Merge pull request #189 from lpabon/cpr

Heketi Client API for Go
heketi · Sep 4, 2015 · 6f219ee · 6f219ee
2 parents 0c5d109 + 7c2701b
commit 6f219ee
Show file tree

Hide file tree

Showing 25 changed files with 1,200 additions and 3 deletions.
diff --git a/.travis-coverage b/.travis-coverage
@@ -8,7 +8,8 @@ packages="./rest ./apps/glusterfs ./utils"
 packages="${packages} ./executors/sshexec"
 packages="${packages} ./executors/mockexec"
 packages="${packages} ./executors ./apps"
-packages="${packages} ./client/go/commands"
+packages="${packages} ./client/cli/go/commands"
+packages="${packages} ./client/api/go-client"
 packages="${packages} ./middleware"
 COVERFILE=packagecover.out
 

diff --git a/client/api/go-client/client.go b/client/api/go-client/client.go
@@ -0,0 +1,133 @@
+//
+// Copyright (c) 2015 The heketi Authors
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+//
+
+package client
+
+import (
+	"crypto/sha256"
+	"encoding/hex"
+	jwt "github.com/dgrijalva/jwt-go"
+	"github.com/heketi/heketi/utils"
+	"net/http"
+	"time"
+)
+
+// Client object
+type Client struct {
+	host string
+	key  string
+	user string
+}
+
+// Creates a new client to access a Heketi server
+func NewClient(host, user, key string) *Client {
+	c := &Client{}
+
+	c.key = key
+	c.host = host
+	c.user = user
+
+	return c
+}
+
+// Create a client to access a Heketi server without authentication enabled
+func NewClientNoAuth(host string) *Client {
+	return NewClient(host, "", "")
+}
+
+// This function is called by the http package if it detects that it needs to
+// be redirected.  This happens when the server returns a 303 HTTP Status.
+// Here we create a new token before it makes the next request.
+func (c *Client) checkRedirect(req *http.Request, via []*http.Request) error {
+	return c.setToken(req)
+}
+
+// Wait for the job to finish, waiting waitTime on every loop
+func (c *Client) waitForResponseWithTimer(r *http.Response,
+	waitTime time.Duration) (*http.Response, error) {
+
+	// Get temp resource
+	location, err := r.Location()
+	if err != nil {
+		return nil, err
+	}
+
+	for {
+		// Create request
+		req, err := http.NewRequest("GET", location.String(), nil)
+		if err != nil {
+			return nil, err
+		}
+
+		// Set token
+		err = c.setToken(req)
+		if err != nil {
+			return nil, err
+		}
+
+		client := &http.Client{}
+		client.CheckRedirect = c.checkRedirect
+
+		// Wait for response
+		r, err = client.Do(req)
+		if err != nil {
+			return nil, err
+		}
+
+		// Check if the request is pending
+		if r.Header.Get("X-Pending") == "true" {
+			if r.StatusCode != http.StatusOK {
+				return nil, utils.GetErrorFromResponse(r)
+			}
+			time.Sleep(waitTime)
+		} else {
+			return r, nil
+		}
+	}
+
+}
+
+// Create JSON Web Token
+func (c *Client) setToken(r *http.Request) error {
+
+	token := jwt.New(jwt.SigningMethodHS256)
+
+	// Set issuer
+	token.Claims["iss"] = c.user
+
+	// Set issued at time
+	token.Claims["iat"] = time.Now().Unix()
+
+	// Set expiration
+	token.Claims["exp"] = time.Now().Add(time.Minute * 5).Unix()
+
+	// Set qsh hash
+	qshstring := r.Method + "&" + r.URL.Path
+	hash := sha256.New()
+	hash.Write([]byte(qshstring))
+	token.Claims["qsh"] = hex.EncodeToString(hash.Sum(nil))
+
+	// Sign the token
+	signedtoken, err := token.SignedString([]byte(c.key))
+	if err != nil {
+		return err
+	}
+
+	// Save it in the header
+	r.Header.Set("Authorization", "bearer "+signedtoken)
+
+	return nil
+}