Influxdata
/
influxdb
mirror of https://github.com/influxdata/influxdb.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
influxdb/chronograf/server/mux.go

456 lines
19 KiB
Go
Raw Normal View History

Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
package server
import (
"encoding/json"
"fmt"
"net/http"
Fix OAuth when using Basepath Updated the logout link in the UI to use a link provided by the /chronograf/v1/ endpoint. We also replaced many instances of string concatenation of URL paths with path.Join, which better handles cases where prefixed and suffixed "/" characters may be present in provided basepaths. We also refactored how Basepath was being prefixed when using Auth. Documentation was also updated to warn users that basepaths should be applied to the OAuth callback link when configuring OAuth with their provider.
2017-05-03 23:34:05 +00:00
"path"
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
"strconv"
"strings"
feat(server): add profiling routes to chronograf server In order to diagnose why the dashbords page we'll need to profile chronograf. This commit adds the debug routes to chronograf.
2018-07-02 22:19:34 +00:00
_ "net/http/pprof"
Add gzip compression to all of our server respones
2017-02-09 20:35:38 +00:00
"github.com/NYTimes/gziphandler"
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
"github.com/bouk/httprouter"
chore: rename imports from platform to influxdb I did this with a dumb editor macro, so some comments changed too. Also rename root package from platform to influxdb. In interest of minimizing risk, anyone importing the root package has now aliased it to "platform" so that no changes beyond imports were necessary in those files. Lastly, replace the old platform module to local path /dev/null so that nobody can accidentally reintroduce a platform dependency while migrating platform code to influxdb.
2019-01-08 00:37:16 +00:00
"github.com/influxdata/influxdb/chronograf"
"github.com/influxdata/influxdb/chronograf/oauth2"
"github.com/influxdata/influxdb/chronograf/roles"
chore(chronograf): Get Chronograf to "work" as in 1.6.x (w/o Kapacitor) Co-authored-by: Andrew Watkins <andrew.watkinz@gmail.com> Co-authored-by: Michael Desa <mjdesa@gmail.com>
2018-07-24 22:13:08 +00:00
jhttprouter "github.com/julienschmidt/httprouter"
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
)
const (
// JSONType the mimetype for a json request
JSONType = "application/json"
)
Fix mux paths to be hardcoded; clarify server start; fix golint
2016-10-28 16:27:06 +00:00
// MuxOpts are the options for the router. Mostly related to auth.
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
type MuxOpts struct {
Add new auth duration CLI option; add client heartbeat; fix logout (#1119) * User can now set oauth cookie session duration via the CLI to any duration or to expire on browser close * Refactor GET 'me' into heartbeat at constant interval * Add ping route to all routes * Add /chronograf/v1/ping endpoint for server status * Refactor cookie generation to use an interface * WIP adding refreshable tokens * Add reminder to review index.js Login error handling * Refactor Authenticator interface to accommodate cookie duration and logout delay * Update make run-dev to be more TICKStack compliant * Remove heartbeat/logout duration from authentication * WIP Refactor tests to accommodate cookie and auth refactor * Update oauth2 tests to newly refactored design * Update oauth provider tests * Remove unused oauth2/consts.go * Move authentication middleware to server package * Fix authentication comment * Update authenication documentation to mention AUTH_DURATION * Update /chronograf/v1/ping to simply return 204 * Fix Makefile run-dev target * Remove spurious ping route * Update auth docs to clarify authentication duration * Revert "Refactor GET 'me' into heartbeat at constant interval" This reverts commit 298a8c47e1431720d9bd97a9cb853744f04501a3. Conflicts: ui/src/index.js * Add auth test for JWT signing method * Add comments for why coverage isn't written for some areas of jwt code * Update auth docs to explicitly mention how to require re-auth for all users on server restart * Add Duration to Validation interface for Tokens * Make auth duration of zero yield a everlasting token * Revert "Revert "Refactor GET 'me' into heartbeat at constant interval"" This reverts commit b4773c15afe4fcd227ad88aa9d5686beb6b0a6cd. * Rename http status constants and add FORBIDDEN * Heartbeat only when logged in, notify user if heartbeat fails * Update changelog * Fix minor word semantics * Update oauth2 tests to be in the oauth2_test package * Add check at compile time that JWT implements Tokenizer * Rename CookieMux to AuthMux for consistency with earlier refactor * Fix logout middleware * Fix logout button not showing due to obsolete data shape expectations * Update changelog * Fix proptypes for logout button data shape in SideNav
2017-04-06 18:40:57 +00:00
Logger chronograf.Logger
Develop bool // Develop loads assets from filesystem instead of bindata
Basepath string // URL path prefix under which all chronograf routes will be mounted
UseAuth bool // UseAuth turns on Github OAuth and JWT
Auth oauth2.Authenticator // Auth is used to authenticate and authorize
Move OAuth configuration into server/server.go This uses a provide() function in server/server.go, to push the necessary oauth2.Provider and oauth2.Mux into the scope of the server.Mux. This allows the server.Mux to configure its routes without caring which Providers are enabled, which switches/ENVs are set etc. It configures its routes optimistically and leaves the higher-order logic to decide whether to actually invoke the logic used by the mux to configure routes for that provider.
2017-02-23 22:17:28 +00:00
ProviderFuncs []func(func(oauth2.Provider, oauth2.Mux))
Refactor CustomLinks transform into routes.go and new links.go Rename generateCustomLinks to NewCustomLinks Handle error from NewCustomLinks per app convention
2017-06-26 20:30:33 +00:00
StatusFeedURL string // JSON Feed URL for the client Status page News Feed
CustomLinks map[string]string // Any custom external links for client's User menu
feat(server): add profiling routes to chronograf server In order to diagnose why the dashbords page we'll need to profile chronograf. This commit adds the debug routes to chronograf.
2018-07-02 22:19:34 +00:00
PprofEnabled bool // Mount pprof routes for profiling
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
}
Fix mux paths to be hardcoded; clarify server start; fix golint
2016-10-28 16:27:06 +00:00
// NewMux attaches all the route handlers; handler returned servers chronograf.
func NewMux(opts MuxOpts, service Service) http.Handler {
Use MountableRouter when Basepath is set This breaks compatibility with the old behavior of --basepath, so this requires that proxies be configured to not modify routes forwarded to backends. The old behavior will be supported in a subsequent commit.
2017-03-31 20:14:46 +00:00
hr := httprouter.New()
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
/* React Application */
assets := Assets(AssetsOpts{
Develop: opts.Develop,
Logger: opts.Logger,
})
Move URLPrefixer setup to mux, add default URLPrefixer had nothing to do with assets, so it actually belongs up in the mux, where we're assembling handlers together across the application. Also, the setup was painful to look at, and others will probably use the same `Attrs`, so a `NewDefaultURLPrefixer` was added to spawn a prefixer with only a prefix and a next handler.
2017-01-28 00:14:21 +00:00
// Prefix any URLs found in the React assets with any configured basepath
Remove prefix-routes & clean up basepath var and flag use Now, if basepath is set, it will be prefixed to all routes. There is no more additional option of prefix-routes.
2018-04-20 22:50:19 +00:00
prefixedAssets := NewDefaultURLPrefixer(opts.Basepath, assets, opts.Logger)
Move URLPrefixer setup to mux, add default URLPrefixer had nothing to do with assets, so it actually belongs up in the mux, where we're assembling handlers together across the application. Also, the setup was painful to look at, and others will probably use the same `Attrs`, so a `NewDefaultURLPrefixer` was added to spawn a prefixer with only a prefix and a next handler.
2017-01-28 00:14:21 +00:00
Favor http.StripPrefix over home-rolled version http.StripPrefix is a standard library handler which is designed to do exactly what the inline http.HandlerFunc did (with almost the same implementation).
