mirror of
https://github.com/netbirdio/netbird.git
synced 2025-08-10 07:38:07 +02:00
128 lines
4.5 KiB
Go
128 lines
4.5 KiB
Go
package networks
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
|
|
"github.com/rs/xid"
|
|
|
|
"github.com/netbirdio/netbird/management/server/networks/resources"
|
|
"github.com/netbirdio/netbird/management/server/networks/types"
|
|
"github.com/netbirdio/netbird/management/server/permissions"
|
|
"github.com/netbirdio/netbird/management/server/status"
|
|
"github.com/netbirdio/netbird/management/server/store"
|
|
)
|
|
|
|
type Manager interface {
|
|
GetAllNetworks(ctx context.Context, accountID, userID string) ([]*types.Network, error)
|
|
CreateNetwork(ctx context.Context, userID string, network *types.Network) (*types.Network, error)
|
|
GetNetwork(ctx context.Context, accountID, userID, networkID string) (*types.Network, error)
|
|
UpdateNetwork(ctx context.Context, userID string, network *types.Network) (*types.Network, error)
|
|
DeleteNetwork(ctx context.Context, accountID, userID, networkID string) error
|
|
}
|
|
|
|
type managerImpl struct {
|
|
store store.Store
|
|
permissionsManager permissions.Manager
|
|
resourcesManager resources.Manager
|
|
}
|
|
|
|
func NewManager(store store.Store, permissionsManager permissions.Manager, manager resources.Manager) Manager {
|
|
return &managerImpl{
|
|
store: store,
|
|
permissionsManager: permissionsManager,
|
|
resourcesManager: manager,
|
|
}
|
|
}
|
|
|
|
func (m *managerImpl) GetAllNetworks(ctx context.Context, accountID, userID string) ([]*types.Network, error) {
|
|
ok, err := m.permissionsManager.ValidateUserPermissions(ctx, accountID, userID, permissions.Networks, permissions.Read)
|
|
if err != nil {
|
|
return nil, status.NewPermissionValidationError(err)
|
|
}
|
|
if !ok {
|
|
return nil, status.NewPermissionDeniedError()
|
|
}
|
|
|
|
return m.store.GetAccountNetworks(ctx, store.LockingStrengthShare, accountID)
|
|
}
|
|
|
|
func (m *managerImpl) CreateNetwork(ctx context.Context, userID string, network *types.Network) (*types.Network, error) {
|
|
ok, err := m.permissionsManager.ValidateUserPermissions(ctx, network.AccountID, userID, permissions.Networks, permissions.Write)
|
|
if err != nil {
|
|
return nil, status.NewPermissionValidationError(err)
|
|
}
|
|
if !ok {
|
|
return nil, status.NewPermissionDeniedError()
|
|
}
|
|
|
|
network.ID = xid.New().String()
|
|
|
|
return network, m.store.SaveNetwork(ctx, store.LockingStrengthUpdate, network)
|
|
}
|
|
|
|
func (m *managerImpl) GetNetwork(ctx context.Context, accountID, userID, networkID string) (*types.Network, error) {
|
|
ok, err := m.permissionsManager.ValidateUserPermissions(ctx, accountID, userID, permissions.Networks, permissions.Read)
|
|
if err != nil {
|
|
return nil, status.NewPermissionValidationError(err)
|
|
}
|
|
if !ok {
|
|
return nil, status.NewPermissionDeniedError()
|
|
}
|
|
|
|
return m.store.GetNetworkByID(ctx, store.LockingStrengthShare, accountID, networkID)
|
|
}
|
|
|
|
func (m *managerImpl) UpdateNetwork(ctx context.Context, userID string, network *types.Network) (*types.Network, error) {
|
|
ok, err := m.permissionsManager.ValidateUserPermissions(ctx, network.AccountID, userID, permissions.Networks, permissions.Write)
|
|
if err != nil {
|
|
return nil, status.NewPermissionValidationError(err)
|
|
}
|
|
if !ok {
|
|
return nil, status.NewPermissionDeniedError()
|
|
}
|
|
|
|
return network, m.store.SaveNetwork(ctx, store.LockingStrengthUpdate, network)
|
|
}
|
|
|
|
func (m *managerImpl) DeleteNetwork(ctx context.Context, accountID, userID, networkID string) error {
|
|
ok, err := m.permissionsManager.ValidateUserPermissions(ctx, accountID, userID, permissions.Networks, permissions.Write)
|
|
if err != nil {
|
|
return status.NewPermissionValidationError(err)
|
|
}
|
|
if !ok {
|
|
return status.NewPermissionDeniedError()
|
|
}
|
|
|
|
unlock := m.store.AcquireWriteLockByUID(ctx, accountID)
|
|
defer unlock()
|
|
|
|
return m.store.ExecuteInTransaction(ctx, func(transaction store.Store) error {
|
|
resources, err := transaction.GetNetworkResourcesByNetID(ctx, store.LockingStrengthUpdate, accountID, networkID)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to get resources in network: %w", err)
|
|
}
|
|
|
|
for _, resource := range resources {
|
|
err = m.resourcesManager.DeleteResourceInTransaction(ctx, transaction, accountID, networkID, resource.ID)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to delete resource: %w", err)
|
|
}
|
|
}
|
|
|
|
routers, err := transaction.GetNetworkRoutersByNetID(ctx, store.LockingStrengthUpdate, accountID, networkID)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to get routers in network: %w", err)
|
|
}
|
|
|
|
for _, router := range routers {
|
|
err = transaction.DeleteNetworkRouter(ctx, store.LockingStrengthUpdate, accountID, router.ID)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to delete router: %w", err)
|
|
}
|
|
}
|
|
|
|
return transaction.DeleteNetwork(ctx, store.LockingStrengthUpdate, accountID, networkID)
|
|
})
|
|
}
|