JakeHillion/storj
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
e072b37a86
storj/satellite/admin/server.go

301 lines
12 KiB
Go
Raw Normal View History

satellite/admin: administrative endpoint Admin server allows creating basic REST and html API-s for different administrative tasks. Change-Id: I3dc1786abe1c87350eed60ec90e48130f44e63cf
2020-02-07 16:36:28 +00:00
// Copyright (C) 2020 Storj Labs, Inc.
// See LICENSE for copying information.
// Package admin implements administrative endpoints for satellite.
package admin
import (
"context"
satellite/admin: add project limit modification and authorization token Change-Id: If9a7214a940b8544f8023c2cd82da21f19d3f521
2020-02-07 17:24:58 +00:00
"crypto/subtle"
all: separate err check for http We want to avoid net/http dependency in errs2 package, hence we removed http.ErrServerClosed from IgnoreCanceled and IsCanceled check. Now we need to add that check explicitly to every http endpoint. Change-Id: I62b1cc0a0a2d3b43301d713a7951e5022145f88f
2020-04-16 16:50:22 +01:00
"errors"
satellite/{admin,ui}: implement changes for oauth2 proxy We want to put the OAuth2 proxy, https://github.com/oauth2-proxy/oauth2-proxy, in front of the satellite admin ui. This change implements the changes required/necessary for this to work. Issue: https://github.com/storj/storj/issues/5072 Change-Id: I6da0df090cc6f0c18f1bf41e48ae082493f53f20
2022-11-10 13:19:42 +00:00
"fmt"
satellite/admin: administrative endpoint Admin server allows creating basic REST and html API-s for different administrative tasks. Change-Id: I3dc1786abe1c87350eed60ec90e48130f44e63cf
2020-02-07 16:36:28 +00:00
"net"
"net/http"
satellite/admin: restrict api access based on user groups This change reworks the allowedAuthorization function to check what groups the user is a part of to determine if authorization should be granted. By wrapping each handler with withAuth, we can specify the allowed groups for each api method individually. github issue: https://github.com/storj/storj/issues/5565 Change-Id: I1804dda04d5b16d19e93bd7199fb3fc89fca1294
2023-02-21 21:47:45 +00:00
"strings"
satellite/admin: use correct period end time to get results Change-Id: Ib0e76f96e61b39c98f0f5f683b39d622d235c4d8
2020-09-03 22:12:26 +01:00
"time"
satellite/admin: administrative endpoint Admin server allows creating basic REST and html API-s for different administrative tasks. Change-Id: I3dc1786abe1c87350eed60ec90e48130f44e63cf
2020-02-07 16:36:28 +00:00
"github.com/gorilla/mux"
"go.uber.org/zap"
"golang.org/x/sync/errgroup"
satellite/admin: add project limit modification and authorization token Change-Id: If9a7214a940b8544f8023c2cd82da21f19d3f521
2020-02-07 17:24:58 +00:00
all: separate err check for http We want to avoid net/http dependency in errs2 package, hence we removed http.ErrServerClosed from IgnoreCanceled and IsCanceled check. Now we need to add that check explicitly to every http endpoint. Change-Id: I62b1cc0a0a2d3b43301d713a7951e5022145f88f
2020-04-16 16:50:22 +01:00
"storj.io/common/errs2"
satellite/admin: add project limit modification and authorization token Change-Id: If9a7214a940b8544f8023c2cd82da21f19d3f521
2020-02-07 17:24:58 +00:00
"storj.io/storj/satellite/accounting"
satellite/admin: Serve back-office static UI Serve the front-end sources of the new back-office through the current satellite admin server under the path `/back-office`. The front-end is served in the same way than the current one, which is through an indicated directory path with a configuration parameter or embed in the binary when that configuration parameter is empty. The commit also slightly changes the test that checks serving these static assets for not targeting the empty file in the build folder. build folders must remain because of the embed directive. Change-Id: I3c5af6b75ec944722dbdc4c560d0e7d907a205b8
2023-08-31 14:22:08 +01:00
backofficeui "storj.io/storj/satellite/admin/back-office/ui"
satellite/admin/ui: avoid needing an additional copy This also fixes the build order. Unfortunately we need to ensure that the web frontends are built before installing Go binaries. Fixes https://github.com/storj/storj/issues/4654 Change-Id: I5d1c83125fd3d1a454d3400b2cbdd44bd3f2250c
2022-03-23 13:29:47 +00:00
adminui "storj.io/storj/satellite/admin/ui"
satellite/{db, admin}: added endpoints to update user's and project's user_agent Added backend (for now) implementation for updating user's and projects's user_agent using admin API. Updating both user and project also updates bucket_metainfo and value_attribution tables. Issue: https://github.com/storj/storj-private/issues/297 Change-Id: I40244bbaa08b46834c1b1d0720e7d84d0c2a0330
2023-06-13 16:58:24 +01:00
"storj.io/storj/satellite/attribution"
satellite/buckets: add new buckets service The main motivation is to wrap the bucket DB and metainfo DB, so we could check if a bucket is empty before applying geofencing config. Change-Id: I8bac21555e01d51a663fb557bc1acfc8106bc2e1
2021-11-12 20:47:41 +00:00
"storj.io/storj/satellite/buckets"
satellite/admin: add project limit modification and authorization token Change-Id: If9a7214a940b8544f8023c2cd82da21f19d3f521
2020-02-07 17:24:58 +00:00
"storj.io/storj/satellite/console"
satellite/admin: fix console config handling An older change plummed the full console config as subconfig of the admin api configuration in. This bloated the generated satellite configuration unnecessarily while also allow for confusion/mistakes. Change-Id: Icf49cc1f147711e37e85f6eac1143fab8ddf1659
2022-05-27 21:13:01 +01:00
"storj.io/storj/satellite/console/consoleweb"
