github
/
consul
mirror of https://github.com/hashicorp/consul
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Consul is a distributed, highly available, and data center aware solution to connect and configure applications across dynamic, distributed infrastructure.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
21490 Commits
1703 Branches
457 Tags
697 MiB
Tree: a2e69236a2
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'a2e69236a2'
${ noResults }
consul/agent/kvs_endpoint.go

305 lines
8.2 KiB
Raw Normal View History Unescape

copyright headers for agent folder (#16704) * copyright headers for agent folder * Ignore test data files * fix proto files and remove headers in agent/uiserver folder * ignore deep-copy files
2 years ago
// Copyright (c) HashiCorp, Inc.
[COMPLIANCE] License changes (#18443) * Adding explicit MPL license for sub-package This directory and its subdirectories (packages) contain files licensed with the MPLv2 `LICENSE` file in this directory and are intentionally licensed separately from the BSL `LICENSE` file at the root of this repository. * Adding explicit MPL license for sub-package This directory and its subdirectories (packages) contain files licensed with the MPLv2 `LICENSE` file in this directory and are intentionally licensed separately from the BSL `LICENSE` file at the root of this repository. * Updating the license from MPL to Business Source License Going forward, this project will be licensed under the Business Source License v1.1. Please see our blog post for more details at <Blog URL>, FAQ at www.hashicorp.com/licensing-faq, and details of the license at www.hashicorp.com/bsl. * add missing license headers * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 * Update copyright file headers to BUSL-1.1 --------- Co-authored-by: hashicorp-copywrite[bot] <110428419+hashicorp-copywrite[bot]@users.noreply.github.com>
1 year ago
// SPDX-License-Identifier: BUSL-1.1
copyright headers for agent folder (#16704) * copyright headers for agent folder * Ignore test data files * fix proto files and remove headers in agent/uiserver folder * ignore deep-copy files
2 years ago
agent: First pass at KVS endpoints
11 years ago
package agent
import (
"bytes"
agent: Limit KV entries to 512KB. Fixes #123.
11 years ago
"fmt"
agent: First pass at KVS endpoints
11 years ago
"io"
"net/http"
"strconv"
Revert getPathSuffixUnescaped (#13256)
3 years ago
"strings"
cleanup unreachable code
10 years ago
agent: move agent/consul/structs to agent/structs
7 years ago
"github.com/hashicorp/consul/agent/structs"
Remove duplicate constants This patch removes duplicate internal copies of constants in the structs package which are also defined in the api package. The api.KVOp type with all its values for the TXN endpoint and the api.HealthXXX constants are now used throughout the codebase. This resulted in some circular dependencies in the testutil package which have been resolved by copying code and constants and moving the WaitForLeader function into a separate testrpc package.
8 years ago
"github.com/hashicorp/consul/api"
agent: First pass at KVS endpoints
11 years ago
)
api: rename HTTPServer to HTTPHandlers Resolves a TODO about naming. This type is a set of handlers for an http.Server, it is not itself a Server. It provides http.Handler functions.
4 years ago
func (s *HTTPHandlers) KVSEndpoint(resp http.ResponseWriter, req *http.Request) (interface{}, error) {
agent: First pass at KVS endpoints
11 years ago
// Set default DC
args := structs.KeyRequest{}
agent: Updating to remove BlockingQuery
11 years ago
if done := s.parse(resp, req, &args.Datacenter, &args.QueryOptions); done {
agent: First pass at KVS endpoints
11 years ago
return nil, nil
}
// Pull out the key name, validation left to each sub-handler
Revert getPathSuffixUnescaped (#13256)
3 years ago
args.Key = strings.TrimPrefix(req.URL.Path, "/v1/kv/")
agent: First pass at KVS endpoints
11 years ago
agent: Support key listing with seperator
11 years ago
// Check for a key list
keyList := false
params := req.URL.Query()
if _, ok := params["keys"]; ok {
keyList = true
}
agent: First pass at KVS endpoints
11 years ago
// Switch on the method
switch req.Method {
case "GET":
agent: Support key listing with seperator
11 years ago
if keyList {
return s.KVSGetKeys(resp, req, &args)
}
golint: Untangle if blocks with return in else
8 years ago
return s.KVSGet(resp, req, &args)
agent: First pass at KVS endpoints
11 years ago
case "PUT":
return s.KVSPut(resp, req, &args)
case "DELETE":
return s.KVSDelete(resp, req, &args)
default:
Support OPTIONS requests - register endpoints with supported methods - support OPTIONS requests, indicating supported methods - extract method validation (error 405) from individual endpoints - on 405 where multiple methods are allowed, create a single Allow header with comma-separated values, not multiple Allow headers.
