backend: authentication POC

2019-09-26 21:14:11 +03:00
parent bfca76650d
commit f5122e1faf
2 changed files with 229 additions and 120 deletions
--- a/pkg/datasource.go
+++ b/pkg/datasource.go
@@ -1,24 +1,13 @@
 package main

 import (
-	"bytes"
-	"crypto/tls"
-	"encoding/json"
 	"errors"
-	"fmt"
-	"io"
-	"io/ioutil"
-	"net"
-	"net/http"
-	"net/url"
-	"time"

 	simplejson "github.com/bitly/go-simplejson"
 	"github.com/grafana/grafana_plugin_model/go/datasource"
 	hclog "github.com/hashicorp/go-hclog"
 	plugin "github.com/hashicorp/go-plugin"
 	"golang.org/x/net/context"
-	"golang.org/x/net/context/ctxhttp"
 )

 type ZabbixDatasource struct {
@@ -57,112 +46,3 @@ func GetQueryType(tsdbReq *datasource.DatasourceRequest) (string, error) {
 	}
 	return queryType, nil
 }
-
-func (ds *ZabbixDatasource) ZabbixAPIQuery(ctx context.Context, tsdbReq *datasource.DatasourceRequest) (*datasource.DatasourceResponse, error) {
-	jsonQueries := make([]*simplejson.Json, 0)
-	for _, query := range tsdbReq.Queries {
-		json, err := simplejson.NewJson([]byte(query.ModelJson))
-		apiMethod := json.GetPath("target", "method").MustString()
-		apiParams := json.GetPath("target", "params")
-
-		if err != nil {
-			return nil, err
-		}
-
-		ds.logger.Debug("ZabbixAPIQuery", "method", apiMethod, "params", apiParams)
-
-		jsonQueries = append(jsonQueries, json)
-	}
-
-	if len(jsonQueries) == 0 {
-		return nil, errors.New("At least one query should be provided")
-	}
-
-	jsonQuery := jsonQueries[0].Get("target")
-
-	// TODO: inject auth token (obtain from 'user.login' first)
-	reqBodyJson, err := json.Marshal(map[string]interface{}{
-		"jsonrpc": "2.0",
-		"id":      2,
-		"method":  jsonQuery.Get("method").MustString(),
-		"params":  jsonQuery.Get("params"),
-	})
-	if err != nil {
-		return nil, err
-	}
-
-	dsInfo := tsdbReq.GetDatasource()
-	zabbixUrlStr := dsInfo.GetUrl()
-	zabbixUrl, err := url.Parse(zabbixUrlStr)
-	if err != nil {
-		return nil, err
-	}
-
-	jsonDataStr := dsInfo.GetJsonData()
-	jsonData, err := simplejson.NewJson([]byte(jsonDataStr))
-	if err != nil {
-		return nil, err
-	}
-
-	zabbixLogin := jsonData.Get("username").MustString()
-	// zabbixPassword := jsonData.Get("password").MustString()
-	ds.logger.Debug("ZabbixAPIQuery", "url", zabbixUrl, "user", zabbixLogin)
-
-	var body io.Reader
-	body = bytes.NewReader(reqBodyJson)
-	rc, ok := body.(io.ReadCloser)
-	if !ok && body != nil {
-		rc = ioutil.NopCloser(body)
-	}
-
-	req := &http.Request{
-		Method: "POST",
-		URL:    zabbixUrl,
-		Header: map[string][]string{
-			"Content-Type": {"application/json"},
-		},
-		Body: rc,
-	}
-
-	response, err := ds.MakeHttpRequest(ctx, req)
-	ds.logger.Debug("ZabbixAPIQuery", "response", string(response))
-
-	return nil, errors.New("ZabbixAPIQuery is not implemented yet")
-}
-
-func (ds *ZabbixDatasource) MakeHttpRequest(ctx context.Context, req *http.Request) ([]byte, error) {
-	res, err := ctxhttp.Do(ctx, httpClient, req)
-	if err != nil {
-		return nil, err
-	}
-	defer res.Body.Close()
-
-	if res.StatusCode != http.StatusOK {
-		return nil, fmt.Errorf("invalid status code. status: %v", res.Status)
-	}
-
-	body, err := ioutil.ReadAll(res.Body)
-	if err != nil {
-		return nil, err
-	}
-	return body, nil
-}
-
-var httpClient = &http.Client{
-	Transport: &http.Transport{
-		TLSClientConfig: &tls.Config{
