Class: CandlepinAPI::Endpoint

Inherits:

Sublime::Hash2Instance

• Object
• Sublime::Hash2Instance
• CandlepinAPI::Endpoint

Extended by:

Enumerable

Includes:

CandlepinAPI

Defined in:

lib/candlepin-api/base.rb,
lib/candlepin-api/base.rb,
lib/candlepin-api/base.rb,
lib/candlepin-api/base.rb,
lib/candlepin-api/base.rb

Overview

End of class CandlepinAPI::Endpoint

Constant Summary

PathParams =

Array of API-defined keywords for the placeholders in the URI.

[]

PathMap =

Hash mapping values from the URI to keywords. This is needed because the API keywords aren’t completely consistent. The map will resolve various alternatives into the canonical keyword Clonepin uses.

{
}

Verbs =

Hash of HTTP methods mapped to the verb class representing them.

Verb classes self-register here as part of their definitions.

Examples:

Verbs[:GET] => SomeGetAction

{
}

AllowedRoles =

Roles (.e.g, :SUPER_ADMIN) that are permitted to access this verb entry point.

[]

API_Flags =

Restrictions or special qualities of a verb entry point. All default to false; individual class definitions turn appropriate ones on.

{
  :admin_only => false,
  :can_create_owner => false,
  :disallowed => false,
  :internal_only  => false
}

Keys_by_Role =

Different roles can use different keys. The :SUPER_ADMIN role can use ‘em all, but others can’t use values from the URI, for example.

{
}

QueryParams =

See the explanation above about the PathParams and PathMap constants.

[]

QueryMap =

{
}

ReturnType =

{}

HTTPStatusCodes =

[]

VerifiedParams =

[]

TimeLimit =

How long a request is allowed to run without a response.

60

Constants included from CandlepinAPI

Placeholder_RE, VERSION

Class Attribute Summary

• .path_regex_map ⇒ Object

  Add reader methods that makes sure the instance variables are always hashes.

• .path_string2regex ⇒ Object
• .path_string_map ⇒ Object

Instance Attribute Summary

• #auth_password ⇒ Object

  Returns the value of attribute auth_password.

• #auth_username ⇒ Object

  Values of special request header fields.

• #consumer_uuid ⇒ Object

  Returns the value of attribute consumer_uuid.

• #entitlement_id ⇒ Object

  Returns the value of attribute entitlement_id.

• #keys ⇒ Object

  Shard-determining keys appropriate to the request for which we were instantiated.

• #net_http_request ⇒ Object readonly

  Returns the value of attribute net_http_request.

• #org_id ⇒ Object

  Returns the value of attribute org_id.

• #pathparams ⇒ Object readonly

  Instance variables for the values pulled from the URI.

• #pool_id ⇒ Object

  Returns the value of attribute pool_id.

• #queryparams ⇒ Object readonly

  Returns the value of attribute queryparams.

• #request ⇒ Object

  Retain the request from which we were built.

• #request_body ⇒ Object readonly

  Returns the value of attribute request_body.

• #request_header ⇒ Object readonly

  Returns the value of attribute request_header.

• #response ⇒ Object readonly

  Returns the value of attribute response.

• #response_body ⇒ Object readonly

  Returns the value of attribute response_body.

• #response_header ⇒ Object readonly

  Returns the value of attribute response_header.

• #username ⇒ Object

  Returns the value of attribute username.

Class Method Summary

• .[](key_p) ⇒ Hash

  Access the endpoints directly by path.

• .add(klass) ⇒ Object

  Add an endpoint class to the map.

• .admin_only? ⇒ Boolean

  Helpers for access to the individual flag states.

• .allowed_roles ⇒ Object

  Helpers for access to the ‘verb class’ constants.

• .can_create_owner? ⇒ Boolean
• .disallowed? ⇒ Boolean
• .each(&block) ⇒ Object

  Needed for Enumerable (the registered endpoints are our list).

• .endpoint ⇒ Object

  Pointer back to the endpoint for this verb.

• .ep2verb(req, &block) ⇒ Object

  Turn an entrypoint into an HTTP verb (method).

• .find(&block) ⇒ Object

  def select.

• .flags ⇒ Object

  Return an array of the flags set to ‘true’ for the verb entry point.

• .internal_only? ⇒ Boolean
• .key?(key) ⇒ Boolean

  def keys.

• .keys ⇒ Object

  def string_keys.

• .method ⇒ Object
• .path_regex ⇒ Object

  Helper to fetch the URI regular expression for the endpoint.

• .path_string ⇒ Object

  As above, except it gets the raw pattern before it’s turned into a regex.

• .pathparam ⇒ Object

  Consult the map to obtain the canonical name for a parameter embedded in the URI.

• .pparam(name_p) ⇒ Object

  Consult the map to obtain the canonical name for a parameter embedded in the URI.

• .qparam(name_p) ⇒ Object

  See the explanation above for the pparam class method.

