cloudapi: V2

V2 is compliant with api.openshift.com design guidelines. Errors are predefined, have codes, and are queryable. All requests have an operationId set: a unique identifier which is sortable by time. This is added to the response in case of an error. All returned objects have the href, id, and kind field set.
2021-08-25 16:49:17 +02:00 · 2021-08-25 16:49:17 +02:00 · 5a9d8c792b
commit 5a9d8c792b
parent 19eb65e9fd
28 changed files with 4877 additions and 585 deletions
--- a/internal/cloudapi/v2/v2.go
+++ b/internal/cloudapi/v2/v2.go
@ -0,0 +1,639 @@
+//go:generate go run github.com/deepmap/oapi-codegen/cmd/oapi-codegen --package=v2 --generate types,spec,server -o openapi.v2.gen.go openapi.v2.yml
+package v2
+
+import (
+	"crypto/rand"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"log"
+	"math"
+	"math/big"
+	"net/http"
+	"strconv"
+	"strings"
+
+	"github.com/google/uuid"
+	"github.com/labstack/echo/v4"
+
+	"github.com/osbuild/osbuild-composer/internal/blueprint"
+	"github.com/osbuild/osbuild-composer/internal/common"
+	"github.com/osbuild/osbuild-composer/internal/distro"
+	"github.com/osbuild/osbuild-composer/internal/distroregistry"
+	"github.com/osbuild/osbuild-composer/internal/osbuild1"
+	"github.com/osbuild/osbuild-composer/internal/ostree"
+	"github.com/osbuild/osbuild-composer/internal/prometheus"
+	"github.com/osbuild/osbuild-composer/internal/rpmmd"
+	"github.com/osbuild/osbuild-composer/internal/target"
+	"github.com/osbuild/osbuild-composer/internal/worker"
+)
+
+// Server represents the state of the cloud Server
+type Server struct {
+	logger      *log.Logger
+	workers     *worker.Server
+	rpmMetadata rpmmd.RPMMD
+	distros     *distroregistry.Registry
+}
+
+type apiHandlers struct {
+	server *Server
+}
+
+type binder struct{}
+
+func NewServer(logger *log.Logger, workers *worker.Server, rpmMetadata rpmmd.RPMMD, distros *distroregistry.Registry) *Server {
+	server := &Server{
+		workers:     workers,
+		rpmMetadata: rpmMetadata,
+		distros:     distros,
+	}
+	return server
+}
+
+func (server *Server) Handler(path string) http.Handler {
+	e := echo.New()
+	e.Binder = binder{}
+	e.HTTPErrorHandler = server.HTTPErrorHandler
+	e.StdLogger = server.logger
+	e.Pre(common.OperationIDMiddleware)
+
+	handler := apiHandlers{
+		server: server,
+	}
+	RegisterHandlers(e.Group(path, server.IncRequests), &handler)
+
+	return e
+}
+
+func (b binder) Bind(i interface{}, ctx echo.Context) error {
+	contentType := ctx.Request().Header["Content-Type"]
+	if len(contentType) != 1 || contentType[0] != "application/json" {
+		return HTTPError(ErrorUnsupportedMediaType)
+	}
+
+	err := json.NewDecoder(ctx.Request().Body).Decode(i)
+	if err != nil {
+		return HTTPErrorWithInternal(ErrorBodyDecodingError, err)
+	}
+	return nil
+}
+
+func (s *Server) IncRequests(next echo.HandlerFunc) echo.HandlerFunc {
+	return func(c echo.Context) error {
+		prometheus.TotalRequests.Inc()
+		if strings.HasSuffix(c.Path(), "/compose") {
+			prometheus.ComposeRequests.Inc()
+		}
+		return next(c)
+	}
+}
+
+func (h *apiHandlers) GetOpenapi(ctx echo.Context) error {
+	spec, err := GetSwagger()
+	if err != nil {
+		return HTTPError(ErrorFailedToLoadOpenAPISpec)
+	}
+	return ctx.JSON(http.StatusOK, spec)
+}
+
+func (h *apiHandlers) GetErrorList(ctx echo.Context, params GetErrorListParams) error {
+	page := 0
+	var err error
