arcad/emissary
16
0
Fork 0
Code Issues 14 Pull Requests Packages Projects Releases 3 Wiki Activity

Compare commits

base: arcad:v2023.4.1-7d551a8
Branches Tags
arcad:develop arcad:master arcad:feature/test-modifications arcad:sysupgrade-controller arcad:auth arcad:app-controller
arcad:2024.3.13-develop.1507.85ccf2e arcad:2024.3.13-develop.821.cec5c78 arcad:2024.3.13-stable.821.cec5c78 arcad:2024.3.12-stable.1525.b5c36f1 arcad:2024.3.4-stable.1803.0b34b48 arcad:2024.3.4-stable.1752.ab08d30 arcad:2024.3.4-stable.809.4a1a434 arcad:2024.3.3-stable.1740.7671872 arcad:2024.3.1-stable.1041.8f21313 arcad:2024.2.29-stable.1433.eee7e60 arcad:2024.1.12-stable.1306.79f5301 arcad:2024.1.11-stable.1331.a5c81dc arcad:2024.1.10-stable.1332.fefac83 arcad:2023.12.5-stable.2142.c43d1a5 arcad:2023.12.5-stable.2029.d9f11ac arcad:2023.12.5-stable.1332.16a59fe arcad:2023.12.3-stable.1328.8d42bf0 arcad:2023.12.1-stable.1421.3c3d7fe arcad:2023.12.1-stable.1326.ddddbbc arcad:2023.12.1-stable.1253.32ce5a2 arcad:2023.12.1-stable.1126.6a7945d arcad:2023.11.30-stable.1853.86ddb6a arcad:2023.11.30-stable.1847.a6da1be arcad:2023.10.25-stable.1928.b2b839c arcad:2023.10.24-stable.2055.7fa3011 arcad:2023.10.22-stable.2118.0d2aac4 arcad:2023.10.22-stable.2105.38795a9 arcad:2023.10.22-stable.848.327226a arcad:2023.10.22-stable.750.fbf818e arcad:2023.10.21-stable.1947.46a853a arcad:2023.10.21-stable.1939.f31a63e arcad:2023.10.20-stable.1539.c8a2303 arcad:2023.10.19-stable.2022.ced2658 arcad:2023.10.13-stable.1222.e756a60 arcad:2023.10.13-stable.1030.752f1ae arcad:2023.10.3-stable.538.9068203 arcad:2023.10.3-stable.410.a84fa05 arcad:2023.9.20-stable.1602.6318a8b arcad:2023.8.25-stable.1853.3d7a094 arcad:2023.8.25-stable.1802.612f18a arcad:2023.8.25-stable.1652.077964c arcad:2023.8.25-stable.1645.3af6324 arcad:2023.8.25-stable.1636.b31900a arcad:v2023.8.25-14eecbf arcad:v2023.8.25-c51ac0a arcad:v2023.8.25-61ac5e8 arcad:v2023.8.25-929394c arcad:v2023.8.25-a1ec5b8 arcad:v2023.8.25-5c36955 arcad:v2023.8.14-6cf01ad arcad:v2023.8.14-8e88b5a arcad:v2023.6.25-42d49eb arcad:v2023.6.23-4217850 arcad:v2023.6.23-4a58847 arcad:v2023.6.23-4255940 arcad:v2023.6.22-a5fbe3e arcad:v2023.6.22-8b5a97d arcad:v2023.5.26-d73e027 arcad:v2023.5.25-054744e arcad:v2023.5.24-58ef3b0 arcad:v2023.5.24-e568092 arcad:v2023.5.23-ece97ef arcad:v2023.5.23-4311cf6 arcad:v2023.4.26-6a976c0 arcad:v2023.4.25-d188af8 arcad:v2023.4.24-e975381 arcad:v2023.4.24-0d03a70 arcad:v2023.4.21-64ea0e0 arcad:v2023.4.21-541d30d arcad:v2023.4.21-87a4509 arcad:v2023.4.20-fcd159c arcad:v2023.4.20-ef3048b arcad:v2023.4.20-3d01cf0 arcad:v2023.4.14-813f837 arcad:v2023.4.13-ed35ee5 arcad:v2023.4.13-4b5bc0b