satellite: Rename "acct mgmt api" to "rest api" "REST API" is a more accurate descriptor of the generated API in the console package than "account management API". The generated API is very flexible and will allow us to implement many more endpoints outside the scope of "account management", and "account management" is not very well defined to begin with. Change-Id: Ie87faeaa3c743ef4371eaf0edd2826303d592da7
2022-04-12 17:59:07 +01:00
"storj.io/storj/satellite/console/restkeys"
satellite/oidc: move oidc into common package Change-Id: I77702e0e46f15a09fee315b9076638e1412836f7
2022-01-19 18:25:31 +00:00
"storj.io/storj/satellite/oidc"
satellite/admin: add user deletion Change-Id: Ideea978698183e25f5e0d73128c4f93c2caa1577
2020-07-06 22:31:40 +01:00
"storj.io/storj/satellite/payments"
satellite/payments: rename 'stripecoinpayments' package to 'stripe' Automatic rename. May require some more cleanups later. Change-Id: I18220a4278056d25c41fb137832bb81f2b876ac1
2023-04-06 12:41:14 +01:00
"storj.io/storj/satellite/payments/stripe"
satellite/admin: administrative endpoint Admin server allows creating basic REST and html API-s for different administrative tasks. Change-Id: I3dc1786abe1c87350eed60ec90e48130f44e63cf
2020-02-07 16:36:28 +00:00
)
satellite/admin: add tests to admin auth This change tests authorization of the admin api. Issue: https://github.com/storj/storj/issues/5699 Change-Id: Iecfe4c27a70ab1b48aeb5ed3251b51a3406140e8
2023-04-12 16:06:36 +01:00
const (
// UnauthorizedThroughOauth - message for full accesses through Oauth.
UnauthorizedThroughOauth = "This operation is not authorized through oauth."
// UnauthorizedNotInGroup - message for when api user is not part of a required access group.
UnauthorizedNotInGroup = "User must be a member of one of these groups to conduct this operation: %s"
// AuthorizationNotEnabled - message for when authorization is disabled.
AuthorizationNotEnabled = "Authorization not enabled."
)
satellite/admin: administrative endpoint Admin server allows creating basic REST and html API-s for different administrative tasks. Change-Id: I3dc1786abe1c87350eed60ec90e48130f44e63cf
2020-02-07 16:36:28 +00:00
// Config defines configuration for debug server.
type Config struct {
satellite/admin: Serve back-office static UI Serve the front-end sources of the new back-office through the current satellite admin server under the path `/back-office`. The front-end is served in the same way than the current one, which is through an indicated directory path with a configuration parameter or embed in the binary when that configuration parameter is empty. The commit also slightly changes the test that checks serving these static assets for not targeting the empty file in the build folder. build folders must remain because of the embed directive. Change-Id: I3c5af6b75ec944722dbdc4c560d0e7d907a205b8
2023-08-31 14:22:08 +01:00
Address string `help:"admin peer http listening address" releaseDefault:"" devDefault:""`
StaticDir string `help:"an alternate directory path which contains the static assets to serve. When empty, it uses the embedded assets" releaseDefault:"" devDefault:""`
StaticDirBackOffice string `help:"an alternate directory path which contains the static assets for the currently in development back-office. When empty, it uses the embedded assets" releaseDefault:"" devDefault:""`
AllowedOauthHost string `help:"the oauth host allowed to bypass token authentication."`
Groups Groups
satellite/admin: add project limit modification and authorization token Change-Id: If9a7214a940b8544f8023c2cd82da21f19d3f521
2020-02-07 17:24:58 +00:00
AuthorizationToken string `internal:"true"`
}
satellite/admin: add Groups to config add new config to the satellite admin: --admin.groups.limit-update. This can be used as an alternate means of authentication if the request is coming from the oauth proxy. Change-Id: Ic2de13862e6414244b060c66a0f2bed72097cbad
2023-02-21 22:03:46 +00:00
// Groups defines permission groups.
type Groups struct {
LimitUpdate string `help:"the group which is only allowed to update user and project limits and freeze and unfreeze accounts."`
}
satellite/admin: add project limit modification and authorization token Change-Id: If9a7214a940b8544f8023c2cd82da21f19d3f521
2020-02-07 17:24:58 +00:00
// DB is databases needed for the admin server.
type DB interface {
// ProjectAccounting returns database for storing information about project data use
ProjectAccounting() accounting.ProjectAccounting
// Console returns database for satellite console
Console() console.DB
satellite/oidc: move oidc into common package Change-Id: I77702e0e46f15a09fee315b9076638e1412836f7
2022-01-19 18:25:31 +00:00
// OIDC returns the database for OIDC and OAuth information.
OIDC() oidc.DB
satellite/admin: add coupon creation and listing (#3891)
2020-05-19 11:36:13 +01:00
// StripeCoinPayments returns database for satellite stripe coin payments
satellite/payments: rename 'stripecoinpayments' package to 'stripe' Automatic rename. May require some more cleanups later. Change-Id: I18220a4278056d25c41fb137832bb81f2b876ac1
2023-04-06 12:41:14 +01:00
StripeCoinPayments() stripe.DB
satellite/{db, admin}: added endpoints to update user's and project's user_agent Added backend (for now) implementation for updating user's and projects's user_agent using admin API. Updating both user and project also updates bucket_metainfo and value_attribution tables. Issue: https://github.com/storj/storj-private/issues/297 Change-Id: I40244bbaa08b46834c1b1d0720e7d84d0c2a0330
2023-06-13 16:58:24 +01:00
// Buckets returns database for buckets metainfo.
