/
remote.go
120 lines (110 loc) · 2.95 KB
/
remote.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
package remote
import (
"net/http"
"strings"
"github.com/cozy/cozy-stack/model/permission"
"github.com/cozy/cozy-stack/model/remote"
"github.com/cozy/cozy-stack/pkg/consts"
"github.com/cozy/cozy-stack/pkg/jsonapi"
"github.com/cozy/cozy-stack/web/middlewares"
"github.com/labstack/echo/v4"
)
func allDoctypes(c echo.Context) error {
if err := middlewares.AllowWholeType(c, permission.GET, consts.Doctypes); err != nil {
return wrapRemoteErr(err)
}
inst := middlewares.GetInstance(c)
doctypes, err := remote.ListDoctypes(inst)
if err != nil {
return wrapRemoteErr(err)
}
return c.JSON(http.StatusOK, doctypes)
}
func remoteGet(c echo.Context) error {
doctype := c.Param("doctype")
slug, err := allowWholeType(c, permission.GET, doctype)
if err != nil {
return wrapRemoteErr(err)
}
instance := middlewares.GetInstance(c)
remote, err := remote.Find(instance, doctype)
if err != nil {
return wrapRemoteErr(err)
}
if remote.Verb != "GET" {
return jsonapi.MethodNotAllowed("GET")
}
err = remote.ProxyTo(instance, c.Response(), c.Request(), slug)
if err != nil {
return wrapRemoteErr(err)
}
return nil
}
func remotePost(c echo.Context) error {
doctype := c.Param("doctype")
slug, err := allowWholeType(c, permission.POST, doctype)
if err != nil {
return wrapRemoteErr(err)
}
instance := middlewares.GetInstance(c)
remote, err := remote.Find(instance, doctype)
if err != nil {
return wrapRemoteErr(err)
}
if remote.Verb != "POST" {
return jsonapi.MethodNotAllowed("POST")
}
err = remote.ProxyTo(instance, c.Response(), c.Request(), slug)
if err != nil {
return wrapRemoteErr(err)
}
return nil
}
func remoteAsset(c echo.Context) error {
_, err := middlewares.GetPermission(c)
if err != nil {
return err
}
return wrapRemoteErr(remote.
ProxyRemoteAsset(c.Param("asset-name"), c.Response()))
}
// Routes set the routing for the remote service
func Routes(router *echo.Group) {
router.GET("/_all_doctypes", allDoctypes)
router.GET("/:doctype", remoteGet)
router.POST("/:doctype", remotePost)
router.GET("/assets/:asset-name", remoteAsset)
}
func wrapRemoteErr(err error) error {
switch err {
case remote.ErrNotFoundRemote:
return jsonapi.NotFound(err)
case remote.ErrInvalidRequest:
return jsonapi.BadRequest(err)
case remote.ErrRequestFailed:
return jsonapi.BadGateway(err)
case remote.ErrInvalidVariables:
return jsonapi.BadRequest(err)
case remote.ErrMissingVar:
return jsonapi.BadRequest(err)
case remote.ErrInvalidContentType:
return jsonapi.BadGateway(err)
case remote.ErrRemoteAssetNotFound:
return jsonapi.NotFound(err)
}
return err
}
func allowWholeType(c echo.Context, v permission.Verb, doctype string) (string, error) {
pdoc, err := middlewares.GetPermission(c)
if err != nil {
return "", err
}
if !pdoc.Permissions.AllowWholeType(v, doctype) {
return "", middlewares.ErrForbidden
}
slug := ""
if parts := strings.SplitN(pdoc.SourceID, "/", 2); len(parts) > 1 {
slug = parts[1]
}
return slug, nil
}