phorge-phorge/src/applications/passphrase/conduit/PassphraseQueryConduitAPIMethod.php

<?php

final class PassphraseQueryConduitAPIMethod
  extends PassphraseConduitAPIMethod {

  public function getAPIMethodName() {
    return 'passphrase.query';
  }

  public function getMethodDescription() {
    return pht('Query credentials.');
  }

  public function newQueryObject() {
    return new PassphraseCredentialQuery();
  }

  protected function defineParamTypes() {
    return array(
      'ids' => 'optional list<int>',
      'phids' => 'optional list<phid>',
      'needSecrets' => 'optional bool',
      'needPublicKeys' => 'optional bool',
    );
  }

  protected function defineReturnType() {
    return 'list<dict>';
  }

  protected function execute(ConduitAPIRequest $request) {
    $query = $this->newQueryForRequest($request);

    if ($request->getValue('ids')) {
      $query->withIDs($request->getValue('ids'));
    }

    if ($request->getValue('phids')) {
      $query->withPHIDs($request->getValue('phids'));
    }

    if ($request->getValue('needSecrets')) {
      $query->needSecrets(true);
    }

    $pager = $this->newPager($request);
    $credentials = $query->executeWithCursorPager($pager);

    $results = array();
    foreach ($credentials as $credential) {
      $type = PassphraseCredentialType::getTypeByConstant(
        $credential->getCredentialType());
      if (!$type) {
        continue;
      }

      $public_key = null;
      if ($request->getValue('needPublicKeys') && $type->hasPublicKey()) {
        $public_key = $type->getPublicKey(
          $request->getUser(),
          $credential);
      }

      $material = array();

      $is_locked = $credential->getIsLocked();
      $allow_api = ($credential->getAllowConduit() && !$is_locked);

      $secret = null;
      if ($request->getValue('needSecrets')) {
        if ($allow_api) {
          $secret = $credential->getSecret();
          if ($secret) {
            $secret = $secret->openEnvelope();
          } else {
            $material['destroyed'] = pht(
              'The private material for this credential has been '.
              'destroyed.');
          }
        }
      }

      switch ($credential->getCredentialType()) {
        case PassphraseSSHPrivateKeyFileCredentialType::CREDENTIAL_TYPE:
          if ($secret !== null) {
            $material['file'] = $secret;
          }
          if ($public_key) {
            $material['publicKey'] = $public_key;
          }
          break;
        case PassphraseSSHGeneratedKeyCredentialType::CREDENTIAL_TYPE:
        case PassphraseSSHPrivateKeyTextCredentialType::CREDENTIAL_TYPE:
          if ($secret !== null) {
            $material['privateKey'] = $secret;
          }
          if ($public_key) {
            $material['publicKey'] = $public_key;
          }
          break;
        case PassphrasePasswordCredentialType::CREDENTIAL_TYPE:
          if ($secret !== null) {
            $material['password'] = $secret;
          }
          break;
        case PassphraseTokenCredentialType::CREDENTIAL_TYPE:
          if ($secret !== null) {
            $material['token'] = $secret;
          }
          break;
      }

      if (!$allow_api) {
        $material['noAPIAccess'] = pht(
          'This private material for this credential is not accessible via '.
          'API calls.');
      }

      $results[$credential->getPHID()] = array(
        'id' => $credential->getID(),
        'phid' => $credential->getPHID(),
        'type' => $credential->getCredentialType(),
        'name' => $credential->getName(),
        'description' => $credential->getDescription(),
        'uri' =>
          PhabricatorEnv::getProductionURI('/'.$credential->getMonogram()),
        'monogram' => $credential->getMonogram(),
        'username' => $credential->getUsername(),
        'material' => $material,
      );
    }

    $result = array(
      'data' => $results,
    );

    return $this->addPagerResults($result, $pager);
  }

}
Implement `passphrase.query` for querying credentials Summary: Resolves T5868. This implements `passphrase.query` and a mechanism for allowing Conduit access to credentials. Test Plan: Tested locally. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: talshiri, epriestley, Korvin Maniphest Tasks: T5868 Differential Revision: https://secure.phabricator.com/D10262 2014-08-16 14:41:03 +02:00			`<?php`

			`final class PassphraseQueryConduitAPIMethod`
			`extends PassphraseConduitAPIMethod {`

			`public function getAPIMethodName() {`
			`return 'passphrase.query';`
			`}`

			`public function getMethodDescription() {`
			`return pht('Query credentials.');`
			`}`

