fleet/server.go

package main

import (
	"time"

	"github.com/Sirupsen/logrus"
	"github.com/gin-gonic/contrib/ginrus"
	"github.com/gin-gonic/gin"
)

// ServerError is a helper which accepts a string error and returns a map in
// format that is required by gin.Context.JSON
func ServerError(e string) *map[string]interface{} {
	return &map[string]interface{}{
		"error": e,
	}
}

// DatabaseError emits a response that is appropriate in the event that a
// database failure occurs, a record is not found in the database, etc
func DatabaseError(c *gin.Context) {
	c.JSON(500, ServerError("Database error"))
}

// UnauthorizedError emits a response that is appropriate in the event that a
// request is received by a user which is not authorized to carry out the
// requested action
func UnauthorizedError(c *gin.Context) {
	c.JSON(401, ServerError("Unauthorized"))
}

// MalformedRequestError emits a response that is appropriate in the event that
// a request is received by a user which does not have required fields or is in
// some way malformed
func MalformedRequestError(c *gin.Context) {
	c.JSON(400, ServerError("Malformed request"))
}

func createTestServer() *gin.Engine {
	server := gin.New()
	server.Use(TestingDatabaseMiddleware)
	return server
}

// CreateServer creates a gin.Engine HTTP server and configures it to be in a
// state such that it is ready to serve HTTP requests for the kolide application
func CreateServer() *gin.Engine {
	server := gin.New()
	server.Use(ProductionDatabaseMiddleware)

	// TODO: The following loggers are not synchronized with each other or
	// logrus.StandardLogger() used through the rest of the codebase. As
	// such, their output may become intermingled.
	// See https://github.com/Sirupsen/logrus/issues/391

	// Ginrus middleware logs details about incoming requests using the
	// logrus WithFields
	requestLogger := logrus.New()
	server.Use(ginrus.Ginrus(requestLogger, time.RFC3339, false))

	// Recovery middleware recovers from panic(), returning a 500 response
	// code and printing the panic information to the log
	recoveryLogger := logrus.New()
	recoveryLogger.WriterLevel(logrus.ErrorLevel)
	server.Use(gin.RecoveryWithWriter(recoveryLogger.Writer()))

	v1 := server.Group("/api/v1")

	// Kolide application API endpoints
	kolide := v1.Group("/kolide")
	kolide.Use(SessionMiddleware)
	kolide.Use(JWTRenewalMiddleware)

	kolide.POST("/login", Login)
	kolide.GET("/logout", Logout)

	kolide.GET("/user", GetUser)
	kolide.PUT("/user", CreateUser)
	kolide.PATCH("/user", ModifyUser)
	kolide.DELETE("/user", DeleteUser)

	kolide.PATCH("/user/password", ChangeUserPassword)
	kolide.PATCH("/user/admin", SetUserAdminState)
	kolide.PATCH("/user/enabled", SetUserEnabledState)

	// osquery API endpoints
	osquery := v1.Group("/osquery")
	osquery.POST("/enroll", OsqueryEnroll)
	osquery.POST("/config", OsqueryConfig)
	osquery.POST("/log", OsqueryLog)
	osquery.POST("/distributed/read", OsqueryDistributedRead)
	osquery.POST("/distributed/write", OsqueryDistributedWrite)

	return server
}
Initial commit 2016-07-25 03:30:45 +00:00			`package main`

			`import (`
Add logging and convenience methods (#34) * Add request logging. * Catch/log panic in request handlers. * Add `mustGetDB` method that gets a DB connection or panics. This can simplify boilerplate in handlers. * Consolidate `file` and `line` in logged fields to `location`. * Set default log level to `WarnLevel`. * Log a warning when Kolide is started with the example config. * Turn on DB logging in debug mode. 2016-08-03 15:01:59 +00:00			`"time"`

			`"github.com/Sirupsen/logrus"`
			`"github.com/gin-gonic/contrib/ginrus"`
Initial commit 2016-07-25 03:30:45 +00:00			`"github.com/gin-gonic/gin"`
			`)`

Authentication, authorization and user management (#10) 2016-08-01 23:32:20 +00:00			`// ServerError is a helper which accepts a string error and returns a map in`
			`// format that is required by gin.Context.JSON`
			`func ServerError(e string) *map[string]interface{} {`
			`return &map[string]interface{}{`
			`"error": e,`
			`}`
			`}`

			`// DatabaseError emits a response that is appropriate in the event that a`
			`// database failure occurs, a record is not found in the database, etc`
			`func DatabaseError(c *gin.Context) {`
			`c.JSON(500, ServerError("Database error"))`
			`}`

