Use operating system's bundled CA certificates if available.

[arvados.git] / apps / workbench / app / models / arvados_api_client.rb

require 'httpclient'
require 'thread'

class ArvadosApiClient
  class NotLoggedInException < StandardError
  end
  class InvalidApiResponseException < StandardError
  end

  @@client_mtx = Mutex.new
  @@api_client = nil

  def api(resources_kind, action, data=nil)
    @@client_mtx.synchronize do
      if not @@api_client 
        @@api_client = HTTPClient.new
        if Rails.configuration.arvados_insecure_https
          @@api_client.ssl_config.verify_mode = OpenSSL::SSL::VERIFY_NONE
        else
          # Use system CA certificates
          @@api_client.ssl_config.add_trust_ca('/etc/ssl/certs')
        end
      end
    end

    api_token = Thread.current[:arvados_api_token]
    api_token ||= ''

    resources_kind = class_kind(resources_kind).pluralize if resources_kind.is_a? Class
    url = "#{self.arvados_v1_base}/#{resources_kind}#{action}"

    query = {"api_token" => api_token}
    if !data.nil?
      data.each do |k,v|
        if v.is_a? String or v.nil?
          query[k] = v
        elsif v == true
          query[k] = 1
        elsif v == false
          query[k] = 0
        else
          query[k] = JSON.dump(v)
        end
      end
    else
      query["_method"] = "GET"
    end 
    
    header = {"Accept" => "application/json"}

    msg = @@api_client.post(url, 
                            query,
                            header: header)

    if msg.status_code == 401
      raise NotLoggedInException.new
    end

    json = msg.content
    
    begin
      resp = Oj.load(json, :symbol_keys => true)
    rescue Oj::ParseError
      raise InvalidApiResponseException.new json
    end
    if not resp.is_a? Hash
      raise InvalidApiResponseException.new json
    end
    if resp[:errors]
      #if resp[:errors][0] == 'Not logged in'
      #  raise NotLoggedInException.new
      #else
      #  errors = resp[:errors]
      #  errors = errors.join("\n\n") if errors.is_a? Array
      #  raise "API errors:\n\n#{errors}\n"
    #end
    end
    resp
  end

  def unpack_api_response(j, kind=nil)
    if j.is_a? Hash and j[:items].is_a? Array and j[:kind].match(/(_list|List)$/)
      ary = j[:items].collect { |x| unpack_api_response x, j[:kind] }
      if j[:items_available]
        (class << ary; self; end).class_eval { attr_accessor :items_available }
        ary.items_available = j[:items_available]
      end
      ary
    elsif j.is_a? Hash and (kind || j[:kind])
      oclass = self.kind_class(kind || j[:kind])
      if oclass
        j.keys.each do |k|
          childkind = j["#{k.to_s}_kind".to_sym]
          if childkind
            j[k] = self.unpack_api_response(j[k], childkind)
          end
        end
        oclass.new.private_reload(j)
      else
        j
      end
    else
      j
    end
  end

  def arvados_login_url(params={})
    if Rails.configuration.respond_to? :arvados_login_base
      uri = Rails.configuration.arvados_login_base
    else
      uri = self.arvados_v1_base.sub(%r{/arvados/v\d+.*}, '/login')
    end
    if params.size > 0
      uri += '?' << params.collect { |k,v|
        CGI.escape(k.to_s) + '=' + CGI.escape(v.to_s)
      }.join('&')
    end
  end

  def arvados_logout_url(params={})
    arvados_login_url(params).sub('/login','/logout')
  end

  def arvados_v1_base
    Rails.configuration.arvados_v1_base
  end

  def arvados_schema
    @arvados_schema ||= api 'schema', ''
  end

  def kind_class(kind)
    kind.match(/^arvados\#(.+?)(_list|List)?$/)[1].pluralize.classify.constantize rescue nil
  end

  def class_kind(resource_class)
    resource_class.to_s.underscore
  end
end