2017-04-04 18:03:46 +00:00
// Compress the assets with gzip if an accepted encoding
compressed := gziphandler.GzipHandler(prefixedAssets)
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
// The react application handles all the routing if the server does not
Remove unnecessary conditional tests Re-mounting should only happen if the --prefix-routes option is set. If this happens, the result will be a no-op as intended since the --basepath will be "". MountableRouter and http.StripPrefix are both no-ops with prefix set to ""
2017-04-04 19:59:09 +00:00
// know about the route. This means that we never have unknown routes on
// the server.
hr.NotFound = compressed
var router chronograf.Router = hr
Use MountableRouter when Basepath is set This breaks compatibility with the old behavior of --basepath, so this requires that proxies be configured to not modify routes forwarded to backends. The old behavior will be supported in a subsequent commit.
2017-03-31 20:14:46 +00:00
// Set route prefix for all routes if basepath is present
Remove prefix-routes & clean up basepath var and flag use Now, if basepath is set, it will be prefixed to all routes. There is no more additional option of prefix-routes.
2018-04-20 22:50:19 +00:00
if opts.Basepath != "" {
Use MountableRouter when Basepath is set This breaks compatibility with the old behavior of --basepath, so this requires that proxies be configured to not modify routes forwarded to backends. The old behavior will be supported in a subsequent commit.
2017-03-31 20:14:46 +00:00
router = &MountableRouter{
Prefix: opts.Basepath,
Delegate: hr,
}
Remove unnecessary conditional tests Re-mounting should only happen if the --prefix-routes option is set. If this happens, the result will be a no-op as intended since the --basepath will be "". MountableRouter and http.StripPrefix are both no-ops with prefix set to ""
2017-04-04 19:59:09 +00:00
//The assets handler is always unaware of basepaths, so the
Favor http.StripPrefix over home-rolled version http.StripPrefix is a standard library handler which is designed to do exactly what the inline http.HandlerFunc did (with almost the same implementation).
2017-04-04 18:03:46 +00:00
// basepath needs to always be removed before sending requests to it
Remove unnecessary conditional tests Re-mounting should only happen if the --prefix-routes option is set. If this happens, the result will be a no-op as intended since the --basepath will be "". MountableRouter and http.StripPrefix are both no-ops with prefix set to ""
2017-04-04 19:59:09 +00:00
hr.NotFound = http.StripPrefix(opts.Basepath, hr.NotFound)
Use MountableRouter when Basepath is set This breaks compatibility with the old behavior of --basepath, so this requires that proxies be configured to not modify routes forwarded to backends. The old behavior will be supported in a subsequent commit.
2017-03-31 20:14:46 +00:00
}
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
Nest user routes under organization Add global user routes
2018-01-16 21:45:58 +00:00
EnsureMember := func(next http.HandlerFunc) http.HandlerFunc {
return AuthorizedUser(
service.Store,
opts.UseAuth,
roles.MemberRoleName,
opts.Logger,
next,
)
}
_ = EnsureMember
Wrap routes with Authorization middleware
2017-10-18 16:40:17 +00:00
EnsureViewer := func(next http.HandlerFunc) http.HandlerFunc {
Add organization field to principal in auth tests Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-27 20:19:43 +00:00
return AuthorizedUser(
Refactor data stores into a common interface
2017-10-31 20:41:17 +00:00
service.Store,
Add organization field to principal in auth tests Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-27 20:19:43 +00:00
opts.UseAuth,
Move user roles and role names to roles package
2017-11-03 20:32:05 +00:00
roles.ViewerRoleName,
Add organization field to principal in auth tests Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-27 20:19:43 +00:00
opts.Logger,
next,
)
Wrap routes with Authorization middleware
2017-10-18 16:40:17 +00:00
}
EnsureEditor := func(next http.HandlerFunc) http.HandlerFunc {
Add organization field to principal in auth tests Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-27 20:19:43 +00:00
return AuthorizedUser(
Refactor data stores into a common interface
2017-10-31 20:41:17 +00:00
service.Store,
Add organization field to principal in auth tests Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-27 20:19:43 +00:00
opts.UseAuth,
Move user roles and role names to roles package
2017-11-03 20:32:05 +00:00
roles.EditorRoleName,
Add organization field to principal in auth tests Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-27 20:19:43 +00:00
opts.Logger,
next,
)
Wrap routes with Authorization middleware
2017-10-18 16:40:17 +00:00
}
EnsureAdmin := func(next http.HandlerFunc) http.HandlerFunc {
Add organization field to principal in auth tests Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-27 20:19:43 +00:00
return AuthorizedUser(
Refactor data stores into a common interface
2017-10-31 20:41:17 +00:00
service.Store,
Add organization field to principal in auth tests Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-27 20:19:43 +00:00
opts.UseAuth,
Move user roles and role names to roles package
2017-11-03 20:32:05 +00:00
roles.AdminRoleName,
Add organization field to principal in auth tests Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-27 20:19:43 +00:00
opts.Logger,
next,
)
Wrap routes with Authorization middleware
2017-10-18 16:40:17 +00:00
}
WIP cleanup
2017-11-01 00:58:40 +00:00
EnsureSuperAdmin := func(next http.HandlerFunc) http.HandlerFunc {
return AuthorizedUser(
service.Store,
opts.UseAuth,
Change SuperAdminRoleName to SuperAdminStatus SuperAdmin is not a role type, but it a status of a user that is tangentially related to a users role in an organization. This renames the variable to reflect that difference.
2017-11-07 18:59:51 +00:00
roles.SuperAdminStatus,
WIP cleanup
2017-11-01 00:58:40 +00:00
opts.Logger,
next,
)
}
Wrap routes with Authorization middleware
2017-10-18 16:40:17 +00:00
Nest user routes under organization Add global user routes
2018-01-16 21:45:58 +00:00
rawStoreAccess := func(next http.HandlerFunc) http.HandlerFunc {
return RawStoreAccess(opts.Logger, next)
}
ensureOrgMatches := func(next http.HandlerFunc) http.HandlerFunc {
return RouteMatchesPrincipal(
Fix RouteMatchesPrincipal if org isnt on principal
2018-01-17 17:42:32 +00:00
service.Store,
Nest user routes under organization Add global user routes
2018-01-16 21:45:58 +00:00
opts.UseAuth,
opts.Logger,
next,
)
Modify CRUD user handlers for global operations Add raw query param middleware performing raw ops This commit introduces middleware that allows SuperAdmin Users to specify a query param `raw=true` which will give them raw access to the data store. Raw access means that it is not in behind the usual organization facade. Currently, only the user routes use this middleware.
2018-01-09 18:43:33 +00:00
}
feat(server): add profiling routes to chronograf server In order to diagnose why the dashbords page we'll need to profile chronograf. This commit adds the debug routes to chronograf.
