sapcc / limes / 16748461890

coverage: 78.919%. Remained the same
16748461890

Pull #739

github

Varsius 
use respondwith.ObfuscatedErrorText in 500 responses
Pull Request #739: use respondwith.ObfuscatedErrorText in 500 responses

118 of 121 new or added lines in 11 files covered. (97.52%)

172 existing lines in 1 file now uncovered.

6847 of 8676 relevant lines covered (78.92%)

59.49 hits per line

Source File
Press 'n' to go to next uncovered line, 'b' for previous

77.41
/internal/api/commitment.go
1 
// SPDX-FileCopyrightText: 2023 SAP SE or an SAP affiliate company
2 
// SPDX-License-Identifier: Apache-2.0
3 









4



package api










5












6



import (










7



        "cmp"










8



        "database/sql"










9



        "encoding/json"










10



        "errors"










11



        "fmt"










12



        "maps"










13



        "net/http"










14



        "slices"










15



        "strings"










16



        "time"










17












18



        "github.com/gorilla/mux"










19



        . "github.com/majewsky/gg/option"










20



        "github.com/majewsky/gg/options"










21



        "github.com/sapcc/go-api-declarations/cadf"










22



        "github.com/sapcc/go-api-declarations/limes"










23



        limesresources "github.com/sapcc/go-api-declarations/limes/resources"










24



        "github.com/sapcc/go-api-declarations/liquid"










25



        "github.com/sapcc/go-bits/audittools"










26



        "github.com/sapcc/go-bits/errext"










27



        "github.com/sapcc/go-bits/gopherpolicy"










28



        "github.com/sapcc/go-bits/httpapi"










29



        "github.com/sapcc/go-bits/must"










30



        "github.com/sapcc/go-bits/respondwith"










31



        "github.com/sapcc/go-bits/sqlext"










32












33



        "github.com/sapcc/limes/internal/core"










34



        "github.com/sapcc/limes/internal/datamodel"










35



        "github.com/sapcc/limes/internal/db"










36



        "github.com/sapcc/limes/internal/reports"










37



)










38












39



var (










40



        getProjectCommitmentsQuery = sqlext.SimplifyWhitespace(`










41



                SELECT pc.*










42



                  FROM project_commitments pc










43



                  JOIN cluster_az_resources cazr ON pc.az_resource_id = cazr.id










44



                  JOIN cluster_resources cr ON cazr.resource_id = cr.id {{AND cr.name = $resource_name}}










45



                  JOIN cluster_services cs ON cr.service_id = cs.id {{AND cs.type = $service_type}}










46



                 WHERE %s AND pc.state NOT IN ('superseded', 'expired')










47



                 ORDER BY pc.id










48



        `)










49












50



        getClusterAZResourceLocationsQuery = sqlext.SimplifyWhitespace(`










51



                SELECT cazr.id, cs.type, cr.name, cazr.az










52



                  FROM project_az_resources pazr










53



                  JOIN cluster_az_resources cazr on pazr.az_resource_id = cazr.id










54



                  JOIN cluster_resources cr ON cazr.resource_id = cr.id {{AND cr.name = $resource_name}}










55



                  JOIN cluster_services cs ON cr.service_id = cs.id {{AND cs.type = $service_type}}










56



                 WHERE %s










57



        `)










58












59



        findProjectCommitmentByIDQuery = sqlext.SimplifyWhitespace(`










60



                SELECT pc.*










61



                  FROM project_commitments pc










62



                 WHERE pc.id = $1 AND pc.project_id = $2










63



        `)










64












65



        findClusterAZResourceIDByLocationQuery = sqlext.SimplifyWhitespace(`










66



                SELECT cazr.id, pr.forbidden IS NOT TRUE as resource_allows_commitments










67



                  FROM cluster_az_resources cazr










68



                  JOIN cluster_resources cr ON cazr.resource_id = cr.id










69



                  JOIN cluster_services cs ON cr.service_id = cs.id










70



                  JOIN project_resources pr ON pr.resource_id = cr.id










71



                 WHERE pr.project_id = $1 AND cs.type = $2 AND cr.name = $3 AND cazr.az = $4










72



        `)










73












74



        findClusterAZResourceLocationByIDQuery = sqlext.SimplifyWhitespace(`










75



                SELECT cs.type, cr.name, cazr.az










76



                  FROM cluster_az_resources cazr










77



                  JOIN cluster_resources cr ON cazr.resource_id = cr.id










78



                  JOIN cluster_services cs ON cr.service_id = cs.id










79



                 WHERE cazr.id = $1










80



        `)










81



        getCommitmentWithMatchingTransferTokenQuery = sqlext.SimplifyWhitespace(`










82



                SELECT * FROM project_commitments WHERE id = $1 AND transfer_token = $2










83



        `)










84



        findCommitmentByTransferToken = sqlext.SimplifyWhitespace(`










85



                SELECT * FROM project_commitments WHERE transfer_token = $1










86



        `)










87



)










88












89



// GetProjectCommitments handles GET /v1/domains/:domain_id/projects/:project_id/commitments.










