mirror of
https://github.com/kopia/kopia.git
synced 2026-01-25 14:58:00 -05:00
5912247f29
* server: reworked authn/authz Previously authentication was done as an wrapper handler and authorization was inlined. This change moves authn/authz handlers inside the server and implements separate authorization module that's individually tested. Also fixed an issue where server users were not able to see global or host-level policies. * PR feedback
93 lines
2.3 KiB
Go
93 lines
2.3 KiB
Go
package server
|
|
|
|
import (
|
|
"context"
|
|
"errors"
|
|
"net/http"
|
|
"strings"
|
|
|
|
"github.com/gorilla/mux"
|
|
|
|
"github.com/kopia/kopia/internal/auth"
|
|
"github.com/kopia/kopia/internal/serverapi"
|
|
"github.com/kopia/kopia/repo"
|
|
"github.com/kopia/kopia/repo/content"
|
|
"github.com/kopia/kopia/repo/manifest"
|
|
)
|
|
|
|
func (s *Server) handleContentGet(ctx context.Context, r *http.Request, body []byte) (interface{}, *apiError) {
|
|
if s.httpAuthorizationInfo(r).ContentAccessLevel() < auth.AccessLevelRead {
|
|
return nil, accessDeniedError()
|
|
}
|
|
|
|
dr, ok := s.rep.(repo.DirectRepository)
|
|
if !ok {
|
|
return nil, notFoundError("content not found")
|
|
}
|
|
|
|
cid := content.ID(mux.Vars(r)["contentID"])
|
|
|
|
data, err := dr.ContentReader().GetContent(ctx, cid)
|
|
if errors.Is(err, content.ErrContentNotFound) {
|
|
return nil, notFoundError("content not found")
|
|
}
|
|
|
|
return data, nil
|
|
}
|
|
|
|
func (s *Server) handleContentInfo(ctx context.Context, r *http.Request, body []byte) (interface{}, *apiError) {
|
|
if s.httpAuthorizationInfo(r).ContentAccessLevel() < auth.AccessLevelRead {
|
|
return nil, accessDeniedError()
|
|
}
|
|
|
|
dr, ok := s.rep.(repo.DirectRepository)
|
|
if !ok {
|
|
return nil, notFoundError("content not found")
|
|
}
|
|
|
|
cid := content.ID(mux.Vars(r)["contentID"])
|
|
|
|
ci, err := dr.ContentReader().ContentInfo(ctx, cid)
|
|
|
|
switch {
|
|
case err == nil:
|
|
return ci, nil
|
|
|
|
case errors.Is(err, content.ErrContentNotFound):
|
|
return nil, notFoundError("content not found")
|
|
|
|
default:
|
|
return nil, internalServerError(err)
|
|
}
|
|
}
|
|
|
|
func (s *Server) handleContentPut(ctx context.Context, r *http.Request, data []byte) (interface{}, *apiError) {
|
|
if s.httpAuthorizationInfo(r).ContentAccessLevel() < auth.AccessLevelAppend {
|
|
return nil, accessDeniedError()
|
|
}
|
|
|
|
dr, ok := s.rep.(repo.DirectRepositoryWriter)
|
|
if !ok {
|
|
return nil, repositoryNotWritableError()
|
|
}
|
|
|
|
cid := content.ID(mux.Vars(r)["contentID"])
|
|
prefix := cid.Prefix()
|
|
|
|
if strings.HasPrefix(string(prefix), manifest.ContentPrefix) {
|
|
// it's not allowed to create contents prefixed with 'm' since those could be mistaken for manifest contents.
|
|
return nil, accessDeniedError()
|
|
}
|
|
|
|
actualCID, err := dr.ContentManager().WriteContent(ctx, data, prefix)
|
|
if err != nil {
|
|
return nil, internalServerError(err)
|
|
}
|
|
|
|
if actualCID != cid {
|
|
return nil, requestError(serverapi.ErrorMalformedRequest, "mismatched content ID")
|
|
}
|
|
|
|
return &serverapi.Empty{}, nil
|
|
}
|