chronograf/server/mux.go

package server

import (
	"encoding/json"
	"fmt"
	"net/http"
	"strconv"
	"strings"

	"github.com/NYTimes/gziphandler"
	"github.com/bouk/httprouter"
	"github.com/influxdata/chronograf" // When julienschmidt/httprouter v2 w/ context is out, switch
	"github.com/influxdata/chronograf/oauth2"
)

const (
	// JSONType the mimetype for a json request
	JSONType = "application/json"
)

// MuxOpts are the options for the router.  Mostly related to auth.
type MuxOpts struct {
	Logger             chronograf.Logger
	Develop            bool     // Develop loads assets from filesystem instead of bindata
	Basepath           string   // URL path prefix under which all chronograf routes will be mounted
	UseAuth            bool     // UseAuth turns on Github OAuth and JWT
	TokenSecret        string   // TokenSecret is the JWT secret
	GithubClientID     string   // GithubClientID is the GH OAuth id
	GithubClientSecret string   // GithubClientSecret is the GH OAuth secret
	GithubOrgs         []string // GithubOrgs is the list of organizations a user may be a member of
	GoogleClientID     string   // GoogleClientID is the Google OAuth id
	GoogleClientSecret string   // GoogleClientSecret is the Google OAuth secret
	GoogleDomains      []string // GoogleDomains is the list of domains a user may be a member of
	PublicURL          string   // PublicURL is the public facing URL for the server
}

func (m *MuxOpts) UseGithub() bool {
	return m.TokenSecret != "" && m.GithubClientID != "" && m.GithubClientSecret != ""
}

func (m *MuxOpts) UseGoogle() bool {
	return m.TokenSecret != "" && m.GoogleClientID != "" && m.GoogleClientSecret != "" && m.PublicURL != ""
}

func (m *MuxOpts) Routes() AuthRoutes {
	routes := AuthRoutes{}
	if m.UseGithub() {
		routes = append(routes, NewGithubRoute())
	}
	if m.UseGoogle() {
		routes = append(routes, NewGoogleRoute())
	}
	return routes
}

// NewMux attaches all the route handlers; handler returned servers chronograf.
func NewMux(opts MuxOpts, service Service) http.Handler {
	router := httprouter.New()

	/* React Application */
	assets := Assets(AssetsOpts{
		Develop: opts.Develop,
		Logger:  opts.Logger,
	})

	// Prefix any URLs found in the React assets with any configured basepath
	prefixedAssets := NewDefaultURLPrefixer(basepath, assets, opts.Logger)

	// Compress the assets with gzip if an accepted encoding
	compressed := gziphandler.GzipHandler(prefixedAssets)

	// The react application handles all the routing if the server does not
	// know about the route.  This means that we never have unknown
	// routes on the server.
	router.NotFound = compressed

	/* Documentation */
	router.GET("/swagger.json", Spec())
	router.GET("/docs", Redoc("/swagger.json"))

	/* API */
	// Sources
	router.GET("/chronograf/v1/sources", service.Sources)
	router.POST("/chronograf/v1/sources", service.NewSource)

	router.GET("/chronograf/v1/sources/:id", service.SourcesID)
	router.PATCH("/chronograf/v1/sources/:id", service.UpdateSource)
	router.DELETE("/chronograf/v1/sources/:id", service.RemoveSource)

	// Source Proxy
	router.POST("/chronograf/v1/sources/:id/proxy", service.Proxy)

	// Kapacitor
	router.GET("/chronograf/v1/sources/:id/kapacitors", service.Kapacitors)
	router.POST("/chronograf/v1/sources/:id/kapacitors", service.NewKapacitor)

	router.GET("/chronograf/v1/sources/:id/kapacitors/:kid", service.KapacitorsID)
	router.PATCH("/chronograf/v1/sources/:id/kapacitors/:kid", service.UpdateKapacitor)
	router.DELETE("/chronograf/v1/sources/:id/kapacitors/:kid", service.RemoveKapacitor)

	// Kapacitor rules
	router.GET("/chronograf/v1/sources/:id/kapacitors/:kid/rules", service.KapacitorRulesGet)
	router.POST("/chronograf/v1/sources/:id/kapacitors/:kid/rules", service.KapacitorRulesPost)

	router.GET("/chronograf/v1/sources/:id/kapacitors/:kid/rules/:tid", service.KapacitorRulesID)
	router.PUT("/chronograf/v1/sources/:id/kapacitors/:kid/rules/:tid", service.KapacitorRulesPut)
	router.PATCH("/chronograf/v1/sources/:id/kapacitors/:kid/rules/:tid", service.KapacitorRulesStatus)
	router.DELETE("/chronograf/v1/sources/:id/kapacitors/:kid/rules/:tid", service.KapacitorRulesDelete)