90



func (p *v1Provider) GetProjectCommitments(w http.ResponseWriter, r *http.Request) {




15





91



        httpapi.IdentifyEndpoint(r, "/v1/domains/:id/projects/:id/commitments")




15





92



        token := p.CheckToken(r)




15





93



        if !token.Require(w, "project:show") {




16





94



                return




1





95



        }




1





96



        dbDomain := p.FindDomainFromRequest(w, r)




14





97



        if dbDomain == nil {




15





98



                return




1





99



        }




1





100



        dbProject := p.FindProjectFromRequest(w, r, dbDomain)




13





101



        if dbProject == nil {




14





102



                return




1





103



        }




1





104



        serviceInfos, err := p.Cluster.AllServiceInfos()




12






105



        if respondwith.ObfuscatedErrorText(w, err) {




12





106



                return




×







107



        }




×







108












109



        // enumerate project AZ resources










110



        filter := reports.ReadFilter(r, p.Cluster, serviceInfos)




12





111



        queryStr, joinArgs := filter.PrepareQuery(getClusterAZResourceLocationsQuery)




12





112



        whereStr, whereArgs := db.BuildSimpleWhereClause(map[string]any{"pazr.project_id": dbProject.ID}, len(joinArgs))




12





113



        azResourceLocationsByID := make(map[db.ClusterAZResourceID]core.AZResourceLocation)




12





114



        err = sqlext.ForeachRow(p.DB, fmt.Sprintf(queryStr, whereStr), append(joinArgs, whereArgs...), func(rows *sql.Rows) error {




137





115



                var (




125





116



                        id  db.ClusterAZResourceID




125





117



                        loc core.AZResourceLocation




125





118



                )




125





119



                err := rows.Scan(&id, &loc.ServiceType, &loc.ResourceName, &loc.AvailabilityZone)




125





120



                if err != nil {




125






UNCOV

121



                        return err




×







122



                }




×







123



                // this check is defense in depth (the DB should be consistent with our config)










124



                if core.HasResource(serviceInfos, loc.ServiceType, loc.ResourceName) {




250





125



                        azResourceLocationsByID[id] = loc




125





126



                }




125





127



                return nil




125





128



        })











129



        if respondwith.ObfuscatedErrorText(w, err) {




12





130



                return




×







131



        }




×







132












133



        // enumerate relevant project commitments










134



        queryStr, joinArgs = filter.PrepareQuery(getProjectCommitmentsQuery)




12





135



        whereStr, whereArgs = db.BuildSimpleWhereClause(map[string]any{"pc.project_id": dbProject.ID}, len(joinArgs))




12





136



        var dbCommitments []db.ProjectCommitment




12





137



        _, err = p.DB.Select(&dbCommitments, fmt.Sprintf(queryStr, whereStr), append(joinArgs, whereArgs...)...)




12






138



        if respondwith.ObfuscatedErrorText(w, err) {




12





139



                return




×







140



        }




×







141












142



        // render response










143



        result := make([]limesresources.Commitment, 0, len(dbCommitments))




12





144



        for _, c := range dbCommitments {




26





145



                loc, exists := azResourceLocationsByID[c.AZResourceID]




14





146



                if !exists {




14






UNCOV

147



                        // defense in depth (the DB should not change that much between those two queries above)




×







148



                        continue




×







149



                }










150



                serviceInfo := core.InfoForService(serviceInfos, loc.ServiceType)




14





151



                resInfo := core.InfoForResource(serviceInfo, loc.ResourceName)




14





152



                result = append(result, p.convertCommitmentToDisplayForm(c, loc, token, resInfo.Unit))




14





153



        }










154












155



        respondwith.JSON(w, http.StatusOK, map[string]any{"commitments": result})




12





156



}










157












158



// The state in the db can be directly mapped to the liquid.CommitmentStatus.










159



// However, the state "active" is named "confirmed" in the API. If the persisted










160



// state cannot be mapped to liquid terms, an empty string is returned.










