X-Git-Url: https://git.arvados.org/arvados.git/blobdiff_plain/3f8336875d5938afb6b00289e9d6c9941456b57f..7aaf9f22aa646077b4b7fd961d6b731185b88137:/services/api/config/routes.rb diff --git a/services/api/config/routes.rb b/services/api/config/routes.rb index 9cb53fee30..738426b1d8 100644 --- a/services/api/config/routes.rb +++ b/services/api/config/routes.rb @@ -1,15 +1,17 @@ -Server::Application.routes.draw do - themes_for_rails +# Copyright (C) The Arvados Authors. All rights reserved. +# +# SPDX-License-Identifier: AGPL-3.0 - # See http://guides.rubyonrails.org/routing.html +Rails.application.routes.draw do + themes_for_rails # OPTIONS requests are not allowed at routes that use cookies. ['/auth/*a', '/login', '/logout'].each do |nono| - match nono, :to => 'user_sessions#cross_origin_forbidden', :via => 'OPTIONS' + match nono, to: 'user_sessions#cross_origin_forbidden', via: 'OPTIONS' end # OPTIONS at discovery and API paths get an empty response with CORS headers. - match '/discovery/v1/*a', :to => 'static#empty', :via => 'OPTIONS' - match '/arvados/v1/*a', :to => 'static#empty', :via => 'OPTIONS' + match '/discovery/v1/*a', to: 'static#empty', via: 'OPTIONS' + match '/arvados/v1/*a', to: 'static#empty', via: 'OPTIONS' namespace :arvados do namespace :v1 do @@ -23,10 +25,14 @@ Server::Application.routes.draw do get 'provenance', on: :member get 'used_by', on: :member post 'trash', on: :member + post 'untrash', on: :member end resources :groups do get 'contents', on: :collection get 'contents', on: :member + get 'shared', on: :collection + post 'trash', on: :member + post 'untrash', on: :member end resources :humans resources :job_tasks @@ -34,6 +40,7 @@ Server::Application.routes.draw do get 'auth', on: :member post 'lock', on: :member post 'unlock', on: :member + get 'secret_mounts', on: :member get 'current', on: :collection end resources :container_requests @@ -74,12 +81,14 @@ Server::Application.routes.draw do post 'activate', on: :member post 'setup', on: :collection post 'unsetup', on: :member + post 'merge', on: :collection + patch 'batch_update', on: :collection end resources :virtual_machines do get 'logins', on: :member get 'get_all_logins', on: :collection end - get '/permissions/:uuid', :to => 'links#get_permissions' + get '/permissions/:uuid', to: 'links#get_permissions' end end @@ -88,22 +97,24 @@ Server::Application.routes.draw do end # omniauth - match '/auth/:provider/callback', :to => 'user_sessions#create' - match '/auth/failure', :to => 'user_sessions#failure' + match '/auth/:provider/callback', to: 'user_sessions#create', via: [:get, :post] + match '/auth/failure', to: 'user_sessions#failure', via: [:get, :post] # not handled by omniauth provider -> 403 with no CORS headers. - get '/auth/*a', :to => 'user_sessions#cross_origin_forbidden' + get '/auth/*a', to: 'user_sessions#cross_origin_forbidden' # Custom logout - match '/login', :to => 'user_sessions#login' - match '/logout', :to => 'user_sessions#logout' + match '/login', to: 'user_sessions#login', via: [:get, :post] + match '/logout', to: 'user_sessions#logout', via: [:get, :post] + + match '/discovery/v1/apis/arvados/v1/rest', to: 'arvados/v1/schema#index', via: [:get, :post] - match '/discovery/v1/apis/arvados/v1/rest', :to => 'arvados/v1/schema#index' + match '/static/login_failure', to: 'static#login_failure', as: :login_failure, via: [:get, :post] - match '/static/login_failure', :to => 'static#login_failure', :as => :login_failure + match '/_health/ping', to: 'arvados/v1/healthcheck#ping', via: [:get] # Send unroutable requests to an arbitrary controller # (ends up at ApplicationController#render_not_found) - match '*a', :to => 'static#render_not_found' + match '*a', to: 'static#render_not_found', via: [:get, :post, :put, :patch, :delete, :options] - root :to => 'static#home' + root to: 'static#home' end