Added encrypted credentials retrieval to the rest api.

sebinside · sebinside · commit 87f5e692449d · 2019-05-23T15:30:46.000+02:00
diff --git a/src/main/scala/org/codeoverflow/chatoverflow/ui/web/rest/DTOs.scala b/src/main/scala/org/codeoverflow/chatoverflow/ui/web/rest/DTOs.scala
@@ -24,6 +24,9 @@ object DTOs {
                               areCredentialsSet: Boolean, isRunning: Boolean, requiredCredentialKeys: Seq[String],
                               optionalCredentialKeys: Seq[String])
 
+  case class CredentialsDetails(found: Boolean, requiredCredentials: Map[String, String] = Map[String, String](),
+                                optionalCredentials: Map[String, String] = Map[String, String]())
+
   case class PluginInstanceRef(instanceName: String, pluginName: String, pluginAuthor: String)
 
   case class ResultMessage(success: Boolean, message: String = "")
diff --git a/src/main/scala/org/codeoverflow/chatoverflow/ui/web/rest/connector/ConnectorController.scala b/src/main/scala/org/codeoverflow/chatoverflow/ui/web/rest/connector/ConnectorController.scala
@@ -1,11 +1,13 @@
 package org.codeoverflow.chatoverflow.ui.web.rest.connector
 
-import org.codeoverflow.chatoverflow.configuration.Credentials
+import org.codeoverflow.chatoverflow.configuration.{Credentials, CryptoUtil}
 import org.codeoverflow.chatoverflow.connector.ConnectorRegistry
 import org.codeoverflow.chatoverflow.ui.web.JsonServlet
-import org.codeoverflow.chatoverflow.ui.web.rest.DTOs.{ConnectorDetails, ConnectorRef, ResultMessage}
+import org.codeoverflow.chatoverflow.ui.web.rest.DTOs.{ConnectorDetails, ConnectorRef, CredentialsDetails, ResultMessage}
 import org.scalatra.swagger.Swagger
 
+import scala.collection.mutable
+
 class ConnectorController(implicit val swagger: Swagger) extends JsonServlet with ConnectorControllerDefinition {
 
   get("/", operation(getConnectors)) {
@@ -76,4 +78,44 @@ class ConnectorController(implicit val swagger: Swagger) extends JsonServlet wit
     }
   }
 
+  // TODO: Get one encrypted entry, post, delete
+
+  get("/:sourceIdentifier/:qualifiedConnectorType/credentials", operation(getCredentials)) {
+    if (!chatOverflow.isLoaded) {
+      CredentialsDetails(found = false)
+    } else {
+      val connector = ConnectorRegistry.getConnector(params("sourceIdentifier"), params("qualifiedConnectorType"))
+
+      if (connector.isEmpty) {
+        CredentialsDetails(found = false)
+
+      } else if (!connector.get.areCredentialsSet) {
+        CredentialsDetails(found = false)
+
+      } else {
+
+        val requiredCredentials = getCredentialsMap(connector.get.getRequiredCredentialKeys, connector.get.getCredentials.get)
+        val optionalCredentials = getCredentialsMap(connector.get.getOptionalCredentialKeys, connector.get.getCredentials.get)
+
+        CredentialsDetails(found = true, requiredCredentials, optionalCredentials)
+      }
+    }
+  }
+
+  protected def getCredentialsMap(keys: List[String], credentials: Credentials): Map[String, String] = {
+    val authKey = chatOverflow.credentialsService.generateAuthKey()
+    val credentialsMap = mutable.Map[String, String]()
+
+    for (key <- keys) {
+      if (credentials.exists(key)) {
+        val plainValue = credentials.getValue(key).get
+        val encryptedValue = CryptoUtil.encryptSSLcompliant(authKey, plainValue)
+
+        credentialsMap += key -> encryptedValue
+      }
+    }
+
+    credentialsMap.toMap
+  }
+
 }
diff --git a/src/main/scala/org/codeoverflow/chatoverflow/ui/web/rest/connector/ConnectorControllerDefinition.scala b/src/main/scala/org/codeoverflow/chatoverflow/ui/web/rest/connector/ConnectorControllerDefinition.scala
@@ -32,6 +32,14 @@ trait ConnectorControllerDefinition extends SwaggerSupport {
       parameter pathParam[String]("sourceIdentifier").description("The (connector unique) identifier of e.g. a account to connect to")
       parameter pathParam[String]("qualifiedConnectorType").description("The fully qualified type of the connector."))
 
+  val getCredentials: OperationBuilder =
+    (apiOperation[ConnectorDetails]("getCredentials")
+      summary "Shows all credentials for a specified connector."
+      description "Shows required and optional credentials. Note, that the user has to be logged in and the values are encrypted using the auth key. "
+      parameter pathParam[String]("sourceIdentifier").description("The (connector unique) identifier of e.g. a account to connect to")
+      parameter pathParam[String]("qualifiedConnectorType").description("The fully qualified type of the connector."))
+
+
   override protected def applicationDescription: String = "Handles platform connectors."
 
 