161



func (p *v1Provider) convertCommitmentStateToDisplayForm(c db.ProjectCommitment) liquid.CommitmentStatus {




65





162



        var status = liquid.CommitmentStatus(c.State)




65





163



        if c.State == "active" {




103





164



                status = liquid.CommitmentStatusConfirmed




38





165



        }




38





166



        if status.IsValid() {




129





167



                return status




64





168



        }




64





169



        return "" // An empty state will be omitted when json serialized.




1





170



}










171












172



func (p *v1Provider) convertCommitmentToDisplayForm(c db.ProjectCommitment, loc core.AZResourceLocation, token *gopherpolicy.Token, unit limes.Unit) limesresources.Commitment {




59





173



        apiIdentity := p.Cluster.BehaviorForResource(loc.ServiceType, loc.ResourceName).IdentityInV1API




59





174



        return limesresources.Commitment{




59





175



                ID:               int64(c.ID),




59





176



                UUID:             string(c.UUID),




59





177



                ServiceType:      apiIdentity.ServiceType,




59





178



                ResourceName:     apiIdentity.Name,




59





179



                AvailabilityZone: loc.AvailabilityZone,




59





180



                Amount:           c.Amount,




59





181



                Unit:             unit,




59





182



                Duration:         c.Duration,




59





183



                CreatedAt:        limes.UnixEncodedTime{Time: c.CreatedAt},




59





184



                CreatorUUID:      c.CreatorUUID,




59





185



                CreatorName:      c.CreatorName,




59





186



                CanBeDeleted:     p.canDeleteCommitment(token, c),




59





187



                ConfirmBy:        options.Map(c.ConfirmBy, intoUnixEncodedTime).AsPointer(),




59





188



                ConfirmedAt:      options.Map(c.ConfirmedAt, intoUnixEncodedTime).AsPointer(),




59





189



                ExpiresAt:        limes.UnixEncodedTime{Time: c.ExpiresAt},




59





190



                TransferStatus:   c.TransferStatus,




59





191



                TransferToken:    c.TransferToken.AsPointer(),




59





192



                Status:           p.convertCommitmentStateToDisplayForm(c),




59





193



                NotifyOnConfirm:  c.NotifyOnConfirm,




59





194



                WasRenewed:       c.RenewContextJSON.IsSome(),




59





195



        }




59





196



}




59





197












198



// parseAndValidateCommitmentRequest parses and validates the request body for a commitment creation or confirmation.










199



// This function in its current form should only be used if the serviceInfo is not necessary to be used outside










200



// of this validation to avoid unnecessary database queries.










201



func (p *v1Provider) parseAndValidateCommitmentRequest(w http.ResponseWriter, r *http.Request, dbDomain db.Domain) (*limesresources.CommitmentRequest, *core.AZResourceLocation, *core.ScopedCommitmentBehavior) {




46





202



        // parse request




46





203



        var parseTarget struct {




46





204



                Request limesresources.CommitmentRequest `json:"commitment"`




46





205



        }




46





206



        if !RequireJSON(w, r, &parseTarget) {




47





207



                return nil, nil, nil




1





208



        }




1





209



        req := parseTarget.Request




45





210






45





211



        // validate request




45





212



        serviceInfos, err := p.Cluster.AllServiceInfos()




45






213



        if respondwith.ObfuscatedErrorText(w, err) {




45





214



                return nil, nil, nil




×







215



        }




×







216



        nm := core.BuildResourceNameMapping(p.Cluster, serviceInfos)




45





217



        dbServiceType, dbResourceName, ok := nm.MapFromV1API(req.ServiceType, req.ResourceName)




45





218



        if !ok {




47





219



                msg := fmt.Sprintf("no such service and/or resource: %s/%s", req.ServiceType, req.ResourceName)




2





220



                http.Error(w, msg, http.StatusUnprocessableEntity)




2





221



                return nil, nil, nil




2





222



        }




2





223



        behavior := p.Cluster.CommitmentBehaviorForResource(dbServiceType, dbResourceName).ForDomain(dbDomain.Name)




43





224



        serviceInfo := core.InfoForService(serviceInfos, dbServiceType)




43





225



        resInfo := core.InfoForResource(serviceInfo, dbResourceName)




43





226



        if len(behavior.Durations) == 0 {




44





227



                http.Error(w, "commitments are not enabled for this resource", http.StatusUnprocessableEntity)




1





228



                return nil, nil, nil




1





229



        }




1





230



        if resInfo.Topology == liquid.FlatTopology {




45





231



                if req.AvailabilityZone != limes.AvailabilityZoneAny {




4





232



                        http.Error(w, `resource does not accept AZ-aware commitments, so the AZ must be set to "any"`, http.StatusUnprocessableEntity)




