2016-04-02 14:40:07 +02:00
|
|
|
package projects
|
|
|
|
|
|
2016-04-04 01:10:12 +02:00
|
|
|
import (
|
2024-04-12 09:23:13 +02:00
|
|
|
"fmt"
|
|
|
|
|
"net/http"
|
|
|
|
|
|
2024-10-26 14:56:17 +02:00
|
|
|
"github.com/semaphoreui/semaphore/api/helpers"
|
|
|
|
|
"github.com/semaphoreui/semaphore/db"
|
2019-07-09 19:45:27 +02:00
|
|
|
|
2017-02-23 00:21:49 +01:00
|
|
|
"github.com/gorilla/context"
|
2016-04-04 01:10:12 +02:00
|
|
|
)
|
2016-04-02 14:40:07 +02:00
|
|
|
|
2018-03-27 22:12:47 +02:00
|
|
|
// KeyMiddleware ensures a key exists and loads it to the context
|
2019-07-09 18:14:06 +02:00
|
|
|
func KeyMiddleware(next http.Handler) http.Handler {
|
|
|
|
|
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
|
2020-12-04 23:41:26 +01:00
|
|
|
project := context.Get(r, "project").(db.Project)
|
2020-12-03 14:51:15 +01:00
|
|
|
keyID, err := helpers.GetIntParam("key_id", w, r)
|
2019-07-09 18:14:06 +02:00
|
|
|
if err != nil {
|
2016-04-09 21:09:57 +02:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2021-09-10 00:41:36 +02:00
|
|
|
key, err := helpers.Store(r).GetAccessKey(project.ID, keyID)
|
2019-07-09 18:14:06 +02:00
|
|
|
|
2020-12-08 08:23:33 +01:00
|
|
|
if err != nil {
|
|
|
|
|
helpers.WriteError(w, err)
|
|
|
|
|
return
|
2019-07-09 18:14:06 +02:00
|
|
|
}
|
2016-04-09 21:09:57 +02:00
|
|
|
|
2019-07-09 18:14:06 +02:00
|
|
|
context.Set(r, "accessKey", key)
|
|
|
|
|
next.ServeHTTP(w, r)
|
|
|
|
|
})
|
2016-04-04 15:44:34 +02:00
|
|
|
}
|
|
|
|
|
|
2022-02-03 08:05:13 +01:00
|
|
|
func GetKeyRefs(w http.ResponseWriter, r *http.Request) {
|
|
|
|
|
key := context.Get(r, "accessKey").(db.AccessKey)
|
|
|
|
|
refs, err := helpers.Store(r).GetAccessKeyRefs(*key.ProjectID, key.ID)
|
|
|
|
|
if err != nil {
|
|
|
|
|
helpers.WriteError(w, err)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
helpers.WriteJSON(w, http.StatusOK, refs)
|
|
|
|
|
}
|
|
|
|
|
|
2018-03-27 22:12:47 +02:00
|
|
|
// GetKeys retrieves sorted keys from the database
|
2019-07-09 18:11:01 +02:00
|
|
|
func GetKeys(w http.ResponseWriter, r *http.Request) {
|
2020-11-04 20:30:36 +01:00
|
|
|
if key := context.Get(r, "accessKey"); key != nil {
|
2021-08-30 22:48:53 +02:00
|
|
|
k := key.(db.AccessKey)
|
|
|
|
|
helpers.WriteJSON(w, http.StatusOK, k)
|
2020-11-04 20:30:36 +01:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2020-12-04 23:41:26 +01:00
|
|
|
project := context.Get(r, "project").(db.Project)
|
|
|
|
|
var keys []db.AccessKey
|
2019-07-09 18:11:01 +02:00
|
|
|
|
2021-10-13 16:33:07 +02:00
|
|
|
keys, err := helpers.Store(r).GetAccessKeys(project.ID, helpers.QueryParams(r.URL))
|
