2020-01-21 17:27:57 -07:00
|
|
|
"""API Routes."""
|
2020-01-20 19:50:08 -07:00
|
|
|
|
2020-02-03 02:34:50 -07:00
|
|
|
# Standard Library
|
2020-03-21 01:44:38 -07:00
|
|
|
import os
|
2020-04-15 02:12:01 -07:00
|
|
|
import json
|
2020-01-20 19:50:08 -07:00
|
|
|
import time
|
|
|
|
|
|
2020-02-03 02:34:50 -07:00
|
|
|
# Third Party
|
2020-01-21 17:27:57 -07:00
|
|
|
from fastapi import HTTPException
|
|
|
|
|
from starlette.requests import Request
|
2020-02-03 02:34:50 -07:00
|
|
|
from fastapi.openapi.docs import get_redoc_html, get_swagger_ui_html
|
2020-01-20 19:50:08 -07:00
|
|
|
|
2020-02-03 02:34:50 -07:00
|
|
|
# Project
|
2020-04-15 02:12:01 -07:00
|
|
|
from hyperglass.log import log, query_hook
|
|
|
|
|
from hyperglass.util import adonothing, clean_name, get_network_info, import_public_key
|
2020-04-13 01:05:24 -07:00
|
|
|
from hyperglass.cache import Cache
|
2020-03-21 01:44:38 -07:00
|
|
|
from hyperglass.encode import jwt_decode
|
2020-01-20 19:50:08 -07:00
|
|
|
from hyperglass.exceptions import HyperglassError
|
2020-02-03 02:34:50 -07:00
|
|
|
from hyperglass.configuration import REDIS_CONFIG, params, devices
|
|
|
|
|
from hyperglass.api.models.query import Query
|
2020-01-20 19:50:08 -07:00
|
|
|
from hyperglass.execution.execute import Execute
|
2020-03-21 01:44:38 -07:00
|
|
|
from hyperglass.api.models.cert_import import EncodedRequest
|
2020-01-20 19:50:08 -07:00
|
|
|
|
2020-03-21 01:44:38 -07:00
|
|
|
APP_PATH = os.environ["hyperglass_directory"]
|
|
|
|
|
|
2020-04-15 02:12:01 -07:00
|
|
|
if params.logging.http is not None and params.logging.http.enable:
|
|
|
|
|
log_query = query_hook
|
|
|
|
|
else:
|
|
|
|
|
log_query = adonothing
|
|
|
|
|
|
2020-01-20 19:50:08 -07:00
|
|
|
|
2020-01-21 17:27:57 -07:00
|
|
|
async def query(query_data: Query, request: Request):
|
|
|
|
|
"""Ingest request data pass it to the backend application to perform the query."""
|
2020-01-20 19:50:08 -07:00
|
|
|
|
2020-04-16 09:30:20 -07:00
|
|
|
network_info = get_network_info(request.client.host, serialize=True)
|
2020-04-15 02:12:01 -07:00
|
|
|
|
|
|
|
|
header_keys = (
|
|
|
|
|
"content-length",
|
|
|
|
|
"accept",
|
|
|
|
|
"user-agent",
|
|
|
|
|
"content-type",
|
|
|
|
|
"referer",
|
|
|
|
|
"accept-encoding",
|
|
|
|
|
"accept-language",
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
await log_query(
|
|
|
|
|
{
|
|
|
|
|
**json.loads(query_data.export_json()),
|
|
|
|
|
"headers": {
|
|
|
|
|
k: v for k, v in dict(request.headers).items() if k in header_keys
|
|
|
|
|
},
|
|
|
|
|
"source": request.client.host,
|
|
|
|
|
"network": network_info,
|
|
|
|
|
},
|
|
|
|
|
params.logging.http,
|
2020-04-16 01:09:37 -07:00
|
|
|
log,
|
2020-04-15 02:12:01 -07:00
|
|
|
)
|
|
|
|
|
|
2020-04-13 01:05:24 -07:00
|
|
|
# Initialize cache
|
|
|
|
|
cache = Cache(db=params.cache.database, **REDIS_CONFIG)
|
|
|
|
|
log.debug("Initialized cache {}", repr(cache))
|
|
|
|
|
|
2020-01-20 19:50:08 -07:00
|
|
|
# Use hashed query_data string as key for for k/v cache store so
|
|
|
|
|
# each command output value is unique.
|
2020-01-26 02:15:19 -07:00
|
|
|
cache_key = query_data.digest()
|
2020-01-20 19:50:08 -07:00
|
|
|
|
|
|
|
|
# Define cache entry expiry time
|
2020-01-28 09:52:54 -07:00
|
|
|
cache_timeout = params.cache.timeout
|
2020-01-20 19:50:08 -07:00
|
|
|
log.debug(f"Cache Timeout: {cache_timeout}")
|
|
|
|
|
|
2020-04-13 01:05:24 -07:00
|
|
|
log.info(f"Starting query execution for query {query_data.summary}")
|
2020-04-16 09:30:20 -07:00
|
|
|
|
2020-01-20 19:50:08 -07:00
|
|
|
# Check if cached entry exists
|
2020-04-13 01:05:24 -07:00
|
|
|
if not await cache.get(cache_key):
|
|
|
|
|
log.debug(f"No existing cache entry for query {cache_key}")
|
|
|
|
|
log.debug(
|
|
|
|
|
f"Created new cache key {cache_key} entry for query {query_data.summary}"
|
|
|
|
|
)
|
2020-01-20 19:50:08 -07:00
|
|
|
|
|
|
|
|
# Pass request to execution module
|
|
|
|
|
starttime = time.time()
|
|
|
|
|
cache_value = await Execute(query_data).response()
|
|
|
|
|
endtime = time.time()
|
|
|
|
|
elapsedtime = round(endtime - starttime, 4)
|
|
|
|
|
log.debug(f"Query {cache_key} took {elapsedtime} seconds to run.")