1





233



                        return nil, nil, nil




1





234



                }




1





235



        } else {




39





236



                if !slices.Contains(p.Cluster.Config.AvailabilityZones, req.AvailabilityZone) {




43





237



                        http.Error(w, "no such availability zone", http.StatusUnprocessableEntity)




4





238



                        return nil, nil, nil




4





239



                }




4





240



        }










241



        if !slices.Contains(behavior.Durations, req.Duration) {




38





242



                buf := must.Return(json.Marshal(behavior.Durations)) // panic on error is acceptable here, marshals should never fail




1





243



                msg := "unacceptable commitment duration for this resource, acceptable values: " + string(buf)




1





244



                http.Error(w, msg, http.StatusUnprocessableEntity)




1





245



                return nil, nil, nil




1





246



        }




1





247



        if req.Amount == 0 {




37





248



                http.Error(w, "amount of committed resource must be greater than zero", http.StatusUnprocessableEntity)




1





249



                return nil, nil, nil




1





250



        }




1





251












252



        loc := core.AZResourceLocation{




35





253



                ServiceType:      dbServiceType,




35





254



                ResourceName:     dbResourceName,




35





255



                AvailabilityZone: req.AvailabilityZone,




35





256



        }




35





257



        return &req, &loc, &behavior




35





258



}










259












260



// CanConfirmNewProjectCommitment handles POST /v1/domains/:domain_id/projects/:project_id/commitments/can-confirm.










261



func (p *v1Provider) CanConfirmNewProjectCommitment(w http.ResponseWriter, r *http.Request) {




7





262



        httpapi.IdentifyEndpoint(r, "/v1/domains/:id/projects/:id/commitments/can-confirm")




7





263



        token := p.CheckToken(r)




7





264



        if !token.Require(w, "project:edit") {




7






UNCOV

265



                return




×







266



        }




×







267



        dbDomain := p.FindDomainFromRequest(w, r)




7





268



        if dbDomain == nil {




7






UNCOV

269



                return




×







270



        }




×







271



        dbProject := p.FindProjectFromRequest(w, r, dbDomain)




7





272



        if dbProject == nil {




7






UNCOV

273



                return




×







274



        }




×







275



        req, loc, behavior := p.parseAndValidateCommitmentRequest(w, r, *dbDomain)




7





276



        if req == nil {




7






UNCOV

277



                return




×







278



        }




×







279












280



        var (




7





281



                azResourceID              db.ClusterAZResourceID




7





282



                resourceAllowsCommitments bool




7





283



        )




7





284



        err := p.DB.QueryRow(findClusterAZResourceIDByLocationQuery, dbProject.ID, loc.ServiceType, loc.ResourceName, loc.AvailabilityZone).




7





285



                Scan(&azResourceID, &resourceAllowsCommitments)




7






286



        if respondwith.ObfuscatedErrorText(w, err) {




7





287



                return




×







288



        }




×







289



        if !resourceAllowsCommitments {




7






UNCOV

290



                msg := fmt.Sprintf("resource %s/%s is not enabled in this project", req.ServiceType, req.ResourceName)




×







291



                http.Error(w, msg, http.StatusUnprocessableEntity)




×







292



                return




×







293



        }




×







294



        _ = azResourceID // returned by the above query, but not used in this function




7





295






7





296



        // commitments can never be confirmed immediately if we are before the min_confirm_date




7





297



        now := p.timeNow()




7





298



        if !behavior.CanConfirmCommitmentsAt(now) {




8





299



                respondwith.JSON(w, http.StatusOK, map[string]bool{"result": false})




1





300



                return




1





301



        }




1





302












303



        // check for committable capacity










304



        result, err := datamodel.CanConfirmNewCommitment(*loc, dbProject.ID, req.Amount, p.Cluster, p.DB)




6






305



        if respondwith.ObfuscatedErrorText(w, err) {




6





306



                return




×







307



        }




×







308



        respondwith.JSON(w, http.StatusOK, map[string]bool{"result": result})




6





309



}










310












311



// CreateProjectCommitment handles POST /v1/domains/:domain_id/projects/:project_id/commitments/new.










