mirror of
https://github.com/empayre/fleet.git
synced 2024-11-06 17:05:18 +00:00
b3e038fffc
#11531 How to use: ``` go run ./tools/mdm/apple/loadtest -api_token $API_TOKEN -fleet_url https://fleet.example.com -team_count 5 -team_extra_count 2 -loop_count 1 2023-05-15T16:05:06Z: 1. Creating 5 teams... (press enter to proceed) 2023-05-15T16:05:18Z: 1. Duration: 165.020742ms 2023-05-15T16:05:18Z: 2. Transfering one host to each team... (press enter to proceed) 2023-05-15T16:05:20Z: 2. Duration: 370.515741ms 2023-05-15T16:05:20Z: 3a. Add 10 profiles to all teams... (press enter to proceed) 2023-05-15T16:05:22Z: Applying profiles to team Team 0... 2023-05-15T16:05:22Z: Applying profiles to team Team 1... 2023-05-15T16:05:22Z: Applying profiles to team Team 2... 2023-05-15T16:05:22Z: Applying profiles to team Team 3... 2023-05-15T16:05:22Z: Applying profiles to team Team 4... 2023-05-15T16:05:22Z: 3a. Duration: 502.557741ms 2023-05-15T16:05:22Z: 3b. Waiting for all profiles to be applied on all teams... 2023-05-15T16:05:22Z: Waiting for all profiles to be applied on hosts..., summary: map[41:{Verifying:0 Pending:1 Failed:0} 42:{Verifying:0 Pending:1 Failed:0} 43:{Verifying:0 Pending:1 Failed:0} 44:{Verifying:0 Pending:1 Failed:0} 45:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:05:27Z: Waiting for all profiles to be applied on hosts..., summary: map[41:{Verifying:0 Pending:1 Failed:0} 42:{Verifying:0 Pending:1 Failed:0} 43:{Verifying:0 Pending:1 Failed:0} 44:{Verifying:0 Pending:1 Failed:0} 45:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:05:32Z: Waiting for all profiles to be applied on hosts..., summary: map[41:{Verifying:0 Pending:1 Failed:0} 42:{Verifying:0 Pending:1 Failed:0} 43:{Verifying:0 Pending:1 Failed:0} 44:{Verifying:0 Pending:1 Failed:0} 45:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:05:37Z: Waiting for all profiles to be applied on hosts..., summary: map[41:{Verifying:0 Pending:1 Failed:0} 42:{Verifying:0 Pending:1 Failed:0} 43:{Verifying:0 Pending:1 Failed:0} 44:{Verifying:0 Pending:1 Failed:0} 45:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:05:42Z: Waiting for all profiles to be applied on hosts..., summary: map[41:{Verifying:0 Pending:1 Failed:0} 42:{Verifying:1 Pending:0 Failed:0} 43:{Verifying:1 Pending:0 Failed:0} 44:{Verifying:0 Pending:1 Failed:0} 45:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:05:48Z: 3b. Duration: 25.487993296s 2023-05-15T16:05:48Z: 4a. Modify a profile on all teams... (press enter to proceed) 2023-05-15T16:05:50Z: 4a. Duration: 654.712391ms 2023-05-15T16:05:50Z: 4b. Waiting for all profiles to be applied on all hosts of all teams... 2023-05-15T16:05:50Z: Waiting for all profiles to be applied on hosts..., summary: map[41:{Verifying:0 Pending:1 Failed:0} 42:{Verifying:0 Pending:1 Failed:0} 43:{Verifying:0 Pending:1 Failed:0} 44:{Verifying:0 Pending:1 Failed:0} 45:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:05:55Z: Waiting for all profiles to be applied on hosts..., summary: map[41:{Verifying:0 Pending:1 Failed:0} 42:{Verifying:0 Pending:1 Failed:0} 43:{Verifying:0 Pending:1 Failed:0} 44:{Verifying:0 Pending:1 Failed:0} 45:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:06:00Z: Waiting for all profiles to be applied on hosts..., summary: map[41:{Verifying:0 Pending:1 Failed:0} 42:{Verifying:0 Pending:1 Failed:0} 43:{Verifying:0 Pending:1 Failed:0} 44:{Verifying:0 Pending:1 Failed:0} 45:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:06:05Z: Waiting for all profiles to be applied on hosts..., summary: map[41:{Verifying:0 Pending:1 Failed:0} 42:{Verifying:0 Pending:1 Failed:0} 43:{Verifying:0 Pending:1 Failed:0} 44:{Verifying:0 Pending:1 Failed:0} 45:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:06:10Z: Waiting for all profiles to be applied on hosts..., summary: map[41:{Verifying:0 Pending:1 Failed:0} 42:{Verifying:1 Pending:0 Failed:0} 43:{Verifying:0 Pending:1 Failed:0} 44:{Verifying:0 Pending:1 Failed:0} 45:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:06:15Z: Waiting for all profiles to be applied on hosts..., summary: map[41:{Verifying:0 Pending:1 Failed:0} 42:{Verifying:1 Pending:0 Failed:0} 43:{Verifying:1 Pending:0 Failed:0} 44:{Verifying:1 Pending:0 Failed:0} 45:{Verifying:1 Pending:0 Failed:0}] 2023-05-15T16:06:20Z: 4b. Duration: 30.48166655s 2023-05-15T16:06:20Z: 5. Creating extra 2 teams... (press enter to proceed) 2023-05-15T16:06:22Z: 5. Duration: 72.531251ms 2023-05-15T16:06:22Z: 6a. Moving one host to each new extra 2 teams... (press enter to proceed) 2023-05-15T16:07:23Z: 6a. Duration: 164.446788ms 2023-05-15T16:07:23Z: 6b. Waiting for all profiles to be applied on all hosts of the extra teams... 2023-05-15T16:07:23Z: Waiting for all profiles to be applied on hosts..., summary: map[46:{Verifying:0 Pending:1 Failed:0} 47:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:07:29Z: Waiting for all profiles to be applied on hosts..., summary: map[46:{Verifying:0 Pending:1 Failed:0} 47:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:07:34Z: Waiting for all profiles to be applied on hosts..., summary: map[46:{Verifying:0 Pending:1 Failed:0} 47:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:07:39Z: Waiting for all profiles to be applied on hosts..., summary: map[46:{Verifying:0 Pending:1 Failed:0} 47:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:07:44Z: Waiting for all profiles to be applied on hosts..., summary: map[46:{Verifying:0 Pending:1 Failed:0} 47:{Verifying:1 Pending:0 Failed:0}] 2023-05-15T16:07:49Z: 6b. Duration: 25.210811603s 2023-05-15T16:07:49Z: 7a. Add 10 profiles to all extra 2 teams... (press enter to proceed) 2023-05-15T16:07:50Z: 7a. Duration: 175.694423ms 2023-05-15T16:07:50Z: 7b. Waiting for all profiles to be applied on all hosts of the extra teams... 2023-05-15T16:07:50Z: Waiting for all profiles to be applied on hosts..., summary: map[46:{Verifying:0 Pending:1 Failed:0} 47:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:07:55Z: Waiting for all profiles to be applied on hosts..., summary: map[46:{Verifying:0 Pending:1 Failed:0} 47:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:08:01Z: Waiting for all profiles to be applied on hosts..., summary: map[46:{Verifying:0 Pending:1 Failed:0} 47:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:08:06Z: Waiting for all profiles to be applied on hosts..., summary: map[46:{Verifying:0 Pending:1 Failed:0} 47:{Verifying:0 Pending:1 Failed:0}] 2023-05-15T16:08:11Z: Waiting for all profiles to be applied on hosts..., summary: map[46:{Verifying:0 Pending:1 Failed:0} 47:{Verifying:1 Pending:0 Failed:0}] 2023-05-15T16:08:16Z: Waiting for all profiles to be applied on hosts..., summary: map[46:{Verifying:0 Pending:1 Failed:0} 47:{Verifying:1 Pending:0 Failed:0}] 2023-05-15T16:08:21Z: 7b. Duration: 30.219261468s 2023-05-15T16:08:21Z: 8. Destroy 2 extra teams... (press enter to proceed) 2023-05-15T16:08:31Z: 8. Duration: 134.372194ms ``` - ~[ ] Changes file added for user-visible changes in `changes/` or `orbit/changes/`.~ See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - ~[ ] Documented any API changes (docs/Using-Fleet/REST-API.md or docs/Contributing/API-for-contributors.md)~ - ~[ ] Documented any permissions changes~ - ~[ ] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements)~ - ~[ ] Added support on fleet's osquery simulator `cmd/osquery-perf` for new osquery data ingestion features.~ - ~[ ] Added/updated tests~ - [X] Manual QA for all new/changed functionality - ~For Orbit and Fleet Desktop changes:~ - ~[ ] Manual QA must be performed in the three main OSs, macOS, Windows and Linux.~ - ~[ ] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).~
