phorge-phorge/src/applications/conduit/protocol/ConduitAPIRequest.php

<?php

final class ConduitAPIRequest extends Phobject {

  protected $params;
  private $user;
  private $isClusterRequest = false;
  private $oauthToken;
  private $isStrictlyTyped = true;

  public function __construct(array $params, $strictly_typed) {
    $this->params = $params;
    $this->isStrictlyTyped = $strictly_typed;
  }

  public function getValue($key, $default = null) {
    return coalesce(idx($this->params, $key), $default);
  }

  public function getValueExists($key) {
    return array_key_exists($key, $this->params);
  }

  public function getAllParameters() {
    return $this->params;
  }

  public function setUser(PhabricatorUser $user) {
    $this->user = $user;
    return $this;
  }

  /**
   * Retrieve the authentic identity of the user making the request. If a
   * method requires authentication (the default) the user object will always
   * be available. If a method does not require authentication (i.e., overrides
   * shouldRequireAuthentication() to return false) the user object will NEVER
   * be available.
   *
   * @return PhabricatorUser Authentic user, available ONLY if the method
   *                         requires authentication.
   */
  public function getUser() {
    if (!$this->user) {
      throw new Exception(
        pht(
          'You can not access the user inside the implementation of a Conduit '.
          'method which does not require authentication (as per %s).',
          'shouldRequireAuthentication()'));
    }
    return $this->user;
  }

  public function setOAuthToken(
    PhabricatorOAuthServerAccessToken $oauth_token) {
    $this->oauthToken = $oauth_token;
    return $this;
  }

  public function getOAuthToken() {
    return $this->oauthToken;
  }

  public function setIsClusterRequest($is_cluster_request) {
    $this->isClusterRequest = $is_cluster_request;
    return $this;
  }

  public function getIsClusterRequest() {
    return $this->isClusterRequest;
  }

  public function getIsStrictlyTyped() {
    return $this->isStrictlyTyped;
  }

  public function newContentSource() {
    return PhabricatorContentSource::newForSource(
      PhabricatorConduitContentSource::SOURCECONST);
  }

