2021-03-11 13:28:00 -06:00
|
|
|
package api
|
|
|
|
|
|
|
|
import (
|
2021-03-24 06:43:25 -05:00
|
|
|
"bytes"
|
|
|
|
"encoding/json"
|
2021-03-11 13:28:00 -06:00
|
|
|
"fmt"
|
2021-04-07 14:36:50 -05:00
|
|
|
"io"
|
2021-03-24 06:43:25 -05:00
|
|
|
"net/http"
|
2021-04-07 14:36:50 -05:00
|
|
|
"net/url"
|
2021-03-11 13:28:00 -06:00
|
|
|
"regexp"
|
2021-03-24 06:43:25 -05:00
|
|
|
"strconv"
|
2021-04-07 00:42:43 -05:00
|
|
|
"strings"
|
2021-03-17 05:47:03 -05:00
|
|
|
|
2021-04-13 12:58:34 -05:00
|
|
|
"github.com/grafana/grafana-plugin-sdk-go/data"
|
2021-03-24 06:43:25 -05:00
|
|
|
"github.com/grafana/grafana/pkg/api/response"
|
2021-11-10 04:52:16 -06:00
|
|
|
"github.com/grafana/grafana/pkg/expr"
|
2021-06-15 11:30:21 -05:00
|
|
|
"github.com/grafana/grafana/pkg/infra/log"
|
2021-03-24 06:43:25 -05:00
|
|
|
"github.com/grafana/grafana/pkg/models"
|
|
|
|
"github.com/grafana/grafana/pkg/services/datasourceproxy"
|
|
|
|
"github.com/grafana/grafana/pkg/services/datasources"
|
2021-04-19 13:26:04 -05:00
|
|
|
apimodels "github.com/grafana/grafana/pkg/services/ngalert/api/tooling/definitions"
|
2021-04-13 12:58:34 -05:00
|
|
|
"github.com/grafana/grafana/pkg/services/ngalert/eval"
|
|
|
|
ngmodels "github.com/grafana/grafana/pkg/services/ngalert/models"
|
|
|
|
"github.com/grafana/grafana/pkg/setting"
|
|
|
|
"github.com/grafana/grafana/pkg/util"
|
2021-10-11 07:30:59 -05:00
|
|
|
"github.com/grafana/grafana/pkg/web"
|
2021-05-28 10:55:03 -05:00
|
|
|
"github.com/pkg/errors"
|
2021-03-24 06:43:25 -05:00
|
|
|
"gopkg.in/yaml.v3"
|
2021-03-11 13:28:00 -06:00
|
|
|
)
|
|
|
|
|
|
|
|
var searchRegex = regexp.MustCompile(`\{(\w+)\}`)
|
|
|
|
|
2021-05-28 10:55:03 -05:00
|
|
|
var NotImplementedResp = ErrResp(http.StatusNotImplemented, errors.New("endpoint not implemented"), "")
|
|
|
|
|
2021-03-11 13:28:00 -06:00
|
|
|
func toMacaronPath(path string) string {
|
|
|
|
return string(searchRegex.ReplaceAllFunc([]byte(path), func(s []byte) []byte {
|
|
|
|
m := string(s[1 : len(s)-1])
|
|
|
|
return []byte(fmt.Sprintf(":%s", m))
|
|
|
|
}))
|
|
|
|
}
|
2021-03-17 05:47:03 -05:00
|
|
|
|
2021-03-24 06:43:25 -05:00
|
|
|
func backendType(ctx *models.ReqContext, cache datasources.CacheService) (apimodels.Backend, error) {
|
2021-10-11 07:30:59 -05:00
|
|
|
recipient := web.Params(ctx.Req)[":Recipient"]
|
2021-03-24 06:43:25 -05:00
|
|
|
if recipient == apimodels.GrafanaBackend.String() {
|
|
|
|
return apimodels.GrafanaBackend, nil
|
|
|
|
}
|
|
|
|
if datasourceID, err := strconv.ParseInt(recipient, 10, 64); err == nil {
|
|
|
|
if ds, err := cache.GetDatasource(datasourceID, ctx.SignedInUser, ctx.SkipCache); err == nil {
|
|
|
|
switch ds.Type {
|
|
|
|
case "loki", "prometheus":
|
|
|
|
return apimodels.LoTexRulerBackend, nil
|
2021-04-07 00:42:43 -05:00
|
|
|
case "alertmanager":
|
2021-03-29 10:18:25 -05:00
|
|
|
return apimodels.AlertmanagerBackend, nil
|
2021-03-24 06:43:25 -05:00
|
|
|
default:
|
|
|
|
return 0, fmt.Errorf("unexpected backend type (%v)", ds.Type)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return 0, fmt.Errorf("unexpected backend type (%v)", recipient)
|
|
|
|
}
|
|
|
|
|
|
|
|
// macaron unsafely asserts the http.ResponseWriter is an http.CloseNotifier, which will panic.