2019-07-09 18:11:01 +02:00
|
|
|
|
2020-12-08 08:23:33 +01:00
|
|
|
if err != nil {
|
|
|
|
|
helpers.WriteError(w, err)
|
|
|
|
|
return
|
2019-07-09 18:11:01 +02:00
|
|
|
}
|
|
|
|
|
|
2020-12-03 14:51:15 +01:00
|
|
|
helpers.WriteJSON(w, http.StatusOK, keys)
|
2016-04-02 14:40:07 +02:00
|
|
|
}
|
|
|
|
|
|
2018-03-27 22:12:47 +02:00
|
|
|
// AddKey adds a new key to the database
|
2019-07-09 18:11:01 +02:00
|
|
|
func AddKey(w http.ResponseWriter, r *http.Request) {
|
2020-12-04 23:41:26 +01:00
|
|
|
project := context.Get(r, "project").(db.Project)
|
|
|
|
|
var key db.AccessKey
|
2019-07-09 18:11:01 +02:00
|
|
|
|
2020-12-03 14:51:15 +01:00
|
|
|
if !helpers.Bind(w, r, &key) {
|
2019-07-09 18:11:01 +02:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2020-12-08 08:23:33 +01:00
|
|
|
if key.ProjectID == nil || *key.ProjectID != project.ID {
|
|
|
|
|
helpers.WriteJSON(w, http.StatusBadRequest, map[string]string{
|
2021-04-22 12:36:23 +02:00
|
|
|
"error": "Project ID in body and URL must be the same",
|
2020-12-08 08:23:33 +01:00
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2021-09-01 16:38:28 +02:00
|
|
|
if err := key.Validate(true); err != nil {
|
2021-09-01 19:56:44 +02:00
|
|
|
helpers.WriteJSON(w, http.StatusBadRequest, map[string]string{
|
|
|
|
|
"error": err.Error(),
|
|
|
|
|
})
|
2021-09-01 23:14:32 +02:00
|
|
|
return
|
2021-08-31 07:47:19 +02:00
|
|
|
}
|
|
|
|
|
|
2020-12-08 08:23:33 +01:00
|
|
|
newKey, err := helpers.Store(r).CreateAccessKey(key)
|
2019-07-09 18:11:01 +02:00
|
|
|
|
|
|
|
|
if err != nil {
|
2020-12-08 08:23:33 +01:00
|
|
|
helpers.WriteError(w, err)
|
|
|
|
|
return
|
2019-07-09 18:11:01 +02:00
|
|
|
}
|
|
|
|
|
|
2024-04-12 09:23:13 +02:00
|
|
|
helpers.EventLog(r, helpers.EventLogCreate, helpers.EventLogItem{
|
|
|
|
|
UserID: helpers.UserFromContext(r).ID,
|
|
|
|
|
ProjectID: *newKey.ProjectID,
|
|
|
|
|
ObjectType: db.EventKey,
|
|
|
|
|
ObjectID: newKey.ID,
|
|
|
|
|
Description: fmt.Sprintf("Access Key %s created", key.Name),
|
2020-12-01 20:06:49 +01:00
|
|
|
})
|
|
|
|
|
|
2019-07-09 18:11:01 +02:00
|
|
|
w.WriteHeader(http.StatusNoContent)
|
2016-04-04 01:10:12 +02:00
|
|
|
}
|
|
|
|
|
|
2018-03-27 22:12:47 +02:00
|
|
|
// UpdateKey updates key in database
|
|
|
|
|
// nolint: gocyclo
|
2019-07-09 18:11:01 +02:00
|
|
|
func UpdateKey(w http.ResponseWriter, r *http.Request) {
|
2020-12-04 23:41:26 +01:00
|
|
|
var key db.AccessKey
|
|
|
|
|
oldKey := context.Get(r, "accessKey").(db.AccessKey)
|
2019-07-09 18:11:01 +02:00
|
|
|
|
2020-12-03 14:51:15 +01:00
|
|
|
if !helpers.Bind(w, r, &key) {
|
