basic logic for switching alias from local/global
Some checks failed
continuous-integration/drone/push Build is failing
Some checks failed
continuous-integration/drone/push Build is failing
This commit is contained in:
parent
e876bdd663
commit
5b246ec86b
3 changed files with 184 additions and 17 deletions
153
api.go
153
api.go
|
@ -2,11 +2,12 @@ package main
|
||||||
|
|
||||||
import (
|
import (
|
||||||
//"context"
|
//"context"
|
||||||
|
"encoding/json"
|
||||||
"errors"
|
"errors"
|
||||||
"fmt"
|
"fmt"
|
||||||
garage "git.deuxfleurs.fr/garage-sdk/garage-admin-sdk-golang"
|
garage "git.deuxfleurs.fr/garage-sdk/garage-admin-sdk-golang"
|
||||||
"github.com/go-ldap/ldap/v3"
|
"github.com/go-ldap/ldap/v3"
|
||||||
//"github.com/gorilla/mux"
|
"github.com/gorilla/mux"
|
||||||
"log"
|
"log"
|
||||||
"net/http"
|
"net/http"
|
||||||
"strings"
|
"strings"
|
||||||
|
@ -111,21 +112,132 @@ func checkLoginAndS3API(w http.ResponseWriter, r *http.Request) (*LoginStatus, *
|
||||||
return login, keyPair, err
|
return login, keyPair, err
|
||||||
}
|
}
|
||||||
|
|
||||||
|
type ApiQuotaView struct {
|
||||||
|
files *uint64
|
||||||
|
size *uint64
|
||||||
|
}
|
||||||
|
|
||||||
|
type ApiBucketView struct {
|
||||||
|
global *bool
|
||||||
|
max *ApiQuotaView
|
||||||
|
used *ApiQuotaView
|
||||||
|
}
|
||||||
|
|
||||||
|
type BucketRequest struct {
|
||||||
|
s3key *garage.KeyInfo
|
||||||
|
bucketName string
|
||||||
|
bucketId string
|
||||||
|
global bool
|
||||||
|
http *http.Request
|
||||||
|
}
|
||||||
|
|
||||||
func handleAPIGarageBucket(w http.ResponseWriter, r *http.Request) {
|
func handleAPIGarageBucket(w http.ResponseWriter, r *http.Request) {
|
||||||
login, s3key, err := checkLoginAndS3API(w, r)
|
br, err := buildBucketRequest(w, r)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
log.Println(err)
|
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
// CHECK PATCH REQUEST
|
if r.Method == http.MethodPatch {
|
||||||
|
patchGarageBucket(w, br)
|
||||||
|
return
|
||||||
|
}
|
||||||
|
|
||||||
// READ BODY JSON
|
if r.Method == http.MethodGet {
|
||||||
|
getGarageBucket(w, br)
|
||||||
|
return
|
||||||
|
}
|
||||||
|
|
||||||
// VALIDATE OBJECT
|
http.Error(w, "This method is not implemented for this endpoint", http.StatusNotImplemented)
|
||||||
// --- bucket query parameter ---
|
return
|
||||||
// 1. bucket must be owned by the key with owner permission, otherwise throw "unauthorized" (401)
|
}
|
||||||
// 2. must not end with deuxfleurs.fr or deuxfleurs.org, otherwise throw "forbidden" (403)
|
|
||||||
|
func buildBucketRequest(w http.ResponseWriter, r *http.Request) (*BucketRequest, error) {
|
||||||
|
_, s3key, err := checkLoginAndS3API(w, r)
|
||||||
|
if err != nil {
|
||||||
|
http.Error(w, "Unable to connect on LDAP", http.StatusUnauthorized)
|
||||||
|
return nil, err
|
||||||
|
}
|
||||||
|
|
||||||
|
// FETCH BUCKET ID by iterating over buckets owned by this key
|
||||||
|
bucketName := mux.Vars(r)["bucket"]
|
||||||
|
var bucketId *string
|
||||||
|
var global *bool
|
||||||
|
|
||||||
|
findBucketIdLoop:
|
||||||
|
for _, bucket := range s3key.Buckets {
|
||||||
|
for _, localAlias := range bucket.LocalAliases {
|
||||||
|
if localAlias == bucketName {
|
||||||
|
bucketId = bucket.Id
|
||||||
|
*global = false
|
||||||
|
break findBucketIdLoop
|
||||||
|
}
|
||||||
|
}
|
||||||
|
for _, globalAlias := range bucket.GlobalAliases {
|
||||||
|