arcad:v2023.4.13-dee6218 arcad:v2023.4.13-76656e8 arcad:v2023.4.13-41b1619 arcad:v2023.4.12-35d5ee8 arcad:v2023.4.11-2315ee7 arcad:v2023.4.11-86a6d81 arcad:v2023.4.11-8fb86c6 arcad:v2023.4.6-12f8b3a arcad:v2023.4.6-4cf53d9 arcad:v2023.4.6-34e4769 arcad:v2023.4.6-47c2546 arcad:v2023.4.6-2117391 arcad:v2023.4.6-b213b8d arcad:v2023.4.6-9dcddc5 arcad:v2023.4.6-253c93d arcad:v2023.4.6-d2f865c arcad:v2023.4.6-7ee4344 arcad:v2023.4.6-18eb2d3 arcad:v2023.4.6-06b1235 arcad:v2023.4.5-2e1ee44 arcad:v2023.4.4-242a247 arcad:v2023.4.2-562d698 arcad:v2023.4.1-909549f arcad:v2023.4.1-7d551a8 arcad:v2023.4.1-d02eb91 arcad:v2023.4.1-d2bcdd2 arcad:v2023.3.31-c638fe1 arcad:v2023.3.31-5fc5f5f arcad:v2023.3.31-dff95c7 arcad:v2023.3.29-e5b6c5e arcad:v2023.3.29-351f22e arcad:v2023.3.29-854a6ae arcad:v2023.3.29-854a6ae-dirty arcad:v2023.3.29-a48c2eb arcad:v2023.3.28-cdd78e4 arcad:v2023.3.28-e832b7d-dirty arcad:v2023.3.28-e832b7d arcad:v2023.3.27-f7d70da arcad:v2023.3.27-24b7519 arcad:v2023.3.27-a9e5263 arcad:v2023.3.26-56063a6 arcad:v2023.3.24-97a60e2-dirty arcad:v2023.3.22-97a60e2 arcad:v2023.3.22-cd796ff arcad:cd796ff arcad:8ada7e3 arcad:1261beb arcad:fa36d55 arcad:258d0bc arcad:0a3760b arcad:b53842c arcad:a297821 arcad:9aca9a6 arcad:bd0d5a6 arcad:e13de5b arcad:f9b8d4f arcad:1ff29ae arcad:3310c09 arcad:2a828af arcad:088b684 arcad:2023.2.20-stable.1443.088b684 arcad:a567e47 arcad:d3c238f
..
compare: arcad:v2023.3.31-dff95c7
Branches Tags
arcad:develop arcad:master arcad:feature/test-modifications arcad:sysupgrade-controller arcad:auth arcad:app-controller
arcad:2024.3.13-develop.1507.85ccf2e arcad:2024.3.13-develop.821.cec5c78 arcad:2024.3.13-stable.821.cec5c78 arcad:2024.3.12-stable.1525.b5c36f1 arcad:2024.3.4-stable.1803.0b34b48 arcad:2024.3.4-stable.1752.ab08d30 arcad:2024.3.4-stable.809.4a1a434 arcad:2024.3.3-stable.1740.7671872 arcad:2024.3.1-stable.1041.8f21313 arcad:2024.2.29-stable.1433.eee7e60 arcad:2024.1.12-stable.1306.79f5301 arcad:2024.1.11-stable.1331.a5c81dc arcad:2024.1.10-stable.1332.fefac83 arcad:2023.12.5-stable.2142.c43d1a5 arcad:2023.12.5-stable.2029.d9f11ac arcad:2023.12.5-stable.1332.16a59fe arcad:2023.12.3-stable.1328.8d42bf0 arcad:2023.12.1-stable.1421.3c3d7fe arcad:2023.12.1-stable.1326.ddddbbc arcad:2023.12.1-stable.1253.32ce5a2 arcad:2023.12.1-stable.1126.6a7945d arcad:2023.11.30-stable.1853.86ddb6a arcad:2023.11.30-stable.1847.a6da1be arcad:2023.10.25-stable.1928.b2b839c arcad:2023.10.24-stable.2055.7fa3011 arcad:2023.10.22-stable.2118.0d2aac4 arcad:2023.10.22-stable.2105.38795a9 arcad:2023.10.22-stable.848.327226a arcad:2023.10.22-stable.750.fbf818e arcad:2023.10.21-stable.1947.46a853a arcad:2023.10.21-stable.1939.f31a63e