• .regex_keys ⇒ Object

  def size.

• .select(mode = :regex) ⇒ nil, Array<Hash>

  Override the Enumerable method because we don’t fit perfectly.

• .size ⇒ Object

  def find.

• .string_keys ⇒ Object

  def regex_keys.

• .timelimit ⇒ Object
• .valid_response?(rsp) ⇒ Boolean

  def valid_responses.

• .valid_responses ⇒ Object

  def key?.

• .verb ⇒ Object
• .verbs ⇒ Object

  Another helper to access the map of available verb classes for the endpoint.

Instance Method Summary

• #admin_only? ⇒ Boolean

  Questions about access to the verb/entrypoint.

• #allowed_roles ⇒ Object
• #basic_auth(*args_p) ⇒ Object
• #basic_auth=(username, password) ⇒ Object
• #basic_auth_field ⇒ Object
• #can_create_owner? ⇒ Boolean
• #disallowed? ⇒ Boolean
• #endpoint ⇒ Object
• #extract_uri_info(path) ⇒ Object

  End of def initialize.

• #flags ⇒ Object
• #has_basic_auth? ⇒ Boolean
• #have_params? ⇒ Boolean

  def missing_params.

• #initialize(*args) ⇒ Endpoint constructor

  Constructor (used only to instantiate for a verb entry point).

• #internal_only? ⇒ Boolean
• #is_external? ⇒ Boolean

  Return true if the request header field indicates this request came from Outside.

• #is_trusted_origin? ⇒ Boolean

  Abstract the check for a trusted IP origin into a do-nothing-else method.

• #is_trusted_request? ⇒ Boolean

  Is this a completely trusted connexion?.

• #load_from_nethttp(req) ⇒ Object

  End of extract_uri_info.

• #load_from_rackrequest(req) ⇒ Object

  End of def load_from_nethttp.

• #load_variables_from_trusted_uri ⇒ Object

  We can trust the values in the URI and the query string; use them if we don’t already have better ones.

• #missing_params ⇒ Object

  Stuff relating to a specific method/verb applied to the endpoint.

• #pparam(name) ⇒ Object (also: #path_param)

  Instance methods that simply makes the class methods available at the object level.

• #qparam(name) ⇒ Object

  Instance method for the query parameter name canonicalisation.

• #role_is_admin! ⇒ Object
• #role_is_admin? ⇒ Boolean

  Questions about the request this object represents.

• #run_checks ⇒ Object

  End of def load_variables_from_trusted_uri.

• #server_uri ⇒ Object
• #server_uri=(uri) ⇒ Object
• #submit(options_p = {}) ⇒ Object

  def server_uri.

• #to_s ⇒ Object

  Our as-a-string rendition is the URI path with all appropriate values filled in.

• #valid_response?(rsp) ⇒ Boolean

  def valid_responses.

• #valid_responses ⇒ Object

  dev verbs.

• #verb ⇒ Object
• #verbs ⇒ Object

Methods included from CandlepinAPI

VERSION, basic_auth, basic_auth=, #normalise_rqtype, #regex2printf, server_uri, server_uri=, version

Constructor Details

#initialize(*args) ⇒ Endpoint

Constructor (used only to instantiate for a verb entry point).

# File 'lib/candlepin-api/base.rb', line 920

def initialize(*args)
  #
  # Preset our instance variables.
  #
  @keys   = []
  @pathparams = {}
  @queryparams  = {}
  @role   = nil
  #
  # If we were passed a Rack::Request as the first argument, we're
  # parsing an existing request.  Do it.
  #
  @objtype = :request
  if (args.empty? || args[0].kind_of?(Hash))
    hsh = args[0] || {}
    if (hsh.key?(:header))
      @request_header = hsh[:header]
      hsh = hsh.dup
      hsh.delete(:header)
      args[0] = hsh
    end
  else
    @objtype = :response
    self.request = args.shift
  end
  return super
end

Class Attribute Details

.path_regex_map ⇒ Object

Add reader methods that makes sure the instance variables are always hashes.

# File 'lib/candlepin-api/base.rb', line 202

def path_regex_map
  return (@path_regex_map ||= {})
end

.path_string2regex ⇒ Object

See Also:

• #path_regex_map

# File 'lib/candlepin-api/base.rb', line 212

def path_string2regex
  return (@path_string2regex ||= {})
end

.path_string_map ⇒ Object

See Also:

• #path_regex_map

# File 'lib/candlepin-api/base.rb', line 207

def path_string_map
  return (@path_string_map ||= {})
end

Instance Attribute Details

#auth_password ⇒ Object

Returns the value of attribute auth_password.

# File 'lib/candlepin-api/base.rb', line 788

def auth_password
  @auth_password
end

#auth_username ⇒ Object

Values of special request header fields.

# File 'lib/candlepin-api/base.rb', line 787

def auth_username
  @auth_username
end

#consumer_uuid ⇒ Object

Returns the value of attribute consumer_uuid.

