" v-slot="{ componentField }" validate-on-input>
-      <FormItem>
+      <FormItem class="w-full">
         <FormLabel for="name" class="text-right">Name</FormLabel>
         <Input id="name" class="col-span-3" v-bind="componentField" />
         <FormMessage />
       </FormItem>
     </FormField>
 
-    <Card>
+    <Card class="w-full">
       <CardHeader>
         <CardTitle>Trigger</CardTitle>
       </CardHeader>
@@ -252,16 +243,16 @@ const curlExample = computed(() => {
       </CardContent>
     </Card>
 
-    <Card>
+    <Card class="w-full">
       <CardHeader>
-        <CardTitle>Reaction</CardTitle>
+        <CardTitle>Action</CardTitle>
       </CardHeader>
       <CardContent class="flex flex-col gap-4">
-        <FormField name="reaction" v-slot="{ componentField }" validate-on-input>
+        <FormField name="action" v-slot="{ componentField }" validate-on-input>
           <FormItem>
-            <FormLabel for="reaction" class="text-right">Type</FormLabel>
+            <FormLabel for="action" class="text-right">Type</FormLabel>
             <FormControl>
-              <Select id="reaction" class="col-span-3" v-bind="componentField">
+              <Select id="action" class="col-span-3" v-bind="componentField">
                 <SelectTrigger class="font-medium">
                   <SelectValue placeholder="Select a type" />
                 </SelectTrigger>
@@ -281,18 +272,33 @@ const curlExample = computed(() => {
           </FormItem>
         </FormField>
 
-        <ReactionPythonFormFields v-if="values.reaction === 'python'" />
-        <ReactionWebhookFormFields v-else-if="values.reaction === 'webhook'" />
+        <ActionPythonFormFields v-if="values.action === 'python'" />
+        <ActionWebhookFormFields v-else-if="values.action === 'webhook'" />
       </CardContent>
     </Card>
 
-    <slot>
-      <Button
-        type="submit"
-        :variant="submitDisabled ? 'secondary' : 'default'"
-        :disabled="submitDisabled"
-        >Save
-      </Button>
-    </slot>
+    <div class="flex gap-4">
+      <TooltipProvider :delay-duration="0">
+        <Tooltip>
+          <TooltipTrigger class="cursor-default">
+            <Button
+              type="submit"
+              :variant="submitDisabledReason !== '' ? 'secondary' : 'default'"
+              :disabled="submitDisabledReason !== ''"
+              :title="submitDisabledReason"
+            >
+              Save
+            </Button>
+          </TooltipTrigger>
+          <TooltipContent>
+            <span v-if="submitDisabledReason !== ''">
+              {{ submitDisabledReason }}
+            </span>
+            <span v-else> Save the reaction. </span>
+          </TooltipContent>
+        </Tooltip>
+      </TooltipProvider>
+      <slot name="cancel" />
+    </div>
   </form>
 </template>
diff --git a/ui/src/components/reaction/ReactionList.vue b/ui/src/components/reaction/ReactionList.vue
index 7f7f9e1b..b1f3ee5c 100644
--- a/ui/src/components/reaction/ReactionList.vue
+++ b/ui/src/components/reaction/ReactionList.vue
@@ -39,9 +39,9 @@ const triggerNiceName = (reaction: Reaction) => {
 }
 
 const reactionNiceName = (reaction: Reaction) => {
-  if (reaction.reaction === 'python') {
+  if (reaction.action === 'python') {
     return 'Python'
-  } else if (reaction.reaction === 'webhook') {
+  } else if (reaction.action === 'webhook') {
     return 'HTTP / Webhook'
   } else {
     return 'Unknown'
diff --git a/ui/src/components/reaction/ReactionNewDialog.vue b/ui/src/components/reaction/ReactionNewDialog.vue
index 776f1d50..ada20d6a 100644
--- a/ui/src/components/reaction/ReactionNewDialog.vue
+++ b/ui/src/components/reaction/ReactionNewDialog.vue
@@ -3,6 +3,7 @@ import ReactionForm from '@/components/reaction/ReactionForm.vue'
 import { Button } from '@/components/ui/button'
 import {
   Dialog,
+  DialogClose,
   DialogContent,
   DialogDescription,
   DialogHeader,
@@ -33,6 +34,8 @@ const addReactionMutation = useMutation({
   },
   onError: handleError
 })
+
+const cancel = () => isOpen.value = false
 </script>
 
