minio/web-handlers.go

/*
 * Minio Cloud Storage, (C) 2016 Minio, Inc.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package main

import (
	"fmt"
	"net/http"
	"time"

	jwtgo "github.com/dgrijalva/jwt-go"
	"github.com/minio/minio/pkg/disk"
)

// isAuthenticated validates if any incoming request to be a valid JWT
// authenticated request.
func isAuthenticated(req *http.Request) bool {
	jwt := InitJWT()
	tokenRequest, err := jwtgo.ParseFromRequest(req, func(token *jwtgo.Token) (interface{}, error) {
		if _, ok := token.Method.(*jwtgo.SigningMethodRSA); !ok {
			return nil, fmt.Errorf("Unexpected signing method: %v", token.Header["alg"])
		}
		return jwt.PublicKey, nil
	})
	if err != nil {
		return false
	}
	return tokenRequest.Valid
}

// DiskInfo - get disk statistics.
func (web *WebAPI) DiskInfo(r *http.Request, args *DiskInfoArgs, reply *disk.Info) error {
	if !isAuthenticated(r) {
		return errUnAuthorizedRequest
	}
	info, err := disk.GetInfo(web.FSPath)
	if err != nil {
		return err
	}
	*reply = info
	return nil
}

// MakeBucket - make a bucket.
func (web *WebAPI) MakeBucket(r *http.Request, args *MakeBucketArgs, reply *string) error {
	if !isAuthenticated(r) {
		return errUnAuthorizedRequest
	}
	return web.Client.MakeBucket(args.BucketName, "", "")
}

// ListBuckets - list buckets api.
func (web *WebAPI) ListBuckets(r *http.Request, args *ListBucketsArgs, reply *[]BucketInfo) error {
	if !isAuthenticated(r) {
		return errUnAuthorizedRequest
	}
	buckets, err := web.Client.ListBuckets()
	if err != nil {
		return err
	}
	for _, bucket := range buckets {
		*reply = append(*reply, BucketInfo{
			Name:         bucket.Name,
			CreationDate: bucket.CreationDate,
		})
	}
	return nil
}

// ListObjects - list objects api.
func (web *WebAPI) ListObjects(r *http.Request, args *ListObjectsArgs, reply *[]ObjectInfo) error {
	if !isAuthenticated(r) {
		return errUnAuthorizedRequest
	}
	doneCh := make(chan struct{})
	defer close(doneCh)

	for object := range web.Client.ListObjects(args.BucketName, args.Prefix, false, doneCh) {
		if object.Err != nil {
			return object.Err
		}
		*reply = append(*reply, ObjectInfo{
			Key:          object.Key,
			LastModified: object.LastModified,
			Size:         object.Size,
		})
	}
	return nil
}

// GetObjectURL - get object url.
func (web *WebAPI) GetObjectURL(r *http.Request, args *GetObjectURLArgs, reply *string) error {
	if !isAuthenticated(r) {
		return errUnAuthorizedRequest
	}
	urlStr, err := web.Client.PresignedGetObject(args.BucketName, args.ObjectName, time.Duration(60*60)*time.Second)
	if err != nil {
		return err
	}
	*reply = urlStr
	return nil
}

// Login - user login handler.
func (web *WebAPI) Login(r *http.Request, args *LoginArgs, reply *AuthToken) error {
	jwt := InitJWT()
	if jwt.Authenticate(args.Username, args.Password) {
		token, err := jwt.GenerateToken(args.Username)
		if err != nil {
			return err
		}
		reply.Token = token
		return nil
	}
	return errUnAuthorizedRequest
}

// RefreshToken - refresh token handler.
func (web *WebAPI) RefreshToken(r *http.Request, args *LoginArgs, reply *AuthToken) error {
	if isAuthenticated(r) {
		jwt := InitJWT()
		token, err := jwt.GenerateToken(args.Username)
		if err != nil {
			return err
		}
		reply.Token = token
		return nil
	}
	return errUnAuthorizedRequest
}