312



func (p *v1Provider) CreateProjectCommitment(w http.ResponseWriter, r *http.Request) {




42





313



        httpapi.IdentifyEndpoint(r, "/v1/domains/:id/projects/:id/commitments/new")




42





314



        token := p.CheckToken(r)




42





315



        if !token.Require(w, "project:edit") {




43





316



                return




1





317



        }




1





318



        dbDomain := p.FindDomainFromRequest(w, r)




41





319



        if dbDomain == nil {




42





320



                return




1





321



        }




1





322



        dbProject := p.FindProjectFromRequest(w, r, dbDomain)




40





323



        if dbProject == nil {




41





324



                return




1





325



        }




1





326



        req, loc, behavior := p.parseAndValidateCommitmentRequest(w, r, *dbDomain)




39





327



        if req == nil {




50





328



                return




11





329



        }




11





330












331



        var (




28





332



                azResourceID              db.ClusterAZResourceID




28





333



                resourceAllowsCommitments bool




28





334



        )




28





335



        err := p.DB.QueryRow(findClusterAZResourceIDByLocationQuery, dbProject.ID, loc.ServiceType, loc.ResourceName, loc.AvailabilityZone).




28





336



                Scan(&azResourceID, &resourceAllowsCommitments)




28






337



        if respondwith.ObfuscatedErrorText(w, err) {




28





338



                return




×







339



        }




×







340



        if !resourceAllowsCommitments {




29





341



                msg := fmt.Sprintf("resource %s/%s is not enabled in this project", req.ServiceType, req.ResourceName)




1





342



                http.Error(w, msg, http.StatusUnprocessableEntity)




1





343



                return




1





344



        }




1





345












346



        // if given, confirm_by must definitely after time.Now(), and also after the MinConfirmDate if configured










347



        now := p.timeNow()




27





348



        if req.ConfirmBy != nil && req.ConfirmBy.Before(now) {




28





349



                http.Error(w, "confirm_by must not be set in the past", http.StatusUnprocessableEntity)




1





350



                return




1





351



        }




1





352



        if minConfirmBy, ok := behavior.MinConfirmDate.Unpack(); ok && minConfirmBy.After(now) {




31





353



                if req.ConfirmBy == nil || req.ConfirmBy.Before(minConfirmBy) {




6





354



                        msg := "this commitment needs a `confirm_by` timestamp at or after " + minConfirmBy.Format(time.RFC3339)




1





355



                        http.Error(w, msg, http.StatusUnprocessableEntity)




1





356



                        return




1





357



                }




1





358



        }










359












360



        // we want to validate committable capacity in the same transaction that creates the commitment










361



        tx, err := p.DB.Begin()




25






362



        if respondwith.ObfuscatedErrorText(w, err) {




25





363



                return




×







364



        }




×







365



        defer sqlext.RollbackUnlessCommitted(tx)




25





366






25





367



        // prepare commitment




25





368



        confirmBy := options.Map(options.FromPointer(req.ConfirmBy), fromUnixEncodedTime)




25





369



        creationContext := db.CommitmentWorkflowContext{Reason: db.CommitmentReasonCreate}




25





370



        buf, err := json.Marshal(creationContext)




25






371



        if respondwith.ObfuscatedErrorText(w, err) {




25





372



                return




×







373



        }




×







374



        dbCommitment := db.ProjectCommitment{




25





375



                UUID:                p.generateProjectCommitmentUUID(),




25





376



                AZResourceID:        azResourceID,




25





377



                ProjectID:           dbProject.ID,




25





378



                Amount:              req.Amount,




25





379



                Duration:            req.Duration,




25





380



                CreatedAt:           now,




25





381



                CreatorUUID:         token.UserUUID(),




25





382



                CreatorName:         fmt.Sprintf("%s@%s", token.UserName(), token.UserDomainName()),




25





383



                ConfirmBy:           confirmBy,




25





384



                ConfirmedAt:         None[time.Time](), // may be set below




25





385



                ExpiresAt:           req.Duration.AddTo(confirmBy.UnwrapOr(now)),




25





386



                CreationContextJSON: json.RawMessage(buf),




25





387



        }




25





388



        if req.NotifyOnConfirm && req.ConfirmBy == nil {




26





389



                http.Error(w, "notification on confirm cannot be set for commitments with immediate confirmation", http.StatusConflict)




1





390



                return




1





391



        }




1





392



        dbCommitment.NotifyOnConfirm = req.NotifyOnConfirm




24





393






24





394



        if req.ConfirmBy == nil {




42





395



                // if not planned for confirmation in the future, confirm immediately (or fail)




18





396



                ok, err := datamodel.CanConfirmNewCommitment(*loc, dbProject.ID, req.Amount, p.Cluster, tx)




