1 # Copyright (C) The Arvados Authors. All rights reserved.
3 # SPDX-License-Identifier: AGPL-3.0
5 class Arvados::V1::ContainersController < ApplicationController
6 accept_attribute_as_json :environment, Hash
7 accept_attribute_as_json :mounts, Hash
8 accept_attribute_as_json :runtime_constraints, Hash
9 accept_attribute_as_json :command, Array
10 accept_attribute_as_json :scheduling_parameters, Hash
12 skip_before_filter :find_object_by_uuid, only: [:current]
13 skip_before_filter :render_404_if_no_object, only: [:current]
16 if @object.locked_by_uuid != Thread.current[:api_client_authorization].uuid
17 raise ArvadosModel::PermissionDeniedError.new("Not locked by your token")
19 @object = @object.auth
24 # container updates can trigger container request lookups, which
25 # can deadlock if we don't lock the container_requests table
27 @object.transaction do
28 ActiveRecord::Base.connection.execute('LOCK container_requests, containers IN EXCLUSIVE MODE')
34 def find_objects_for_index
36 if action_name == 'lock' || action_name == 'unlock'
37 # Avoid loading more fields than we need
38 @objects = @objects.select(:id, :uuid, :state, :priority, :auth_uuid, :locked_by_uuid)
39 @select = %w(uuid state priority auth_uuid locked_by_uuid)
54 if Thread.current[:api_client_authorization].nil?
55 send_error("Not logged in", status: 401)
57 c = Container.where(auth_uuid: Thread.current[:api_client_authorization].uuid).first
59 send_error("Token is not associated with a container.", status: 404)
70 @object.auth_uuid == Thread.current[:api_client_authorization].uuid
71 send_json({"secret_mounts" => @object.secret_mounts})
73 send_error("Token is not associated with this container.", status: 403)