Buckets() buckets.DB
// Attribution returns database for value attribution.
Attribution() attribution.DB
satellite/admin: administrative endpoint Admin server allows creating basic REST and html API-s for different administrative tasks. Change-Id: I3dc1786abe1c87350eed60ec90e48130f44e63cf
2020-02-07 16:36:28 +00:00
}
satellite/admin: add check project usage endpoint and fix some leftover http.Error handling Change-Id: I1ae3e7cb723a553f9c5a3a752beab0a27b0293bc
2020-08-13 13:40:05 +01:00
// Server provides endpoints for administrative tasks.
satellite/admin: administrative endpoint Admin server allows creating basic REST and html API-s for different administrative tasks. Change-Id: I3dc1786abe1c87350eed60ec90e48130f44e63cf
2020-02-07 16:36:28 +00:00
type Server struct {
log *zap.Logger
listener net.Listener
server http.Server
satellite/admin: add project limit modification and authorization token Change-Id: If9a7214a940b8544f8023c2cd82da21f19d3f521
2020-02-07 17:24:58 +00:00
satellite/admin: add endpoint to freeze/unfreeze user Allow the admin to manually freeze/unfreeze users. github issue: https://github.com/storj/storj/issues/5397 Change-Id: I402ad1bf2e13effb0a5a8ff35bb128d1fcf18448
2022-12-16 15:17:27 +00:00
db DB
payments payments.Accounts
buckets *buckets.Service
restKeys *restkeys.Service
freezeAccounts *console.AccountFreezeService
satellite/admin: use correct period end time to get results Change-Id: Ib0e76f96e61b39c98f0f5f683b39d622d235c4d8
2020-09-03 22:12:26 +01:00
nowFn func() time.Time
satellite/{console,satellitedb}: move project limits from config file to DB to keep limits on a per user basis To allow for changing limits for new users, while leaving existing users limits as they are, we must store the project limits for each user. We currently store the limit for the number of projects a user can create in the user DB table. This change would also store the project bandwidth and storage limits in the same table. Change-Id: If8d79b39de020b969f3445ef2fcc370e51d706c6
2021-11-01 15:27:32 +00:00
satellite/admin: fix console config handling An older change plummed the full console config as subconfig of the admin api configuration in. This bloated the generated satellite configuration unnecessarily while also allow for confusion/mistakes. Change-Id: Icf49cc1f147711e37e85f6eac1143fab8ddf1659
2022-05-27 21:13:01 +01:00
console consoleweb.Config
config Config
satellite/admin: administrative endpoint Admin server allows creating basic REST and html API-s for different administrative tasks. Change-Id: I3dc1786abe1c87350eed60ec90e48130f44e63cf
2020-02-07 16:36:28 +00:00
}
satellite/admin: add check project usage endpoint and fix some leftover http.Error handling Change-Id: I1ae3e7cb723a553f9c5a3a752beab0a27b0293bc
2020-08-13 13:40:05 +01:00
// NewServer returns a new administration Server.
satellite/admin: Serve back-office static UI Serve the front-end sources of the new back-office through the current satellite admin server under the path `/back-office`. The front-end is served in the same way than the current one, which is through an indicated directory path with a configuration parameter or embed in the binary when that configuration parameter is empty. The commit also slightly changes the test that checks serving these static assets for not targeting the empty file in the build folder. build folders must remain because of the embed directive. Change-Id: I3c5af6b75ec944722dbdc4c560d0e7d907a205b8
2023-08-31 14:22:08 +01:00
func NewServer(
log *zap.Logger,
listener net.Listener,
db DB,
buckets *buckets.Service,
restKeys *restkeys.Service,
freezeAccounts *console.AccountFreezeService,
accounts payments.Accounts,
console consoleweb.Config,
config Config,
) *Server {
satellite/admin: add project limit modification and authorization token Change-Id: If9a7214a940b8544f8023c2cd82da21f19d3f521
2020-02-07 17:24:58 +00:00
server := &Server{
satellite/admin: setup payment account for user Currently a customer created via the IP does not get an payment account until he signs in. That causes issues if the account should be deleted again. Change-Id: I393c8f301e426301bb713c423d6ce011138d4ae4
2020-07-16 12:58:40 +01:00
log: log,
satellite/admin: add user deletion Change-Id: Ideea978698183e25f5e0d73128c4f93c2caa1577
2020-07-06 22:31:40 +01:00
listener: listener,
satellite/admin: add endpoint to freeze/unfreeze user Allow the admin to manually freeze/unfreeze users. github issue: https://github.com/storj/storj/issues/5397 Change-Id: I402ad1bf2e13effb0a5a8ff35bb128d1fcf18448
2022-12-16 15:17:27 +00:00
db: db,
payments: accounts,
buckets: buckets,
restKeys: restKeys,
freezeAccounts: freezeAccounts,
satellite/admin: use correct period end time to get results Change-Id: Ib0e76f96e61b39c98f0f5f683b39d622d235c4d8
2020-09-03 22:12:26 +01:00
nowFn: time.Now,
satellite/{console,satellitedb}: move project limits from config file to DB to keep limits on a per user basis To allow for changing limits for new users, while leaving existing users limits as they are, we must store the project limits for each user. We currently store the limit for the number of projects a user can create in the user DB table. This change would also store the project bandwidth and storage limits in the same table. Change-Id: If8d79b39de020b969f3445ef2fcc370e51d706c6
2021-11-01 15:27:32 +00:00
satellite/admin: fix console config handling An older change plummed the full console config as subconfig of the admin api configuration in. This bloated the generated satellite configuration unnecessarily while also allow for confusion/mistakes. Change-Id: Icf49cc1f147711e37e85f6eac1143fab8ddf1659
2022-05-27 21:13:01 +01:00
console: console,
config: config,
satellite/admin: add project limit modification and authorization token Change-Id: If9a7214a940b8544f8023c2cd82da21f19d3f521
2020-02-07 17:24:58 +00:00
}
satellite/admin: administrative endpoint Admin server allows creating basic REST and html API-s for different administrative tasks. Change-Id: I3dc1786abe1c87350eed60ec90e48130f44e63cf
