storj/satellite/console/consoleweb/consoleapi/apikeys.go

// Copyright (C) 2021 Storj Labs, Inc.
// See LICENSE for copying information.

package consoleapi

import (
	"encoding/json"
	"net/http"

	"github.com/zeebo/errs"
	"go.uber.org/zap"

	"storj.io/common/uuid"
	"storj.io/storj/private/web"
	"storj.io/storj/satellite/console"
)

var (
	// ErrAPIKeysAPI - console api keys api error type.
	ErrAPIKeysAPI = errs.Class("console api keys")
)

// APIKeys is an api controller that exposes all api keys related functionality.
type APIKeys struct {
	log     *zap.Logger
	service *console.Service
}

// NewAPIKeys is a constructor for api api keys controller.
func NewAPIKeys(log *zap.Logger, service *console.Service) *APIKeys {
	return &APIKeys{
		log:     log,
		service: service,
	}
}

// GetAllAPIKeyNames returns all api key names by project ID.
func (keys *APIKeys) GetAllAPIKeyNames(w http.ResponseWriter, r *http.Request) {
	ctx := r.Context()
	var err error
	defer mon.Task()(&ctx)(&err)

	projectIDString := r.URL.Query().Get("projectID")
	if projectIDString == "" {
		keys.serveJSONError(w, http.StatusBadRequest, errs.New("Project ID was not provided."))
		return
	}

	projectID, err := uuid.FromString(projectIDString)
	if err != nil {
		keys.serveJSONError(w, http.StatusBadRequest, err)
		return
	}

	apiKeyNames, err := keys.service.GetAllAPIKeyNamesByProjectID(ctx, projectID)
	if err != nil {
		if console.ErrUnauthorized.Has(err) {
			keys.serveJSONError(w, http.StatusUnauthorized, err)
			return
		}

		keys.serveJSONError(w, http.StatusInternalServerError, err)
		return
	}

	err = json.NewEncoder(w).Encode(apiKeyNames)
	if err != nil {
		keys.log.Error("failed to write json all api key names response", zap.Error(ErrAPIKeysAPI.Wrap(err)))
	}
}

// DeleteByNameAndProjectID deletes specific api key by it's name and project ID.
// ID here may be project.publicID or project.ID.
func (keys *APIKeys) DeleteByNameAndProjectID(w http.ResponseWriter, r *http.Request) {
	ctx := r.Context()
	var err error
	defer mon.Task()(&ctx)(&err)

	name := r.URL.Query().Get("name")
	projectIDString := r.URL.Query().Get("projectID")
	publicIDString := r.URL.Query().Get("publicID")

	if name == "" {
		keys.serveJSONError(w, http.StatusBadRequest, err)
		return
	}

	var projectID uuid.UUID
	if projectIDString != "" {
		projectID, err = uuid.FromString(projectIDString)
		if err != nil {
			keys.serveJSONError(w, http.StatusBadRequest, err)
			return
		}
	} else if publicIDString != "" {
		projectID, err = uuid.FromString(publicIDString)
		if err != nil {
			keys.serveJSONError(w, http.StatusBadRequest, err)
			return
		}
	} else {
		keys.serveJSONError(w, http.StatusBadRequest, errs.New("Project ID was not provided."))
		return
	}

	err = keys.service.DeleteAPIKeyByNameAndProjectID(ctx, name, projectID)
	if err != nil {
		if console.ErrUnauthorized.Has(err) {
			keys.serveJSONError(w, http.StatusUnauthorized, err)
			return
		}

		if console.ErrNoAPIKey.Has(err) {
			keys.serveJSONError(w, http.StatusNoContent, err)
			return
		}

		keys.serveJSONError(w, http.StatusInternalServerError, err)
		return
	}
}

// serveJSONError writes JSON error to response output stream.
func (keys *APIKeys) serveJSONError(w http.ResponseWriter, status int, err error) {
	web.ServeJSONError(keys.log, w, status, err)
}
satellite/console: delete api key by name and project id endpoint WHAT: new endpoint to be able to delete apiKey/accessGrant by name and project id WHY: it will be called to delete special pregenerated access grant which will be used to generate gateway credentials for file browser component or bucket management Change-Id: I7467ebaab27a7da33efd062536c6da41e6ed4c30 2021-03-16 19:43:02 +00:00			`// Copyright (C) 2021 Storj Labs, Inc.`
			`// See LICENSE for copying information.`

			`package consoleapi`

			`import (`
satellite/{console, db}: endpoint to get all API key names by project ID Added new endpoint, service method and DB query to get all API key names by provided project ID. Issue: https://github.com/storj/storj/issues/5693 Change-Id: I62e4e8ae660bd81234b75aa159a472a5aa9d5a48 2023-06-12 13:42:49 +01:00			`"encoding/json"`
satellite/console: delete api key by name and project id endpoint WHAT: new endpoint to be able to delete apiKey/accessGrant by name and project id WHY: it will be called to delete special pregenerated access grant which will be used to generate gateway credentials for file browser component or bucket management Change-Id: I7467ebaab27a7da33efd062536c6da41e6ed4c30 2021-03-16 19:43:02 +00:00			`"net/http"`