arcad:2023.10.20-stable.1539.c8a2303 arcad:2023.10.19-stable.2022.ced2658 arcad:2023.10.13-stable.1222.e756a60 arcad:2023.10.13-stable.1030.752f1ae arcad:2023.10.3-stable.538.9068203 arcad:2023.10.3-stable.410.a84fa05 arcad:2023.9.20-stable.1602.6318a8b arcad:2023.8.25-stable.1853.3d7a094 arcad:2023.8.25-stable.1802.612f18a arcad:2023.8.25-stable.1652.077964c arcad:2023.8.25-stable.1645.3af6324 arcad:2023.8.25-stable.1636.b31900a arcad:v2023.8.25-14eecbf arcad:v2023.8.25-c51ac0a arcad:v2023.8.25-61ac5e8 arcad:v2023.8.25-929394c arcad:v2023.8.25-a1ec5b8 arcad:v2023.8.25-5c36955 arcad:v2023.8.14-6cf01ad arcad:v2023.8.14-8e88b5a arcad:v2023.6.25-42d49eb arcad:v2023.6.23-4217850 arcad:v2023.6.23-4a58847 arcad:v2023.6.23-4255940 arcad:v2023.6.22-a5fbe3e arcad:v2023.6.22-8b5a97d arcad:v2023.5.26-d73e027 arcad:v2023.5.25-054744e arcad:v2023.5.24-58ef3b0 arcad:v2023.5.24-e568092 arcad:v2023.5.23-ece97ef arcad:v2023.5.23-4311cf6 arcad:v2023.4.26-6a976c0 arcad:v2023.4.25-d188af8 arcad:v2023.4.24-e975381 arcad:v2023.4.24-0d03a70 arcad:v2023.4.21-64ea0e0 arcad:v2023.4.21-541d30d arcad:v2023.4.21-87a4509 arcad:v2023.4.20-fcd159c arcad:v2023.4.20-ef3048b arcad:v2023.4.20-3d01cf0 arcad:v2023.4.14-813f837 arcad:v2023.4.13-ed35ee5 arcad:v2023.4.13-4b5bc0b arcad:v2023.4.13-dee6218 arcad:v2023.4.13-76656e8 arcad:v2023.4.13-41b1619 arcad:v2023.4.12-35d5ee8 arcad:v2023.4.11-2315ee7 arcad:v2023.4.11-86a6d81 arcad:v2023.4.11-8fb86c6 arcad:v2023.4.6-12f8b3a arcad:v2023.4.6-4cf53d9 arcad:v2023.4.6-34e4769 arcad:v2023.4.6-47c2546 arcad:v2023.4.6-2117391 arcad:v2023.4.6-b213b8d arcad:v2023.4.6-9dcddc5 arcad:v2023.4.6-253c93d arcad:v2023.4.6-d2f865c arcad:v2023.4.6-7ee4344 arcad:v2023.4.6-18eb2d3 arcad:v2023.4.6-06b1235 arcad:v2023.4.5-2e1ee44 arcad:v2023.4.4-242a247 arcad:v2023.4.2-562d698 arcad:v2023.4.1-909549f arcad:v2023.4.1-7d551a8 arcad:v2023.4.1-d02eb91 arcad:v2023.4.1-d2bcdd2 arcad:v2023.3.31-c638fe1 arcad:v2023.3.31-5fc5f5f arcad:v2023.3.31-dff95c7 arcad:v2023.3.29-e5b6c5e arcad:v2023.3.29-351f22e arcad:v2023.3.29-854a6ae arcad:v2023.3.29-854a6ae-dirty arcad:v2023.3.29-a48c2eb arcad:v2023.3.28-cdd78e4 arcad:v2023.3.28-e832b7d-dirty arcad:v2023.3.28-e832b7d arcad:v2023.3.27-f7d70da arcad:v2023.3.27-24b7519 arcad:v2023.3.27-a9e5263 arcad:v2023.3.26-56063a6 arcad:v2023.3.24-97a60e2-dirty arcad:v2023.3.22-97a60e2 arcad:v2023.3.22-cd796ff arcad:cd796ff arcad:8ada7e3 arcad:1261beb arcad:fa36d55 arcad:258d0bc arcad:0a3760b arcad:b53842c arcad:a297821 arcad:9aca9a6 arcad:bd0d5a6 arcad:e13de5b arcad:f9b8d4f arcad:1ff29ae arcad:3310c09 arcad:2a828af arcad:088b684 arcad:2023.2.20-stable.1443.088b684 arcad:a567e47 arcad:d3c238f

