IntenseWebs/grafana
3
0
Fork 0
mirror of https://github.com/grafana/grafana.git synced 2024-11-26 02:40:26 -06:00
Code Issues Packages Projects Releases Wiki Activity
0e8f19ca6a
grafana/pkg/api
History
linoman 0e8f19ca6a
Auth: Reduce restriction with non-user accounts (#74397) 
* Reduce restrictions with non-user accounts

* Revert restrictions on anonymous accounts

* Change log level from warning to debug

* Change log messages to upper case
2023-09-06 13:37:54 +02:00
..
apierrors Chore: Fix status codes for nested folders (#59087) 2022-11-22 16:06:39 +02:00
avatar Chore: Fix goimports grouping in pkg/api (#62419) 2023-01-30 08:18:26 +00:00
datasource backend/datasources: move datasources models into the datasources service package (#51267) 2022-06-27 12:23:15 -04:00
dtos Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
frontendlogging Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
pluginproxy Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
response Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
routing Chore: Move ReqContext to contexthandler service (#62102) 2023-01-27 08:50:36 +01:00
static API: Extract OpenAPI specification from source code using go-swagger (#40528) 2022-02-08 13:38:43 +01:00
accesscontrol.go Auth: Move access control API to SignedInUser interface (#73144) 2023-08-18 11:42:18 +01:00
admin_encryption.go Config: Add configuration option to define custom user-facing general error message for certain error types (#70023) 2023-06-16 10:46:47 -05:00
admin_provisioning_test.go RBAC: Rewrite provisioning rbac tests (#61752) 2023-01-19 13:49:57 +01:00
admin_provisioning.go Chore: Move ReqContext to contexthandler service (#62102) 2023-01-27 08:50:36 +01:00
admin_test.go Chore: Fix goimports grouping in pkg/api (#62419) 2023-01-30 08:18:26 +00:00
admin_users_test.go Auth: Lock down Grafana admin role updates if the role is externally synced (#72677) 2023-08-01 16:39:08 +01:00
admin_users.go Chore: Port user services to identity.Requester (#73851) 2023-08-28 10:42:24 +02:00
admin.go Auth: Move access control API to SignedInUser interface (#73144) 2023-08-18 11:42:18 +01:00
alerting.go Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
annotations_test.go RBAC: remove some IsDisabled checks (#69272) 2023-05-31 09:58:57 +01:00
annotations.go Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
api.go PublicDashboards: Variables refactor (#73476) 2023-08-25 13:56:02 -05:00
apikey.go Chore: Port user services to identity.Requester (#73851) 2023-08-28 10:42:24 +02:00
basic_auth_test.go Macaron: remove custom Request type (#37874) 2021-09-01 11:18:30 +02:00
basic_auth.go Macaron: remove custom Request type (#37874) 2021-09-01 11:18:30 +02:00
common_test.go Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
dashboard_permission_test.go authz: Clean up acl endpoints and dashboard guardian (#73746) 2023-08-24 15:37:54 +02:00
dashboard_permission.go authz: Clean up acl endpoints and dashboard guardian (#73746) 2023-08-24 15:37:54 +02:00
dashboard_snapshot_test.go Authz: fix snapshot tests legacy guardian (#73823) 2023-08-28 09:49:10 +02:00
dashboard_snapshot.go Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
dashboard_test.go Auth: Implement requester interface in access control module (#74289) 2023-09-06 11:16:10 +02:00
dashboard.go Auth: Reduce restriction with non-user accounts (#74397) 2023-09-06 13:37:54 +02:00
dataproxy.go Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
datasources_test.go Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
datasources.go Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
fakes.go Plugins: Add context to StaticRouteResolver and ErrorResolver interfaces (#73121) 2023-08-10 10:32:12 +02:00
featuremgmt_test.go Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
featuremgmt.go Feature Toggles: Create API for updating feature toggle state from the feature toggle admin page (#73022) 2023-08-09 11:32:28 -04:00
folder_bench_test.go Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
folder_permission_test.go authz: Clean up acl endpoints and dashboard guardian (#73746) 2023-08-24 15:37:54 +02:00
folder_permission.go authz: Clean up acl endpoints and dashboard guardian (#73746) 2023-08-24 15:37:54 +02:00
folder_test.go Chore: prepare for removing RBACenabled config option (#73845) 2023-08-25 17:13:46 +02:00
folder.go Chore: return a JSON on folder DELETE (#73604) 2023-08-24 18:10:58 +02:00
frontend_logging_test.go Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
frontend_logging.go Plugins: Add context to StaticRouteResolver and ErrorResolver interfaces (#73121) 2023-08-10 10:32:12 +02:00
frontend_metrics.go Chore: Move ReqContext to contexthandler service (#62102) 2023-01-27 08:50:36 +01:00
frontendsettings_test.go Chore: remove IsDisabled method for access control (#74340) 2023-09-05 11:04:39 +01:00
frontendsettings.go Chore: remove IsDisabled method for access control (#74340) 2023-09-05 11:04:39 +01:00
grafana_com_proxy.go API: don't re-add /api suffix to grafana.com API URL (#62280) 2023-01-27 10:20:55 +01:00