2019-07-09 18:11:01 +02:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2022-01-27 13:44:35 +01:00
|
|
|
repos, err := helpers.Store(r).GetRepositories(*key.ProjectID, db.RetrieveQueryParams{})
|
|
|
|
|
if err != nil {
|
|
|
|
|
helpers.WriteError(w, err)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for _, repo := range repos {
|
|
|
|
|
if repo.SSHKeyID != key.ID {
|
|
|
|
|
continue
|
|
|
|
|
}
|
2022-01-27 15:16:58 +01:00
|
|
|
err = repo.ClearCache()
|
|
|
|
|
if err != nil {
|
|
|
|
|
helpers.WriteError(w, err)
|
|
|
|
|
return
|
|
|
|
|
}
|
2022-01-27 13:44:35 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
err = helpers.Store(r).UpdateAccessKey(key)
|
|
|
|
|
if err != nil {
|
2020-12-08 08:23:33 +01:00
|
|
|
helpers.WriteError(w, err)
|
|
|
|
|
return
|
2019-07-09 18:11:01 +02:00
|
|
|
}
|
|
|
|
|
|
2024-04-12 09:23:13 +02:00
|
|
|
helpers.EventLog(r, helpers.EventLogUpdate, helpers.EventLogItem{
|
|
|
|
|
UserID: helpers.UserFromContext(r).ID,
|
|
|
|
|
ProjectID: *oldKey.ProjectID,
|
|
|
|
|
ObjectType: db.EventKey,
|
|
|
|
|
ObjectID: oldKey.ID,
|
|
|
|
|
Description: fmt.Sprintf("Access Key %s updated", key.Name),
|
2020-12-01 20:06:49 +01:00
|
|
|
})
|
|
|
|
|
|
2019-07-09 18:11:01 +02:00
|
|
|
w.WriteHeader(http.StatusNoContent)
|
2016-04-02 14:40:07 +02:00
|
|
|
}
|
|
|
|
|
|
2018-03-27 22:12:47 +02:00
|
|
|
// RemoveKey deletes a key from the database
|
2019-07-09 18:11:01 +02:00
|
|
|
func RemoveKey(w http.ResponseWriter, r *http.Request) {
|
2020-12-04 23:41:26 +01:00
|
|
|
key := context.Get(r, "accessKey").(db.AccessKey)
|
2019-07-09 18:11:01 +02:00
|
|
|
|
2024-04-12 09:23:13 +02:00
|
|
|
err := helpers.Store(r).DeleteAccessKey(*key.ProjectID, key.ID)
|
2022-02-03 08:05:13 +01:00
|
|
|
if err == db.ErrInvalidOperation {
|
|
|
|
|
helpers.WriteJSON(w, http.StatusBadRequest, map[string]interface{}{
|
|
|
|
|
"error": "Access Key is in use by one or more templates",
|
|
|
|
|
"inUse": true,
|
|
|
|
|
})
|
|
|
|
|
return
|
2019-07-09 18:11:01 +02:00
|
|
|
}
|
|
|
|
|
|
2020-12-08 08:23:33 +01:00
|
|
|
if err != nil {
|
|
|
|
|
helpers.WriteError(w, err)
|
|
|
|
|
return
|
2019-07-09 18:11:01 +02:00
|
|
|
}
|
|
|
|
|
|
2024-04-12 09:23:13 +02:00
|
|
|
helpers.EventLog(r, helpers.EventLogDelete, helpers.EventLogItem{
|
|
|
|
|
UserID: helpers.UserFromContext(r).ID,
|
|
|
|
|
ProjectID: *key.ProjectID,
|
|
|
|
|
ObjectType: db.EventKey,
|
|
|
|
|
ObjectID: key.ID,
|
|
|
|
|
Description: fmt.Sprintf("Access Key %s deleted", key.Name),
|
2020-12-01 20:06:49 +01:00
|
|
|
})
|
|
|
|
|
|
2019-07-09 18:11:01 +02:00
|
|
|
w.WriteHeader(http.StatusNoContent)
|
2016-04-02 14:40:07 +02:00
|
|
|
}
|
