""" Classes to serialize the RESTful representation of Deis API models. """ import json import re from django.contrib.auth.models import User from django.utils import timezone from rest_framework import serializers from api import models # proc type name is alphanumeric # https://docs-v2.readthedocs.io/en/latest/using-workflow/process-types-and-the-procfile/#declaring-process-types PROCTYPE_MATCH = re.compile(r'^(?P[a-z0-9]+)$') MEMLIMIT_MATCH = re.compile(r'^(?P[0-9]+(MB|KB|GB|[BKMG]))$', re.IGNORECASE) CPUSHARE_MATCH = re.compile(r'^(?P[-+]?[0-9]*\.?[0-9]+[m]{0,1})$') TAGVAL_MATCH = re.compile(r'^(?:[a-zA-Z\d][-\.\w]{0,61})?[a-zA-Z\d]$') CONFIGKEY_MATCH = re.compile(r'^[a-z_]+[a-z0-9_]*$', re.IGNORECASE) class JSONFieldSerializer(serializers.JSONField): def __init__(self, *args, **kwargs): super(JSONFieldSerializer, self).__init__(*args, **kwargs) def to_internal_value(self, data): """Deserialize the field's JSON data, for write operations.""" try: val = json.loads(data) except TypeError: val = data return val def to_representation(self, obj): """Serialize the field's JSON data, for read operations.""" for k, v in obj.items(): if v is None: # NoneType is used to unset a value continue try: obj[k] = str(v) except ValueError: obj[k] = v # Do nothing, the validator will catch this later return obj class UserSerializer(serializers.ModelSerializer): class Meta: model = User fields = ['email', 'username', 'password', 'first_name', 'last_name', 'is_superuser', 'is_staff', 'groups', 'user_permissions', 'last_login', 'date_joined', 'is_active'] read_only_fields = ['is_superuser', 'is_staff', 'groups', 'user_permissions', 'last_login', 'date_joined', 'is_active'] extra_kwargs = {'password': {'write_only': True}} def create(self, validated_data): now = timezone.now() user = User( email=validated_data.get('email'), username=validated_data.get('username'), last_login=now, date_joined=now, is_active=True ) if validated_data.get('first_name'): user.first_name = validated_data['first_name'] if validated_data.get('last_name'): user.last_name = validated_data['last_name'] user.set_password(validated_data['password']) # Make the first signup an admin / superuser if not User.objects.filter(is_superuser=True).exists(): user.is_superuser = user.is_staff = True user.save() return user class AdminUserSerializer(serializers.ModelSerializer): """Serialize admin status for a User model.""" class Meta: model = User fields = ['username', 'is_superuser'] read_only_fields = ['username'] class AppSerializer(serializers.ModelSerializer): """Serialize a :class:`~api.models.App` model.""" owner = serializers.ReadOnlyField(source='owner.username') structure = serializers.JSONField(required=False) class Meta: """Metadata options for a :class:`AppSerializer`.""" model = models.App fields = ['uuid', 'id', 'owner', 'structure', 'created', 'updated'] class BuildSerializer(serializers.ModelSerializer): """Serialize a :class:`~api.models.Build` model.""" app = serializers.SlugRelatedField(slug_field='id', queryset=models.App.objects.all()) owner = serializers.ReadOnlyField(source='owner.username') procfile = serializers.JSONField(required=False) class Meta: """Metadata options for a :class:`BuildSerializer`.""" model = models.Build fields = ['owner', 'app', 'image', 'sha', 'procfile', 'dockerfile', 'created', 'updated', 'uuid'] class ConfigSerializer(serializers.ModelSerializer): """Serialize a :class:`~api.models.Config` model.""" app = serializers.SlugRelatedField(slug_field='id', queryset=models.App.objects.all()) owner = serializers.ReadOnlyField(source='owner.username') values = JSONFieldSerializer(required=False, binary=True) memory = JSONFieldSerializer(required=False, binary=True) cpu = JSONFieldSerializer(required=False, binary=True) tags = JSONFieldSerializer(required=False, binary=True) registry = JSONFieldSerializer(required=False, binary=True) class Meta: """Metadata options for a :class:`ConfigSerializer`.""" model = models.Config def validate_values(self, data): for key, value in data.items(): if not re.match(CONFIGKEY_MATCH, key): raise serializers.ValidationError( "Config keys must start with a letter or underscore and " "only contain [A-z0-9_]") return data def validate_memory(self, data): for key, value in data.items(): if value is None: # use NoneType to unset an item continue if not re.match(PROCTYPE_MATCH, key): raise serializers.ValidationError("Process types can only contain alphanumeric") if not re.match(MEMLIMIT_MATCH, str(value)): raise serializers.ValidationError( "Limit format: , where unit = B, K, M or G") return data def validate_cpu(self, data): for key, value in data.items(): if value is None: # use NoneType to unset an item continue if not re.match(PROCTYPE_MATCH, key): raise serializers.ValidationError("Process types can only contain alphanumeric") shares = re.match(CPUSHARE_MATCH, str(value)) if not shares: raise serializers.ValidationError("CPU shares must be a numeric value") return data def validate_tags(self, data): for key, value in data.items(): if value is None: # use NoneType to unset an item continue # split key into a prefix and name if '/' in key: prefix, name = key.split('/') else: prefix, name = None, key # validate optional prefix if prefix: if len(prefix) > 253: raise serializers.ValidationError( "Tag key prefixes must 253 characters or less.") for part in prefix.split('/'): if not re.match(TAGVAL_MATCH, part): raise serializers.ValidationError( "Tag key prefixes must be DNS subdomains.") # validate required name if not re.match(TAGVAL_MATCH, name): raise serializers.ValidationError( "Tag keys must be alphanumeric or \"-_.\", and 1-63 characters.") # validate value if it isn't empty if value and not re.match(TAGVAL_MATCH, str(value)): raise serializers.ValidationError( "Tag values must be alphanumeric or \"-_.\", and 1-63 characters.") return data def validate_registry(self, data): for key, value in data.items(): if not re.match(CONFIGKEY_MATCH, key): raise serializers.ValidationError( "Config keys must start with a letter or underscore and " "only contain [A-z0-9_]") return data class ReleaseSerializer(serializers.ModelSerializer): """Serialize a :class:`~api.models.Release` model.""" app = serializers.SlugRelatedField(slug_field='id', queryset=models.App.objects.all()) owner = serializers.ReadOnlyField(source='owner.username') class Meta: """Metadata options for a :class:`ReleaseSerializer`.""" model = models.Release class KeySerializer(serializers.ModelSerializer): """Serialize a :class:`~api.models.Key` model.""" owner = serializers.ReadOnlyField(source='owner.username') class Meta: """Metadata options for a KeySerializer.""" model = models.Key class DomainSerializer(serializers.ModelSerializer): """Serialize a :class:`~api.models.Domain` model.""" app = serializers.SlugRelatedField(slug_field='id', queryset=models.App.objects.all()) owner = serializers.ReadOnlyField(source='owner.username') class Meta: """Metadata options for a :class:`DomainSerializer`.""" model = models.Domain fields = ['owner', 'created', 'updated', 'app', 'domain'] read_only_fields = ['uuid'] def validate_domain(self, value): """ Check that the hostname is valid """ if len(value) > 255: raise serializers.ValidationError('Hostname must be 255 characters or less.') if value[-1:] == ".": value = value[:-1] # strip exactly one dot from the right, if present labels = value.split('.') if 'xip.io' in value: return value # Let wildcards through by not trying to validate it if labels[0] == '*': labels.pop(0) if len(labels) == 0: raise serializers.ValidationError("Hostname can't only be a wildcard") # TODO this doesn't support IDN domains allowed = re.compile("^(?!-)[a-z0-9-]{1,63}(?