+	if params.Page != nil {
+		page, err = strconv.Atoi(string(*params.Page))
+		if err != nil {
+			return HTTPError(ErrorInvalidPageParam)
+		}
+	}
+
+	size := 100
+	if params.Size != nil {
+		size, err = strconv.Atoi(string(*params.Size))
+		if err != nil {
+			return HTTPError(ErrorInvalidSizeParam)
+		}
+	}
+
+	return ctx.JSON(http.StatusOK, APIErrorList(page, size, ctx))
+}
+
+func (h *apiHandlers) GetError(ctx echo.Context, id string) error {
+	errorId, err := strconv.Atoi(id)
+	if err != nil {
+		return HTTPError(ErrorInvalidErrorId)
+	}
+
+	apiError := APIError(ServiceErrorCode(errorId), nil, ctx)
+	// If the service error wasn't found, it's a 404 in this instance
+	if apiError.Id == fmt.Sprintf("%d", ErrorServiceErrorNotFound) {
+		return HTTPError(ErrorErrorNotFound)
+	}
+	return ctx.JSON(http.StatusOK, apiError)
+}
+
+func (h *apiHandlers) PostCompose(ctx echo.Context) error {
+	var request ComposeRequest
+	err := ctx.Bind(&request)
+	if err != nil {
+		return err
+	}
+
+	distribution := h.server.distros.GetDistro(request.Distribution)
+	if distribution == nil {
+		return HTTPError(ErrorUnsupportedDistribution)
+	}
+
+	var bp = blueprint.Blueprint{}
+	err = bp.Initialize()
+	if err != nil {
+		return HTTPError(ErrorFailedToInitializeBlueprint)
+	}
+	if request.Customizations != nil && request.Customizations.Packages != nil {
+		for _, p := range *request.Customizations.Packages {
+			bp.Packages = append(bp.Packages, blueprint.Package{
+				Name: p,
+			})
+		}
+	}
+
+	type imageRequest struct {
+		manifest distro.Manifest
+		arch     string
+		exports  []string
+	}
+	imageRequests := make([]imageRequest, len(request.ImageRequests))
+	var targets []*target.Target
+
+	// use the same seed for all images so we get the same IDs
+	bigSeed, err := rand.Int(rand.Reader, big.NewInt(math.MaxInt64))
+	if err != nil {
+		return HTTPError(ErrorFailedToGenerateManifestSeed)
+	}
+	manifestSeed := bigSeed.Int64()
+
+	for i, ir := range request.ImageRequests {
+		arch, err := distribution.GetArch(ir.Architecture)
+		if err != nil {
+			return HTTPError(ErrorUnsupportedArchitecture)
+		}
+		imageType, err := arch.GetImageType(ir.ImageType)
+		if err != nil {
+			return HTTPError(ErrorUnsupportedImageType)
+		}
+		repositories := make([]rpmmd.RepoConfig, len(ir.Repositories))
+		for j, repo := range ir.Repositories {
+			repositories[j].RHSM = repo.Rhsm
+
+			if repo.Baseurl != nil {
+				repositories[j].BaseURL = *repo.Baseurl
+			} else if repo.Mirrorlist != nil {
+				repositories[j].MirrorList = *repo.Mirrorlist
+			} else if repo.Metalink != nil {
+				repositories[j].Metalink = *repo.Metalink
+			} else {
+				return HTTPError(ErrorInvalidRepository)
+			}
+		}
+
+		packageSets := imageType.PackageSets(bp)
+		pkgSpecSets := make(map[string][]rpmmd.PackageSpec)
+		for name, packages := range packageSets {
+			pkgs, _, err := h.server.rpmMetadata.Depsolve(packages, repositories, distribution.ModulePlatformID(), arch.Name(), distribution.Releasever())
+			var dnfError *rpmmd.DNFError
+			if err != nil && errors.As(err, &dnfError) {
+				return HTTPError(ErrorDNFError)
+			} else if err != nil {
+				return HTTPError(ErrorFailedToDepsolve)
+			}
+			pkgSpecSets[name] = pkgs
+		}
+
+		imageOptions := distro.ImageOptions{Size: imageType.Size(0)}
+		if request.Customizations != nil && request.Customizations.Subscription != nil {
