icinga2/lib/remote/actionshandler.cpp

/* Icinga 2 | (c) 2012 Icinga GmbH | GPLv2+ */

#include "remote/actionshandler.hpp"
#include "remote/httputility.hpp"
#include "remote/filterutility.hpp"
#include "remote/apiaction.hpp"
#include "base/defer.hpp"
#include "base/exception.hpp"
#include "base/logger.hpp"
#include <set>

using namespace icinga;

thread_local ApiUser::Ptr ActionsHandler::AuthenticatedApiUser;

REGISTER_URLHANDLER("/v1/actions", ActionsHandler);

bool ActionsHandler::HandleRequest(
	AsioTlsStream& stream,
	const ApiUser::Ptr& user,
	boost::beast::http::request<boost::beast::http::string_body>& request,
	const Url::Ptr& url,
	boost::beast::http::response<boost::beast::http::string_body>& response,
	const Dictionary::Ptr& params,
	boost::asio::yield_context& yc,
	HttpServerConnection& server
)
{
	namespace http = boost::beast::http;

	if (url->GetPath().size() != 3)
		return false;

	if (request.method() != http::verb::post)
		return false;

	String actionName = url->GetPath()[2];

	ApiAction::Ptr action = ApiAction::GetByName(actionName);

	if (!action) {
		HttpUtility::SendJsonError(response, params, 404, "Action '" + actionName + "' does not exist.");
		return true;
	}

	QueryDescription qd;

	const std::vector<String>& types = action->GetTypes();
	std::vector<Value> objs;

	String permission = "actions/" + actionName;

	if (!types.empty()) {
		qd.Types = std::set<String>(types.begin(), types.end());
		qd.Permission = permission;

		try {
			objs = FilterUtility::GetFilterTargets(qd, params, user);
		} catch (const std::exception& ex) {
			HttpUtility::SendJsonError(response, params, 404,
				"No objects found.",
				DiagnosticInformation(ex));
			return true;
		}

		if (objs.empty()) {
			HttpUtility::SendJsonError(response, params, 404,
				"No objects found.");
			return true;
		}
	} else {
		FilterUtility::CheckPermission(user, permission);
		objs.emplace_back(nullptr);
	}

	ArrayData results;

	Log(LogNotice, "ApiActionHandler")
		<< "Running action " << actionName;

	bool verbose = false;

	ActionsHandler::AuthenticatedApiUser = user;
	Defer a ([]() {
		ActionsHandler::AuthenticatedApiUser = nullptr;
	});

	if (params)
		verbose = HttpUtility::GetLastParameter(params, "verbose");

	for (const ConfigObject::Ptr& obj : objs) {
		try {
			results.emplace_back(action->Invoke(obj, params));
		} catch (const std::exception& ex) {
			Dictionary::Ptr fail = new Dictionary({
				{ "code", 500 },
				{ "status", "Action execution failed: '" + DiagnosticInformation(ex, false) + "'." }
			});

			/* Exception for actions. Normally we would handle this inside SendJsonError(). */
			if (verbose)
				fail->Set("diagnostic_information", DiagnosticInformation(ex));

			results.emplace_back(std::move(fail));
		}
	}

	int statusCode = 500;
	std::set<int> okStatusCodes, nonOkStatusCodes;

	for (const Dictionary::Ptr& res : results) {
		if (!res->Contains("code")) {
			continue;
		}

		auto code = res->Get("code");

		if (code >= 200 && code <= 299) {
			okStatusCodes.insert(code);
		} else {
			nonOkStatusCodes.insert(code);
		}
	}

	size_t okSize = okStatusCodes.size();
	size_t nonOkSize = nonOkStatusCodes.size();

	if (okSize == 1u && nonOkSize == 0u) {
		statusCode = *okStatusCodes.begin();
	} else if (nonOkSize == 1u) {
		statusCode = *nonOkStatusCodes.begin();
	} else if (okSize >= 2u && nonOkSize == 0u) {
		statusCode = 200;
	}

	response.result(statusCode);

	Dictionary::Ptr result = new Dictionary({
		{ "results", new Array(std::move(results)) }
	});

	HttpUtility::SendJsonBody(response, params, result);

	return true;
}
Replace Copyright header with a short version, part I CLion -> replace in path 2019-02-25 14:48:22 +01:00			`/* Icinga 2 \| (c) 2012 Icinga GmbH \| GPLv2+ */`
Implement basic actions framework refs #9080 2015-07-30 17:50:17 +02:00
			`#include "remote/actionshandler.hpp"`
			`#include "remote/httputility.hpp"`
			`#include "remote/filterutility.hpp"`
			`#include "remote/apiaction.hpp"`
Get API user from ActionsHandler 2020-07-03 10:16:23 +02:00			`#include "base/defer.hpp"`
Implement basic actions framework refs #9080 2015-07-30 17:50:17 +02:00			`#include "base/exception.hpp"`
Implement all actions except modified attributes refs #9080 #9979 2015-08-21 15:50:40 +02:00			`#include "base/logger.hpp"`
Implement basic actions framework refs #9080 2015-07-30 17:50:17 +02:00			`#include <set>`

			`using namespace icinga;`

AuthenticatedApiUser name refactor 2020-07-03 11:17:36 +02:00			`thread_local ApiUser::Ptr ActionsHandler::AuthenticatedApiUser;`
Get API user from ActionsHandler 2020-07-03 10:16:23 +02:00
Implement basic actions framework refs #9080 2015-07-30 17:50:17 +02:00			`REGISTER_URLHANDLER("/v1/actions", ActionsHandler);`

Adjust all HTTP handlers (ex. /v1/events) 2019-02-15 10:33:01 +01:00			`bool ActionsHandler::HandleRequest(`
Adjust /v1/events, too 2019-02-15 11:51:12 +01:00			`AsioTlsStream& stream,`
Adjust all HTTP handlers (ex. /v1/events) 2019-02-15 10:33:01 +01:00			`const ApiUser::Ptr& user,`
			`boost::beast::http::request<boost::beast::http::string_body>& request,`
			`const Url::Ptr& url,`
			`boost::beast::http::response<boost::beast::http::string_body>& response,`
Adjust /v1/events, too 2019-02-15 11:51:12 +01:00			`const Dictionary::Ptr& params,`
			`boost::asio::yield_context& yc,`
HttpServerConnection: encapsulate streaming start indicator 2019-04-02 17:37:29 +02:00			`HttpServerConnection& server`
Adjust all HTTP handlers (ex. /v1/events) 2019-02-15 10:33:01 +01:00			`)`
Implement basic actions framework refs #9080 2015-07-30 17:50:17 +02:00			`{`
Adjust all HTTP handlers (ex. /v1/events) 2019-02-15 10:33:01 +01:00			`namespace http = boost::beast::http;`

			`if (url->GetPath().size() != 3)`
Improve api error handling refs #10194 2015-09-28 16:08:14 +02:00			`return false;`
Improve API error handling and fix some whitespace fixes #10194 2015-09-22 17:58:12 +02:00
Adjust all HTTP handlers (ex. /v1/events) 2019-02-15 10:33:01 +01:00			`if (request.method() != http::verb::post)`
Improve api error handling refs #10194 2015-09-28 16:08:14 +02:00			`return false;`
Implement basic actions framework refs #9080 2015-07-30 17:50:17 +02:00
Adjust all HTTP handlers (ex. /v1/events) 2019-02-15 10:33:01 +01:00			`String actionName = url->GetPath()[2];`
Implement basic actions framework refs #9080 2015-07-30 17:50:17 +02:00
			`ApiAction::Ptr action = ApiAction::GetByName(actionName);`

Improve API error handling and fix some whitespace fixes #10194 2015-09-22 17:58:12 +02:00			`if (!action) {`
API: Add 'pretty' parameter for beautified JSON response bodies fixes #5877 2017-12-20 15:31:05 +01:00			`HttpUtility::SendJsonError(response, params, 404, "Action '" + actionName + "' does not exist.");`
Improve API error handling and fix some whitespace fixes #10194 2015-09-22 17:58:12 +02:00			`return true;`
			`}`
Implement basic actions framework refs #9080 2015-07-30 17:50:17 +02:00
			`QueryDescription qd;`

Clean up the API action code a bit refs #9080 2015-08-24 08:01:33 +02:00			`const std::vector<String>& types = action->GetTypes();`
Implement reflection support for the API fixes #9076 2015-08-26 10:58:59 +02:00			`std::vector<Value> objs;`
Implement basic actions framework refs #9080 2015-07-30 17:50:17 +02:00
Implement API permissions fixes #9088 2015-09-28 08:57:25 +02:00			`String permission = "actions/" + actionName;`

Clean up the API action code a bit refs #9080 2015-08-24 08:01:33 +02:00			`if (!types.empty()) {`
Implement reflection support for the API fixes #9076 2015-08-26 10:58:59 +02:00			`qd.Types = std::set<String>(types.begin(), types.end());`
Implement API permissions fixes #9088 2015-09-28 08:57:25 +02:00			`qd.Permission = permission;`
Clean up the API action code a bit refs #9080 2015-08-24 08:01:33 +02:00
Improve API error handling and fix some whitespace fixes #10194 2015-09-22 17:58:12 +02:00			`try {`
Implement API permissions fixes #9088 2015-09-28 08:57:25 +02:00			`objs = FilterUtility::GetFilterTargets(qd, params, user);`
Improve API error handling and fix some whitespace fixes #10194 2015-09-22 17:58:12 +02:00			`} catch (const std::exception& ex) {`
API: Add 'pretty' parameter for beautified JSON response bodies fixes #5877 2017-12-20 15:31:05 +01:00			`HttpUtility::SendJsonError(response, params, 404,`
Whitespace fix What does this change? * Remove use of spaces for formatting These could be found by using `grep -r -l -P '^\t+ +[^]' Removal of training whitespaces * A few lines longer than 120 chars 2017-12-19 15:50:05 +01:00			`"No objects found.",`
Refactor actions error messages 2018-04-06 10:30:27 +02:00			`DiagnosticInformation(ex));`
Improve API error handling and fix some whitespace fixes #10194 2015-09-22 17:58:12 +02:00			`return true;`
			`}`
/v1/actions/*: return 404 if no objects found refs #7956 2020-04-02 11:50:07 +02:00
			`if (objs.empty()) {`
			`HttpUtility::SendJsonError(response, params, 404,`
			`"No objects found.");`
			`return true;`
			`}`
Implement API permissions fixes #9088 2015-09-28 08:57:25 +02:00			`} else {`
			`FilterUtility::CheckPermission(user, permission);`
Apply clang-tidy fix 'modernize-use-emplace' 2018-01-04 09:14:55 +01:00			`objs.emplace_back(nullptr);`
Implement API permissions fixes #9088 2015-09-28 08:57:25 +02:00			`}`
Implement basic actions framework refs #9080 2015-07-30 17:50:17 +02:00
Use initializer lists for arrays and dictionaries 2018-01-11 11:17:38 +01:00			`ArrayData results;`
Implement basic actions framework refs #9080 2015-07-30 17:50:17 +02:00
Implement all actions except modified attributes refs #9080 #9979 2015-08-21 15:50:40 +02:00			`Log(LogNotice, "ApiActionHandler")`
Whitespace fix What does this change? * Remove use of spaces for formatting These could be found by using `grep -r -l -P '^\t+ +[^]' Removal of training whitespaces * A few lines longer than 120 chars 2017-12-19 15:50:05 +01:00			`<< "Running action " << actionName;`
Implement all actions except modified attributes refs #9080 #9979 2015-08-21 15:50:40 +02:00
Refactor actions error messages 2018-04-06 10:30:27 +02:00			`bool verbose = false;`

AuthenticatedApiUser name refactor 2020-07-03 11:17:36 +02:00			`ActionsHandler::AuthenticatedApiUser = user;`
			`Defer a ([]() {`
			`ActionsHandler::AuthenticatedApiUser = nullptr;`
Get API user from ActionsHandler 2020-07-03 10:16:23 +02:00			`});`

Refactor actions error messages 2018-04-06 10:30:27 +02:00			`if (params)`
			`verbose = HttpUtility::GetLastParameter(params, "verbose");`

Replace BOOST_FOREACH with range-based for loops fixes #12538 2016-08-25 06:19:44 +02:00			`for (const ConfigObject::Ptr& obj : objs) {`
Implement basic actions framework refs #9080 2015-07-30 17:50:17 +02:00			`try {`
Use initializer lists for arrays and dictionaries 2018-01-11 11:17:38 +01:00			`results.emplace_back(action->Invoke(obj, params));`
Implement basic actions framework refs #9080 2015-07-30 17:50:17 +02:00			`} catch (const std::exception& ex) {`
Use initializer lists for arrays and dictionaries 2018-01-11 11:17:38 +01:00			`Dictionary::Ptr fail = new Dictionary({`
			`{ "code", 500 },`
			`{ "status", "Action execution failed: '" + DiagnosticInformation(ex, false) + "'." }`
			`});`

Refactor actions error messages 2018-04-06 10:30:27 +02:00			`/* Exception for actions. Normally we would handle this inside SendJsonError(). */`
			`if (verbose)`
			`fail->Set("diagnostic_information", DiagnosticInformation(ex));`
Use initializer lists for arrays and dictionaries 2018-01-11 11:17:38 +01:00
			`results.emplace_back(std::move(fail));`
Implement basic actions framework refs #9080 2015-07-30 17:50:17 +02:00			`}`
			`}`

Build fix 2018-04-06 10:43:33 +02:00			`int statusCode = 500;`
HTTP: Don't override status codes that are not OK 2020-12-04 18:25:48 +01:00			`std::set<int> okStatusCodes, nonOkStatusCodes;`
Return 500 when no api action is successful fixes #5095 2018-04-05 10:47:17 +02:00
			`for (const Dictionary::Ptr& res : results) {`
HTTP: Don't override status codes that are not OK 2020-12-04 18:25:48 +01:00			`if (!res->Contains("code")) {`
			`continue;`
Return 500 when no api action is successful fixes #5095 2018-04-05 10:47:17 +02:00			`}`
HTTP: Don't override status codes that are not OK 2020-12-04 18:25:48 +01:00
			`auto code = res->Get("code");`

			`if (code >= 200 && code <= 299) {`
			`okStatusCodes.insert(code);`
			`} else {`
			`nonOkStatusCodes.insert(code);`
			`}`
			`}`

			`size_t okSize = okStatusCodes.size();`
			`size_t nonOkSize = nonOkStatusCodes.size();`

			`if (okSize == 1u && nonOkSize == 0u) {`
			`statusCode = *okStatusCodes.begin();`
			`} else if (nonOkSize == 1u) {`
			`statusCode = *nonOkStatusCodes.begin();`
			`} else if (okSize >= 2u && nonOkSize == 0u) {`
			`statusCode = 200;`
Return 500 when no api action is successful fixes #5095 2018-04-05 10:47:17 +02:00			`}`

Adjust all HTTP handlers (ex. /v1/events) 2019-02-15 10:33:01 +01:00			`response.result(statusCode);`
Fix API action status codes 2018-04-06 10:03:09 +02:00
Use initializer lists for arrays and dictionaries 2018-01-11 11:17:38 +01:00			`Dictionary::Ptr result = new Dictionary({`
			`{ "results", new Array(std::move(results)) }`
			`});`
Implement basic actions framework refs #9080 2015-07-30 17:50:17 +02:00
API: Add 'pretty' parameter for beautified JSON response bodies fixes #5877 2017-12-20 15:31:05 +01:00			`HttpUtility::SendJsonBody(response, params, result);`
Implement basic actions framework refs #9080 2015-07-30 17:50:17 +02:00
			`return true;`
			`}`