2018-07-02 22:19:34 +00:00
if opts.PprofEnabled {
// add profiling routes
router.GET("/debug/pprof/:thing", http.DefaultServeMux.ServeHTTP)
}
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
/* Documentation */
Fix mux paths to be hardcoded; clarify server start; fix golint
2016-10-28 16:27:06 +00:00
router.GET("/swagger.json", Spec())
router.GET("/docs", Redoc("/swagger.json"))
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
/* API */
Add CRUD routes for organizations
2017-10-20 19:42:34 +00:00
// Organizations
Expose some organization routes to admins Cleanup tests appropriately Prevent Admins from patching organizations
2017-11-07 22:05:47 +00:00
router.GET("/chronograf/v1/organizations", EnsureAdmin(service.Organizations))
WIP cleanup
2017-11-01 00:58:40 +00:00
router.POST("/chronograf/v1/organizations", EnsureSuperAdmin(service.NewOrganization))
Nest user routes under organization Add global user routes
2018-01-16 21:45:58 +00:00
router.GET("/chronograf/v1/organizations/:oid", EnsureAdmin(service.OrganizationID))
router.PATCH("/chronograf/v1/organizations/:oid", EnsureSuperAdmin(service.UpdateOrganization))
router.DELETE("/chronograf/v1/organizations/:oid", EnsureSuperAdmin(service.RemoveOrganization))
Add CRUD routes for organizations
2017-10-20 19:42:34 +00:00
Add correct implementation of mappings
2018-02-05 19:54:39 +00:00
// Mappings
Add Mappings CUDA routes
2018-02-05 21:47:44 +00:00
router.GET("/chronograf/v1/mappings", EnsureSuperAdmin(service.Mappings))
router.POST("/chronograf/v1/mappings", EnsureSuperAdmin(service.NewMapping))
Add correct implementation of mappings
2018-02-05 19:54:39 +00:00
Add Mappings CUDA routes
2018-02-05 21:47:44 +00:00
router.PUT("/chronograf/v1/mappings/:id", EnsureSuperAdmin(service.UpdateMapping))
router.DELETE("/chronograf/v1/mappings/:id", EnsureSuperAdmin(service.RemoveMapping))
Add correct implementation of mappings
2018-02-05 19:54:39 +00:00
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
// Sources
Wrap routes with Authorization middleware
2017-10-18 16:40:17 +00:00
router.GET("/chronograf/v1/sources", EnsureViewer(service.Sources))
router.POST("/chronograf/v1/sources", EnsureEditor(service.NewSource))
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
Wrap routes with Authorization middleware
2017-10-18 16:40:17 +00:00
router.GET("/chronograf/v1/sources/:id", EnsureViewer(service.SourcesID))
router.PATCH("/chronograf/v1/sources/:id", EnsureEditor(service.UpdateSource))
router.DELETE("/chronograf/v1/sources/:id", EnsureEditor(service.RemoveSource))
Introduce /health endpoint
2018-04-03 22:58:33 +00:00
router.GET("/chronograf/v1/sources/:id/health", EnsureViewer(service.SourceHealth))
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
Add compression for InfluxQL query responses
2017-03-28 18:10:05 +00:00
// Source Proxy to Influx; Has gzip compression around the handler
Fix wrong authorization level on selected routes Fix leaking of username on failed authorization Add comment to chronograf.UserQuery Fix logic in hasPrivilege method
2017-10-18 19:45:06 +00:00
influx := gziphandler.GzipHandler(http.HandlerFunc(EnsureViewer(service.Influx)))
Add compression for InfluxQL query responses
2017-03-28 18:10:05 +00:00
router.Handler("POST", "/chronograf/v1/sources/:id/proxy", influx)
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
Add line-protocol /write endpoint to all data sources
2017-05-03 05:06:40 +00:00
// Write proxies line protocol write requests to InfluxDB
Update route authorization by Role Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-19 18:53:52 +00:00
router.POST("/chronograf/v1/sources/:id/write", EnsureViewer(service.Write))
Add line-protocol /write endpoint to all data sources
2017-05-03 05:06:40 +00:00
Update route authorization by Role Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-19 18:53:52 +00:00
// Queries is used to analyze a specific queries and does not create any
// resources. It's a POST because Queries are POSTed to InfluxDB, but this
// only modifies InfluxDB resources with certain metaqueries, e.g. DROP DATABASE.
//
// Admins should ensure that the InfluxDB source as the proper permissions
// intended for Chronograf Users with the Viewer Role type.
router.POST("/chronograf/v1/sources/:id/queries", EnsureViewer(service.Queries))
Merge branch 'master' into feature/structured-queries Conflicts: Godeps LICENSE_OF_DEPENDENCIES.md server/mux.go server/routes.go ui/.eslintrc
2017-04-07 21:06:24 +00:00
Add basic REST routes for annotations
2018-01-12 23:17:14 +00:00
// Annotations are user-defined events associated with this source
router.GET("/chronograf/v1/sources/:id/annotations", EnsureViewer(service.Annotations))
router.POST("/chronograf/v1/sources/:id/annotations", EnsureEditor(service.NewAnnotation))
Update influxdb annotation store to support update/delete
2018-01-19 03:50:46 +00:00
router.GET("/chronograf/v1/sources/:id/annotations/:aid", EnsureViewer(service.Annotation))
Add basic REST routes for annotations
2018-01-12 23:17:14 +00:00
router.DELETE("/chronograf/v1/sources/:id/annotations/:aid", EnsureEditor(service.RemoveAnnotation))
Update influxdb annotation store to support update/delete
2018-01-19 03:50:46 +00:00
router.PATCH("/chronograf/v1/sources/:id/annotations/:aid", EnsureEditor(service.UpdateAnnotation))
Add basic REST routes for annotations
2018-01-12 23:17:14 +00:00
Add permissions endpoint to get all possible permission strings
2017-02-19 20:00:34 +00:00
// All possible permissions for users in this source
Fix wrong authorization level on selected routes Fix leaking of username on failed authorization Add comment to chronograf.UserQuery Fix logic in hasPrivilege method
2017-10-18 19:45:06 +00:00
router.GET("/chronograf/v1/sources/:id/permissions", EnsureViewer(service.Permissions))
Add permissions endpoint to get all possible permission strings
2017-02-19 20:00:34 +00:00
Add routes for users
2017-02-18 02:47:23 +00:00
// Users associated with the data source
Update route authorization by Role Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-19 18:53:52 +00:00
router.GET("/chronograf/v1/sources/:id/users", EnsureAdmin(service.SourceUsers))
router.POST("/chronograf/v1/sources/:id/users", EnsureAdmin(service.NewSourceUser))
Add routes for users
2017-02-18 02:47:23 +00:00
Update route authorization by Role Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-19 18:53:52 +00:00
router.GET("/chronograf/v1/sources/:id/users/:uid", EnsureAdmin(service.SourceUserID))
router.DELETE("/chronograf/v1/sources/:id/users/:uid", EnsureAdmin(service.RemoveSourceUser))
router.PATCH("/chronograf/v1/sources/:id/users/:uid", EnsureAdmin(service.UpdateSourceUser))
Add routes for users
2017-02-18 02:47:23 +00:00
Add roles endpoint and switching between OSS and enterprise
2017-02-24 03:54:20 +00:00
// Roles associated with the data source
Wrap routes with Authorization middleware
2017-10-18 16:40:17 +00:00
router.GET("/chronograf/v1/sources/:id/roles", EnsureViewer(service.SourceRoles))
router.POST("/chronograf/v1/sources/:id/roles", EnsureEditor(service.NewSourceRole))
Add roles endpoint and switching between OSS and enterprise
2017-02-24 03:54:20 +00:00
Wrap routes with Authorization middleware
2017-10-18 16:40:17 +00:00
router.GET("/chronograf/v1/sources/:id/roles/:rid", EnsureViewer(service.SourceRoleID))
router.DELETE("/chronograf/v1/sources/:id/roles/:rid", EnsureEditor(service.RemoveSourceRole))
router.PATCH("/chronograf/v1/sources/:id/roles/:rid", EnsureEditor(service.UpdateSourceRole))
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
feat(server/services): add generic services scoped under server
2018-05-16 23:04:52 +00:00
// Services are resources that chronograf proxies to
router.GET("/chronograf/v1/sources/:id/services", EnsureViewer(service.Services))
router.POST("/chronograf/v1/sources/:id/services", EnsureEditor(service.NewService))
router.GET("/chronograf/v1/sources/:id/services/:kid", EnsureViewer(service.ServiceID))
router.PATCH("/chronograf/v1/sources/:id/services/:kid", EnsureEditor(service.UpdateService))
router.DELETE("/chronograf/v1/sources/:id/services/:kid", EnsureEditor(service.RemoveService))
// Service Proxy
router.GET("/chronograf/v1/sources/:id/services/:kid/proxy", EnsureViewer(service.ProxyGet))