1 Commits
v2023.4.1- ... v2023.3.31

Author SHA1 Message Date
William Petit
dff95c7af9 chore: add jenkins pipeline
Some checks failed
arcad/emissary/pipeline/head There was a failure building this commit
Details
2023-03-31 15:46:40 +02:00
24 changed files with 55 additions and 167 deletions
Expand all files Collapse all files

2
.gitignore vendored
View File

@ -4,7 +4,7 @@ dist/
/tools
/tmp
/state.json
/emissary.sqlite*
/emissary.sqlite
/.gitea-release
/agent-key.json
/apps

3
Jenkinsfile vendored
View File

@ -23,7 +23,6 @@ pipeline {
sh '''
git config --global credential.https://forge.cadoles.com.username "$GIT_USERNAME"
git config --global credential.https://forge.cadoles.com.helper '!f() { test "$1" = get && echo "password=$GIT_PASSWORD"; }; f'
export GOPRIVATE=forge.cadoles.com/arcad/edge
make test
'''
@ -54,7 +53,7 @@ pipeline {
build(
job: "../emissary-firmware/${env.GIT_BRANCH}",
parameters: [
[$class: 'StringParameterValue', name: 'emissaryRelease', value: currentVersion]
[$class: 'StringParameterValue', name: 'emissaryVersion', value: currentVersion]
]
)
}

2
Makefile
View File

@ -135,7 +135,7 @@ gitea-release: tools/gitea-release/bin/gitea-release.sh goreleaser
GITEA_RELEASE_COMMITISH_TARGET="$(GIT_VERSION)" \
GITEA_RELEASE_IS_DRAFT="false" \
GITEA_RELEASE_BODY="" \
GITEA_RELEASE_ATTACHMENTS="$$(find .gitea-release/* -type f)" \
GITEA_RELEASE_ATTACHMENTS="$(shell find .gitea-release/* -type f)" \
tools/gitea-release/bin/gitea-release.sh
tools/gitea-release/bin/gitea-release.sh:

1
cmd/agent/main.go
View File

@ -7,7 +7,6 @@ import (
"forge.cadoles.com/Cadoles/emissary/internal/command/agent"
"forge.cadoles.com/Cadoles/emissary/internal/command/api"
_ "forge.cadoles.com/Cadoles/emissary/internal/imports/format"
_ "forge.cadoles.com/Cadoles/emissary/internal/imports/spec"
)

4
internal/agent/controller/app/app_handler.go
View File

@ -28,8 +28,6 @@ import (
"github.com/pkg/errors"
)
const defaultSQLiteParams = "?_pragma=foreign_keys(1)&_pragma=journal_mode(WAL)&_txlock=immediate"
func (c *Controller) getHandlerOptions(ctx context.Context, appKey string, specs *spec.Spec) ([]edgeHTTP.HandlerOptionFunc, error) {
dataDir, err := c.ensureAppDataDir(ctx, appKey)
if err != nil {
@ -37,7 +35,7 @@ func (c *Controller) getHandlerOptions(ctx context.Context, appKey string, specs
}
dbFile := filepath.Join(dataDir, appKey+".sqlite")
db, err := sqlite.Open(dbFile + defaultSQLiteParams)
db, err := sqlite.Open(dbFile)
if err != nil {
return nil, errors.Wrapf(err, "could not open database file '%s'", dbFile)
}

22
internal/agent/controller/app/server.go
View File

@ -35,15 +35,12 @@ type Server struct {
}
func (s *Server) Start(ctx context.Context, addr string) (err error) {
if s.Running() {
if s.server != nil {
if err := s.Stop(); err != nil {
return errors.WithStack(err)
}
}
s.serverMutex.Lock()
defer s.serverMutex.Unlock()
router := chi.NewRouter()
router.Use(middleware.Logger)
@ -88,7 +85,9 @@ func (s *Server) Start(ctx context.Context, addr string) (err error) {
}
}()
s.serverMutex.Lock()
s.server = server
s.serverMutex.Unlock()
return nil
}
@ -101,25 +100,20 @@ func (s *Server) Running() bool {
}
func (s *Server) Stop() error {
if !s.Running() {
return nil
}
s.serverMutex.Lock()
defer s.serverMutex.Unlock()
if s.server == nil {
return nil
}
if err := s.server.Close(); err != nil {
defer func() {
s.serverMutex.Lock()
s.server = nil
s.serverMutex.Unlock()
}()
if err := s.server.Close(); err != nil {
return errors.WithStack(err)
}
s.server = nil
return nil
}