 <template>
@@ -47,7 +50,13 @@ const addReactionMutation = useMutation({
       </DialogHeader>
 
       <DialogScrollContent>
-        <ReactionForm @submit="addReactionMutation.mutate" />
+        <ReactionForm @submit="addReactionMutation.mutate">
+          <template #cancel>
+            <DialogClose as-child>
+              <Button type="button" variant="secondary">Cancel</Button>
+            </DialogClose>
+          </template>
+        </ReactionForm>
       </DialogScrollContent>
     </DialogContent>
   </Dialog>
diff --git a/ui/src/components/ticket/TicketCloseDialog.vue b/ui/src/components/ticket/TicketCloseDialog.vue
index 64bc256a..b79344dd 100644
--- a/ui/src/components/ticket/TicketCloseDialog.vue
+++ b/ui/src/components/ticket/TicketCloseDialog.vue
@@ -56,13 +56,13 @@ const closeTicketMutation = useMutation({
 
       <Textarea v-model="resolution" placeholder="Closing reason" />
 
-      <DialogFooter class="mt-2">
-        <DialogClose as-child>
-          <Button type="button" variant="secondary"> Cancel</Button>
-        </DialogClose>
+      <DialogFooter class="mt-2 sm:justify-start">
         <Button type="button" variant="default" @click="closeTicketMutation.mutate()">
           Close
         </Button>
+        <DialogClose as-child>
+          <Button type="button" variant="secondary">Cancel</Button>
+        </DialogClose>
       </DialogFooter>
     </DialogContent>
   </Dialog>
diff --git a/ui/src/components/ticket/TicketList.vue b/ui/src/components/ticket/TicketList.vue
index 10ae2049..779876be 100644
--- a/ui/src/components/ticket/TicketList.vue
+++ b/ui/src/components/ticket/TicketList.vue
@@ -153,7 +153,7 @@ watch([tab, props.selectedType, page, perPage], () => refetch())
             </span>
 
             <div>
-              <TooltipProvider>
+              <TooltipProvider :delay-duration="0">
                 <Tooltip>
                   <TooltipTrigger as-child>
                     <Info class="ml-2 size-4 text-muted-foreground" />
diff --git a/ui/src/components/ticket/TicketNewDialog.vue b/ui/src/components/ticket/TicketNewDialog.vue
index 67538edb..06be476b 100644
--- a/ui/src/components/ticket/TicketNewDialog.vue
+++ b/ui/src/components/ticket/TicketNewDialog.vue
@@ -139,11 +139,11 @@ watch(isOpen, () => {
 