18






397



                if respondwith.ObfuscatedErrorText(w, err) {




18





398



                        return




×







399



                }




×







400



                if !ok {




18






UNCOV

401



                        http.Error(w, "not enough capacity available for immediate confirmation", http.StatusConflict)




×







402



                        return




×







403



                }




×







404



                dbCommitment.ConfirmedAt = Some(now)




18





405



                dbCommitment.State = db.CommitmentStateActive




18





406



        } else {




6





407



                dbCommitment.State = db.CommitmentStatePlanned




6





408



        }




6





409












410



        // create commitment










411



        err = tx.Insert(&dbCommitment)




24






412



        if respondwith.ObfuscatedErrorText(w, err) {




24





413



                return




×







414



        }




×







415



        err = tx.Commit()




24






416



        if respondwith.ObfuscatedErrorText(w, err) {




24






UNCOV

417



                return




×







418



        }




×







419



        maybeServiceInfo, err := p.Cluster.InfoForService(loc.ServiceType)




24






420



        if respondwith.ObfuscatedErrorText(w, err) {




24






UNCOV

421



                return




×








UNCOV

422



        }




×







423



        serviceInfo, ok := maybeServiceInfo.Unpack()




24





424



        if !ok {




24





425



                http.Error(w, "service not found", http.StatusNotFound)




×







426



                return




×







427



        }




×







428



        resourceInfo := core.InfoForResource(serviceInfo, loc.ResourceName)




24





429



        commitment := p.convertCommitmentToDisplayForm(dbCommitment, *loc, token, resourceInfo.Unit)




24





430



        p.auditor.Record(audittools.Event{




24





431



                Time:       now,




24





432



                Request:    r,




24





433



                User:       token,




24





434



                ReasonCode: http.StatusCreated,




24





435



                Action:     cadf.CreateAction,




24





436



                Target: commitmentEventTarget{




24





437



                        DomainID:        dbDomain.UUID,




24





438



                        DomainName:      dbDomain.Name,




24





439



                        ProjectID:       dbProject.UUID,




24





440



                        ProjectName:     dbProject.Name,




24





441



                        Commitments:     []limesresources.Commitment{commitment},




24





442



                        WorkflowContext: Some(creationContext),




24





443



                },




24





444



        })




24





445






24





446



        // if the commitment is immediately confirmed, trigger a capacity scrape in




24





447



        // order to ApplyComputedProjectQuotas based on the new commitment




24





448



        if dbCommitment.ConfirmedAt.IsSome() {




42





449



                _, err := p.DB.Exec(`UPDATE cluster_services SET next_scrape_at = $1 WHERE type = $2`, now, loc.ServiceType)




18






450



                if respondwith.ObfuscatedErrorText(w, err) {




18






UNCOV

451



                        return




×








UNCOV

452



                }




×







453



        }










454












455



        // display the possibly confirmed commitment to the user










456



        err = p.DB.SelectOne(&dbCommitment, `SELECT * FROM project_commitments WHERE id = $1`, dbCommitment.ID)




24






457



        if respondwith.ObfuscatedErrorText(w, err) {




24






UNCOV

458



                return




×








UNCOV

459



        }




×







460












461



        respondwith.JSON(w, http.StatusCreated, map[string]any{"commitment": commitment})




24





462



}










463












464



// MergeProjectCommitments handles POST /v1/domains/:domain_id/projects/:project_id/commitments/merge.










465



func (p *v1Provider) MergeProjectCommitments(w http.ResponseWriter, r *http.Request) {




12





466



        httpapi.IdentifyEndpoint(r, "/v1/domains/:id/projects/:id/commitments/merge")




12





467



        token := p.CheckToken(r)




12





468



        if !token.Require(w, "project:edit") {




13





469



                return




1





470



        }




1





471



        dbDomain := p.FindDomainFromRequest(w, r)




11





472



        if dbDomain == nil {




12





473



                return




1





474



        }




1





475



        dbProject := p.FindProjectFromRequest(w, r, dbDomain)




10





476



        if dbProject == nil {




11





477



                return




1





478



        }




1





479



        var parseTarget struct {




9





480



                CommitmentIDs []db.ProjectCommitmentID `json:"commitment_ids"`




9





481



        }




9





482



        if !RequireJSON(w, r, &parseTarget) {




9






UNCOV

483



                return




×








UNCOV

484



        }




×







485



        commitmentIDs := parseTarget.CommitmentIDs




9





486



        if len(commitmentIDs) < 2 {




10





487



                http.Error(w, fmt.Sprintf("merging requires at least two commitments, but %d were given", len(commitmentIDs)), http.StatusBadRequest)




