martin/databag
1
0
Fork 0
mirror of https://github.com/balzack/databag.git synced 2025-02-14 12:39:17 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

adding backend distribution point for sealed channels

Browse Source
This commit is contained in:
Roland Osborne 2022-12-03 16:57:22 -08:00
parent 67c4469dcc
commit 538094bf7f
8 changed files with 116 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
doc/api.oa3
View File

@ -3762,6 +3762,8 @@ components:
type: boolean type: boolean
disabled: disabled:
type: boolean type: boolean
seal:
type: string
Profile: Profile:
type: object type: object
@ -3931,6 +3933,8 @@ components:
type: string type: string
node: node:
type: string type: string
seal:
type: string
revision: revision:
type: integer type: integer
format: int64 format: int64

8
net/server/internal/api_getAccountStatus.go
View File

@ -8,7 +8,7 @@ import (
//GetAccountStatus retrieves account state values //GetAccountStatus retrieves account state values
func GetAccountStatus(w http.ResponseWriter, r *http.Request) { func GetAccountStatus(w http.ResponseWriter, r *http.Request) {
session, code, err := GetSession(r) session, code, err := GetSessionDetail(r)
if err != nil { if err != nil {
ErrResponse(w, code, err) ErrResponse(w, code, err)
return return
@ -22,6 +22,10 @@ func GetAccountStatus(w http.ResponseWriter, r *http.Request) {
} }
// construct response // construct response
seal := &Seal{}
seal.Salt = account.AccountDetail.SealSalt
seal.PrivateKeyEncrypted = account.AccountDetail.SealPrivate
seal.PublicKey = account.AccountDetail.SealPublic
status := &AccountStatus{} status := &AccountStatus{}
status.StorageAvailable = getNumConfigValue(CNFStorage, 0) status.StorageAvailable = getNumConfigValue(CNFStorage, 0)
for _, asset := range assets { for _, asset := range assets {
@ -31,6 +35,6 @@ func GetAccountStatus(w http.ResponseWriter, r *http.Request) {
status.ForwardingAddress = account.Forward status.ForwardingAddress = account.Forward
status.Searchable = account.Searchable status.Searchable = account.Searchable
status.PushEnabled = session.PushEnabled status.PushEnabled = session.PushEnabled
status.Seal = seal
WriteResponse(w, status) WriteResponse(w, status)
} }

49
net/server/internal/api_setAccountSeal.go Normal file
View File

@ -0,0 +1,49 @@
package databag
import (
"databag/internal/store"
"gorm.io/gorm"
"net/http"
)
//SetAccountSeal sets sealing key for channels
func SetAccountSeal(w http.ResponseWriter, r *http.Request) {
account, code, err := ParamAgentToken(r, true)
if err != nil {
ErrResponse(w, code, err)
return
}
seal := Seal{}
if err := ParseRequest(r, w, &seal); err != nil {
ErrResponse(w, http.StatusBadRequest, err)
return
}
// update record
account.AccountDetail.SealSalt = seal.Salt
account.AccountDetail.SealPrivate = seal.PrivateKeyEncrypted
account.AccountDetail.SealPublic = seal.PublicKey
err = store.DB.Transaction(func(tx *gorm.DB) error {
if res := tx.Save(&account.AccountDetail).Error; res != nil {
return res
}
if res := tx.Model(&account).Update("profile_revision", account.ProfileRevision+1).Error; res != nil {
return res
}
if res := tx.Model(&account).Update("account_revision", account.AccountRevision+1).Error; res != nil {
return res
}
return nil
})
if err != nil {
ErrResponse(w, http.StatusInternalServerError, err)
return
}
SetProfileNotification(account)
SetStatus(account)
WriteResponse(w, nil)
}

25
net/server/internal/authUtil.go
View File

@ -95,6 +95,31 @@ func ParamAdminToken(r *http.Request) (int, error) {
return http.StatusOK, nil return http.StatusOK, nil
} }
//GetSessionDetail retrieves account detail specified by agent query param
func GetSessionDetail(r *http.Request) (*store.Session, int, error) {
// parse authentication token
target, access, err := ParseToken(r.FormValue("agent"))
if err != nil {
return nil, http.StatusBadRequest, err
}
// find session record
var session store.Session;
if err := store.DB.Preload("Account.AccountDetail").Where("account_id = ? AND token = ?", target, access).Find(&session).Error; err != nil {
if errors.Is(err, gorm.ErrRecordNotFound) {
return nil, http.StatusNotFound, err
}
return nil, http.StatusInternalServerError, err
}
if session.Account.Disabled {
return nil, http.StatusGone, errors.New("account is inactive")
}
return &session, http.StatusOK, nil
}
//GetSession retrieves account specified by agent query param //GetSession retrieves account specified by agent query param
func GetSession(r *http.Request) (*store.Session, int, error) { func GetSession(r *http.Request) (*store.Session, int, error) {

