2 * Copyright 2018 Intel Corporation, Inc
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
21 "github.com/gorilla/mux"
24 smsbackend "sms/backend"
27 // handler stores two interface implementations that implement
28 // the backend functionality
30 secretBackend smsbackend.SecretBackend
31 loginBackend smsbackend.LoginBackend
34 // createSecretDomainHandler creates a secret domain with a name provided
35 func (h handler) createSecretDomainHandler(w http.ResponseWriter, r *http.Request) {
36 var d smsbackend.SecretDomain
38 err := json.NewDecoder(r.Body).Decode(&d)
40 http.Error(w, err.Error(), http.StatusBadRequest)
44 dom, err := h.secretBackend.CreateSecretDomain(d.Name)
46 http.Error(w, err.Error(), http.StatusInternalServerError)
50 err = json.NewEncoder(w).Encode(dom)
52 http.Error(w, err.Error(), http.StatusInternalServerError)
57 // deleteSecretDomainHandler deletes a secret domain with the name provided
58 func (h handler) deleteSecretDomainHandler(w http.ResponseWriter, r *http.Request) {
60 domName := vars["domName"]
62 err := h.secretBackend.DeleteSecretDomain(domName)
64 http.Error(w, err.Error(), http.StatusInternalServerError)
69 // createSecretHandler handles creation of secrets on a given domain name
70 func (h handler) createSecretHandler(w http.ResponseWriter, r *http.Request) {
71 // Get domain name from URL
73 domName := vars["domName"]
75 // Get secrets to be stored from body
76 var b smsbackend.Secret
77 err := json.NewDecoder(r.Body).Decode(&b)
79 http.Error(w, err.Error(), http.StatusBadRequest)
83 err = h.secretBackend.CreateSecret(domName, b)
85 http.Error(w, err.Error(), http.StatusInternalServerError)
89 w.WriteHeader(http.StatusCreated)
92 // getSecretHandler handles reading a secret by given domain name and secret name
93 func (h handler) getSecretHandler(w http.ResponseWriter, r *http.Request) {
95 domName := vars["domName"]
96 secName := vars["secretName"]
98 sec, err := h.secretBackend.GetSecret(domName, secName)
100 http.Error(w, err.Error(), http.StatusInternalServerError)
104 err = json.NewEncoder(w).Encode(sec)
106 http.Error(w, err.Error(), http.StatusInternalServerError)
111 // listSecretHandler handles listing all secrets under a particular domain name
112 func (h handler) listSecretHandler(w http.ResponseWriter, r *http.Request) {
114 domName := vars["domName"]
116 sec, err := h.secretBackend.ListSecret(domName)
118 http.Error(w, err.Error(), http.StatusInternalServerError)
122 err = json.NewEncoder(w).Encode(sec)
124 http.Error(w, err.Error(), http.StatusInternalServerError)
129 // deleteSecretHandler handles deleting a secret by given domain name and secret name
130 func (h handler) deleteSecretHandler(w http.ResponseWriter, r *http.Request) {
132 domName := vars["domName"]
133 secName := vars["secretName"]
135 err := h.secretBackend.DeleteSecret(domName, secName)
137 http.Error(w, err.Error(), http.StatusInternalServerError)
142 // struct that tracks various status items for SMS and backend
143 type backendStatus struct {
144 Seal bool `json:"sealstatus"`
147 // statusHandler returns information related to SMS and SMS backend services
148 func (h handler) statusHandler(w http.ResponseWriter, r *http.Request) {
149 s, err := h.secretBackend.GetStatus()
151 http.Error(w, err.Error(), http.StatusInternalServerError)
155 status := backendStatus{Seal: s}
156 err = json.NewEncoder(w).Encode(status)
158 http.Error(w, err.Error(), http.StatusInternalServerError)
163 // loginHandler handles login via password and username
164 func (h handler) loginHandler(w http.ResponseWriter, r *http.Request) {
169 func (h handler) initSMSHandler(w http.ResponseWriter, r *http.Request) {
174 func (h handler) unsealHandler(w http.ResponseWriter, r *http.Request) {
178 // CreateRouter returns an http.Handler for the registered URLs
179 // Takes an interface implementation as input
180 func CreateRouter(b smsbackend.SecretBackend) http.Handler {
181 h := handler{secretBackend: b}
183 // Create a new mux to handle URL endpoints
184 router := mux.NewRouter()
186 router.HandleFunc("/v1/sms/login", h.loginHandler).Methods("POST")
188 // Initialization APIs which will be used by quorum client
189 // to unseal and to provide root token to sms service
190 router.HandleFunc("/v1/sms/status", h.statusHandler).Methods("GET")
191 router.HandleFunc("/v1/sms/unseal", h.unsealHandler).Methods("POST")
192 router.HandleFunc("/v1/sms/init", h.initSMSHandler).Methods("POST")
194 router.HandleFunc("/v1/sms/domain", h.createSecretDomainHandler).Methods("POST")
195 router.HandleFunc("/v1/sms/domain/{domName}", h.deleteSecretDomainHandler).Methods("DELETE")
197 router.HandleFunc("/v1/sms/domain/{domName}/secret", h.createSecretHandler).Methods("POST")
198 router.HandleFunc("/v1/sms/domain/{domName}/secret", h.listSecretHandler).Methods("GET")
199 router.HandleFunc("/v1/sms/domain/{domName}/secret/{secretName}", h.getSecretHandler).Methods("GET")
200 router.HandleFunc("/v1/sms/domain/{domName}/secret/{secretName}", h.deleteSecretHandler).Methods("DELETE")