lemonldap-ng/lemonldap-ng-manager/lib/Lemonldap/NG/Manager/Viewer.pm

package Lemonldap::NG::Manager::Viewer;

use 5.10.0;
use utf8;
use Mouse;
use Lemonldap::NG::Common::Conf::Constants;
use Lemonldap::NG::Common::UserAgent;
use URI::URL;

use feature 'state';

extends 'Lemonldap::NG::Manager::Conf';

our $VERSION = '2.0.4';

#############################
# I. INITIALIZATION METHODS #
#############################

use constant defaultRoute => 'viewer.html';

has ua => ( is => 'rw' );

sub addRoutes {
    my ( $self, $conf ) = @_;
    $self->ua( Lemonldap::NG::Common::UserAgent->new($conf) );

    my $hiddenPK = '';
    $hiddenPK = $self->{viewerHiddenKeys};
    my @enabledPK = ();
    my @keys      = qw(virtualHosts samlIDPMetaDataNodes samlSPMetaDataNodes
      applicationList oidcOPMetaDataNodes oidcRPMetaDataNodes
      casSrvMetaDataNodes casAppMetaDataNodes
      authChoiceModules grantSessionRules combModules
      openIdIDPList);

    foreach (@keys) {

        # Ignore hidden ConfTree Primary Keys
        push @enabledPK, $_
          unless ( $hiddenPK =~ /\b$_\b/ );
    }

    # HTML template
    $self->addRoute( 'viewer.html', undef, ['GET'] )

      # READ
      # Special keys
      ->addRoute(
        view => {
            ':cfgNum' => \@enabledPK
        },
        ['GET']
      );

    foreach ( split /\s+/, $hiddenPK ) {
        $self->addRoute(
            view => { ':cfgNum' => { $_ => 'rejectKey' } },
            ['GET']
        );
    }

    # Difference between confs
    if ( $self->{viewerAllowDiff} ) {
        $self->addRoute(
            view => { diff => { ':conf1' => { ':conf2' => 'viewDiff' } } } )
          ->addRoute( 'viewDiff.html', undef, ['GET'] );
    }

    # Other keys
    $self->addRoute( view => { ':cfgNum' => { '*' => 'viewKey' } }, ['GET'] );
}

sub getConfByNum {
    my ( $self, $cfgNum, @args ) = @_;
    $self->SUPER::getConfByNum( $cfgNum, @args );
}

sub viewDiff {
    my ( $self, $req, @path ) = @_;
    return $self->sendError( $req, 'to many arguments in path info', 400 )
      if (@path);
    my @cfgNum =
      ( scalar( $req->param('conf1') ), scalar( $req->param('conf2') ) );
    my @conf;
    $self->logger->debug(" Loading confs");

    # Load the 2 configurations
    for ( my $i = 0 ; $i < 2 ; $i++ ) {
        if ( %{ $self->currentConf }
            and $cfgNum[$i] == $self->currentConf->{cfgNum} )
        {
            $conf[$i] = $self->currentConf;
        }
        else {
            $conf[$i] = $self->confAcc->getConf(
                { cfgNum => $cfgNum[$i], raw => 1, noCache => 1 } );
            return $self->sendError(
                $req,
"Configuration $cfgNum[$i] not available $Lemonldap::NG::Common::Conf::msg",
                400
            ) unless ( $conf[$i] );
        }
    }
    require Lemonldap::NG::Manager::Conf::Diff;
    my @res =
      $self->Lemonldap::NG::Manager::Conf::Diff::diff( $conf[0], $conf[1] );
    my $hiddenKeys = $self->{viewerHiddenKeys} || '';
    $self->logger->debug("Deleting hidden Conf keys...");
    foreach ( split /\s+/, $hiddenKeys ) {
        $self->logger->debug("-> Delete $_");
        delete $res[0]->{$_};
        delete $res[1]->{$_};
    }
    return $self->sendJSONresponse( $req, [@res] );
}

sub rejectKey {
    my ( $self, $req, @args ) = @_;
    return $self->sendJSONresponse( $req, { 'value' => '_Hidden_' } );
}

sub viewKey {
    my ( $self, $req, @args ) = @_;
    my $lastConf;
    $self->logger->debug("Viewer requested URI -> $req->{env}->{REQUEST_URI}");
    if ( $self->{viewerAllowBrowser} ) {
        $self->logger->debug(" No restriction");
        $self->SUPER::getKey( $req, @args );
    }
    else {
        if ( $req->{env}->{REQUEST_URI} =~ m%/view/(?:latest|\d+/\w+)$% ) {
            $self->logger->debug(" $req->{env}->{REQUEST_URI} -> URI allowed");
            $self->SUPER::getKey( $req, @args );
        }
        else {
            $self->logger->debug(
                " $req->{env}->{REQUEST_URI} -> URI FORBIDDEN");
            my $user = $req->{userData}->{_whatToTrace} || 'anonymous';
            $self->userLogger->warn("$user tried to browse configurations!!!");
            $self->rejectKey( $req, @args );
        }

