core: add generic request forwarding bits to oss (#6866)

2019-06-11 13:13:03 -07:00 · 2019-06-11 13:13:03 -07:00 · 08e17cc111
parent e2e5e16ff2
commit 08e17cc111
2 changed files with 18 additions and 0 deletions
--- a/sdk/logical/system_view.go
+++ b/sdk/logical/system_view.go
@ -72,6 +72,7 @@ type SystemView interface {

 type ExtendedSystemView interface {
 	Auditor() Auditor
+	ForwardGenericRequest(context.Context, *Request) (*Response, error)
 }

 type StaticSystemView struct {
--- a/vault/dynamic_system_view.go
+++ b/vault/dynamic_system_view.go
@ -16,6 +16,12 @@ import (
 	"github.com/hashicorp/vault/sdk/version"
 )

+type ctxKeyForwardedRequestMountAccessor struct{}
+
+func (c ctxKeyForwardedRequestMountAccessor) String() string {
+	return "forwarded-req-mount-accessor"
+}
+
 type dynamicSystemView struct {
 	core       *Core
 	mountEntry *MountEntry
@ -33,6 +39,17 @@ func (e extendedSystemView) Auditor() logical.Auditor {
 	}
 }

+func (e extendedSystemView) ForwardGenericRequest(ctx context.Context, req *logical.Request) (*logical.Response, error) {
+	// Forward the request if allowed
+	if couldForward(e.core) {
+		ctx = namespace.ContextWithNamespace(ctx, e.mountEntry.Namespace())
+		ctx = context.WithValue(ctx, ctxKeyForwardedRequestMountAccessor{}, e.mountEntry.Accessor)
+		return forward(ctx, e.core, req)
+	}
+
+	return nil, logical.ErrReadOnly
+}
+
 func (d dynamicSystemView) DefaultLeaseTTL() time.Duration {
 	def, _ := d.fetchTTLs()
 	return def