}
Conduit server-side basics. 2011-01-24 09:00:29 -08:00			`<?php`

Extend from Phobject Summary: All classes should extend from some other class. See D13275 for some explanation. Test Plan: `arc unit` Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: epriestley, Korvin Differential Revision: https://secure.phabricator.com/D13283 2015-06-15 18:02:26 +10:00			`final class ConduitAPIRequest extends Phobject {`
Conduit server-side basics. 2011-01-24 09:00:29 -08:00
			`protected $params;`
Provide $request->getUser() for Conduit API Requests Summary: Allow Conduit methods to retrieve the authoritative, logged-in user identity. Test Plan: Ran user.whoami (an authenticated method) and got my info back. Ran conduit.connect (an unauthenticated method) and the world did not explode. Reviewed By: tuomaspelkonen Reviewers: tuomaspelkonen CC: tuomaspelkonen, epriestley Differential Revision: 113 2011-04-07 18:27:39 -07:00			`private $user;`
Proxy Diffusion Conduit API calls Summary: Fixes T7020. When an external user makes a Conduit request to Diffusion but the repository isn't hosted locally, we need to proxy it. This also adds a guard layer to prevent requests from getting infinitely proxied inside the cluster. In "trivial" configurations (where the repository is a service repository, but the service is on the local device) I'm making us always proxy anyway. This basically makes it reasonable to test this stuff (otherwise you'd have to set up two different installs) and this configuration doesn't make much sense in real life (if you're using multiple machines, making one a dedicating daemons+repo box is almost certainly the most reasonable configuration, even for a cluster size of 2). Test Plan: - With a service-hosted repository, made Diffusion conduit calls and browsed the UI. Verified requests got proxied once, then resovled. - With a non-service repository, made Diffusion conduit calls and browsed UI. Verified requests were handled in-process immediately. Reviewers: btrahan Reviewed By: btrahan Subscribers: epriestley Maniphest Tasks: T7020 Differential Revision: https://secure.phabricator.com/D11475 2015-01-23 13:30:52 -08:00			`private $isClusterRequest = false;`
Implement "auth.logout" Conduit API method Summary: Ref T7303. Ref T7673. This implements an "auth.logout" which: - terminates all web sessions; - terminates the current OAuth token if called via OAuth; and - may always be called via OAuth. (Since it consumes an OAuth token, even a "malicious" OAuth application can't really be that much of a jerk with this: it can't continuously log you out, since calling the method once kills the token. The application would need to ask your permission again to get a fresh token.) The primary goal here is to let Phacility instances call this against the Phacility upstream, so that when you log out of an instance it also logs you out of your Phacility account (possibly with a checkbox or something). This also smooths over the session token code. Before this change, your sessions would get logged out but when you reloaded we'd tell you your session was invalid. Instead, try to clear the invalid session before telling the user there's an issue. I think that ssentially 100% of invalid sessions are a result of something in this vein (e.g., forced logout via Settings) nowadays, since the session code is generally stable and sane and has been for a long time. Test Plan: - Called `auth.logout` via console, got a reasonable logout experience. - Called `auth.logout` via OAuth. - Tried to make another call, verified OAuth token had been invalidated. - Verified web session had been invalidated. Reviewers: chad Reviewed By: chad Maniphest Tasks: T7303, T7673 Differential Revision: https://secure.phabricator.com/D15594 2016-04-03 09:06:26 -07:00			`private $oauthToken;`
Conduit accept int/bool parameters as strings Summary: Accept Conduit parameter values as strings (e.g. from `curl`) and convert to required type. Test Plan: Call conduit method with int/bool parameter iusing `curl` and make sure it does not result in validation error, e.g. ``` $ curl http://$PHABRICATOR_HOST/api/maniphest.search -d api.token=$CONDUIT_TOKEN -d constraints[modifiedEnd]=$(date +%s) -d constraints[hasParents]=true -d limit=1 ``` Fixes T10456. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: Korvin Maniphest Tasks: T10456 Differential Revision: https://secure.phabricator.com/D16694 2016-10-14 14:45:57 +00:00			`private $isStrictlyTyped = true;`
Conduit server-side basics. 2011-01-24 09:00:29 -08:00
Conduit accept int/bool parameters as strings Summary: Accept Conduit parameter values as strings (e.g. from `curl`) and convert to required type. Test Plan: Call conduit method with int/bool parameter iusing `curl` and make sure it does not result in validation error, e.g. ``` $ curl http://$PHABRICATOR_HOST/api/maniphest.search -d api.token=$CONDUIT_TOKEN -d constraints[modifiedEnd]=$(date +%s) -d constraints[hasParents]=true -d limit=1 ``` Fixes T10456. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: Korvin Maniphest Tasks: T10456 Differential Revision: https://secure.phabricator.com/D16694 2016-10-14 14:45:57 +00:00			`public function __construct(array $params, $strictly_typed) {`
Conduit server-side basics. 2011-01-24 09:00:29 -08:00			`$this->params = $params;`
Conduit accept int/bool parameters as strings Summary: Accept Conduit parameter values as strings (e.g. from `curl`) and convert to required type. Test Plan: Call conduit method with int/bool parameter iusing `curl` and make sure it does not result in validation error, e.g. ``` $ curl http://$PHABRICATOR_HOST/api/maniphest.search -d api.token=$CONDUIT_TOKEN -d constraints[modifiedEnd]=$(date +%s) -d constraints[hasParents]=true -d limit=1 ``` Fixes T10456. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: Korvin Maniphest Tasks: T10456 Differential Revision: https://secure.phabricator.com/D16694 2016-10-14 14:45:57 +00:00			`$this->isStrictlyTyped = $strictly_typed;`
Conduit server-side basics. 2011-01-24 09:00:29 -08:00			`}`

Provide an audit.query method for Conduit Summary: Conduit access for open audits. Test Plan: Used test console to run some queries. Reviewers: btrahan Reviewed By: btrahan CC: aran, epriestley Maniphest Tasks: T904 Differential Revision: https://secure.phabricator.com/D1792 2012-03-06 15:12:27 -08:00			`public function getValue($key, $default = null) {`
			`return coalesce(idx($this->params, $key), $default);`
Conduit server-side basics. 2011-01-24 09:00:29 -08:00			`}`