2020-02-07 16:36:28 +00:00
satellite/admin: Serve static UI assets Change the satellite Admin HTTP server for: * Embedding the UI assets into the Go binary. * Serve the UI assets from the embedded file system or from a specific directory path through a configuration flag, without requiring authentication but keeping the authentication verification for the API endpoints. * Add tests to verify that the UI assets are served without authentication. Change-Id: I9003ac96f1ec585a189b67fc1cb315905403d557
2021-10-01 13:26:21 +01:00
root := mux.NewRouter()
satellite/admin: add project limit modification and authorization token Change-Id: If9a7214a940b8544f8023c2cd82da21f19d3f521
2020-02-07 17:24:58 +00:00
satellite/admin: Serve static UI assets Change the satellite Admin HTTP server for: * Embedding the UI assets into the Go binary. * Serve the UI assets from the embedded file system or from a specific directory path through a configuration flag, without requiring authentication but keeping the authentication verification for the API endpoints. * Add tests to verify that the UI assets are served without authentication. Change-Id: I9003ac96f1ec585a189b67fc1cb315905403d557
2021-10-01 13:26:21 +01:00
api := root.PathPrefix("/api/").Subrouter()
satellite/admin: add project limit modification and authorization token Change-Id: If9a7214a940b8544f8023c2cd82da21f19d3f521
2020-02-07 17:24:58 +00:00
satellite/admin: Serve static UI assets Change the satellite Admin HTTP server for: * Embedding the UI assets into the Go binary. * Serve the UI assets from the embedded file system or from a specific directory path through a configuration flag, without requiring authentication but keeping the authentication verification for the API endpoints. * Add tests to verify that the UI assets are served without authentication. Change-Id: I9003ac96f1ec585a189b67fc1cb315905403d557
2021-10-01 13:26:21 +01:00
// When adding new options, also update README.md
satellite/admin: restrict api access based on user groups This change reworks the allowedAuthorization function to check what groups the user is a part of to determine if authorization should be granted. By wrapping each handler with withAuth, we can specify the allowed groups for each api method individually. github issue: https://github.com/storj/storj/issues/5565 Change-Id: I1804dda04d5b16d19e93bd7199fb3fc89fca1294
2023-02-21 21:47:45 +00:00
// prod owners only
fullAccessAPI := api.NewRoute().Subrouter()
satellite/admin: use system-given port in OAuth test to fix flakiness The test for the admin API's OAuth authorization behaviour has been modified to use a random available port given by the system rather than a hardcoded one. This prevents the test from accidentally using a port that is already in use. Change-Id: Iae017b2f397ae53f1a006bae1d0578d2ddfd0875
2023-04-14 19:06:49 +01:00
fullAccessAPI.Use(server.withAuth(nil))
satellite/admin: restrict api access based on user groups This change reworks the allowedAuthorization function to check what groups the user is a part of to determine if authorization should be granted. By wrapping each handler with withAuth, we can specify the allowed groups for each api method individually. github issue: https://github.com/storj/storj/issues/5565 Change-Id: I1804dda04d5b16d19e93bd7199fb3fc89fca1294
2023-02-21 21:47:45 +00:00
fullAccessAPI.HandleFunc("/users", server.addUser).Methods("POST")
fullAccessAPI.HandleFunc("/users/{useremail}", server.updateUser).Methods("PUT")
fullAccessAPI.HandleFunc("/users/{useremail}", server.deleteUser).Methods("DELETE")
fullAccessAPI.HandleFunc("/users/{useremail}/mfa", server.disableUserMFA).Methods("DELETE")
satellite/{db, admin}: added endpoints to update user's and project's user_agent Added backend (for now) implementation for updating user's and projects's user_agent using admin API. Updating both user and project also updates bucket_metainfo and value_attribution tables. Issue: https://github.com/storj/storj-private/issues/297 Change-Id: I40244bbaa08b46834c1b1d0720e7d84d0c2a0330
2023-06-13 16:58:24 +01:00
fullAccessAPI.HandleFunc("/users/{useremail}/useragent", server.updateUsersUserAgent).Methods("PATCH")
satellite/admin: extend API to allow setting and deleting account level geofence Issue: https://github.com/storj/storj-private/issues/357 Change-Id: I04589e18214e7090ccd686fd531066d942afa6ed
2023-07-27 13:54:48 +01:00
fullAccessAPI.HandleFunc("/users/{useremail}/geofence", server.createGeofenceForAccount).Methods("PATCH")
fullAccessAPI.HandleFunc("/users/{useremail}/geofence", server.deleteGeofenceForAccount).Methods("DELETE")
satellite/admin: restrict api access based on user groups This change reworks the allowedAuthorization function to check what groups the user is a part of to determine if authorization should be granted. By wrapping each handler with withAuth, we can specify the allowed groups for each api method individually. github issue: https://github.com/storj/storj/issues/5565 Change-Id: I1804dda04d5b16d19e93bd7199fb3fc89fca1294
2023-02-21 21:47:45 +00:00
fullAccessAPI.HandleFunc("/oauth/clients", server.createOAuthClient).Methods("POST")
fullAccessAPI.HandleFunc("/oauth/clients/{id}", server.updateOAuthClient).Methods("PUT")
fullAccessAPI.HandleFunc("/oauth/clients/{id}", server.deleteOAuthClient).Methods("DELETE")
fullAccessAPI.HandleFunc("/projects", server.addProject).Methods("POST")
fullAccessAPI.HandleFunc("/projects/{project}", server.renameProject).Methods("PUT")
fullAccessAPI.HandleFunc("/projects/{project}", server.deleteProject).Methods("DELETE")
fullAccessAPI.HandleFunc("/projects/{project}", server.getProject).Methods("GET")
fullAccessAPI.HandleFunc("/projects/{project}/apikeys", server.addAPIKey).Methods("POST")
fullAccessAPI.HandleFunc("/projects/{project}/apikeys", server.listAPIKeys).Methods("GET")
fullAccessAPI.HandleFunc("/projects/{project}/apikeys/{name}", server.deleteAPIKeyByName).Methods("DELETE")
fullAccessAPI.HandleFunc("/projects/{project}/buckets/{bucket}", server.getBucketInfo).Methods("GET")
