minio/pkg/api/api_generic_handlers.go

/*
 * Minimalist Object Storage, (C) 2015 Minio, Inc.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package api

import (
	"net/http"
	"strings"

	"github.com/minio-io/minio/pkg/api/config"
)

type vHandler struct {
	conf    config.Config
	handler http.Handler
}

type rHandler struct {
	handler http.Handler
}

// strip AccessKey from authorization header
func stripAccessKey(r *http.Request) string {
	fields := strings.Fields(r.Header.Get("Authorization"))
	if len(fields) < 2 {
		return ""
	}
	splits := strings.Split(fields[1], ":")
	if len(splits) < 2 {
		return ""
	}
	return splits[0]
}

// Validate handler is wrapper handler used for API request validation with authorization header.
// Current authorization layer supports S3's standard HMAC based signature request.
func validateHandler(conf config.Config, h http.Handler) http.Handler {
	return vHandler{
		conf:    conf,
		handler: h,
	}
}

// Validate handler ServeHTTP() wrapper
func (h vHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
	acceptsContentType := getContentType(r)
	if acceptsContentType == unknownContentType {
		writeErrorResponse(w, r, NotAcceptable, acceptsContentType, r.URL.Path)
		return
	}
	// success
	h.handler.ServeHTTP(w, r)

	// Enable below only when webcli is ready

	/*
		switch true {
		case accessKey != "":
			if err := h.conf.ReadConfig(); err != nil {
				writeErrorResponse(w, r, InternalError, acceptsContentType, r.URL.Path)
				return
			}
			user, ok := h.conf.Users[accessKey]
			if !ok {
				writeErrorResponse(w, r, AccessDenied, acceptsContentType, r.URL.Path)
				return
			}
			ok, _ = ValidateRequest(user, r)
			if !ok {
				writeErrorResponse(w, r, AccessDenied, acceptsContentType, r.URL.Path)
				return
			}
			// Success
			h.handler.ServeHTTP(w, r)
		default:
			// Control reaches when no access key is found, ideally we would
			// like to throw back `403`. But for now with our tests lacking
			// this functionality it is better for us to be serving anonymous
			// requests as well.
			// We should remove this after adding tests to support signature request
			h.handler.ServeHTTP(w, r)
			// ## Uncommented below links of code after disabling anonymous requests
			// error := errorCodeError(AccessDenied)
			// errorResponse := getErrorResponse(error, "")
			// w.WriteHeader(error.HTTPStatusCode)
			// w.Write(writeErrorResponse(w, errorResponse, acceptsContentType))
		}
	*/
}

// Ignore resources handler is wrapper handler used for API request resource validation
// Since we do not support all the S3 queries, it is necessary for us to throw back a
// valid error message indicating such a feature to have been not implemented.
func ignoreResourcesHandler(h http.Handler) http.Handler {
	return rHandler{h}
}

// Resource handler ServeHTTP() wrapper
func (h rHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
	acceptsContentType := getContentType(r)
	if ignoreUnImplementedObjectResources(r) || ignoreUnImplementedBucketResources(r) {
		error := getErrorCode(NotImplemented)
		errorResponse := getErrorResponse(error, "")
		setCommonHeaders(w, getContentTypeString(acceptsContentType))
		w.WriteHeader(error.HTTPStatusCode)
		w.Write(encodeErrorResponse(errorResponse, acceptsContentType))
	} else {
		h.handler.ServeHTTP(w, r)
	}
}

//// helpers

// Checks requests for unimplemented Bucket resources
func ignoreUnImplementedBucketResources(req *http.Request) bool {
	q := req.URL.Query()
	for name := range q {
		if unimplementedBucketResourceNames[name] {
			return true
		}
	}
	return false
}

// Checks requests for unimplemented Object resources
func ignoreUnImplementedObjectResources(req *http.Request) bool {
	q := req.URL.Query()
	for name := range q {
		if unimplementedObjectResourceNames[name] {
			return true
		}
	}
	return false
}
Add license and fix development scripts 2015-02-15 09:48:15 +01:00			`/*`
Update license header Mini should be Minimalist really 2015-03-19 22:35:50 +01:00			`* Minimalist Object Storage, (C) 2015 Minio, Inc.`
Add license and fix development scripts 2015-02-15 09:48:15 +01:00			`*`
			`* Licensed under the Apache License, Version 2.0 (the "License");`
			`* you may not use this file except in compliance with the License.`
			`* You may obtain a copy of the License at`
			`*`
			`* http://www.apache.org/licenses/LICENSE-2.0`
			`*`
			`* Unless required by applicable law or agreed to in writing, software`
			`* distributed under the License is distributed on an "AS IS" BASIS,`
			`* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`* See the License for the specific language governing permissions and`
			`* limitations under the License.`
			`*/`

