2018-09-12 19:24:17 +00:00
|
|
|
package bolt
|
|
|
|
|
|
|
|
import (
|
|
|
|
"context"
|
2018-10-18 19:09:25 +00:00
|
|
|
"time"
|
2018-09-12 19:24:17 +00:00
|
|
|
|
|
|
|
bolt "github.com/coreos/bbolt"
|
|
|
|
"github.com/influxdata/platform"
|
|
|
|
)
|
|
|
|
|
|
|
|
var onboardingBucket = []byte("onboardingv1")
|
|
|
|
var onboardingKey = []byte("onboarding_key")
|
|
|
|
|
2018-12-07 22:22:23 +00:00
|
|
|
const onboardingTokenDesc = "Deftok"
|
|
|
|
|
2018-09-12 19:24:17 +00:00
|
|
|
var _ platform.OnboardingService = (*Client)(nil)
|
|
|
|
|
|
|
|
func (c *Client) initializeOnboarding(ctx context.Context, tx *bolt.Tx) error {
|
|
|
|
if _, err := tx.CreateBucketIfNotExists([]byte(onboardingBucket)); err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// IsOnboarding checks onboardingBucket
|
|
|
|
// to see if the onboarding key is true.
|
|
|
|
func (c *Client) IsOnboarding(ctx context.Context) (isOnboarding bool, err error) {
|
|
|
|
err = c.db.View(func(tx *bolt.Tx) error {
|
|
|
|
result := tx.Bucket(onboardingBucket).Get(onboardingKey)
|
|
|
|
isOnboarding = len(result) == 0
|
|
|
|
return nil
|
|
|
|
})
|
|
|
|
return isOnboarding, err
|
|
|
|
}
|
|
|
|
|
|
|
|
// PutOnboardingStatus will update the flag,
|
|
|
|
// so future onboarding request will be denied.
|
|
|
|
func (c *Client) PutOnboardingStatus(ctx context.Context, v bool) error {
|
|
|
|
if v {
|
|
|
|
return c.db.Update(func(tx *bolt.Tx) error {
|
|
|
|
return tx.Bucket(onboardingBucket).Put(onboardingKey, []byte{0x1})
|
|
|
|
})
|
|
|
|
}
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// Generate OnboardingResults from onboarding request,
|
|
|
|
// update db so this request will be disabled for the second run.
|
|
|
|
func (c *Client) Generate(ctx context.Context, req *platform.OnboardingRequest) (*platform.OnboardingResults, error) {
|
|
|
|
isOnboarding, err := c.IsOnboarding(ctx)
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
if !isOnboarding {
|
|
|
|
return nil, &platform.Error{
|
|
|
|
Code: platform.EConflict,
|
|
|
|
Msg: "onboarding has already been completed",
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if req.Password == "" {
|
|
|
|
return nil, &platform.Error{
|
|
|
|
Code: platform.EEmptyValue,
|
|
|
|
Msg: "password is empty",
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if req.User == "" {
|
|
|
|
return nil, &platform.Error{
|
|
|
|
Code: platform.EEmptyValue,
|
|
|
|
Msg: "username is empty",
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if req.Org == "" {
|
|
|
|
return nil, &platform.Error{
|
|
|
|
Code: platform.EEmptyValue,
|
|
|
|
Msg: "org name is empty",
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if req.Bucket == "" {
|
|
|
|
return nil, &platform.Error{
|
|
|
|
Code: platform.EEmptyValue,
|
|
|
|
Msg: "bucket name is empty",
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
u := &platform.User{Name: req.User}
|
|
|
|
if err := c.CreateUser(ctx, u); err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
if err = c.SetPassword(ctx, u.Name, req.Password); err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
o := &platform.Organization{
|
|
|
|
Name: req.Org,
|
|
|
|
}
|
|
|
|
if err = c.CreateOrganization(ctx, o); err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
bucket := &platform.Bucket{
|
2018-10-18 19:09:25 +00:00
|
|
|
Name: req.Bucket,
|
|
|
|
Organization: o.Name,
|
|
|
|
OrganizationID: o.ID,
|
|
|
|
RetentionPeriod: time.Duration(req.RetentionPeriod) * time.Hour,
|
2018-09-12 19:24:17 +00:00
|
|
|
}
|
2018-11-20 18:56:58 +00:00
|
|
|
if err := c.CreateUserResourceMapping(ctx, &platform.UserResourceMapping{
|
|
|
|
ResourceType: platform.OrgResourceType,
|
|
|
|
ResourceID: o.ID,
|
|
|
|
UserID: u.ID,
|
|
|
|
UserType: platform.Owner,
|
|
|
|
}); err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
2018-09-12 19:24:17 +00:00
|
|
|
if err = c.CreateBucket(ctx, bucket); err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
auth := &platform.Authorization{
|
2018-12-07 22:22:23 +00:00
|
|
|
User: u.Name,
|
|
|
|
UserID: u.ID,
|
|
|
|
Description: onboardingTokenDesc,
|
2018-09-12 19:24:17 +00:00
|
|
|
Permissions: []platform.Permission{
|
|
|
|
platform.CreateUserPermission,
|
|
|
|
platform.DeleteUserPermission,
|
2018-10-08 18:32:29 +00:00
|
|
|
{
|
2018-09-12 19:24:17 +00:00
|
|
|
Resource: platform.OrganizationResource,
|
|
|
|
Action: platform.WriteAction,
|
|
|
|
},
|
|
|
|
platform.WriteBucketPermission(bucket.ID),
|
|
|
|
},
|
|
|
|
}
|
|
|
|
if err = c.CreateAuthorization(ctx, auth); err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
if err = c.PutOnboardingStatus(ctx, true); err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
return &platform.OnboardingResults{
|
|
|
|
User: u,
|
|
|
|
Org: o,
|
|
|
|
Bucket: bucket,
|
|
|
|
Auth: auth,
|
|
|
|
}, nil
|
|
|
|
}
|