			`"github.com/zeebo/errs"`
			`"go.uber.org/zap"`

			`"storj.io/common/uuid"`
private/web,satellite/console/.../consoleapi: serve rate limiting errors as JSON This change causes rate limiting errors to be returned to the client as JSON objects rather than plain text to prevent the satellite UI from encountering issues when trying to parse them. Resolves storj/customer-issues#88 Change-Id: I11abd19068927a22f1c28d18fc99e7dad8461834 2022-11-21 18:58:42 +00:00			`"storj.io/storj/private/web"`
satellite/console: delete api key by name and project id endpoint WHAT: new endpoint to be able to delete apiKey/accessGrant by name and project id WHY: it will be called to delete special pregenerated access grant which will be used to generate gateway credentials for file browser component or bucket management Change-Id: I7467ebaab27a7da33efd062536c6da41e6ed4c30 2021-03-16 19:43:02 +00:00			`"storj.io/storj/satellite/console"`
			`)`

			`var (`
			`// ErrAPIKeysAPI - console api keys api error type.`
satellite/console: new endpoint to get total usage and limits for all the projects user owns Added new endpoint and service method to return total usage and limits for all the projects that user owns. It is needed for new paid tier UI Change-Id: Ic5b67ca7b275ec4930d976a007168235c0500b70 2021-06-24 16:49:15 +01:00			`ErrAPIKeysAPI = errs.Class("console api keys")`
satellite/console: delete api key by name and project id endpoint WHAT: new endpoint to be able to delete apiKey/accessGrant by name and project id WHY: it will be called to delete special pregenerated access grant which will be used to generate gateway credentials for file browser component or bucket management Change-Id: I7467ebaab27a7da33efd062536c6da41e6ed4c30 2021-03-16 19:43:02 +00:00			`)`

			`// APIKeys is an api controller that exposes all api keys related functionality.`
			`type APIKeys struct {`
			`log *zap.Logger`
			`service *console.Service`
			`}`

			`// NewAPIKeys is a constructor for api api keys controller.`
			`func NewAPIKeys(log zap.Logger, service console.Service) *APIKeys {`
			`return &APIKeys{`
			`log: log,`
			`service: service,`
			`}`
			`}`

satellite/{console, db}: endpoint to get all API key names by project ID Added new endpoint, service method and DB query to get all API key names by provided project ID. Issue: https://github.com/storj/storj/issues/5693 Change-Id: I62e4e8ae660bd81234b75aa159a472a5aa9d5a48 2023-06-12 13:42:49 +01:00			`// GetAllAPIKeyNames returns all api key names by project ID.`
			`func (keys APIKeys) GetAllAPIKeyNames(w http.ResponseWriter, r http.Request) {`
			`ctx := r.Context()`
			`var err error`
			`defer mon.Task()(&ctx)(&err)`

			`projectIDString := r.URL.Query().Get("projectID")`
			`if projectIDString == "" {`
			`keys.serveJSONError(w, http.StatusBadRequest, errs.New("Project ID was not provided."))`
			`return`
			`}`

			`projectID, err := uuid.FromString(projectIDString)`
			`if err != nil {`
			`keys.serveJSONError(w, http.StatusBadRequest, err)`
			`return`
			`}`

			`apiKeyNames, err := keys.service.GetAllAPIKeyNamesByProjectID(ctx, projectID)`
			`if err != nil {`
			`if console.ErrUnauthorized.Has(err) {`
			`keys.serveJSONError(w, http.StatusUnauthorized, err)`
			`return`
			`}`

			`keys.serveJSONError(w, http.StatusInternalServerError, err)`
			`return`
			`}`

			`err = json.NewEncoder(w).Encode(apiKeyNames)`
			`if err != nil {`
			`keys.log.Error("failed to write json all api key names response", zap.Error(ErrAPIKeysAPI.Wrap(err)))`
			`}`
			`}`

satellite/console: delete api key by name and project id endpoint WHAT: new endpoint to be able to delete apiKey/accessGrant by name and project id WHY: it will be called to delete special pregenerated access grant which will be used to generate gateway credentials for file browser component or bucket management Change-Id: I7467ebaab27a7da33efd062536c6da41e6ed4c30 2021-03-16 19:43:02 +00:00			`// DeleteByNameAndProjectID deletes specific api key by it's name and project ID.`
satellite/{console,web}: support delete by ID and publicID Update the delete API key by name and projectID to support project-ID and project-publicID. Issue: https://github.com/storj/storj/issues/5410 Change-Id: I3bd11b9c3ae1ad6ce662dfc18b42779d2e4edf9b 2023-01-05 09:17:16 +00:00			`// ID here may be project.publicID or project.ID.`
satellite/console: delete api key by name and project id endpoint WHAT: new endpoint to be able to delete apiKey/accessGrant by name and project id WHY: it will be called to delete special pregenerated access grant which will be used to generate gateway credentials for file browser component or bucket management Change-Id: I7467ebaab27a7da33efd062536c6da41e6ed4c30 2021-03-16 19:43:02 +00:00			`func (keys APIKeys) DeleteByNameAndProjectID(w http.ResponseWriter, r http.Request) {`
			`ctx := r.Context()`
			`var err error`
			`defer mon.Task()(&ctx)(&err)`

