agola/internal/services/gateway/api/api.go

// Copyright 2019 Sorint.lab
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//     http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied
// See the License for the specific language governing permissions and
// limitations under the License.

package api

import (
	"encoding/json"
	"net/http"
	"net/url"

	"github.com/sorintlab/agola/internal/services/types"
	"github.com/sorintlab/agola/internal/util"

	"github.com/gorilla/mux"
	errors "golang.org/x/xerrors"
)

type ErrorResponse struct {
	Message string `json:"message"`
}

func ErrorResponseFromError(err error) *ErrorResponse {
	var aerr error
	// use inner errors if of these types
	switch {
	case errors.Is(err, &util.ErrBadRequest{}):
		var cerr *util.ErrBadRequest
		errors.As(err, &cerr)
		aerr = cerr
	case errors.Is(err, &util.ErrNotFound{}):
		var cerr *util.ErrNotFound
		errors.As(err, &cerr)
		aerr = cerr
	case errors.Is(err, &util.ErrForbidden{}):
		var cerr *util.ErrForbidden
		errors.As(err, &cerr)
		aerr = cerr
	case errors.Is(err, &util.ErrUnauthorized{}):
		var cerr *util.ErrUnauthorized
		errors.As(err, &cerr)
		aerr = cerr
	}

	if aerr != nil {
		return &ErrorResponse{Message: aerr.Error()}
	}

	// on generic error return an generic message to not leak the real error
	return &ErrorResponse{Message: "internal server error"}
}

func httpError(w http.ResponseWriter, err error) bool {
	if err == nil {
		return false
	}

	response := ErrorResponseFromError(err)
	resj, merr := json.Marshal(response)
	if merr != nil {
		w.WriteHeader(http.StatusInternalServerError)
		return true
	}
	switch {
	case errors.Is(err, &util.ErrBadRequest{}):
		w.WriteHeader(http.StatusBadRequest)
		w.Write(resj)
	case errors.Is(err, &util.ErrNotFound{}):
		w.WriteHeader(http.StatusNotFound)
		w.Write(resj)
	case errors.Is(err, &util.ErrForbidden{}):
		w.WriteHeader(http.StatusForbidden)
		w.Write(resj)
	case errors.Is(err, &util.ErrUnauthorized{}):
		w.WriteHeader(http.StatusUnauthorized)
		w.Write(resj)
	default:
		w.WriteHeader(http.StatusInternalServerError)
		w.Write(resj)
	}
	return true
}

func httpResponse(w http.ResponseWriter, code int, res interface{}) error {
	w.Header().Set("Content-Type", "application/json")

	if res != nil {
		resj, err := json.Marshal(res)
		if err != nil {
			httpError(w, err)
			return err
		}
		w.WriteHeader(code)
		_, err = w.Write(resj)
		return err
	}

	w.WriteHeader(code)
	return nil
}

func httpErrorFromRemote(w http.ResponseWriter, resp *http.Response, err error) bool {
	if err != nil {
		// on generic error return an generic message to not leak the real error
		response := &ErrorResponse{Message: "internal server error"}
		if resp != nil {
			response = &ErrorResponse{Message: err.Error()}
		}
		resj, merr := json.Marshal(response)
		if merr != nil {
			w.WriteHeader(http.StatusInternalServerError)
			return true
		}
		if resp != nil {
			w.WriteHeader(resp.StatusCode)
		} else {
			w.WriteHeader(http.StatusInternalServerError)
		}
		w.Write(resj)
		return true
	}
	return false
}

func GetConfigTypeRef(r *http.Request) (types.ConfigType, string, error) {
	vars := mux.Vars(r)
	projectRef, err := url.PathUnescape(vars["projectref"])
	if err != nil {
		return "", "", util.NewErrBadRequest(errors.Errorf("wrong projectref %q: %w", vars["projectref"], err))
	}
	if projectRef != "" {
		return types.ConfigTypeProject, projectRef, nil
	}

	projectGroupRef, err := url.PathUnescape(vars["projectgroupref"])
	if err != nil {
		return "", "", util.NewErrBadRequest(errors.Errorf("wrong projectgroupref %q: %w", vars["projectgroupref"], err))
	}
	if projectGroupRef != "" {
		return types.ConfigTypeProjectGroup, projectGroupRef, nil
	}

	return "", "", util.NewErrBadRequest(errors.Errorf("cannot get project or projectgroup ref"))
}
initial project group impl and related api updated 2019-03-14 13:36:18 +00:00			`// Copyright 2019 Sorint.lab`
			`//`
			`// Licensed under the Apache License, Version 2.0 (the "License");`
			`// you may not use this file except in compliance with the License.`
			`// You may obtain a copy of the License at`
			`//`
			`// http://www.apache.org/licenses/LICENSE-2.0`
			`//`
			`// Unless required by applicable law or agreed to in writing, software`
			`// distributed under the License is distributed on an "AS IS" BASIS,`
			`// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied`
			`// See the License for the specific language governing permissions and`
			`// limitations under the License.`

