grafana/pkg/middleware/middleware.go

package middleware

import (
	"encoding/json"
	"strconv"
	"strings"

	"github.com/Unknwon/macaron"
	"github.com/macaron-contrib/session"

	"github.com/grafana/grafana/pkg/bus"
	"github.com/grafana/grafana/pkg/components/apikeygen"
	"github.com/grafana/grafana/pkg/log"
	m "github.com/grafana/grafana/pkg/models"
	"github.com/grafana/grafana/pkg/setting"
)

type Context struct {
	*macaron.Context
	*m.SignedInUser

	Session session.Store

	IsSignedIn         bool
	HasAnonymousAccess bool
}

func GetContextHandler() macaron.Handler {
	return func(c *macaron.Context, sess session.Store) {
		ctx := &Context{
			Context:            c,
			Session:            sess,
			SignedInUser:       &m.SignedInUser{},
			IsSignedIn:         false,
			HasAnonymousAccess: false,
		}

		// try get account id from request
		if userId := getRequestUserId(ctx); userId != 0 {
			query := m.GetSignedInUserQuery{UserId: userId}
			if err := bus.Dispatch(&query); err != nil {
				log.Error(3, "Failed to get user by id, %v, %v", userId, err)
			} else {
				ctx.SignedInUser = query.Result
				ctx.IsSignedIn = true
			}
		} else if keyString := getApiKey(ctx); keyString != "" {
			// base64 decode key
			decoded, err := apikeygen.Decode(keyString)
			if err != nil {
				ctx.JsonApiErr(401, "Invalid API key", err)
				return
			}
			// fetch key
			keyQuery := m.GetApiKeyByNameQuery{KeyName: decoded.Name, OrgId: decoded.OrgId}
			if err := bus.Dispatch(&keyQuery); err != nil {
				ctx.JsonApiErr(401, "Invalid API key", err)
				return
			} else {
				apikey := keyQuery.Result

				// validate api key
				if !apikeygen.IsValid(decoded, apikey.Key) {
					ctx.JsonApiErr(401, "Invalid API key", err)
					return
				}

				ctx.IsSignedIn = true
				ctx.SignedInUser = &m.SignedInUser{}

				// TODO: fix this
				ctx.OrgRole = apikey.Role
				ctx.ApiKeyId = apikey.Id
				ctx.OrgId = apikey.OrgId
			}
		} else if setting.AnonymousEnabled {
			orgQuery := m.GetOrgByNameQuery{Name: setting.AnonymousOrgName}
			if err := bus.Dispatch(&orgQuery); err != nil {
				if err == m.ErrOrgNotFound {
					log.Error(3, "Anonymous access organization name does not exist", nil)
				}
			} else {
				ctx.IsSignedIn = false
				ctx.HasAnonymousAccess = true
				ctx.SignedInUser = &m.SignedInUser{}
				ctx.OrgRole = m.RoleType(setting.AnonymousOrgRole)
				ctx.OrgId = orgQuery.Result.Id
				ctx.OrgName = orgQuery.Result.Name
			}
		}

		c.Map(ctx)
	}
}

// Handle handles and logs error by given status.
func (ctx *Context) Handle(status int, title string, err error) {
	if err != nil {
		log.Error(4, "%s: %v", title, err)
		if setting.Env != setting.PROD {
			ctx.Data["ErrorMsg"] = err
		}
	}

	ctx.Data["Title"] = title
	ctx.HTML(status, strconv.Itoa(status))
}

func (ctx *Context) JsonOK(message string) {
	resp := make(map[string]interface{})

	resp["message"] = message

	ctx.JSON(200, resp)
}

func (ctx *Context) IsApiRequest() bool {
	return strings.HasPrefix(ctx.Req.URL.Path, "/api")
}

func (ctx *Context) JsonApiErr(status int, message string, err error) {
	resp := make(map[string]interface{})

	if err != nil {
		log.Error(4, "%s: %v", message, err)
		if setting.Env != setting.PROD {
			resp["error"] = err.Error()
		}
	}

	switch status {
	case 404:
		resp["message"] = "Not Found"
	case 500:
		resp["message"] = "Internal Server Error"
	}

	if message != "" {
		resp["message"] = message
	}

	ctx.JSON(status, resp)
}

func (ctx *Context) JsonBody(model interface{}) bool {
	b, _ := ctx.Req.Body().Bytes()
	err := json.Unmarshal(b, &model)
	return err == nil
}
Macaron rewrite 2014-10-05 09:50:04 -05:00			`package middleware`

			`import (`
macaron transition progress 2014-10-05 14:13:01 -05:00			`"encoding/json"`
OAuth remake 2014-10-07 16:56:37 -05:00			`"strconv"`
Refactoring of api routes 2015-01-14 07:25:12 -06:00			`"strings"`
Macaron rewrite 2014-10-05 09:50:04 -05:00
			`"github.com/Unknwon/macaron"`
			`"github.com/macaron-contrib/session"`