# File 'lib/candlepin-api/base.rb', line 791

def consumer_uuid
  @consumer_uuid
end

#entitlement_id ⇒ Object

Returns the value of attribute entitlement_id.

# File 'lib/candlepin-api/base.rb', line 792

def entitlement_id
  @entitlement_id
end

#keys ⇒ Object

Shard-determining keys appropriate to the request for which we were instantiated.

# File 'lib/candlepin-api/base.rb', line 836

def keys
  @keys
end

#net_http_request ⇒ Object (readonly)

Returns the value of attribute net_http_request.

# File 'lib/candlepin-api/base.rb', line 796

def net_http_request
  @net_http_request
end

#org_id ⇒ Object

Returns the value of attribute org_id.

# File 'lib/candlepin-api/base.rb', line 790

def org_id
  @org_id
end

#pathparams ⇒ Object (readonly)

Instance variables for the values pulled from the URI. We maintain these as an alternate datastore in case there happens to be a named parameter duplicated in both locations. This shouldn’t happen, since pathparam names are represented as symbols and query parameter names as strings.

# File 'lib/candlepin-api/base.rb', line 698

def pathparams
  @pathparams
end

#pool_id ⇒ Object

Returns the value of attribute pool_id.

# File 'lib/candlepin-api/base.rb', line 793

def pool_id
  @pool_id
end

#queryparams ⇒ Object (readonly)

Returns the value of attribute queryparams.

# File 'lib/candlepin-api/base.rb', line 699

def queryparams
  @queryparams
end

#request ⇒ Object

Retain the request from which we were built.

# File 'lib/candlepin-api/base.rb', line 841

def request
  @request
end

#request_body ⇒ Object (readonly)

Returns the value of attribute request_body.

# File 'lib/candlepin-api/base.rb', line 843

def request_body
  @request_body
end

#request_header ⇒ Object (readonly)

Returns the value of attribute request_header.

# File 'lib/candlepin-api/base.rb', line 842

def request_header
  @request_header
end

#response ⇒ Object (readonly)

Returns the value of attribute response.

# File 'lib/candlepin-api/base.rb', line 844

def response
  @response
end

#response_body ⇒ Object (readonly)

Returns the value of attribute response_body.

# File 'lib/candlepin-api/base.rb', line 845

def response_body
  @response_body
end

#response_header ⇒ Object (readonly)

Returns the value of attribute response_header.

# File 'lib/candlepin-api/base.rb', line 846

def response_header
  @response_header
end

#username ⇒ Object

Returns the value of attribute username.

# File 'lib/candlepin-api/base.rb', line 794

def username
  @username
end

Class Method Details

.[](key_p) ⇒ Hash

TODO:

Fix bug: The following are coming up empty:

/candlepin//owners/([^/]+)/consumers
/consumers/_%consumer-uuid%/certificates/serials
/owners/([^/]+)/consumers

TODO:

Add [] method to endpoints that looks up verb classes (e.g., ‘endpoint`)

Access the endpoints directly by path. Or by regex. (Complicated, that, since the keys are themselves regexes. Caveat emptor.)

Leading slash problem?

Returns:

• (Hash) —

  Returns a hash for a single match, or an array of ‘{ path-as-regex => hash }` for multiple matches.

# File 'lib/candlepin-api/base.rb', line 241

def [](key_p)
  #
  # Look for exact matches.
  #
  return result if (result = self.path_regex_map[key_p])
  return result if (result = self.path_string_map[key_p])
  #
  # Try treating the argument as a path and find entries that
  # match it.
  #
  if (key_p.kind_of?(String))
    key = key_p.sub(%r!^.*/candlepin/!, '')
    key.sub!(%r!^/+!, '')
    key.sub!(%r!\?.*!, '')
    result = self.select(:regex) { |pat,klass| key =~ pat }
    unless (result.empty?)
      if (result.size > 1)
        #
        # We have multiple matches.  It's possible that our key
        # has a keyword where some entrypoints expect it but others
        # have a placeholder.  E.g., both of the following will
        # match 'consumers/<consumer-uuid>/certificates/serials',
        # but only the first match is actually correct:
        #
        # ^consumers\/([^\/]+)\/certificates\/serials\/?$
        # ^consumers\/([^\/]+)\/certificates\/([^\/]+)\/?$
        #
        # Cheat by picking the one with the fewest pathparams
        # (and praying).  If more than one have the same value
        # for 'fewest', it's a legitimate duplicate.  That's our
        # assumption and we're sticking to it.
        #
        result.sort! { |a,b|
          aParams = a.values[0].const_get('PathParams')
          bParams = b.values[0].const_get('PathParams')
          aParams.size <=> bParams.size
        }
        minparams = result[0].values[0].const_get('PathParams').size
        result.delete_if { |o| o.values[0].const_get('PathParams').size > minparams }
      end
      result = result.first if (result.size == 1)
      return result
    end
  end
  #
  # Try treating the argument as a regex used to match a path pattern.
  #
  results = self.path_string_map.inject([]) { |memo,tuple|
    (ep, elt) = tuple
    if (ep =~ Regexp.new(key))
      memo << { self.path_string2regex[ep] => elt }
    end
    memo
  }
  return results.empty? ? nil : results
end

.add(klass) ⇒ Object

Add an endpoint class to the map. The endpoint classes invoke this as part of their definitions.