+			imageOptions.Subscription = &distro.SubscriptionImageOptions{
+				Organization:  request.Customizations.Subscription.Organization,
+				ActivationKey: request.Customizations.Subscription.ActivationKey,
+				ServerUrl:     request.Customizations.Subscription.ServerUrl,
+				BaseUrl:       request.Customizations.Subscription.BaseUrl,
+				Insights:      request.Customizations.Subscription.Insights,
+			}
+		}
+
+		// set default ostree ref, if one not provided
+		ostreeOptions := ir.Ostree
+		if ostreeOptions == nil || ostreeOptions.Ref == nil {
+			imageOptions.OSTree = distro.OSTreeImageOptions{Ref: imageType.OSTreeRef()}
+		} else if !ostree.VerifyRef(*ostreeOptions.Ref) {
+			return HTTPError(ErrorInvalidOSTreeRef)
+		} else {
+			imageOptions.OSTree = distro.OSTreeImageOptions{Ref: *ostreeOptions.Ref}
+		}
+
+		var parent string
+		if ostreeOptions != nil && ostreeOptions.Url != nil {
+			imageOptions.OSTree.URL = *ostreeOptions.Url
+			parent, err = ostree.ResolveRef(imageOptions.OSTree.URL, imageOptions.OSTree.Ref)
+			if err != nil {
+				return HTTPError(ErrorInvalidOSTreeRepo)
+			}
+			imageOptions.OSTree.Parent = parent
+		}
+
+		// Set the blueprint customisation to take care of the user
+		var blueprintCustoms *blueprint.Customizations
+		if request.Customizations != nil && request.Customizations.Users != nil {
+			var userCustomizations []blueprint.UserCustomization
+			for _, user := range *request.Customizations.Users {
+				var groups []string
+				if user.Groups != nil {
+					groups = *user.Groups
+				} else {
+					groups = nil
+				}
+				userCustomizations = append(userCustomizations,
+					blueprint.UserCustomization{
+						Name:   user.Name,
+						Key:    user.Key,
+						Groups: groups,
+					},
+				)
+			}
+			blueprintCustoms = &blueprint.Customizations{
+				User: userCustomizations,
+			}
+		}
+
+		manifest, err := imageType.Manifest(blueprintCustoms, imageOptions, repositories, pkgSpecSets, manifestSeed)
+		if err != nil {
+			return HTTPError(ErrorFailedToMakeManifest)
+		}
+
+		imageRequests[i].manifest = manifest
+		imageRequests[i].arch = arch.Name()
+		imageRequests[i].exports = imageType.Exports()
+
+		uploadRequest := ir.UploadRequest
+		/* oneOf is not supported by the openapi generator so marshal and unmarshal the uploadrequest based on the type */
+		if uploadRequest.Type == UploadTypes_aws {
+			var awsUploadOptions AWSUploadRequestOptions
+			jsonUploadOptions, err := json.Marshal(uploadRequest.Options)
+			if err != nil {
+				return HTTPError(ErrorJSONMarshallingError)
+			}
+			err = json.Unmarshal(jsonUploadOptions, &awsUploadOptions)
+			if err != nil {
+				return HTTPError(ErrorJSONUnMarshallingError)
+			}
+
+			var share []string
+			if awsUploadOptions.Ec2.ShareWithAccounts != nil {
+				share = *awsUploadOptions.Ec2.ShareWithAccounts
+			}
+			key := fmt.Sprintf("composer-api-%s", uuid.New().String())
+			t := target.NewAWSTarget(&target.AWSTargetOptions{
+				Filename:          imageType.Filename(),
+				Region:            awsUploadOptions.Region,
+				AccessKeyID:       awsUploadOptions.S3.AccessKeyId,
+				SecretAccessKey:   awsUploadOptions.S3.SecretAccessKey,
+				Bucket:            awsUploadOptions.S3.Bucket,
+				Key:               key,
+				ShareWithAccounts: share,
+			})
+			if awsUploadOptions.Ec2.SnapshotName != nil {
