coder/coderd/gitsshkey.go

package coderd

import (
	"net/http"

	"github.com/coder/coder/coderd/database"
	"github.com/coder/coder/coderd/gitsshkey"
	"github.com/coder/coder/coderd/httpapi"
	"github.com/coder/coder/coderd/httpmw"
	"github.com/coder/coder/coderd/rbac"
	"github.com/coder/coder/codersdk"
)

func (api *API) regenerateGitSSHKey(rw http.ResponseWriter, r *http.Request) {
	ctx := r.Context()
	user := httpmw.UserParam(r)

	if !api.Authorize(r, rbac.ActionUpdate, rbac.ResourceUserData.WithOwner(user.ID.String())) {
		httpapi.ResourceNotFound(rw)
		return
	}

	privateKey, publicKey, err := gitsshkey.Generate(api.SSHKeygenAlgorithm)
	if err != nil {
		httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{
			Message: "Internal error generating a new SSH keypair.",
			Detail:  err.Error(),
		})
		return
	}

	err = api.Database.UpdateGitSSHKey(ctx, database.UpdateGitSSHKeyParams{
		UserID:     user.ID,
		UpdatedAt:  database.Now(),
		PrivateKey: privateKey,
		PublicKey:  publicKey,
	})
	if err != nil {
		httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{
			Message: "Internal error updating user's git SSH key.",
			Detail:  err.Error(),
		})
		return
	}

	newKey, err := api.Database.GetGitSSHKey(ctx, user.ID)
	if err != nil {
		httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{
			Message: "Internal error fetching user's git SSH key.",
			Detail:  err.Error(),
		})
		return
	}

	httpapi.Write(ctx, rw, http.StatusOK, codersdk.GitSSHKey{
		UserID:    newKey.UserID,
		CreatedAt: newKey.CreatedAt,
		UpdatedAt: newKey.UpdatedAt,
		// No need to return the private key to the user
		PublicKey: newKey.PublicKey,
	})
}

func (api *API) gitSSHKey(rw http.ResponseWriter, r *http.Request) {
	ctx := r.Context()
	user := httpmw.UserParam(r)

	if !api.Authorize(r, rbac.ActionRead, rbac.ResourceUserData.WithOwner(user.ID.String())) {
		httpapi.ResourceNotFound(rw)
		return
	}

	gitSSHKey, err := api.Database.GetGitSSHKey(ctx, user.ID)
	if err != nil {
		httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{
			Message: "Internal error fetching user's SSH key.",
			Detail:  err.Error(),
		})
		return
	}

	httpapi.Write(ctx, rw, http.StatusOK, codersdk.GitSSHKey{
		UserID:    gitSSHKey.UserID,
		CreatedAt: gitSSHKey.CreatedAt,
		UpdatedAt: gitSSHKey.UpdatedAt,
		// No need to return the private key to the user
		PublicKey: gitSSHKey.PublicKey,
	})
}

func (api *API) agentGitSSHKey(rw http.ResponseWriter, r *http.Request) {
	ctx := r.Context()
	agent := httpmw.WorkspaceAgent(r)
	resource, err := api.Database.GetWorkspaceResourceByID(ctx, agent.ResourceID)
	if err != nil {
		httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{
			Message: "Internal error fetching workspace resource.",
			Detail:  err.Error(),
		})
		return
	}

	job, err := api.Database.GetWorkspaceBuildByJobID(ctx, resource.JobID)
	if err != nil {
		httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{
			Message: "Internal error fetching workspace build.",
			Detail:  err.Error(),
		})
		return
	}

	workspace, err := api.Database.GetWorkspaceByID(ctx, job.WorkspaceID)
	if err != nil {
		httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{
			Message: "Internal error fetching workspace.",
			Detail:  err.Error(),
		})
		return
	}

	gitSSHKey, err := api.Database.GetGitSSHKey(ctx, workspace.OwnerID)
	if err != nil {
		httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{
			Message: "Internal error fetching git SSH key.",
			Detail:  err.Error(),
		})
		return
	}

	httpapi.Write(ctx, rw, http.StatusOK, codersdk.AgentGitSSHKey{
		PublicKey:  gitSSHKey.PublicKey,
		PrivateKey: gitSSHKey.PrivateKey,
	})
}
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`package coderd`