# File 'lib/candlepin-api/base.rb', line 366

def add(klass)
  self.path_regex_map[klass.path_regex] = klass
  self.path_string_map[klass.path_string] = klass
  self.path_string2regex[klass.path_string] = klass.path_regex
end

.admin_only? ⇒ Boolean

Helpers for access to the individual flag states.

Returns:

• (Boolean)

# File 'lib/candlepin-api/base.rb', line 749

def admin_only?
  return const_get('API_Flags')[:admin_only] || false
end

.allowed_roles ⇒ Object

Helpers for access to the ‘verb class’ constants.

# File 'lib/candlepin-api/base.rb', line 728

def allowed_roles
  return const_get('AllowedRoles').collect { |k| k.to_sym }
end

.can_create_owner? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/candlepin-api/base.rb', line 752

def can_create_owner?
  return const_get('API_Flags')[:can_create_owner] || false
end

.disallowed? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/candlepin-api/base.rb', line 755

def disallowed?
  return const_get('API_Flags')[:disallowed] || false
end

.each(&block) ⇒ Object

Needed for Enumerable (the registered endpoints are our list).

# File 'lib/candlepin-api/base.rb', line 219

def each(&block)
  return self.path_string_map.each(&block)
end

.endpoint ⇒ Object

Pointer back to the endpoint for this verb.

# File 'lib/candlepin-api/base.rb', line 713

def endpoint
  return self.ancestors.find { |o| o.name =~ %r!(?:^|::)Endpoint_! }
end

.ep2verb(req, &block) ⇒ Object

Turn an entrypoint into an HTTP verb (method)

# File 'lib/candlepin-api/base.rb', line 375

def ep2verb(req, &block)
  result = self.select(req, &block)
  #
  # No endpoints matched the URI?  D'oh..
  #
  return nil if (result.empty?)
  #
  # Find the verb class for the endpoint that works for the request.
  #
  result = result.collect { |tuple|
    (regex, endpoint) = tuple
    klass = endpoint.verbs[req.method.to_s.upcase.to_sym]
    klass.new(req) unless (klass.nil?)
  }
  #
  # #collect maintains the array length, so delete the nil elements.
  #
  result.compact!
  #
  # If there's nothing left, we found a matching endpoint, but the
  # HTTP method isn't supported for it.
  #
  if (result.empty?)
    result = nil
  elsif (result.size == 1)
    result = result.first
  end
  #
  # We'll either be returning a scalar or an array, depending on
  # the number of classes that matched the request.  There *should*
  # only be one, but that's for our caller to finesse.
  #
  return result
end

.find(&block) ⇒ Object

def select

# File 'lib/candlepin-api/base.rb', line 320

def find(&block)
  result = self.select(&block)
  return result.empty? ? nil : result.first
end

.flags ⇒ Object

Return an array of the flags set to ‘true’ for the verb entry point.

# File 'lib/candlepin-api/base.rb', line 742

def flags
  return const_get('API_Flags').collect { |k,v| k.to_sym if (v) }.compact
end

.internal_only? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/candlepin-api/base.rb', line 758

def internal_only?
  return const_get('API_Flags')[:internal_only] || false
end

.key?(key) ⇒ Boolean

def keys

Returns:

• (Boolean)

# File 'lib/candlepin-api/base.rb', line 341

def key?(key)
  return self.path_regex_map.key?(key) || self.path_string_map.key?(key)
end

.keys ⇒ Object

def string_keys

# File 'lib/candlepin-api/base.rb', line 337

def keys
  return self.regex_keys
end

.method ⇒ Object

# File 'lib/candlepin-api/base.rb', line 737

def verb
  return const_get('Verb').to_sym
end

.path_regex ⇒ Object

Helper to fetch the URI regular expression for the endpoint. Just to avoid using Foo::URI_Regex constant syntax, which can be a little confusing.

# File 'lib/candlepin-api/base.rb', line 425

def path_regex
  return const_get('URI_Regex')
end

.path_string ⇒ Object

As above, except it gets the raw pattern before it’s turned into a regex.

# File 'lib/candlepin-api/base.rb', line 433

def path_string
  return const_get('URI_Regex_String')
end

.pathparam ⇒ Object

Consult the map to obtain the canonical name for a parameter embedded in the URI. def pparam

# File 'lib/candlepin-api/base.rb', line 418

def pparam(name_p)
  name = name_p.to_sym
  return const_get('PathMap')[name].to_sym || name
end

.pparam(name_p) ⇒ Object

Consult the map to obtain the canonical name for a parameter embedded in the URI.