19
internal/auth/agent/authenticator.go
View File

@ -4,7 +4,6 @@ import (
"context"
"net/http"
"strings"
"time"
"forge.cadoles.com/Cadoles/emissary/internal/auth"
"forge.cadoles.com/Cadoles/emissary/internal/datastore"
@ -14,11 +13,8 @@ import (
"gitlab.com/wpetit/goweb/logger"
)
const DefaultAcceptableSkew = 5 * time.Minute
type Authenticator struct {
repo datastore.AgentRepository
acceptableSkew time.Duration
repo datastore.AgentRepository
}
// Authenticate implements auth.Authenticator.
@ -75,19 +71,11 @@ func (a *Authenticator) Authenticate(ctx context.Context, r *http.Request) (auth
[]byte(rawToken),
jwt.WithKeySet(agent.KeySet.Set, jws.WithRequireKid(false)),
jwt.WithValidate(true),
jwt.WithAcceptableSkew(a.acceptableSkew),
)
if err != nil {
return nil, errors.WithStack(err)
}
contactedAt := time.Now()
agent, err = a.repo.Update(ctx, agent.ID, datastore.WithAgentUpdateContactedAt(contactedAt))
if err != nil {
return nil, errors.WithStack(err)
}
user := &User{
agent: agent,
}
@ -95,10 +83,9 @@ func (a *Authenticator) Authenticate(ctx context.Context, r *http.Request) (auth
return user, nil
}
func NewAuthenticator(repo datastore.AgentRepository, acceptableSkew time.Duration) *Authenticator {
func NewAuthenticator(repo datastore.AgentRepository) *Authenticator {
return &Authenticator{
repo: repo,
acceptableSkew: acceptableSkew,
repo: repo,
}
}

17
internal/auth/thirdparty/authenticator.go vendored
View File

@ -4,7 +4,6 @@ import (
"context"
"net/http"
"strings"
"time"
"forge.cadoles.com/Cadoles/emissary/internal/auth"
"forge.cadoles.com/Cadoles/emissary/internal/jwk"
@ -12,12 +11,9 @@ import (
"gitlab.com/wpetit/goweb/logger"
)
const DefaultAcceptableSkew = 5 * time.Minute
type Authenticator struct {
keys jwk.Set
issuer string
acceptableSkew time.Duration
keys jwk.Set
issuer string
}
// Authenticate implements auth.Authenticator.
@ -34,7 +30,7 @@ func (a *Authenticator) Authenticate(ctx context.Context, r *http.Request) (auth
return nil, errors.WithStack(auth.ErrUnauthenticated)
}
token, err := parseToken(ctx, a.keys, a.issuer, rawToken, a.acceptableSkew)
token, err := parseToken(ctx, a.keys, a.issuer, rawToken)
if err != nil {
return nil, errors.WithStack(err)
}
@ -61,11 +57,10 @@ func (a *Authenticator) Authenticate(ctx context.Context, r *http.Request) (auth
return user, nil
}
func NewAuthenticator(keys jwk.Set, issuer string, acceptableSkew time.Duration) *Authenticator {
func NewAuthenticator(keys jwk.Set, issuer string) *Authenticator {
return &Authenticator{
keys: keys,
issuer: issuer,
acceptableSkew: acceptableSkew,
keys: keys,
issuer: issuer,
}
}

3
internal/auth/thirdparty/jwt.go vendored
View File

@ -13,13 +13,12 @@ import (
const keyRole = "role"
func parseToken(ctx context.Context, keys jwk.Set, issuer string, rawToken string, acceptableSkew time.Duration) (jwt.Token, error) {
func parseToken(ctx context.Context, keys jwk.Set, issuer string, rawToken string) (jwt.Token, error) {
token, err := jwt.Parse(
[]byte(rawToken),
jwt.WithKeySet(keys, jws.WithRequireKid(false)),
jwt.WithIssuer(issuer),
jwt.WithValidate(true),
jwt.WithAcceptableSkew(acceptableSkew),
)
if err != nil {
return nil, errors.WithStack(err)

11
internal/client/update_agent.go
View File

@ -10,7 +10,6 @@ import (
type UpdateAgentOptions struct {
Status *int
Label *string
Options []OptionFunc
}
@ -22,12 +21,6 @@ func WithAgentStatus(status int) UpdateAgentOptionFunc {
}
}
func WithAgentLabel(label string) UpdateAgentOptionFunc {
return func(opts *UpdateAgentOptions) {
opts.Label = &label
}
}
func WithUpdateAgentsOptions(funcs ...OptionFunc) UpdateAgentOptionFunc {
return func(opts *UpdateAgentOptions) {
opts.Options = funcs
@ -46,10 +39,6 @@ func (c *Client) UpdateAgent(ctx context.Context, agentID datastore.AgentID, fun
payload["status"] = *opts.Status
}
if opts.Label != nil {
payload["label"] = *opts.Label
}
response := withResponse[struct {
Agent *datastore.Agent `json:"agent"`
}]()