	// Kapacitor Proxy
	router.GET("/chronograf/v1/sources/:id/kapacitors/:kid/proxy", service.KapacitorProxyGet)
	router.POST("/chronograf/v1/sources/:id/kapacitors/:kid/proxy", service.KapacitorProxyPost)
	router.PATCH("/chronograf/v1/sources/:id/kapacitors/:kid/proxy", service.KapacitorProxyPatch)
	router.DELETE("/chronograf/v1/sources/:id/kapacitors/:kid/proxy", service.KapacitorProxyDelete)

	// Mappings
	router.GET("/chronograf/v1/mappings", service.GetMappings)

	// Layouts
	router.GET("/chronograf/v1/layouts", service.Layouts)
	router.POST("/chronograf/v1/layouts", service.NewLayout)

	router.GET("/chronograf/v1/layouts/:id", service.LayoutsID)
	router.PUT("/chronograf/v1/layouts/:id", service.UpdateLayout)
	router.DELETE("/chronograf/v1/layouts/:id", service.RemoveLayout)

	// Users
	router.GET("/chronograf/v1/me", service.Me)
	router.POST("/chronograf/v1/users", service.NewUser)

	router.GET("/chronograf/v1/users/:id", service.UserID)
	router.PATCH("/chronograf/v1/users/:id", service.UpdateUser)
	router.DELETE("/chronograf/v1/users/:id", service.RemoveUser)

	// Dashboards
	router.GET("/chronograf/v1/dashboards", service.Dashboards)
	router.POST("/chronograf/v1/dashboards", service.NewDashboard)

	router.GET("/chronograf/v1/dashboards/:id", service.DashboardID)
	router.DELETE("/chronograf/v1/dashboards/:id", service.RemoveDashboard)
	router.PUT("/chronograf/v1/dashboards/:id", service.UpdateDashboard)

	authRoutes := opts.Routes()
	// Root Routes returns all top-level routes in the API and
	// optional authentication routes
	router.GET("/chronograf/v1/", AllRoutes(authRoutes, opts.Logger))
	router.GET("/chronograf/v1", AllRoutes(authRoutes, opts.Logger))

	/* Authentication */
	if opts.UseAuth {
		// Create middleware to redirect to the appropriate provider logout
		targetURL := "/"
		router.GET("/oauth/logout", Logout(targetURL, authRoutes))

		// Encapsulate the router with OAuth2
		auth := AuthAPI(opts, router)
		return Logger(opts.Logger, auth)
	}

	logged := Logger(opts.Logger, router)
	return logged
}

// AuthAPI adds the OAuth routes if auth is enabled.
// TODO: this function is not great.  Would be good if providers added their routes.
func AuthAPI(opts MuxOpts, router *httprouter.Router) http.Handler {
	auth := oauth2.NewJWT(opts.TokenSecret)
	if opts.UseGithub() {
		gh := oauth2.Github{
			ClientID:     opts.GithubClientID,
			ClientSecret: opts.GithubClientSecret,
			Orgs:         opts.GithubOrgs,
			Logger:       opts.Logger,
		}

		ghMux := oauth2.NewJWTMux(&gh, &auth, opts.Logger)
		router.Handler("GET", "/oauth/github/login", ghMux.Login())
		router.Handler("GET", "/oauth/github/logout", ghMux.Logout())
		router.Handler("GET", "/oauth/github/callback", ghMux.Callback())
	}

	if opts.UseGoogle() {
		redirectURL := opts.PublicURL + opts.Basepath + "/oauth/google/callback"
		google := oauth2.Google{
			ClientID:     opts.GoogleClientID,
			ClientSecret: opts.GoogleClientSecret,
			Domains:      opts.GoogleDomains,
			RedirectURL:  redirectURL,
			Logger:       opts.Logger,
		}

		goMux := oauth2.NewJWTMux(&google, &auth, opts.Logger)
		router.Handler("GET", "/oauth/google/login", goMux.Login())
		router.Handler("GET", "/oauth/google/logout", goMux.Logout())
		router.Handler("GET", "/oauth/google/callback", goMux.Callback())
	}