			`package api`

			`import (`
gateway api: improve response handling * Always return a json message also on error. For internal errors return a generic "internal server error" message to not leak the real internal error to clients * Return 201 Created on resource creation * Return 204 No Content on resource deletion and other action with no json output 2019-04-08 09:35:45 +00:00			`"encoding/json"`
initial project group impl and related api updated 2019-03-14 13:36:18 +00:00			`"net/http"`
initial secret and variables impl 2019-03-14 13:36:18 +00:00			`"net/url"`
initial project group impl and related api updated 2019-03-14 13:36:18 +00:00
initial secret and variables impl 2019-03-14 13:36:18 +00:00			`"github.com/sorintlab/agola/internal/services/types"`
initial project group impl and related api updated 2019-03-14 13:36:18 +00:00			`"github.com/sorintlab/agola/internal/util"`
*: migrate to "golang.org/x/xerrors" Just a raw replace of "github.com/pkg/errors". Next steps will improve errors (like remote errors, api errors, not exist errors etc...) to leverage its functionalities 2019-05-23 09:23:14 +00:00
			`"github.com/gorilla/mux"`
			`errors "golang.org/x/xerrors"`
initial project group impl and related api updated 2019-03-14 13:36:18 +00:00			`)`

gateway api: improve response handling * Always return a json message also on error. For internal errors return a generic "internal server error" message to not leak the real internal error to clients * Return 201 Created on resource creation * Return 204 No Content on resource deletion and other action with no json output 2019-04-08 09:35:45 +00:00			`type ErrorResponse struct {`
			Message string `json:"message"`
			`}`

			`func ErrorResponseFromError(err error) *ErrorResponse {`
gateway: improve ErrFromRemote handling Don't create an ErrFromRemote wrapping the returned error but wrap the ErrFromRemote Also use xerrors Is/As to get the underlying error to return to api clients while maintaining context for logging 2019-05-23 10:59:11 +00:00			`var aerr error`
			`// use inner errors if of these types`
/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`switch {`
gateway: improve ErrFromRemote handling Don't create an ErrFromRemote wrapping the returned error but wrap the ErrFromRemote Also use xerrors Is/As to get the underlying error to return to api clients while maintaining context for logging 2019-05-23 10:59:11 +00:00			`case errors.Is(err, &util.ErrBadRequest{}):`
			`var cerr *util.ErrBadRequest`
			`errors.As(err, &cerr)`
			`aerr = cerr`
			`case errors.Is(err, &util.ErrNotFound{}):`
			`var cerr *util.ErrNotFound`
			`errors.As(err, &cerr)`
			`aerr = cerr`
			`case errors.Is(err, &util.ErrForbidden{}):`
			`var cerr *util.ErrForbidden`
			`errors.As(err, &cerr)`
			`aerr = cerr`
			`case errors.Is(err, &util.ErrUnauthorized{}):`
			`var cerr *util.ErrUnauthorized`
			`errors.As(err, &cerr)`
			`aerr = cerr`
			`}`

			`if aerr != nil {`
			`return &ErrorResponse{Message: aerr.Error()}`
gateway api: improve response handling * Always return a json message also on error. For internal errors return a generic "internal server error" message to not leak the real internal error to clients * Return 201 Created on resource creation * Return 204 No Content on resource deletion and other action with no json output 2019-04-08 09:35:45 +00:00			`}`

			`// on generic error return an generic message to not leak the real error`
			`return &ErrorResponse{Message: "internal server error"}`
			`}`

initial project group impl and related api updated 2019-03-14 13:36:18 +00:00			`func httpError(w http.ResponseWriter, err error) bool {`
/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`if err == nil {`
			`return false`
initial project group impl and related api updated 2019-03-14 13:36:18 +00:00			`}`