router.POST("/chronograf/v1/sources/:id/services/:kid/proxy", EnsureEditor(service.ProxyPost))
router.PATCH("/chronograf/v1/sources/:id/services/:kid/proxy", EnsureEditor(service.ProxyPatch))
router.DELETE("/chronograf/v1/sources/:id/services/:kid/proxy", EnsureEditor(service.ProxyDelete))
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
// Kapacitor
migrate: make chronograf migration compile
2018-07-23 19:30:21 +00:00
//router.GET("/chronograf/v1/sources/:id/kapacitors", EnsureViewer(service.Kapacitors))
//router.POST("/chronograf/v1/sources/:id/kapacitors", EnsureEditor(service.NewKapacitor))
//router.GET("/chronograf/v1/sources/:id/kapacitors/:kid", EnsureViewer(service.KapacitorsID))
//router.PATCH("/chronograf/v1/sources/:id/kapacitors/:kid", EnsureEditor(service.UpdateKapacitor))
//router.DELETE("/chronograf/v1/sources/:id/kapacitors/:kid", EnsureEditor(service.RemoveKapacitor))
//// Kapacitor rules
//router.GET("/chronograf/v1/sources/:id/kapacitors/:kid/rules", EnsureViewer(service.KapacitorRulesGet))
//router.POST("/chronograf/v1/sources/:id/kapacitors/:kid/rules", EnsureEditor(service.KapacitorRulesPost))
//router.GET("/chronograf/v1/sources/:id/kapacitors/:kid/rules/:tid", EnsureViewer(service.KapacitorRulesID))
//router.PUT("/chronograf/v1/sources/:id/kapacitors/:kid/rules/:tid", EnsureEditor(service.KapacitorRulesPut))
//router.PATCH("/chronograf/v1/sources/:id/kapacitors/:kid/rules/:tid", EnsureEditor(service.KapacitorRulesStatus))
//router.DELETE("/chronograf/v1/sources/:id/kapacitors/:kid/rules/:tid", EnsureEditor(service.KapacitorRulesDelete))
//// Kapacitor Proxy
//router.GET("/chronograf/v1/sources/:id/kapacitors/:kid/proxy", EnsureViewer(service.ProxyGet))
//router.POST("/chronograf/v1/sources/:id/kapacitors/:kid/proxy", EnsureEditor(service.ProxyPost))
//router.PATCH("/chronograf/v1/sources/:id/kapacitors/:kid/proxy", EnsureEditor(service.ProxyPatch))
//router.DELETE("/chronograf/v1/sources/:id/kapacitors/:kid/proxy", EnsureEditor(service.ProxyDelete))
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
// Layouts
Wrap routes with Authorization middleware
2017-10-18 16:40:17 +00:00
router.GET("/chronograf/v1/layouts", EnsureViewer(service.Layouts))
router.GET("/chronograf/v1/layouts/:id", EnsureViewer(service.LayoutsID))
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
// Users associated with Chronograf
Update route authorization by Role Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-10-19 18:53:52 +00:00
router.GET("/chronograf/v1/me", service.Me)
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
Provide route to change current users organization Add current Organization to JWT. Use OrganizationUsersStore to retrieve Users that are not me. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-26 22:01:20 +00:00
// Set current chronograf organization the user is logged into
Change MeOrganization to UpdateMe
2017-11-10 21:17:46 +00:00
router.PUT("/chronograf/v1/me", service.UpdateMe(opts.Auth))
Provide route to change current users organization Add current Organization to JWT. Use OrganizationUsersStore to retrieve Users that are not me. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-26 22:01:20 +00:00
WIP cleanup
2017-11-01 00:58:40 +00:00
// TODO(desa): what to do about admin's being able to set superadmin
Nest user routes under organization Add global user routes
2018-01-16 21:45:58 +00:00
router.GET("/chronograf/v1/organizations/:oid/users", EnsureAdmin(ensureOrgMatches(service.Users)))
router.POST("/chronograf/v1/organizations/:oid/users", EnsureAdmin(ensureOrgMatches(service.NewUser)))
router.GET("/chronograf/v1/organizations/:oid/users/:id", EnsureAdmin(ensureOrgMatches(service.UserID)))
router.DELETE("/chronograf/v1/organizations/:oid/users/:id", EnsureAdmin(ensureOrgMatches(service.RemoveUser)))
router.PATCH("/chronograf/v1/organizations/:oid/users/:id", EnsureAdmin(ensureOrgMatches(service.UpdateUser)))
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
Nest user routes under organization Add global user routes
2018-01-16 21:45:58 +00:00
router.GET("/chronograf/v1/users", EnsureSuperAdmin(rawStoreAccess(service.Users)))
router.POST("/chronograf/v1/users", EnsureSuperAdmin(rawStoreAccess(service.NewUser)))
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
Nest user routes under organization Add global user routes
2018-01-16 21:45:58 +00:00
router.GET("/chronograf/v1/users/:id", EnsureSuperAdmin(rawStoreAccess(service.UserID)))
router.DELETE("/chronograf/v1/users/:id", EnsureSuperAdmin(rawStoreAccess(service.RemoveUser)))
router.PATCH("/chronograf/v1/users/:id", EnsureSuperAdmin(rawStoreAccess(service.UpdateUser)))
Implement CRUD routes & operations for Chronograf User Move source Users code into source_users and source_users_test files. Use the UsersStore for both InfluxDB and Chronograf users. Signed-off-by: Michael de Sa <mjdesa@gmail.com>
2017-10-09 21:16:24 +00:00
add routes and stubs for dashboard API endpoints
2016-12-07 23:18:04 +00:00
// Dashboards
Wrap routes with Authorization middleware
2017-10-18 16:40:17 +00:00
router.GET("/chronograf/v1/dashboards", EnsureViewer(service.Dashboards))
router.POST("/chronograf/v1/dashboards", EnsureEditor(service.NewDashboard))
add routes and stubs for dashboard API endpoints
2016-12-07 23:18:04 +00:00
Wrap routes with Authorization middleware
2017-10-18 16:40:17 +00:00
router.GET("/chronograf/v1/dashboards/:id", EnsureViewer(service.DashboardID))
router.DELETE("/chronograf/v1/dashboards/:id", EnsureEditor(service.RemoveDashboard))
router.PUT("/chronograf/v1/dashboards/:id", EnsureEditor(service.ReplaceDashboard))
router.PATCH("/chronograf/v1/dashboards/:id", EnsureEditor(service.UpdateDashboard))
Introduce ability to edit a dashboard cell * Correct documentation for dashboards * Exclude .git and use 'make run-dev' in 'make continuous' * Fix dashboard deletion bug where id serialization was wrong * Commence creation of overlay technology, add autoRefresh props to DashboardPage * Enhance overlay magnitude of overlay technology * Add confirm buttons to overlay technology * Refactor ResizeContainer to accommodate arbitrary containers * Refactor ResizeContainer to require explicit ResizeTop and ResizeBottom for clarity * Add markup and styles for OverlayControls * CellEditorOverlay needs a larger minimum bottom height to accommodate more things * Revert Visualization to not use ResizeTop or flex-box * Remove TODO and move to issue * Refactor CellEditorOverlay to allow selection of graph type * Style Overlay controls, move confirm buttons to own stylesheet * Fix toggle buttons in overlay so active is actually active * Block user-select on a few UI items * Update cell query shape to support Visualization and LayoutRenderer * Code cleanup * Repair fixture schema; update props for affected components * Wired up selectedGraphType and activeQueryID in CellEditorOverlay * Wire up chooseMeasurements in QueryBuilder Pass queryActions into QueryBuilder so that DataExplorer can provide actionCreators and CellEditorOverlay can provide functions that modify its component state * semicolon cleanup * Bind all queryModifier actions to component state with a stateReducer * Overlay Technologies™ can add and delete a query from a cell * Semicolon cleanup * Add conversion of InfluxQL to QueryConfig for dashboards * Update go deps to add influxdb at af72d9b0e4ebe95be30e89b160f43eabaf0529ed * Updated docs for dashboard query config * Update CHANGELOG to mention InfluxQL to QueryConfig * Make reducer’s name more specific for clarity * Remove 'table' as graphType * Make graph renaming prettier * Remove duplicate DashboardQuery in swagger.json * Fix swagger to include name and links for Cell * Refactor CellEditorOverlay to enable graph type selection * Add link.self to all Dashboard cells; add bolt migrations * Make dash graph names only hover on contents * Consolidate timeRange format patterns, clean up * Add cell endpoints to dashboards * Include Line + Stat in Visualization Type list * Add cell link to dashboards * Enable step plot and stacked graph in Visualization * Overlay Technologies are summonable and dismissable * OverlayTechnologies saves changes to a cell * Convert NameableGraph to createClass for state This was converted from a pure function to encapsulate the state of the buttons. An attempt was made previously to store this