mirror of
https://github.com/goharbor/harbor.git
synced 2024-09-29 13:57:33 +02:00
8a0e8627ff
Fixes #9704 As we do want to unify error handling, so just decreprates pkg errors, use lib/errors instead for Harbor internal used errors model. 1, The lib/errors can cover all of funcs of pkg/errors, and also it has code attribute to define the http return value. 2, lib/errors can give a OCI standard error format, like {"errors":[{"code":"UNAUTHORIZED","message":"unauthorized"}]} If you'd like to use pkg/errors, use lib/errors instead. If it cannot meet your request, enhance it. Signed-off-by: wang yan <wangyan@vmware.com>
144 lines
3.7 KiB
Go
144 lines
3.7 KiB
Go
// Copyright Project Harbor Authors
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
package api
|
|
|
|
import (
|
|
"github.com/goharbor/harbor/src/common/rbac"
|
|
"github.com/goharbor/harbor/src/controller/scanner"
|
|
"github.com/goharbor/harbor/src/lib/errors"
|
|
"github.com/goharbor/harbor/src/lib/q"
|
|
)
|
|
|
|
// ProjectScannerAPI provides rest API for managing the project level scanner(s).
|
|
type ProjectScannerAPI struct {
|
|
// The base controller to provide common utilities
|
|
BaseController
|
|
// Scanner controller for operating scanner registrations.
|
|
c scanner.Controller
|
|
// ID of the project
|
|
pid int64
|
|
}
|
|
|
|
// Prepare sth. for the subsequent actions
|
|
func (sa *ProjectScannerAPI) Prepare() {
|
|
// Call super prepare method
|
|
sa.BaseController.Prepare()
|
|
|
|
// Check access permissions
|
|
if !sa.RequireAuthenticated() {
|
|
return
|
|
}
|
|
|
|
// Get ID of the project
|
|
pid, err := sa.GetInt64FromPath(":pid")
|
|
if err != nil {
|
|
sa.SendBadRequestError(errors.Wrap(err, "project scanner API"))
|
|
return
|
|
}
|
|
|
|
// Check if the project exists
|
|
exists, err := sa.ProjectMgr.Exists(pid)
|
|
if err != nil {
|
|
sa.SendInternalServerError(errors.Wrap(err, "project scanner API"))
|
|
return
|
|
}
|
|
|
|
if !exists {
|
|
sa.SendNotFoundError(errors.Errorf("project with id %d", sa.pid))
|
|
return
|
|
}
|
|
|
|
sa.pid = pid
|
|
|
|
sa.c = scanner.DefaultController
|
|
}
|
|
|
|
// GetProjectScanner gets the project level scanner
|
|
func (sa *ProjectScannerAPI) GetProjectScanner() {
|
|
// Check access permissions
|
|
if !sa.RequireProjectAccess(sa.pid, rbac.ActionRead, rbac.ResourceScanner) {
|
|
return
|
|
}
|
|
|
|
r, err := sa.c.GetRegistrationByProject(sa.pid)
|
|
if err != nil {
|
|
sa.SendInternalServerError(errors.Wrap(err, "scanner API: get project scanners"))
|
|
return
|
|
}
|
|
|
|
if r != nil {
|
|
sa.Data["json"] = r
|
|
} else {
|
|
sa.Data["json"] = make(map[string]interface{})
|
|
}
|
|
|
|
sa.ServeJSON()
|
|
}
|
|
|
|
// SetProjectScanner sets the project level scanner
|
|
func (sa *ProjectScannerAPI) SetProjectScanner() {
|
|
// Check access permissions
|
|
if !sa.RequireProjectAccess(sa.pid, rbac.ActionCreate, rbac.ResourceScanner) {
|
|
return
|
|
}
|
|
|
|
body := make(map[string]string)
|
|
if err := sa.DecodeJSONReq(&body); err != nil {
|
|
sa.SendBadRequestError(errors.Wrap(err, "scanner API: set project scanners"))
|
|
return
|
|
}
|
|
|
|
uuid, ok := body["uuid"]
|
|
if !ok || len(uuid) == 0 {
|
|
sa.SendBadRequestError(errors.New("missing scanner uuid when setting project scanner"))
|
|
return
|
|
}
|
|
|
|
if err := sa.c.SetRegistrationByProject(sa.pid, uuid); err != nil {
|
|
sa.SendInternalServerError(errors.Wrap(err, "scanner API: set project scanners"))
|
|
return
|
|
}
|
|
}
|
|
|
|
// GetProScannerCandidates gets the candidates for setting project level scanner.
|
|
func (sa *ProjectScannerAPI) GetProScannerCandidates() {
|
|
// Check access permissions
|
|
// Same permission with project level scanner set action
|
|
if !sa.RequireProjectAccess(sa.pid, rbac.ActionCreate, rbac.ResourceScanner) {
|
|
return
|
|
}
|
|
|
|
p, pz, err := sa.GetPaginationParams()
|
|
if err != nil {
|
|
sa.SendBadRequestError(errors.Wrap(err, "scanner API: get project scanner candidates"))
|
|
return
|
|
}
|
|
|
|
query := &q.Query{
|
|
PageSize: pz,
|
|
PageNumber: p,
|
|
}
|
|
|
|
all, err := sa.c.ListRegistrations(query)
|
|
if err != nil {
|
|
sa.SendInternalServerError(errors.Wrap(err, "scanner API: get project scanner candidates"))
|
|
return
|
|
}
|
|
|
|
// Response to the client
|
|
sa.Data["json"] = all
|
|
sa.ServeJSON()
|
|
}
|