2014-05-08 15:34:26 +04:00
|
|
|
require "json"
|
|
|
|
|
|
2014-12-15 14:26:54 +03:00
|
|
|
module Devops
|
2015-07-17 20:22:29 +03:00
|
|
|
module API2_0
|
2014-12-22 14:22:04 +03:00
|
|
|
module Routes
|
2014-12-15 14:26:54 +03:00
|
|
|
module KeyRoutes
|
2014-05-08 15:34:26 +04:00
|
|
|
|
2014-12-15 14:26:54 +03:00
|
|
|
def self.registered(app)
|
|
|
|
|
# Get list of available ssh keys
|
|
|
|
|
#
|
|
|
|
|
# * *Request*
|
|
|
|
|
# - method : GET
|
|
|
|
|
# - headers :
|
|
|
|
|
# - Accept: application/json
|
|
|
|
|
#
|
|
|
|
|
# * *Returns* : array of strings
|
|
|
|
|
# [
|
|
|
|
|
# {
|
|
|
|
|
# "scope": "system", -> 'system' - key was added by server, 'user' - key was added by user
|
|
|
|
|
# "id": "devops"
|
|
|
|
|
# }
|
|
|
|
|
# ]
|
2015-07-17 20:22:29 +03:00
|
|
|
app.get_with_headers "/keys", :headers => [:accept] do
|
|
|
|
|
check_privileges("key", "r")
|
|
|
|
|
json Devops::API2_0::Handler::Key.new.keys
|
|
|
|
|
end
|
2014-05-08 15:34:26 +04:00
|
|
|
|
2014-12-15 14:26:54 +03:00
|
|
|
# Create ssh key on devops server
|
|
|
|
|
#
|
|
|
|
|
# * *Request*
|
|
|
|
|
# - method : POST
|
|
|
|
|
# - headers :
|
|
|
|
|
# - Accept: application/json
|
|
|
|
|
# - Content-Type: application/json
|
|
|
|
|
# - body :
|
|
|
|
|
# {
|
|
|
|
|
# "file_name": "key file name",
|
|
|
|
|
# "key_name": "key name",
|
|
|
|
|
# "content": "key content"
|
|
|
|
|
# }
|
|
|
|
|
#
|
|
|
|
|
# * *Returns* :
|
|
|
|
|
# 201 - Created
|
2015-07-17 20:22:29 +03:00
|
|
|
app.post_with_headers "/key", :headers => [:accept, :content_type] do
|
|
|
|
|
check_privileges("key", "w")
|
|
|
|
|
key = create_object_from_json_body
|
|
|
|
|
fname = check_filename(key["file_name"], "Parameter 'file_name' must be a not empty string")
|
|
|
|
|
kname = check_string(key["key_name"], "Parameter 'key_name' should be a not empty string")
|
|
|
|
|
content = check_string(key["content"], "Parameter 'content' should be a not empty string")
|
|
|
|
|
file_name = File.join(settings.keys_dir, fname)
|
|
|
|
|
halt(400, "File '#{fname}' already exist") if File.exists?(file_name)
|
|
|
|
|
Devops::API2_0::Handler::Key.new.create(key, file_name)
|
|
|
|
|
create_response("Created", nil, 201)
|
|
|
|
|
end
|
2014-05-08 15:34:26 +04:00
|
|
|
|
2014-12-15 14:26:54 +03:00
|
|
|
# Delete ssh key from devops server
|
|
|
|
|
#
|
|
|
|
|
# * *Request*
|
|
|
|
|
# - method : DELETE
|
|
|
|
|
# - headers :
|
|
|
|
|
# - Accept: application/json
|
|
|
|
|
#
|
|
|
|
|
# * *Returns* :
|
|
|
|
|
# 200 - Deleted
|
2015-07-17 20:22:29 +03:00
|
|
|
app.delete_with_headers "/key/:key", :headers => [:accept] do
|
|
|
|
|
check_privileges("key", "w")
|
|
|
|
|
servers = settings.mongo.servers_by_key params[:key]
|
|
|
|
|
unless servers.empty?
|
|
|
|
|
s_str = servers.map{|s| s.id}.join(", ")
|
|
|
|
|
raise DependencyError.new "Deleting is forbidden: Key is used in servers: #{s_str}"
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
k = settings.mongo.key params[:key]
|
|
|
|
|
begin
|
|
|
|
|
FileUtils.rm(k.path)
|
|
|
|
|
rescue
|
|
|
|
|
logger.error "Missing key file for #{params[:key]} - #{k.filename}"
|
|
|
|
|
end
|
|
|
|
|
r = settings.mongo.key_delete params[:key]
|
|
|
|
|
|
|
|
|
|
r = Devops::API2_0::Handler::Key.new.delete params[:key]
|
|
|
|
|
return [500, r["err"].inspect] unless r["err"].nil?
|
|
|
|
|
create_response("Key '#{params[:key]}' removed")
|
|
|
|
|
|
|
|
|
|
end
|
2014-12-15 14:26:54 +03:00
|
|
|
|
|
|
|
|
puts "Key routes initialized"
|
|
|
|
|
end
|
2014-05-08 15:34:26 +04:00
|
|
|
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
end
|
