portainer/api/http/handler/endpoints/handler.go

package endpoints

import (
	httperror "github.com/portainer/libhttp/error"
	"github.com/portainer/portainer/api"
	"github.com/portainer/portainer/api/http/proxy"
	"github.com/portainer/portainer/api/http/security"

	"net/http"

	"github.com/gorilla/mux"
)

const (
	// ErrEndpointManagementDisabled is an error raised when trying to access the endpoints management endpoints
	// when the server has been started with the --external-endpoints flag
	ErrEndpointManagementDisabled = portainer.Error("Endpoint management is disabled")
)

func hideFields(endpoint *portainer.Endpoint) {
	endpoint.AzureCredentials = portainer.AzureCredentials{}
	if len(endpoint.Snapshots) > 0 {
		endpoint.Snapshots[0].SnapshotRaw = portainer.SnapshotRaw{}
	}
}

// Handler is the HTTP handler used to handle endpoint operations.
type Handler struct {
	*mux.Router
	authorizeEndpointManagement bool
	requestBouncer              *security.RequestBouncer
	EndpointService             portainer.EndpointService
	EndpointGroupService        portainer.EndpointGroupService
	FileService                 portainer.FileService
	ProxyManager                *proxy.Manager
	Snapshotter                 portainer.Snapshotter
	JobService                  portainer.JobService
}

// NewHandler creates a handler to manage endpoint operations.
func NewHandler(bouncer *security.RequestBouncer, authorizeEndpointManagement bool) *Handler {
	h := &Handler{
		Router:                      mux.NewRouter(),
		authorizeEndpointManagement: authorizeEndpointManagement,
		requestBouncer:              bouncer,
	}

	h.Handle("/endpoints",
		bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointCreate))).Methods(http.MethodPost)
	h.Handle("/endpoints/snapshot",
		bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointSnapshots))).Methods(http.MethodPost)
	h.Handle("/endpoints",
		bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointList))).Methods(http.MethodGet)
	h.Handle("/endpoints/{id}",
		bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointInspect))).Methods(http.MethodGet)
	h.Handle("/endpoints/{id}",
		bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointUpdate))).Methods(http.MethodPut)
	h.Handle("/endpoints/{id}",
		bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointDelete))).Methods(http.MethodDelete)
	h.Handle("/endpoints/{id}/extensions",
		bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointExtensionAdd))).Methods(http.MethodPost)
	h.Handle("/endpoints/{id}/extensions/{extensionType}",
		bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointExtensionRemove))).Methods(http.MethodDelete)
	h.Handle("/endpoints/{id}/job",
		bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointJob))).Methods(http.MethodPost)
	h.Handle("/endpoints/{id}/snapshot",
		bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointSnapshot))).Methods(http.MethodPost)
	return h
}
feat(stacks): support compose v2.0 stack (#1963) 2018-06-11 13:13:19 +00:00			`package endpoints`

			`import (`
refactor(api): introduce libhttp usage (#2263) 2018-09-10 10:01:38 +00:00			`httperror "github.com/portainer/libhttp/error"`
refactor(api): refactor base import path (#2788) * refactor(api): refactor base import path * fix(build-system): update build_binary_devops * fix(build-system): fix build_binary_devops for linux * fix(build-system): fix build_binary_devops for Windows 2019-03-21 01:20:14 +00:00			`"github.com/portainer/portainer/api"`
			`"github.com/portainer/portainer/api/http/proxy"`
			`"github.com/portainer/portainer/api/http/security"`
feat(stacks): support compose v2.0 stack (#1963) 2018-06-11 13:13:19 +00:00
			`"net/http"`

			`"github.com/gorilla/mux"`
			`)`

			`const (`
			`// ErrEndpointManagementDisabled is an error raised when trying to access the endpoints management endpoints`
			`// when the server has been started with the --external-endpoints flag`
			`ErrEndpointManagementDisabled = portainer.Error("Endpoint management is disabled")`
			`)`

