Domů Procházet Nápověda
Přihlásit se
akillibulut
/
porter
zrcadlo https://github.com/porter-dev/porter
2
0
Rozštěpit 0
Soubory Úkoly 0 Wiki
Větev: stacks-improved-debug-flow-pre-deploy
Větve Značky
porter
/
api
/
server
/
handlers
/
policy
/
create.go

create.go 2.1 KB
Trvalý odkaz Historie Surový

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586 
  1. package policy
    2. 

  2. 

  3. import (
    4. 

  4. 	"encoding/json"
    5. 

  5. 	"fmt"
    6. 

  6. 	"net/http"
    7. 

  7. 	"strings"
    8. 

  8. 

  9. 	"github.com/porter-dev/porter/api/server/handlers"
    10. 

  10. 	"github.com/porter-dev/porter/api/server/shared"
    11. 

  11. 	"github.com/porter-dev/porter/api/server/shared/apierrors"
    12. 

  12. 	"github.com/porter-dev/porter/api/server/shared/config"
    13. 

  13. 	"github.com/porter-dev/porter/api/types"
    14. 

  14. 	"github.com/porter-dev/porter/internal/encryption"
    15. 

  15. 	"github.com/porter-dev/porter/internal/models"
    16. 

  16. )
    17. 

  17. 

  18. type PolicyCreateHandler struct {
    19. 

  19. 	handlers.PorterHandlerReadWriter
    20. 

  20. }
    21. 

  21. 

  22. func NewPolicyCreateHandler(
    23. 

  23. 	config *config.Config,
    24. 

  24. 	decoderValidator shared.RequestDecoderValidator,
    25. 

  25. 	writer shared.ResultWriter,
    26. 

  26. ) *PolicyCreateHandler {
    27. 

  27. 	return &PolicyCreateHandler{
    28. 

  28. 		PorterHandlerReadWriter: handlers.NewDefaultPorterHandler(config, decoderValidator, writer),
    29. 

  29. 	}
    30. 

  30. }
    31. 

  31. 

  32. func (p *PolicyCreateHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
    33. 

  33. 	user, _ := r.Context().Value(types.UserScope).(*models.User)
    34. 

  34. 	proj, _ := r.Context().Value(types.ProjectScope).(*models.Project)
    35. 

  35. 

  36. 	req := &types.CreatePolicy{}
    37. 

  37. 

  38. 	if ok := p.DecodeAndValidate(w, r, req); !ok {
    39. 

  39. 		return
    40. 

  40. 	}
    41. 

  41. 

  42. 	// policy can't be one of the preset policy names
    43. 

  43. 	if name := strings.ToLower(req.Name); name == "admin" || name == "developer" || name == "viewer" {
    44. 

  44. 		p.HandleAPIError(w, r, apierrors.NewErrPassThroughToClient(
    45. 

  45. 			fmt.Errorf("name cannot be one of the preset policy names"),
    46. 

  46. 			http.StatusBadRequest,
    47. 

  47. 		))
    48. 

  48. 

  49. 		return
    50. 

  50. 	}
    51. 

  51. 

  52. 	uid, err := encryption.GenerateRandomBytes(16)
    53. 

  53. 	if err != nil {
    54. 

  54. 		p.HandleAPIError(w, r, apierrors.NewErrInternal(err))
    55. 

  55. 		return
    56. 

  56. 	}
    57. 

  57. 

  58. 	policyBytes, err := json.Marshal(req.Policy)
    59. 

  59. 	if err != nil {
    60. 

  60. 		p.HandleAPIError(w, r, apierrors.NewErrInternal(err))
    61. 

  61. 		return
    62. 

  62. 	}
    63. 

  63. 

  64. 	policy := &models.Policy{
    65. 

  65. 		ProjectID:       proj.ID,
    66. 

  66. 		UniqueID:        uid,
    67. 

  67. 		CreatedByUserID: user.ID,
    68. 

  68. 		Name:            req.Name,
    69. 

  69. 		PolicyBytes:     policyBytes,
    70. 

  70. 	}
    71. 

  71. 

  72. 	policy, err = p.Repo().Policy().CreatePolicy(policy)
    73. 

  73. 

  74. 	if err != nil {
    75. 

  75. 		p.HandleAPIError(w, r, apierrors.NewErrInternal(err))
    76. 

  76. 		return
    77. 

  77. 	}
    78. 

  78. 

  79. 	res, err := policy.ToAPIPolicyType()
    80. 

  80. 	if err != nil {
    81. 

  81. 		p.HandleAPIError(w, r, apierrors.NewErrInternal(err))
    82. 

  82. 		return
    83. 

  83. 	}
    84. 

  84. 

  85. 	p.WriteResult(w, r, res)
    86. 

  86. }
    87.