	tokenMiddleware := oauth2.AuthorizedToken(&auth, &oauth2.CookieExtractor{Name: "session"}, opts.Logger, router)
	// Wrap the API with token validation middleware.
	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		if strings.HasPrefix(r.URL.Path, "/chronograf/v1/") || r.URL.Path == "/oauth/logout" {
			tokenMiddleware.ServeHTTP(w, r)
			return
		}
		router.ServeHTTP(w, r)
	})
}

func encodeJSON(w http.ResponseWriter, status int, v interface{}, logger chronograf.Logger) {
	w.Header().Set("Content-Type", "application/json")
	w.WriteHeader(status)
	if err := json.NewEncoder(w).Encode(v); err != nil {
		unknownErrorWithMessage(w, err, logger)
	}
}

// Error writes an JSON message
func Error(w http.ResponseWriter, code int, msg string, logger chronograf.Logger) {
	e := ErrorMessage{
		Code:    code,
		Message: msg,
	}
	b, err := json.Marshal(e)
	if err != nil {
		code = http.StatusInternalServerError
		b = []byte(`{"code": 500, "message":"server_error"}`)
	}

	logger.
		WithField("component", "server").
		WithField("http_status ", code).
		Error("Error message ", msg)
	w.Header().Set("Content-Type", JSONType)
	w.WriteHeader(code)
	_, _ = w.Write(b)
}

func invalidData(w http.ResponseWriter, err error, logger chronograf.Logger) {
	Error(w, http.StatusUnprocessableEntity, fmt.Sprintf("%v", err), logger)
}

func invalidJSON(w http.ResponseWriter, logger chronograf.Logger) {
	Error(w, http.StatusBadRequest, "Unparsable JSON", logger)
}

func unknownErrorWithMessage(w http.ResponseWriter, err error, logger chronograf.Logger) {
	Error(w, http.StatusInternalServerError, fmt.Sprintf("Unknown error: %v", err), logger)
}

func notFound(w http.ResponseWriter, id int, logger chronograf.Logger) {
	Error(w, http.StatusNotFound, fmt.Sprintf("ID %d not found", id), logger)
}

func paramID(key string, r *http.Request) (int, error) {
	ctx := r.Context()
	param := httprouter.GetParamFromContext(ctx, key)
	id, err := strconv.Atoi(param)
	if err != nil {
		return -1, fmt.Errorf("Error converting ID %s", param)
	}
	return id, nil
}
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`package server`

			`import (`
			`"encoding/json"`
			`"fmt"`
			`"net/http"`
			`"strconv"`
			`"strings"`

Add gzip compression to all of our server respones 2017-02-09 20:35:38 +00:00			`"github.com/NYTimes/gziphandler"`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`"github.com/bouk/httprouter"`
Add server error logging 2016-11-19 17:41:06 +00:00			`"github.com/influxdata/chronograf" // When julienschmidt/httprouter v2 w/ context is out, switch`
Reorganize OAuth2 Logic Created an oauth2 package which encapsulates all oauth2 providers, utility functions, types, and interfaces. Previously some methods of the Github provider were used as http.HandlerFuncs. These have now been pulled into a concrete type called a JWTMux to implement other Oauth2 providers. JWTMux has all of the functionality required to take a token from any provider and store it as a JWT in a browser, and that is the extent of its responsibilities. It implements the oauth2.Mux interface which would potentially allow other strategies of oauth2 credential storage. 2017-02-14 21:14:24 +00:00			`"github.com/influxdata/chronograf/oauth2"`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`)`

			`const (`
			`// JSONType the mimetype for a json request`
			`JSONType = "application/json"`
			`)`