Restructure minio api, move signature checks from utils to Api. 2015-03-19 01:49:33 +01:00			`package api`
Implement S3 Style ErrorCodes and Response This patchset also brings in lot of cleanup in terms of minioapi codebase 2015-02-11 12:23:15 +01:00
			`import (`
			`"net/http"`
			`"strings"`

Refactor to move config handling into api/ 2015-03-19 06:49:02 +01:00			`"github.com/minio-io/minio/pkg/api/config"`
Implement S3 Style ErrorCodes and Response This patchset also brings in lot of cleanup in terms of minioapi codebase 2015-02-11 12:23:15 +01:00			`)`

			`type vHandler struct {`
			`conf config.Config`
			`handler http.Handler`
			`}`

Some more cleanup 2015-02-18 21:15:33 +01:00			`type rHandler struct {`
			`handler http.Handler`
			`}`

Update minioapi documentation 2015-02-24 01:46:48 +01:00			`// strip AccessKey from authorization header`
Implement S3 Style ErrorCodes and Response This patchset also brings in lot of cleanup in terms of minioapi codebase 2015-02-11 12:23:15 +01:00			`func stripAccessKey(r *http.Request) string {`
			`fields := strings.Fields(r.Header.Get("Authorization"))`
			`if len(fields) < 2 {`
			`return ""`
			`}`
			`splits := strings.Split(fields[1], ":")`
			`if len(splits) < 2 {`
			`return ""`
			`}`
			`return splits[0]`
			`}`

Update minioapi documentation 2015-02-24 01:46:48 +01:00			`// Validate handler is wrapper handler used for API request validation with authorization header.`
			`// Current authorization layer supports S3's standard HMAC based signature request.`
Further fixes for ACL support, currently code is disabled in all the handlers Disabled because due to lack of testing support. Once we get that in we can uncomment them back. 2015-04-23 04:29:39 +02:00			`func validateHandler(conf config.Config, h http.Handler) http.Handler {`
Bring in full fledged acl support 2015-04-23 03:19:20 +02:00			`return vHandler{`
			`conf: conf,`
			`handler: h,`
			`}`
Implement S3 Style ErrorCodes and Response This patchset also brings in lot of cleanup in terms of minioapi codebase 2015-02-11 12:23:15 +01:00			`}`

Update comments across the codebase 2015-03-03 11:36:12 +01:00			`// Validate handler ServeHTTP() wrapper`
Implement S3 Style ErrorCodes and Response This patchset also brings in lot of cleanup in terms of minioapi codebase 2015-02-11 12:23:15 +01:00			`func (h vHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {`
Reply in xml from validate and ignore handlers 2015-02-12 07:00:45 +01:00			`acceptsContentType := getContentType(r)`
Bring in full fledged acl support 2015-04-23 03:19:20 +02:00			`if acceptsContentType == unknownContentType {`
Revert "Exporting WriteErrorResponse" This reverts commit e05d46a0b578c300fec0dbb74c385dc9e74cf3bc. 2015-04-27 02:02:49 +02:00			`writeErrorResponse(w, r, NotAcceptable, acceptsContentType, r.URL.Path)`
Bring in full fledged acl support 2015-04-23 03:19:20 +02:00			`return`
			`}`
Finishing all the test case support for ACL and other fixes 2015-04-23 10:20:03 +02:00			`// success`
			`h.handler.ServeHTTP(w, r)`

