mirror of
https://github.com/grafana/grafana.git
synced 2024-11-30 20:54:22 -06:00
6523486122
* update AlertingEnabled and UnifiedAlertingSettings.Enabled to be pointers * add a pseudo migration to fix the AlertingEnabled and UnifiedAlertingSettings.Enabled if the latter is not defined * update the default configuration file to make default value for both 'enabled' flags be undefined Misc * update Migrator to expose DB engine. This is needed for a ualert migration to access the database while the list of migrations is created. * add more verbose failure when migrations do not match Co-authored-by: gotjosh <josue@grafana.com> Co-authored-by: Yuriy Tseretyan <yuriy.tseretyan@grafana.com> Co-authored-by: gillesdemey <gilles.de.mey@gmail.com>
175 lines
5.0 KiB
Go
175 lines
5.0 KiB
Go
package quota
|
|
|
|
import (
|
|
"errors"
|
|
|
|
"github.com/grafana/grafana/pkg/bus"
|
|
"github.com/grafana/grafana/pkg/models"
|
|
"github.com/grafana/grafana/pkg/setting"
|
|
)
|
|
|
|
var ErrInvalidQuotaTarget = errors.New("invalid quota target")
|
|
|
|
func ProvideService(cfg *setting.Cfg, tokenService models.UserTokenService) *QuotaService {
|
|
return &QuotaService{
|
|
Cfg: cfg,
|
|
AuthTokenService: tokenService,
|
|
}
|
|
}
|
|
|
|
type QuotaService struct {
|
|
AuthTokenService models.UserTokenService
|
|
Cfg *setting.Cfg
|
|
}
|
|
|
|
func (qs *QuotaService) QuotaReached(c *models.ReqContext, target string) (bool, error) {
|
|
if !qs.Cfg.Quota.Enabled {
|
|
return false, nil
|
|
}
|
|
// No request context means this is a background service, like LDAP Background Sync.
|
|
// TODO: we should replace the req context with a more limited interface or struct,
|
|
// something that we could easily provide from background jobs.
|
|
if c == nil {
|
|
return false, nil
|
|
}
|
|
|
|
// get the list of scopes that this target is valid for. Org, User, Global
|
|
scopes, err := qs.getQuotaScopes(target)
|
|
if err != nil {
|
|
return false, err
|
|
}
|
|
|
|
for _, scope := range scopes {
|
|
c.Logger.Debug("Checking quota", "target", target, "scope", scope)
|
|
|
|
switch scope.Name {
|
|
case "global":
|
|
if scope.DefaultLimit < 0 {
|
|
continue
|
|
}
|
|
if scope.DefaultLimit == 0 {
|
|
return true, nil
|
|
}
|
|
if target == "session" {
|
|
usedSessions, err := qs.AuthTokenService.ActiveTokenCount(c.Req.Context())
|
|
if err != nil {
|
|
return false, err
|
|
}
|
|
|
|
if usedSessions > scope.DefaultLimit {
|
|
c.Logger.Debug("Sessions limit reached", "active", usedSessions, "limit", scope.DefaultLimit)
|
|
return true, nil
|
|
}
|
|
continue
|
|
}
|
|
query := models.GetGlobalQuotaByTargetQuery{Target: scope.Target, UnifiedAlertingEnabled: qs.Cfg.UnifiedAlerting.IsEnabled()}
|
|
if err := bus.DispatchCtx(c.Req.Context(), &query); err != nil {
|
|
return true, err
|
|
}
|
|
if query.Result.Used >= scope.DefaultLimit {
|
|
return true, nil
|
|
}
|
|
case "org":
|
|
if !c.IsSignedIn {
|
|
continue
|
|
}
|
|
query := models.GetOrgQuotaByTargetQuery{
|
|
OrgId: c.OrgId,
|
|
Target: scope.Target,
|
|
Default: scope.DefaultLimit,