7 years ago
return nil, MethodNotAllowedError{req.Method, []string{"GET", "PUT", "DELETE"}}
agent: First pass at KVS endpoints
11 years ago
}
}
// KVSGet handles a GET request
api: rename HTTPServer to HTTPHandlers Resolves a TODO about naming. This type is a set of handlers for an http.Server, it is not itself a Server. It provides http.Handler functions.
4 years ago
func (s *HTTPHandlers) KVSGet(resp http.ResponseWriter, req *http.Request, args *structs.KeyRequest) (interface{}, error) {
agent: First pass at KVS endpoints
11 years ago
// Check for recurse
method := "KVS.Get"
params := req.URL.Query()
if _, ok := params["recurse"]; ok {
method = "KVS.List"
Change error-handling across handlers. (#12225)
3 years ago
} else if args.Key == "" {
Unify various status errors into one HTTP error type. (#12594) Replaces specific error types for HTTP Status codes with a generic HTTPError type. Co-authored-by: Chris S. Kim <ckim@hashicorp.com>
3 years ago
return nil, HTTPError{StatusCode: http.StatusBadRequest, Reason: "Missing key name"}
agent: First pass at KVS endpoints
11 years ago
}
Sync of OSS changes to support namespaces (#6909)
5 years ago
// Do not allow wildcard NS on GET reqs
if method == "KVS.Get" {
if err := s.parseEntMetaNoWildcard(req, &args.EnterpriseMeta); err != nil {
return nil, err
}
} else {
if err := s.parseEntMeta(req, &args.EnterpriseMeta); err != nil {
return nil, err
}
}
agent: First pass at KVS endpoints
11 years ago
// Make the RPC
var out structs.IndexedDirEntries
Pass remote addr of incoming HTTP requests through to RPC(..) calls (#15700)
2 years ago
if err := s.agent.RPC(req.Context(), method, args, &out); err != nil {
agent: First pass at KVS endpoints
11 years ago
return nil, err
}
agent: Write out the meta data before a potential 404
11 years ago
setMeta(resp, &out.QueryMeta)
consul: Return 404 if no entries found
11 years ago
// Check if we get a not found
if len(out.Entries) == 0 {
agent: drop status code comments
7 years ago
resp.WriteHeader(http.StatusNotFound)
consul: Return 404 if no entries found
11 years ago
return nil, nil
}
agent: Support for raw key lookup. Fixes #150.
11 years ago
Add content type headers to raw KV responses
4 years ago
// Check if we are in raw mode with a normal get, write out the raw body
// while setting the Content-Type, Content-Security-Policy, and
// X-Content-Type-Options headers to prevent XSS attacks from malicious KV
// entries. Otherwise, the net/http server will sniff the body to set the
// Content-Type. The nosniff option then indicates to the browser that it
// should also skip sniffing the body, otherwise it might ignore the Content-Type
// header in some situations. The sandbox option provides another layer of defense
// using the browser's content security policy to prevent code execution.
agent: Support for raw key lookup. Fixes #150.
11 years ago
if _, ok := params["raw"]; ok && method == "KVS.Get" {
body := out.Entries[0].Value
resp.Header().Set("Content-Length", strconv.FormatInt(int64(len(body)), 10))
Add content type headers to raw KV responses
4 years ago
resp.Header().Set("Content-Type", "text/plain")
resp.Header().Set("X-Content-Type-Options", "nosniff")
resp.Header().Set("Content-Security-Policy", "sandbox")
agent: Support for raw key lookup. Fixes #150.
11 years ago
resp.Write(body)
return nil, nil
}
agent: First pass at KVS endpoints
11 years ago
return out.Entries, nil
}
agent: Support key listing with seperator
11 years ago
// KVSGetKeys handles a GET request for keys
api: rename HTTPServer to HTTPHandlers Resolves a TODO about naming. This type is a set of handlers for an http.Server, it is not itself a Server. It provides http.Handler functions.
4 years ago
func (s *HTTPHandlers) KVSGetKeys(resp http.ResponseWriter, req *http.Request, args *structs.KeyRequest) (interface{}, error) {
Sync of OSS changes to support namespaces (#6909)
5 years ago
if err := s.parseEntMeta(req, &args.EnterpriseMeta); err != nil {
return nil, err
}
remove various typos
9 years ago
// Check for a separator, due to historic spelling error,
agent: Correct spelling of separator. Fixes #101.
11 years ago
// we now are forced to check for both spellings
agent: Support key listing with seperator
11 years ago
var sep string
params := req.URL.Query()
if _, ok := params["seperator"]; ok {
sep = params.Get("seperator")
}
agent: Correct spelling of separator. Fixes #101.