state in Redux, but it proved too convoluted with the current state of the reducers for cells and dashboards. Another effort must take place to separate a cell reducer to manage the state of an individual cell in Redux in order for this state to be sanely kept in Redux as well. For the time being, this state is being kept in the component for the sake of expeditiousness, since this is needed for Dashboards to be released. A refactor of this will occur later. * Cells should contain a links key in server response * Clean up console logs * Use live data instead of a cellQuery fixture * Update docs for dashboard creation * DB and RP are already present in the Command field * Fix LayoutRenderer’s understanding of query schema * Return a new object, rather that mutate in place * Visualization doesn’t use activeQueryID * Selected is an object, not a string * QueryBuilder refactored to use query index instead of query id * CellEditorOverlay refactored to use query index instead of query id * ConfirmButtons doesn’t need to act on an item * Rename functions to follow convention * Queries are no longer guaranteed to have ids * Omit WHERE and GROUP BY clauses when saving query * Select new query on add in OverlayTechnologies * Add click outside to dash graph menu, style menu also * Change context menu from ... to a caret More consistent with the rest of the UI, better affordance * Hide graph context menu in presentation mode Don’t want people editing a dashboard from presentation mode * Move graph refreshing spinner so it does not overlap with context menu * Wire up Cell Menu to Overlay Technologies * Correct empty dashboard type * Refactor dashboard spec fixtures * Test syncDashboardCell reducer * Remove Delete button from graph dropdown menu (for now) * Update changelog
2017-03-24 00:12:33 +00:00
// Dashboard Cells
Wrap routes with Authorization middleware
2017-10-18 16:40:17 +00:00
router.GET("/chronograf/v1/dashboards/:id/cells", EnsureViewer(service.DashboardCells))
router.POST("/chronograf/v1/dashboards/:id/cells", EnsureEditor(service.NewDashboardCell))
Introduce ability to edit a dashboard cell * Correct documentation for dashboards * Exclude .git and use 'make run-dev' in 'make continuous' * Fix dashboard deletion bug where id serialization was wrong * Commence creation of overlay technology, add autoRefresh props to DashboardPage * Enhance overlay magnitude of overlay technology * Add confirm buttons to overlay technology * Refactor ResizeContainer to accommodate arbitrary containers * Refactor ResizeContainer to require explicit ResizeTop and ResizeBottom for clarity * Add markup and styles for OverlayControls * CellEditorOverlay needs a larger minimum bottom height to accommodate more things * Revert Visualization to not use ResizeTop or flex-box * Remove TODO and move to issue * Refactor CellEditorOverlay to allow selection of graph type * Style Overlay controls, move confirm buttons to own stylesheet * Fix toggle buttons in overlay so active is actually active * Block user-select on a few UI items * Update cell query shape to support Visualization and LayoutRenderer * Code cleanup * Repair fixture schema; update props for affected components * Wired up selectedGraphType and activeQueryID in CellEditorOverlay * Wire up chooseMeasurements in QueryBuilder Pass queryActions into QueryBuilder so that DataExplorer can provide actionCreators and CellEditorOverlay can provide functions that modify its component state * semicolon cleanup * Bind all queryModifier actions to component state with a stateReducer * Overlay Technologies™ can add and delete a query from a cell * Semicolon cleanup * Add conversion of InfluxQL to QueryConfig for dashboards * Update go deps to add influxdb at af72d9b0e4ebe95be30e89b160f43eabaf0529ed * Updated docs for dashboard query config * Update CHANGELOG to mention InfluxQL to QueryConfig * Make reducer’s name more specific for clarity * Remove 'table' as graphType * Make graph renaming prettier * Remove duplicate DashboardQuery in swagger.json * Fix swagger to include name and links for Cell * Refactor CellEditorOverlay to enable graph type selection * Add link.self to all Dashboard cells; add bolt migrations * Make dash graph names only hover on contents * Consolidate timeRange format patterns, clean up * Add cell endpoints to dashboards * Include Line + Stat in Visualization Type list * Add cell link to dashboards * Enable step plot and stacked graph in Visualization * Overlay Technologies are summonable and dismissable * OverlayTechnologies saves changes to a cell * Convert NameableGraph to createClass for state This was converted from a pure function to encapsulate the state of the buttons. An attempt was made previously to store this state in Redux, but it proved too convoluted with the current state of the reducers for cells and dashboards. Another effort must take place to separate a cell reducer to manage the state of an individual cell in Redux in order for this state to be sanely kept in Redux as well. For the time being, this state is being kept in the component for the sake of expeditiousness, since this is needed for Dashboards to be released. A refactor of this will occur later. * Cells should contain a links key in server response * Clean up console logs * Use live data instead of a cellQuery fixture * Update docs for dashboard creation * DB and RP are already present in the Command field * Fix LayoutRenderer’s understanding of query schema * Return a new object, rather that mutate in place * Visualization doesn’t use activeQueryID * Selected is an object, not a string * QueryBuilder refactored to use query index instead of query id * CellEditorOverlay refactored to use query index instead of query id * ConfirmButtons doesn’t need to act on an item * Rename functions to follow convention * Queries are no longer guaranteed to have ids * Omit WHERE and GROUP BY clauses when saving query * Select new query on add in OverlayTechnologies * Add click outside to dash graph menu, style menu also * Change context menu from ... to a caret More consistent with the rest of the UI, better affordance * Hide graph context menu in presentation mode Don’t want people editing a dashboard from presentation mode * Move graph refreshing spinner so it does not overlap with context menu * Wire up Cell Menu to Overlay Technologies * Correct empty dashboard type * Refactor dashboard spec fixtures * Test syncDashboardCell reducer * Remove Delete button from graph dropdown menu (for now) * Update changelog
2017-03-24 00:12:33 +00:00
Wrap routes with Authorization middleware
2017-10-18 16:40:17 +00:00
router.GET("/chronograf/v1/dashboards/:id/cells/:cid", EnsureViewer(service.DashboardCellID))
router.DELETE("/chronograf/v1/dashboards/:id/cells/:cid", EnsureEditor(service.RemoveDashboardCell))
router.PUT("/chronograf/v1/dashboards/:id/cells/:cid", EnsureEditor(service.ReplaceDashboardCell))
Add initial template CRUD operations
2017-04-20 16:09:56 +00:00
// Dashboard Templates
Wrap routes with Authorization middleware
2017-10-18 16:40:17 +00:00
router.GET("/chronograf/v1/dashboards/:id/templates", EnsureViewer(service.Templates))
router.POST("/chronograf/v1/dashboards/:id/templates", EnsureEditor(service.NewTemplate))
Add initial template CRUD operations
2017-04-20 16:09:56 +00:00
Wrap routes with Authorization middleware
2017-10-18 16:40:17 +00:00
router.GET("/chronograf/v1/dashboards/:id/templates/:tid", EnsureViewer(service.TemplateID))
router.DELETE("/chronograf/v1/dashboards/:id/templates/:tid", EnsureEditor(service.RemoveTemplate))
router.PUT("/chronograf/v1/dashboards/:id/templates/:tid", EnsureEditor(service.ReplaceTemplate))
add routes and stubs for dashboard API endpoints
2016-12-07 23:18:04 +00:00
add db and rp routes to mux.go
2017-03-20 21:23:29 +00:00
// Databases
Wrap routes with Authorization middleware
2017-10-18 16:40:17 +00:00
router.GET("/chronograf/v1/sources/:id/dbs", EnsureViewer(service.GetDatabases))
router.POST("/chronograf/v1/sources/:id/dbs", EnsureEditor(service.NewDatabase))
add routes and stubs for dashboard API endpoints
2016-12-07 23:18:04 +00:00
Rename db & rp vars & url params for clarity & consistency Updates swagger as well. Clarify that instead of dbid and rpid, these values are names. Rename the var for the Databases service to dbsvc.