fullAccessAPI.HandleFunc("/projects/{project}/buckets/{bucket}/geofence", server.createGeofenceForBucket).Methods("POST")
fullAccessAPI.HandleFunc("/projects/{project}/buckets/{bucket}/geofence", server.deleteGeofenceForBucket).Methods("DELETE")
fullAccessAPI.HandleFunc("/projects/{project}/usage", server.checkProjectUsage).Methods("GET")
satellite/{db, admin}: added endpoints to update user's and project's user_agent Added backend (for now) implementation for updating user's and projects's user_agent using admin API. Updating both user and project also updates bucket_metainfo and value_attribution tables. Issue: https://github.com/storj/storj-private/issues/297 Change-Id: I40244bbaa08b46834c1b1d0720e7d84d0c2a0330
2023-06-13 16:58:24 +01:00
fullAccessAPI.HandleFunc("/projects/{project}/useragent", server.updateProjectsUserAgent).Methods("PATCH")
satellite/admin: extend admin API to allow setting and deleting geofence for projects Issue: https://github.com/storj/storj-private/issues/357 Change-Id: Ib59319581641f1f5da71c629143e12f11eb04925
2023-07-25 16:26:35 +01:00
fullAccessAPI.HandleFunc("/projects/{project}/geofence", server.createGeofenceForProject).Methods("POST")
fullAccessAPI.HandleFunc("/projects/{project}/geofence", server.deleteGeofenceForProject).Methods("DELETE")
satellite/admin: add /api/apikeys/{apikey} GET endpoint This allows scripted automation to get more details of the API key such as project ID, and paid tier status. Updates https://github.com/storj/gateway-mt/issues/321 Change-Id: I8a835752d4fd67382aca804b8c93e63de6c9a846
2023-05-25 01:20:18 +01:00
fullAccessAPI.HandleFunc("/apikeys/{apikey}", server.getAPIKey).Methods("GET")
satellite/admin: restrict api access based on user groups This change reworks the allowedAuthorization function to check what groups the user is a part of to determine if authorization should be granted. By wrapping each handler with withAuth, we can specify the allowed groups for each api method individually. github issue: https://github.com/storj/storj/issues/5565 Change-Id: I1804dda04d5b16d19e93bd7199fb3fc89fca1294
2023-02-21 21:47:45 +00:00
fullAccessAPI.HandleFunc("/apikeys/{apikey}", server.deleteAPIKey).Methods("DELETE")
fullAccessAPI.HandleFunc("/restkeys/{useremail}", server.addRESTKey).Methods("POST")
fullAccessAPI.HandleFunc("/restkeys/{apikey}/revoke", server.revokeRESTKey).Methods("PUT")
// limit update access required
limitUpdateAPI := api.NewRoute().Subrouter()
satellite/admin: use system-given port in OAuth test to fix flakiness The test for the admin API's OAuth authorization behaviour has been modified to use a random available port given by the system rather than a hardcoded one. This prevents the test from accidentally using a port that is already in use. Change-Id: Iae017b2f397ae53f1a006bae1d0578d2ddfd0875
2023-04-14 19:06:49 +01:00
limitUpdateAPI.Use(server.withAuth([]string{config.Groups.LimitUpdate}))
satellite/admin: restrict api access based on user groups This change reworks the allowedAuthorization function to check what groups the user is a part of to determine if authorization should be granted. By wrapping each handler with withAuth, we can specify the allowed groups for each api method individually. github issue: https://github.com/storj/storj/issues/5565 Change-Id: I1804dda04d5b16d19e93bd7199fb3fc89fca1294
2023-02-21 21:47:45 +00:00
limitUpdateAPI.HandleFunc("/users/{useremail}", server.userInfo).Methods("GET")
limitUpdateAPI.HandleFunc("/users/{useremail}/limits", server.userLimits).Methods("GET")
limitUpdateAPI.HandleFunc("/users/{useremail}/limits", server.updateLimits).Methods("PUT")
limitUpdateAPI.HandleFunc("/users/{useremail}/freeze", server.freezeUser).Methods("PUT")
limitUpdateAPI.HandleFunc("/users/{useremail}/freeze", server.unfreezeUser).Methods("DELETE")
satellite/admin: add endpoint to unwarn user This change enables the admin UI to remove the warning status of users. resolves: storj-private/issues/342 Change-Id: Ib960ffb33fdabc045884ce7fa2c55c3553db0fb0
2023-07-21 18:09:54 +01:00
limitUpdateAPI.HandleFunc("/users/{useremail}/warning", server.unWarnUser).Methods("DELETE")
satellite/admin: restrict api access based on user groups This change reworks the allowedAuthorization function to check what groups the user is a part of to determine if authorization should be granted. By wrapping each handler with withAuth, we can specify the allowed groups for each api method individually. github issue: https://github.com/storj/storj/issues/5565 Change-Id: I1804dda04d5b16d19e93bd7199fb3fc89fca1294
2023-02-21 21:47:45 +00:00
limitUpdateAPI.HandleFunc("/projects/{project}/limit", server.getProjectLimit).Methods("GET")
limitUpdateAPI.HandleFunc("/projects/{project}/limit", server.putProjectLimit).Methods("PUT", "POST")
satellite/admin: Serve static UI assets Change the satellite Admin HTTP server for: * Embedding the UI assets into the Go binary. * Serve the UI assets from the embedded file system or from a specific directory path through a configuration flag, without requiring authentication but keeping the authentication verification for the API endpoints. * Add tests to verify that the UI assets are served without authentication. Change-Id: I9003ac96f1ec585a189b67fc1cb315905403d557
2021-10-01 13:26:21 +01:00
satellite/admin: Serve back-office static UI Serve the front-end sources of the new back-office through the current satellite admin server under the path `/back-office`. The front-end is served in the same way than the current one, which is through an indicated directory path with a configuration parameter or embed in the binary when that configuration parameter is empty. The commit also slightly changes the test that checks serving these static assets for not targeting the empty file in the build folder. build folders must remain because of the embed directive. Change-Id: I3c5af6b75ec944722dbdc4c560d0e7d907a205b8
2023-08-31 14:22:08 +01:00
// Temporary path until the new back-office is implemented and we can remove the current admin UI.