Changed go package path 2015-02-05 03:37:13 -06:00			`"github.com/grafana/grafana/pkg/bus"`
New implementation for API Keys that only stores hashed api keys, and the client key is base64 decoded json web token with the unhashed key, Closes #1440 2015-02-26 10:23:28 -06:00			`"github.com/grafana/grafana/pkg/components/apikeygen"`
Changed go package path 2015-02-05 03:37:13 -06:00			`"github.com/grafana/grafana/pkg/log"`
			`m "github.com/grafana/grafana/pkg/models"`
			`"github.com/grafana/grafana/pkg/setting"`
Macaron rewrite 2014-10-05 09:50:04 -05:00			`)`

			`type Context struct {`
			`*macaron.Context`
Corrected spelling of SignedInUser (was SignInUser) 2015-01-16 09:17:35 -06:00			`*m.SignedInUser`
Big refactoring for context.User, and how current user info is fetching, now included collaborator role 2015-01-16 07:32:18 -06:00
Macaron rewrite 2014-10-05 09:50:04 -05:00			`Session session.Store`

Worked on anonymous access 2015-01-27 08:45:27 -06:00			`IsSignedIn bool`
			`HasAnonymousAccess bool`
more macaroon stuff 2014-10-06 14:31:54 -05:00			`}`

Macaron rewrite 2014-10-05 09:50:04 -05:00			`func GetContextHandler() macaron.Handler {`
macaron transition progress 2014-10-05 14:13:01 -05:00			`return func(c *macaron.Context, sess session.Store) {`
Macaron rewrite 2014-10-05 09:50:04 -05:00			`ctx := &Context{`
Worked on anonymous access 2015-01-27 08:45:27 -06:00			`Context: c,`
			`Session: sess,`
			`SignedInUser: &m.SignedInUser{},`
			`IsSignedIn: false,`
			`HasAnonymousAccess: false,`
Macaron rewrite 2014-10-05 09:50:04 -05:00			`}`

Refactoring of auth middleware, and starting work on account admin 2015-01-15 05:16:54 -06:00			`// try get account id from request`
User / Account model split, User and account now seperate entities, collaborators are now AccountUsers 2015-01-19 11:01:04 -06:00			`if userId := getRequestUserId(ctx); userId != 0 {`
			`query := m.GetSignedInUserQuery{UserId: userId}`
Big refactoring for context.User, and how current user info is fetching, now included collaborator role 2015-01-16 07:32:18 -06:00			`if err := bus.Dispatch(&query); err != nil {`
User / Account model split, User and account now seperate entities, collaborators are now AccountUsers 2015-01-19 11:01:04 -06:00			`log.Error(3, "Failed to get user by id, %v, %v", userId, err)`
Refactoring of auth middleware, and starting work on account admin 2015-01-15 05:16:54 -06:00			`} else {`
Corrected spelling of SignedInUser (was SignInUser) 2015-01-16 09:17:35 -06:00			`ctx.SignedInUser = query.Result`
Worked on anonymous access 2015-01-27 08:45:27 -06:00			`ctx.IsSignedIn = true`
Refactoring of auth middleware, and starting work on account admin 2015-01-15 05:16:54 -06:00			`}`
New implementation for API Keys that only stores hashed api keys, and the client key is base64 decoded json web token with the unhashed key, Closes #1440 2015-02-26 10:23:28 -06:00			`} else if keyString := getApiKey(ctx); keyString != "" {`
			`// base64 decode key`
			`decoded, err := apikeygen.Decode(keyString)`
			`if err != nil {`
			`ctx.JsonApiErr(401, "Invalid API key", err)`
			`return`
			`}`
			`// fetch key`
			`keyQuery := m.GetApiKeyByNameQuery{KeyName: decoded.Name, OrgId: decoded.OrgId}`
API token -> API key rename 2015-01-27 01:26:11 -06:00			`if err := bus.Dispatch(&keyQuery); err != nil {`
			`ctx.JsonApiErr(401, "Invalid API key", err)`
Api Key role is now correcty added do middleware context 2015-01-16 09:15:35 -06:00			`return`
			`} else {`
New implementation for API Keys that only stores hashed api keys, and the client key is base64 decoded json web token with the unhashed key, Closes #1440 2015-02-26 10:23:28 -06:00			`apikey := keyQuery.Result`