    }
}

1;
WIP - Append relative files (#1661) 2019-03-12 16:33:09 +01:00			`package Lemonldap::NG::Manager::Viewer;`

			`use 5.10.0;`
			`use utf8;`
			`use Mouse;`
			`use Lemonldap::NG::Common::Conf::Constants;`
			`use Lemonldap::NG::Common::UserAgent;`
			`use URI::URL;`

			`use feature 'state';`

WIP - Inherits Conf.pm (#1661) 2019-03-14 16:39:49 +01:00			`extends 'Lemonldap::NG::Manager::Conf';`
WIP - Append relative files (#1661) 2019-03-12 16:33:09 +01:00
Manage Viewer routes with function (#1710) & Improve unit tests 2019-04-12 22:46:25 +02:00			`our $VERSION = '2.0.4';`
WIP - Append relative files (#1661) 2019-03-12 16:33:09 +01:00
			`#############################`
			`# I. INITIALIZATION METHODS #`
			`#############################`

			`use constant defaultRoute => 'viewer.html';`

			`has ua => ( is => 'rw' );`

			`sub addRoutes {`
			`my ( $self, $conf ) = @_;`
			`$self->ua( Lemonldap::NG::Common::UserAgent->new($conf) );`

Disable browser route (#1661) 2019-03-26 22:53:18 +01:00			`my $hiddenPK = '';`
Manage Viewer routes with function (#1710) & Improve unit tests 2019-04-12 22:46:25 +02:00			`$hiddenPK = $self->{viewerHiddenKeys};`
WIP - Hidden ConfTree PK (#1661) 2019-03-13 22:56:16 +01:00			`my @enabledPK = ();`
			`my @keys = qw(virtualHosts samlIDPMetaDataNodes samlSPMetaDataNodes`
			`applicationList oidcOPMetaDataNodes oidcRPMetaDataNodes`
			`casSrvMetaDataNodes casAppMetaDataNodes`
			`authChoiceModules grantSessionRules combModules`
			`openIdIDPList);`

			`foreach (@keys) {`

			`# Ignore hidden ConfTree Primary Keys`
			`push @enabledPK, $_`
Fix parameters setting (#1661) 2019-03-20 17:38:45 +01:00			`unless ( $hiddenPK =~ /\b$_\b/ );`
WIP - Hidden ConfTree PK (#1661) 2019-03-13 22:56:16 +01:00			`}`

WIP - Append relative files (#1661) 2019-03-12 16:33:09 +01:00			`# HTML template`
			`$self->addRoute( 'viewer.html', undef, ['GET'] )`

			`# READ`
			`# Special keys`
			`->addRoute(`
WIP - Viewer SPA (#1661) 2019-03-12 22:59:15 +01:00			`view => {`
WIP - Hidden ConfTree PK (#1661) 2019-03-13 22:56:16 +01:00			`':cfgNum' => \@enabledPK`
WIP - Append relative files (#1661) 2019-03-12 16:33:09 +01:00			`},`
			`['GET']`
Allow to hide other keys (#1661) 2019-03-19 17:56:23 +01:00			`);`
WIP - Append relative files (#1661) 2019-03-12 16:33:09 +01:00
Fix parameters setting (#1661) 2019-03-20 17:38:45 +01:00			`foreach ( split /\s+/, $hiddenPK ) {`
Allow to hide other keys (#1661) 2019-03-19 17:56:23 +01:00			`$self->addRoute(`
			`view => { ':cfgNum' => { $_ => 'rejectKey' } },`
			`['GET']`
			`);`
			`}`

Enable routes if required (#1661) 2019-04-01 16:48:23 +02:00			`# Difference between confs`
Fix route conflict (#1661) 2019-04-11 11:08:52 +02:00			`if ( $self->{viewerAllowDiff} ) {`
Enable routes if required (#1661) 2019-04-01 16:48:23 +02:00			`$self->addRoute(`
			`view => { diff => { ':conf1' => { ':conf2' => 'viewDiff' } } } )`
			`->addRoute( 'viewDiff.html', undef, ['GET'] );`
			`}`
WIP - Append relative files (#1661) 2019-03-12 16:33:09 +01:00
Enable routes if required (#1661) 2019-04-01 16:48:23 +02:00			`# Other keys`
Manage Viewer routes with function (#1710) & Improve unit tests 2019-04-12 22:46:25 +02:00			`$self->addRoute( view => { ':cfgNum' => { '*' => 'viewKey' } }, ['GET'] );`
WIP - Append relative files (#1661) 2019-03-12 16:33:09 +01:00			`}`

