// Copyright (c) Mainflux // SPDX-License-Identifier: Apache-2.0 package keys import ( "context" "encoding/json" "net/http" "strings" kitot "github.com/go-kit/kit/tracing/opentracing" kithttp "github.com/go-kit/kit/transport/http" "github.com/go-zoo/bone" "github.com/mainflux/mainflux" "github.com/mainflux/mainflux/auth" "github.com/mainflux/mainflux/internal/apiutil" "github.com/mainflux/mainflux/logger" "github.com/mainflux/mainflux/pkg/errors" "github.com/opentracing/opentracing-go" ) const ( contentType = "application/json" offsetKey = "offset" limitKey = "limit" subjectKey = "subject" typeKey = "type" defOffset = 0 defLimit = 10 defType = 2 ) // MakeHandler returns a HTTP handler for API endpoints. func MakeHandler(svc auth.Service, mux *bone.Mux, tracer opentracing.Tracer, logger logger.Logger) *bone.Mux { opts := []kithttp.ServerOption{ kithttp.ServerErrorEncoder(apiutil.LoggingErrorEncoder(logger, encodeError)), } mux.Post("/keys", kithttp.NewServer( kitot.TraceServer(tracer, "issue")(issueEndpoint(svc)), decodeIssue, encodeResponse, opts..., )) mux.Get("/keys", kithttp.NewServer( kitot.TraceServer(tracer, "issue")(retrieveKeysEndpoint(svc)), decodeListKeysRequest, encodeResponse, opts..., )) mux.Get("/keys/:keyID", kithttp.NewServer( kitot.TraceServer(tracer, "retrieve")(retrieveEndpoint(svc)), decodeKeyReq, encodeResponse, opts..., )) mux.Delete("/keys/:keyID", kithttp.NewServer( kitot.TraceServer(tracer, "revoke")(revokeEndpoint(svc)), decodeKeyReq, encodeResponse, opts..., )) return mux } func decodeIssue(_ context.Context, r *http.Request) (interface{}, error) { if !strings.Contains(r.Header.Get("Content-Type"), contentType) { return nil, errors.ErrUnsupportedContentType } req := issueKeyReq{token: apiutil.ExtractBearerToken(r)} if err := json.NewDecoder(r.Body).Decode(&req); err != nil { return nil, errors.Wrap(errors.ErrMalformedEntity, err) } return req, nil } func decodeKeyReq(_ context.Context, r *http.Request) (interface{}, error) { req := keyReq{ token: apiutil.ExtractBearerToken(r), id: bone.GetValue(r, "keyID"), } return req, nil } func decodeListKeysRequest(_ context.Context, r *http.Request) (interface{}, error) { s, err := apiutil.ReadStringQuery(r, subjectKey, "") if err != nil { return nil, err } t, err := apiutil.ReadUintQuery(r, typeKey, defType) if err != nil { return nil, err } o, err := apiutil.ReadUintQuery(r, offsetKey, defOffset) if err != nil { return nil, err } l, err := apiutil.ReadUintQuery(r, limitKey, defLimit) if err != nil { return nil, err } req := listKeysReq{ token: apiutil.ExtractBearerToken(r), subject: s, keyType: uint32(t), offset: o, limit: l, } return req, nil } func encodeResponse(_ context.Context, w http.ResponseWriter, response interface{}) error { w.Header().Set("Content-Type", contentType) if ar, ok := response.(mainflux.Response); ok { for k, v := range ar.Headers() { w.Header().Set(k, v) } w.WriteHeader(ar.Code()) if ar.Empty() { return nil } } return json.NewEncoder(w).Encode(response) } func encodeError(_ context.Context, err error, w http.ResponseWriter) { switch { case errors.Contains(err, errors.ErrMalformedEntity), err == apiutil.ErrMissingID, err == apiutil.ErrInvalidAPIKey: w.WriteHeader(http.StatusBadRequest) case errors.Contains(err, errors.ErrAuthentication), err == apiutil.ErrBearerToken: w.WriteHeader(http.StatusUnauthorized) case errors.Contains(err, errors.ErrNotFound): w.WriteHeader(http.StatusNotFound) case errors.Contains(err, errors.ErrInvalidQueryParams), errors.Contains(err, errors.ErrMalformedEntity), err == apiutil.ErrMissingID, err == apiutil.ErrBearerKey, err == apiutil.ErrLimitSize, err == apiutil.ErrOffsetSize, err == apiutil.ErrInvalidIDFormat: w.WriteHeader(http.StatusBadRequest) case errors.Contains(err, errors.ErrConflict): w.WriteHeader(http.StatusConflict) case errors.Contains(err, errors.ErrUnsupportedContentType): w.WriteHeader(http.StatusUnsupportedMediaType) default: w.WriteHeader(http.StatusInternalServerError) } if errorVal, ok := err.(errors.Error); ok { w.Header().Set("Content-Type", contentType) if err := json.NewEncoder(w).Encode(apiutil.ErrorRes{Err: errorVal.Msg()}); err != nil { w.WriteHeader(http.StatusInternalServerError) } } }