2
net/server/internal/modelUtil.go
View File

@ -16,6 +16,7 @@ func getProfileModel(account *store.Account) *Profile {
Revision: account.ProfileRevision, Revision: account.ProfileRevision,
Version: APPVersion, Version: APPVersion,
Node: getStrConfigValue(CNFDomain, ""), Node: getStrConfigValue(CNFDomain, ""),
Seal: account.AccountDetail.SealPublic,
} }
} }
@ -94,6 +95,7 @@ func getCardProfileModel(slot *store.CardSlot) *CardProfile {
ImageSet: slot.Card.Image != "", ImageSet: slot.Card.Image != "",
Version: slot.Card.Version, Version: slot.Card.Version,
Node: slot.Card.Node, Node: slot.Card.Node,
Seal: slot.Card.Seal,
} }
} }

19
net/server/internal/models.go
View File

@ -16,6 +16,8 @@ type AccountProfile struct {
ImageSet bool `json:"imageSet,omitempty"` ImageSet bool `json:"imageSet,omitempty"`
Seal string `json:"seal,emitempty"`
Disabled bool `json:"disabled"` Disabled bool `json:"disabled"`
} }
@ -32,6 +34,10 @@ type AccountStatus struct {
Searchable bool `json:"searchable"` Searchable bool `json:"searchable"`
PushEnabled bool `json:"pushEnabled"` PushEnabled bool `json:"pushEnabled"`
Sealable bool `json:"sealable"`
Seal *Seal `json:"seal,omitempty"`
} }
//Announce initial message sent on websocket //Announce initial message sent on websocket
@ -134,6 +140,8 @@ type CardProfile struct {
ImageSet bool `json:"imageSet"` ImageSet bool `json:"imageSet"`
Seal string `json:"seal,omitempty"`
Version string `json:"version,omitempty"` Version string `json:"version,omitempty"`
Node string `json:"node"` Node string `json:"node"`
@ -363,6 +371,8 @@ type Profile struct {
Image string `json:"image,omitempty"` Image string `json:"image,omitempty"`
Seal string `json:"seal,omitempty"`
Revision int64 `json:"revision"` Revision int64 `json:"revision"`
Version string `json:"version,omitempty"` Version string `json:"version,omitempty"`
@ -394,6 +404,15 @@ type Revision struct {
Card int64 `json:"card"` Card int64 `json:"card"`
} }
//Seal key for channel sealing
type Seal struct {
Salt string `json:"salt"`
PrivateKeyEncrypted string `json:"privateKeyEncrypted,omitempty"`
PublicKey string `json:"publicKey,omitempty"`
}
//SignedData object serialized in message //SignedData object serialized in message
type SignedData struct { type SignedData struct {
GUID string `json:"guid"` GUID string `json:"guid"`

7
net/server/internal/routers.go
View File

@ -188,6 +188,13 @@ var endpoints = routes{
SetAccountNotification, SetAccountNotification,
}, },
route{
"SetAccountSeal",
strings.ToUpper("Put"),
"/account/seal",
SetAccountSeal,
},
route{ route{
"SetAccountSerchable", "SetAccountSerchable",
strings.ToUpper("Put"), strings.ToUpper("Put"),

4
net/server/internal/store/schema.go
View File

@ -95,6 +95,9 @@ type AccountDetail struct {
Description string Description string
Location string Location string
Image string Image string
SealSalt string
SealPrivate string
SealPublic string
} }
type Session struct { type Session struct {
@ -181,6 +184,7 @@ type Card struct {
Description string Description string
Location string Location string
Image string Image string
Seal string
Version string `gorm:"not null"` Version string `gorm:"not null"`
Node string `gorm:"not null"` Node string `gorm:"not null"`
ProfileRevision int64 `gorm:"not null"` ProfileRevision int64 `gorm:"not null"`