+				t.ImageName = *awsUploadOptions.Ec2.SnapshotName
+			} else {
+				t.ImageName = key
+			}
+
+			targets = append(targets, t)
+		} else if uploadRequest.Type == UploadTypes_aws_s3 {
+			var awsS3UploadOptions AWSS3UploadRequestOptions
+			jsonUploadOptions, err := json.Marshal(uploadRequest.Options)
+			if err != nil {
+				return HTTPError(ErrorJSONMarshallingError)
+			}
+			err = json.Unmarshal(jsonUploadOptions, &awsS3UploadOptions)
+			if err != nil {
+				return HTTPError(ErrorJSONUnMarshallingError)
+			}
+
+			key := fmt.Sprintf("composer-api-%s", uuid.New().String())
+			t := target.NewAWSS3Target(&target.AWSS3TargetOptions{
+				Filename:        imageType.Filename(),
+				Region:          awsS3UploadOptions.Region,
+				AccessKeyID:     awsS3UploadOptions.S3.AccessKeyId,
+				SecretAccessKey: awsS3UploadOptions.S3.SecretAccessKey,
+				Bucket:          awsS3UploadOptions.S3.Bucket,
+				Key:             key,
+			})
+			t.ImageName = key
+
+			targets = append(targets, t)
+		} else if uploadRequest.Type == UploadTypes_gcp {
+			var gcpUploadOptions GCPUploadRequestOptions
+			jsonUploadOptions, err := json.Marshal(uploadRequest.Options)
+			if err != nil {
+				return HTTPError(ErrorJSONMarshallingError)
+			}
+			err = json.Unmarshal(jsonUploadOptions, &gcpUploadOptions)
+			if err != nil {
+				return HTTPError(ErrorJSONUnMarshallingError)
+			}
+
+			var share []string
+			if gcpUploadOptions.ShareWithAccounts != nil {
+				share = *gcpUploadOptions.ShareWithAccounts
+			}
+			var region string
+			if gcpUploadOptions.Region != nil {
+				region = *gcpUploadOptions.Region
+			}
+			object := fmt.Sprintf("composer-api-%s", uuid.New().String())
+			t := target.NewGCPTarget(&target.GCPTargetOptions{
+				Filename:          imageType.Filename(),
+				Region:            region,
+				Os:                "", // not exposed in cloudapi for now
+				Bucket:            gcpUploadOptions.Bucket,
+				Object:            object,
+				ShareWithAccounts: share,
+			})
+			// Import will fail if an image with this name already exists
+			if gcpUploadOptions.ImageName != nil {
+				t.ImageName = *gcpUploadOptions.ImageName
+			} else {
+				t.ImageName = object
+			}
+
+			targets = append(targets, t)
+		} else if uploadRequest.Type == UploadTypes_azure {
+			var azureUploadOptions AzureUploadRequestOptions
+			jsonUploadOptions, err := json.Marshal(uploadRequest.Options)
+			if err != nil {
+				return HTTPError(ErrorJSONMarshallingError)
+			}
+			err = json.Unmarshal(jsonUploadOptions, &azureUploadOptions)
+			if err != nil {
+				return HTTPError(ErrorJSONUnMarshallingError)
+			}
+			t := target.NewAzureImageTarget(&target.AzureImageTargetOptions{
+				Filename:       imageType.Filename(),
+				TenantID:       azureUploadOptions.TenantId,
+				Location:       azureUploadOptions.Location,
+				SubscriptionID: azureUploadOptions.SubscriptionId,
+				ResourceGroup:  azureUploadOptions.ResourceGroup,
+			})
+
+			if azureUploadOptions.ImageName != nil {
+				t.ImageName = *azureUploadOptions.ImageName
+			} else {
+				// if ImageName wasn't given, generate a random one
+				t.ImageName = fmt.Sprintf("composer-api-%s", uuid.New().String())
+			}
+
+			targets = append(targets, t)
+		} else {
+			return HTTPError(ErrorInvalidUploadType)
+		}
+	}
+
+	var ir imageRequest
+	if len(imageRequests) == 1 {
+		// NOTE: the store currently does not support multi-image composes