health_test.go Chore: Fix goimports grouping in pkg/api (#62419) 2023-01-30 08:18:26 +00:00
health.go Chore: Remove Store interface and use db.DB instead (#60160) 2022-12-13 11:03:36 +01:00
http_server_test.go Chore: Fix goimports grouping in pkg/api (#62419) 2023-01-30 08:18:26 +00:00
http_server.go Chore: clean up access control for data sources (#73010) 2023-08-21 14:26:49 +01:00
index.go PublicDashboards: Variables refactor (#73476) 2023-08-25 13:56:02 -05:00
login_oauth_test.go Auth: Remove auth broker flag and clean up login handlers (#73109) 2023-08-10 09:56:04 +02:00
login_oauth.go Auth: Remove unused Authenticator service (#73143) 2023-08-10 11:02:32 +02:00
login_test.go Auth: Use authn.Service for all tests (#72921) 2023-08-09 08:54:52 +02:00
login.go Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
metrics_test.go Plugins: Migrate PluginStore mock to pre-existing fakes package (#71664) 2023-07-17 10:21:44 +00:00
metrics.go Plugins: Refactor creation of plugin context to dedicated service (#66451) 2023-06-08 13:59:51 +02:00
openapi3.go Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
org_invite_test.go Chore: Fix goimports grouping in pkg/api (#62419) 2023-01-30 08:18:26 +00:00
org_invite.go Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
org_test.go Chore: Port user services to identity.Requester (#73851) 2023-08-28 10:42:24 +02:00
org_users_test.go Contexthandler: Remove code that is no longer used (#73101) 2023-08-09 15:17:59 +02:00
org_users.go Chore: Port user services to identity.Requester (#73851) 2023-08-28 10:42:24 +02:00
org.go Chore: Port user services to identity.Requester (#73851) 2023-08-28 10:42:24 +02:00
password.go Chore: Remove result fields from login (#65136) 2023-03-28 20:32:21 +02:00
playlist_play.go Chore: Remove result field from search (#65583) 2023-03-30 11:28:12 +02:00
playlist.go Chore: Move ReqContext to contexthandler service (#62102) 2023-01-27 08:50:36 +01:00
plugin_dashboards_test.go Chore: Fix goimports grouping in pkg/api (#62419) 2023-01-30 08:18:26 +00:00
plugin_dashboards.go Chore: Move ReqContext to contexthandler service (#62102) 2023-01-27 08:50:36 +01:00
plugin_metrics_test.go Chore: Fix goimports grouping in pkg/api (#62419) 2023-01-30 08:18:26 +00:00
plugin_metrics.go Chore: Fix goimports grouping in pkg/api (#62419) 2023-01-30 08:18:26 +00:00
plugin_proxy_test.go Plugins: Handle app plugin proxy routes per request (#51835) 2022-08-23 13:05:31 +02:00
plugin_proxy.go Plugins: Only configure plugin proxy transport once (#71735) 2023-07-17 13:37:03 +02:00
plugin_resource_test.go Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
plugin_resource.go Plugins: Account for nil user when constructing plugin context (#69811) 2023-06-08 19:36:41 +03:00
plugins_test.go Chore: remove IsDisabled method for access control (#74340) 2023-09-05 11:04:39 +01:00
plugins.go Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
preferences_test.go Chore: remove tests for legacy AC, update other tests to work with RBAC (#68895) 2023-05-23 15:29:20 +01:00
preferences.go Preferences: Fixing preference PUT validation (#68557) 2023-05-16 19:38:51 +02:00
quota_test.go MESA: Allow using synced permissions (#71377) 2023-07-12 13:28:04 +03:00
quota.go Chore: Move ReqContext to contexthandler service (#62102) 2023-01-27 08:50:36 +01:00
README.md API: Enable serving Swagger UI by default and add docs and guidelines (#63489) 2023-03-01 16:36:37 +02:00
render.go Chore: Move ReqContext to contexthandler service (#62102) 2023-01-27 08:50:36 +01:00
search.go Search API: Search by folder UID (#65040) 2023-08-04 12:43:47 +03:00
short_url_test.go Chore: Fix goimports grouping in pkg/api (#62419) 2023-01-30 08:18:26 +00:00
short_url.go Chore: Move ReqContext to contexthandler service (#62102) 2023-01-27 08:50:36 +01:00
signup.go Orgs: Remove auto assign globals (#63754) 2023-02-27 10:23:38 +01:00
swagger_responses.go Chore: Move swagger definitions to the handlers (#52643) 2022-07-27 09:54:37 -04:00
swagger_tags.json Chore: Move swagger definitions to the handlers (#52643) 2022-07-27 09:54:37 -04:00
swagger.go Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
team_members_test.go Chore: Remove legacy AC checks from team (#68715) 2023-05-22 18:41:53 +02:00
team_members.go Chore: Remove legacy AC checks from team (#68715) 2023-05-22 18:41:53 +02:00
team_test.go Chore: Remove legacy AC checks from team (#68715) 2023-05-22 18:41:53 +02:00
team.go Auth: Move access control API to SignedInUser interface (#73144) 2023-08-18 11:42:18 +01:00
user_test.go Chore: use any rather than interface{} (#74066) 2023-08-30 18:46:47 +03:00
user_token_test.go AuthToken: client token rotation fix (#65709) 2023-03-31 16:44:08 +02:00
user_token.go Chore: Port user services to identity.Requester (#73851) 2023-08-28 10:42:24 +02:00
user.go Chore: Port user services to identity.Requester (#73851) 2023-08-28 10:42:24 +02:00
utils.go authz: Clean up acl endpoints and dashboard guardian (#73746) 2023-08-24 15:37:54 +02:00