if config.StaticDirBackOffice == "" {
root.PathPrefix("/back-office").Handler(
http.StripPrefix("/back-office/", http.FileServer(http.FS(backofficeui.Assets))),
).Methods("GET")
} else {
root.PathPrefix("/back-office").Handler(
http.StripPrefix("/back-office/", http.FileServer(http.Dir(config.StaticDirBackOffice))),
).Methods("GET")
}
satellite/admin: Serve static UI assets Change the satellite Admin HTTP server for: * Embedding the UI assets into the Go binary. * Serve the UI assets from the embedded file system or from a specific directory path through a configuration flag, without requiring authentication but keeping the authentication verification for the API endpoints. * Add tests to verify that the UI assets are served without authentication. Change-Id: I9003ac96f1ec585a189b67fc1cb315905403d557
2021-10-01 13:26:21 +01:00
// This handler must be the last one because it uses the root as prefix,
// otherwise will try to serve all the handlers set after this one.
if config.StaticDir == "" {
satellite/admin/ui: avoid needing an additional copy This also fixes the build order. Unfortunately we need to ensure that the web frontends are built before installing Go binaries. Fixes https://github.com/storj/storj/issues/4654 Change-Id: I5d1c83125fd3d1a454d3400b2cbdd44bd3f2250c
2022-03-23 13:29:47 +00:00
root.PathPrefix("/").Handler(http.FileServer(http.FS(adminui.Assets))).Methods("GET")
satellite/admin: Serve static UI assets Change the satellite Admin HTTP server for: * Embedding the UI assets into the Go binary. * Serve the UI assets from the embedded file system or from a specific directory path through a configuration flag, without requiring authentication but keeping the authentication verification for the API endpoints. * Add tests to verify that the UI assets are served without authentication. Change-Id: I9003ac96f1ec585a189b67fc1cb315905403d557
2021-10-01 13:26:21 +01:00
} else {
root.PathPrefix("/").Handler(http.FileServer(http.Dir(config.StaticDir))).Methods("GET")
satellite/admin: add project limit modification and authorization token Change-Id: If9a7214a940b8544f8023c2cd82da21f19d3f521
2020-02-07 17:24:58 +00:00
}
satellite/admin: Serve static UI assets Change the satellite Admin HTTP server for: * Embedding the UI assets into the Go binary. * Serve the UI assets from the embedded file system or from a specific directory path through a configuration flag, without requiring authentication but keeping the authentication verification for the API endpoints. * Add tests to verify that the UI assets are served without authentication. Change-Id: I9003ac96f1ec585a189b67fc1cb315905403d557
2021-10-01 13:26:21 +01:00
server.server.Handler = root
return server
satellite/admin: add project limit modification and authorization token Change-Id: If9a7214a940b8544f8023c2cd82da21f19d3f521
2020-02-07 17:24:58 +00:00
}
satellite/admin: add check project usage endpoint and fix some leftover http.Error handling Change-Id: I1ae3e7cb723a553f9c5a3a752beab0a27b0293bc
2020-08-13 13:40:05 +01:00
// Run starts the admin endpoint.
satellite/admin: administrative endpoint Admin server allows creating basic REST and html API-s for different administrative tasks. Change-Id: I3dc1786abe1c87350eed60ec90e48130f44e63cf
2020-02-07 16:36:28 +00:00
func (server *Server) Run(ctx context.Context) error {
if server.listener == nil {
return nil
}
ctx, cancel := context.WithCancel(ctx)
var group errgroup.Group
group.Go(func() error {
<-ctx.Done()
return Error.Wrap(server.server.Shutdown(context.Background()))
})
group.Go(func() error {
defer cancel()
all: separate err check for http We want to avoid net/http dependency in errs2 package, hence we removed http.ErrServerClosed from IgnoreCanceled and IsCanceled check. Now we need to add that check explicitly to every http endpoint. Change-Id: I62b1cc0a0a2d3b43301d713a7951e5022145f88f
2020-04-16 16:50:22 +01:00
err := server.server.Serve(server.listener)
if errs2.IsCanceled(err) || errors.Is(err, http.ErrServerClosed) {
err = nil
}
return Error.Wrap(err)
satellite/admin: administrative endpoint Admin server allows creating basic REST and html API-s for different administrative tasks. Change-Id: I3dc1786abe1c87350eed60ec90e48130f44e63cf
2020-02-07 16:36:28 +00:00
})
return group.Wait()
}
satellite/admin: use correct period end time to get results Change-Id: Ib0e76f96e61b39c98f0f5f683b39d622d235c4d8
2020-09-03 22:12:26 +01:00
// SetNow allows tests to have the server act as if the current time is whatever they want.