8
internal/command/agent/run.go
View File

@ -49,6 +49,10 @@ func RunCommand() *cli.Command {
controllers = append(controllers, spec.NewController())
}
if ctrlConf.Proxy.Enabled {
controllers = append(controllers, proxy.NewController())
}
if ctrlConf.UCI.Enabled {
controllers = append(controllers, openwrt.NewUCIController(
string(ctrlConf.UCI.BinPath),
@ -62,10 +66,6 @@ func RunCommand() *cli.Command {
))
}
if ctrlConf.Proxy.Enabled {
controllers = append(controllers, proxy.NewController())
}
if ctrlConf.SysUpgrade.Enabled {
sysUpgradeArgs := make([]string, 0)
if len(ctrlConf.SysUpgrade.SysUpgradeCommand) > 1 {

10
internal/command/api/agent/update.go
View File

@ -22,11 +22,6 @@ func UpdateCommand() *cli.Command {
Usage: "Set `STATUS` to selected agent",
Value: -1,
},
&cli.StringFlag{
Name: "label",
Usage: "Set `LABEL` to selected agent",
Value: "",
},
),
Action: func(ctx *cli.Context) error {
baseFlags := clientFlag.GetBaseFlags(ctx)
@ -48,11 +43,6 @@ func UpdateCommand() *cli.Command {
options = append(options, client.WithAgentStatus(status))
}
label := ctx.String("label")
if label != "" {
options = append(options, client.WithAgentLabel(label))
}
client := client.New(baseFlags.ServerURL, client.WithToken(token))
agent, err := client.UpdateAgent(ctx.Context, agentID, options...)

3
internal/command/api/agent/util.go
View File

@ -7,10 +7,9 @@ func agentHints(outputMode format.OutputMode) format.Hints {
OutputMode: outputMode,
Props: []format.Prop{
format.NewProp("ID", "ID"),
format.NewProp("Label", "Label"),
format.NewProp("Thumbprint", "Thumbprint"),
format.NewProp("Status", "Status"),
format.NewProp("ContactedAt", "ContactedAt"),
format.NewProp("CreatedAt", "CreatedAt"),
format.NewProp("UpdatedAt", "UpdatedAt"),
},
}

2
internal/config/database.go
View File

@ -15,6 +15,6 @@ type DatabaseConfig struct {
func NewDefaultDatabaseConfig() DatabaseConfig {
return DatabaseConfig{
Driver: "sqlite",
DSN: "sqlite://emissary.sqlite?_pragma=foreign_keys(1)&_pragma=journal_mode(WAL)&_txlock=immediate",
DSN: "sqlite://emissary.sqlite?_fk=true&_journal=WAL",
}
}

16
internal/datastore/agent.go
View File

@ -20,15 +20,13 @@ const (
)
type Agent struct {
ID AgentID `json:"id"`
Label string `json:"label"`
Thumbprint string `json:"thumbprint"`
KeySet *SerializableKeySet `json:"keyset,omitempty"`
Metadata map[string]any `json:"metadata,omitempty"`
Status AgentStatus `json:"status"`
CreatedAt time.Time `json:"createdAt"`
UpdatedAt time.Time `json:"updatedAt"`
ContactedAt *time.Time `json:"contactedAt,omitempty"`
ID AgentID `json:"id"`
Thumbprint string `json:"thumbprint"`
KeySet *SerializableKeySet `json:"keyset,omitempty"`
Metadata map[string]any `json:"metadata,omitempty"`
Status AgentStatus `json:"status"`
CreatedAt time.Time `json:"createdAt"`
UpdatedAt time.Time `json:"updatedAt"`
}
type SerializableKeySet struct {

23
internal/datastore/agent_repository.go
View File

@ -2,7 +2,6 @@ package datastore
import (
"context"
"time"
"github.com/lestrrat-go/jwx/v2/jwk"
)
@ -69,12 +68,10 @@ func WithAgentQueryThumbprints(thumbprints ...string) AgentQueryOptionFunc {
type AgentUpdateOptionFunc func(*AgentUpdateOptions)
type AgentUpdateOptions struct {
Label *string
Status *AgentStatus
ContactedAt *time.Time
Metadata *map[string]any
KeySet *jwk.Set
Thumbprint *string
Status *AgentStatus
Metadata *map[string]any
KeySet *jwk.Set
Thumbprint *string
}
func WithAgentUpdateStatus(status AgentStatus) AgentUpdateOptionFunc {
@ -100,15 +97,3 @@ func WithAgentUpdateThumbprint(thumbprint string) AgentUpdateOptionFunc {
opts.Thumbprint = &thumbprint
}
}
func WithAgentUpdateLabel(label string) AgentUpdateOptionFunc {
return func(opts *AgentUpdateOptions) {
opts.Label = &label
}
}
func WithAgentUpdateContactedAt(contactedAt time.Time) AgentUpdateOptionFunc {
return func(opts *AgentUpdateOptions) {
opts.ContactedAt = &contactedAt
}
}