+		ir = imageRequests[0]
+	} else {
+		return HTTPError(ErrorMultiImageCompose)
+	}
+
+	id, err := h.server.workers.EnqueueOSBuild(ir.arch, &worker.OSBuildJob{
+		Manifest: ir.manifest,
+		Targets:  targets,
+		Exports:  ir.exports,
+	})
+	if err != nil {
+		return HTTPError(ErrorEnqueueingJob)
+	}
+
+	return ctx.JSON(http.StatusCreated, &ComposeId{
+		ObjectReference: ObjectReference{
+			Href: "/api/composer/v2/compose",
+			Id:   id.String(),
+			Kind: "ComposeId",
+		},
+		Id: id.String(),
+	})
+}
+
+func (h *apiHandlers) GetComposeStatus(ctx echo.Context, id string) error {
+	jobId, err := uuid.Parse(id)
+	if err != nil {
+		return HTTPError(ErrorInvalidComposeId)
+	}
+
+	var result worker.OSBuildJobResult
+	status, _, err := h.server.workers.JobStatus(jobId, &result)
+	if err != nil {
+		return HTTPError(ErrorComposeNotFound)
+	}
+
+	var us *UploadStatus
+	if result.TargetResults != nil {
+		// Only single upload target is allowed, therefore only a single upload target result is allowed as well
+		if len(result.TargetResults) != 1 {
+			return HTTPError(ErrorSeveralUploadTargets)
+		}
+		tr := *result.TargetResults[0]
+
+		var uploadType UploadTypes
+		var uploadOptions interface{}
+
+		switch tr.Name {
+		case "org.osbuild.aws":
+			uploadType = UploadTypes_aws
+			awsOptions := tr.Options.(*target.AWSTargetResultOptions)
+			uploadOptions = AWSUploadStatus{
+				Ami:    awsOptions.Ami,
+				Region: awsOptions.Region,
+			}
+		case "org.osbuild.aws.s3":
+			uploadType = UploadTypes_aws_s3
+			awsOptions := tr.Options.(*target.AWSS3TargetResultOptions)
+			uploadOptions = AWSS3UploadStatus{
+				Url: awsOptions.URL,
+			}
+		case "org.osbuild.gcp":
+			uploadType = UploadTypes_gcp
+			gcpOptions := tr.Options.(*target.GCPTargetResultOptions)
+			uploadOptions = GCPUploadStatus{
+				ImageName: gcpOptions.ImageName,
+				ProjectId: gcpOptions.ProjectID,
+			}
+		case "org.osbuild.azure.image":
+			uploadType = UploadTypes_azure
+			gcpOptions := tr.Options.(*target.AzureImageTargetResultOptions)
+			uploadOptions = AzureUploadStatus{
+				ImageName: gcpOptions.ImageName,
+			}
+		default:
+			return HTTPError(ErrorUnknownUploadTarget)
+		}
+
+		us = &UploadStatus{
+			Status:  result.UploadStatus,
+			Type:    uploadType,
+			Options: uploadOptions,
+		}
+	}
+
+	return ctx.JSON(http.StatusOK, ComposeStatus{
+		ObjectReference: ObjectReference{
+			Href: fmt.Sprintf("/api/composer/v2/compose/%v", jobId),
+			Id:   jobId.String(),
+			Kind: "ComposeStatus",
+		},
+		ImageStatus: ImageStatus{
+			Status:       composeStatusFromJobStatus(status, &result),
+			UploadStatus: us,
+		},
+	})
+}
+
+func composeStatusFromJobStatus(js *worker.JobStatus, result *worker.OSBuildJobResult) ImageStatusValue {
+	if js.Canceled {
+		return ImageStatusValue_failure
+	}
+
+	if js.Started.IsZero() {
+		return ImageStatusValue_pending
+	}
+
+	if js.Finished.IsZero() {
+		// TODO: handle also ImageStatusValue_uploading
+		// TODO: handle also ImageStatusValue_registering
+		return ImageStatusValue_building
+	}
+
+	if result.Success {
+		return ImageStatusValue_success
+	}
+
+	return ImageStatusValue_failure
+}
+
+// ComposeMetadata handles a /compose/{id}/metadata GET request
+func (h *apiHandlers) GetComposeMetadata(ctx echo.Context, id string) error {
+	jobId, err := uuid.Parse(id)
+	if err != nil {