if globalAlias == bucketName {
|
||||||
|
bucketId = bucket.Id
|
||||||
|
*global = true
|
||||||
|
break findBucketIdLoop
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
if bucketId == nil || global == nil {
|
||||||
|
http.Error(w, "Bucket not found in this account", http.StatusNotFound)
|
||||||
|
return nil, errors.New("Unable to fetch bucket ID")
|
||||||
|
}
|
||||||
|
|
||||||
|
return &BucketRequest{
|
||||||
|
s3key: s3key,
|
||||||
|
bucketName: bucketName,
|
||||||
|
bucketId: *bucketId,
|
||||||
|
global: *global,
|
||||||
|
http: r,
|
||||||
|
}, nil
|
||||||
|
}
|
||||||
|
|
||||||
|
func patchGarageBucket(w http.ResponseWriter, br *BucketRequest) {
|
||||||
|
var err error
|
||||||
|
|
||||||
|
// DECODE BODY
|
||||||
|
var queuedChange ApiBucketView
|
||||||
|
decoder := json.NewDecoder(br.http.Body)
|
||||||
|
err = decoder.Decode(&queuedChange)
|
||||||
|
if err != nil {
|
||||||
|
log.Println(err)
|
||||||
|
http.Error(w, "Unable to decode the body", http.StatusBadRequest)
|
||||||
|
return
|
||||||
|
}
|
||||||
|
|
||||||
|
// SET THE GLOBAL FLAG
|
||||||
|
if queuedChange.global != nil {
|
||||||
|
if *queuedChange.global && !br.global {
|
||||||
|
_, err = grgAddGlobalAlias(br.bucketId, br.bucketName)
|
||||||
|
if err != nil {
|
||||||
|
http.Error(w, "Unable to add the requested name as global alias for this bucket", http.StatusInternalServerError)
|
||||||
|
return
|
||||||
|
}
|
||||||
|
_, err = grgDelLocalAlias(br.bucketId, *br.s3key.AccessKeyId, br.bucketName)
|
||||||
|
if err != nil {
|
||||||
|
http.Error(w, "Unable to remove the local alias for this bucket", http.StatusInternalServerError)
|
||||||
|
return
|
||||||
|
}
|
||||||
|
} else if !*queuedChange.global && br.global {
|
||||||
|
grgAddLocalAlias(br.bucketId, *br.s3key.AccessKeyId, br.bucketName)
|
||||||
|
if err != nil {
|
||||||
|
http.Error(w, "Unable to add the requested name as local alias for this bucket", http.StatusInternalServerError)
|
||||||
|
return
|
||||||
|
}
|
||||||
|
grgDelGlobalAlias(br.bucketId, br.bucketName)
|
||||||
|
if err != nil {
|
||||||
|
http.Error(w, "Unable to remove the global alias for this bucket", http.StatusInternalServerError)
|
||||||
|
return
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
// CHECK IF QUOTA MUST BE ADDED TO THIS BUCKET
|
||||||
|
|
||||||
|
// VALIDATE IT
|
||||||
// --- global ---
|
// --- global ---
|
||||||
// 1. can be true, false, or nil (use pointers)
|
// 1. can be true, false, or nil (use pointers)
|
||||||
// 2. if nil do nothing
|
// 2. if nil do nothing
|
||||||
|
@ -137,17 +249,28 @@ func handleAPIGarageBucket(w http.ResponseWriter, r *http.Request) {
|
||||||
// --- quota.files ---
|
// --- quota.files ---
|
||||||
// 1. if no quota on the bucket + this field is none, set to 10k
|
// 1. if no quota on the bucket + this field is none, set to 10k
|
||||||
// 2. if lower than 10k, set to 10k. If higher than 40k, set to 40k
|
// 2. if lower than 10k, set to 10k. If higher than 40k, set to 40k
|
||||||
|
// READ BODY JSON
|
||||||
|
|
||||||
// IF BODY.GLOBAL is not NONE
|
// IF BODY.GLOBAL is not NONE
|
||||||
// Add an alias
|
// DO: Add an alias
|
||||||
|
|
||||||
// IF BODY.QUOTA.SIZE is not NONE
|
// IF BODY.QUOTA.SIZE is not NONE
|
||||||
// Change quota
|
// DO: Change quota
|
||||||
|
|
||||||
// IF BODY.QUOTA.FILE is not NONE
|
// IF BODY.QUOTA.FILE is not NONE
|
||||||
// Change quota
|
// DO: Change quota
