mirror of
https://github.com/absmach/supermq.git
synced 2026-06-23 07:30:25 +00:00
b1ackd0t
ee3716623c
Signed-off-by: Rodney Osodo <28790446+rodneyosodo@users.noreply.github.com> Signed-off-by: Rodney Osodo <socials@rodneyosodo.com> Signed-off-by: rodneyosodo <blackd0t@protonmail.com>
121 lines
3.0 KiB
Go
121 lines
3.0 KiB
Go
// Copyright (c) Abstract Machines
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
|
|
package api
|
|
|
|
import (
|
|
"context"
|
|
"encoding/json"
|
|
"log/slog"
|
|
"net/http"
|
|
|
|
"github.com/absmach/magistrala"
|
|
"github.com/absmach/magistrala/certs"
|
|
"github.com/absmach/magistrala/internal/api"
|
|
"github.com/absmach/magistrala/pkg/apiutil"
|
|
"github.com/absmach/magistrala/pkg/errors"
|
|
"github.com/go-chi/chi/v5"
|
|
kithttp "github.com/go-kit/kit/transport/http"
|
|
"github.com/prometheus/client_golang/prometheus/promhttp"
|
|
"go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp"
|
|
)
|
|
|
|
const (
|
|
contentType = "application/json"
|
|
offsetKey = "offset"
|
|
limitKey = "limit"
|
|
defOffset = 0
|
|
defLimit = 10
|
|
)
|
|
|
|
// MakeHandler returns a HTTP handler for API endpoints.
|
|
func MakeHandler(svc certs.Service, logger *slog.Logger, instanceID string) http.Handler {
|
|
opts := []kithttp.ServerOption{
|
|
kithttp.ServerErrorEncoder(apiutil.LoggingErrorEncoder(logger, api.EncodeError)),
|
|
}
|
|
|
|
r := chi.NewRouter()
|
|
|
|
r.Route("/certs", func(r chi.Router) {
|
|
r.Post("/", otelhttp.NewHandler(kithttp.NewServer(
|
|
issueCert(svc),
|
|
decodeCerts,
|
|
api.EncodeResponse,
|
|
opts...,
|
|
), "issue").ServeHTTP)
|
|
r.Get("/{certID}", otelhttp.NewHandler(kithttp.NewServer(
|
|
viewCert(svc),
|
|
decodeViewCert,
|
|
api.EncodeResponse,
|
|
opts...,
|
|
), "view").ServeHTTP)
|
|
r.Delete("/{certID}", otelhttp.NewHandler(kithttp.NewServer(
|
|
revokeCert(svc),
|
|
decodeRevokeCerts,
|
|
api.EncodeResponse,
|
|
opts...,
|
|
), "revoke").ServeHTTP)
|
|
})
|
|
r.Get("/serials/{thingID}", otelhttp.NewHandler(kithttp.NewServer(
|
|
listSerials(svc),
|
|
decodeListCerts,
|
|
api.EncodeResponse,
|
|
opts...,
|
|
), "list_serials").ServeHTTP)
|
|
|
|
r.Handle("/metrics", promhttp.Handler())
|
|
r.Get("/health", magistrala.Health("certs", instanceID))
|
|
|
|
return r
|
|
}
|
|
|
|
func decodeListCerts(_ context.Context, r *http.Request) (interface{}, error) {
|
|
l, err := apiutil.ReadNumQuery[uint64](r, limitKey, defLimit)
|
|
if err != nil {
|
|
return nil, errors.Wrap(apiutil.ErrValidation, err)
|
|
}
|
|
o, err := apiutil.ReadNumQuery[uint64](r, offsetKey, defOffset)
|
|
if err != nil {
|
|
return nil, errors.Wrap(apiutil.ErrValidation, err)
|
|
}
|
|
|
|
req := listReq{
|
|
token: apiutil.ExtractBearerToken(r),
|
|
thingID: chi.URLParam(r, "thingID"),
|
|
limit: l,
|
|
offset: o,
|
|
}
|
|
return req, nil
|
|
}
|
|
|
|
func decodeViewCert(_ context.Context, r *http.Request) (interface{}, error) {
|
|
req := viewReq{
|
|
token: apiutil.ExtractBearerToken(r),
|
|
serialID: chi.URLParam(r, "certID"),
|
|
}
|
|
|
|
return req, nil
|
|
}
|
|
|
|
func decodeCerts(_ context.Context, r *http.Request) (interface{}, error) {
|
|
if r.Header.Get("Content-Type") != contentType {
|
|
return nil, errors.Wrap(apiutil.ErrValidation, apiutil.ErrUnsupportedContentType)
|
|
}
|
|
|
|
req := addCertsReq{token: apiutil.ExtractBearerToken(r)}
|
|
if err := json.NewDecoder(r.Body).Decode(&req); err != nil {
|
|
return nil, errors.Wrap(apiutil.ErrValidation, err)
|
|
}
|
|
|
|
return req, nil
|
|
}
|
|
|
|
func decodeRevokeCerts(_ context.Context, r *http.Request) (interface{}, error) {
|
|
req := revokeReq{
|
|
token: apiutil.ExtractBearerToken(r),
|
|
certID: chi.URLParam(r, "certID"),
|
|
}
|
|
|
|
return req, nil
|
|
}
|