# File 'lib/candlepin-api/base.rb', line 414

def pparam(name_p)
  name = name_p.to_sym
  return const_get('PathMap')[name].to_sym || name
end

.qparam(name_p) ⇒ Object

See the explanation above for the pparam class method.

# File 'lib/candlepin-api/base.rb', line 720

def qparam(name_p)
  name = name_p.to_s
  return const_get('QueryMap')[name].to_s || name
end

.regex_keys ⇒ Object

def size

# File 'lib/candlepin-api/base.rb', line 329

def regex_keys
  return self.path_regex_map.keys
end

.select(mode = :regex) ⇒ nil, Array<Hash>

Override the Enumerable method because we don’t fit perfectly.

Parameters:

• mode (Symbol) (defaults to: :regex)

Returns:

• (nil, Array<Hash>)

# File 'lib/candlepin-api/base.rb', line 304

def select(mode=:regex)
  source = mode.eql?(:regex) ? self.path_regex_map : self.path_string_map
  interim = source.select { |regex,endpoint|
    match = yield(regex, endpoint)
  }
  #
  # We now have an array or arrays.  Yuck.  Turn it back into an
  # array of hashes.
  #
  result = []
  while (tuple = interim.shift)
    result << { tuple[0] => tuple[1] }
  end
  return result
end

.size ⇒ Object

def find

# File 'lib/candlepin-api/base.rb', line 325

def size
  return self.regex_map.size
end

.string_keys ⇒ Object

def regex_keys

# File 'lib/candlepin-api/base.rb', line 333

def string_keys
  return self.path_string_map.keys
end

.timelimit ⇒ Object

# File 'lib/candlepin-api/base.rb', line 731

def timelimit
  return const_get('TimeLimit')
end

.valid_response?(rsp) ⇒ Boolean

def valid_responses

Returns:

• (Boolean)

# File 'lib/candlepin-api/base.rb', line 349

def valid_response?(rsp)
  codes = self.const_get('HTTPStatusCodes')
  return false if (codes.empty?)
  if (rsp.kind_of?(Integer))
    code = rsp
  elsif (rsp.kind_of?(String))
    code = rsp.to_i
  elsif (rsp.respond_to?(:code))
    code = rsp.code.to_i
  end
  return codes.include?(code)
end

.valid_responses ⇒ Object

def key?

# File 'lib/candlepin-api/base.rb', line 345

def valid_responses
  return self.const_get('HTTPStatusCodes')
end

.verb ⇒ Object

# File 'lib/candlepin-api/base.rb', line 734

def verb
  return const_get('Verb').to_sym
end

.verbs ⇒ Object

Another helper to access the map of available verb classes for the endpoint.

# File 'lib/candlepin-api/base.rb', line 441

def verbs
  return const_get('Verbs')
end

Instance Method Details

#admin_only? ⇒ Boolean

Questions about access to the verb/entrypoint

Returns:

• (Boolean)

# File 'lib/candlepin-api/base.rb', line 878

def admin_only?
  return self.class.admin_only?
end

#allowed_roles ⇒ Object

# File 'lib/candlepin-api/base.rb', line 859

def allowed_roles
  return self.class.allowed_roles
end

#basic_auth(*args_p) ⇒ Object

See Also:

• CandlepinAPI#basic_auth

# File 'lib/candlepin-api/base.rb', line 461

def basic_auth(*args_p)
  unless ([0, 2].include?(args_p.size))
    raise ArgumentError.new('wrong number of arguments ' +
                            "(#{args_p.size} for 0 or 2)")
  end
  if (args_p.size == 2)
    @basic_auth_credentials = args_p.dup
  end
  return @basic_auth_credentials || CandlepinAPI.basic_auth
end

#basic_auth=(username, password) ⇒ Object

See Also:

• CandlepinAPI#basic_auth=

# File 'lib/candlepin-api/base.rb', line 473

def basic_auth=(username, password)
  return basic_auth(username, password)
end

#basic_auth_field ⇒ Object

# File 'lib/candlepin-api/base.rb', line 910

def basic_auth_field
  return nil unless (self.has_basic_auth?)
  token = AuthHelper_Basic.encode_credentials(@auth_username,
                                              @auth_password)
  return token.chomp
end