1





488



                return




1





489



        }




1





490












491



        // Load commitments










492



        dbCommitments := make([]db.ProjectCommitment, len(commitmentIDs))




8





493



        commitmentUUIDs := make([]db.ProjectCommitmentUUID, len(commitmentIDs))




8





494



        for i, commitmentID := range commitmentIDs {




24





495



                err := p.DB.SelectOne(&dbCommitments[i], findProjectCommitmentByIDQuery, commitmentID, dbProject.ID)




16





496



                if errors.Is(err, sql.ErrNoRows) {




17





497



                        http.Error(w, "no such commitment", http.StatusNotFound)




1





498



                        return




1






499



                } else if respondwith.ObfuscatedErrorText(w, err) {




16






UNCOV

500



                        return




×








UNCOV

501



                }




×







502



                commitmentUUIDs[i] = dbCommitments[i].UUID




15





503



        }










504












505



        // Verify that all commitments agree on resource and AZ and are active










506



        azResourceID := dbCommitments[0].AZResourceID




7





507



        for _, dbCommitment := range dbCommitments {




21





508



                if dbCommitment.AZResourceID != azResourceID {




16





509



                        http.Error(w, "all commitments must be on the same resource and AZ", http.StatusConflict)




2





510



                        return




2





511



                }




2





512



                if dbCommitment.State != db.CommitmentStateActive {




16





513



                        http.Error(w, "only active commitments may be merged", http.StatusConflict)




4





514



                        return




4





515



                }




4





516



        }










517












518



        var loc core.AZResourceLocation




1





519



        err := p.DB.QueryRow(findClusterAZResourceLocationByIDQuery, azResourceID).




1





520



                Scan(&loc.ServiceType, &loc.ResourceName, &loc.AvailabilityZone)




1





521



        if errors.Is(err, sql.ErrNoRows) {




1





522



                http.Error(w, "no route to this commitment", http.StatusNotFound)




×







523



                return




×








524



        } else if respondwith.ObfuscatedErrorText(w, err) {




1






UNCOV

525



                return




×








UNCOV

526



        }




×







527












528



        // Start transaction for creating new commitment and marking merged commitments as superseded










529



        tx, err := p.DB.Begin()




1






530



        if respondwith.ObfuscatedErrorText(w, err) {




1






UNCOV

531



                return




×








UNCOV

532



        }




×







533



        defer sqlext.RollbackUnlessCommitted(tx)




1





534






1





535



        // Create merged template




1





536



        now := p.timeNow()




1





537



        dbMergedCommitment := db.ProjectCommitment{




1





538



                UUID:         p.generateProjectCommitmentUUID(),




1





539



                ProjectID:    dbProject.ID,




1





540



                AZResourceID: azResourceID,




1





541



                Amount:       0,                                   // overwritten below




1





542



                Duration:     limesresources.CommitmentDuration{}, // overwritten below




1





543



                CreatedAt:    now,




1





544



                CreatorUUID:  token.UserUUID(),




1





545



                CreatorName:  fmt.Sprintf("%s@%s", token.UserName(), token.UserDomainName()),




1





546



                ConfirmedAt:  Some(now),




1





547



                ExpiresAt:    time.Time{}, // overwritten below




1





548



                State:        db.CommitmentStateActive,




1





549



        }




1





550






1





551



        // Fill amount and latest expiration date




1





552



        for _, dbCommitment := range dbCommitments {




3





553



                dbMergedCommitment.Amount += dbCommitment.Amount




2





554



                if dbCommitment.ExpiresAt.After(dbMergedCommitment.ExpiresAt) {




4





555



                        dbMergedCommitment.ExpiresAt = dbCommitment.ExpiresAt




2





556



                        dbMergedCommitment.Duration = dbCommitment.Duration




2





557



                }




2





558



        }










559












560



        // Fill workflow context










561



        creationContext := db.CommitmentWorkflowContext{




1





562



                Reason:                 db.CommitmentReasonMerge,




1





563



                RelatedCommitmentIDs:   commitmentIDs,




1





564



                RelatedCommitmentUUIDs: commitmentUUIDs,




1





565



        }




1





566



        buf, err := json.Marshal(creationContext)




1






567



        if respondwith.ObfuscatedErrorText(w, err) {




1






UNCOV

568



                return




×








UNCOV

569



        }




×







570



        dbMergedCommitment.CreationContextJSON = json.RawMessage(buf)




1





571






1





572



        // Insert into database




1





573



        err = tx.Insert(&dbMergedCommitment)




