mirror of
https://github.com/yusing/godoxy.git
synced 2026-01-11 21:10:30 +01:00
8b5cb947c8
Moved non-agent-specific logic from agent/pkg/agent/ to internal/agentpool/: - pool.go: Agent pool management (Get, Add, Remove, List, Iter, etc.) - http_requests.go: HTTP utilities (health checks, forwarding, websockets, reverse proxy) - agent.go: Agent struct with HTTP client management This separates general-purpose pool management from agent-specific configuration, improving code organization and making the agent package focused on agent config only.
126 lines
3.7 KiB
Go
126 lines
3.7 KiB
Go
package agentapi
|
|
|
|
import (
|
|
"fmt"
|
|
"net/http"
|
|
"os"
|
|
|
|
"github.com/gin-gonic/gin"
|
|
"github.com/yusing/godoxy/agent/pkg/agent"
|
|
"github.com/yusing/godoxy/agent/pkg/certs"
|
|
"github.com/yusing/godoxy/internal/agentpool"
|
|
config "github.com/yusing/godoxy/internal/config/types"
|
|
"github.com/yusing/godoxy/internal/route/provider"
|
|
apitypes "github.com/yusing/goutils/apitypes"
|
|
gperr "github.com/yusing/goutils/errs"
|
|
)
|
|
|
|
type VerifyNewAgentRequest struct {
|
|
Host string `json:"host"`
|
|
CA PEMPairResponse `json:"ca"`
|
|
Client PEMPairResponse `json:"client"`
|
|
ContainerRuntime agent.ContainerRuntime `json:"container_runtime"`
|
|
} // @name VerifyNewAgentRequest
|
|
|
|
// @x-id "verify"
|
|
// @BasePath /api/v1
|
|
// @Summary Verify a new agent
|
|
// @Description Verify a new agent and return the number of routes added
|
|
// @Tags agent
|
|
// @Accept json
|
|
// @Produce json
|
|
// @Param request body VerifyNewAgentRequest true "Request"
|
|
// @Success 200 {object} SuccessResponse
|
|
// @Failure 400 {object} ErrorResponse
|
|
// @Failure 403 {object} ErrorResponse
|
|
// @Failure 500 {object} ErrorResponse
|
|
// @Router /agent/verify [post]
|
|
func Verify(c *gin.Context) {
|
|
var request VerifyNewAgentRequest
|
|
if err := c.ShouldBindJSON(&request); err != nil {
|
|
c.JSON(http.StatusBadRequest, apitypes.Error("invalid request", err))
|
|
return
|
|
}
|
|
|
|
filename, ok := certs.AgentCertsFilepath(request.Host)
|
|
if !ok {
|
|
c.JSON(http.StatusBadRequest, apitypes.Error("invalid host", nil))
|
|
return
|
|
}
|
|
|
|
ca, err := fromEncryptedPEMPairResponse(request.CA)
|
|
if err != nil {
|
|
c.JSON(http.StatusBadRequest, apitypes.Error("invalid CA", err))
|
|
return
|
|
}
|
|
|
|
client, err := fromEncryptedPEMPairResponse(request.Client)
|
|
if err != nil {
|
|
c.JSON(http.StatusBadRequest, apitypes.Error("invalid client", err))
|
|
return
|
|
}
|
|
|
|
nRoutesAdded, err := verifyNewAgent(request.Host, ca, client, request.ContainerRuntime)
|
|
if err != nil {
|
|
c.JSON(http.StatusBadRequest, apitypes.Error("invalid request", err))
|
|
return
|
|
}
|
|
|
|
zip, err := certs.ZipCert(ca.Cert, client.Cert, client.Key)
|
|
if err != nil {
|
|
c.Error(apitypes.InternalServerError(err, "failed to zip certs"))
|
|
return
|
|
}
|
|
|
|
if err := os.WriteFile(filename, zip, 0o600); err != nil {
|
|
c.Error(apitypes.InternalServerError(err, "failed to write certs"))
|
|
return
|
|
}
|
|
|
|
c.JSON(http.StatusOK, apitypes.Success(fmt.Sprintf("Added %d routes", nRoutesAdded)))
|
|
}
|
|
|
|
var errAgentAlreadyExists = gperr.New("agent already exists")
|
|
|
|
func verifyNewAgent(host string, ca agent.PEMPair, client agent.PEMPair, containerRuntime agent.ContainerRuntime) (int, gperr.Error) {
|
|
var agentCfg agent.AgentConfig
|
|
agentCfg.Addr = host
|
|
agentCfg.Runtime = containerRuntime
|
|
|
|
// check if agent host exists in the config
|
|
cfgState := config.ActiveState.Load()
|
|
for _, a := range cfgState.Value().Providers.Agents {
|
|
if a.Addr == host {
|
|
return 0, errAgentAlreadyExists
|
|
}
|
|
}
|
|
// check if agent host exists in the agent pool
|
|
if agentpool.Has(&agentCfg) {
|
|
return 0, errAgentAlreadyExists
|
|
}
|
|
|
|
err := agentCfg.InitWithCerts(cfgState.Context(), ca.Cert, client.Cert, client.Key)
|
|
if err != nil {
|
|
return 0, gperr.Wrap(err, "failed to initialize agent config")
|
|
}
|
|
|
|
provider := provider.NewAgentProvider(&agentCfg)
|
|
if _, loaded := cfgState.LoadOrStoreProvider(provider.String(), provider); loaded {
|
|
return 0, gperr.Errorf("provider %s already exists", provider.String())
|
|
}
|
|
|
|
// agent must be added before loading routes
|
|
added := agentpool.Add(&agentCfg)
|
|
if !added {
|
|
return 0, errAgentAlreadyExists
|
|
}
|
|
err = provider.LoadRoutes()
|
|
if err != nil {
|
|
cfgState.DeleteProvider(provider.String())
|
|
agentpool.Remove(&agentCfg)
|
|
return 0, gperr.Wrap(err, "failed to load routes")
|
|
}
|
|
|
|
return provider.NumRoutes(), nil
|
|
}
|