			`func hideFields(endpoint *portainer.Endpoint) {`
			`endpoint.AzureCredentials = portainer.AzureCredentials{}`
Enable endpoint backend pagination (#2989) * feat(api): remove SnapshotRaw from EndpointList response * feat(api): add pagination for EndpointList operation * feat(api): rename last_id query parameter to start * feat(api): implement filter for EndpointList operation * feat(home): front - endpoint backend pagination (#2990) * feat(home): endpoint pagination with backend * feat(api): remove default limit value * fix(endpoints): fix a minor issue with column span * fix(endpointgroup-create): fix an issue with endpoint group creation * feat(app): minor loading optimizations * refactor(api): small refactor of EndpointList operation * fix(home): fix minor loading text display issue * refactor(api): document bolt services functions * feat(home): minor optimization * fix(api): replace seek with index scanning for EndpointPaginated * fix(api): fix invalid starting index issue * fix(api): first implementation of working filter * fix(home): endpoints list keeps backend pagination when it needs to * fix(api): endpoint pagination doesn't drop the first item on pages >=2 anymore * fix(home): UI flickering on page/filter load/change * feat(api): support searching in associated endpoint group data * feat(api): declare EndpointList params as optional * feat(endpoints): backend pagination for endpoints view (#3004) * feat(endpoint-group): enable backend pagination (#3017) * feat(api): support groupID filter on endpoints route * feat(api): add new API operations endpointGroupAddEndpoint and endpointGroupDeleteEndpoint * feat(endpoint-groups): backend pagination support for create and edit * feat(endpoint-groups): debounce on filter for create/edit views * feat(endpoint-groups): filter assigned on create view * (endpoint-groups): unassigned endpoints edit view * refactor(endpoint-groups): code clean * feat(endpoint-groups): remove message for Unassigned group * refactor(api): endpoint group endpoint association refactor * refactor(api): rename files and remove comments * refactor(api): remove usage of utils * refactor(api): optional parameters * feat(api): update endpointListOperation behavior and parameters * refactor(api): remove unused methods associated to EndpointService * refactor(api): remove unused methods associated to EndpointService * refactor(api): minor refactor 2019-07-20 23:28:11 +00:00			`if len(endpoint.Snapshots) > 0 {`
			`endpoint.Snapshots[0].SnapshotRaw = portainer.SnapshotRaw{}`
			`}`
feat(stacks): support compose v2.0 stack (#1963) 2018-06-11 13:13:19 +00:00			`}`

			`// Handler is the HTTP handler used to handle endpoint operations.`
			`type Handler struct {`
			`*mux.Router`
			`authorizeEndpointManagement bool`
style(dashboard): update dashboard information (#2079) * style(dashboard): update dashboard information * docs(swagger): update swagger.yml 2018-07-25 18:47:33 +00:00			`requestBouncer *security.RequestBouncer`
feat(stacks): support compose v2.0 stack (#1963) 2018-06-11 13:13:19 +00:00			`EndpointService portainer.EndpointService`
			`EndpointGroupService portainer.EndpointGroupService`
			`FileService portainer.FileService`
			`ProxyManager *proxy.Manager`
feat(home): update endpoint list (#2060) 2018-07-23 07:51:33 +00:00			`Snapshotter portainer.Snapshotter`
feat(jobs): add the job execution API * feat(jobs): add job service interface * feat(jobs): create job execution api * style(jobs): remove comment * feat(jobs): add bindings * feat(jobs): validate payload different cases * refactor(jobs): rename endpointJob method * refactor(jobs): return original error * feat(jobs): pull image before creating container * feat(jobs): run jobs with sh * style(jobs): remove comment * refactor(jobs): change error names * feat(jobs): sync pull image * fix(jobs): close image reader after error check * style(jobs): remove comment and add docs * refactor(jobs): inline script command * fix(jobs): handle pul image error * refactor(jobs): handle image pull output * fix(docker): set http client timeout to 100s * fix(client): remove timeout from http client 2018-10-22 21:03:30 +00:00			`JobService portainer.JobService`
feat(stacks): support compose v2.0 stack (#1963) 2018-06-11 13:13:19 +00:00			`}`

			`// NewHandler creates a handler to manage endpoint operations.`
			`func NewHandler(bouncer security.RequestBouncer, authorizeEndpointManagement bool) Handler {`
			`h := &Handler{`
feat(extensions): introduce RBAC extension (#2900) 2019-05-24 06:04:58 +00:00			`Router: mux.NewRouter(),`
feat(stacks): support compose v2.0 stack (#1963) 2018-06-11 13:13:19 +00:00			`authorizeEndpointManagement: authorizeEndpointManagement,`
style(dashboard): update dashboard information (#2079) * style(dashboard): update dashboard information * docs(swagger): update swagger.yml 2018-07-25 18:47:33 +00:00			`requestBouncer: bouncer,`
feat(stacks): support compose v2.0 stack (#1963) 2018-06-11 13:13:19 +00:00			`}`