Fix mux paths to be hardcoded; clarify server start; fix golint 2016-10-28 16:27:06 +00:00			`// MuxOpts are the options for the router. Mostly related to auth.`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`type MuxOpts struct {`
			`Logger chronograf.Logger`
Add Github organization restriction to authentication 2017-01-05 17:29:26 +00:00			`Develop bool // Develop loads assets from filesystem instead of bindata`
Add --public-url CLI option to support google oauth redirect uri 2017-02-15 05:34:15 +00:00			`Basepath string // URL path prefix under which all chronograf routes will be mounted`
Add Github organization restriction to authentication 2017-01-05 17:29:26 +00:00			`UseAuth bool // UseAuth turns on Github OAuth and JWT`
			`TokenSecret string // TokenSecret is the JWT secret`
			`GithubClientID string // GithubClientID is the GH OAuth id`
			`GithubClientSecret string // GithubClientSecret is the GH OAuth secret`
Add google oauth provider. Need redirect_uri 2017-02-15 05:11:11 +00:00			`GithubOrgs []string // GithubOrgs is the list of organizations a user may be a member of`
			`GoogleClientID string // GoogleClientID is the Google OAuth id`
			`GoogleClientSecret string // GoogleClientSecret is the Google OAuth secret`
Add --public-url CLI option to support google oauth redirect uri 2017-02-15 05:34:15 +00:00			`GoogleDomains []string // GoogleDomains is the list of domains a user may be a member of`
			`PublicURL string // PublicURL is the public facing URL for the server`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`}`

Add routes for oauth providers 2017-02-15 20:07:33 +00:00			`func (m *MuxOpts) UseGithub() bool {`
			`return m.TokenSecret != "" && m.GithubClientID != "" && m.GithubClientSecret != ""`
			`}`

			`func (m *MuxOpts) UseGoogle() bool {`
			`return m.TokenSecret != "" && m.GoogleClientID != "" && m.GoogleClientSecret != "" && m.PublicURL != ""`
			`}`

Add unified OAuth2 logout route redirecting to provider logout Signed-off-by: Tim Raymond <tim@timraymond.com> 2017-02-15 22:28:17 +00:00			`func (m *MuxOpts) Routes() AuthRoutes {`
			`routes := AuthRoutes{}`
Add routes for oauth providers 2017-02-15 20:07:33 +00:00			`if m.UseGithub() {`
			`routes = append(routes, NewGithubRoute())`
			`}`
			`if m.UseGoogle() {`
			`routes = append(routes, NewGoogleRoute())`
			`}`
			`return routes`
			`}`

Fix mux paths to be hardcoded; clarify server start; fix golint 2016-10-28 16:27:06 +00:00			`// NewMux attaches all the route handlers; handler returned servers chronograf.`
			`func NewMux(opts MuxOpts, service Service) http.Handler {`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`router := httprouter.New()`

			`/* React Application */`
			`assets := Assets(AssetsOpts{`
			`Develop: opts.Develop,`
			`Logger: opts.Logger,`
			`})`
Move URLPrefixer setup to mux, add default URLPrefixer had nothing to do with assets, so it actually belongs up in the mux, where we're assembling handlers together across the application. Also, the setup was painful to look at, and others will probably use the same `Attrs`, so a `NewDefaultURLPrefixer` was added to spawn a prefixer with only a prefix and a next handler. 2017-01-28 00:14:21 +00:00
			`// Prefix any URLs found in the React assets with any configured basepath`
Make URLPrefixer use the chronograf.Logger We have a unified structured logging package in Chronograf, and this should use it. 2017-01-28 00:24:51 +00:00			`prefixedAssets := NewDefaultURLPrefixer(basepath, assets, opts.Logger)`
Move URLPrefixer setup to mux, add default URLPrefixer had nothing to do with assets, so it actually belongs up in the mux, where we're assembling handlers together across the application. Also, the setup was painful to look at, and others will probably use the same `Attrs`, so a `NewDefaultURLPrefixer` was added to spawn a prefixer with only a prefix and a next handler. 2017-01-28 00:14:21 +00:00
Add disable and enable to kapacitor alerts 2017-02-10 19:48:42 +00:00			`// Compress the assets with gzip if an accepted encoding`
			`compressed := gziphandler.GzipHandler(prefixedAssets)`

Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`// The react application handles all the routing if the server does not`
			`// know about the route. This means that we never have unknown`
			`// routes on the server.`
Add disable and enable to kapacitor alerts 2017-02-10 19:48:42 +00:00			`router.NotFound = compressed`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00
			`/* Documentation */`
Fix mux paths to be hardcoded; clarify server start; fix golint 2016-10-28 16:27:06 +00:00			`router.GET("/swagger.json", Spec())`
			`router.GET("/docs", Redoc("/swagger.json"))`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00
			`/* API */`
			`// Sources`
Fix mux paths to be hardcoded; clarify server start; fix golint 2016-10-28 16:27:06 +00:00			`router.GET("/chronograf/v1/sources", service.Sources)`
			`router.POST("/chronograf/v1/sources", service.NewSource)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00
Fix mux paths to be hardcoded; clarify server start; fix golint 2016-10-28 16:27:06 +00:00			`router.GET("/chronograf/v1/sources/:id", service.SourcesID)`
			`router.PATCH("/chronograf/v1/sources/:id", service.UpdateSource)`
			`router.DELETE("/chronograf/v1/sources/:id", service.RemoveSource)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00
			`// Source Proxy`
Fix mux paths to be hardcoded; clarify server start; fix golint 2016-10-28 16:27:06 +00:00			`router.POST("/chronograf/v1/sources/:id/proxy", service.Proxy)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00
			`// Kapacitor`
Fix mux paths to be hardcoded; clarify server start; fix golint 2016-10-28 16:27:06 +00:00			`router.GET("/chronograf/v1/sources/:id/kapacitors", service.Kapacitors)`
			`router.POST("/chronograf/v1/sources/:id/kapacitors", service.NewKapacitor)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00
Fix mux paths to be hardcoded; clarify server start; fix golint 2016-10-28 16:27:06 +00:00			`router.GET("/chronograf/v1/sources/:id/kapacitors/:kid", service.KapacitorsID)`
			`router.PATCH("/chronograf/v1/sources/:id/kapacitors/:kid", service.UpdateKapacitor)`
			`router.DELETE("/chronograf/v1/sources/:id/kapacitors/:kid", service.RemoveKapacitor)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00
Update tasks to be called rules 2016-11-04 06:53:54 +00:00			`// Kapacitor rules`
			`router.GET("/chronograf/v1/sources/:id/kapacitors/:kid/rules", service.KapacitorRulesGet)`
			`router.POST("/chronograf/v1/sources/:id/kapacitors/:kid/rules", service.KapacitorRulesPost)`
Add basic kapacitor task routes. Still need schema and storage 2016-11-03 06:42:52 +00:00
Update tasks to be called rules 2016-11-04 06:53:54 +00:00			`router.GET("/chronograf/v1/sources/:id/kapacitors/:kid/rules/:tid", service.KapacitorRulesID)`
			`router.PUT("/chronograf/v1/sources/:id/kapacitors/:kid/rules/:tid", service.KapacitorRulesPut)`
Add disable and enable to kapacitor alerts 2017-02-10 19:48:42 +00:00			`router.PATCH("/chronograf/v1/sources/:id/kapacitors/:kid/rules/:tid", service.KapacitorRulesStatus)`
Update tasks to be called rules 2016-11-04 06:53:54 +00:00			`router.DELETE("/chronograf/v1/sources/:id/kapacitors/:kid/rules/:tid", service.KapacitorRulesDelete)`
Add kapacitor tickscript template generator for threshold, relative, deadman 2016-10-31 23:11:05 +00:00
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`// Kapacitor Proxy`
Fix mux paths to be hardcoded; clarify server start; fix golint 2016-10-28 16:27:06 +00:00			`router.GET("/chronograf/v1/sources/:id/kapacitors/:kid/proxy", service.KapacitorProxyGet)`
			`router.POST("/chronograf/v1/sources/:id/kapacitors/:kid/proxy", service.KapacitorProxyPost)`
			`router.PATCH("/chronograf/v1/sources/:id/kapacitors/:kid/proxy", service.KapacitorProxyPatch)`
			`router.DELETE("/chronograf/v1/sources/:id/kapacitors/:kid/proxy", service.KapacitorProxyDelete)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00
			`// Mappings`
Fix mux paths to be hardcoded; clarify server start; fix golint 2016-10-28 16:27:06 +00:00			`router.GET("/chronograf/v1/mappings", service.GetMappings)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00
			`// Layouts`
Fix mux paths to be hardcoded; clarify server start; fix golint 2016-10-28 16:27:06 +00:00			`router.GET("/chronograf/v1/layouts", service.Layouts)`
			`router.POST("/chronograf/v1/layouts", service.NewLayout)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00
Fix mux paths to be hardcoded; clarify server start; fix golint 2016-10-28 16:27:06 +00:00			`router.GET("/chronograf/v1/layouts/:id", service.LayoutsID)`
			`router.PUT("/chronograf/v1/layouts/:id", service.UpdateLayout)`
			`router.DELETE("/chronograf/v1/layouts/:id", service.RemoveLayout)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00
			`// Users`
Add users endpoints/storage plus me endpoint 2016-11-17 23:57:46 +00:00			`router.GET("/chronograf/v1/me", service.Me)`
			`router.POST("/chronograf/v1/users", service.NewUser)`