Improve passphrase.query Summary: Fixes T8070. Fixes T8071. Modernizes passphrase.query to support "order". Test Plan: - Saw description in results. - Queried for destroyed credentials with "needSecrets=true". - Used "order". Reviewers: btrahan Reviewed By: btrahan Subscribers: mikn, epriestley Maniphest Tasks: T8070, T8071 Differential Revision: https://secure.phabricator.com/D12715 2015-05-06 00:59:44 +02:00			`public function newQueryObject() {`
			`return new PassphraseCredentialQuery();`
			`}`

Give Conduit params/return/errors protected visibility Summary: Ref T7803. Ref T5873. I want to drive Conduit through more shared infrastructure, but can't currently add parameters automatically. Put a `getX()` around the `defineX()` methods so the parent can provide default behaviors. Also like 60% of methods don't define any special error types; don't require them to implement this method. I want to move away from this in general. Test Plan: - Ran `arc unit --everything`. - Called `conduit.query`. - Browsed Conduit UI. Reviewers: btrahan Reviewed By: btrahan Subscribers: hach-que, epriestley Maniphest Tasks: T5873, T7803 Differential Revision: https://secure.phabricator.com/D12380 2015-04-13 00:59:07 +02:00			`protected function defineParamTypes() {`
Implement `passphrase.query` for querying credentials Summary: Resolves T5868. This implements `passphrase.query` and a mechanism for allowing Conduit access to credentials. Test Plan: Tested locally. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: talshiri, epriestley, Korvin Maniphest Tasks: T5868 Differential Revision: https://secure.phabricator.com/D10262 2014-08-16 14:41:03 +02:00			`return array(`
Improve passphrase.query Summary: Fixes T8070. Fixes T8071. Modernizes passphrase.query to support "order". Test Plan: - Saw description in results. - Queried for destroyed credentials with "needSecrets=true". - Used "order". Reviewers: btrahan Reviewed By: btrahan Subscribers: mikn, epriestley Maniphest Tasks: T8070, T8071 Differential Revision: https://secure.phabricator.com/D12715 2015-05-06 00:59:44 +02:00			`'ids' => 'optional list<int>',`
			`'phids' => 'optional list<phid>',`
			`'needSecrets' => 'optional bool',`
			`'needPublicKeys' => 'optional bool',`
			`);`
Implement `passphrase.query` for querying credentials Summary: Resolves T5868. This implements `passphrase.query` and a mechanism for allowing Conduit access to credentials. Test Plan: Tested locally. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: talshiri, epriestley, Korvin Maniphest Tasks: T5868 Differential Revision: https://secure.phabricator.com/D10262 2014-08-16 14:41:03 +02:00			`}`

Give Conduit params/return/errors protected visibility Summary: Ref T7803. Ref T5873. I want to drive Conduit through more shared infrastructure, but can't currently add parameters automatically. Put a `getX()` around the `defineX()` methods so the parent can provide default behaviors. Also like 60% of methods don't define any special error types; don't require them to implement this method. I want to move away from this in general. Test Plan: - Ran `arc unit --everything`. - Called `conduit.query`. - Browsed Conduit UI. Reviewers: btrahan Reviewed By: btrahan Subscribers: hach-que, epriestley Maniphest Tasks: T5873, T7803 Differential Revision: https://secure.phabricator.com/D12380 2015-04-13 00:59:07 +02:00			`protected function defineReturnType() {`
Implement `passphrase.query` for querying credentials Summary: Resolves T5868. This implements `passphrase.query` and a mechanism for allowing Conduit access to credentials. Test Plan: Tested locally. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: talshiri, epriestley, Korvin Maniphest Tasks: T5868 Differential Revision: https://secure.phabricator.com/D10262 2014-08-16 14:41:03 +02:00			`return 'list<dict>';`
			`}`

			`protected function execute(ConduitAPIRequest $request) {`
Improve passphrase.query Summary: Fixes T8070. Fixes T8071. Modernizes passphrase.query to support "order". Test Plan: - Saw description in results. - Queried for destroyed credentials with "needSecrets=true". - Used "order". Reviewers: btrahan Reviewed By: btrahan Subscribers: mikn, epriestley Maniphest Tasks: T8070, T8071 Differential Revision: https://secure.phabricator.com/D12715 2015-05-06 00:59:44 +02:00			`$query = $this->newQueryForRequest($request);`
Implement `passphrase.query` for querying credentials Summary: Resolves T5868. This implements `passphrase.query` and a mechanism for allowing Conduit access to credentials. Test Plan: Tested locally. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: talshiri, epriestley, Korvin Maniphest Tasks: T5868 Differential Revision: https://secure.phabricator.com/D10262 2014-08-16 14:41:03 +02:00
			`if ($request->getValue('ids')) {`
			`$query->withIDs($request->getValue('ids'));`
			`}`