			`// validate api key`
			`if !apikeygen.IsValid(decoded, apikey.Key) {`
			`ctx.JsonApiErr(401, "Invalid API key", err)`
			`return`
			`}`
Api Key role is now correcty added do middleware context 2015-01-16 09:15:35 -06:00
			`ctx.IsSignedIn = true`
User / Account model split, User and account now seperate entities, collaborators are now AccountUsers 2015-01-19 11:01:04 -06:00			`ctx.SignedInUser = &m.SignedInUser{}`
Api Key role is now correcty added do middleware context 2015-01-16 09:15:35 -06:00
User / Account model split, User and account now seperate entities, collaborators are now AccountUsers 2015-01-19 11:01:04 -06:00			`// TODO: fix this`
New implementation for API Keys that only stores hashed api keys, and the client key is base64 decoded json web token with the unhashed key, Closes #1440 2015-02-26 10:23:28 -06:00			`ctx.OrgRole = apikey.Role`
			`ctx.ApiKeyId = apikey.Id`
			`ctx.OrgId = apikey.OrgId`
Api Key role is now correcty added do middleware context 2015-01-16 09:15:35 -06:00			`}`
Worked on anonymous access 2015-01-27 08:45:27 -06:00			`} else if setting.AnonymousEnabled {`
Big Backend Refatoring: Renamed Account -> Org 2015-02-23 13:07:49 -06:00			`orgQuery := m.GetOrgByNameQuery{Name: setting.AnonymousOrgName}`
			`if err := bus.Dispatch(&orgQuery); err != nil {`
			`if err == m.ErrOrgNotFound {`
			`log.Error(3, "Anonymous access organization name does not exist", nil)`
Worked on anonymous access 2015-01-27 08:45:27 -06:00			`}`
			`} else {`
			`ctx.IsSignedIn = false`
			`ctx.HasAnonymousAccess = true`
			`ctx.SignedInUser = &m.SignedInUser{}`
Big Backend Refatoring: Renamed Account -> Org 2015-02-23 13:07:49 -06:00			`ctx.OrgRole = m.RoleType(setting.AnonymousOrgRole)`
			`ctx.OrgId = orgQuery.Result.Id`
			`ctx.OrgName = orgQuery.Result.Name`
Worked on anonymous access 2015-01-27 08:45:27 -06:00			`}`
Refactoring of auth middleware, and starting work on account admin 2015-01-15 05:16:54 -06:00			`}`

Macaron rewrite 2014-10-05 09:50:04 -05:00			`c.Map(ctx)`
			`}`
			`}`

			`// Handle handles and logs error by given status.`
			`func (ctx *Context) Handle(status int, title string, err error) {`
			`if err != nil {`
			`log.Error(4, "%s: %v", title, err)`
Added disable user sign up feature 2015-01-29 08:46:54 -06:00			`if setting.Env != setting.PROD {`
Macaron rewrite 2014-10-05 09:50:04 -05:00			`ctx.Data["ErrorMsg"] = err`
			`}`
			`}`

fixed error handling, and error logging for panel rendering 2015-02-05 05:23:24 -06:00			`ctx.Data["Title"] = title`
OAuth remake 2014-10-07 16:56:37 -05:00			`ctx.HTML(status, strconv.Itoa(status))`
Macaron rewrite 2014-10-05 09:50:04 -05:00			`}`
macaron transition progress 2014-10-05 14:13:01 -05:00
More general backend work, in the middle of the night... Zzzz 2014-12-16 20:09:54 -06:00			`func (ctx *Context) JsonOK(message string) {`
			`resp := make(map[string]interface{})`

			`resp["message"] = message`

			`ctx.JSON(200, resp)`
			`}`

Refactoring of api routes 2015-01-14 07:25:12 -06:00			`func (ctx *Context) IsApiRequest() bool {`
			`return strings.HasPrefix(ctx.Req.URL.Path, "/api")`
			`}`

working on oauth 2014-10-07 14:54:38 -05:00			`func (ctx *Context) JsonApiErr(status int, message string, err error) {`
more macaroon stuff 2014-10-06 14:31:54 -05:00			`resp := make(map[string]interface{})`

			`if err != nil {`
			`log.Error(4, "%s: %v", message, err)`
started work datasources admin 2014-12-16 05:04:08 -06:00			`if setting.Env != setting.PROD {`
			`resp["error"] = err.Error()`
more macaroon stuff 2014-10-06 14:31:54 -05:00			`}`
			`}`

			`switch status {`
			`case 404:`
			`resp["message"] = "Not Found"`
			`case 500:`
			`resp["message"] = "Internal Server Error"`
			`}`

			`if message != "" {`
			`resp["message"] = message`
			`}`

Tried postgres 2014-11-24 03:17:13 -06:00			`ctx.JSON(status, resp)`
more macaroon stuff 2014-10-06 14:31:54 -05:00			`}`

macaron transition progress 2014-10-05 14:13:01 -05:00			`func (ctx *Context) JsonBody(model interface{}) bool {`
Made it it compile again 2014-11-20 02:16:28 -06:00			`b, _ := ctx.Req.Body().Bytes()`
macaron transition progress 2014-10-05 14:13:01 -05:00			`err := json.Unmarshal(b, &model)`
			`return err == nil`
			`}`