Semaphore/api/projects/keys.go
2022-02-03 12:06:24 +05:00

205 lines
4.3 KiB
Go

package projects
import (
log "github.com/Sirupsen/logrus"
"github.com/ansible-semaphore/semaphore/api/helpers"
"github.com/ansible-semaphore/semaphore/db"
"net/http"
"github.com/gorilla/context"
)
// KeyMiddleware ensures a key exists and loads it to the context
func KeyMiddleware(next http.Handler) http.Handler {
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
project := context.Get(r, "project").(db.Project)
keyID, err := helpers.GetIntParam("key_id", w, r)
if err != nil {
return
}
key, err := helpers.Store(r).GetAccessKey(project.ID, keyID)
if err != nil {
helpers.WriteError(w, err)
return
}
context.Set(r, "accessKey", key)
next.ServeHTTP(w, r)
})
}
func GetKeyRefs(w http.ResponseWriter, r *http.Request) {
key := context.Get(r, "accessKey").(db.AccessKey)
refs, err := helpers.Store(r).GetAccessKeyRefs(*key.ProjectID, key.ID)
if err != nil {
helpers.WriteError(w, err)
return
}
helpers.WriteJSON(w, http.StatusOK, refs)
}
// GetKeys retrieves sorted keys from the database
func GetKeys(w http.ResponseWriter, r *http.Request) {
if key := context.Get(r, "accessKey"); key != nil {
k := key.(db.AccessKey)
helpers.WriteJSON(w, http.StatusOK, k)
return
}
project := context.Get(r, "project").(db.Project)
var keys []db.AccessKey
keys, err := helpers.Store(r).GetAccessKeys(project.ID, helpers.QueryParams(r.URL))
if err != nil {
helpers.WriteError(w, err)
return
}
helpers.WriteJSON(w, http.StatusOK, keys)
}
// AddKey adds a new key to the database
func AddKey(w http.ResponseWriter, r *http.Request) {
project := context.Get(r, "project").(db.Project)
var key db.AccessKey
if !helpers.Bind(w, r, &key) {
return
}
if key.ProjectID == nil || *key.ProjectID != project.ID {
helpers.WriteJSON(w, http.StatusBadRequest, map[string]string{
"error": "Project ID in body and URL must be the same",
})
return
}
if err := key.Validate(true); err != nil {
helpers.WriteJSON(w, http.StatusBadRequest, map[string]string{
"error": err.Error(),
})
return
}
newKey, err := helpers.Store(r).CreateAccessKey(key)
if err != nil {
helpers.WriteError(w, err)
return
}
user := context.Get(r, "user").(*db.User)
objType := db.EventKey
desc := "Access Key " + key.Name + " created"
_, err = helpers.Store(r).CreateEvent(db.Event{
UserID: &user.ID,
ProjectID: newKey.ProjectID,
ObjectType: &objType,
ObjectID: &newKey.ID,
Description: &desc,
})
if err != nil {
log.Error(err)
}
w.WriteHeader(http.StatusNoContent)
}
// UpdateKey updates key in database
// nolint: gocyclo
func UpdateKey(w http.ResponseWriter, r *http.Request) {
var key db.AccessKey
oldKey := context.Get(r, "accessKey").(db.AccessKey)
if !helpers.Bind(w, r, &key) {
return
}
repos, err := helpers.Store(r).GetRepositories(*key.ProjectID, db.RetrieveQueryParams{})
if err != nil {
helpers.WriteError(w, err)
return
}
for _, repo := range repos {
if repo.SSHKeyID != key.ID {
continue
}
err = repo.ClearCache()
if err != nil {
helpers.WriteError(w, err)
return
}
}
err = helpers.Store(r).UpdateAccessKey(key)
if err != nil {
helpers.WriteError(w, err)
return
}
user := context.Get(r, "user").(*db.User)
desc := "Access Key " + key.Name + " updated"
objType := db.EventKey
_, err = helpers.Store(r).CreateEvent(db.Event{
UserID: &user.ID,
ProjectID: oldKey.ProjectID,
Description: &desc,
ObjectID: &oldKey.ID,
ObjectType: &objType,
})
if err != nil {
log.Error(err)
return
}
w.WriteHeader(http.StatusNoContent)
}
// RemoveKey deletes a key from the database
func RemoveKey(w http.ResponseWriter, r *http.Request) {
key := context.Get(r, "accessKey").(db.AccessKey)
var err error
err = helpers.Store(r).DeleteAccessKey(*key.ProjectID, key.ID)
if err == db.ErrInvalidOperation {
helpers.WriteJSON(w, http.StatusBadRequest, map[string]interface{}{
"error": "Access Key is in use by one or more templates",
"inUse": true,
})
return
}
if err != nil {
helpers.WriteError(w, err)
return
}
user := context.Get(r, "user").(*db.User)
desc := "Access Key " + key.Name + " deleted"
_, err = helpers.Store(r).CreateEvent(db.Event{
UserID: &user.ID,
ProjectID: key.ProjectID,
Description: &desc,
})
if err != nil {
log.Error(err)
}
w.WriteHeader(http.StatusNoContent)
}