         <JSONSchemaFormFields v-model="state" :schema="selectedType.schema" />
 
-        <DialogFooter class="mt-4">
+        <DialogFooter class="mt-4 sm:justify-start">
+          <Button type="submit"> Save </Button>
           <DialogClose as-child>
             <Button type="button" variant="secondary">Cancel</Button>
           </DialogClose>
-          <Button type="submit"> Save </Button>
         </DialogFooter>
       </form>
     </DialogContent>
diff --git a/ui/src/components/ticket/comment/TicketComment.vue b/ui/src/components/ticket/comment/TicketComment.vue
index 41692561..d304d814 100644
--- a/ui/src/components/ticket/comment/TicketComment.vue
+++ b/ui/src/components/ticket/comment/TicketComment.vue
@@ -99,11 +99,11 @@ const save = () => editCommentMutation.mutate()
               <DialogTitle>Delete comment</DialogTitle>
               <DialogDescription> Are you sure you want to delete this comment?</DialogDescription>
             </DialogHeader>
-            <DialogFooter>
+            <DialogFooter class="sm:justify-start">
+              <Button @click="deleteCommentMutation.mutate" variant="destructive">Delete</Button>
               <DialogClose as-child>
-                <Button type="button" variant="secondary"> Cancel</Button>
+                <Button type="button" variant="secondary">Cancel</Button>
               </DialogClose>
-              <Button @click="deleteCommentMutation.mutate" variant="destructive"> Delete </Button>
             </DialogFooter>
           </DialogContent>
         </DropdownMenu>
diff --git a/ui/src/components/ticket/file/FileAddDialog.vue b/ui/src/components/ticket/file/FileAddDialog.vue
index 7c82e0c2..a14a9342 100644
--- a/ui/src/components/ticket/file/FileAddDialog.vue
+++ b/ui/src/components/ticket/file/FileAddDialog.vue
@@ -65,11 +65,11 @@ function handleFileUpload($event: Event) {
 
       <Input id="file" type="file" class="mt-2" @change="handleFileUpload($event)" />
 
-      <DialogFooter class="mt-2">
+      <DialogFooter class="mt-2 sm:justify-start">
+        <Button @click="save">Upload</Button>
         <DialogClose as-child>
-          <Button type="button" variant="secondary"> Cancel</Button>
+          <Button type="button" variant="secondary">Cancel</Button>
         </DialogClose>
-        <Button @click="save">Upload</Button>
       </DialogFooter>
     </DialogContent>
   </Dialog>
diff --git a/ui/src/components/ticket/link/LinkAddDialog.vue b/ui/src/components/ticket/link/LinkAddDialog.vue
index 67c0dc6d..021b644c 100644
--- a/ui/src/components/ticket/link/LinkAddDialog.vue
+++ b/ui/src/components/ticket/link/LinkAddDialog.vue
@@ -90,10 +90,7 @@ const change = () => validate({ mode: 'silent' }).then((res) => (submitDisabled.
           </FormItem>
         </FormField>
 
-        <DialogFooter class="mt-2">
-          <DialogClose as-child>
-            <Button type="button" variant="secondary"> Cancel</Button>
-          </DialogClose>
+        <DialogFooter class="mt-2 sm:justify-start">
           <Button
             :title="submitDisabled ? 'Please fill out all required fields' : undefined"
             :disabled="submitDisabled"
@@ -101,6 +98,9 @@ const change = () => validate({ mode: 'silent' }).then((res) => (submitDisabled.
           >
             Save
           </Button>
+          <DialogClose as-child>
+            <Button type="button" variant="secondary"> Cancel</Button>
+          </DialogClose>
         </DialogFooter>
       </form>
     </DialogContent>
diff --git a/ui/src/components/ticket/timeline/TicketTimelineItem.vue b/ui/src/components/ticket/timeline/TicketTimelineItem.vue
index 5c5cc75f..87610ca5 100644
--- a/ui/src/components/ticket/timeline/TicketTimelineItem.vue
+++ b/ui/src/components/ticket/timeline/TicketTimelineItem.vue
@@ -120,13 +120,13 @@ const save = () =>
               Are you sure you want to delete this timeline item?</DialogDescription
             >
           </DialogHeader>
-          <DialogFooter>
-            <DialogClose as-child>
-              <Button type="button" variant="secondary"> Cancel</Button>
-            </DialogClose>
+          <DialogFooter class="sm:justify-start">
             <Button @click="deleteTimelineItemMutation.mutate" variant="destructive">
               Delete
             </Button>
+            <DialogClose as-child>
+              <Button type="button" variant="secondary"> Cancel</Button>
+            </DialogClose>
           </DialogFooter>
         </DialogContent>
       </DropdownMenu>

From 61db83f5b522ac937ef74da9c88e8a8880fc3fab Mon Sep 17 00:00:00 2001
From: Jonas Plum <git@cugu.eu>
Date: Sat, 20 Jul 2024 06:16:14 +0200
Subject: [PATCH 14/17] fix: fmt

