luxolus
/
open-vault
2
0
Fork 0
Code Issues 1 Pull Requests Releases Activity
open-vault/ui/app/services/control-group.js

140 lines
4.2 KiB
JavaScript
Raw Blame History

import { get } from '@ember/object';
import Service, { inject as service } from '@ember/service';
import RSVP from 'rsvp';
import ControlGroupError from 'vault/lib/control-group-error';
import getStorage from 'vault/lib/token-storage';
const CONTROL_GROUP_PREFIX = 'vault:cg-';
const TOKEN_SEPARATOR = '☃';
// list of endpoints that return wrapped responses
// without `wrap-ttl`
const WRAPPED_RESPONSE_PATHS = [
'sys/wrapping/rewrap',
'sys/wrapping/wrap',
'sys/replication/performance/primary/secondary-token',
'sys/replication/dr/primary/secondary-token',
];
const storageKey = (accessor, path) => {
return `${CONTROL_GROUP_PREFIX}${accessor}${TOKEN_SEPARATOR}${path}`;
};
export { storageKey, CONTROL_GROUP_PREFIX, TOKEN_SEPARATOR };
export default Service.extend({
version: service(),
router: service(),
storage() {
return getStorage();
},
keyFromAccessor(accessor) {
let keys = this.storage().keys() || [];
let returnKey = keys
.filter(k => k.startsWith(CONTROL_GROUP_PREFIX))
.find(key => key.replace(CONTROL_GROUP_PREFIX, '').startsWith(accessor));
return returnKey ? returnKey : null;
},
storeControlGroupToken(info) {
let key = storageKey(info.accessor, info.creation_path);
this.storage().setItem(key, info);
},
deleteControlGroupToken(accessor) {
this.unmarkTokenForUnwrap();
let key = this.keyFromAccessor(accessor);
this.storage().removeItem(key);
},
deleteTokens() {
let keys = this.storage().keys() || [];
keys.filter(k => k.startsWith(CONTROL_GROUP_PREFIX)).forEach(key => this.storage().removeItem(key));
},
wrapInfoForAccessor(accessor) {
let key = this.keyFromAccessor(accessor);
return key ? this.storage().getItem(key) : null;
},
tokenToUnwrap: null,
markTokenForUnwrap(accessor) {
this.set('tokenToUnwrap', this.wrapInfoForAccessor(accessor));
},
unmarkTokenForUnwrap() {
this.set('tokenToUnwrap', null);
},
tokenForUrl(url) {
if (this.get('version.isOSS')) {
return null;
}
let pathForUrl = url.replace('/v1/', '');
let tokenInfo = this.get('tokenToUnwrap');
if (tokenInfo && tokenInfo.creation_path === pathForUrl) {
let { token, accessor, creation_time } = tokenInfo;
return { token, accessor, creationTime: creation_time };
}
return null;
},
checkForControlGroup(callbackArgs, response, wasWrapTTLRequested) {
let creationPath = response && get(response, 'wrap_info.creation_path');
if (
this.get('version.isOSS') ||
wasWrapTTLRequested ||
!response ||
(creationPath && WRAPPED_RESPONSE_PATHS.includes(creationPath)) ||
!response.wrap_info
) {
return RSVP.resolve(...callbackArgs);
}
let error = new ControlGroupError(response.wrap_info);
return RSVP.reject(error);
},
urlFromTransition(transition) {
let routes = Object.keys(transition.params);
let params = [];
for (let route of routes) {
let param = transition.params[route];
if (Object.keys(param).length) {
params.push(param);
}
}
let url = this.get('router').urlFor(transition.targetName, ...params, {
queryParams: transition.queryParams,
});
return url.replace('/ui', '');
},
handleError(error, transition) {
let { accessor, token, creation_path, creation_time, ttl } = error;
let url = this.urlFromTransition(transition);
let data = { accessor, token, creation_path, creation_time, ttl };
data.uiParams = { url };
this.storeControlGroupToken(data);
return this.get('router').transitionTo('vault.cluster.access.control-group-accessor', accessor);
},
logFromError(error) {
let { accessor, token, creation_path, creation_time, ttl } = error;
let data = { accessor, token, creation_path, creation_time, ttl };
this.storeControlGroupToken(data);
let href = this.get('router').urlFor('vault.cluster.access.control-group-accessor', accessor);
let lines = [
`A Control Group was encountered at ${error.creation_path}.`,
`The Control Group Token is ${error.token}.`,
`The Accessor is ${error.accessor}.`,
`Visit <a href='${href}'>${href}</a> for more details.`,
];
return {
type: 'error-with-html',
content: lines.join('\n'),
};
},
});
Reference in New Issue View Git Blame Copy Permalink