// Logout - user logout.
func (web *WebAPI) Logout(r *http.Request, arg *string, reply *string) error {
	if isAuthenticated(r) {
		return nil
	}
	return errUnAuthorizedRequest
}
api: More cleanups at WebAPI. - Fixes a bug where bucketName was not denormalized. - Remove unneeded functions from jwt.go 2016-01-26 02:29:20 +01:00			`/*`
			`* Minio Cloud Storage, (C) 2016 Minio, Inc.`
			`*`
			`* Licensed under the Apache License, Version 2.0 (the "License");`
			`* you may not use this file except in compliance with the License.`
			`* You may obtain a copy of the License at`
			`*`
			`* http://www.apache.org/licenses/LICENSE-2.0`
			`*`
			`* Unless required by applicable law or agreed to in writing, software`
			`* distributed under the License is distributed on an "AS IS" BASIS,`
			`* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`* See the License for the specific language governing permissions and`
			`* limitations under the License.`
			`*/`

Bring in the list APIs implemented by Bala <bala@minio.io> 2016-01-24 04:44:32 +01:00			`package main`

			`import (`
			`"fmt"`
			`"net/http"`
			`"time"`

Add MakeBucket API. 2016-01-25 07:26:53 +01:00			`jwtgo "github.com/dgrijalva/jwt-go"`
diskInfo: Add DiskInfo API 2016-01-26 21:08:45 +01:00			`"github.com/minio/minio/pkg/disk"`
Bring in the list APIs implemented by Bala <bala@minio.io> 2016-01-24 04:44:32 +01:00			`)`

api: More cleanups at WebAPI. - Fixes a bug where bucketName was not denormalized. - Remove unneeded functions from jwt.go 2016-01-26 02:29:20 +01:00			`// isAuthenticated validates if any incoming request to be a valid JWT`
			`// authenticated request.`
Bring in the list APIs implemented by Bala <bala@minio.io> 2016-01-24 04:44:32 +01:00			`func isAuthenticated(req *http.Request) bool {`
Add MakeBucket API. 2016-01-25 07:26:53 +01:00			`jwt := InitJWT()`
			`tokenRequest, err := jwtgo.ParseFromRequest(req, func(token *jwtgo.Token) (interface{}, error) {`
			`if _, ok := token.Method.(*jwtgo.SigningMethodRSA); !ok {`
Bring in the list APIs implemented by Bala <bala@minio.io> 2016-01-24 04:44:32 +01:00			`return nil, fmt.Errorf("Unexpected signing method: %v", token.Header["alg"])`
			`}`
Add MakeBucket API. 2016-01-25 07:26:53 +01:00			`return jwt.PublicKey, nil`
Bring in the list APIs implemented by Bala <bala@minio.io> 2016-01-24 04:44:32 +01:00			`})`
			`if err != nil {`
			`return false`
			`}`
			`return tokenRequest.Valid`
			`}`

diskInfo: Add DiskInfo API 2016-01-26 21:08:45 +01:00			`// DiskInfo - get disk statistics.`
			`func (web WebAPI) DiskInfo(r http.Request, args DiskInfoArgs, reply disk.Info) error {`
			`if !isAuthenticated(r) {`
			`return errUnAuthorizedRequest`
			`}`
			`info, err := disk.GetInfo(web.FSPath)`
			`if err != nil {`
			`return err`
			`}`
			`*reply = info`
			`return nil`
			`}`

Add MakeBucket API. 2016-01-25 07:26:53 +01:00			`// MakeBucket - make a bucket.`
			`func (web WebAPI) MakeBucket(r http.Request, args MakeBucketArgs, reply string) error {`
			`if !isAuthenticated(r) {`
			`return errUnAuthorizedRequest`
			`}`
			`return web.Client.MakeBucket(args.BucketName, "", "")`
			`}`

Bring in the list APIs implemented by Bala <bala@minio.io> 2016-01-24 04:44:32 +01:00			`// ListBuckets - list buckets api.`
Add MakeBucket API. 2016-01-25 07:26:53 +01:00			`func (web WebAPI) ListBuckets(r http.Request, args ListBucketsArgs, reply []BucketInfo) error {`
Bring in the list APIs implemented by Bala <bala@minio.io> 2016-01-24 04:44:32 +01:00			`if !isAuthenticated(r) {`
			`return errUnAuthorizedRequest`
			`}`
Add MakeBucket API. 2016-01-25 07:26:53 +01:00			`buckets, err := web.Client.ListBuckets()`
Bring in the list APIs implemented by Bala <bala@minio.io> 2016-01-24 04:44:32 +01:00			`if err != nil {`
			`return err`
			`}`
Add MakeBucket API. 2016-01-25 07:26:53 +01:00			`for _, bucket := range buckets {`
			`reply = append(reply, BucketInfo{`
			`Name: bucket.Name,`
			`CreationDate: bucket.CreationDate,`
			`})`
Bring in the list APIs implemented by Bala <bala@minio.io> 2016-01-24 04:44:32 +01:00			`}`
			`return nil`
			`}`