			`// Enable below only when webcli is ready`

			`/*`
			`switch true {`
			`case accessKey != "":`
			`if err := h.conf.ReadConfig(); err != nil {`
			`writeErrorResponse(w, r, InternalError, acceptsContentType, r.URL.Path)`
			`return`
			`}`
			`user, ok := h.conf.Users[accessKey]`
			`if !ok {`
			`writeErrorResponse(w, r, AccessDenied, acceptsContentType, r.URL.Path)`
			`return`
			`}`
			`ok, _ = ValidateRequest(user, r)`
			`if !ok {`
			`writeErrorResponse(w, r, AccessDenied, acceptsContentType, r.URL.Path)`
			`return`
			`}`
			`// Success`
			`h.handler.ServeHTTP(w, r)`
			`default:`
			`// Control reaches when no access key is found, ideally we would`
			// like to throw back `403`. But for now with our tests lacking
			`// this functionality it is better for us to be serving anonymous`
			`// requests as well.`
			`// We should remove this after adding tests to support signature request`
			`h.handler.ServeHTTP(w, r)`
			`// ## Uncommented below links of code after disabling anonymous requests`
			`// error := errorCodeError(AccessDenied)`
			`// errorResponse := getErrorResponse(error, "")`
			`// w.WriteHeader(error.HTTPStatusCode)`
			`// w.Write(writeErrorResponse(w, errorResponse, acceptsContentType))`
Bring in full fledged acl support 2015-04-23 03:19:20 +02:00			`}`
Finishing all the test case support for ACL and other fixes 2015-04-23 10:20:03 +02:00			`*/`
Implement S3 Style ErrorCodes and Response This patchset also brings in lot of cleanup in terms of minioapi codebase 2015-02-11 12:23:15 +01:00			`}`

Update minioapi documentation 2015-02-24 01:46:48 +01:00			`// Ignore resources handler is wrapper handler used for API request resource validation`
			`// Since we do not support all the S3 queries, it is necessary for us to throw back a`
			`// valid error message indicating such a feature to have been not implemented.`
Some more cleanup 2015-02-18 21:15:33 +01:00			`func ignoreResourcesHandler(h http.Handler) http.Handler {`
			`return rHandler{h}`
			`}`

Update comments across the codebase 2015-03-03 11:36:12 +01:00			`// Resource handler ServeHTTP() wrapper`
Some more cleanup 2015-02-18 21:15:33 +01:00			`func (h rHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {`
			`acceptsContentType := getContentType(r)`
			`if ignoreUnImplementedObjectResources(r) \|\| ignoreUnImplementedBucketResources(r) {`
Simplfying code in api, round 1. Decoupling functions which both write headers and data. 2015-03-29 03:00:55 +02:00			`error := getErrorCode(NotImplemented)`
Some more cleanup 2015-02-18 21:15:33 +01:00			`errorResponse := getErrorResponse(error, "")`
Simplfying code in api, round 1. Decoupling functions which both write headers and data. 2015-03-29 03:00:55 +02:00			`setCommonHeaders(w, getContentTypeString(acceptsContentType))`
Golint cleanup pkg/api 2015-03-06 06:07:19 +01:00			`w.WriteHeader(error.HTTPStatusCode)`
Simplfying code in api, round 1. Decoupling functions which both write headers and data. 2015-03-29 03:00:55 +02:00			`w.Write(encodeErrorResponse(errorResponse, acceptsContentType))`
Some more cleanup 2015-02-18 21:15:33 +01:00			`} else {`
			`h.handler.ServeHTTP(w, r)`
			`}`
Implement S3 Style ErrorCodes and Response This patchset also brings in lot of cleanup in terms of minioapi codebase 2015-02-11 12:23:15 +01:00			`}`

			`//// helpers`

Update comments across the codebase 2015-03-03 11:36:12 +01:00			`// Checks requests for unimplemented Bucket resources`
Implement S3 Style ErrorCodes and Response This patchset also brings in lot of cleanup in terms of minioapi codebase 2015-02-11 12:23:15 +01:00			`func ignoreUnImplementedBucketResources(req *http.Request) bool {`
			`q := req.URL.Query()`
			`for name := range q {`
			`if unimplementedBucketResourceNames[name] {`
			`return true`
			`}`
			`}`
			`return false`
			`}`

Update comments across the codebase 2015-03-03 11:36:12 +01:00			`// Checks requests for unimplemented Object resources`
Implement S3 Style ErrorCodes and Response This patchset also brings in lot of cleanup in terms of minioapi codebase 2015-02-11 12:23:15 +01:00			`func ignoreUnImplementedObjectResources(req *http.Request) bool {`
			`q := req.URL.Query()`
			`for name := range q {`
			`if unimplementedObjectResourceNames[name] {`
			`return true`
			`}`
			`}`
			`return false`
			`}`