mirror of https://github.com/goharbor/harbor.git
140 lines
3.2 KiB
Go
140 lines
3.2 KiB
Go
package api
|
|
|
|
import (
|
|
"errors"
|
|
"fmt"
|
|
"net/http"
|
|
"strconv"
|
|
"strings"
|
|
|
|
"github.com/goharbor/harbor/src/common/rbac"
|
|
"github.com/goharbor/harbor/src/pkg/immutabletag"
|
|
"github.com/goharbor/harbor/src/pkg/immutabletag/model"
|
|
)
|
|
|
|
// ImmutableTagRuleAPI ...
|
|
type ImmutableTagRuleAPI struct {
|
|
BaseController
|
|
ctr immutabletag.Controller
|
|
projectID int64
|
|
ID int64
|
|
}
|
|
|
|
// Prepare validates the user and projectID
|
|
func (itr *ImmutableTagRuleAPI) Prepare() {
|
|
itr.BaseController.Prepare()
|
|
if !itr.SecurityCtx.IsAuthenticated() {
|
|
itr.SendUnAuthorizedError(errors.New("Unauthorized"))
|
|
return
|
|
}
|
|
|
|
pid, err := itr.GetInt64FromPath(":pid")
|
|
if err != nil || pid <= 0 {
|
|
text := "invalid project ID: "
|
|
if err != nil {
|
|
text += err.Error()
|
|
} else {
|
|
text += fmt.Sprintf("%d", pid)
|
|
}
|
|
itr.SendBadRequestError(errors.New(text))
|
|
return
|
|
}
|
|
itr.projectID = pid
|
|
|
|
ruleID, err := itr.GetInt64FromPath(":id")
|
|
if err == nil || ruleID > 0 {
|
|
itr.ID = ruleID
|
|
}
|
|
|
|
itr.ctr = immutabletag.ImmuCtr
|
|
|
|
if strings.EqualFold(itr.Ctx.Request.Method, "get") {
|
|
if !itr.requireAccess(rbac.ActionList) {
|
|
return
|
|
}
|
|
} else if strings.EqualFold(itr.Ctx.Request.Method, "put") {
|
|
if !itr.requireAccess(rbac.ActionUpdate) {
|
|
return
|
|
}
|
|
} else if strings.EqualFold(itr.Ctx.Request.Method, "post") {
|
|
if !itr.requireAccess(rbac.ActionCreate) {
|
|
return
|
|
}
|
|
|
|
} else if strings.EqualFold(itr.Ctx.Request.Method, "delete") {
|
|
if !itr.requireAccess(rbac.ActionDelete) {
|
|
return
|
|
}
|
|
}
|
|
}
|
|
|
|
func (itr *ImmutableTagRuleAPI) requireAccess(action rbac.Action) bool {
|
|
return itr.RequireProjectAccess(itr.projectID, action, rbac.ResourceImmutableTag)
|
|
}
|
|
|
|
// List list all immutable tag rules of current project
|
|
func (itr *ImmutableTagRuleAPI) List() {
|
|
rules, err := itr.ctr.ListImmutableRules(itr.projectID)
|
|
if err != nil {
|
|
itr.SendInternalServerError(err)
|
|
return
|
|
}
|
|
itr.WriteJSONData(rules)
|
|
}
|
|
|
|
// Post create immutable tag rule
|
|
func (itr *ImmutableTagRuleAPI) Post() {
|
|
ir := &model.Metadata{}
|
|
isValid, err := itr.DecodeJSONReqAndValidate(ir)
|
|
if !isValid {
|
|
itr.SendBadRequestError(err)
|
|
return
|
|
}
|
|
ir.ProjectID = itr.projectID
|
|
id, err := itr.ctr.CreateImmutableRule(ir)
|
|
if err != nil && strings.Contains(err.Error(), "duplicate key") {
|
|
itr.RenderError(http.StatusConflict, "immutable tag rule duplicated")
|
|
return
|
|
}
|
|
if err != nil {
|
|
itr.SendInternalServerError(err)
|
|
return
|
|
}
|
|
itr.Redirect(http.StatusCreated, strconv.FormatInt(id, 10))
|
|
|
|
}
|
|
|
|
// Delete delete immutable tag rule
|
|
func (itr *ImmutableTagRuleAPI) Delete() {
|
|
if itr.ID <= 0 {
|
|
itr.SendBadRequestError(fmt.Errorf("invalid immutable rule id %d", itr.ID))
|
|
return
|
|
}
|
|
err := itr.ctr.DeleteImmutableRule(itr.ID)
|
|
if err != nil {
|
|
itr.SendInternalServerError(err)
|
|
return
|
|
}
|
|
}
|
|
|
|
// Put update an immutable tag rule
|
|
func (itr *ImmutableTagRuleAPI) Put() {
|
|
ir := &model.Metadata{}
|
|
if err := itr.DecodeJSONReq(ir); err != nil {
|
|
itr.SendBadRequestError(err)
|
|
return
|
|
}
|
|
ir.ID = itr.ID
|
|
ir.ProjectID = itr.projectID
|
|
|
|
if itr.ID <= 0 {
|
|
itr.SendBadRequestError(fmt.Errorf("invalid immutable rule id %d", itr.ID))
|
|
return
|
|
}
|
|
|
|
if err := itr.ctr.UpdateImmutableRule(itr.projectID, ir); err != nil {
|
|
itr.SendInternalServerError(err)
|
|
return
|
|
}
|
|
}
|