---
 ui/src/components/reaction/ReactionForm.vue   | 20 ++++++++++++++++---
 .../components/reaction/ReactionNewDialog.vue |  2 +-
 2 files changed, 18 insertions(+), 4 deletions(-)

diff --git a/ui/src/components/reaction/ReactionForm.vue b/ui/src/components/reaction/ReactionForm.vue
index 028e5481..c3158536 100644
--- a/ui/src/components/reaction/ReactionForm.vue
+++ b/ui/src/components/reaction/ReactionForm.vue
@@ -5,10 +5,24 @@ import TriggerHookFormFields from '@/components/reaction/TriggerHookFormFields.v
 import TriggerWebhookFormFields from '@/components/reaction/TriggerWebhookFormFields.vue'
 import { Button } from '@/components/ui/button'
 import { Card, CardContent, CardHeader, CardTitle } from '@/components/ui/card'
-import { FormControl, FormDescription, FormField, FormItem, FormLabel, FormMessage } from '@/components/ui/form'
+import {
+  FormControl,
+  FormDescription,
+  FormField,
+  FormItem,
+  FormLabel,
+  FormMessage
+} from '@/components/ui/form'
 import { Input } from '@/components/ui/input'
 import { Label } from '@/components/ui/label'
-import { Select, SelectContent, SelectGroup, SelectItem, SelectTrigger, SelectValue } from '@/components/ui/select'
+import {
+  Select,
+  SelectContent,
+  SelectGroup,
+  SelectItem,
+  SelectTrigger,
+  SelectValue
+} from '@/components/ui/select'
 import { Tooltip, TooltipContent, TooltipProvider, TooltipTrigger } from '@/components/ui/tooltip'
 
 import { defineRule, useForm } from 'vee-validate'
@@ -195,7 +209,7 @@ const curlExample = computed(() => {
 </script>
 
 <template>
-  <form @submit="onSubmit" class="flex flex-col gap-4 items-start">
+  <form @submit="onSubmit" class="flex flex-col items-start gap-4">
     <FormField name="name" v-slot="{ componentField }" validate-on-input>
       <FormItem class="w-full">
         <FormLabel for="name" class="text-right">Name</FormLabel>
diff --git a/ui/src/components/reaction/ReactionNewDialog.vue b/ui/src/components/reaction/ReactionNewDialog.vue
index ada20d6a..bdb61435 100644
--- a/ui/src/components/reaction/ReactionNewDialog.vue
+++ b/ui/src/components/reaction/ReactionNewDialog.vue
@@ -35,7 +35,7 @@ const addReactionMutation = useMutation({
   onError: handleError
 })
 
-const cancel = () => isOpen.value = false
+const cancel = () => (isOpen.value = false)
 </script>
 
 <template>

From ae1bed2c8c758bd9bc5f04aa0d8f83cbcad9c134 Mon Sep 17 00:00:00 2001
From: Jonas Plum <git@cugu.eu>
Date: Sat, 20 Jul 2024 06:19:52 +0200
Subject: [PATCH 15/17] ci: check fmt

---
 .github/workflows/ci.yml | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 07cfe06c..74ad0524 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -5,6 +5,21 @@ on:
   release: { types: [ published ] }
 
 jobs:
+  fmt:
+    name: Fmt
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - uses: actions/setup-go@v5
+        with: { go-version: '1.22' }
+      - uses: oven-sh/setup-bun@v1
+
+      - run: make build-ui
+
+      - run: make fmt
+
+      - run: git diff --exit-code
+
   lint:
     name: Lint
     runs-on: ubuntu-latest

From 30d94668b5239f86a7cb2e29a024e3651dd50b35 Mon Sep 17 00:00:00 2001
From: Jonas Plum <git@cugu.eu>
Date: Sat, 20 Jul 2024 06:23:10 +0200
Subject: [PATCH 16/17] ci: install tools