#can_create_owner? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/candlepin-api/base.rb', line 881

def can_create_owner?
  return self.class.can_create_owner?
end

#disallowed? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/candlepin-api/base.rb', line 884

def disallowed?
  return self.class.disallowed?
end

#endpoint ⇒ Object

# File 'lib/candlepin-api/base.rb', line 863

def endpoint
  return self.class.endpoint
end

#extract_uri_info(path) ⇒ Object

End of def initialize

# File 'lib/candlepin-api/base.rb', line 948

def extract_uri_info(path)
  uri_parsed = URI.parse(path)
  norm_path = normalise_path(uri_parsed.path)
  #
  # Extract any values embedded in the URI.  These are the
  # 'pathparams', and their names are represented as *symbols* in
  # the various structures.
  #
  unless ((pnames = self.class.const_get('PathParams')).empty?)
    m = norm_path.match(self.class.const_get('URI_Regex'))
    pnames.each_with_index do |pname,poz|
      @pathparams[pname.to_sym] = m.captures[poz]
      self.__send__((pname.to_s + '=').to_sym, m.captures[poz])
    end
  end
  #
  # Repeat for any query-string parameters.
  # Query parameter names are strings, not symbols.
  #
  unless ((pnames = self.class.const_get('QueryParams')).empty?)
    qtuples = uri_parsed.query.split(%r![&;]!)
    qval = qtuples.inject({}) { |memo,tuple|
      (k, v) = tuple.split(%r!=!, 2)
      memo[k] = v
      memo
    }
    pnames.each do |pname|
      @queryparams[pname] = qval[pname]
      self.__send__((pname + '=').to_sym, qval[pname])
    end
  end
end

#flags ⇒ Object

# File 'lib/candlepin-api/base.rb', line 867

def flags
  return self.class.flags
end

#has_basic_auth? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/candlepin-api/base.rb', line 906

def has_basic_auth?
  return (! (@auth_username.nil? || @auth_password.nil?))
end

#have_params? ⇒ Boolean

def missing_params

Returns:

• (Boolean)

# File 'lib/candlepin-api/base.rb', line 642

def have_params?
  return (self.missing_params.empty?)
end

#internal_only? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/candlepin-api/base.rb', line 887

def internal_only?
  return self.class.internal_only?
end

#is_external? ⇒ Boolean

Return true if the request header field indicates this request came from Outside.

Returns:

• (Boolean)

# File 'lib/candlepin-api/base.rb', line 1090

def is_external?
  return (@request.headers['HTTP_CANDLEPIN_CONTEXT'] == 'External')
end

#is_trusted_origin? ⇒ Boolean

Abstract the check for a trusted IP origin into a do-nothing-else method.

Returns:

• (Boolean)

# File 'lib/candlepin-api/base.rb', line 1098

def is_trusted_origin?
  #
  # We're paranoid -- there are only a few hosts we intend to trust,
  # and they're all us.  (There remains a danger if the host we're
  # trusting is proxying an external request and didn't sanitise the
  # original request header -- essentially passing us a
  # potentially-spoofed CP-User value.
  #
  trusted_sources = [
                     '127.0.0.1', # IPV4
                     '::1',       # IPV6
                     req['SERVER_ADDR']
                    ]
  return trusted_sources.include?(@request.ip)
end

#is_trusted_request? ⇒ Boolean

Is this a completely trusted connexion?

Returns:

• (Boolean)

# File 'lib/candlepin-api/base.rb', line 1077

def is_trusted_request?
  #
  # Shortest path first..  if the client knows the admin credentials,
  # we have to trust it.
  #
  return true if (self.role_is_admin?)
  return false
end

#load_from_nethttp(req) ⇒ Object

End of extract_uri_info

# File 'lib/candlepin-api/base.rb', line 981

def load_from_nethttp(req)
debugger
  #
  # Find any permutation of spelling for the CP-Consumer and CP-User
  # header fields.
  #
  %w( CP-Consumer CP-User ).each do |canon_hfield|
    ivar = '@' + canon_hfield.downcase.gsub(%r!-!, '_')
    pats = []
    pats << canon_hfield.gsub(%r!-!, '_')
    pats << canon_hfield.gsub(%r!_!, '-')
    pats << 'HTTP_' + canon_hfield.gsub(%r!-!, '_')
    pats << 'HTTP_' + canon_hfield.gsub(%r!_!, '-')
    pats.each do |pat|
      if (req.key?(pat))
        instance_variable_set(ivar.to_sym, req[pat])
        break
      end
    end
  end
  #
  # If the entry point has any defined path parameters, suck the
  # values for them into our instance.
  #
  self.extract_uri_info(req.path)
  #
  # Check for auth.
  #
  if (authtoken = req['Authorization'])
    encoded_cred = authtoken.sub(%r!^Basic\s+!i, '')
    if (encoded_cred != authtoken)
      decoded_cred = Base64.decode64(encoded_cred).chomp.strip
      (@auth_username, @auth_password) = decoded_cred.split(%r!:!)
      if (@auth_username.to_s.empty? || @auth_password.to_s.empty?)
        #
        # If either is nil or an empty string, make them both nil.
        # This might break on a blank password, but oh well.
        #
        @auth_username = nil
        @auth_password = nil
      else
        self.check_for_admin
      end
    end
  end
  @body = Proc.new { req.body }
  return req
end