			`if ($request->getValue('phids')) {`
			`$query->withPHIDs($request->getValue('phids'));`
			`}`

			`if ($request->getValue('needSecrets')) {`
			`$query->needSecrets(true);`
			`}`

			`$pager = $this->newPager($request);`
			`$credentials = $query->executeWithCursorPager($pager);`

			`$results = array();`
			`foreach ($credentials as $credential) {`
			`$type = PassphraseCredentialType::getTypeByConstant(`
			`$credential->getCredentialType());`
			`if (!$type) {`
			`continue;`
			`}`

			`$public_key = null;`
			`if ($request->getValue('needPublicKeys') && $type->hasPublicKey()) {`
			`$public_key = $type->getPublicKey(`
			`$request->getUser(),`
			`$credential);`
			`}`

Improve passphrase.query Summary: Fixes T8070. Fixes T8071. Modernizes passphrase.query to support "order". Test Plan: - Saw description in results. - Queried for destroyed credentials with "needSecrets=true". - Used "order". Reviewers: btrahan Reviewed By: btrahan Subscribers: mikn, epriestley Maniphest Tasks: T8070, T8071 Differential Revision: https://secure.phabricator.com/D12715 2015-05-06 00:59:44 +02:00			`$material = array();`

Prevent locked credentials from being made accessible via conduit Summary: Via HackerOne. Currently, you can use "Lock Permanently" to lock a credential permanently, but you can still enable Conduit API access to it. This directly contradicts both intent of the setting and its description as presented to the user. Instead: - When a credential is locked, revoke Conduit API access. - Prevent API access from being enabled for locked credentials. - Prevent API access to locked credentials, period. Test Plan: - Created a credential. - Enabled API access. - Locked credential. - Saw API access become disabled. - Tried to enable API access; was rebuffed. - Queried credential via API, wasn't granted access. Reviewers: chad Reviewed By: chad Differential Revision: https://secure.phabricator.com/D15944 2016-05-18 21:31:20 +02:00			`$is_locked = $credential->getIsLocked();`
			`$allow_api = ($credential->getAllowConduit() && !$is_locked);`

Implement `passphrase.query` for querying credentials Summary: Resolves T5868. This implements `passphrase.query` and a mechanism for allowing Conduit access to credentials. Test Plan: Tested locally. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: talshiri, epriestley, Korvin Maniphest Tasks: T5868 Differential Revision: https://secure.phabricator.com/D10262 2014-08-16 14:41:03 +02:00			`$secret = null;`
			`if ($request->getValue('needSecrets')) {`
Prevent locked credentials from being made accessible via conduit Summary: Via HackerOne. Currently, you can use "Lock Permanently" to lock a credential permanently, but you can still enable Conduit API access to it. This directly contradicts both intent of the setting and its description as presented to the user. Instead: - When a credential is locked, revoke Conduit API access. - Prevent API access from being enabled for locked credentials. - Prevent API access to locked credentials, period. Test Plan: - Created a credential. - Enabled API access. - Locked credential. - Saw API access become disabled. - Tried to enable API access; was rebuffed. - Queried credential via API, wasn't granted access. Reviewers: chad Reviewed By: chad Differential Revision: https://secure.phabricator.com/D15944 2016-05-18 21:31:20 +02:00			`if ($allow_api) {`
Improve passphrase.query Summary: Fixes T8070. Fixes T8071. Modernizes passphrase.query to support "order". Test Plan: - Saw description in results. - Queried for destroyed credentials with "needSecrets=true". - Used "order". Reviewers: btrahan Reviewed By: btrahan Subscribers: mikn, epriestley Maniphest Tasks: T8070, T8071 Differential Revision: https://secure.phabricator.com/D12715 2015-05-06 00:59:44 +02:00			`$secret = $credential->getSecret();`
			`if ($secret) {`
			`$secret = $secret->openEnvelope();`
			`} else {`
			`$material['destroyed'] = pht(`
			`'The private material for this credential has been '.`
			`'destroyed.');`
			`}`
Implement `passphrase.query` for querying credentials Summary: Resolves T5868. This implements `passphrase.query` and a mechanism for allowing Conduit access to credentials. Test Plan: Tested locally. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: talshiri, epriestley, Korvin Maniphest Tasks: T5868 Differential Revision: https://secure.phabricator.com/D10262 2014-08-16 14:41:03 +02:00			`}`
			`}`