-			Renegotiation: tls.RenegotiateFreelyAsClient,
-		},
-		Proxy: http.ProxyFromEnvironment,
-		Dial: (&net.Dialer{
-			Timeout:   30 * time.Second,
-			KeepAlive: 30 * time.Second,
-			DualStack: true,
-		}).Dial,
-		TLSHandshakeTimeout:   10 * time.Second,
-		ExpectContinueTimeout: 1 * time.Second,
-		MaxIdleConns:          100,
-		IdleConnTimeout:       90 * time.Second,
-	},
-	Timeout: time.Duration(time.Second * 30),
-}
--- a/pkg/zabbix_api.go
+++ b/pkg/zabbix_api.go
@@ -0,0 +1,229 @@
+package main
+
+import (
+	"bytes"
+	"crypto/tls"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"io"
+	"io/ioutil"
+	"net"
+	"net/http"
+	"net/url"
+	"time"
+
+	simplejson "github.com/bitly/go-simplejson"
+	"github.com/grafana/grafana_plugin_model/go/datasource"
+	"golang.org/x/net/context"
+	"golang.org/x/net/context/ctxhttp"
+)
+
+var httpClient = &http.Client{
+	Transport: &http.Transport{
+		TLSClientConfig: &tls.Config{
+			Renegotiation: tls.RenegotiateFreelyAsClient,
+		},
+		Proxy: http.ProxyFromEnvironment,
+		Dial: (&net.Dialer{
+			Timeout:   30 * time.Second,
+			KeepAlive: 30 * time.Second,
+			DualStack: true,
+		}).Dial,
+		TLSHandshakeTimeout:   10 * time.Second,
+		ExpectContinueTimeout: 1 * time.Second,
+		MaxIdleConns:          100,
+		IdleConnTimeout:       90 * time.Second,
+	},
+	Timeout: time.Duration(time.Second * 30),
+}
+
+var zabbixAuth string = ""
+
+func (ds *ZabbixDatasource) ZabbixAPIQuery(ctx context.Context, tsdbReq *datasource.DatasourceRequest) (*datasource.DatasourceResponse, error) {
+	dsInfo := tsdbReq.GetDatasource()
+	zabbixUrlStr := dsInfo.GetUrl()
+	zabbixUrl, err := url.Parse(zabbixUrlStr)
+	if err != nil {
+		return nil, err
+	}
+
+	jsonDataStr := dsInfo.GetJsonData()
+	jsonData, err := simplejson.NewJson([]byte(jsonDataStr))
+	if err != nil {
+		return nil, err
+	}
+
+	zabbixLogin := jsonData.Get("username").MustString()
+	// zabbixPassword := jsonData.Get("password").MustString()
+	ds.logger.Debug("ZabbixAPIQuery", "url", zabbixUrl, "user", zabbixLogin)
+
+	jsonQueries := make([]*simplejson.Json, 0)
+	for _, query := range tsdbReq.Queries {
+		json, err := simplejson.NewJson([]byte(query.ModelJson))
+		apiMethod := json.GetPath("target", "method").MustString()
+		apiParams := json.GetPath("target", "params")
+
+		if err != nil {
+			return nil, err
+		}
+
+		ds.logger.Debug("ZabbixAPIQuery", "method", apiMethod, "params", apiParams)
+
+		jsonQueries = append(jsonQueries, json)
+	}
+
+	if len(jsonQueries) == 0 {
+		return nil, errors.New("At least one query should be provided")
+	}
+
+	jsonQuery := jsonQueries[0].Get("target")
+	apiMethod := jsonQuery.Get("method").MustString()
+	apiParams := jsonQuery.Get("params")
+
+	result, err := ds.ZabbixRequest(ctx, dsInfo, apiMethod, apiParams)
+	if err != nil {
+		ds.logger.Debug("ZabbixAPIQuery", "error", err)
+		return nil, errors.New("ZabbixAPIQuery is not implemented yet")
+	}
+
+	resultByte, err := result.MarshalJSON()
+	ds.logger.Debug("ZabbixAPIQuery", "result", string(resultByte))
+
+	return nil, errors.New("ZabbixAPIQuery is not implemented yet")
+}
+
+func (ds *ZabbixDatasource) ZabbixRequest(ctx context.Context, dsInfo *datasource.DatasourceInfo, method string, params *simplejson.Json) (*simplejson.Json, error) {
+	zabbixUrl := dsInfo.GetUrl()
+
+	// Authenticate first
+	if zabbixAuth == "" {