|
|
|
|
// Here we impl it, which will ensure this no longer happens, but neither will we take
|
|
|
|
// advantage cancelling upstream requests when the downstream has closed.
|
|
|
|
// NB: http.CloseNotifier is a deprecated ifc from before the context pkg.
|
|
|
|
type safeMacaronWrapper struct {
|
|
|
|
http.ResponseWriter
|
|
|
|
}
|
|
|
|
|
|
|
|
func (w *safeMacaronWrapper) CloseNotify() <-chan bool {
|
|
|
|
return make(chan bool)
|
|
|
|
}
|
|
|
|
|
|
|
|
// replacedResponseWriter overwrites the underlying responsewriter used by a *models.ReqContext.
|
|
|
|
// It's ugly because it needs to replace a value behind a few nested pointers.
|
|
|
|
func replacedResponseWriter(ctx *models.ReqContext) (*models.ReqContext, *response.NormalResponse) {
|
|
|
|
resp := response.CreateNormalResponse(make(http.Header), nil, 0)
|
|
|
|
cpy := *ctx
|
|
|
|
cpyMCtx := *cpy.Context
|
2021-10-11 07:30:59 -05:00
|
|
|
cpyMCtx.Resp = web.NewResponseWriter(ctx.Req.Method, &safeMacaronWrapper{resp})
|
2021-03-24 06:43:25 -05:00
|
|
|
cpy.Context = &cpyMCtx
|
|
|
|
return &cpy, resp
|
|
|
|
}
|
|
|
|
|
|
|
|
type AlertingProxy struct {
|
2021-08-25 08:11:22 -05:00
|
|
|
DataProxy *datasourceproxy.DataSourceProxyService
|
2021-03-24 06:43:25 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
// withReq proxies a different request
|
|
|
|
func (p *AlertingProxy) withReq(
|
|
|
|
ctx *models.ReqContext,
|
2021-04-07 14:36:50 -05:00
|
|
|
method string,
|
|
|
|
u *url.URL,
|
|
|
|
body io.Reader,
|
2021-05-27 06:12:29 -05:00
|
|
|
extractor func(*response.NormalResponse) (interface{}, error),
|
2021-04-07 14:36:50 -05:00
|
|
|
headers map[string]string,
|
2021-03-24 06:43:25 -05:00
|
|
|
) response.Response {
|
2021-04-07 14:36:50 -05:00
|
|
|
req, err := http.NewRequest(method, u.String(), body)
|
|
|
|
if err != nil {
|
2021-05-28 10:55:03 -05:00
|
|
|
return ErrResp(http.StatusBadRequest, err, "")
|
2021-04-07 14:36:50 -05:00
|
|
|
}
|
|
|
|
for h, v := range headers {
|
|
|
|
req.Header.Add(h, v)
|
|
|
|
}
|
2021-03-24 06:43:25 -05:00
|
|
|
newCtx, resp := replacedResponseWriter(ctx)
|
2021-09-01 04:18:30 -05:00
|
|
|
newCtx.Req = req
|
2021-09-14 11:34:56 -05:00
|
|
|
p.DataProxy.ProxyDatasourceRequestWithID(newCtx, ctx.ParamsInt64(":Recipient"))
|
2021-03-24 06:43:25 -05:00
|
|
|
|
|
|
|
status := resp.Status()
|
|
|
|
if status >= 400 {
|
2021-04-07 00:42:43 -05:00
|
|
|
errMessage := string(resp.Body())
|
|
|
|
// if Content-Type is application/json
|
|
|
|
// and it is successfully decoded and contains a message
|
|
|
|
// return this as response error message
|
|
|
|
if strings.HasPrefix(resp.Header().Get("Content-Type"), "application/json") {
|
|
|
|
var m map[string]interface{}
|
|
|
|
if err := json.Unmarshal(resp.Body(), &m); err == nil {
|
|
|
|
if message, ok := m["message"]; ok {
|
|
|
|
errMessage = message.(string)
|
|
|
|
}
|
|
|
|
}
|
2021-06-04 12:57:24 -05:00
|
|
|
} else if strings.HasPrefix(resp.Header().Get("Content-Type"), "text/html") {
|
|
|
|
// if Content-Type is text/html
|
|
|
|
// do not return the body
|
|
|
|
errMessage = "redacted html"
|
2021-04-07 00:42:43 -05:00
|
|
|
}
|
2021-05-28 10:55:03 -05:00
|
|
|
return ErrResp(status, errors.New(errMessage), "")
|
2021-03-24 06:43:25 -05:00
|
|
|
}
|