#load_from_rackrequest(req) ⇒ Object

End of def load_from_nethttp

# File 'lib/candlepin-api/base.rb', line 1030

def load_from_rackrequest(req)
  #
  # Find any permutation of spelling for the CP-Consumer and CP-User
  # header fields.  This is a bit complicated because the header
  # fields are kept in a hash and may or may not be case-sensitive.
  #
  %w( CP-Consumer CP-User ).each do |canon_hfield|
    key = re_str = canon_hfield
    ivar = '@' << canon_hfield.gsub(%r!-!, '_').downcase
    pats = []
    pats << %r!^(#{re_str})$!i
    pats << %r!^(#{re_str.gsub(%r!-!, '[-_]')})$!i
    pats << %r!^(HTTP_#{re_str.gsub(%r!-!, '[-_]')})$!i
    pats.each do |re_pat|
      unless ((m = req.env.keys.grep(re_pat)).empty?)
        key = m.first
        instance_variable_set(ivar.to_sym, req.env[key])
        break
      end
    end
  end
  #
  # Use our helper to get fields from the URI.
  #
  self.extract_uri_info(req.path)
  #
  # Any query-string parameters are directly accessible from the
  # request.
  #
  unless ((pnames = self.class.const_get('QueryParams')).empty?)
    pnames.each do |pname|
      @queryparams[pname.to_sym] = req[pname]
      self.__send__((pname.to_s + '=').to_sym, req[pname])
    end
  end
  unless (req.headers['HTTP_AUTHORIZATION'].nil?)
    cred = AuthHelper_Basic.user_name_and_password(req)
    (@auth_username, @auth_password) = cred
    self.check_for_admin
  end
  @body = Proc.new { req.body }
  return req
end

#load_variables_from_trusted_uri ⇒ Object

We can trust the values in the URI and the query string; use them if we don’t already have better ones.

# File 'lib/candlepin-api/base.rb', line 1118

def load_variables_from_trusted_uri
  #
  # When trusted, the order of preference is most volatile (query-string)
  # to least (URI elements, then header fields).
  #
  @consumer_uuid ||= (@queryparams[:consumer_uuid] \
                      || @pathparams[:consumer_uuid])
  @org_id ||= @queryparams[:org_id] || @pathparams[:org_id]
  @owner_id ||= @queryparams[:owner_id] || @pathparams[:owner_id]
  @entitlement_id ||= (@queryparams[:entitlement_id] \
                       || @pathparams[:entitlement_id])
  @pool_id ||= @queryparams[:pool_id] || @pathparams[:pool_id]
end

#missing_params ⇒ Object

Stuff relating to a specific method/verb applied to the endpoint. These are the bits constituting the ‘verb class’ aspect of this shared class definition.

#missing_params and #have_params? are intended as helpers when building a request.

# File 'lib/candlepin-api/base.rb', line 633

def missing_params
  pparam_list = self.class.const_get('PathParams')
  return [] if (pparam_list.empty?)
  pparam_list = pparam_list.map { |ppname|
    self.class.const_get('PathMap')[ppname]
  }
  return (pparam_list.select { |s| self.__send__(s.to_sym).nil? })
end

#pparam(name) ⇒ Object Also known as: path_param

Instance methods that simply makes the class methods available at the object level.

# File 'lib/candlepin-api/base.rb', line 608

def pparam(name)
  return self.class.pparam(name)
end

#qparam(name) ⇒ Object

Instance method for the query parameter name canonicalisation. See #pparam above.

# File 'lib/candlepin-api/base.rb', line 772

def qparam(name)
  return self.class.qparam(name)
end

#role_is_admin! ⇒ Object

# File 'lib/candlepin-api/base.rb', line 898

def role_is_admin!
  self.get_admin_credentials
  @auth_username = @admin_username
  @auth_password = @admin_password
  check_for_admin
  return true
end

#role_is_admin? ⇒ Boolean

Questions about the request this object represents.

Returns:

• (Boolean)

# File 'lib/candlepin-api/base.rb', line 894

def role_is_admin?
  return @role.eql?(:SUPER_ADMIN)
end

#run_checks ⇒ Object

End of def load_variables_from_trusted_uri

# File 'lib/candlepin-api/base.rb', line 1132

def run_checks
  #
  # We never, never, *ever* want the SUPER_ADMIN basic-auth credentials
  # to be used from Outside.
  #
  if (self.is_external?)
    #
    # Are the admin credentials being used from Outside?
    #
    if (self.role_is_admin?)
      log_event(:warn,
                'Attempt to use admin credentials via the external context!',
                :run_checks)
      spoor(:event => 'Rejecting external request using SUPER_ADMIN role')
      raise BadCredentialsException.new('Not authorised for this operation')
    end
  end
end

#server_uri ⇒ Object

See Also:

• CandlepinAPI#server_uri

# File 'lib/candlepin-api/base.rb', line 483

def server_uri
  ancestry = [ self, self.class.ancestors ].flatten
  klass = ancestry.find { |anc|
    anc.respond_to?(:server_uri) && anc.instance_variable_get(:@server_uri)
  }
  return klass.nil? ? nil : klass.instance_variable_get(:@server_uri)
end