|
||||||
|
|
||||||
log.Println(login, s3key)
|
getGarageBucket(w, br)
|
||||||
|
}
|
||||||
return
|
|
||||||
|
func getGarageBucket(w http.ResponseWriter, br *BucketRequest) {
|
||||||
|
// FETCH AN UPDATED BUCKET VIEW
|
||||||
|
bucket, err := grgGetBucket(br.bucketId)
|
||||||
|
if err != nil {
|
||||||
|
http.Error(w, "Unable to fetch bucket details", http.StatusInternalServerError)
|
||||||
|
return
|
||||||
|
}
|
||||||
|
|
||||||
|
// BUILD A VIEW
|
||||||
|
log.Println(bucket)
|
||||||
}
|
}
|
||||||
|
|
46
garage.go
46
garage.go
|
@ -97,12 +97,56 @@ func grgCreateWebsite(gkey, bucket string) (*garage.BucketInfo, error) {
|
||||||
return binfo, nil
|
return binfo, nil
|
||||||
}
|
}
|
||||||
|
|
||||||
|
func grgAddGlobalAlias(bid, alias string) (*garage.BucketInfo, error) {
|
||||||
|
client, ctx := gadmin()
|
||||||
|
|
||||||
|
resp, _, err := client.BucketApi.PutBucketGlobalAlias(ctx).Id(bid).Alias(alias).Execute()
|
||||||
|
if err != nil {
|
||||||
|
log.Println(err)
|
||||||
|
return nil, err
|
||||||
|
}
|
||||||
|
return resp, nil
|
||||||
|
}
|
||||||
|
|
||||||
|
func grgAddLocalAlias(bid, key, alias string) (*garage.BucketInfo, error) {
|
||||||
|
client, ctx := gadmin()
|
||||||
|
|
||||||
|
resp, _, err := client.BucketApi.PutBucketLocalAlias(ctx).Id(bid).AccessKeyId(key).Alias(alias).Execute()
|
||||||
|
if err != nil {
|
||||||
|
log.Println(err)
|
||||||
|
return nil, err
|
||||||
|
}
|
||||||
|
return resp, nil
|
||||||
|
}
|
||||||
|
|
||||||
|
func grgDelGlobalAlias(bid, alias string) (*garage.BucketInfo, error) {
|
||||||
|
client, ctx := gadmin()
|
||||||
|
|
||||||
|
resp, _, err := client.BucketApi.DeleteBucketGlobalAlias(ctx).Id(bid).Alias(alias).Execute()
|
||||||
|
if err != nil {
|
||||||
|
log.Println(err)
|
||||||
|
return nil, err
|
||||||
|
}
|
||||||
|
return resp, nil
|
||||||
|
}
|
||||||
|
|
||||||
|
func grgDelLocalAlias(bid, key, alias string) (*garage.BucketInfo, error) {
|
||||||
|
client, ctx := gadmin()
|
||||||
|
|
||||||
|
resp, _, err := client.BucketApi.DeleteBucketLocalAlias(ctx).Id(bid).AccessKeyId(key).Alias(alias).Execute()
|
||||||
|
if err != nil {
|
||||||
|
log.Println(err)
|
||||||
|
return nil, err
|
||||||
|
}
|
||||||
|
return resp, nil
|
||||||
|
}
|
||||||
|
|
||||||
func grgGetBucket(bid string) (*garage.BucketInfo, error) {
|
func grgGetBucket(bid string) (*garage.BucketInfo, error) {
|
||||||
client, ctx := gadmin()
|
client, ctx := gadmin()
|
||||||
|
|
||||||
resp, _, err := client.BucketApi.GetBucketInfo(ctx, bid).Execute()
|
resp, _, err := client.BucketApi.GetBucketInfo(ctx, bid).Execute()
|
||||||
if err != nil {
|
if err != nil {
|
||||||
fmt.Printf("%+v\n", err)
|
log.Println(err)
|
||||||
return nil, err
|
return nil, err
|
||||||
}
|
}
|
||||||
return resp, nil
|
return resp, nil
|
||||||
|
|
2
main.go
2
main.go
|
@ -130,7 +130,7 @@ func main() {
|
||||||
r.HandleFunc("/", handleHome)
|
r.HandleFunc("/", handleHome)
|
||||||
r.HandleFunc("/logout", handleLogout)
|
r.HandleFunc("/logout", handleLogout)
|
||||||
|
|
||||||
r.HandleFunc("/api/unstable/garage/bucket/{b}", handleAPIGarageBucket)
|
r.HandleFunc("/api/unstable/garage/bucket/{bucket}", handleAPIGarageBucket)
|
||||||
|
|
||||||
r.HandleFunc("/profile", handleProfile)
|
r.HandleFunc("/profile", handleProfile)
|
||||||
r.HandleFunc("/passwd", handlePasswd)
|
r.HandleFunc("/passwd", handlePasswd)
|
||||||
|
|
Loading…
Reference in a new issue