|
|
|
|
2021-05-27 06:12:29 -05:00
|
|
|
t, err := extractor(resp)
|
2021-03-24 06:43:25 -05:00
|
|
|
if err != nil {
|
2021-05-28 10:55:03 -05:00
|
|
|
return ErrResp(http.StatusInternalServerError, err, "")
|
2021-03-24 06:43:25 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
b, err := json.Marshal(t)
|
|
|
|
if err != nil {
|
2021-05-28 10:55:03 -05:00
|
|
|
return ErrResp(http.StatusInternalServerError, err, "")
|
2021-03-24 06:43:25 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
return response.JSON(status, b)
|
|
|
|
}
|
|
|
|
|
2021-05-27 06:12:29 -05:00
|
|
|
func yamlExtractor(v interface{}) func(*response.NormalResponse) (interface{}, error) {
|
|
|
|
return func(resp *response.NormalResponse) (interface{}, error) {
|
|
|
|
contentType := resp.Header().Get("Content-Type")
|
|
|
|
if !strings.Contains(contentType, "yaml") {
|
|
|
|
return nil, fmt.Errorf("unexpected content type from upstream. expected YAML, got %v", contentType)
|
|
|
|
}
|
|
|
|
decoder := yaml.NewDecoder(bytes.NewReader(resp.Body()))
|
2021-03-24 06:43:25 -05:00
|
|
|
decoder.KnownFields(true)
|
|
|
|
|
|
|
|
err := decoder.Decode(v)
|
|
|
|
|
|
|
|
return v, err
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2021-05-27 06:12:29 -05:00
|
|
|
func jsonExtractor(v interface{}) func(*response.NormalResponse) (interface{}, error) {
|
2021-03-24 06:43:25 -05:00
|
|
|
if v == nil {
|
|
|
|
// json unmarshal expects a pointer
|
|
|
|
v = &map[string]interface{}{}
|
|
|
|
}
|
2021-05-27 06:12:29 -05:00
|
|
|
return func(resp *response.NormalResponse) (interface{}, error) {
|
|
|
|
contentType := resp.Header().Get("Content-Type")
|
|
|
|
if !strings.Contains(contentType, "json") {
|
|
|
|
return nil, fmt.Errorf("unexpected content type from upstream. expected JSON, got %v", contentType)
|
|
|
|
}
|
|
|
|
return v, json.Unmarshal(resp.Body(), v)
|
2021-03-24 06:43:25 -05:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2021-05-27 06:12:29 -05:00
|
|
|
func messageExtractor(resp *response.NormalResponse) (interface{}, error) {
|
|
|
|
return map[string]string{"message": string(resp.Body())}, nil
|
2021-03-24 06:43:25 -05:00
|
|
|
}
|
2021-04-13 12:58:34 -05:00
|
|
|
|
|
|
|
func validateCondition(c ngmodels.Condition, user *models.SignedInUser, skipCache bool, datasourceCache datasources.CacheService) error {
|
|
|
|
if len(c.Data) == 0 {
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2021-04-28 03:31:51 -05:00
|
|
|
refIDs, err := validateQueriesAndExpressions(c.Data, user, skipCache, datasourceCache)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
2021-04-13 12:58:34 -05:00
|
|
|
}
|
|
|
|
|
2021-04-28 03:31:51 -05:00
|
|
|
t := make([]string, 0, len(refIDs))
|
|
|
|
for refID := range refIDs {
|
|
|
|
t = append(t, refID)
|
|
|
|
}
|
|
|
|
if _, ok := refIDs[c.Condition]; !ok {
|
|
|
|
return fmt.Errorf("condition %s not found in any query or expression: it should be one of: [%s]", c.Condition, strings.Join(t, ","))
|
2021-04-13 12:58:34 -05:00
|
|
|
}
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2021-04-28 03:31:51 -05:00
|
|
|
func validateQueriesAndExpressions(data []ngmodels.AlertQuery, user *models.SignedInUser, skipCache bool, datasourceCache datasources.CacheService) (map[string]struct{}, error) {