			`name := r.URL.Query().Get("name")`
			`projectIDString := r.URL.Query().Get("projectID")`
satellite/{console,web}: support delete by ID and publicID Update the delete API key by name and projectID to support project-ID and project-publicID. Issue: https://github.com/storj/storj/issues/5410 Change-Id: I3bd11b9c3ae1ad6ce662dfc18b42779d2e4edf9b 2023-01-05 09:17:16 +00:00			`publicIDString := r.URL.Query().Get("publicID")`
satellite/console: delete api key by name and project id endpoint WHAT: new endpoint to be able to delete apiKey/accessGrant by name and project id WHY: it will be called to delete special pregenerated access grant which will be used to generate gateway credentials for file browser component or bucket management Change-Id: I7467ebaab27a7da33efd062536c6da41e6ed4c30 2021-03-16 19:43:02 +00:00
			`if name == "" {`
			`keys.serveJSONError(w, http.StatusBadRequest, err)`
			`return`
			`}`

satellite/{console,web}: support delete by ID and publicID Update the delete API key by name and projectID to support project-ID and project-publicID. Issue: https://github.com/storj/storj/issues/5410 Change-Id: I3bd11b9c3ae1ad6ce662dfc18b42779d2e4edf9b 2023-01-05 09:17:16 +00:00			`var projectID uuid.UUID`
			`if projectIDString != "" {`
			`projectID, err = uuid.FromString(projectIDString)`
			`if err != nil {`
			`keys.serveJSONError(w, http.StatusBadRequest, err)`
			`return`
			`}`
			`} else if publicIDString != "" {`
			`projectID, err = uuid.FromString(publicIDString)`
			`if err != nil {`
			`keys.serveJSONError(w, http.StatusBadRequest, err)`
			`return`
			`}`
			`} else {`
			`keys.serveJSONError(w, http.StatusBadRequest, errs.New("Project ID was not provided."))`
satellite/console: delete api key by name and project id endpoint WHAT: new endpoint to be able to delete apiKey/accessGrant by name and project id WHY: it will be called to delete special pregenerated access grant which will be used to generate gateway credentials for file browser component or bucket management Change-Id: I7467ebaab27a7da33efd062536c6da41e6ed4c30 2021-03-16 19:43:02 +00:00			`return`
			`}`

			`err = keys.service.DeleteAPIKeyByNameAndProjectID(ctx, name, projectID)`
			`if err != nil {`
			`if console.ErrUnauthorized.Has(err) {`
			`keys.serveJSONError(w, http.StatusUnauthorized, err)`
			`return`
			`}`

web/satellite: buckets view for objects page WHAT: buckets management view for objects page WHY: to be able to create and delete buckets Change-Id: I6df986b52928433f7a0a4c4772d3064c4f1a1516 2021-03-23 20:23:27 +00:00			`if console.ErrNoAPIKey.Has(err) {`
			`keys.serveJSONError(w, http.StatusNoContent, err)`
			`return`
			`}`

satellite/console: delete api key by name and project id endpoint WHAT: new endpoint to be able to delete apiKey/accessGrant by name and project id WHY: it will be called to delete special pregenerated access grant which will be used to generate gateway credentials for file browser component or bucket management Change-Id: I7467ebaab27a7da33efd062536c6da41e6ed4c30 2021-03-16 19:43:02 +00:00			`keys.serveJSONError(w, http.StatusInternalServerError, err)`
			`return`
			`}`
			`}`

			`// serveJSONError writes JSON error to response output stream.`
			`func (keys *APIKeys) serveJSONError(w http.ResponseWriter, status int, err error) {`
private/web,satellite/console/.../consoleapi: serve rate limiting errors as JSON This change causes rate limiting errors to be returned to the client as JSON objects rather than plain text to prevent the satellite UI from encountering issues when trying to parse them. Resolves storj/customer-issues#88 Change-Id: I11abd19068927a22f1c28d18fc99e7dad8461834 2022-11-21 18:58:42 +00:00			`web.ServeJSONError(keys.log, w, status, err)`
satellite/console: delete api key by name and project id endpoint WHAT: new endpoint to be able to delete apiKey/accessGrant by name and project id WHY: it will be called to delete special pregenerated access grant which will be used to generate gateway credentials for file browser component or bucket management Change-Id: I7467ebaab27a7da33efd062536c6da41e6ed4c30 2021-03-16 19:43:02 +00:00			`}`