			`sub getConfByNum {`
			`my ( $self, $cfgNum, @args ) = @_;`
WIP - Inherits Conf.pm (#1661) 2019-03-14 16:39:49 +01:00			`$self->SUPER::getConfByNum( $cfgNum, @args );`
WIP - Append relative files (#1661) 2019-03-12 16:33:09 +01:00			`}`

Hide secret keys in diff.html 2019-04-01 14:42:25 +02:00			`sub viewDiff {`
WIP - Append relative files (#1661) 2019-03-12 16:33:09 +01:00			`my ( $self, $req, @path ) = @_;`
Hide secret keys in diff.html 2019-04-01 14:42:25 +02:00			`return $self->sendError( $req, 'to many arguments in path info', 400 )`
			`if (@path);`
			`my @cfgNum =`
			`( scalar( $req->param('conf1') ), scalar( $req->param('conf2') ) );`
			`my @conf;`
			`$self->logger->debug(" Loading confs");`

			`# Load the 2 configurations`
			`for ( my $i = 0 ; $i < 2 ; $i++ ) {`
			`if ( %{ $self->currentConf }`
			`and $cfgNum[$i] == $self->currentConf->{cfgNum} )`
			`{`
			`$conf[$i] = $self->currentConf;`
			`}`
			`else {`
			`$conf[$i] = $self->confAcc->getConf(`
			`{ cfgNum => $cfgNum[$i], raw => 1, noCache => 1 } );`
			`return $self->sendError(`
			`$req,`
			`"Configuration $cfgNum[$i] not available $Lemonldap::NG::Common::Conf::msg",`
			`400`
			`) unless ( $conf[$i] );`
			`}`
			`}`
			`require Lemonldap::NG::Manager::Conf::Diff;`
			`my @res =`
			`$self->Lemonldap::NG::Manager::Conf::Diff::diff( $conf[0], $conf[1] );`
Update parameter name (#1661) 2019-04-01 14:52:23 +02:00			`my $hiddenKeys = $self->{viewerHiddenKeys} \|\| '';`
Hide secret keys in diff.html 2019-04-01 14:42:25 +02:00			`$self->logger->debug("Deleting hidden Conf keys...");`
			`foreach ( split /\s+/, $hiddenKeys ) {`
			`$self->logger->debug("-> Delete $_");`
			`delete $res[0]->{$_};`
			`delete $res[1]->{$_};`
			`}`
			`return $self->sendJSONresponse( $req, [@res] );`
WIP - Append relative files (#1661) 2019-03-12 16:33:09 +01:00			`}`

Allow to hide other keys (#1661) 2019-03-19 17:56:23 +01:00			`sub rejectKey {`
Manage Viewer routes with function (#1710) & Improve unit tests 2019-04-12 22:46:25 +02:00			`my ( $self, $req, @args ) = @_;`
Allow to hide other keys (#1661) 2019-03-19 17:56:23 +01:00			`return $self->sendJSONresponse( $req, { 'value' => '_Hidden_' } );`
			`}`

Manage Viewer routes with function (#1710) & Improve unit tests 2019-04-12 22:46:25 +02:00			`sub viewKey {`
			`my ( $self, $req, @args ) = @_;`
			`my $lastConf;`
			`$self->logger->debug("Viewer requested URI -> $req->{env}->{REQUEST_URI}");`
			`if ( $self->{viewerAllowBrowser} ) {`
			`$self->logger->debug(" No restriction");`
			`$self->SUPER::getKey( $req, @args );`
			`}`
			`else {`
			`if ( $req->{env}->{REQUEST_URI} =~ m%/view/(?:latest\|\d+/\w+)$% ) {`
			`$self->logger->debug(" $req->{env}->{REQUEST_URI} -> URI allowed");`
			`$self->SUPER::getKey( $req, @args );`
			`}`
			`else {`
			`$self->logger->debug(`
			`" $req->{env}->{REQUEST_URI} -> URI FORBIDDEN");`
			`my $user = $req->{userData}->{_whatToTrace} \|\| 'anonymous';`
			`$self->userLogger->warn("$user tried to browse configurations!!!");`
			`$self->rejectKey( $req, @args );`
			`}`

			`}`
			`}`

WIP - Append relative files (#1661) 2019-03-12 16:33:09 +01:00			`1;`