111 lines
3.0 KiB
Go
111 lines
3.0 KiB
Go
package service
|
|
|
|
import (
|
|
"bytes"
|
|
"encoding/json"
|
|
"errors"
|
|
"fmt"
|
|
"io"
|
|
"mime/multipart"
|
|
"net/http"
|
|
"net/url"
|
|
"strconv"
|
|
|
|
"github.com/fleetdm/fleet/v4/server/fleet"
|
|
)
|
|
|
|
func (c *Client) DeleteProfile(profileID uint) error {
|
|
verb, path := "DELETE", "/api/latest/fleet/mdm/apple/profiles/"+strconv.FormatUint(uint64(profileID), 10)
|
|
var responseBody deleteMDMAppleConfigProfileResponse
|
|
return c.authenticatedRequest(nil, verb, path, &responseBody)
|
|
}
|
|
|
|
func (c *Client) ListProfiles(teamID *uint) ([]*fleet.MDMAppleConfigProfile, error) {
|
|
verb, path := "GET", "/api/latest/fleet/mdm/apple/profiles"
|
|
query := make(url.Values)
|
|
if teamID != nil {
|
|
query.Add("team_id", strconv.FormatUint(uint64(*teamID), 10))
|
|
}
|
|
var responseBody listMDMAppleConfigProfilesResponse
|
|
if err := c.authenticatedRequestWithQuery(nil, verb, path, &responseBody, query.Encode()); err != nil {
|
|
return nil, err
|
|
}
|
|
return responseBody.ConfigProfiles, nil
|
|
}
|
|
|
|
func (c *Client) AddProfile(teamID uint, configurationProfile []byte) (uint, error) {
|
|
if c.token == "" {
|
|
return 0, errors.New("authentication token is empty")
|
|
}
|
|
body := &bytes.Buffer{}
|
|
writer := multipart.NewWriter(body)
|
|
teamIDField, err := writer.CreateFormField("team_id")
|
|
if err != nil {
|
|
return 0, err
|
|
}
|
|
if _, err := teamIDField.Write([]byte(strconv.FormatUint(uint64(teamID), 10))); err != nil {
|
|
return 0, err
|
|
}
|
|
profileField, err := writer.CreateFormFile("profile", "mobileconfig")
|
|
if err != nil {
|
|
return 0, err
|
|
}
|
|
if _, err := profileField.Write(configurationProfile); err != nil {
|
|
return 0, err
|
|
}
|
|
if err := writer.Close(); err != nil {
|
|
return 0, err
|
|
}
|
|
|
|
request, err := http.NewRequest(
|
|
"POST",
|
|
c.baseURL.String()+"/api/latest/fleet/mdm/apple/profiles",
|
|
body,
|
|
)
|
|
if err != nil {
|
|
return 0, err
|
|
}
|
|
request.Header.Set("Content-Type", writer.FormDataContentType())
|
|
request.Header.Set("Accept", "application/json")
|
|
request.Header.Set("Authorization", fmt.Sprintf("Bearer %s", c.token))
|
|
|
|
response, err := c.http.Do(request)
|
|
if err != nil {
|
|
return 0, err
|
|
}
|
|
defer response.Body.Close()
|
|
|
|
if response.Header.Get(fleet.HeaderLicenseKey) == fleet.HeaderLicenseValueExpired {
|
|
fleet.WriteExpiredLicenseBanner(c.writer)
|
|
}
|
|
|
|
if response.StatusCode != http.StatusOK {
|
|
return 0, fmt.Errorf("request failed: %s", response.Status)
|
|
}
|
|
|
|
responseBody, err := io.ReadAll(response.Body)
|
|
if err != nil {
|
|
return 0, err
|
|
}
|
|
|
|
var addProfileResponse *newMDMAppleConfigProfileResponse
|
|
if err := json.Unmarshal(responseBody, &addProfileResponse); err != nil {
|
|
return 0, err
|
|
}
|
|
|
|
return addProfileResponse.ProfileID, nil
|
|
}
|
|
|
|
func (c *Client) GetConfigProfilesSummary(teamID *uint) (*fleet.MDMAppleConfigProfilesSummary, error) {
|
|
verb, path := "GET", "/api/latest/fleet/mdm/apple/profiles/summary"
|
|
query := make(url.Values)
|
|
if teamID != nil {
|
|
query.Add("team_id", strconv.FormatUint(uint64(*teamID), 10))
|
|
}
|
|
var responseBody getMDMAppleProfilesSummaryResponse
|
|
if err := c.authenticatedRequestWithQuery(nil, verb, path, &responseBody, query.Encode()); err != nil {
|
|
return nil, err
|
|
}
|
|
return &responseBody.MDMAppleConfigProfilesSummary, nil
|
|
}
|