11 years ago
if _, ok := params["separator"]; ok {
sep = params.Get("separator")
}
agent: Support key listing with seperator
11 years ago
// Construct the args
listArgs := structs.KeyListRequest{
OSS KV Modifications to Support Namespaces
5 years ago
Datacenter: args.Datacenter,
Prefix: args.Key,
Seperator: sep,
EnterpriseMeta: args.EnterpriseMeta,
QueryOptions: args.QueryOptions,
agent: Support key listing with seperator
11 years ago
}
// Make the RPC
var out structs.IndexedKeyList
Pass remote addr of incoming HTTP requests through to RPC(..) calls (#15700)
2 years ago
if err := s.agent.RPC(req.Context(), "KVS.ListKeys", &listArgs, &out); err != nil {
agent: Support key listing with seperator
11 years ago
return nil, err
}
setMeta(resp, &out.QueryMeta)
agent: Key list of root returns empty list with 200 instead of 404
11 years ago
// Check if we get a not found. We do not generate
// not found for the root, but just provide the empty list
if len(out.Keys) == 0 && listArgs.Prefix != "" {
agent: drop status code comments
7 years ago
resp.WriteHeader(http.StatusNotFound)
agent: Support key listing with seperator
11 years ago
return nil, nil
}
agent: Key list of root returns empty list with 200 instead of 404
11 years ago
// Use empty list instead of null
if out.Keys == nil {
out.Keys = []string{}
}
agent: Support key listing with seperator
11 years ago
return out.Keys, nil
}
agent: First pass at KVS endpoints
11 years ago
// KVSPut handles a PUT request
api: rename HTTPServer to HTTPHandlers Resolves a TODO about naming. This type is a set of handlers for an http.Server, it is not itself a Server. It provides http.Handler functions.
4 years ago
func (s *HTTPHandlers) KVSPut(resp http.ResponseWriter, req *http.Request, args *structs.KeyRequest) (interface{}, error) {
Sync of OSS changes to support namespaces (#6909)
5 years ago
if err := s.parseEntMetaNoWildcard(req, &args.EnterpriseMeta); err != nil {
return nil, err
}
Change error-handling across handlers. (#12225)
3 years ago
if args.Key == "" {
Unify various status errors into one HTTP error type. (#12594) Replaces specific error types for HTTP Status codes with a generic HTTPError type. Co-authored-by: Chris S. Kim <ckim@hashicorp.com>
3 years ago
return nil, HTTPError{StatusCode: http.StatusBadRequest, Reason: "Missing key name"}
agent: First pass at KVS endpoints
11 years ago
}
agent: error from KVS endpoint if incompatible flags are passed. Fixes #432
10 years ago
if conflictingFlags(resp, req, "cas", "acquire", "release") {
return nil, nil
}
agent: First pass at KVS endpoints
11 years ago
applyReq := structs.KVSRequest{
Datacenter: args.Datacenter,
Remove duplicate constants This patch removes duplicate internal copies of constants in the structs package which are also defined in the api package. The api.KVOp type with all its values for the TXN endpoint and the api.HealthXXX constants are now used throughout the codebase. This resulted in some circular dependencies in the testutil package which have been resolved by copying code and constants and moving the WaitForLeader function into a separate testrpc package.
8 years ago
Op: api.KVSet,
agent: First pass at KVS endpoints
11 years ago
DirEnt: structs.DirEntry{
OSS KV Modifications to Support Namespaces
5 years ago
Key: args.Key,
Flags: 0,
Value: nil,
EnterpriseMeta: args.EnterpriseMeta,
agent: First pass at KVS endpoints
11 years ago
},
}
agent: Copy token in KV PUT/DELETE
10 years ago
applyReq.Token = args.Token
agent: First pass at KVS endpoints
11 years ago
// Check for flags
params := req.URL.Query()
if _, ok := params["flags"]; ok {
flagVal, err := strconv.ParseUint(params.Get("flags"), 10, 64)
if err != nil {
return nil, err
}
applyReq.DirEnt.Flags = flagVal
}
// Check for cas value
if _, ok := params["cas"]; ok {
agnet: Fix parsing of cas flag
11 years ago
casVal, err := strconv.ParseUint(params.Get("cas"), 10, 64)
agent: First pass at KVS endpoints
11 years ago
if err != nil {
return nil, err
}
applyReq.DirEnt.ModifyIndex = casVal
Remove duplicate constants This patch removes duplicate internal copies of constants in the structs package which are also defined in the api package. The api.KVOp type with all its values for the TXN endpoint and the api.HealthXXX constants are now used throughout the codebase. This resulted in some circular dependencies in the testutil package which have been resolved by copying code and constants and moving the WaitForLeader function into a separate testrpc package.
