mirror of
https://github.com/kemko/nomad.git
synced 2026-01-01 16:05:42 +03:00
0324e781d4
* First pass at global token creation and regional awareness at token fetch time * Reset and refetch token when you switch region but stay in place * Ugly and functional global token save * Tests and log cleanup
96 lines
2.8 KiB
JavaScript
96 lines
2.8 KiB
JavaScript
/**
|
|
* Copyright (c) HashiCorp, Inc.
|
|
* SPDX-License-Identifier: BUSL-1.1
|
|
*/
|
|
|
|
import { inject as service } from '@ember/service';
|
|
import { default as ApplicationAdapter, namespace } from './application';
|
|
import OTTExchangeError from '../utils/ott-exchange-error';
|
|
import classic from 'ember-classic-decorator';
|
|
import { singularize } from 'ember-inflector';
|
|
|
|
@classic
|
|
export default class TokenAdapter extends ApplicationAdapter {
|
|
@service store;
|
|
|
|
namespace = namespace + '/acl';
|
|
|
|
methodForRequest(params) {
|
|
if (params.requestType === 'updateRecord') {
|
|
return 'POST';
|
|
}
|
|
return super.methodForRequest(params);
|
|
}
|
|
|
|
updateRecord(store, type, snapshot) {
|
|
let data = this.serialize(snapshot);
|
|
return this.ajax(`${this.buildURL()}/token/${snapshot.id}`, 'POST', {
|
|
data,
|
|
});
|
|
}
|
|
|
|
createRecord(_store, type, snapshot) {
|
|
let data = this.serialize(snapshot);
|
|
if (snapshot.adapterOptions?.region) {
|
|
// ajaxOptions will try to append a particular region here.
|
|
// we want instead fo overwrite it with the token's region.
|
|
return this.ajax(`${this.buildURL()}/token`, 'POST', {
|
|
data,
|
|
regionOverride: snapshot.adapterOptions.region,
|
|
});
|
|
}
|
|
return this.ajax(`${this.buildURL()}/token`, 'POST', { data });
|
|
}
|
|
|
|
// Delete at /token instead of /tokens
|
|
urlForDeleteRecord(identifier, modelName) {
|
|
return `${this.buildURL()}/${singularize(modelName)}/${identifier}`;
|
|
}
|
|
|
|
async findSelf() {
|
|
// the application adapter automatically adds the region parameter to all requests,
|
|
// but only if the /regions endpoint has been resolved first. Since this request is async,
|
|
// we can ensure that the regions are loaded before making the token/self request.
|
|
await this.system.regions;
|
|
|
|
const response = await this.ajax(`${this.buildURL()}/token/self`, 'GET');
|
|
const normalized = this.store.normalize('token', response);
|
|
const tokenRecord = this.store.push(normalized);
|
|
return tokenRecord;
|
|
}
|
|
|
|
async loginJWT(LoginToken, AuthMethodName) {
|
|
const response = await this.ajax(`${this.buildURL()}/login`, 'POST', {
|
|
data: {
|
|
AuthMethodName,
|
|
LoginToken,
|
|
},
|
|
});
|
|
const normalized = this.store.normalize('token', response);
|
|
const tokenRecord = this.store.push(normalized);
|
|
return tokenRecord;
|
|
}
|
|
|
|
exchangeOneTimeToken(oneTimeToken) {
|
|
return this.ajax(`${this.buildURL()}/token/onetime/exchange`, 'POST', {
|
|
data: {
|
|
OneTimeSecretID: oneTimeToken,
|
|
},
|
|
})
|
|
.then(({ Token: token }) => {
|
|
const store = this.store;
|
|
store.pushPayload('token', {
|
|
tokens: [token],
|
|
});
|
|
|
|
return store.peekRecord(
|
|
'token',
|
|
store.normalize('token', token).data.id
|
|
);
|
|
})
|
|
.catch(() => {
|
|
throw new OTTExchangeError();
|
|
});
|
|
}
|
|
}
|