README.md

OpenAPI specifications

Since version 8.4, HTTP API details are specified using OpenAPI v2. Starting from version 9.1, there is also an OpenAPI v3 specification (generated by the v2 one using this script).

OpenAPI annotations

The OpenAPI v2 specification is generated automatically from the annotated Go code using go-swagger which scans the source code for annotation rules. Refer to this getting started guide for getting familiar with the toolkit.

Developers modifying the HTTP API endpoints need to make sure to add the necessary annotations so that their changes are reflected into the generated specifications.

Example of endpoint annotation

The following route defines a PATCH endpoint under the /serviceaccounts/{serviceAccountId} path with tag service_accounts (used for grouping together several routes) and operation ID updateServiceAccount (used for uniquely identifying routes and associate parameters and response with them).


// swagger:route PATCH /serviceaccounts/{serviceAccountId} service_accounts updateServiceAccount
//
// # Update service account
//
// Required permissions (See note in the [introduction](https://grafana.com/docs/grafana/latest/developers/http_api/serviceaccount/#service-account-api) for an explanation):
// action: `serviceaccounts:write` scope: `serviceaccounts:id:1` (single service account)
//
// Responses:
// 200: updateServiceAccountResponse
// 400: badRequestError
// 401: unauthorisedError
// 403: forbiddenError
// 404: notFoundError
// 500: internalServerError

The go-swagger can discover such annotations by scanning any code imported by pkg/server but by convention we place the endpoint annotations above the endpoint definition.

Example of endpoint parameters

The following struct defines the route parameters for the updateServiceAccount endpoint. The route expects:

  • a path parameter denoting the service account identifier and
  • a body parameter with the new values for the specific service account

// swagger:parameters updateServiceAccount
type UpdateServiceAccountParams struct {
	// in:path
	ServiceAccountId int64 `json:"serviceAccountId"`
	// in:body
	Body serviceaccounts.UpdateServiceAccountForm
}

Example of endpoint response

The following struct defines the response for the updateServiceAccount endpoint in case of a successful 200 response.


// swagger:response updateServiceAccountResponse
type UpdateServiceAccountResponse struct {
	// in:body
	Body struct {
		Message        string                                    `json:"message"`
		ID             int64                                     `json:"id"`
		Name           string                                    `json:"name"`
		ServiceAccount *serviceaccounts.ServiceAccountProfileDTO `json:"serviceaccount"`
	}
}

OpenAPI generation

Developers can re-create the OpenAPI v2 and v3 specifications using the following command:


make clean-api-spec && make openapi3-gen

They can observe its output into the public/api-merged.json and public/openapi3.json files.

Finally, they can browser and try out both the OpenAPI v2 and v3 via the Swagger UI editor (served by the grafana server) by navigating to /swagger-ui and /openapi3 respectivally.