			`h.Handle("/endpoints",`
feat(extensions): introduce RBAC extension (#2900) 2019-05-24 06:04:58 +00:00			`bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointCreate))).Methods(http.MethodPost)`
feat(home): add the ability to refresh endpoint information (#2080) * feat(home): add the ability to refresh endpoint information * style(home): update refresh confirmation message 2018-07-25 19:52:17 +00:00			`h.Handle("/endpoints/snapshot",`
feat(extensions): introduce RBAC extension (#2900) 2019-05-24 06:04:58 +00:00			`bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointSnapshots))).Methods(http.MethodPost)`
feat(stacks): support compose v2.0 stack (#1963) 2018-06-11 13:13:19 +00:00			`h.Handle("/endpoints",`
feat(extensions): introduce RBAC extension (#2900) 2019-05-24 06:04:58 +00:00			`bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointList))).Methods(http.MethodGet)`
feat(stacks): support compose v2.0 stack (#1963) 2018-06-11 13:13:19 +00:00			`h.Handle("/endpoints/{id}",`
feat(extensions): introduce RBAC extension (#2900) 2019-05-24 06:04:58 +00:00			`bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointInspect))).Methods(http.MethodGet)`
feat(stacks): support compose v2.0 stack (#1963) 2018-06-11 13:13:19 +00:00			`h.Handle("/endpoints/{id}",`
feat(extensions): introduce RBAC extension (#2900) 2019-05-24 06:04:58 +00:00			`bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointUpdate))).Methods(http.MethodPut)`
feat(stacks): support compose v2.0 stack (#1963) 2018-06-11 13:13:19 +00:00			`h.Handle("/endpoints/{id}",`
feat(extensions): introduce RBAC extension (#2900) 2019-05-24 06:04:58 +00:00			`bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointDelete))).Methods(http.MethodDelete)`
feat(stacks): support compose v2.0 stack (#1963) 2018-06-11 13:13:19 +00:00			`h.Handle("/endpoints/{id}/extensions",`
feat(extensions): introduce RBAC extension (#2900) 2019-05-24 06:04:58 +00:00			`bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointExtensionAdd))).Methods(http.MethodPost)`
feat(stacks): support compose v2.0 stack (#1963) 2018-06-11 13:13:19 +00:00			`h.Handle("/endpoints/{id}/extensions/{extensionType}",`
feat(extensions): introduce RBAC extension (#2900) 2019-05-24 06:04:58 +00:00			`bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointExtensionRemove))).Methods(http.MethodDelete)`
feat(jobs): add the job execution API * feat(jobs): add job service interface * feat(jobs): create job execution api * style(jobs): remove comment * feat(jobs): add bindings * feat(jobs): validate payload different cases * refactor(jobs): rename endpointJob method * refactor(jobs): return original error * feat(jobs): pull image before creating container * feat(jobs): run jobs with sh * style(jobs): remove comment * refactor(jobs): change error names * feat(jobs): sync pull image * fix(jobs): close image reader after error check * style(jobs): remove comment and add docs * refactor(jobs): inline script command * fix(jobs): handle pul image error * refactor(jobs): handle image pull output * fix(docker): set http client timeout to 100s * fix(client): remove timeout from http client 2018-10-22 21:03:30 +00:00			`h.Handle("/endpoints/{id}/job",`
feat(extensions): introduce RBAC extension (#2900) 2019-05-24 06:04:58 +00:00			`bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointJob))).Methods(http.MethodPost)`
feat(endpoints): improve offline banner UX (#2462) * feat(endpoints): add the last snapshot timestamp in offline banner * feat(endpoints): add the ability to refresh a snapshot in the offline banner 2018-11-13 03:02:49 +00:00			`h.Handle("/endpoints/{id}/snapshot",`
feat(extensions): introduce RBAC extension (#2900) 2019-05-24 06:04:58 +00:00			`bouncer.AuthorizedAccess(httperror.LoggerHandler(h.endpointSnapshot))).Methods(http.MethodPost)`
feat(stacks): support compose v2.0 stack (#1963) 2018-06-11 13:13:19 +00:00			`return h`
			`}`