---
 .github/workflows/ci.yml | 1 +
 Makefile                 | 6 +++---
 2 files changed, 4 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 74ad0524..698e7704 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -16,6 +16,7 @@ jobs:
 
       - run: make build-ui
 
+      - run: make install
       - run: make fmt
 
       - run: git diff --exit-code
diff --git a/Makefile b/Makefile
index 6b1fed38..a2d20384 100644
--- a/Makefile
+++ b/Makefile
@@ -1,9 +1,9 @@
 .PHONY: install
 install:
 	@echo "Installing..."
-	go install github.com/bombsimon/wsl/v4/cmd...@master
-	go install mvdan.cc/gofumpt@latest
-	go install github.com/daixiang0/gci@latest
+	go install github.com/bombsimon/wsl/v4/cmd...@v4.4.1
+	go install mvdan.cc/gofumpt@v0.6.0
+	go install github.com/daixiang0/gci@v0.13.4
 
 .PHONY: fmt
 fmt:

From 10dadfb210dd30b71c4a6612789f66da2b26690d Mon Sep 17 00:00:00 2001
From: Jonas Plum <git@cugu.eu>
Date: Sat, 20 Jul 2024 07:16:03 +0200
Subject: [PATCH 17/17] tests: reactions

---
 go.mod                                  |  4 ++
 go.sum                                  |  8 +++
 reaction/action/python/python_test.go   | 83 +++++++++++++++++++++++++
 reaction/action/webhook/webhook_test.go | 74 ++++++++++++++++++++++
 testing/reaction_test.go                | 40 +-----------
 testing/recordingserver.go              | 19 ++++++
 6 files changed, 191 insertions(+), 37 deletions(-)
 create mode 100644 reaction/action/python/python_test.go
 create mode 100644 reaction/action/webhook/webhook_test.go
 create mode 100644 testing/recordingserver.go

