2021-03-29 21:58:56 +00:00
|
|
|
package azure
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"errors"
|
|
|
|
|
"net/http"
|
|
|
|
|
|
|
|
|
|
portainer "github.com/portainer/portainer/api"
|
2021-07-14 09:15:21 +00:00
|
|
|
"github.com/portainer/portainer/api/http/proxy/factory/utils"
|
2021-03-29 21:58:56 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
// proxy for /subscriptions/*/resourceGroups/*/providers/Microsoft.ContainerInstance/containerGroups/*
|
|
|
|
|
func (transport *Transport) proxyContainerGroupRequest(request *http.Request) (*http.Response, error) {
|
|
|
|
|
switch request.Method {
|
|
|
|
|
case http.MethodPut:
|
|
|
|
|
return transport.proxyContainerGroupPutRequest(request)
|
|
|
|
|
case http.MethodGet:
|
|
|
|
|
return transport.proxyContainerGroupGetRequest(request)
|
|
|
|
|
case http.MethodDelete:
|
|
|
|
|
return transport.proxyContainerGroupDeleteRequest(request)
|
|
|
|
|
default:
|
|
|
|
|
return http.DefaultTransport.RoundTrip(request)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (transport *Transport) proxyContainerGroupPutRequest(request *http.Request) (*http.Response, error) {
|
2021-05-05 08:26:31 +00:00
|
|
|
//add a lock before processing existense check
|
|
|
|
|
transport.mutex.Lock()
|
|
|
|
|
defer transport.mutex.Unlock()
|
|
|
|
|
|
|
|
|
|
//generate a temp http GET request based on the current PUT request
|
|
|
|
|
validationRequest := &http.Request{
|
|
|
|
|
Method: http.MethodGet,
|
|
|
|
|
URL: request.URL,
|
|
|
|
|
Header: http.Header{
|
|
|
|
|
"Authorization": []string{request.Header.Get("Authorization")},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//fire the request to Azure API to validate if there is an existing container instance with the same name
|
|
|
|
|
//positive - reject the request
|
|
|
|
|
//negative - continue the process
|
|
|
|
|
validationResponse, err := http.DefaultTransport.RoundTrip(validationRequest)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return validationResponse, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if validationResponse.StatusCode >= 200 && validationResponse.StatusCode < 300 {
|
|
|
|
|
resp := &http.Response{}
|
|
|
|
|
errObj := map[string]string{
|
|
|
|
|
"message": "A container instance with the same name already exists inside the selected resource group",
|
|
|
|
|
}
|
2021-07-14 09:15:21 +00:00
|
|
|
err = utils.RewriteResponse(resp, errObj, http.StatusConflict)
|
2021-05-05 08:26:31 +00:00
|
|
|
return resp, err
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-29 21:58:56 +00:00
|
|
|
response, err := http.DefaultTransport.RoundTrip(request)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return response, err
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-14 09:15:21 +00:00
|
|
|
responseObject, err := utils.GetResponseAsJSONObject(response)
|
2021-03-29 21:58:56 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return response, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
containerGroupID, ok := responseObject["id"].(string)
|
|
|
|
|
if !ok {
|
|
|
|
|
return response, errors.New("Missing container group ID")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
context, err := transport.createAzureRequestContext(request)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return response, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
resourceControl, err := transport.createPrivateResourceControl(containerGroupID, portainer.ContainerGroupResourceControl, context.userID)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return response, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
responseObject = decorateObject(responseObject, resourceControl)
|
|
|
|
|
|
2021-07-14 09:15:21 +00:00
|
|
|
err = utils.RewriteResponse(response, responseObject, http.StatusOK)
|
2021-03-29 21:58:56 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return response, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return response, nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (transport *Transport) proxyContainerGroupGetRequest(request *http.Request) (*http.Response, error) {
|
|
|
|
|
response, err := http.DefaultTransport.RoundTrip(request)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return response, err
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-14 09:15:21 +00:00
|
|
|
responseObject, err := utils.GetResponseAsJSONObject(response)
|
2021-03-29 21:58:56 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
context, err := transport.createAzureRequestContext(request)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
responseObject = transport.decorateContainerGroup(responseObject, context)
|
|
|
|
|
|
2021-07-14 09:15:21 +00:00
|
|
|
utils.RewriteResponse(response, responseObject, http.StatusOK)
|
2021-03-29 21:58:56 +00:00
|
|
|
|
|
|
|
|
return response, nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (transport *Transport) proxyContainerGroupDeleteRequest(request *http.Request) (*http.Response, error) {
|
|
|
|
|
context, err := transport.createAzureRequestContext(request)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if !transport.userCanDeleteContainerGroup(request, context) {
|
2021-07-14 09:15:21 +00:00
|
|
|
return utils.WriteAccessDeniedResponse()
|
2021-03-29 21:58:56 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
response, err := http.DefaultTransport.RoundTrip(request)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return response, err
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-14 09:15:21 +00:00
|
|
|
responseObject, err := utils.GetResponseAsJSONObject(response)
|
2021-03-29 21:58:56 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
transport.removeResourceControl(responseObject, context)
|
|
|
|
|
|
2021-07-14 09:15:21 +00:00
|
|
|
utils.RewriteResponse(response, responseObject, http.StatusOK)
|
2021-03-29 21:58:56 +00:00
|
|
|
|
|
|
|
|
return response, nil
|
|
|
|
|
}
|