8 years ago
applyReq.Op = api.KVCAS
agent: First pass at KVS endpoints
11 years ago
}
agent: Adding locking support to KV store
11 years ago
// Check for lock acquisition
if _, ok := params["acquire"]; ok {
applyReq.DirEnt.Session = params.Get("acquire")
Remove duplicate constants This patch removes duplicate internal copies of constants in the structs package which are also defined in the api package. The api.KVOp type with all its values for the TXN endpoint and the api.HealthXXX constants are now used throughout the codebase. This resulted in some circular dependencies in the testutil package which have been resolved by copying code and constants and moving the WaitForLeader function into a separate testrpc package.
8 years ago
applyReq.Op = api.KVLock
agent: Adding locking support to KV store
11 years ago
}
// Check for lock release
if _, ok := params["release"]; ok {
applyReq.DirEnt.Session = params.Get("release")
Remove duplicate constants This patch removes duplicate internal copies of constants in the structs package which are also defined in the api package. The api.KVOp type with all its values for the TXN endpoint and the api.HealthXXX constants are now used throughout the codebase. This resulted in some circular dependencies in the testutil package which have been resolved by copying code and constants and moving the WaitForLeader function into a separate testrpc package.
8 years ago
applyReq.Op = api.KVUnlock
agent: Adding locking support to KV store
11 years ago
}
agent: Limit KV entries to 512KB. Fixes #123.
11 years ago
// Check the content-length
Chunking support (#6172) * Initial chunk support This uses the go-raft-middleware library to allow for chunked commits to the KV
5 years ago
if req.ContentLength > int64(s.agent.config.KVMaxValueSize) {
Unify various status errors into one HTTP error type. (#12594) Replaces specific error types for HTTP Status codes with a generic HTTPError type. Co-authored-by: Chris S. Kim <ckim@hashicorp.com>
3 years ago
return nil, HTTPError{
StatusCode: http.StatusRequestEntityTooLarge,
Change error-handling across handlers. (#12225)
3 years ago
Reason: fmt.Sprintf("Request body(%d bytes) too large, max size: %d bytes. See %s.",
docs: fix yet more references to agent/options
3 years ago
req.ContentLength, s.agent.config.KVMaxValueSize, "https://www.consul.io/docs/agent/config/config-files#kv_max_value_size"),
Change error-handling across handlers. (#12225)
3 years ago
}
agent: Limit KV entries to 512KB. Fixes #123.
11 years ago
}
agent: First pass at KVS endpoints
11 years ago
// Copy the value
buf := bytes.NewBuffer(nil)
if _, err := io.Copy(buf, req.Body); err != nil {
return nil, err
}
applyReq.DirEnt.Value = buf.Bytes()
// Make the RPC
var out bool
Pass remote addr of incoming HTTP requests through to RPC(..) calls (#15700)
2 years ago
if err := s.agent.RPC(req.Context(), "KVS.Apply", &applyReq, &out); err != nil {
agent: First pass at KVS endpoints
11 years ago
return nil, err
}
// Only use the out value if this was a CAS
Remove duplicate constants This patch removes duplicate internal copies of constants in the structs package which are also defined in the api package. The api.KVOp type with all its values for the TXN endpoint and the api.HealthXXX constants are now used throughout the codebase. This resulted in some circular dependencies in the testutil package which have been resolved by copying code and constants and moving the WaitForLeader function into a separate testrpc package.
8 years ago
if applyReq.Op == api.KVSet {
agent: First pass at KVS endpoints
11 years ago
return true, nil
}
golint: Untangle if blocks with return in else
8 years ago
return out, nil
agent: First pass at KVS endpoints
11 years ago
}
// KVSPut handles a DELETE request
api: rename HTTPServer to HTTPHandlers Resolves a TODO about naming. This type is a set of handlers for an http.Server, it is not itself a Server. It provides http.Handler functions.
4 years ago
func (s *HTTPHandlers) KVSDelete(resp http.ResponseWriter, req *http.Request, args *structs.KeyRequest) (interface{}, error) {
Sync of OSS changes to support namespaces (#6909)
5 years ago
if err := s.parseEntMetaNoWildcard(req, &args.EnterpriseMeta); err != nil {
return nil, err
}
agent: error from KVS endpoint if incompatible flags are passed. Fixes #432
10 years ago
if conflictingFlags(resp, req, "recurse", "cas") {
return nil, nil
}
agent: First pass at KVS endpoints
11 years ago
applyReq := structs.KVSRequest{
Datacenter: args.Datacenter,
Remove duplicate constants This patch removes duplicate internal copies of constants in the structs package which are also defined in the api package. The api.KVOp type with all its values for the TXN endpoint and the api.HealthXXX constants are now used throughout the codebase. This resulted in some circular dependencies in the testutil package which have been resolved by copying code and constants and moving the WaitForLeader function into a separate testrpc package.