/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`response := ErrorResponseFromError(err)`
			`resj, merr := json.Marshal(response)`
			`if merr != nil {`
			`w.WriteHeader(http.StatusInternalServerError)`
			`return true`
			`}`
			`switch {`
gateway: improve ErrFromRemote handling Don't create an ErrFromRemote wrapping the returned error but wrap the ErrFromRemote Also use xerrors Is/As to get the underlying error to return to api clients while maintaining context for logging 2019-05-23 10:59:11 +00:00			`case errors.Is(err, &util.ErrBadRequest{}):`
/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`w.WriteHeader(http.StatusBadRequest)`
			`w.Write(resj)`
gateway: improve ErrFromRemote handling Don't create an ErrFromRemote wrapping the returned error but wrap the ErrFromRemote Also use xerrors Is/As to get the underlying error to return to api clients while maintaining context for logging 2019-05-23 10:59:11 +00:00			`case errors.Is(err, &util.ErrNotFound{}):`
/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`w.WriteHeader(http.StatusNotFound)`
			`w.Write(resj)`
gateway: improve ErrFromRemote handling Don't create an ErrFromRemote wrapping the returned error but wrap the ErrFromRemote Also use xerrors Is/As to get the underlying error to return to api clients while maintaining context for logging 2019-05-23 10:59:11 +00:00			`case errors.Is(err, &util.ErrForbidden{}):`
util/errors: add ErrForbidden 2019-05-03 21:18:51 +00:00			`w.WriteHeader(http.StatusForbidden)`
			`w.Write(resj)`
gateway: improve ErrFromRemote handling Don't create an ErrFromRemote wrapping the returned error but wrap the ErrFromRemote Also use xerrors Is/As to get the underlying error to return to api clients while maintaining context for logging 2019-05-23 10:59:11 +00:00			`case errors.Is(err, &util.ErrUnauthorized{}):`
gateway: return right error when remotesource login fails If the remote source username/password based login fails return the right error code: 401 (unauthorized) on wrong username/password or a 500 on other errors. 2019-05-13 12:23:41 +00:00			`w.WriteHeader(http.StatusUnauthorized)`
			`w.Write(resj)`
/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`default:`
			`w.WriteHeader(http.StatusInternalServerError)`
			`w.Write(resj)`
			`}`
			`return true`
initial project group impl and related api updated 2019-03-14 13:36:18 +00:00			`}`
initial secret and variables impl 2019-03-14 13:36:18 +00:00
gateway api: improve response handling * Always return a json message also on error. For internal errors return a generic "internal server error" message to not leak the real internal error to clients * Return 201 Created on resource creation * Return 204 No Content on resource deletion and other action with no json output 2019-04-08 09:35:45 +00:00			`func httpResponse(w http.ResponseWriter, code int, res interface{}) error {`
			`w.Header().Set("Content-Type", "application/json")`

			`if res != nil {`
			`resj, err := json.Marshal(res)`
			`if err != nil {`
			`httpError(w, err)`
			`return err`
			`}`
			`w.WriteHeader(code)`
			`_, err = w.Write(resj)`
			`return err`
			`}`

			`w.WriteHeader(code)`
			`return nil`
			`}`

/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`func httpErrorFromRemote(w http.ResponseWriter, resp *http.Response, err error) bool {`
			`if err != nil {`
			`// on generic error return an generic message to not leak the real error`
			`response := &ErrorResponse{Message: "internal server error"}`
			`if resp != nil {`
			`response = &ErrorResponse{Message: err.Error()}`
			`}`
			`resj, merr := json.Marshal(response)`
			`if merr != nil {`
			`w.WriteHeader(http.StatusInternalServerError)`
			`return true`
			`}`
			`if resp != nil {`
			`w.WriteHeader(resp.StatusCode)`
			`} else {`
			`w.WriteHeader(http.StatusInternalServerError)`
			`}`
			`w.Write(resj)`
			`return true`
			`}`
			`return false`
			`}`

initial secret and variables impl 2019-03-14 13:36:18 +00:00			`func GetConfigTypeRef(r *http.Request) (types.ConfigType, string, error) {`
			`vars := mux.Vars(r)`
			`projectRef, err := url.PathUnescape(vars["projectref"])`
			`if err != nil {`
*: migrate to "golang.org/x/xerrors" Just a raw replace of "github.com/pkg/errors". Next steps will improve errors (like remote errors, api errors, not exist errors etc...) to leverage its functionalities 2019-05-23 09:23:14 +00:00			`return "", "", util.NewErrBadRequest(errors.Errorf("wrong projectref %q: %w", vars["projectref"], err))`
initial secret and variables impl 2019-03-14 13:36:18 +00:00			`}`
			`if projectRef != "" {`
			`return types.ConfigTypeProject, projectRef, nil`
			`}`

			`projectGroupRef, err := url.PathUnescape(vars["projectgroupref"])`
			`if err != nil {`
*: migrate to "golang.org/x/xerrors" Just a raw replace of "github.com/pkg/errors". Next steps will improve errors (like remote errors, api errors, not exist errors etc...) to leverage its functionalities 2019-05-23 09:23:14 +00:00			`return "", "", util.NewErrBadRequest(errors.Errorf("wrong projectgroupref %q: %w", vars["projectgroupref"], err))`
initial secret and variables impl 2019-03-14 13:36:18 +00:00			`}`
			`if projectGroupRef != "" {`
			`return types.ConfigTypeProjectGroup, projectGroupRef, nil`
			`}`

			`return "", "", util.NewErrBadRequest(errors.Errorf("cannot get project or projectgroup ref"))`
			`}`