			`// UnauthorizedError emits a response that is appropriate in the event that a`
			`// request is received by a user which is not authorized to carry out the`
			`// requested action`
			`func UnauthorizedError(c *gin.Context) {`
			`c.JSON(401, ServerError("Unauthorized"))`
			`}`

Endpoint integration tests (#28) * Quick fix where JWTRenewalMiddleware wasn't saving the update session to the client * integration tests for all user/account management HTTP endpoints close #15 * Combine checks in CheckUser * Moving t.Fatals into utility functions * Simplifying get user by id or username flow * Fixing incorrect error log message * Simplifying checkUser compare 2016-08-02 22:39:20 +00:00			`// MalformedRequestError emits a response that is appropriate in the event that`
			`// a request is received by a user which does not have required fields or is in`
			`// some way malformed`
			`func MalformedRequestError(c *gin.Context) {`
			`c.JSON(400, ServerError("Malformed request"))`
			`}`

Authentication, authorization and user management (#10) 2016-08-01 23:32:20 +00:00			`func createTestServer() *gin.Engine {`
			`server := gin.New()`
			`server.Use(TestingDatabaseMiddleware)`
			`return server`
			`}`

			`// CreateServer creates a gin.Engine HTTP server and configures it to be in a`
			`// state such that it is ready to serve HTTP requests for the kolide application`
			`func CreateServer() *gin.Engine {`
			`server := gin.New()`
			`server.Use(ProductionDatabaseMiddleware)`

Add logging and convenience methods (#34) * Add request logging. * Catch/log panic in request handlers. * Add `mustGetDB` method that gets a DB connection or panics. This can simplify boilerplate in handlers. * Consolidate `file` and `line` in logged fields to `location`. * Set default log level to `WarnLevel`. * Log a warning when Kolide is started with the example config. * Turn on DB logging in debug mode. 2016-08-03 15:01:59 +00:00			`// TODO: The following loggers are not synchronized with each other or`
			`// logrus.StandardLogger() used through the rest of the codebase. As`
			`// such, their output may become intermingled.`
			`// See https://github.com/Sirupsen/logrus/issues/391`

			`// Ginrus middleware logs details about incoming requests using the`
			`// logrus WithFields`
			`requestLogger := logrus.New()`
			`server.Use(ginrus.Ginrus(requestLogger, time.RFC3339, false))`

			`// Recovery middleware recovers from panic(), returning a 500 response`
			`// code and printing the panic information to the log`
			`recoveryLogger := logrus.New()`
			`recoveryLogger.WriterLevel(logrus.ErrorLevel)`
			`server.Use(gin.RecoveryWithWriter(recoveryLogger.Writer()))`

Authentication, authorization and user management (#10) 2016-08-01 23:32:20 +00:00			`v1 := server.Group("/api/v1")`

			`// Kolide application API endpoints`
			`kolide := v1.Group("/kolide")`
			`kolide.Use(SessionMiddleware)`
			`kolide.Use(JWTRenewalMiddleware)`

			`kolide.POST("/login", Login)`
			`kolide.GET("/logout", Logout)`

			`kolide.GET("/user", GetUser)`
			`kolide.PUT("/user", CreateUser)`
			`kolide.PATCH("/user", ModifyUser)`
			`kolide.DELETE("/user", DeleteUser)`

Endpoint integration tests (#28) * Quick fix where JWTRenewalMiddleware wasn't saving the update session to the client * integration tests for all user/account management HTTP endpoints close #15 * Combine checks in CheckUser * Moving t.Fatals into utility functions * Simplifying get user by id or username flow * Fixing incorrect error log message * Simplifying checkUser compare 2016-08-02 22:39:20 +00:00			`kolide.PATCH("/user/password", ChangeUserPassword)`
Authentication, authorization and user management (#10) 2016-08-01 23:32:20 +00:00			`kolide.PATCH("/user/admin", SetUserAdminState)`
			`kolide.PATCH("/user/enabled", SetUserEnabledState)`
Initial commit 2016-07-25 03:30:45 +00:00
			`// osquery API endpoints`
			`osquery := v1.Group("/osquery")`
			`osquery.POST("/enroll", OsqueryEnroll)`
			`osquery.POST("/config", OsqueryConfig)`
			`osquery.POST("/log", OsqueryLog)`
			`osquery.POST("/distributed/read", OsqueryDistributedRead)`
			`osquery.POST("/distributed/write", OsqueryDistributedWrite)`

			`return server`
			`}`