mirror of
https://github.com/openziti/zrok.git
synced 2024-11-22 08:03:49 +01:00
98 lines
3.1 KiB
Go
98 lines
3.1 KiB
Go
package controller
|
|
|
|
import (
|
|
"github.com/go-openapi/runtime/middleware"
|
|
"github.com/openziti/zrok/rest_model_zrok"
|
|
"github.com/openziti/zrok/rest_server_zrok/operations/share"
|
|
"github.com/sirupsen/logrus"
|
|
)
|
|
|
|
type updateShareHandler struct{}
|
|
|
|
func newUpdateShareHandler() *updateShareHandler {
|
|
return &updateShareHandler{}
|
|
}
|
|
|
|
func (h *updateShareHandler) Handle(params share.UpdateShareParams, principal *rest_model_zrok.Principal) middleware.Responder {
|
|
shrToken := params.Body.ShrToken
|
|
backendProxyEndpoint := params.Body.BackendProxyEndpoint
|
|
|
|
tx, err := str.Begin()
|
|
if err != nil {
|
|
logrus.Errorf("error starting transaction: %v", err)
|
|
return share.NewUpdateShareInternalServerError()
|
|
}
|
|
defer func() { _ = tx.Rollback() }()
|
|
|
|
sshr, err := str.FindShareWithToken(shrToken, tx)
|
|
if err != nil {
|
|
logrus.Errorf("share '%v' not found: %v", shrToken, err)
|
|
return share.NewUpdateShareNotFound()
|
|
}
|
|
|
|
senvs, err := str.FindEnvironmentsForAccount(int(principal.ID), tx)
|
|
if err != nil {
|
|
logrus.Errorf("error finding environments for account '%v': %v", principal.Email, err)
|
|
return share.NewUpdateShareInternalServerError()
|
|
}
|
|
|
|
envFound := false
|
|
for _, senv := range senvs {
|
|
if senv.Id == sshr.EnvironmentId {
|
|
envFound = true
|
|
break
|
|
}
|
|
}
|
|
if !envFound {
|
|
logrus.Errorf("environment not found for share '%v'", shrToken)
|
|
return share.NewUpdateShareNotFound()
|
|
}
|
|
|
|
doCommit := false
|
|
if backendProxyEndpoint != "" {
|
|
sshr.BackendProxyEndpoint = &backendProxyEndpoint
|
|
if err := str.UpdateShare(sshr, tx); err != nil {
|
|
logrus.Errorf("error updating share '%v': %v", shrToken, err)
|
|
return share.NewUpdateShareInternalServerError()
|
|
}
|
|
doCommit = true
|
|
}
|
|
|
|
for _, addr := range params.Body.AddAccessGrants {
|
|
acct, err := str.FindAccountWithEmail(addr, tx)
|
|
if err != nil {
|
|
logrus.Errorf("error looking up account by email '%v' for user '%v': %v", addr, principal.Email, err)
|
|
return share.NewUpdateShareBadRequest()
|
|
}
|
|
if _, err := str.CreateAccessGrant(sshr.Id, acct.Id, tx); err != nil {
|
|
logrus.Errorf("error adding access grant '%v' for share '%v': %v", acct.Email, shrToken, err)
|
|
return share.NewUpdateShareInternalServerError()
|
|
}
|
|
logrus.Infof("added access grant '%v' to share '%v'", acct.Email, shrToken)
|
|
doCommit = true
|
|
}
|
|
|
|
for _, addr := range params.Body.RemoveAccessGrants {
|
|
acct, err := str.FindAccountWithEmail(addr, tx)
|
|
if err != nil {
|
|
logrus.Errorf("error looking up account by email '%v' for user '%v': %v", addr, principal.Email, err)
|
|
return share.NewUpdateShareBadRequest()
|
|
}
|
|
if err := str.DeleteAccessGrantsForShareAndAccount(sshr.Id, acct.Id, tx); err != nil {
|
|
logrus.Errorf("error removing access grant '%v' for share '%v': %v", acct.Email, shrToken, err)
|
|
return share.NewUpdateShareInternalServerError()
|
|
}
|
|
logrus.Infof("removed access grant '%v' from share '%v'", acct.Email, shrToken)
|
|
doCommit = true
|
|
}
|
|
|
|
if doCommit {
|
|
if err := tx.Commit(); err != nil {
|
|
logrus.Errorf("error committing transaction for share '%v' update: %v", shrToken, err)
|
|
return share.NewUpdateShareInternalServerError()
|
|
}
|
|
}
|
|
|
|
return share.NewUpdateShareOK()
|
|
}
|