|
|
|
|
|
|
|
|
|
|
if cache_value is None:
|
|
|
|
|
raise HyperglassError(message=params.messages.general, alert="danger")
|
|
|
|
|
|
|
|
|
|
# Create a cache entry
|
2020-04-13 01:05:24 -07:00
|
|
|
await cache.set(cache_key, str(cache_value))
|
|
|
|
|
await cache.expire(cache_key, seconds=cache_timeout)
|
2020-01-20 19:50:08 -07:00
|
|
|
|
|
|
|
|
log.debug(f"Added cache entry for query: {cache_key}")
|
|
|
|
|
|
|
|
|
|
# If it does, return the cached entry
|
2020-04-13 01:05:24 -07:00
|
|
|
cache_response = await cache.get(cache_key)
|
2020-01-20 19:50:08 -07:00
|
|
|
|
2020-04-13 01:05:24 -07:00
|
|
|
log.debug(f"Cache match for {cache_key}:\n {cache_response}")
|
|
|
|
|
log.success(f"Completed query execution for {query_data.summary}")
|
2020-01-20 19:50:08 -07:00
|
|
|
|
2020-01-21 17:27:57 -07:00
|
|
|
return {"output": cache_response, "level": "success", "keywords": []}
|
|
|
|
|
|
|
|
|
|
|
2020-03-21 01:44:38 -07:00
|
|
|
async def import_certificate(encoded_request: EncodedRequest):
|
|
|
|
|
"""Import a certificate from hyperglass-agent."""
|
|
|
|
|
|
|
|
|
|
# Try to match the requested device name with configured devices
|
|
|
|
|
matched_device = None
|
|
|
|
|
requested_device_name = clean_name(encoded_request.device)
|
|
|
|
|
for device in devices.routers:
|
|
|
|
|
if device.name == requested_device_name:
|
|
|
|
|
matched_device = device
|
|
|
|
|
break
|
|
|
|
|
|
|
|
|
|
if matched_device is None:
|
|
|
|
|
raise HTTPException(
|
|
|
|
|
detail=f"Device {str(encoded_request.device)} not found", status_code=404
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
try:
|
|
|
|
|
# Decode JSON Web Token
|
|
|
|
|
decoded_request = await jwt_decode(
|
|
|
|
|
payload=encoded_request.encoded,
|
|
|
|
|
secret=matched_device.credential.password.get_secret_value(),
|
|
|
|
|
)
|
|
|
|
|
except HyperglassError as decode_error:
|
|
|
|
|
raise HTTPException(detail=str(decode_error), status_code=401)
|
|
|
|
|
|
|
|
|
|
try:
|
|
|
|
|
# Write certificate to file
|
|
|
|
|
import_public_key(
|
|
|
|
|
app_path=APP_PATH, device_name=device.name, keystring=decoded_request
|
|
|
|
|
)
|
|
|
|
|
except RuntimeError as import_error:
|
|
|
|
|
raise HyperglassError(str(import_error), level="danger")
|
|
|
|
|
|
|
|
|
|
return {
|
|
|
|
|
"output": f"Added public key for {encoded_request.device}",
|
|
|
|
|
"level": "success",
|
|
|
|
|
"keywords": [encoded_request.device],
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2020-01-21 17:27:57 -07:00
|
|
|
async def docs():
|
|
|
|
|
"""Serve custom docs."""
|
2020-01-28 08:59:27 -07:00
|
|
|
if params.docs.enable:
|
2020-01-21 17:27:57 -07:00
|
|
|
docs_func_map = {"swagger": get_swagger_ui_html, "redoc": get_redoc_html}
|
2020-01-28 08:59:27 -07:00
|
|
|
docs_func = docs_func_map[params.docs.mode]
|
2020-01-21 17:27:57 -07:00
|
|
|
return docs_func(
|
2020-01-28 08:59:27 -07:00
|
|
|
openapi_url=params.docs.openapi_url, title=params.site_title + " - API Docs"
|
2020-01-21 17:27:57 -07:00
|
|
|
)
|
|
|
|
|
else:
|
|
|
|
|
raise HTTPException(detail="Not found", status_code=404)
|
|
|
|
|
|
|
|
|
|
|
2020-02-01 02:24:52 -10:00
|
|
|
async def routers():
|
|
|
|
|
"""Serve list of configured routers and attributes."""
|
|
|
|
|
return [
|
|
|
|
|
d.dict(
|
|
|
|
|
include={
|
|
|
|
|
"name": ...,
|
|
|
|
|
"network": ...,
|
|
|
|
|
"location": ...,
|
|
|
|
|
"display_name": ...,
|
|
|
|
|
"vrfs": {-1: {"name", "display_name"}},
|
|
|
|
|
}
|
|
|
|
|
)
|
|
|
|
|
for d in devices.routers
|
|
|
|
|
]
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
async def queries():
|
|
|
|
|
"""Serve list of enabled query types."""
|
|
|
|
|
return params.queries.list
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
endpoints = [query, docs, routers]
|
