2018-04-03 14:16:57 +00:00
|
|
|
import ApplicationAdapter from './application';
|
2018-09-25 16:28:26 +00:00
|
|
|
import { pluralize } from 'ember-inflector';
|
2019-03-01 16:08:30 +00:00
|
|
|
import { encodePath } from 'vault/utils/path-encoding-helpers';
|
2018-04-03 14:16:57 +00:00
|
|
|
|
|
|
|
export default ApplicationAdapter.extend({
|
|
|
|
namespace: 'v1',
|
|
|
|
|
|
|
|
createOrUpdate(store, type, snapshot, requestType) {
|
|
|
|
const serializer = store.serializerFor(type.modelName);
|
|
|
|
const data = serializer.serialize(snapshot, requestType);
|
|
|
|
const { id } = snapshot;
|
|
|
|
let url = this.urlForSecret(snapshot.record.get('backend'), id);
|
|
|
|
|
|
|
|
if (requestType === 'update') {
|
|
|
|
url = url + '/config';
|
|
|
|
}
|
|
|
|
|
|
|
|
return this.ajax(url, 'POST', { data });
|
|
|
|
},
|
|
|
|
|
|
|
|
createRecord() {
|
|
|
|
return this.createOrUpdate(...arguments);
|
|
|
|
},
|
|
|
|
|
|
|
|
updateRecord() {
|
|
|
|
return this.createOrUpdate(...arguments, 'update');
|
|
|
|
},
|
|
|
|
|
|
|
|
deleteRecord(store, type, snapshot) {
|
|
|
|
const { id } = snapshot;
|
|
|
|
return this.ajax(this.urlForSecret(snapshot.record.get('backend'), id), 'DELETE');
|
|
|
|
},
|
|
|
|
|
|
|
|
pathForType(type) {
|
|
|
|
let path;
|
|
|
|
switch (type) {
|
|
|
|
case 'cluster':
|
|
|
|
path = 'clusters';
|
|
|
|
break;
|
|
|
|
case 'secret-engine':
|
|
|
|
path = 'secrets';
|
|
|
|
break;
|
|
|
|
default:
|
2018-09-25 16:28:26 +00:00
|
|
|
path = pluralize(type);
|
2018-04-03 14:16:57 +00:00
|
|
|
break;
|
|
|
|
}
|
|
|
|
return path;
|
|
|
|
},
|
|
|
|
|
|
|
|
urlForSecret(backend, id) {
|
2019-03-01 16:08:30 +00:00
|
|
|
let url = `${this.buildURL()}/${encodePath(backend)}/keys/`;
|
2018-04-03 14:16:57 +00:00
|
|
|
if (id) {
|
2019-03-01 16:08:30 +00:00
|
|
|
url += encodePath(id);
|
2018-04-03 14:16:57 +00:00
|
|
|
}
|
|
|
|
return url;
|
|
|
|
},
|
|
|
|
|
|
|
|
urlForAction(action, backend, id, param) {
|
2019-03-01 16:08:30 +00:00
|
|
|
let urlBase = `${this.buildURL()}/${encodePath(backend)}/${action}`;
|
2018-04-03 14:16:57 +00:00
|
|
|
// these aren't key-specific
|
|
|
|
if (action === 'hash' || action === 'random') {
|
|
|
|
return urlBase;
|
|
|
|
}
|
|
|
|
if (action === 'datakey' && param) {
|
|
|
|
// datakey action has `wrapped` or `plaintext` as part of the url
|
2019-03-01 16:08:30 +00:00
|
|
|
return `${urlBase}/${param}/${encodePath(id)}`;
|
2018-04-03 14:16:57 +00:00
|
|
|
}
|
|
|
|
if (action === 'export' && param) {
|
|
|
|
let [type, version] = param;
|
2019-03-01 16:08:30 +00:00
|
|
|
const exportBase = `${urlBase}/${type}-key/${encodePath(id)}`;
|
2018-04-03 14:16:57 +00:00
|
|
|
return version ? `${exportBase}/${version}` : exportBase;
|
|
|
|
}
|
2019-03-01 16:08:30 +00:00
|
|
|
return `${urlBase}/${encodePath(id)}`;
|
2018-04-03 14:16:57 +00:00
|
|
|
},
|
|
|
|
|
|
|
|
optionsForQuery(id) {
|
|
|
|
let data = {};
|
|
|
|
if (!id) {
|
|
|
|
data['list'] = true;
|
|
|
|
}
|
|
|
|
return { data };
|
|
|
|
},
|
|
|
|
|
|
|
|
fetchByQuery(query) {
|
|
|
|
const { id, backend } = query;
|
|
|
|
return this.ajax(this.urlForSecret(backend, id), 'GET', this.optionsForQuery(id)).then(resp => {
|
|
|
|
resp.id = id;
|
|
|
|
return resp;
|
|
|
|
});
|
|
|
|
},
|
|
|
|
|
|
|
|
query(store, type, query) {
|
|
|
|
return this.fetchByQuery(query);
|
|
|
|
},
|
|
|
|
|
|
|
|
queryRecord(store, type, query) {
|
|
|
|
return this.fetchByQuery(query);
|
|
|
|
},
|
|
|
|
|
|
|
|
// rotate, encrypt, decrypt, sign, verify, hmac, rewrap, datakey
|
|
|
|
keyAction(action, { backend, id, payload }, options = {}) {
|
|
|
|
const verb = action === 'export' ? 'GET' : 'POST';
|
|
|
|
const { wrapTTL } = options;
|
|
|
|
if (action === 'rotate') {
|
|
|
|
return this.ajax(this.urlForSecret(backend, id) + '/rotate', verb);
|
|
|
|
}
|
|
|
|
const { param } = payload;
|
|
|
|
|
|
|
|
delete payload.param;
|
|
|
|
return this.ajax(this.urlForAction(action, backend, id, param), verb, {
|
|
|
|
data: payload,
|
|
|
|
wrapTTL,
|
|
|
|
});
|
|
|
|
},
|
|
|
|
});
|