+		return HTTPError(ErrorInvalidComposeId)
+	}
+
+	var result worker.OSBuildJobResult
+	status, _, err := h.server.workers.JobStatus(jobId, &result)
+	if err != nil {
+		return HTTPError(ErrorComposeNotFound)
+	}
+
+	var job worker.OSBuildJob
+	if _, _, _, err = h.server.workers.Job(jobId, &job); err != nil {
+		return HTTPError(ErrorComposeNotFound)
+	}
+
+	if status.Finished.IsZero() {
+		// job still running: empty response
+		return ctx.JSON(200, ComposeMetadata{
+			ObjectReference: ObjectReference{
+				Href: fmt.Sprintf("/api/composer/v2/%v/metadata", jobId),
+				Id:   jobId.String(),
+				Kind: "ComposeMetadata",
+			},
+		})
+	}
+
+	if status.Canceled || !result.Success {
+		// job canceled or failed, empty response
+		return ctx.JSON(200, ComposeMetadata{
+			ObjectReference: ObjectReference{
+				Href: fmt.Sprintf("/api/composer/v2/%v/metadata", jobId),
+				Id:   jobId.String(),
+				Kind: "ComposeMetadata",
+			},
+		})
+	}
+
+	manifestVer, err := job.Manifest.Version()
+	if err != nil {
+		return HTTPError(ErrorFailedToParseManifestVersion)
+	}
+
+	if result.OSBuildOutput == nil || result.OSBuildOutput.Assembler == nil {
+		return HTTPError(ErrorMalformedOSBuildJobResult)
+	}
+
+	var rpms []rpmmd.RPM
+	var ostreeCommitResult *osbuild1.StageResult
+	var coreStages []osbuild1.StageResult
+	switch manifestVer {
+	case "1":
+		coreStages = result.OSBuildOutput.Stages
+		if assemblerResult := result.OSBuildOutput.Assembler; assemblerResult.Name == "org.osbuild.ostree.commit" {
+			ostreeCommitResult = result.OSBuildOutput.Assembler
+		}
+	case "2":
+		// v2 manifest results store all stage output in the main stages
+		// here we filter out the build stages to collect only the RPMs for the
+		// core stages
+		// the filtering relies on two assumptions:
+		// 1. the build pipeline is named "build"
+		// 2. the stage results from v2 manifests when converted to v1 are
+		// named by prefixing the pipeline name
+		for _, stage := range result.OSBuildOutput.Stages {
+			if !strings.HasPrefix(stage.Name, "build") {
+				coreStages = append(coreStages, stage)
+			}
+		}
+		// find the ostree.commit stage
+		for idx, stage := range result.OSBuildOutput.Stages {
+			if strings.HasSuffix(stage.Name, "org.osbuild.ostree.commit") {
+				ostreeCommitResult = &result.OSBuildOutput.Stages[idx]
+				break
+			}
+		}
+	default:
+		return HTTPError(ErrorUnknownManifestVersion)
+	}
+
+	rpms = rpmmd.OSBuildStagesToRPMs(coreStages)
+
+	packages := make([]PackageMetadata, len(rpms))
+	for idx, rpm := range rpms {
+		packages[idx] = PackageMetadata{
+			Type:      rpm.Type,
+			Name:      rpm.Name,
+			Version:   rpm.Version,
+			Release:   rpm.Release,
+			Epoch:     rpm.Epoch,
+			Arch:      rpm.Arch,
+			Sigmd5:    rpm.Sigmd5,
+			Signature: rpm.Signature,
+		}
+	}
+
+	resp := &ComposeMetadata{
+		ObjectReference: ObjectReference{
+			Href: fmt.Sprintf("/api/composer/v2/compose/%v/metadata", jobId),
+			Id:   jobId.String(),
+			Kind: "ComposeMetadata",
+		},
+		Packages: &packages,
+	}
+
+	if ostreeCommitResult != nil && ostreeCommitResult.Metadata != nil {
+		commitMetadata, ok := ostreeCommitResult.Metadata.(*osbuild1.OSTreeCommitStageMetadata)
+		if !ok {
+			return HTTPError(ErrorUnableToConvertOSTreeCommitStageMetadata)
+		}
+		resp.OstreeCommit = &commitMetadata.Compose.OSTreeCommit
+	}
+
+	return ctx.JSON(200, resp)
+}