			`router.GET("/chronograf/v1/users/:id", service.UserID)`
			`router.PATCH("/chronograf/v1/users/:id", service.UpdateUser)`
			`router.DELETE("/chronograf/v1/users/:id", service.RemoveUser)`

add routes and stubs for dashboard API endpoints 2016-12-07 23:18:04 +00:00			`// Dashboards`
			`router.GET("/chronograf/v1/dashboards", service.Dashboards)`
			`router.POST("/chronograf/v1/dashboards", service.NewDashboard)`

			`router.GET("/chronograf/v1/dashboards/:id", service.DashboardID)`
fix dashboards routes 2017-01-27 12:59:13 +00:00			`router.DELETE("/chronograf/v1/dashboards/:id", service.RemoveDashboard)`
			`router.PUT("/chronograf/v1/dashboards/:id", service.UpdateDashboard)`
add routes and stubs for dashboard API endpoints 2016-12-07 23:18:04 +00:00
Add routes for oauth providers 2017-02-15 20:07:33 +00:00			`authRoutes := opts.Routes()`
			`// Root Routes returns all top-level routes in the API and`
			`// optional authentication routes`
			`router.GET("/chronograf/v1/", AllRoutes(authRoutes, opts.Logger))`
			`router.GET("/chronograf/v1", AllRoutes(authRoutes, opts.Logger))`

Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`/* Authentication */`
			`if opts.UseAuth {`
Add unified OAuth2 logout route redirecting to provider logout Signed-off-by: Tim Raymond <tim@timraymond.com> 2017-02-15 22:28:17 +00:00			`// Create middleware to redirect to the appropriate provider logout`
			`targetURL := "/"`
			`router.GET("/oauth/logout", Logout(targetURL, authRoutes))`

			`// Encapsulate the router with OAuth2`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`auth := AuthAPI(opts, router)`
			`return Logger(opts.Logger, auth)`
			`}`
Add gzip compression to all of our server respones 2017-02-09 20:35:38 +00:00
Add disable and enable to kapacitor alerts 2017-02-10 19:48:42 +00:00			`logged := Logger(opts.Logger, router)`
Add gzip compression to all of our server respones 2017-02-09 20:35:38 +00:00			`return logged`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`}`

Fix mux paths to be hardcoded; clarify server start; fix golint 2016-10-28 16:27:06 +00:00			`// AuthAPI adds the OAuth routes if auth is enabled.`
Add unified OAuth2 logout route redirecting to provider logout Signed-off-by: Tim Raymond <tim@timraymond.com> 2017-02-15 22:28:17 +00:00			`// TODO: this function is not great. Would be good if providers added their routes.`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`func AuthAPI(opts MuxOpts, router *httprouter.Router) http.Handler {`
Remove unneeded authenticator from github 2017-02-15 05:09:34 +00:00			`auth := oauth2.NewJWT(opts.TokenSecret)`
Add routes for oauth providers 2017-02-15 20:07:33 +00:00			`if opts.UseGithub() {`
			`gh := oauth2.Github{`
			`ClientID: opts.GithubClientID,`
			`ClientSecret: opts.GithubClientSecret,`
			`Orgs: opts.GithubOrgs,`
			`Logger: opts.Logger,`
			`}`

			`ghMux := oauth2.NewJWTMux(&gh, &auth, opts.Logger)`
			`router.Handler("GET", "/oauth/github/login", ghMux.Login())`
			`router.Handler("GET", "/oauth/github/logout", ghMux.Logout())`
			`router.Handler("GET", "/oauth/github/callback", ghMux.Callback())`
Add google oauth provider. Need redirect_uri 2017-02-15 05:11:11 +00:00			`}`

Add routes for oauth providers 2017-02-15 20:07:33 +00:00			`if opts.UseGoogle() {`
			`redirectURL := opts.PublicURL + opts.Basepath + "/oauth/google/callback"`
			`google := oauth2.Google{`
			`ClientID: opts.GoogleClientID,`
			`ClientSecret: opts.GoogleClientSecret,`
			`Domains: opts.GoogleDomains,`
			`RedirectURL: redirectURL,`
			`Logger: opts.Logger,`
			`}`

