Class: ChefZero::Endpoints::AclEndpoint

Inherits:

RestBase

• Object
• RestBase
• ChefZero::Endpoints::AclEndpoint

Defined in:

lib/chef_zero/endpoints/acl_endpoint.rb

Overview

/organizations/ORG/<thing>/NAME/_acl/PERM Where thing is: clients, data, containers, cookbooks, environments groups, roles, nodes, users or /organizations/ORG/organization/_acl/PERM or /users/NAME/_acl/PERM

Where PERM is create,read,update,delete,grant

Constant Summary

Constants inherited from RestBase

RestBase::DEFAULT_REQUEST_VERSION, RestBase::DEFAULT_RESPONSE_VERSION

Instance Attribute Summary

Attributes inherited from RestBase

#server

Instance Method Summary

• #put(request) ⇒ Object
• #validate_request(request) ⇒ Object

Methods inherited from RestBase

#accepts?, #already_json_response, #build_uri, build_uri, #call, #check_api_version, #create_data, #create_data_dir, #data_store, #delete_data, #delete_data_dir, #error, #exists_data?, #exists_data_dir?, #get_data, #get_data_or_else, #hashify_list, #head_request, #initialize, #json_only, #json_response, #list_data, #list_data_or_else, #parse_json, #policy_name_invalid?, #populate_defaults, rfc2396_parser, #set_data, #text_response, #to_json

Constructor Details

This class inherits a constructor from ChefZero::RestBase

Instance Method Details

#put(request) ⇒ Object

# File 'lib/chef_zero/endpoints/acl_endpoint.rb', line 30

def put(request)
  path, perm = validate_request(request)
  acls = FFI_Yajl::Parser.parse(get_data(request, path))
  acls[perm] = FFI_Yajl::Parser.parse(request.body)[perm]
  set_data(request, path, FFI_Yajl::Encoder.encode(acls, pretty: true))
  json_response(200, { "uri" => (build_uri(request.base_uri, request.rest_path)).to_s })
end

#validate_request(request) ⇒ Object

# File 'lib/chef_zero/endpoints/acl_endpoint.rb', line 18

def validate_request(request)
  path = request.rest_path[0..-3] # Strip off _acl/PERM
  path = path[0..1] if path.size == 3 && path[0] == "organizations" && %w{organization organizations}.include?(path[2])
  acl_path = ChefData::AclPath.get_acl_data_path(path)
  perm = request.rest_path[-1]
  if !acl_path || !%w{read create update delete grant}.include?(perm)
    raise RestErrorResponse.new(404, "Object not found: #{build_uri(request.base_uri, request.rest_path)}")
  end

  [acl_path, perm]
end