func (server *Server) SetNow(nowFn func() time.Time) {
server.nowFn = nowFn
}
satellite/admin: administrative endpoint Admin server allows creating basic REST and html API-s for different administrative tasks. Change-Id: I3dc1786abe1c87350eed60ec90e48130f44e63cf
2020-02-07 16:36:28 +00:00
// Close closes server and underlying listener.
func (server *Server) Close() error {
return Error.Wrap(server.server.Close())
}
satellite/admin: Serve static UI assets Change the satellite Admin HTTP server for: * Embedding the UI assets into the Go binary. * Serve the UI assets from the embedded file system or from a specific directory path through a configuration flag, without requiring authentication but keeping the authentication verification for the API endpoints. * Add tests to verify that the UI assets are served without authentication. Change-Id: I9003ac96f1ec585a189b67fc1cb315905403d557
2021-10-01 13:26:21 +01:00
satellite/admin: use system-given port in OAuth test to fix flakiness The test for the admin API's OAuth authorization behaviour has been modified to use a random available port given by the system rather than a hardcoded one. This prevents the test from accidentally using a port that is already in use. Change-Id: Iae017b2f397ae53f1a006bae1d0578d2ddfd0875
2023-04-14 19:06:49 +01:00
// SetAllowedOauthHost allows tests to set which address to recognize as belonging to the OAuth proxy.
func (server *Server) SetAllowedOauthHost(host string) {
server.config.AllowedOauthHost = host
}
satellite/admin: restrict api access based on user groups This change reworks the allowedAuthorization function to check what groups the user is a part of to determine if authorization should be granted. By wrapping each handler with withAuth, we can specify the allowed groups for each api method individually. github issue: https://github.com/storj/storj/issues/5565 Change-Id: I1804dda04d5b16d19e93bd7199fb3fc89fca1294
2023-02-21 21:47:45 +00:00
// withAuth checks if the requester is authorized to perform an operation. If the request did not come from the oauth proxy, verify the auth token.
// Otherwise, check that the user has the required permissions to conduct the operation. `allowedGroups` is a list of groups that are authorized.
// If it is nil, then the api method is not accessible from the oauth proxy.
satellite/admin: use system-given port in OAuth test to fix flakiness The test for the admin API's OAuth authorization behaviour has been modified to use a random available port given by the system rather than a hardcoded one. This prevents the test from accidentally using a port that is already in use. Change-Id: Iae017b2f397ae53f1a006bae1d0578d2ddfd0875
2023-04-14 19:06:49 +01:00
func (server *Server) withAuth(allowedGroups []string) func(next http.Handler) http.Handler {
satellite/admin: Serve static UI assets Change the satellite Admin HTTP server for: * Embedding the UI assets into the Go binary. * Serve the UI assets from the embedded file system or from a specific directory path through a configuration flag, without requiring authentication but keeping the authentication verification for the API endpoints. * Add tests to verify that the UI assets are served without authentication. Change-Id: I9003ac96f1ec585a189b67fc1cb315905403d557
2021-10-01 13:26:21 +01:00
return func(next http.Handler) http.Handler {
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
satellite/admin: use system-given port in OAuth test to fix flakiness The test for the admin API's OAuth authorization behaviour has been modified to use a random available port given by the system rather than a hardcoded one. This prevents the test from accidentally using a port that is already in use. Change-Id: Iae017b2f397ae53f1a006bae1d0578d2ddfd0875
2023-04-14 19:06:49 +01:00
if r.Host != server.config.AllowedOauthHost {
satellite/{admin,ui}: implement changes for oauth2 proxy We want to put the OAuth2 proxy, https://github.com/oauth2-proxy/oauth2-proxy, in front of the satellite admin ui. This change implements the changes required/necessary for this to work. Issue: https://github.com/storj/storj/issues/5072 Change-Id: I6da0df090cc6f0c18f1bf41e48ae082493f53f20
2022-11-10 13:19:42 +00:00
// not behind the proxy; use old authentication method.