Add basic typechecking support to Conduit Summary: Ref T9964. I want to show users what we're expecting in "constraints", and let constraints like "authors=epriestley" work to make things easier. I'm generally very happy with the "HTTPParameterType" stuff from EditEngine, so add a parallel set of "ConduitParameterType" classes. These are a little simpler than the HTTP ones, but have a little more validation logic. Test Plan: This is really just a proof of concept; some of these fields are now filled in: {F1023845} Reviewers: chad Reviewed By: chad Maniphest Tasks: T9964 Differential Revision: https://secure.phabricator.com/D14763 2015-12-13 03:53:15 -08:00			`public function getValueExists($key) {`
			`return array_key_exists($key, $this->params);`
			`}`

Conduit server-side basics. 2011-01-24 09:00:29 -08:00			`public function getAllParameters() {`
			`return $this->params;`
			`}`

Adding an "ssh" client for conduit Summary: ..."ssh" is in quotes 'cuz this is step 1 and there's no ssh in sight at the moment. Test Plan: ran api.php PHID-USER-xee4ju2teq7mflitwfcs differential.query a few times... - tried valid input, it worked! - tried bad input, it worked in that it failed and told me so! ran api.php crap_user differential.query a few times... - verified error message with respect to crap_user ran api.php PHID-USER-xee4ju2teq7mflitwfcs crap_method a few times... - verified error message with respect to crap_method visited http://phabricator.dev/conduit/method/differential.query a few times... - tried valid input, it worked! Reviewers: epriestley Reviewed By: epriestley CC: aran, btrahan, epriestley Maniphest Tasks: T550 Differential Revision: https://secure.phabricator.com/D1357 2012-01-10 16:48:59 -08:00			`public function setUser(PhabricatorUser $user) {`
Provide $request->getUser() for Conduit API Requests Summary: Allow Conduit methods to retrieve the authoritative, logged-in user identity. Test Plan: Ran user.whoami (an authenticated method) and got my info back. Ran conduit.connect (an unauthenticated method) and the world did not explode. Reviewed By: tuomaspelkonen Reviewers: tuomaspelkonen CC: tuomaspelkonen, epriestley Differential Revision: 113 2011-04-07 18:27:39 -07:00			`$this->user = $user;`
			`return $this;`
			`}`

			`/**`
			`* Retrieve the authentic identity of the user making the request. If a`
			`* method requires authentication (the default) the user object will always`
			`* be available. If a method does not require authentication (i.e., overrides`
			`* shouldRequireAuthentication() to return false) the user object will NEVER`
			`* be available.`
			`*`
			`* @return PhabricatorUser Authentic user, available ONLY if the method`
			`* requires authentication.`
			`*/`
			`public function getUser() {`
			`if (!$this->user) {`
			`throw new Exception(`
phtize all the things Summary: `pht`ize a whole bunch of strings in rP. Test Plan: Intense eyeballing. Reviewers: #blessed_reviewers, epriestley Reviewed By: #blessed_reviewers, epriestley Subscribers: hach-que, Korvin, epriestley Differential Revision: https://secure.phabricator.com/D12797 2015-05-22 17:27:56 +10:00			`pht(`
			`'You can not access the user inside the implementation of a Conduit '.`
			`'method which does not require authentication (as per %s).',`
			`'shouldRequireAuthentication()'));`
Provide $request->getUser() for Conduit API Requests Summary: Allow Conduit methods to retrieve the authoritative, logged-in user identity. Test Plan: Ran user.whoami (an authenticated method) and got my info back. Ran conduit.connect (an unauthenticated method) and the world did not explode. Reviewed By: tuomaspelkonen Reviewers: tuomaspelkonen CC: tuomaspelkonen, epriestley Differential Revision: 113 2011-04-07 18:27:39 -07:00			`}`
			`return $this->user;`
			`}`