			`goMux := oauth2.NewJWTMux(&google, &auth, opts.Logger)`
			`router.Handler("GET", "/oauth/google/login", goMux.Login())`
			`router.Handler("GET", "/oauth/google/logout", goMux.Logout())`
			`router.Handler("GET", "/oauth/google/callback", goMux.Callback())`
			`}`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00
Reorganize OAuth2 Logic Created an oauth2 package which encapsulates all oauth2 providers, utility functions, types, and interfaces. Previously some methods of the Github provider were used as http.HandlerFuncs. These have now been pulled into a concrete type called a JWTMux to implement other Oauth2 providers. JWTMux has all of the functionality required to take a token from any provider and store it as a JWT in a browser, and that is the extent of its responsibilities. It implements the oauth2.Mux interface which would potentially allow other strategies of oauth2 credential storage. 2017-02-14 21:14:24 +00:00			`tokenMiddleware := oauth2.AuthorizedToken(&auth, &oauth2.CookieExtractor{Name: "session"}, opts.Logger, router)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`// Wrap the API with token validation middleware.`
			`return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
Add unified OAuth2 logout route redirecting to provider logout Signed-off-by: Tim Raymond <tim@timraymond.com> 2017-02-15 22:28:17 +00:00			`if strings.HasPrefix(r.URL.Path, "/chronograf/v1/") \|\| r.URL.Path == "/oauth/logout" {`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`tokenMiddleware.ServeHTTP(w, r)`
			`return`
			`}`
Fix mux paths to be hardcoded; clarify server start; fix golint 2016-10-28 16:27:06 +00:00			`router.ServeHTTP(w, r)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`})`
			`}`

			`func encodeJSON(w http.ResponseWriter, status int, v interface{}, logger chronograf.Logger) {`
			`w.Header().Set("Content-Type", "application/json")`
			`w.WriteHeader(status)`
			`if err := json.NewEncoder(w).Encode(v); err != nil {`
Add server error logging 2016-11-19 17:41:06 +00:00			`unknownErrorWithMessage(w, err, logger)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`}`
			`}`

Fix mux paths to be hardcoded; clarify server start; fix golint 2016-10-28 16:27:06 +00:00			`// Error writes an JSON message`
Add server error logging 2016-11-19 17:41:06 +00:00			`func Error(w http.ResponseWriter, code int, msg string, logger chronograf.Logger) {`
			`e := ErrorMessage{`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`Code: code,`
			`Message: msg,`
			`}`
			`b, err := json.Marshal(e)`
			`if err != nil {`
			`code = http.StatusInternalServerError`
			b = []byte(`{"code": 500, "message":"server_error"}`)
			`}`
Add server error logging 2016-11-19 17:41:06 +00:00
			`logger.`
			`WithField("component", "server").`
			`WithField("http_status ", code).`
			`Error("Error message ", msg)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`w.Header().Set("Content-Type", JSONType)`
			`w.WriteHeader(code)`
Miscellaneous lint cleanup 2016-12-20 20:59:56 +00:00			`_, _ = w.Write(b)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`}`

Add server error logging 2016-11-19 17:41:06 +00:00			`func invalidData(w http.ResponseWriter, err error, logger chronograf.Logger) {`
			`Error(w, http.StatusUnprocessableEntity, fmt.Sprintf("%v", err), logger)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`}`

Add server error logging 2016-11-19 17:41:06 +00:00			`func invalidJSON(w http.ResponseWriter, logger chronograf.Logger) {`
			`Error(w, http.StatusBadRequest, "Unparsable JSON", logger)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`}`

Add server error logging 2016-11-19 17:41:06 +00:00			`func unknownErrorWithMessage(w http.ResponseWriter, err error, logger chronograf.Logger) {`
			`Error(w, http.StatusInternalServerError, fmt.Sprintf("Unknown error: %v", err), logger)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`}`

Add server error logging 2016-11-19 17:41:06 +00:00			`func notFound(w http.ResponseWriter, id int, logger chronograf.Logger) {`
			`Error(w, http.StatusNotFound, fmt.Sprintf("ID %d not found", id), logger)`
Refactor to remove autogenerated code. 2016-10-25 15:20:06 +00:00			`}`

			`func paramID(key string, r *http.Request) (int, error) {`
			`ctx := r.Context()`
			`param := httprouter.GetParamFromContext(ctx, key)`
			`id, err := strconv.Atoi(param)`
			`if err != nil {`
			`return -1, fmt.Errorf("Error converting ID %s", param)`
			`}`
			`return id, nil`
			`}`