+		auth, err := ds.loginWithDs(ctx, dsInfo)
+		if err != nil {
+			return nil, err
+		}
+		zabbixAuth = auth
+	}
+
+	return ds.zabbixAPIRequest(ctx, zabbixUrl, method, params, zabbixAuth)
+}
+
+func (ds *ZabbixDatasource) loginWithDs(ctx context.Context, dsInfo *datasource.DatasourceInfo) (string, error) {
+	zabbixUrlStr := dsInfo.GetUrl()
+	zabbixUrl, err := url.Parse(zabbixUrlStr)
+	if err != nil {
+		return "", err
+	}
+
+	jsonDataStr := dsInfo.GetJsonData()
+	jsonData, err := simplejson.NewJson([]byte(jsonDataStr))
+	if err != nil {
+		return "", err
+	}
+
+	zabbixLogin := jsonData.Get("username").MustString()
+	zabbixPassword := jsonData.Get("password").MustString()
+	auth, err := ds.login(ctx, zabbixUrlStr, zabbixLogin, zabbixPassword)
+	if err != nil {
+		ds.logger.Error("loginWithDs", "error", err)
+		return "", err
+	}
+	ds.logger.Debug("loginWithDs", "url", zabbixUrl, "user", zabbixLogin, "auth", auth)
+
+	return auth, nil
+}
+
+func (ds *ZabbixDatasource) login(ctx context.Context, apiUrl string, username string, password string) (string, error) {
+	params := map[string]interface{}{
+		"user":     username,
+		"password": password,
+	}
+	paramsJson, err := json.Marshal(params)
+	if err != nil {
+		return "", err
+	}
+	data, _ := simplejson.NewJson(paramsJson)
+	auth, err := ds.zabbixAPIRequest(ctx, apiUrl, "user.login", data, "")
+	if err != nil {
+		return "", err
+	}
+
+	return auth.MustString(), nil
+}
+
+func (ds *ZabbixDatasource) zabbixAPIRequest(ctx context.Context, apiUrl string, method string, params *simplejson.Json, auth string) (*simplejson.Json, error) {
+	zabbixUrl, err := url.Parse(apiUrl)
+
+	// TODO: inject auth token (obtain from 'user.login' first)
+	apiRequest := map[string]interface{}{
+		"jsonrpc": "2.0",
+		"id":      2,
+		"method":  method,
+		"params":  params,
+	}
+
+	if auth != "" {
+		apiRequest["auth"] = auth
+	}
+
+	reqBodyJson, err := json.Marshal(apiRequest)
+	if err != nil {
+		return nil, err
+	}
+
+	var body io.Reader
+	body = bytes.NewReader(reqBodyJson)
+	rc, ok := body.(io.ReadCloser)
+	if !ok && body != nil {
+		rc = ioutil.NopCloser(body)
+	}
+
+	req := &http.Request{
+		Method: "POST",
+		URL:    zabbixUrl,
+		Header: map[string][]string{
+			"Content-Type": {"application/json"},
+		},
+		Body: rc,
+	}
+
+	response, err := makeHttpRequest(ctx, req)
+	if err != nil {
+		return nil, err
+	}
+
+	ds.logger.Debug("zabbixAPIRequest", "response", string(response))
+
+	return handleApiResult(response)
+}
+
+func handleApiResult(response []byte) (*simplejson.Json, error) {
+	jsonResp, err := simplejson.NewJson([]byte(response))
+	if err != nil {
+		return nil, err
+	}
+	if errJson, isError := jsonResp.CheckGet("error"); isError {
+		errMessage := fmt.Sprintf("%s %s", errJson.Get("message").MustString(), errJson.Get("data").MustString())
+		return nil, errors.New(errMessage)
+	}
+	jsonResult := jsonResp.Get("result")
+	return jsonResult, nil
+}
+
+func makeHttpRequest(ctx context.Context, req *http.Request) ([]byte, error) {
+	res, err := ctxhttp.Do(ctx, httpClient, req)
+	if err != nil {
+		return nil, err
+	}
+	defer res.Body.Close()
+
+	if res.StatusCode != http.StatusOK {
+		return nil, fmt.Errorf("invalid status code. status: %v", res.Status)
+	}
+
+	body, err := ioutil.ReadAll(res.Body)
+	if err != nil {
+		return nil, err
+	}
+	return body, nil
+}