module Devops module Version2_0 module Handler class Key def self.get_keys lambda { check_privileges("key", "r") keys = settings.mongo.keys.map {|i| i.to_hash} keys.each {|k| k.delete("path")} # We should not return path to the key json keys } end def self.create_key lambda { check_privileges("key", "w") key = create_object_from_json_body fname = check_filename(key["file_name"], "Parameter 'file_name' must be a not empty string") kname = check_string(key["key_name"], "Parameter 'key_name' should be a not empty string") content = check_string(key["content"], "Parameter 'content' should be a not empty string") file_name = File.join(settings.keys_dir, fname) halt(400, "File '#{fname}' already exist") if File.exists?(file_name) File.open(file_name, "w") do |f| f.write(content) f.chmod(0400) end key = Devops::Model::Key.new({"path" => file_name, "id" => kname}) settings.mongo.key_insert key create_response("Created", nil, 201) } end def self.delete_key lambda { check_privileges("key", "w") servers = settings.mongo.servers_by_key params[:key] unless servers.empty? s_str = servers.map{|s| s.id}.join(", ") raise DependencyError.new "Deleting is forbidden: Key is used in servers: #{s_str}" end k = settings.mongo.key params[:key] begin FileUtils.rm(k.path) rescue logger.error "Missing key file for #{params[:key]} - #{k.filename}" end r = settings.mongo.key_delete params[:key] return [500, r["err"].inspect] unless r["err"].nil? create_response("Key '#{params[:key]}' removed") } end end end end end