			`switch ($credential->getCredentialType()) {`
Rename PassphraseCredentialType subclasses for consistency Summary: Ref T5655. Test Plan: `arc unit` + `grep` Reviewers: #blessed_reviewers, epriestley Reviewed By: #blessed_reviewers, epriestley Subscribers: epriestley, Korvin Maniphest Tasks: T5655 Differential Revision: https://secure.phabricator.com/D13266 2015-06-14 06:11:55 +02:00			`case PassphraseSSHPrivateKeyFileCredentialType::CREDENTIAL_TYPE:`
Make Passphrase "token" credentials accessible via the API Summary: Fixes T11867. This should really be on the `CredentialType` itself, but just punt that for now until the API endpoint gets updated. We'll need the actual code here anyway in some form. Test Plan: {F1922728} Reviewers: chad Reviewed By: chad Maniphest Tasks: T11867 Differential Revision: https://secure.phabricator.com/D16864 2016-11-15 18:07:45 +01:00			`if ($secret !== null) {`
Implement `passphrase.query` for querying credentials Summary: Resolves T5868. This implements `passphrase.query` and a mechanism for allowing Conduit access to credentials. Test Plan: Tested locally. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: talshiri, epriestley, Korvin Maniphest Tasks: T5868 Differential Revision: https://secure.phabricator.com/D10262 2014-08-16 14:41:03 +02:00			`$material['file'] = $secret;`
			`}`
			`if ($public_key) {`
			`$material['publicKey'] = $public_key;`
			`}`
			`break;`
Rename PassphraseCredentialType subclasses for consistency Summary: Ref T5655. Test Plan: `arc unit` + `grep` Reviewers: #blessed_reviewers, epriestley Reviewed By: #blessed_reviewers, epriestley Subscribers: epriestley, Korvin Maniphest Tasks: T5655 Differential Revision: https://secure.phabricator.com/D13266 2015-06-14 06:11:55 +02:00			`case PassphraseSSHGeneratedKeyCredentialType::CREDENTIAL_TYPE:`
			`case PassphraseSSHPrivateKeyTextCredentialType::CREDENTIAL_TYPE:`
Make Passphrase "token" credentials accessible via the API Summary: Fixes T11867. This should really be on the `CredentialType` itself, but just punt that for now until the API endpoint gets updated. We'll need the actual code here anyway in some form. Test Plan: {F1922728} Reviewers: chad Reviewed By: chad Maniphest Tasks: T11867 Differential Revision: https://secure.phabricator.com/D16864 2016-11-15 18:07:45 +01:00			`if ($secret !== null) {`
Implement `passphrase.query` for querying credentials Summary: Resolves T5868. This implements `passphrase.query` and a mechanism for allowing Conduit access to credentials. Test Plan: Tested locally. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: talshiri, epriestley, Korvin Maniphest Tasks: T5868 Differential Revision: https://secure.phabricator.com/D10262 2014-08-16 14:41:03 +02:00			`$material['privateKey'] = $secret;`
			`}`
			`if ($public_key) {`
			`$material['publicKey'] = $public_key;`
			`}`
			`break;`
Rename PassphraseCredentialType subclasses for consistency Summary: Ref T5655. Test Plan: `arc unit` + `grep` Reviewers: #blessed_reviewers, epriestley Reviewed By: #blessed_reviewers, epriestley Subscribers: epriestley, Korvin Maniphest Tasks: T5655 Differential Revision: https://secure.phabricator.com/D13266 2015-06-14 06:11:55 +02:00			`case PassphrasePasswordCredentialType::CREDENTIAL_TYPE:`
Make Passphrase "token" credentials accessible via the API Summary: Fixes T11867. This should really be on the `CredentialType` itself, but just punt that for now until the API endpoint gets updated. We'll need the actual code here anyway in some form. Test Plan: {F1922728} Reviewers: chad Reviewed By: chad Maniphest Tasks: T11867 Differential Revision: https://secure.phabricator.com/D16864 2016-11-15 18:07:45 +01:00			`if ($secret !== null) {`
Implement `passphrase.query` for querying credentials Summary: Resolves T5868. This implements `passphrase.query` and a mechanism for allowing Conduit access to credentials. Test Plan: Tested locally. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: talshiri, epriestley, Korvin Maniphest Tasks: T5868 Differential Revision: https://secure.phabricator.com/D10262 2014-08-16 14:41:03 +02:00			`$material['password'] = $secret;`
			`}`
			`break;`
Make Passphrase "token" credentials accessible via the API Summary: Fixes T11867. This should really be on the `CredentialType` itself, but just punt that for now until the API endpoint gets updated. We'll need the actual code here anyway in some form. Test Plan: {F1922728} Reviewers: chad Reviewed By: chad Maniphest Tasks: T11867 Differential Revision: https://secure.phabricator.com/D16864 2016-11-15 18:07:45 +01:00			`case PassphraseTokenCredentialType::CREDENTIAL_TYPE:`
			`if ($secret !== null) {`
			`$material['token'] = $secret;`
			`}`
			`break;`
Implement `passphrase.query` for querying credentials Summary: Resolves T5868. This implements `passphrase.query` and a mechanism for allowing Conduit access to credentials. Test Plan: Tested locally. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: talshiri, epriestley, Korvin Maniphest Tasks: T5868 Differential Revision: https://secure.phabricator.com/D10262 2014-08-16 14:41:03 +02:00			`}`