2018-04-04 21:22:05 +00:00
router.DELETE("/chronograf/v1/sources/:id/dbs/:db", EnsureEditor(service.DropDatabase))
Add temporary /chronograf/v1/query endpoint to parse InfluxQL
2017-02-06 15:40:05 +00:00
get retention policies
2017-03-23 10:06:59 +00:00
// Retention Policies
Rename db & rp vars & url params for clarity & consistency Updates swagger as well. Clarify that instead of dbid and rpid, these values are names. Rename the var for the Databases service to dbsvc.
2018-04-04 21:22:05 +00:00
router.GET("/chronograf/v1/sources/:id/dbs/:db/rps", EnsureViewer(service.RetentionPolicies))
router.POST("/chronograf/v1/sources/:id/dbs/:db/rps", EnsureEditor(service.NewRetentionPolicy))
dropRP
2017-03-23 11:51:08 +00:00
Rename db & rp vars & url params for clarity & consistency Updates swagger as well. Clarify that instead of dbid and rpid, these values are names. Rename the var for the Databases service to dbsvc.
2018-04-04 21:22:05 +00:00
router.PUT("/chronograf/v1/sources/:id/dbs/:db/rps/:rp", EnsureEditor(service.UpdateRetentionPolicy))
router.DELETE("/chronograf/v1/sources/:id/dbs/:db/rps/:rp", EnsureEditor(service.DropRetentionPolicy))
Refactor /chronograf/v1 to not return logoutLink if not using auth Use logoutLink to determine if logout menu item is shown Signed-off-by: Chris Goller <güllère@gmail.com>
2017-05-31 00:21:46 +00:00
Add measurements with pagination
2018-02-21 02:32:46 +00:00
// Measurements
Rename db & rp vars & url params for clarity & consistency Updates swagger as well. Clarify that instead of dbid and rpid, these values are names. Rename the var for the Databases service to dbsvc.
2018-04-04 21:22:05 +00:00
router.GET("/chronograf/v1/sources/:id/dbs/:db/measurements", EnsureViewer(service.Measurements))
Add measurements with pagination
2018-02-21 02:32:46 +00:00
Implement Config GET service method Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-12-13 01:06:57 +00:00
// Global application config for Chronograf
router.GET("/chronograf/v1/config", EnsureSuperAdmin(service.Config))
Validate log UI config on PUT, & refactor config API methods Replaced /:section with specific hard-coded endpoints /auth & /logviewer, and refactored service handler methods to handle each route separately. Co-authored-by: Jared Scheib <jared.scheib@gmail.com>
2018-07-02 23:17:23 +00:00
router.GET("/chronograf/v1/config/auth", EnsureSuperAdmin(service.AuthConfig))
router.PUT("/chronograf/v1/config/auth", EnsureSuperAdmin(service.ReplaceAuthConfig))
Implement Config GET service method Signed-off-by: Jared Scheib <jared.scheib@gmail.com>
2017-12-13 01:06:57 +00:00
WIP Refactor log viewer config to be nested under organizations Co-authored-by: Alirie Gray <alirie.gray@gmail.com>
2018-07-04 00:40:50 +00:00
// Organization config settings for Chronograf
router.GET("/chronograf/v1/org_config", EnsureViewer(service.OrganizationConfig))
Rename LogViewerOrganizationConfig to OrganizationLogViewerConfig Co-authored-by: Jared Scheib <jared.scheib@gmail.com>
2018-07-10 19:05:29 +00:00
router.GET("/chronograf/v1/org_config/logviewer", EnsureViewer(service.OrganizationLogViewerConfig))
router.PUT("/chronograf/v1/org_config/logviewer", EnsureEditor(service.ReplaceOrganizationLogViewerConfig))
WIP Refactor log viewer config to be nested under organizations Co-authored-by: Alirie Gray <alirie.gray@gmail.com>
2018-07-04 00:40:50 +00:00
Add /chronograf/v1/env endpoint to expose env vars Some environment variables are needed by the front end. This PR introduces a route so that those environment variables can be exposed. Additionally, a new environment variable TELEGRAF_SYSTEM_INTERVAL was added. This env var controls the rate at which the host list page will update its red/green status.
2018-01-03 19:52:40 +00:00
router.GET("/chronograf/v1/env", EnsureViewer(service.Environment))
Refactor /chronograf/v1 to not return logoutLink if not using auth Use logoutLink to determine if logout menu item is shown Signed-off-by: Chris Goller <güllère@gmail.com>
2017-05-31 00:21:46 +00:00
allRoutes := &AllRoutes{
Generate custom links from env var and multiple CLI flags Signed-off-by: Chris Goller <goller@gmail.com>
2017-06-23 23:45:02 +00:00
Logger: opts.Logger,
StatusFeed: opts.StatusFeedURL,
CustomLinks: opts.CustomLinks,
Refactor /chronograf/v1 to not return logoutLink if not using auth Use logoutLink to determine if logout menu item is shown Signed-off-by: Chris Goller <güllère@gmail.com>
2017-05-31 00:21:46 +00:00
}
Populate links response with organiation on JWT
2018-01-17 17:26:28 +00:00
getPrincipal := func(r *http.Request) oauth2.Principal {
p, _ := HasAuthorizedToken(opts.Auth, r)
return p
}
allRoutes.GetPrincipal = getPrincipal
Refactor /chronograf/v1 to not return logoutLink if not using auth Use logoutLink to determine if logout menu item is shown Signed-off-by: Chris Goller <güllère@gmail.com>
2017-05-31 00:21:46 +00:00
router.Handler("GET", "/chronograf/v1/", allRoutes)
Move OAuth configuration into server/server.go This uses a provide() function in server/server.go, to push the necessary oauth2.Provider and oauth2.Mux into the scope of the server.Mux. This allows the server.Mux to configure its routes without caring which Providers are enabled, which switches/ENVs are set etc. It configures its routes optimistically and leaves the higher-order logic to decide whether to actually invoke the logic used by the mux to configure routes for that provider.
2017-02-23 22:17:28 +00:00
var out http.Handler
Add PrefixedRedirect function The router that we use has a feature that will automatically redirect routes in certain situations where it feels a trailing slash would be appropriate. Because the underlying router is totally unaware of upstream prefixing activity, the "Location" that it sends clients to is incorrect because it doesn't have the prefix. This introduces a middleware that catches any downstream 3XX class responses and replaces the Location header with the prefixed version of it, plus a trailing slash. It does this only when the prefix has not been applied already by some downstream middleware.
2017-05-05 22:17:35 +00:00
Refactor /chronograf/v1 to not return logoutLink if not using auth Use logoutLink to determine if logout menu item is shown Signed-off-by: Chris Goller <güllère@gmail.com>
2017-05-31 00:21:46 +00:00
/* Authentication */
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
if opts.UseAuth {
Move OAuth configuration into server/server.go This uses a provide() function in server/server.go, to push the necessary oauth2.Provider and oauth2.Mux into the scope of the server.Mux. This allows the server.Mux to configure its routes without caring which Providers are enabled, which switches/ENVs are set etc. It configures its routes optimistically and leaves the higher-order logic to decide whether to actually invoke the logic used by the mux to configure routes for that provider.
2017-02-23 22:17:28 +00:00
// Encapsulate the router with OAuth2
var auth http.Handler
Refactor /chronograf/v1 to not return logoutLink if not using auth Use logoutLink to determine if logout menu item is shown Signed-off-by: Chris Goller <güllère@gmail.com>
2017-05-31 00:21:46 +00:00
auth, allRoutes.AuthRoutes = AuthAPI(opts, router)
Update oauth logout to include basepath
2017-12-01 21:35:39 +00:00
allRoutes.LogoutLink = path.Join(opts.Basepath, "/oauth/logout")
Move OAuth configuration into server/server.go This uses a provide() function in server/server.go, to push the necessary oauth2.Provider and oauth2.Mux into the scope of the server.Mux. This allows the server.Mux to configure its routes without caring which Providers are enabled, which switches/ENVs are set etc. It configures its routes optimistically and leaves the higher-order logic to decide whether to actually invoke the logic used by the mux to configure routes for that provider.