			`import (`
			`"net/http"`

			`"github.com/coder/coder/coderd/database"`
			`"github.com/coder/coder/coderd/gitsshkey"`
			`"github.com/coder/coder/coderd/httpapi"`
			`"github.com/coder/coder/coderd/httpmw"`
feat: Rbac more coderd endpoints, unit test to confirm (#1437) * feat: Enforce authorize call on all endpoints - Make 'request()' exported for running custom requests * Rbac users endpoints * 401 -> 403 2022-05-17 18:43:19 +00:00			`"github.com/coder/coder/coderd/rbac"`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`"github.com/coder/coder/codersdk"`
			`)`

chore: Remove interface from coderd and lift API surface (#1772) Abstracting coderd into an interface added misdirection because the interface was never intended to be fulfilled outside of a single implementation. This lifts the abstraction, and attaches all handlers to a root struct named `*coderd.API`. 2022-05-26 03:14:08 +00:00			`func (api API) regenerateGitSSHKey(rw http.ResponseWriter, r http.Request) {`
feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`ctx := r.Context()`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`user := httpmw.UserParam(r)`
feat: Rbac more coderd endpoints, unit test to confirm (#1437) * feat: Enforce authorize call on all endpoints - Make 'request()' exported for running custom requests * Rbac users endpoints * 401 -> 403 2022-05-17 18:43:19 +00:00
feat: Return more 404s vs 403s (#2194) * feat: Return more 404s vs 403s * Return vague 404 in all cases 2022-06-14 15:14:05 +00:00			`if !api.Authorize(r, rbac.ActionUpdate, rbac.ResourceUserData.WithOwner(user.ID.String())) {`
			`httpapi.ResourceNotFound(rw)`
feat: Rbac more coderd endpoints, unit test to confirm (#1437) * feat: Enforce authorize call on all endpoints - Make 'request()' exported for running custom requests * Rbac users endpoints * 401 -> 403 2022-05-17 18:43:19 +00:00			`return`
			`}`

feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`privateKey, publicKey, err := gitsshkey.Generate(api.SSHKeygenAlgorithm)`
			`if err != nil {`
feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{`
chore: Linter rule for properly formatted api errors (#2123) * chore: Linter rule for properly formatted api errors * Add omitempty to 'Detail' field 2022-06-07 14:33:06 +00:00			`Message: "Internal error generating a new SSH keypair.",`
chore: Update BE http errors to be ui friendly (#1994) * chore: More UI friendly errors Mainly capitlization + messages prefix error 2022-06-03 21:48:09 +00:00			`Detail: err.Error(),`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`})`
			`return`
			`}`

feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`err = api.Database.UpdateGitSSHKey(ctx, database.UpdateGitSSHKeyParams{`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`UserID: user.ID,`
			`UpdatedAt: database.Now(),`
			`PrivateKey: privateKey,`
			`PublicKey: publicKey,`
			`})`
			`if err != nil {`
feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{`
chore: Linter rule for properly formatted api errors (#2123) * chore: Linter rule for properly formatted api errors * Add omitempty to 'Detail' field 2022-06-07 14:33:06 +00:00			`Message: "Internal error updating user's git SSH key.",`
chore: Update BE http errors to be ui friendly (#1994) * chore: More UI friendly errors Mainly capitlization + messages prefix error 2022-06-03 21:48:09 +00:00			`Detail: err.Error(),`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`})`
			`return`
			`}`

feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`newKey, err := api.Database.GetGitSSHKey(ctx, user.ID)`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`if err != nil {`
feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{`
chore: Linter rule for properly formatted api errors (#2123) * chore: Linter rule for properly formatted api errors * Add omitempty to 'Detail' field 2022-06-07 14:33:06 +00:00			`Message: "Internal error fetching user's git SSH key.",`
chore: Update BE http errors to be ui friendly (#1994) * chore: More UI friendly errors Mainly capitlization + messages prefix error 2022-06-03 21:48:09 +00:00			`Detail: err.Error(),`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`})`
			`return`
			`}`

feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`httpapi.Write(ctx, rw, http.StatusOK, codersdk.GitSSHKey{`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`UserID: newKey.UserID,`
			`CreatedAt: newKey.CreatedAt,`
			`UpdatedAt: newKey.UpdatedAt,`
			`// No need to return the private key to the user`
			`PublicKey: newKey.PublicKey,`
			`})`
			`}`

chore: Remove interface from coderd and lift API surface (#1772) Abstracting coderd into an interface added misdirection because the interface was never intended to be fulfilled outside of a single implementation. This lifts the abstraction, and attaches all handlers to a root struct named `*coderd.API`. 2022-05-26 03:14:08 +00:00			`func (api API) gitSSHKey(rw http.ResponseWriter, r http.Request) {`
feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`ctx := r.Context()`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`user := httpmw.UserParam(r)`
feat: Rbac more coderd endpoints, unit test to confirm (#1437) * feat: Enforce authorize call on all endpoints - Make 'request()' exported for running custom requests * Rbac users endpoints * 401 -> 403 2022-05-17 18:43:19 +00:00
feat: Return more 404s vs 403s (#2194) * feat: Return more 404s vs 403s * Return vague 404 in all cases 2022-06-14 15:14:05 +00:00			`if !api.Authorize(r, rbac.ActionRead, rbac.ResourceUserData.WithOwner(user.ID.String())) {`
			`httpapi.ResourceNotFound(rw)`
feat: Rbac more coderd endpoints, unit test to confirm (#1437) * feat: Enforce authorize call on all endpoints - Make 'request()' exported for running custom requests * Rbac users endpoints * 401 -> 403 2022-05-17 18:43:19 +00:00			`return`
			`}`

feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`gitSSHKey, err := api.Database.GetGitSSHKey(ctx, user.ID)`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`if err != nil {`
feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{`
chore: Linter rule for properly formatted api errors (#2123) * chore: Linter rule for properly formatted api errors * Add omitempty to 'Detail' field 2022-06-07 14:33:06 +00:00			`Message: "Internal error fetching user's SSH key.",`
chore: Update BE http errors to be ui friendly (#1994) * chore: More UI friendly errors Mainly capitlization + messages prefix error 2022-06-03 21:48:09 +00:00			`Detail: err.Error(),`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`})`
			`return`
			`}`

feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`httpapi.Write(ctx, rw, http.StatusOK, codersdk.GitSSHKey{`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`UserID: gitSSHKey.UserID,`
			`CreatedAt: gitSSHKey.CreatedAt,`
			`UpdatedAt: gitSSHKey.UpdatedAt,`
			`// No need to return the private key to the user`
			`PublicKey: gitSSHKey.PublicKey,`
			`})`
			`}`

chore: Remove interface from coderd and lift API surface (#1772) Abstracting coderd into an interface added misdirection because the interface was never intended to be fulfilled outside of a single implementation. This lifts the abstraction, and attaches all handlers to a root struct named `*coderd.API`. 2022-05-26 03:14:08 +00:00			`func (api API) agentGitSSHKey(rw http.ResponseWriter, r http.Request) {`
feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`ctx := r.Context()`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`agent := httpmw.WorkspaceAgent(r)`
feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`resource, err := api.Database.GetWorkspaceResourceByID(ctx, agent.ResourceID)`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`if err != nil {`
feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{`
chore: Linter rule for properly formatted api errors (#2123) * chore: Linter rule for properly formatted api errors * Add omitempty to 'Detail' field 2022-06-07 14:33:06 +00:00			`Message: "Internal error fetching workspace resource.",`
chore: Update BE http errors to be ui friendly (#1994) * chore: More UI friendly errors Mainly capitlization + messages prefix error 2022-06-03 21:48:09 +00:00			`Detail: err.Error(),`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`})`
			`return`
			`}`

feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`job, err := api.Database.GetWorkspaceBuildByJobID(ctx, resource.JobID)`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`if err != nil {`
feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{`
chore: Linter rule for properly formatted api errors (#2123) * chore: Linter rule for properly formatted api errors * Add omitempty to 'Detail' field 2022-06-07 14:33:06 +00:00			`Message: "Internal error fetching workspace build.",`
chore: Update BE http errors to be ui friendly (#1994) * chore: More UI friendly errors Mainly capitlization + messages prefix error 2022-06-03 21:48:09 +00:00			`Detail: err.Error(),`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`})`
			`return`
			`}`

feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`workspace, err := api.Database.GetWorkspaceByID(ctx, job.WorkspaceID)`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`if err != nil {`
feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{`
chore: Linter rule for properly formatted api errors (#2123) * chore: Linter rule for properly formatted api errors * Add omitempty to 'Detail' field 2022-06-07 14:33:06 +00:00			`Message: "Internal error fetching workspace.",`
chore: Update BE http errors to be ui friendly (#1994) * chore: More UI friendly errors Mainly capitlization + messages prefix error 2022-06-03 21:48:09 +00:00			`Detail: err.Error(),`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`})`
			`return`
			`}`

feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`gitSSHKey, err := api.Database.GetGitSSHKey(ctx, workspace.OwnerID)`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`if err != nil {`
feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{`
chore: Linter rule for properly formatted api errors (#2123) * chore: Linter rule for properly formatted api errors * Add omitempty to 'Detail' field 2022-06-07 14:33:06 +00:00			`Message: "Internal error fetching git SSH key.",`
chore: Update BE http errors to be ui friendly (#1994) * chore: More UI friendly errors Mainly capitlization + messages prefix error 2022-06-03 21:48:09 +00:00			`Detail: err.Error(),`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`})`
			`return`
			`}`

feat: trace httpapi.{Read,Write} (#4134) 2022-09-21 22:07:00 +00:00			`httpapi.Write(ctx, rw, http.StatusOK, codersdk.AgentGitSSHKey{`
feat: Add helper output on failed gitssh (#1127) 2022-04-25 05:29:15 +00:00			`PublicKey: gitSSHKey.PublicKey,`
feat: Add user scoped git ssh keys (#834) 2022-04-06 00:18:26 +00:00			`PrivateKey: gitSSHKey.PrivateKey,`
			`})`
			`}`