Prevent locked credentials from being made accessible via conduit Summary: Via HackerOne. Currently, you can use "Lock Permanently" to lock a credential permanently, but you can still enable Conduit API access to it. This directly contradicts both intent of the setting and its description as presented to the user. Instead: - When a credential is locked, revoke Conduit API access. - Prevent API access from being enabled for locked credentials. - Prevent API access to locked credentials, period. Test Plan: - Created a credential. - Enabled API access. - Locked credential. - Saw API access become disabled. - Tried to enable API access; was rebuffed. - Queried credential via API, wasn't granted access. Reviewers: chad Reviewed By: chad Differential Revision: https://secure.phabricator.com/D15944 2016-05-18 21:31:20 +02:00			`if (!$allow_api) {`
Implement `passphrase.query` for querying credentials Summary: Resolves T5868. This implements `passphrase.query` and a mechanism for allowing Conduit access to credentials. Test Plan: Tested locally. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: talshiri, epriestley, Korvin Maniphest Tasks: T5868 Differential Revision: https://secure.phabricator.com/D10262 2014-08-16 14:41:03 +02:00			`$material['noAPIAccess'] = pht(`
Improve passphrase.query Summary: Fixes T8070. Fixes T8071. Modernizes passphrase.query to support "order". Test Plan: - Saw description in results. - Queried for destroyed credentials with "needSecrets=true". - Used "order". Reviewers: btrahan Reviewed By: btrahan Subscribers: mikn, epriestley Maniphest Tasks: T8070, T8071 Differential Revision: https://secure.phabricator.com/D12715 2015-05-06 00:59:44 +02:00			`'This private material for this credential is not accessible via '.`
			`'API calls.');`
Implement `passphrase.query` for querying credentials Summary: Resolves T5868. This implements `passphrase.query` and a mechanism for allowing Conduit access to credentials. Test Plan: Tested locally. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: talshiri, epriestley, Korvin Maniphest Tasks: T5868 Differential Revision: https://secure.phabricator.com/D10262 2014-08-16 14:41:03 +02:00			`}`

			`$results[$credential->getPHID()] = array(`
			`'id' => $credential->getID(),`
			`'phid' => $credential->getPHID(),`
			`'type' => $credential->getCredentialType(),`
			`'name' => $credential->getName(),`
Improve passphrase.query Summary: Fixes T8070. Fixes T8071. Modernizes passphrase.query to support "order". Test Plan: - Saw description in results. - Queried for destroyed credentials with "needSecrets=true". - Used "order". Reviewers: btrahan Reviewed By: btrahan Subscribers: mikn, epriestley Maniphest Tasks: T8070, T8071 Differential Revision: https://secure.phabricator.com/D12715 2015-05-06 00:59:44 +02:00			`'description' => $credential->getDescription(),`
Implement `passphrase.query` for querying credentials Summary: Resolves T5868. This implements `passphrase.query` and a mechanism for allowing Conduit access to credentials. Test Plan: Tested locally. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: talshiri, epriestley, Korvin Maniphest Tasks: T5868 Differential Revision: https://secure.phabricator.com/D10262 2014-08-16 14:41:03 +02:00			`'uri' =>`
			`PhabricatorEnv::getProductionURI('/'.$credential->getMonogram()),`
			`'monogram' => $credential->getMonogram(),`
			`'username' => $credential->getUsername(),`
			`'material' => $material,`
			`);`
			`}`

			`$result = array(`
			`'data' => $results,`
			`);`

			`return $this->addPagerResults($result, $pager);`
			`}`

			`}`