61
internal/datastore/sqlite/agent_repository.go
View File

@ -127,7 +127,7 @@ func (r *AgentRepository) Query(ctx context.Context, opts ...datastore.AgentQuer
count := 0
err := r.withTx(ctx, func(tx *sql.Tx) error {
query := `SELECT id, label, thumbprint, status, contacted_at, created_at, updated_at FROM agents`
query := `SELECT id, thumbprint, status, created_at, updated_at FROM agents`
limit := 10
if options.Limit != nil {
@ -194,16 +194,12 @@ func (r *AgentRepository) Query(ctx context.Context, opts ...datastore.AgentQuer
agent := &datastore.Agent{}
metadata := JSONMap{}
contactedAt := sql.NullTime{}
if err := rows.Scan(&agent.ID, &agent.Label, &agent.Thumbprint, &agent.Status, &contactedAt, &agent.CreatedAt, &agent.UpdatedAt); err != nil {
if err := rows.Scan(&agent.ID, &agent.Thumbprint, &agent.Status, &agent.CreatedAt, &agent.UpdatedAt); err != nil {
return errors.WithStack(err)
}
agent.Metadata = metadata
if contactedAt.Valid {
agent.ContactedAt = &contactedAt.Time
}
agents = append(agents, agent)
}
@ -319,7 +315,7 @@ func (r *AgentRepository) Get(ctx context.Context, id datastore.AgentID) (*datas
err := r.withTx(ctx, func(tx *sql.Tx) error {
query := `
SELECT "id", "label", "thumbprint", "keyset", "metadata", "status", "contacted_at", "created_at", "updated_at"
SELECT "id", "thumbprint", "keyset", "metadata", "status", "created_at", "updated_at"
FROM agents
WHERE id = $1
`
@ -327,10 +323,9 @@ func (r *AgentRepository) Get(ctx context.Context, id datastore.AgentID) (*datas
row := r.db.QueryRowContext(ctx, query, id)
metadata := JSONMap{}
contactedAt := sql.NullTime{}
var rawKeySet []byte
if err := row.Scan(&agent.ID, &agent.Label, &agent.Thumbprint, &rawKeySet, &metadata, &agent.Status, &contactedAt, &agent.CreatedAt, &agent.UpdatedAt); err != nil {
if err := row.Scan(&agent.ID, &agent.Thumbprint, &rawKeySet, &metadata, &agent.Status, &agent.CreatedAt, &agent.UpdatedAt); err != nil {
if errors.Is(err, sql.ErrNoRows) {
return datastore.ErrNotFound
}
@ -339,9 +334,6 @@ func (r *AgentRepository) Get(ctx context.Context, id datastore.AgentID) (*datas
}
agent.Metadata = metadata
if contactedAt.Valid {
agent.ContactedAt = &contactedAt.Time
}
keySet := jwk.NewSet()
if err := json.Unmarshal(rawKeySet, &keySet); err != nil {
@ -370,11 +362,15 @@ func (r *AgentRepository) Update(ctx context.Context, id datastore.AgentID, opts
err := r.withTx(ctx, func(tx *sql.Tx) error {
query := `
UPDATE agents SET id = $1
UPDATE agents SET updated_at = $2
`
args := []any{id}
index := 2
now := time.Now().UTC()
args := []any{
id, now,
}
index := 3
if options.Status != nil {
query += fmt.Sprintf(`, status = $%d`, index)
@ -399,51 +395,23 @@ func (r *AgentRepository) Update(ctx context.Context, id datastore.AgentID, opts
index++
}
if options.Label != nil {
query += fmt.Sprintf(`, label = $%d`, index)
args = append(args, *options.Label)
index++
}
if options.ContactedAt != nil {
query += fmt.Sprintf(`, contacted_at = $%d`, index)
utc := options.ContactedAt.UTC()
args = append(args, utc)
index++
}
if options.Metadata != nil {
query += fmt.Sprintf(`, metadata = $%d`, index)
args = append(args, JSONMap(*options.Metadata))
index++
}
updated := options.Metadata != nil ||
options.Status != nil ||
options.Label != nil ||
options.KeySet != nil ||
options.Thumbprint != nil
if updated {
now := time.Now().UTC()
query += fmt.Sprintf(`, updated_at = $%d`, index)
args = append(args, now)
index++
}
query += `
WHERE id = $1
RETURNING "id", "label", "thumbprint", "keyset", "metadata", "status", "contacted_at", "created_at", "updated_at"
RETURNING "id", "thumbprint", "keyset", "metadata", "status", "created_at", "updated_at"
`
logger.Debug(ctx, "executing query", logger.F("query", query), logger.F("args", args))
row := tx.QueryRowContext(ctx, query, args...)
metadata := JSONMap{}
contactedAt := sql.NullTime{}
var rawKeySet []byte
if err := row.Scan(&agent.ID, &agent.Label, &agent.Thumbprint, &rawKeySet, &metadata, &agent.Status, &contactedAt, &agent.CreatedAt, &agent.UpdatedAt); err != nil {
if err := row.Scan(&agent.ID, &agent.Thumbprint, &rawKeySet, &metadata, &agent.Status, &agent.CreatedAt, &agent.UpdatedAt); err != nil {
if errors.Is(err, sql.ErrNoRows) {
return datastore.ErrNotFound
}
@ -452,9 +420,6 @@ func (r *AgentRepository) Update(ctx context.Context, id datastore.AgentID, opts
}
agent.Metadata = metadata
if contactedAt.Valid {
agent.ContactedAt = &contactedAt.Time
}
keySet := jwk.NewSet()
if err := json.Unmarshal(rawKeySet, &keySet); err != nil {