diff --git a/go.mod b/go.mod
index 8cd4e84d..72f0249f 100644
--- a/go.mod
+++ b/go.mod
@@ -63,6 +63,10 @@ require (
 	github.com/rogpeppe/go-internal v1.10.0 // indirect
 	github.com/spf13/cast v1.6.0 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
+	github.com/tidwall/gjson v1.14.2 // indirect
+	github.com/tidwall/match v1.1.1 // indirect
+	github.com/tidwall/pretty v1.2.0 // indirect
+	github.com/tidwall/sjson v1.2.5 // indirect
 	github.com/valyala/bytebufferpool v1.0.0 // indirect
 	github.com/valyala/fasttemplate v1.2.2 // indirect
 	go.opencensus.io v0.24.0 // indirect
diff --git a/go.sum b/go.sum
index 21a63f7d..75b8b548 100644
--- a/go.sum
+++ b/go.sum
@@ -204,6 +204,14 @@ github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO
 github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsTg=
 github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
+github.com/tidwall/gjson v1.14.2 h1:6BBkirS0rAHjumnjHF6qgy5d2YAJ1TLIaFE2lzfOLqo=
+github.com/tidwall/gjson v1.14.2/go.mod h1:/wbyibRr2FHMks5tjHJ5F8dMZh3AcwJEMf5vlfC0lxk=
+github.com/tidwall/match v1.1.1 h1:+Ho715JplO36QYgwN9PGYNhgZvoUSc9X2c80KVTi+GA=
+github.com/tidwall/match v1.1.1/go.mod h1:eRSPERbgtNPcGhD8UCthc6PmLEQXEWd3PRB5JTxsfmM=
+github.com/tidwall/pretty v1.2.0 h1:RWIZEg2iJ8/g6fDDYzMpobmaoGh5OLl4AXtGUGPcqCs=
+github.com/tidwall/pretty v1.2.0/go.mod h1:ITEVvHYasfjBbM0u2Pg8T2nJnzm8xPwvNhhsoaGGjNU=
+github.com/tidwall/sjson v1.2.5 h1:kLy8mja+1c9jlljvWTlSazM7cKDRfJuR/bOJhcY5NcY=
+github.com/tidwall/sjson v1.2.5/go.mod h1:Fvgq9kS/6ociJEDnK0Fk1cpYF4FIW6ZF7LAe+6jwd28=
 github.com/valyala/bytebufferpool v1.0.0 h1:GqA5TC/0021Y/b9FG4Oi9Mr3q7XYx6KllzawFIhcdPw=
 github.com/valyala/bytebufferpool v1.0.0/go.mod h1:6bBcMArwyJ5K/AmCkWv1jt77kVWyCJ6HpOuEn7z0Csc=
 github.com/valyala/fasttemplate v1.2.2 h1:lxLXG0uE3Qnshl9QyaK6XJxMXlQZELvChBOCmQD0Loo=
diff --git a/reaction/action/python/python_test.go b/reaction/action/python/python_test.go
new file mode 100644
index 00000000..3917b3b4
--- /dev/null
+++ b/reaction/action/python/python_test.go
@@ -0,0 +1,83 @@
+package python
+
+import (
+	"context"
+	"github.com/stretchr/testify/assert"
+	"testing"
+)
+
+func TestPython_Run(t *testing.T) {
+	type fields struct {
+		Bootstrap string
+		Script    string
+	}
+	type args struct {
+		payload string
+	}
+	tests := []struct {
+		name    string
+		fields  fields
+		args    args
+		want    []byte
+		wantErr assert.ErrorAssertionFunc
+	}{
+		{
+			name: "empty",
+			fields: fields{
+				Script: "pass",
+			},
+			args: args{
+				payload: "test",
+			},
+			want:    []byte(""),
+			wantErr: assert.NoError,
+		},
+		{
+			name: "hello world",
+			fields: fields{
+				Script: "print('hello world')",
+			},
+			args: args{
+				payload: "test",
+			},
+			want:    []byte("hello world\n"),
+			wantErr: assert.NoError,
+		},
+		{
+			name: "echo",
+			fields: fields{
+				Script: "import sys; print(sys.argv[1])",
+			},
+			args: args{
+				payload: "test",
+			},
+			want:    []byte("test\n"),
+			wantErr: assert.NoError,
+		},
+		{
+			name: "error",
+			fields: fields{
+				Script: "import sys; sys.exit(1)",
+			},
+			args: args{
+				payload: "test",
+			},
+			want:    nil,
+			wantErr: assert.Error,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			ctx := context.Background()
+
+			a := &Python{
+				Bootstrap: tt.fields.Bootstrap,
+				Script:    tt.fields.Script,
+			}
+			got, err := a.Run(ctx, tt.args.payload)
+			tt.wantErr(t, err)
+
+			assert.Equal(t, tt.want, got)
+		})
+	}
+}
diff --git a/reaction/action/webhook/webhook_test.go b/reaction/action/webhook/webhook_test.go
new file mode 100644
index 00000000..8a0e9b39
--- /dev/null
+++ b/reaction/action/webhook/webhook_test.go
@@ -0,0 +1,74 @@
+package webhook_test
+
+import (
+	"context"
+	"encoding/json"
+	"github.com/SecurityBrewery/catalyst/reaction/action/webhook"
+	catalystTesting "github.com/SecurityBrewery/catalyst/testing"
+	"github.com/stretchr/testify/assert"
+	"github.com/tidwall/sjson"
+	"net/http"
+	"testing"
+)
+
+func TestWebhook_Run(t *testing.T) {
+	server := catalystTesting.NewRecordingServer()
+
+	go http.ListenAndServe("127.0.0.1:12347", server) //nolint:gosec,errcheck
+
+	type fields struct {
+		Headers map[string]string
+		URL     string
+	}
+	type args struct {
+		payload string
+	}
+	tests := []struct {
+		name    string
+		fields  fields
+		args    args
+		want    map[string]any
+		wantErr assert.ErrorAssertionFunc
+	}{
+		{
+			name: "",
+			fields: fields{
+				Headers: map[string]string{},
+				URL:     "http://127.0.0.1:12347/foo",
+			},
+			args: args{
+				payload: "test",
+			},
+			want: map[string]any{
+				"statusCode": 200,
+				"headers": map[string]any{
+					"Content-Length": []any{"13"},
+					"Content-Type":   []any{"text/plain; charset=utf-8"},
+				},
+				"body":            `{"test":true}`,
+				"isBase64Encoded": false,
+			},
+			wantErr: assert.NoError,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			ctx := context.Background()
+
+			a := &webhook.Webhook{
+				Headers: tt.fields.Headers,
+				URL:     tt.fields.URL,
+			}
+			got, err := a.Run(ctx, tt.args.payload)
+			tt.wantErr(t, err)
+
+			want, err := json.Marshal(tt.want)
+			assert.NoError(t, err)
+
+			got, err = sjson.DeleteBytes(got, "headers.Date")
+			assert.NoError(t, err)
+
+			assert.JSONEq(t, string(want), string(got))
+		})
+	}
+}
diff --git a/testing/reaction_test.go b/testing/reaction_test.go
index 5eb65a38..8f5d2afe 100644
--- a/testing/reaction_test.go
+++ b/testing/reaction_test.go
@@ -1,21 +1,18 @@
 package testing
 