			`// ListObjects - list objects api.`
Add MakeBucket API. 2016-01-25 07:26:53 +01:00			`func (web WebAPI) ListObjects(r http.Request, args ListObjectsArgs, reply []ObjectInfo) error {`
Bring in the list APIs implemented by Bala <bala@minio.io> 2016-01-24 04:44:32 +01:00			`if !isAuthenticated(r) {`
			`return errUnAuthorizedRequest`
			`}`
			`doneCh := make(chan struct{})`
			`defer close(doneCh)`

Add MakeBucket API. 2016-01-25 07:26:53 +01:00			`for object := range web.Client.ListObjects(args.BucketName, args.Prefix, false, doneCh) {`
Bring in the list APIs implemented by Bala <bala@minio.io> 2016-01-24 04:44:32 +01:00			`if object.Err != nil {`
			`return object.Err`
			`}`
Add MakeBucket API. 2016-01-25 07:26:53 +01:00			`reply = append(reply, ObjectInfo{`
			`Key: object.Key,`
			`LastModified: object.LastModified,`
			`Size: object.Size,`
			`})`
Bring in the list APIs implemented by Bala <bala@minio.io> 2016-01-24 04:44:32 +01:00			`}`
			`return nil`
			`}`

			`// GetObjectURL - get object url.`
			`func (web WebAPI) GetObjectURL(r http.Request, args GetObjectURLArgs, reply string) error {`
			`if !isAuthenticated(r) {`
			`return errUnAuthorizedRequest`
			`}`
Add MakeBucket API. 2016-01-25 07:26:53 +01:00			`urlStr, err := web.Client.PresignedGetObject(args.BucketName, args.ObjectName, time.Duration(6060)time.Second)`
Bring in the list APIs implemented by Bala <bala@minio.io> 2016-01-24 04:44:32 +01:00			`if err != nil {`
			`return err`
			`}`
			`*reply = urlStr`
			`return nil`
			`}`

			`// Login - user login handler.`
			`func (web WebAPI) Login(r http.Request, args LoginArgs, reply AuthToken) error {`
Add MakeBucket API. 2016-01-25 07:26:53 +01:00			`jwt := InitJWT()`
api: More cleanups at WebAPI. - Fixes a bug where bucketName was not denormalized. - Remove unneeded functions from jwt.go 2016-01-26 02:29:20 +01:00			`if jwt.Authenticate(args.Username, args.Password) {`
Add MakeBucket API. 2016-01-25 07:26:53 +01:00			`token, err := jwt.GenerateToken(args.Username)`
Bring in the list APIs implemented by Bala <bala@minio.io> 2016-01-24 04:44:32 +01:00			`if err != nil {`
			`return err`
			`}`
			`reply.Token = token`
			`return nil`
			`}`
			`return errUnAuthorizedRequest`
			`}`

			`// RefreshToken - refresh token handler.`
			`func (web WebAPI) RefreshToken(r http.Request, args LoginArgs, reply AuthToken) error {`
			`if isAuthenticated(r) {`
Add MakeBucket API. 2016-01-25 07:26:53 +01:00			`jwt := InitJWT()`
			`token, err := jwt.GenerateToken(args.Username)`
Bring in the list APIs implemented by Bala <bala@minio.io> 2016-01-24 04:44:32 +01:00			`if err != nil {`
			`return err`
			`}`
			`reply.Token = token`
			`return nil`
			`}`
			`return errUnAuthorizedRequest`
			`}`

			`// Logout - user logout.`
			`func (web WebAPI) Logout(r http.Request, arg string, reply string) error {`
			`if isAuthenticated(r) {`
			`return nil`
			`}`
			`return errUnAuthorizedRequest`
			`}`