5
internal/server/agent_api.go
View File

@ -145,7 +145,6 @@ func (s *Server) registerAgent(w http.ResponseWriter, r *http.Request) {
type updateAgentRequest struct {
Status *datastore.AgentStatus `json:"status" validate:"omitempty,oneof=0 1 2 3"`
Label *string `json:"label" validate:"omitempty"`
}
func (s *Server) updateAgent(w http.ResponseWriter, r *http.Request) {
@ -167,10 +166,6 @@ func (s *Server) updateAgent(w http.ResponseWriter, r *http.Request) {
options = append(options, datastore.WithAgentUpdateStatus(*updateAgentReq.Status))
}
if updateAgentReq.Label != nil {
options = append(options, datastore.WithAgentUpdateLabel(*updateAgentReq.Label))
}
agent, err := s.agentRepo.Update(
ctx,
datastore.AgentID(agentID),

4
internal/server/server.go
View File

@ -105,8 +105,8 @@ func (s *Server) run(parentCtx context.Context, addrs chan net.Addr, errs chan e
r.Group(func(r chi.Router) {
r.Use(auth.Middleware(
thirdparty.NewAuthenticator(keys, string(s.conf.Issuer), thirdparty.DefaultAcceptableSkew),
agent.NewAuthenticator(s.agentRepo, agent.DefaultAcceptableSkew),
thirdparty.NewAuthenticator(keys, string(s.conf.Issuer)),
agent.NewAuthenticator(s.agentRepo),
))
r.Route("/agents", func(r chi.Router) {

1
migrations/sqlite/0000001_agent_label.down.sql
View File

@ -1 +0,0 @@
ALTER TABLE agents DROP COLUMN label;

1
migrations/sqlite/0000001_agent_label.up.sql
View File

@ -1 +0,0 @@
ALTER TABLE agents ADD COLUMN label TEXT DEFAULT "";

1
migrations/sqlite/0000002_agent_contactedat.down.sql
View File

@ -1 +0,0 @@
ALTER TABLE agents DROP COLUMN contacted_at;

1
migrations/sqlite/0000002_agent_contactedat.up.sql
View File

@ -1 +0,0 @@
ALTER TABLE agents ADD COLUMN contacted_at datetime;

2
misc/packaging/common/config-server.yml
View File

@ -9,7 +9,7 @@ server:
port: 3000
database:
driver: sqlite
dsn: sqlite:///var/lib/emissary/data.sqlite?_pragma=foreign_keys(1)&_pragma=journal_mode(WAL)&_txlock=immediate
dsn: sqlite:///var/lib/emissary/data.sqlite?_fk=true&_journal=WAL
cors:
allowedOrigins: []
allowCredentials: true