2017-02-23 22:17:28 +00:00
Refactor /chronograf/v1 to not return logoutLink if not using auth Use logoutLink to determine if logout menu item is shown Signed-off-by: Chris Goller <güllère@gmail.com>
2017-05-31 00:21:46 +00:00
// Create middleware that redirects to the appropriate provider logout
Remove prefix-routes & clean up basepath var and flag use Now, if basepath is set, it will be prefixed to all routes. There is no more additional option of prefix-routes.
2018-04-20 22:50:19 +00:00
router.GET("/oauth/logout", Logout("/", opts.Basepath, allRoutes.AuthRoutes))
Rename PrefixedRedirect to FlushingHandler & comment It's not clear whether this code is necessary, but investigating this was outside of the scope of this PR.
2018-04-21 00:11:32 +00:00
out = Logger(opts.Logger, FlushingHandler(auth))
Move OAuth configuration into server/server.go This uses a provide() function in server/server.go, to push the necessary oauth2.Provider and oauth2.Mux into the scope of the server.Mux. This allows the server.Mux to configure its routes without caring which Providers are enabled, which switches/ENVs are set etc. It configures its routes optimistically and leaves the higher-order logic to decide whether to actually invoke the logic used by the mux to configure routes for that provider.
2017-02-23 22:17:28 +00:00
} else {
Rename PrefixedRedirect to FlushingHandler & comment It's not clear whether this code is necessary, but investigating this was outside of the scope of this PR.
2018-04-21 00:11:32 +00:00
out = Logger(opts.Logger, FlushingHandler(router))
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
}
Add gzip compression to all of our server respones
2017-02-09 20:35:38 +00:00
Move OAuth configuration into server/server.go This uses a provide() function in server/server.go, to push the necessary oauth2.Provider and oauth2.Mux into the scope of the server.Mux. This allows the server.Mux to configure its routes without caring which Providers are enabled, which switches/ENVs are set etc. It configures its routes optimistically and leaves the higher-order logic to decide whether to actually invoke the logic used by the mux to configure routes for that provider.
2017-02-23 22:17:28 +00:00
return out
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
}
Fix mux paths to be hardcoded; clarify server start; fix golint
2016-10-28 16:27:06 +00:00
// AuthAPI adds the OAuth routes if auth is enabled.
Use MountableRouter when Basepath is set This breaks compatibility with the old behavior of --basepath, so this requires that proxies be configured to not modify routes forwarded to backends. The old behavior will be supported in a subsequent commit.
2017-03-31 20:14:46 +00:00
func AuthAPI(opts MuxOpts, router chronograf.Router) (http.Handler, AuthRoutes) {
Move OAuth configuration into server/server.go This uses a provide() function in server/server.go, to push the necessary oauth2.Provider and oauth2.Mux into the scope of the server.Mux. This allows the server.Mux to configure its routes without caring which Providers are enabled, which switches/ENVs are set etc. It configures its routes optimistically and leaves the higher-order logic to decide whether to actually invoke the logic used by the mux to configure routes for that provider.
2017-02-23 22:17:28 +00:00
routes := AuthRoutes{}
for _, pf := range opts.ProviderFuncs {
pf(func(p oauth2.Provider, m oauth2.Mux) {
Fix PathEscape work for go 1.7
2017-04-07 20:32:35 +00:00
urlName := PathEscape(strings.ToLower(p.Name()))
Fix OAuth when using Basepath Updated the logout link in the UI to use a link provided by the /chronograf/v1/ endpoint. We also replaced many instances of string concatenation of URL paths with path.Join, which better handles cases where prefixed and suffixed "/" characters may be present in provided basepaths. We also refactored how Basepath was being prefixed when using Auth. Documentation was also updated to warn users that basepaths should be applied to the OAuth callback link when configuring OAuth with their provider.
2017-05-03 23:34:05 +00:00
Force prefixing in several locations The Basepath option should be applied in anything that will be consumed by the React application. This is because from its perspective, the proxy sitting between it and the backend wants those prefixes regardless of what it does with them before handing the request back to the Chronograf backend. Consequently, there's situations in the backend where we need to have the `opts.Basepath` or the `basepath` that we alter when `opts.PrefixRoutes` is set. The `basepath` is strictly for altering routing decisions made by the backend. There's subtle places where routes are supplied to the frontend that need to always have the `opts.Basepath` set as well. Another commit addressed the "Location" header of Redirects, for example.
2017-05-05 22:21:12 +00:00
loginPath := path.Join("/oauth", urlName, "login")
logoutPath := path.Join("/oauth", urlName, "logout")
callbackPath := path.Join("/oauth", urlName, "callback")
Fix OAuth when using Basepath Updated the logout link in the UI to use a link provided by the /chronograf/v1/ endpoint. We also replaced many instances of string concatenation of URL paths with path.Join, which better handles cases where prefixed and suffixed "/" characters may be present in provided basepaths. We also refactored how Basepath was being prefixed when using Auth. Documentation was also updated to warn users that basepaths should be applied to the OAuth callback link when configuring OAuth with their provider.
2017-05-03 23:34:05 +00:00
Move OAuth configuration into server/server.go This uses a provide() function in server/server.go, to push the necessary oauth2.Provider and oauth2.Mux into the scope of the server.Mux. This allows the server.Mux to configure its routes without caring which Providers are enabled, which switches/ENVs are set etc. It configures its routes optimistically and leaves the higher-order logic to decide whether to actually invoke the logic used by the mux to configure routes for that provider.
2017-02-23 22:17:28 +00:00
router.Handler("GET", loginPath, m.Login())
router.Handler("GET", logoutPath, m.Logout())
router.Handler("GET", callbackPath, m.Callback())
routes = append(routes, AuthRoute{
Force prefixing in several locations The Basepath option should be applied in anything that will be consumed by the React application. This is because from its perspective, the proxy sitting between it and the backend wants those prefixes regardless of what it does with them before handing the request back to the Chronograf backend. Consequently, there's situations in the backend where we need to have the `opts.Basepath` or the `basepath` that we alter when `opts.PrefixRoutes` is set. The `basepath` is strictly for altering routing decisions made by the backend. There's subtle places where routes are supplied to the frontend that need to always have the `opts.Basepath` set as well. Another commit addressed the "Location" header of Redirects, for example.
2017-05-05 22:21:12 +00:00
Name: p.Name(),
Label: strings.Title(p.Name()),
// AuthRoutes are content served to the page. When Basepath is set, it
// says that all content served to the page will be prefixed with the
// basepath. Since these routes are consumed by JS, it will need the
// basepath set to traverse a proxy correctly
Login: path.Join(opts.Basepath, loginPath),
Logout: path.Join(opts.Basepath, logoutPath),
Callback: path.Join(opts.Basepath, callbackPath),
Move OAuth configuration into server/server.go This uses a provide() function in server/server.go, to push the necessary oauth2.Provider and oauth2.Mux into the scope of the server.Mux. This allows the server.Mux to configure its routes without caring which Providers are enabled, which switches/ENVs are set etc. It configures its routes optimistically and leaves the higher-order logic to decide whether to actually invoke the logic used by the mux to configure routes for that provider.
2017-02-23 22:17:28 +00:00
})
})
Configure Mux to use Heroku OAuth2 provider If a --token-secret, --heroku-client-id, and --heroku-secret are provided to Chronograf, it will add Heroku as an OAuth2 provider. These tokens can be obtained (as of this writing) by visiting your "manage account" page, navigating to "Applications," and then clicking "Register New API Client" under the "API Clients" section.
2017-02-16 17:56:59 +00:00
}
Remove prefix-routes & clean up basepath var and flag use Now, if basepath is set, it will be prefixed to all routes. There is no more additional option of prefix-routes.