|
|
|
|
refIDs := make(map[string]struct{})
|
2021-04-21 14:44:50 -05:00
|
|
|
if len(data) == 0 {
|
2021-04-28 03:31:51 -05:00
|
|
|
return nil, nil
|
2021-04-21 14:44:50 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
for _, query := range data {
|
|
|
|
datasourceUID, err := query.GetDatasource()
|
|
|
|
if err != nil {
|
2021-04-28 03:31:51 -05:00
|
|
|
return nil, err
|
2021-04-21 14:44:50 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
isExpression, err := query.IsExpression()
|
|
|
|
if err != nil {
|
2021-04-28 03:31:51 -05:00
|
|
|
return nil, err
|
2021-04-21 14:44:50 -05:00
|
|
|
}
|
|
|
|
if isExpression {
|
2021-04-28 03:31:51 -05:00
|
|
|
refIDs[query.RefID] = struct{}{}
|
2021-04-21 14:44:50 -05:00
|
|
|
continue
|
|
|
|
}
|
|
|
|
|
|
|
|
_, err = datasourceCache.GetDatasourceByUID(datasourceUID, user, skipCache)
|
|
|
|
if err != nil {
|
2021-04-28 03:31:51 -05:00
|
|
|
return nil, fmt.Errorf("invalid query %s: %w: %s", query.RefID, err, datasourceUID)
|
2021-04-21 14:44:50 -05:00
|
|
|
}
|
2021-04-28 03:31:51 -05:00
|
|
|
refIDs[query.RefID] = struct{}{}
|
2021-04-21 14:44:50 -05:00
|
|
|
}
|
2021-04-28 03:31:51 -05:00
|
|
|
return refIDs, nil
|
2021-04-21 14:44:50 -05:00
|
|
|
}
|
|
|
|
|
2021-11-10 04:52:16 -06:00
|
|
|
func conditionEval(c *models.ReqContext, cmd ngmodels.EvalAlertConditionCommand, datasourceCache datasources.CacheService, expressionService *expr.Service, cfg *setting.Cfg, log log.Logger) response.Response {
|
2021-04-13 12:58:34 -05:00
|
|
|
evalCond := ngmodels.Condition{
|
|
|
|
Condition: cmd.Condition,
|
|
|
|
OrgID: c.SignedInUser.OrgId,
|
|
|
|
Data: cmd.Data,
|
|
|
|
}
|
|
|
|
if err := validateCondition(evalCond, c.SignedInUser, c.SkipCache, datasourceCache); err != nil {
|
2021-05-28 10:55:03 -05:00
|
|
|
return ErrResp(http.StatusBadRequest, err, "invalid condition")
|
2021-04-13 12:58:34 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
now := cmd.Now
|
|
|
|
if now.IsZero() {
|
|
|
|
now = timeNow()
|
|
|
|
}
|
|
|
|
|
2021-06-15 11:30:21 -05:00
|
|
|
evaluator := eval.Evaluator{Cfg: cfg, Log: log}
|
2021-11-10 04:52:16 -06:00
|
|
|
evalResults, err := evaluator.ConditionEval(&evalCond, now, expressionService)
|
2021-04-13 12:58:34 -05:00
|
|
|
if err != nil {
|
2021-05-28 10:55:03 -05:00
|
|
|
return ErrResp(http.StatusBadRequest, err, "Failed to evaluate conditions")
|
2021-04-13 12:58:34 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
frame := evalResults.AsDataFrame()
|
2021-04-21 14:44:50 -05:00
|
|
|
return response.JSONStreaming(http.StatusOK, util.DynMap{
|
2021-04-13 12:58:34 -05:00
|
|
|
"instances": []*data.Frame{&frame},
|
|
|
|
})
|
|
|
|
}
|
2021-05-28 10:55:03 -05:00
|
|
|
|
|
|
|
// ErrorResp creates a response with a visible error
|
|
|
|
func ErrResp(status int, err error, msg string, args ...interface{}) *response.NormalResponse {
|
|
|
|
if msg != "" {
|
|
|
|
err = errors.WithMessagef(err, msg, args...)
|
|
|
|
}
|
|
|
|
return response.Error(status, err.Error(), nil)
|
|
|
|
}
|
2021-08-06 07:06:56 -05:00
|
|
|
|
|
|
|
// accessForbiddenResp creates a response of forbidden access.
|
|
|
|
func accessForbiddenResp() response.Response {
|
|
|
|
return ErrResp(http.StatusForbidden, errors.New("Permission denied"), "")
|
|
|
|
}
|