 import (
+	"github.com/stretchr/testify/require"
 	"net/http"
 	"testing"
-	"time"
-
-	"github.com/stretchr/testify/require"
 )
 
 func TestWebhookReactions(t *testing.T) {
 	baseApp, adminToken, analystToken, baseAppCleanup := BaseApp(t)
 	defer baseAppCleanup()
 
-	server := testWebhookServer()
-	defer server.Close()
+	server := NewRecordingServer()
 
-	go server.ListenAndServe() //nolint:errcheck
+	go http.ListenAndServe("127.0.0.1:12345", server) //nolint:gosec,errcheck
 
 	testSets := []authMatrixText{
 		{
@@ -83,37 +80,6 @@ func TestWebhookReactions(t *testing.T) {
 	}
 }
 
-func testWebhookServer() *http.Server {
-	mux := http.NewServeMux()
-	mux.HandleFunc("/webhook", func(w http.ResponseWriter, _ *http.Request) {
-		w.WriteHeader(http.StatusOK)
-		w.Header().Set("Content-Type", "application/json")
-		w.Write([]byte(`{"test":true}`)) //nolint:errcheck
-	})
-
-	return &http.Server{
-		Addr:              "127.0.0.1:12345",
-		Handler:           mux,
-		ReadHeaderTimeout: 3 * time.Second,
-	}
-}
-
-type RecordingServer struct {
-	Entries []string
-}
-
-func NewRecordingServer() *RecordingServer {
-	return &RecordingServer{}
-}
-
-func (s *RecordingServer) ServeHTTP(w http.ResponseWriter, r *http.Request) {
-	s.Entries = append(s.Entries, r.URL.Path)
-
-	w.WriteHeader(http.StatusOK)
-	w.Header().Set("Content-Type", "application/json")
-	w.Write([]byte(`{"test":true}`)) //nolint:errcheck
-}
-
 func TestHookReactions(t *testing.T) {
 	baseApp, _, analystToken, baseAppCleanup := BaseApp(t)
 	defer baseAppCleanup()
diff --git a/testing/recordingserver.go b/testing/recordingserver.go
new file mode 100644
index 00000000..b388a01f
--- /dev/null
+++ b/testing/recordingserver.go
@@ -0,0 +1,19 @@
+package testing
+
+import "net/http"
+
+type RecordingServer struct {
+	Entries []string
+}
+
+func NewRecordingServer() *RecordingServer {
+	return &RecordingServer{}
+}
+
+func (s *RecordingServer) ServeHTTP(w http.ResponseWriter, r *http.Request) {
+	s.Entries = append(s.Entries, r.URL.Path)
+
+	w.WriteHeader(http.StatusOK)
+	w.Header().Set("Content-Type", "application/json")
+	w.Write([]byte(`{"test":true}`)) //nolint:errcheck
+}