|
|
UnifiedAlertingEnabled: qs.Cfg.UnifiedAlerting.IsEnabled(),
|
|
}
|
|
if err := bus.DispatchCtx(c.Req.Context(), &query); err != nil {
|
|
return true, err
|
|
}
|
|
if query.Result.Limit < 0 {
|
|
continue
|
|
}
|
|
if query.Result.Limit == 0 {
|
|
return true, nil
|
|
}
|
|
|
|
if query.Result.Used >= query.Result.Limit {
|
|
return true, nil
|
|
}
|
|
case "user":
|
|
if !c.IsSignedIn || c.UserId == 0 {
|
|
continue
|
|
}
|
|
query := models.GetUserQuotaByTargetQuery{UserId: c.UserId, Target: scope.Target, Default: scope.DefaultLimit, UnifiedAlertingEnabled: qs.Cfg.UnifiedAlerting.IsEnabled()}
|
|
if err := bus.DispatchCtx(c.Req.Context(), &query); err != nil {
|
|
return true, err
|
|
}
|
|
if query.Result.Limit < 0 {
|
|
continue
|
|
}
|
|
if query.Result.Limit == 0 {
|
|
return true, nil
|
|
}
|
|
|
|
if query.Result.Used >= query.Result.Limit {
|
|
return true, nil
|
|
}
|
|
}
|
|
}
|
|
|
|
return false, nil
|
|
}
|
|
|
|
func (qs *QuotaService) getQuotaScopes(target string) ([]models.QuotaScope, error) {
|
|
scopes := make([]models.QuotaScope, 0)
|
|
switch target {
|
|
case "user":
|
|
scopes = append(scopes,
|
|
models.QuotaScope{Name: "global", Target: target, DefaultLimit: qs.Cfg.Quota.Global.User},
|
|
models.QuotaScope{Name: "org", Target: "org_user", DefaultLimit: qs.Cfg.Quota.Org.User},
|
|
)
|
|
return scopes, nil
|
|
case "org":
|
|
scopes = append(scopes,
|
|
models.QuotaScope{Name: "global", Target: target, DefaultLimit: qs.Cfg.Quota.Global.Org},
|
|
models.QuotaScope{Name: "user", Target: "org_user", DefaultLimit: qs.Cfg.Quota.User.Org},
|
|
)
|
|
return scopes, nil
|
|
case "dashboard":
|
|
scopes = append(scopes,
|
|
models.QuotaScope{
|
|
Name: "global",
|
|
Target: target,
|
|
DefaultLimit: qs.Cfg.Quota.Global.Dashboard,
|
|
},
|
|
models.QuotaScope{
|
|
Name: "org",
|
|
Target: target,
|
|
DefaultLimit: qs.Cfg.Quota.Org.Dashboard,
|
|
},
|
|
)
|
|
return scopes, nil
|
|
case "data_source":
|
|
scopes = append(scopes,
|
|
models.QuotaScope{Name: "global", Target: target, DefaultLimit: qs.Cfg.Quota.Global.DataSource},
|
|
models.QuotaScope{Name: "org", Target: target, DefaultLimit: qs.Cfg.Quota.Org.DataSource},
|
|
)
|
|
return scopes, nil
|
|
case "api_key":
|
|
scopes = append(scopes,
|
|
models.QuotaScope{Name: "global", Target: target, DefaultLimit: qs.Cfg.Quota.Global.ApiKey},
|
|
models.QuotaScope{Name: "org", Target: target, DefaultLimit: qs.Cfg.Quota.Org.ApiKey},
|
|
)
|
|
return scopes, nil
|
|
case "session":
|
|
scopes = append(scopes,
|
|
models.QuotaScope{Name: "global", Target: target, DefaultLimit: qs.Cfg.Quota.Global.Session},
|
|
)
|
|
return scopes, nil
|
|
case "alert_rule": // target need to match the respective database name
|
|
scopes = append(scopes,
|
|
models.QuotaScope{Name: "global", Target: target, DefaultLimit: qs.Cfg.Quota.Global.AlertRule},
|
|
models.QuotaScope{Name: "org", Target: target, DefaultLimit: qs.Cfg.Quota.Org.AlertRule},
|
|
)
|
|
return scopes, nil
|
|
default:
|
|
return scopes, ErrInvalidQuotaTarget
|
|
}
|
|
}
|