FilesExpand file tree

 master

/

feapi_api.go

Copy path

Blame

More file actions

Blame

More file actions

Latest commit

 

History

History

History

164 lines (133 loc) · 3.87 KB

 master

/

feapi_api.go

Top

File metadata and controls

• Code
• Blame

164 lines (133 loc) · 3.87 KB

Raw

Copy raw file

Download raw file

Open symbols panel

Edit and raw actions

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

80

81

82

83

84

85

86

87

88

89

90

91

92

93

94

95

96

97

98

99

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

// Copyright (c) 2017, Janoš Guljaš <janos@resenje.org>

// All rights reserved.

// Use of this source code is governed by a BSD-style

// license that can be found in the LICENSE file.

package server

import (

"encoding/json"

"net"

"net/http"

"gopherpit.com/gopherpit/services/key"

"resenje.org/jsonresponse"

"resenje.org/web"

)

type apiKeyFEAPIResponse struct {

Secret string `json:"secret"`

AuthorizedNetworks []string `json:"authorized_networks"`

}

func (s *Server) apiKeyFEAPIHandler(w http.ResponseWriter, r *http.Request) {

u, r, err := s.getRequestUser(r)

if err != nil {

panic(err)

}

k, err := s.KeyService.CreateKey(u.ID, nil)

if err != nil {

s.Logger.Errorf("api key fe api: create key %s: %s", u.ID, err)

jsonServerError(w, err)

return

}

response := apiKeyFEAPIResponse{

Secret: k.Secret,

}

for _, n := range k.AuthorizedNetworks {

response.AuthorizedNetworks = append(response.AuthorizedNetworks, n.String())

}

s.audit(r, nil, "enable api", "")

jsonresponse.OK(w, response)

}

func (s *Server) apiKeyDeleteFEAPIHandler(w http.ResponseWriter, r *http.Request) {

u, r, err := s.getRequestUser(r)

if err != nil {

panic(err)

}

err = s.KeyService.DeleteKey(u.ID)

if err != nil {

s.Logger.Errorf("api key delete fe api: delete key: %s: %s", u.ID, err)

jsonServerError(w, err)

return

}

s.audit(r, nil, "disable api", "")

jsonresponse.OK(w, nil)

}

type apiRegenerateSecretFEAPIResponse struct {

Secret string `json:"secret"`

}

func (s *Server) apiRegenerateSecretFEAPIHandler(w http.ResponseWriter, r *http.Request) {

u, r, err := s.getRequestUser(r)

if err != nil {

panic(err)

}

secret, err := s.KeyService.RegenerateSecret(u.ID)

if err != nil {

s.Logger.Errorf("api regenerate secret fe api: regenerate secret %s: %s", u.ID, err)

jsonServerError(w, err)

return

}

s.audit(r, nil, "regenerate api secret", "")

jsonresponse.OK(w, apiRegenerateSecretFEAPIResponse{

Secret: secret,

})

}

type apiNetworksFEAPIRequest struct {

AuthorizedNetworks []string `json:"authorized_networks"`

}

type apiNetworksFEAPIResponse struct {

AuthorizedNetworks []string `json:"authorized_networks"`

}

func (s *Server) apiNetworksFEAPIHandler(w http.ResponseWriter, r *http.Request) {

u, r, err := s.getRequestUser(r)

if err != nil {

panic(err)

}

request := apiNetworksFEAPIRequest{}

errors := web.FormErrors{}

if err := json.NewDecoder(r.Body).Decode(&request); err != nil {

s.Logger.Warningf("api networks fe api: request decode %s %s: %s", u.ID, u.Email, err)

errors.AddError("Invalid data.")

jsonresponse.BadRequest(w, errors)

return

}

authorizedNetworks := []net.IPNet{}

for _, a := range request.AuthorizedNetworks {

_, net, err := net.ParseCIDR(a)

if err != nil {

s.Logger.Warningf("api networks fe api: user id %s: invalid cidr notation: %s", u.ID, a)

errors.AddFieldError("authorized_network_"+a, "Invalid CIDR notation.")

continue

}

found := false

for _, n := range authorizedNetworks {

if n.String() == net.String() {

found = true

break

}

}

if !found {

authorizedNetworks = append(authorizedNetworks, *net)

}

}

if errors.HasErrors() {

errors.AddError("Networks are not saved.")

jsonresponse.BadRequest(w, errors)

return

}

k, err := s.KeyService.UpdateKey(u.ID, &key.Options{

AuthorizedNetworks: &authorizedNetworks,

})

if err != nil {

if err == key.ErrKeyNotFound {

s.Logger.Warningf("api networks fe api: update key %s: %s", u.ID, err)

jsonresponse.NotFound(w, jsonresponse.NewMessage("API key not found"))

return

}

s.Logger.Errorf("api networks fe api: update key %s: %s", u.ID, err)

jsonServerError(w, err)

return

}

response := apiNetworksFEAPIResponse{}

for _, n := range k.AuthorizedNetworks {

response.AuthorizedNetworks = append(response.AuthorizedNetworks, n.String())

}

s.audit(r, response, "update api networks", "")

jsonresponse.OK(w, response)

}