Merge pull request #4091 from Joshua-Anderson/add-perms

feat(client-go): add perms endpoint

Author: Matthew Fisher

client-go/cmd/perms.go

@@ -0,0 +1,111 @@
+package cmd
+
+import (
+	"fmt"
+
+	"github.com/deis/deis/client-go/controller/client"
+	"github.com/deis/deis/client-go/controller/models/perms"
+)
+
+// PermsList prints which users have permissions.
+func PermsList(appID string, admin bool) error {
+	c, appID, err := permsLoad(appID, admin)
+
+	if err != nil {
+		return err
+	}
+
+	var users []string
+
+	if admin {
+		users, err = perms.ListAdmins(c)
+	} else {
+		users, err = perms.List(c, appID)
+	}
+
+	if err != nil {
+		return err
+	}
+
+	if admin {
+		fmt.Println("=== Administrators")
+	} else {
+		fmt.Printf("=== %s's Users\n", appID)
+	}
+
+	for _, user := range users {
+		fmt.Println(user)
+	}
+
+	return nil
+}
+
+// PermCreate adds a user to an app or makes them an administrator.
+func PermCreate(appID string, username string, admin bool) error {
+
+	c, appID, err := permsLoad(appID, admin)
+
+	if err != nil {
+		return err
+	}
+
+	if admin {
+		fmt.Printf("Adding %s to system administrators... ", username)
+		perms.NewAdmin(c, username)
+	} else {
+		fmt.Printf("Adding %s to %s collaborators... ", username, appID)
+		perms.New(c, appID, username)
+	}
+
+	if err != nil {
+		return err
+	}
+
+	fmt.Println("done")
+
+	return nil
+}
+
+// PermDelete removes a user from an app or revokes admin privilages.
+func PermDelete(appID string, username string, admin bool) error {
+
+	c, appID, err := permsLoad(appID, admin)
+
+	if err != nil {
+		return err
+	}
+
+	if admin {
+		fmt.Printf("Removing %s from system administrators... ", username)
+		perms.DeleteAdmin(c, username)
+	} else {
+		fmt.Printf("Removing %s from %s collaborators... ", username, appID)
+		perms.Delete(c, appID, username)
+	}
+
+	if err != nil {
+		return err
+	}
+
+	fmt.Println("done")
+
+	return nil
+}
+
+func permsLoad(appID string, admin bool) (*client.Client, string, error) {
+	c, err := client.New()
+
+	if err != nil {
+		return nil, "", err
+	}
+
+	if !admin && appID == "" {
+		appID, err = c.DetectApp()
+
+		if err != nil {
+			return nil, "", err
+		}
+	}
+
+	return c, appID, err
+}

client-go/controller/api/perms.go

@@ -0,0 +1,21 @@
+package api
+
+// PermsAppResponse is the definition of GET /v1/apps/<app id>/perms/.
+type PermsAppResponse struct {
+	Users []string `json:"users"`
+}
+
+// PermsAdminResponse is the definition of GET /v1/admin/perms/.
+type PermsAdminResponse struct {
+	Count    int `json:"count"`
+	Next     int `json:"next"`
+	Previous int `json:"previous"`
+	Users    []struct {
+		Username string `json:"username"`
+	} `json:"results"`
+}
+
+// PermsRequest is the definition of a requst on /perms/.
+type PermsRequest struct {
+	Username string `json:"username"`
+}

client-go/controller/models/perms/perms.go

@@ -0,0 +1,118 @@
+package perms
+
+import (
+	"encoding/json"
+	"errors"
+	"fmt"
+
+	"github.com/deis/deis/client-go/controller/api"
+	"github.com/deis/deis/client-go/controller/client"
+)
+
+// List users that can access an app.
+func List(c *client.Client, appID string) ([]string, error) {
+	body, err := doList(c, fmt.Sprintf("/v1/apps/%s/perms/", appID))
+
+	if err != nil {
+		return []string{}, err
+	}
+
+	users := api.PermsAppResponse{}
+	if err = json.Unmarshal([]byte(body), &users); err != nil {
+		return []string{}, err
+	}
+
+	return users.Users, nil
+}
+
+// ListAdmins lists administrators.
+func ListAdmins(c *client.Client) ([]string, error) {
+	body, err := doList(c, "/v1/admin/perms/")
+
+	if err != nil {
+		return []string{}, err
+	}
+
+	users := api.PermsAdminResponse{}
+	if err = json.Unmarshal([]byte(body), &users); err != nil {
+		return []string{}, err
+	}
+
+	usersList := []string{}
+
+	for _, user := range users.Users {
+		usersList = append(usersList, user.Username)
+	}
+
+	return usersList, nil
+}
+
+func doList(c *client.Client, u string) (string, error) {
+	body, status, err := c.BasicRequest("GET", u, nil)
+
+	if err != nil {
+		return "", err
+	}
+
+	if status != 200 {
+		return "", errors.New(body)
+	}
+
+	return body, nil
+}
+
+// New adds a user to an app.
+func New(c *client.Client, appID string, username string) error {
+	return doNew(c, fmt.Sprintf("/v1/apps/%s/perms/", appID), username)
+}
+
+// NewAdmin makes a user an administrator.
+func NewAdmin(c *client.Client, username string) error {
+	return doNew(c, "/v1/admin/perms/", username)
+}
+
+func doNew(c *client.Client, u string, username string) error {
+	req := api.PermsRequest{Username: username}
+
+	reqBody, err := json.Marshal(req)
+
+	if err != nil {
+		return err
+	}
+
+	body, status, err := c.BasicRequest("POST", u, reqBody)
+
+	if err != nil {
+		return err
+	}
+
+	if status != 201 {
+		return errors.New(body)
+	}
+
+	return nil
+}
+
+// Delete removes a user from an app.
+func Delete(c *client.Client, appID string, username string) error {
+	return doDelete(c, fmt.Sprintf("/v1/apps/%s/perms/%s", appID, username))
+}
+
+// DeleteAdmin removes administrative privilages from a user.
+func DeleteAdmin(c *client.Client, username string) error {
+	return doDelete(c, fmt.Sprintf("/v1/admin/perms/%s", username))
+}
+
+func doDelete(c *client.Client, u string) error {
+	body, status, err := c.BasicRequest("DELETE", u, nil)
+
+	if err != nil {
+		return err
+	}
+
+	if status != 204 {
+		return errors.New(body)
+	}
+
+	return nil
+}