#server_uri=(uri) ⇒ Object

See Also:

• CandlepinAPI#server_uri=

# File 'lib/candlepin-api/base.rb', line 478

def server_uri=(uri)
  @server_uri = uri
end

#submit(options_p = {}) ⇒ Object

def server_uri

# File 'lib/candlepin-api/base.rb', line 491

def submit(options_p={})
  options = options_p.dup
  options.each do |k,val|
    k_sym = k.to_sym
    k_str = k.to_s
    if ((self.class.const_defined?('QueryParams') \
         && self.class.const_get('QueryParams').include?(k_str)) \
        || (self.class.const_defined?('PathParams') \
            && self.class.const_get('PathParams').include?(k_str)))
      self.send((k_str + '=').to_sym, val)
      options.delete(k)
    end
  end
  unless (self.have_params?)
    raise CandlepinAPI::APIError.new('missing required parameters: ' +
                                     self.missing_params.inspect)
  end
  unless (self.server_uri.kind_of?(String))
    raise CandlepinAPI::APIError.new('no server_uri specified ' +
                                     'for request submission')
  end

  uri = URI.parse(self.to_s.split(%r!\s+!)[1])
  rqclass = Net::HTTP.module_eval(self.class.const_get('Verb').to_s.downcase.capitalize)
  rqobj = @net_http_request = rqclass.new(uri.request_uri)
  @request_uri = uri.to_s
  connexion = Net::HTTP.start(uri.host, uri.port)
  #
  # @todo Merge in default options from upstream
  #
  unless (options.key?(:basic_auth) \
          || CandlepinAPI.basic_auth.nil?)
    rqobj.basic_auth(*CandlepinAPI.basic_auth)
  end
  if (@request_header.kind_of?(Hash))
    @request_header.each { |h_k,h_v| rqobj[h_k.to_s] = h_v.to_s }
  end
  options.each do |opname,opval|
    case opname.to_sym
    when :basic_auth
      rqobj.basic_auth(*opval)
    when :headers
      opval.each { |h_k,h_v| rqobj[h_k.to_s] = h_v.to_s }
    when :read_timeout
      connexion.read_timeout = opval
    end
  end
  rqobj['Content-type'] = 'application/json' unless (rqobj['Content-type'])
  @request_body ||= @body
  @raw_response = connexion.request(rqobj, @request_body)
  connexion.finish
  return @raw_response
end

#to_s ⇒ Object

Our as-a-string rendition is the URI path with all appropriate values filled in. Easily automated; I love that.

# File 'lib/candlepin-api/base.rb', line 549

def to_s
  path = self.class.const_get('URI_Regex_String').sub(%r!^\^!, '/candlepin/')
  path.sub!(%r!/\?\$!, '/')
  path.gsub!(Placeholder_RE, '%s')
  args = self.class.const_get('PathParams').map { |m|
    self.__send__(self.class.const_get('PathMap')[m]) || "{#{m.to_s}}"
  }

  path = path % args
  if (self.server_uri)
    uri = URI.parse(self.server_uri)
    if (uri.path =~ %r!/candlepin$!)
      path.sub!(%r!^/candlepin!, '')
    end
    path.sub!(%r!^/!, '') if (uri.path[-1,1] == '/')
    uri.path << path
    path = uri.to_s
  end
  #
  # The verb-invariant portion is done.  If that's it (i.e., the
  # QueryParams constant isn't defined [as is the case for an endpoint
  # rather than a endpoint+verb], or the list of query-parameter names
  # is empty), we need go no farther.
  #
  if ((! self.class.const_defined?('QueryParams')) \
      || self.class.const_get('QueryParams').empty?)
    return path
  end
  #
  # Load up any query-string arguments into the string.
  #
  qargs = self.class.const_get('QueryParams').map { |k|
    result = nil
    unless ((v = self.__send__(k.to_sym)).nil?)
      result = "#{k.to_s}=#{v}"
    end
    result
  }
  #
  # Any query parameters with no values assigned will be represented
  # in the array by nil, so we can zap 'em out easily.
  #
  qargs.compact!
  #
  # If there really were some values, add them
  #
  unless (qargs.empty?)
    path << '?' << qargs.join('&')
  end
  #
  # Done!  The result is the path plus querystring for the object.
  #
  return path
end

#valid_response?(rsp) ⇒ Boolean

def valid_responses

Returns:

• (Boolean)

# File 'lib/candlepin-api/base.rb', line 621

def valid_response?(rsp)
  return self.class.valid_response?(rsp)
end

#valid_responses ⇒ Object

dev verbs

# File 'lib/candlepin-api/base.rb', line 617

def valid_responses
  return self.class.valid_responses
end

#verb ⇒ Object

# File 'lib/candlepin-api/base.rb', line 871

def verb
  return self.class.verb
end

#verbs ⇒ Object

# File 'lib/candlepin-api/base.rb', line 613

def verbs
  return self.class.verbs
end