satellite/admin: use system-given port in OAuth test to fix flakiness The test for the admin API's OAuth authorization behaviour has been modified to use a random available port given by the system rather than a hardcoded one. This prevents the test from accidentally using a port that is already in use. Change-Id: Iae017b2f397ae53f1a006bae1d0578d2ddfd0875
2023-04-14 19:06:49 +01:00
if server.config.AuthorizationToken == "" {
satellite/admin: add tests to admin auth This change tests authorization of the admin api. Issue: https://github.com/storj/storj/issues/5699 Change-Id: Iecfe4c27a70ab1b48aeb5ed3251b51a3406140e8
2023-04-12 16:06:36 +01:00
sendJSONError(w, AuthorizationNotEnabled, "", http.StatusForbidden)
satellite/{admin,ui}: implement changes for oauth2 proxy We want to put the OAuth2 proxy, https://github.com/oauth2-proxy/oauth2-proxy, in front of the satellite admin ui. This change implements the changes required/necessary for this to work. Issue: https://github.com/storj/storj/issues/5072 Change-Id: I6da0df090cc6f0c18f1bf41e48ae082493f53f20
2022-11-10 13:19:42 +00:00
return
}
equality := subtle.ConstantTimeCompare(
[]byte(r.Header.Get("Authorization")),
satellite/admin: use system-given port in OAuth test to fix flakiness The test for the admin API's OAuth authorization behaviour has been modified to use a random available port given by the system rather than a hardcoded one. This prevents the test from accidentally using a port that is already in use. Change-Id: Iae017b2f397ae53f1a006bae1d0578d2ddfd0875
2023-04-14 19:06:49 +01:00
[]byte(server.config.AuthorizationToken),
satellite/{admin,ui}: implement changes for oauth2 proxy We want to put the OAuth2 proxy, https://github.com/oauth2-proxy/oauth2-proxy, in front of the satellite admin ui. This change implements the changes required/necessary for this to work. Issue: https://github.com/storj/storj/issues/5072 Change-Id: I6da0df090cc6f0c18f1bf41e48ae082493f53f20
2022-11-10 13:19:42 +00:00
)
if equality != 1 {
sendJSONError(w, "Forbidden",
"", http.StatusForbidden)
return
}
satellite/admin: restrict api access based on user groups This change reworks the allowedAuthorization function to check what groups the user is a part of to determine if authorization should be granted. By wrapping each handler with withAuth, we can specify the allowed groups for each api method individually. github issue: https://github.com/storj/storj/issues/5565 Change-Id: I1804dda04d5b16d19e93bd7199fb3fc89fca1294
2023-02-21 21:47:45 +00:00
} else {
// request made from oauth proxy. Check user groups against allowedGroups.
if allowedGroups == nil {
satellite/admin: add tests to admin auth This change tests authorization of the admin api. Issue: https://github.com/storj/storj/issues/5699 Change-Id: Iecfe4c27a70ab1b48aeb5ed3251b51a3406140e8
2023-04-12 16:06:36 +01:00
// Endpoint is a full access endpoint, and requires token auth.
sendJSONError(w, "Forbidden", UnauthorizedThroughOauth, http.StatusForbidden)
satellite/admin: restrict api access based on user groups This change reworks the allowedAuthorization function to check what groups the user is a part of to determine if authorization should be granted. By wrapping each handler with withAuth, we can specify the allowed groups for each api method individually. github issue: https://github.com/storj/storj/issues/5565 Change-Id: I1804dda04d5b16d19e93bd7199fb3fc89fca1294
2023-02-21 21:47:45 +00:00
return
}
var allowed bool
userGroupsString := r.Header.Get("X-Forwarded-Groups")
userGroups := strings.Split(userGroupsString, ",")
for _, userGroup := range userGroups {
if userGroup == "" {
continue
}
for _, permGroup := range allowedGroups {
if userGroup == permGroup {
allowed = true
break
}
}
if allowed {
break
}
}
if !allowed {
satellite/admin: add tests to admin auth This change tests authorization of the admin api. Issue: https://github.com/storj/storj/issues/5699 Change-Id: Iecfe4c27a70ab1b48aeb5ed3251b51a3406140e8
2023-04-12 16:06:36 +01:00
sendJSONError(w, "Forbidden", fmt.Sprintf(UnauthorizedNotInGroup, allowedGroups), http.StatusForbidden)
satellite/admin: restrict api access based on user groups This change reworks the allowedAuthorization function to check what groups the user is a part of to determine if authorization should be granted. By wrapping each handler with withAuth, we can specify the allowed groups for each api method individually. github issue: https://github.com/storj/storj/issues/5565 Change-Id: I1804dda04d5b16d19e93bd7199fb3fc89fca1294
2023-02-21 21:47:45 +00:00
return
}
satellite/admin: Serve static UI assets Change the satellite Admin HTTP server for: * Embedding the UI assets into the Go binary. * Serve the UI assets from the embedded file system or from a specific directory path through a configuration flag, without requiring authentication but keeping the authentication verification for the API endpoints. * Add tests to verify that the UI assets are served without authentication. Change-Id: I9003ac96f1ec585a189b67fc1cb315905403d557
2021-10-01 13:26:21 +01:00
}
satellite/admin: use system-given port in OAuth test to fix flakiness The test for the admin API's OAuth authorization behaviour has been modified to use a random available port given by the system rather than a hardcoded one. This prevents the test from accidentally using a port that is already in use. Change-Id: Iae017b2f397ae53f1a006bae1d0578d2ddfd0875
2023-04-14 19:06:49 +01:00
server.log.Info(
satellite/{admin,ui}: implement changes for oauth2 proxy We want to put the OAuth2 proxy, https://github.com/oauth2-proxy/oauth2-proxy, in front of the satellite admin ui. This change implements the changes required/necessary for this to work. Issue: https://github.com/storj/storj/issues/5072 Change-Id: I6da0df090cc6f0c18f1bf41e48ae082493f53f20
2022-11-10 13:19:42 +00:00
"admin action",
zap.String("host", r.Host),
zap.String("user", r.Header.Get("X-Forwarded-Email")),
zap.String("action", fmt.Sprintf("%s-%s", r.Method, r.RequestURI)),
zap.String("queries", r.URL.Query().Encode()),
satellite/admin: Serve static UI assets Change the satellite Admin HTTP server for: * Embedding the UI assets into the Go binary. * Serve the UI assets from the embedded file system or from a specific directory path through a configuration flag, without requiring authentication but keeping the authentication verification for the API endpoints. * Add tests to verify that the UI assets are served without authentication. Change-Id: I9003ac96f1ec585a189b67fc1cb315905403d557
2021-10-01 13:26:21 +01:00
)
r.Header.Set("Cache-Control", "must-revalidate")
next.ServeHTTP(w, r)
})
}
}
Reference in New Issue Copy Permalink