8 years ago
Op: api.KVDelete,
agent: First pass at KVS endpoints
11 years ago
DirEnt: structs.DirEntry{
OSS KV Modifications to Support Namespaces
5 years ago
Key: args.Key,
EnterpriseMeta: args.EnterpriseMeta,
agent: First pass at KVS endpoints
11 years ago
},
}
agent: Copy token in KV PUT/DELETE
10 years ago
applyReq.Token = args.Token
agent: First pass at KVS endpoints
11 years ago
// Check for recurse
params := req.URL.Query()
if _, ok := params["recurse"]; ok {
Remove duplicate constants This patch removes duplicate internal copies of constants in the structs package which are also defined in the api package. The api.KVOp type with all its values for the TXN endpoint and the api.HealthXXX constants are now used throughout the codebase. This resulted in some circular dependencies in the testutil package which have been resolved by copying code and constants and moving the WaitForLeader function into a separate testrpc package.
8 years ago
applyReq.Op = api.KVDeleteTree
Change error-handling across handlers. (#12225)
3 years ago
} else if args.Key == "" {
Unify various status errors into one HTTP error type. (#12594) Replaces specific error types for HTTP Status codes with a generic HTTPError type. Co-authored-by: Chris S. Kim <ckim@hashicorp.com>
3 years ago
return nil, HTTPError{StatusCode: http.StatusBadRequest, Reason: "Missing key name"}
agent: First pass at KVS endpoints
11 years ago
}
agent: Support the ?cas parameter to KV DELETE
10 years ago
// Check for cas value
if _, ok := params["cas"]; ok {
casVal, err := strconv.ParseUint(params.Get("cas"), 10, 64)
if err != nil {
return nil, err
}
applyReq.DirEnt.ModifyIndex = casVal
Remove duplicate constants This patch removes duplicate internal copies of constants in the structs package which are also defined in the api package. The api.KVOp type with all its values for the TXN endpoint and the api.HealthXXX constants are now used throughout the codebase. This resulted in some circular dependencies in the testutil package which have been resolved by copying code and constants and moving the WaitForLeader function into a separate testrpc package.
8 years ago
applyReq.Op = api.KVDeleteCAS
agent: Support the ?cas parameter to KV DELETE
10 years ago
}
agent: First pass at KVS endpoints
11 years ago
// Make the RPC
var out bool
Pass remote addr of incoming HTTP requests through to RPC(..) calls (#15700)
2 years ago
if err := s.agent.RPC(req.Context(), "KVS.Apply", &applyReq, &out); err != nil {
agent: First pass at KVS endpoints
11 years ago
return nil, err
}
agent: Support the ?cas parameter to KV DELETE
10 years ago
// Only use the out value if this was a CAS
Remove duplicate constants This patch removes duplicate internal copies of constants in the structs package which are also defined in the api package. The api.KVOp type with all its values for the TXN endpoint and the api.HealthXXX constants are now used throughout the codebase. This resulted in some circular dependencies in the testutil package which have been resolved by copying code and constants and moving the WaitForLeader function into a separate testrpc package.
8 years ago
if applyReq.Op == api.KVDeleteCAS {
agent: Support the ?cas parameter to KV DELETE
10 years ago
return out, nil
}
golint: Untangle if blocks with return in else
8 years ago
return true, nil
agent: First pass at KVS endpoints
11 years ago
}
agent: error from KVS endpoint if incompatible flags are passed. Fixes #432
10 years ago
// conflictingFlags determines if non-composable flags were passed in a request.
func conflictingFlags(resp http.ResponseWriter, req *http.Request, flags ...string) bool {
params := req.URL.Query()
found := false
for _, conflict := range flags {
if _, ok := params[conflict]; ok {
if found {
agent: drop status code comments
7 years ago
resp.WriteHeader(http.StatusBadRequest)
[Security] Close cross scripting vulnerability (#21342) * close vulnerability * add changelog
5 months ago
fmt.Fprintf(resp, "Conflicting flags: %v\n", params.Encode())
agent: error from KVS endpoint if incompatible flags are passed. Fixes #432
10 years ago
return true
}
found = true
}
}
return false
}