2018-04-20 22:50:19 +00:00
rootPath := path.Join(opts.Basepath, "/chronograf/v1")
logoutPath := path.Join(opts.Basepath, "/oauth/logout")
Fix OAuth when using Basepath Updated the logout link in the UI to use a link provided by the /chronograf/v1/ endpoint. We also replaced many instances of string concatenation of URL paths with path.Join, which better handles cases where prefixed and suffixed "/" characters may be present in provided basepaths. We also refactored how Basepath was being prefixed when using Auth. Documentation was also updated to warn users that basepaths should be applied to the OAuth callback link when configuring OAuth with their provider.
2017-05-03 23:34:05 +00:00
Add new auth duration CLI option; add client heartbeat; fix logout (#1119) * User can now set oauth cookie session duration via the CLI to any duration or to expire on browser close * Refactor GET 'me' into heartbeat at constant interval * Add ping route to all routes * Add /chronograf/v1/ping endpoint for server status * Refactor cookie generation to use an interface * WIP adding refreshable tokens * Add reminder to review index.js Login error handling * Refactor Authenticator interface to accommodate cookie duration and logout delay * Update make run-dev to be more TICKStack compliant * Remove heartbeat/logout duration from authentication * WIP Refactor tests to accommodate cookie and auth refactor * Update oauth2 tests to newly refactored design * Update oauth provider tests * Remove unused oauth2/consts.go * Move authentication middleware to server package * Fix authentication comment * Update authenication documentation to mention AUTH_DURATION * Update /chronograf/v1/ping to simply return 204 * Fix Makefile run-dev target * Remove spurious ping route * Update auth docs to clarify authentication duration * Revert "Refactor GET 'me' into heartbeat at constant interval" This reverts commit 298a8c47e1431720d9bd97a9cb853744f04501a3. Conflicts: ui/src/index.js * Add auth test for JWT signing method * Add comments for why coverage isn't written for some areas of jwt code * Update auth docs to explicitly mention how to require re-auth for all users on server restart * Add Duration to Validation interface for Tokens * Make auth duration of zero yield a everlasting token * Revert "Revert "Refactor GET 'me' into heartbeat at constant interval"" This reverts commit b4773c15afe4fcd227ad88aa9d5686beb6b0a6cd. * Rename http status constants and add FORBIDDEN * Heartbeat only when logged in, notify user if heartbeat fails * Update changelog * Fix minor word semantics * Update oauth2 tests to be in the oauth2_test package * Add check at compile time that JWT implements Tokenizer * Rename CookieMux to AuthMux for consistency with earlier refactor * Fix logout middleware * Fix logout button not showing due to obsolete data shape expectations * Update changelog * Fix proptypes for logout button data shape in SideNav
2017-04-06 18:40:57 +00:00
tokenMiddleware := AuthorizedToken(opts.Auth, opts.Logger, router)
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
// Wrap the API with token validation middleware.
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
Force prefixing in several locations The Basepath option should be applied in anything that will be consumed by the React application. This is because from its perspective, the proxy sitting between it and the backend wants those prefixes regardless of what it does with them before handing the request back to the Chronograf backend. Consequently, there's situations in the backend where we need to have the `opts.Basepath` or the `basepath` that we alter when `opts.PrefixRoutes` is set. The `basepath` is strictly for altering routing decisions made by the backend. There's subtle places where routes are supplied to the frontend that need to always have the `opts.Basepath` set as well. Another commit addressed the "Location" header of Redirects, for example.
2017-05-05 22:21:12 +00:00
cleanPath := path.Clean(r.URL.Path) // compare ignoring path garbage, trailing slashes, etc.
if (strings.HasPrefix(cleanPath, rootPath) && len(cleanPath) > len(rootPath)) || cleanPath == logoutPath {
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
tokenMiddleware.ServeHTTP(w, r)
return
}
Fix mux paths to be hardcoded; clarify server start; fix golint
2016-10-28 16:27:06 +00:00
router.ServeHTTP(w, r)
Move OAuth configuration into server/server.go This uses a provide() function in server/server.go, to push the necessary oauth2.Provider and oauth2.Mux into the scope of the server.Mux. This allows the server.Mux to configure its routes without caring which Providers are enabled, which switches/ENVs are set etc. It configures its routes optimistically and leaves the higher-order logic to decide whether to actually invoke the logic used by the mux to configure routes for that provider.
2017-02-23 22:17:28 +00:00
}), routes
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
}
func encodeJSON(w http.ResponseWriter, status int, v interface{}, logger chronograf.Logger) {
w.Header().Set("Content-Type", "application/json")
w.WriteHeader(status)
if err := json.NewEncoder(w).Encode(v); err != nil {
Add server error logging
2016-11-19 17:41:06 +00:00
unknownErrorWithMessage(w, err, logger)
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
}
}
Fix mux paths to be hardcoded; clarify server start; fix golint
2016-10-28 16:27:06 +00:00
// Error writes an JSON message
Add server error logging
2016-11-19 17:41:06 +00:00
func Error(w http.ResponseWriter, code int, msg string, logger chronograf.Logger) {
e := ErrorMessage{
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
Code: code,
Message: msg,
}
b, err := json.Marshal(e)
if err != nil {
code = http.StatusInternalServerError
b = []byte(`{"code": 500, "message":"server_error"}`)
}
Add server error logging
2016-11-19 17:41:06 +00:00
logger.
WithField("component", "server").
WithField("http_status ", code).
Error("Error message ", msg)
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
w.Header().Set("Content-Type", JSONType)
w.WriteHeader(code)
Miscellaneous lint cleanup
2016-12-20 20:59:56 +00:00
_, _ = w.Write(b)
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
}
Add server error logging
2016-11-19 17:41:06 +00:00
func invalidData(w http.ResponseWriter, err error, logger chronograf.Logger) {
Error(w, http.StatusUnprocessableEntity, fmt.Sprintf("%v", err), logger)
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
}
Add server error logging
2016-11-19 17:41:06 +00:00
func invalidJSON(w http.ResponseWriter, logger chronograf.Logger) {
Ensure error strings not capitalised ST1005
2018-11-21 14:22:35 +00:00
Error(w, http.StatusBadRequest, "unparsable JSON", logger)
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
}
Add server error logging
2016-11-19 17:41:06 +00:00
func unknownErrorWithMessage(w http.ResponseWriter, err error, logger chronograf.Logger) {
Ensure error strings not capitalised ST1005
2018-11-21 14:22:35 +00:00
Error(w, http.StatusInternalServerError, fmt.Sprintf("unknown error: %v", err), logger)
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
}
Fix cell replacement to return query config
2017-12-18 23:24:33 +00:00
func notFound(w http.ResponseWriter, id interface{}, logger chronograf.Logger) {
Error(w, http.StatusNotFound, fmt.Sprintf("ID %v not found", id), logger)
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
}
func paramID(key string, r *http.Request) (int, error) {
ctx := r.Context()
chore(chronograf): Get Chronograf to "work" as in 1.6.x (w/o Kapacitor) Co-authored-by: Andrew Watkins <andrew.watkinz@gmail.com> Co-authored-by: Michael Desa <mjdesa@gmail.com>
2018-07-24 22:13:08 +00:00
param := jhttprouter.ParamsFromContext(ctx).ByName(key)
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
id, err := strconv.Atoi(param)
if err != nil {
Ensure error strings not capitalised ST1005
2018-11-21 14:22:35 +00:00
return -1, fmt.Errorf("error converting ID %s", param)
Refactor to remove autogenerated code.
2016-10-25 15:20:06 +00:00
}
return id, nil
}
Update influxdb annotation store to support update/delete
2018-01-19 03:50:46 +00:00
func paramStr(key string, r *http.Request) (string, error) {
ctx := r.Context()
chore(chronograf): Get Chronograf to "work" as in 1.6.x (w/o Kapacitor) Co-authored-by: Andrew Watkins <andrew.watkinz@gmail.com> Co-authored-by: Michael Desa <mjdesa@gmail.com>
2018-07-24 22:13:08 +00:00
param := jhttprouter.ParamsFromContext(ctx).ByName(key)
Update influxdb annotation store to support update/delete
2018-01-19 03:50:46 +00:00
return param, nil
}