Implement "auth.logout" Conduit API method Summary: Ref T7303. Ref T7673. This implements an "auth.logout" which: - terminates all web sessions; - terminates the current OAuth token if called via OAuth; and - may always be called via OAuth. (Since it consumes an OAuth token, even a "malicious" OAuth application can't really be that much of a jerk with this: it can't continuously log you out, since calling the method once kills the token. The application would need to ask your permission again to get a fresh token.) The primary goal here is to let Phacility instances call this against the Phacility upstream, so that when you log out of an instance it also logs you out of your Phacility account (possibly with a checkbox or something). This also smooths over the session token code. Before this change, your sessions would get logged out but when you reloaded we'd tell you your session was invalid. Instead, try to clear the invalid session before telling the user there's an issue. I think that ssentially 100% of invalid sessions are a result of something in this vein (e.g., forced logout via Settings) nowadays, since the session code is generally stable and sane and has been for a long time. Test Plan: - Called `auth.logout` via console, got a reasonable logout experience. - Called `auth.logout` via OAuth. - Tried to make another call, verified OAuth token had been invalidated. - Verified web session had been invalidated. Reviewers: chad Reviewed By: chad Maniphest Tasks: T7303, T7673 Differential Revision: https://secure.phabricator.com/D15594 2016-04-03 09:06:26 -07:00			`public function setOAuthToken(`
			`PhabricatorOAuthServerAccessToken $oauth_token) {`
			`$this->oauthToken = $oauth_token;`
			`return $this;`
			`}`

			`public function getOAuthToken() {`
			`return $this->oauthToken;`
			`}`

Proxy Diffusion Conduit API calls Summary: Fixes T7020. When an external user makes a Conduit request to Diffusion but the repository isn't hosted locally, we need to proxy it. This also adds a guard layer to prevent requests from getting infinitely proxied inside the cluster. In "trivial" configurations (where the repository is a service repository, but the service is on the local device) I'm making us always proxy anyway. This basically makes it reasonable to test this stuff (otherwise you'd have to set up two different installs) and this configuration doesn't make much sense in real life (if you're using multiple machines, making one a dedicating daemons+repo box is almost certainly the most reasonable configuration, even for a cluster size of 2). Test Plan: - With a service-hosted repository, made Diffusion conduit calls and browsed the UI. Verified requests got proxied once, then resovled. - With a non-service repository, made Diffusion conduit calls and browsed UI. Verified requests were handled in-process immediately. Reviewers: btrahan Reviewed By: btrahan Subscribers: epriestley Maniphest Tasks: T7020 Differential Revision: https://secure.phabricator.com/D11475 2015-01-23 13:30:52 -08:00			`public function setIsClusterRequest($is_cluster_request) {`
			`$this->isClusterRequest = $is_cluster_request;`
			`return $this;`
			`}`

			`public function getIsClusterRequest() {`
			`return $this->isClusterRequest;`
			`}`

Conduit accept int/bool parameters as strings Summary: Accept Conduit parameter values as strings (e.g. from `curl`) and convert to required type. Test Plan: Call conduit method with int/bool parameter iusing `curl` and make sure it does not result in validation error, e.g. ``` $ curl http://$PHABRICATOR_HOST/api/maniphest.search -d api.token=$CONDUIT_TOKEN -d constraints[modifiedEnd]=$(date +%s) -d constraints[hasParents]=true -d limit=1 ``` Fixes T10456. Reviewers: epriestley, #blessed_reviewers Reviewed By: epriestley, #blessed_reviewers Subscribers: Korvin Maniphest Tasks: T10456 Differential Revision: https://secure.phabricator.com/D16694 2016-10-14 14:45:57 +00:00			`public function getIsStrictlyTyped() {`
			`return $this->isStrictlyTyped;`
			`}`

Modularize content sources Summary: Ref T10537. For Nuance, I want to introduce new sources (like "GitHub" or "GitHub via Nuance" or something) but this needs to modularize eventually. Split ContentSource apart so applications can add new content sources. Test Plan: This change has huge surface area, so I'll hold it until post-release. I think it's fairly safe (and if it does break anything, the breaks should be fatals, not anything subtle or difficult to fix), there's just no reason not to hold it for a few hours. - Viewed new module page. - Grepped for all removed functions/constants. - Viewed some transactions. - Hovered over timestamps to get content source details. - Added a comment via Conduit. - Added a comment via web. - Ran `bin/storage upgrade --namespace XXXXX --no-quickstart -f` to re-run all historic migrations. - Generated some objects with `bin/lipsum`. - Ran a bulk job on some tasks. - Ran unit tests. {F1190182} Reviewers: chad Reviewed By: chad Maniphest Tasks: T10537 Differential Revision: https://secure.phabricator.com/D15521 2016-03-25 05:56:16 -07:00			`public function newContentSource() {`
			`return PhabricatorContentSource::newForSource(`
			`PhabricatorConduitContentSource::SOURCECONST);`
			`}`

Conduit server-side basics. 2011-01-24 09:00:29 -08:00			`}`