Skip to content
GitLab
Projects
Groups
Snippets
Help
Loading...
Help
Help
Support
Community forum
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in
Toggle navigation
feudalBackend
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
18
Issues
18
List
Boards
Labels
Service Desk
Milestones
Merge Requests
1
Merge Requests
1
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Operations
Operations
Incidents
Environments
Analytics
Analytics
CI / CD
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
feudal
feudalBackend
Commits
8dacca2d
Commit
8dacca2d
authored
Nov 20, 2018
by
Lukas Burgey
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
First REST prototype
The problem is that we don't have deployment 'per service'
parent
c307f65b
Changes
1
Hide whitespace changes
Inline
Side-by-side
Showing
1 changed file
with
58 additions
and
34 deletions
+58
-34
feudal/backend/views/user_rest.py
feudal/backend/views/user_rest.py
+58
-34
No files found.
feudal/backend/views/user_rest.py
View file @
8dacca2d
...
...
@@ -2,76 +2,100 @@
import
logging
from
django.contrib.auth
import
authenticate
from
django.shortcuts
import
get_object_or_404
from
rest_framework
import
status
from
rest_framework
import
views
from
rest_framework.permissions
import
AllowAny
from
rest_framework.response
import
Response
from
..
import
models
from
..models
import
serializers
LOGGER
=
logging
.
getLogger
(
__name__
)
example_input
=
{
EXAMPLE_INPUT
=
{
'at'
:
'<OpenID Connect Access Token>'
,
'iss'
:
'<Issuer URI>'
,
'key'
:
'<SSH public key>'
,
'key_name'
:
'<SSH public key name>'
,
'key_value'
:
'<Value for a new SSH key (if the key "key_name" does not yet exist)>'
,
's'
:
'<service identifier>'
,
}
def
_error_response
(
error
):
def
_error_response
(
request
,
error
):
return
Response
(
{
'error'
:
error
,
'example_input'
:
example_input
'example_input'
:
EXAMPLE_INPUT
,
'request.data'
:
request
.
data
},
status
=
status
.
HTTP_400_BAD_REQUEST
,
)
class
ProvisioningView
(
views
.
APIView
):
permission_classes
=
(
AllowAny
,)
@
staticmethod
def
access_token_valid
(
access_token
):
return
False
@
staticmethod
def
service_exists
(
service_id
):
return
False
def
post
(
self
,
request
):
LOGGER
.
debug
(
"Got user REST request: %s"
,
request
)
if
'at'
not
in
request
.
data
:
return
_error_response
(
"Need access token field 'at'"
)
return
_error_response
(
request
,
"Need access token field 'at'"
)
if
'iss'
not
in
request
.
data
:
return
_error_response
(
"Need issuer uri field 'iss'"
)
if
'key'
not
in
request
.
data
:
return
_error_response
(
"Need ssh key field 'key'"
)
if
's'
not
in
request
.
data
:
return
_error_response
(
"Need service identifier field 's'"
)
access_token
=
request
.
data
[
'at'
]
issuer_uri
=
request
.
data
[
'iss'
]
key
=
request
.
data
[
'key'
]
service_id
=
request
.
data
[
's'
]
return
_error_response
(
request
,
"Need issuer uri field 'iss'"
)
user
=
authenticate
(
request
,
token
=
access_token
,
issuer_uri
=
issuer_uri
,
token
=
request
.
data
[
'at'
]
,
issuer_uri
=
request
.
data
[
'iss'
]
,
)
if
user
is
None
:
return
_error_response
(
request
,
"Unable to authenticate user"
)
if
user
is
None
:
return
_error_response
(
"Unable to authenticate user"
)
LOGGER
.
debug
(
"USER-RESTAPI: authenticated user %s using access token"
,
user
)
if
'key_name'
not
in
request
.
data
:
return
_error_response
(
request
,
"Need ssh key field 'key_name'"
)
ssh_key
=
None
if
not
self
.
service_exists
(
service_id
):
return
_error_response
(
"Invalid service id: Does not exist"
)
try
:
ssh_key
=
user
.
ssh_keys
.
get
(
name
=
request
.
data
[
'key_name'
]
)
return
Response
({
'foo'
:
'bar'
,
})
except
models
.
SSHPublicKey
.
DoesNotExist
:
if
'key_value'
not
in
request
.
data
:
return
_error_response
(
request
,
"Need ssh key field 'key_value'"
)
ssh_key
=
models
.
SSHPublicKey
(
name
=
request
.
data
[
'key_name'
],
key
=
request
.
data
[
'key_value'
],
user
=
user
,
)
ssh_key
.
save
()
if
's'
not
in
request
.
data
:
return
_error_response
(
request
,
"Need service identifier field 's'"
)
try
:
service
=
user
.
services
.
get
(
name
=
request
.
data
[
's'
],
)
# the problem is that without VO name the state items may be ambiguous
state_items
=
user
.
state_items
.
filter
(
service
=
service
)
return
Response
({
'state_items'
:
serializers
.
DeploymentStateSerializer
(
state_items
,
many
=
True
).
data
,
'service'
:
serializers
.
ServiceSerializer
(
service
).
data
,
'ssh_key'
:
serializers
.
SSHPublicKeySerializer
(
ssh_key
).
data
,
})
except
models
.
Service
.
DoesNotExist
:
return
_error_response
(
request
,
"Service '%s' does not exist / you are not authorised to use it"
.
format
(
request
.
data
[
's'
]),
)
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
.
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment
