90870c11be
Add database models that deal with github credentials. This change adds models for github endpoints (github.com, GHES, etc). This change also adds code to migrate config credntials to the DB. Tests need to be fixed and new tests need to be written. This will come in a later commit. Signed-off-by: Gabriel Adrian Samfira <gsamfira@cloudbasesolutions.com>
148 lines
4.4 KiB
Go
148 lines
4.4 KiB
Go
// Copyright 2022 Cloudbase Solutions SRL
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
// not use this file except in compliance with the License. You may obtain
|
|
// a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
// WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
|
// License for the specific language governing permissions and limitations
|
|
// under the License.
|
|
|
|
package sql
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
|
|
"github.com/pkg/errors"
|
|
"gorm.io/gorm"
|
|
|
|
runnerErrors "github.com/cloudbase/garm-provider-common/errors"
|
|
"github.com/cloudbase/garm-provider-common/util"
|
|
"github.com/cloudbase/garm/params"
|
|
)
|
|
|
|
func (s *sqlDatabase) getUserByUsernameOrEmail(user string) (User, error) {
|
|
field := "username"
|
|
if util.IsValidEmail(user) {
|
|
field = "email"
|
|
}
|
|
query := fmt.Sprintf("%s = ?", field)
|
|
|
|
var dbUser User
|
|
q := s.conn.Model(&User{}).Where(query, user).First(&dbUser)
|
|
if q.Error != nil {
|
|
if errors.Is(q.Error, gorm.ErrRecordNotFound) {
|
|
return User{}, runnerErrors.ErrNotFound
|
|
}
|
|
return User{}, errors.Wrap(q.Error, "fetching user")
|
|
}
|
|
return dbUser, nil
|
|
}
|
|
|
|
func (s *sqlDatabase) getUserByID(userID string) (User, error) {
|
|
var dbUser User
|
|
q := s.conn.Model(&User{}).Where("id = ?", userID).First(&dbUser)
|
|
if q.Error != nil {
|
|
if errors.Is(q.Error, gorm.ErrRecordNotFound) {
|
|
return User{}, runnerErrors.ErrNotFound
|
|
}
|
|
return User{}, errors.Wrap(q.Error, "fetching user")
|
|
}
|
|
return dbUser, nil
|
|
}
|
|
|
|
func (s *sqlDatabase) CreateUser(_ context.Context, user params.NewUserParams) (params.User, error) {
|
|
if user.Username == "" || user.Email == "" {
|
|
return params.User{}, runnerErrors.NewBadRequestError("missing username or email")
|
|
}
|
|
if _, err := s.getUserByUsernameOrEmail(user.Username); err == nil || !errors.Is(err, runnerErrors.ErrNotFound) {
|
|
return params.User{}, runnerErrors.NewConflictError("username already exists")
|
|
}
|
|
if _, err := s.getUserByUsernameOrEmail(user.Email); err == nil || !errors.Is(err, runnerErrors.ErrNotFound) {
|
|
return params.User{}, runnerErrors.NewConflictError("email already exists")
|
|
}
|
|
|
|
if s.HasAdminUser(context.Background()) && user.IsAdmin {
|
|
return params.User{}, runnerErrors.NewBadRequestError("admin user already exists")
|
|
}
|
|
|
|
newUser := User{
|
|
Username: user.Username,
|
|
Password: user.Password,
|
|
FullName: user.FullName,
|
|
Enabled: user.Enabled,
|
|
Email: user.Email,
|
|
IsAdmin: user.IsAdmin,
|
|
}
|
|
|
|
q := s.conn.Save(&newUser)
|
|
if q.Error != nil {
|
|
return params.User{}, errors.Wrap(q.Error, "creating user")
|
|
}
|
|
return s.sqlToParamsUser(newUser), nil
|
|
}
|
|
|
|
func (s *sqlDatabase) HasAdminUser(_ context.Context) bool {
|
|
var user User
|
|
q := s.conn.Model(&User{}).Where("is_admin = ?", true).First(&user)
|
|
return q.Error == nil
|
|
}
|
|
|
|
func (s *sqlDatabase) GetUser(_ context.Context, user string) (params.User, error) {
|
|
dbUser, err := s.getUserByUsernameOrEmail(user)
|
|
if err != nil {
|
|
return params.User{}, errors.Wrap(err, "fetching user")
|
|
}
|
|
return s.sqlToParamsUser(dbUser), nil
|
|
}
|
|
|
|
func (s *sqlDatabase) GetUserByID(_ context.Context, userID string) (params.User, error) {
|
|
dbUser, err := s.getUserByID(userID)
|
|
if err != nil {
|
|
return params.User{}, errors.Wrap(err, "fetching user")
|
|
}
|
|
return s.sqlToParamsUser(dbUser), nil
|
|
}
|
|
|
|
func (s *sqlDatabase) UpdateUser(_ context.Context, user string, param params.UpdateUserParams) (params.User, error) {
|
|
dbUser, err := s.getUserByUsernameOrEmail(user)
|
|
if err != nil {
|
|
return params.User{}, errors.Wrap(err, "fetching user")
|
|
}
|
|
|
|
if param.FullName != "" {
|
|
dbUser.FullName = param.FullName
|
|
}
|
|
|
|
if param.Enabled != nil {
|
|
dbUser.Enabled = *param.Enabled
|
|
}
|
|
|
|
if param.Password != "" {
|
|
dbUser.Password = param.Password
|
|
}
|
|
|
|
if q := s.conn.Save(&dbUser); q.Error != nil {
|
|
return params.User{}, errors.Wrap(q.Error, "saving user")
|
|
}
|
|
|
|
return s.sqlToParamsUser(dbUser), nil
|
|
}
|
|
|
|
// GetAdminUser returns the system admin user. This is only for internal use.
|
|
func (s *sqlDatabase) GetAdminUser(_ context.Context) (params.User, error) {
|
|
var user User
|
|
q := s.conn.Model(&User{}).Where("is_admin = ?", true).First(&user)
|
|
if q.Error != nil {
|
|
if errors.Is(q.Error, gorm.ErrRecordNotFound) {
|
|
return params.User{}, runnerErrors.ErrNotFound
|
|
}
|
|
return params.User{}, errors.Wrap(q.Error, "fetching admin user")
|
|
}
|
|
return s.sqlToParamsUser(user), nil
|
|
}
|