X-Git-Url: https://git.arvados.org/arvados.git/blobdiff_plain/bc14c62ad1528dbddc26781c5cea6a7968c93f2e..d97c9ecca25f449ad928963f6257a01a8bbbf1e7:/lib/controller/rpc/conn.go diff --git a/lib/controller/rpc/conn.go b/lib/controller/rpc/conn.go index e07eaf40af..7d7cb486f4 100644 --- a/lib/controller/rpc/conn.go +++ b/lib/controller/rpc/conn.go @@ -8,6 +8,7 @@ import ( "context" "crypto/tls" "encoding/json" + "errors" "fmt" "io" "net" @@ -17,11 +18,21 @@ import ( "time" "git.curoverse.com/arvados.git/sdk/go/arvados" + "git.curoverse.com/arvados.git/sdk/go/auth" ) type TokenProvider func(context.Context) ([]string, error) +func PassthroughTokenProvider(ctx context.Context) ([]string, error) { + if incoming, ok := auth.FromContext(ctx); !ok { + return nil, errors.New("no token provided") + } else { + return incoming.Tokens, nil + } +} + type Conn struct { + SendHeader http.Header clusterID string httpClient http.Client baseURL url.URL @@ -51,8 +62,11 @@ func NewConn(clusterID string, url *url.URL, insecure bool, tp TokenProvider) *C } } return &Conn{ - clusterID: clusterID, - httpClient: http.Client{Transport: transport}, + clusterID: clusterID, + httpClient: http.Client{ + CheckRedirect: func(req *http.Request, via []*http.Request) error { return http.ErrUseLastResponse }, + Transport: transport, + }, baseURL: *url, tokenProvider: tp, } @@ -60,9 +74,10 @@ func NewConn(clusterID string, url *url.URL, insecure bool, tp TokenProvider) *C func (conn *Conn) requestAndDecode(ctx context.Context, dst interface{}, ep arvados.APIEndpoint, body io.Reader, opts interface{}) error { aClient := arvados.Client{ - Client: &conn.httpClient, - Scheme: conn.baseURL.Scheme, - APIHost: conn.baseURL.Host, + Client: &conn.httpClient, + Scheme: conn.baseURL.Scheme, + APIHost: conn.baseURL.Host, + SendHeader: conn.SendHeader, } tokens, err := conn.tokenProvider(ctx) if err != nil { @@ -111,6 +126,41 @@ func (conn *Conn) requestAndDecode(ctx context.Context, dst interface{}, ep arva return aClient.RequestAndDecodeContext(ctx, dst, ep.Method, path, body, params) } +func (conn *Conn) BaseURL() url.URL { + return conn.baseURL +} + +func (conn *Conn) ConfigGet(ctx context.Context) (json.RawMessage, error) { + ep := arvados.EndpointConfigGet + var resp json.RawMessage + err := conn.requestAndDecode(ctx, &resp, ep, nil, nil) + return resp, err +} + +func (conn *Conn) Login(ctx context.Context, options arvados.LoginOptions) (arvados.LoginResponse, error) { + ep := arvados.EndpointLogin + var resp arvados.LoginResponse + err := conn.requestAndDecode(ctx, &resp, ep, nil, options) + resp.RedirectLocation = conn.relativeToBaseURL(resp.RedirectLocation) + return resp, err +} + +// If the given location is a valid URL and its origin is the same as +// conn.baseURL, return it as a relative URL. Otherwise, return it +// unmodified. +func (conn *Conn) relativeToBaseURL(location string) string { + u, err := url.Parse(location) + if err == nil && u.Scheme == conn.baseURL.Scheme && strings.ToLower(u.Host) == strings.ToLower(conn.baseURL.Host) { + u.Opaque = "" + u.Scheme = "" + u.User = nil + u.Host = "" + return u.String() + } else { + return location + } +} + func (conn *Conn) CollectionCreate(ctx context.Context, options arvados.CreateOptions) (arvados.Collection, error) { ep := arvados.EndpointCollectionCreate var resp arvados.Collection @@ -264,3 +314,22 @@ func (conn *Conn) APIClientAuthorizationCurrent(ctx context.Context, options arv err := conn.requestAndDecode(ctx, &resp, ep, nil, options) return resp, err } + +type UserSessionAuthInfo struct { + Email string `json:"email"` + AlternateEmails []string `json:"alternate_emails"` + FirstName string `json:"first_name"` + LastName string `json:"last_name"` +} + +type UserSessionCreateOptions struct { + AuthInfo UserSessionAuthInfo `json:"auth_info"` + ReturnTo string `json:"return_to"` +} + +func (conn *Conn) UserSessionCreate(ctx context.Context, options UserSessionCreateOptions) (arvados.LoginResponse, error) { + ep := arvados.APIEndpoint{Method: "POST", Path: "auth/controller/callback"} + var resp arvados.LoginResponse + err := conn.requestAndDecode(ctx, &resp, ep, nil, options) + return resp, err +}