1






574



        if respondwith.ObfuscatedErrorText(w, err) {




1






UNCOV

575



                return




×








UNCOV

576



        }




×







577












578



        // Mark merged commits as superseded










579



        supersedeContext := db.CommitmentWorkflowContext{




1





580



                Reason:                 db.CommitmentReasonMerge,




1





581



                RelatedCommitmentIDs:   []db.ProjectCommitmentID{dbMergedCommitment.ID},




1





582



                RelatedCommitmentUUIDs: []db.ProjectCommitmentUUID{dbMergedCommitment.UUID},




1





583



        }




1





584



        buf, err = json.Marshal(supersedeContext)




1






585



        if respondwith.ObfuscatedErrorText(w, err) {




1






UNCOV

586



                return




×








UNCOV

587



        }




×







588



        for _, dbCommitment := range dbCommitments {




3





589



                dbCommitment.SupersededAt = Some(now)




2





590



                dbCommitment.SupersedeContextJSON = Some(json.RawMessage(buf))




2





591



                dbCommitment.State = db.CommitmentStateSuperseded




2





592



                _, err = tx.Update(&dbCommitment)




2






593



                if respondwith.ObfuscatedErrorText(w, err) {




2






UNCOV

594



                        return




×








UNCOV

595



                }




×







596



        }










597












598



        err = tx.Commit()




1






599



        if respondwith.ObfuscatedErrorText(w, err) {




1






UNCOV

600



                return




×








UNCOV

601



        }




×







602












603



        maybeServiceInfo, err := p.Cluster.InfoForService(loc.ServiceType)




1






604



        if respondwith.ObfuscatedErrorText(w, err) {




1






UNCOV

605



                return




×







606



        }




×







607



        serviceInfo, ok := maybeServiceInfo.Unpack()




1





608



        if !ok {




1





609



                http.Error(w, "service not found", http.StatusNotFound)




×







610



                return




×







611



        }




×







612



        resourceInfo := core.InfoForResource(serviceInfo, loc.ResourceName)




1





613






1





614



        c := p.convertCommitmentToDisplayForm(dbMergedCommitment, loc, token, resourceInfo.Unit)




1





615



        auditEvent := commitmentEventTarget{




1





616



                DomainID:        dbDomain.UUID,




1





617



                DomainName:      dbDomain.Name,




1





618



                ProjectID:       dbProject.UUID,




1





619



                ProjectName:     dbProject.Name,




1





620



                Commitments:     []limesresources.Commitment{c},




1





621



                WorkflowContext: Some(creationContext),




1





622



        }




1





623



        p.auditor.Record(audittools.Event{




1





624



                Time:       p.timeNow(),




1





625



                Request:    r,




1





626



                User:       token,




1





627



                ReasonCode: http.StatusAccepted,




1





628



                Action:     cadf.UpdateAction,




1





629



                Target:     auditEvent,




1





630



        })




1





631






1





632



        respondwith.JSON(w, http.StatusAccepted, map[string]any{"commitment": c})




1





633



}










634












635



// As per the API spec, commitments can be renewed 90 days in advance at the earliest.










636



const commitmentRenewalPeriod = 90 * 24 * time.Hour










637












638



// RenewProjectCommitments handles POST /v1/domains/:domain_id/projects/:project_id/commitments/:id/renew.










639



func (p *v1Provider) RenewProjectCommitments(w http.ResponseWriter, r *http.Request) {




6





640



        httpapi.IdentifyEndpoint(r, "/v1/domains/:id/projects/:id/commitments/:id/renew")




6





641



        token := p.CheckToken(r)




6





642



        if !token.Require(w, "project:edit") {




6






UNCOV

643



                return




×








UNCOV

644



        }




×







645



        dbDomain := p.FindDomainFromRequest(w, r)




6





646



        if dbDomain == nil {




6






UNCOV

647



                return




×








UNCOV

648



        }




×







649



        dbProject := p.FindProjectFromRequest(w, r, dbDomain)




6





650



        if dbProject == nil {




6






UNCOV

651



                return




×








UNCOV

652



        }




×







653












654



        // Load commitment










655



        var dbCommitment db.ProjectCommitment




6





656



        err := p.DB.SelectOne(&dbCommitment, findProjectCommitmentByIDQuery, mux.Vars(r)["id"], dbProject.ID)




6





657



        if errors.Is(err, sql.ErrNoRows) {




6





658



                http.Error(w, "no such commitment", http.StatusNotFound)




×







659



                return




×








660



        } else if respondwith.ObfuscatedErrorText(w, err) {




6






UNCOV

661



                return




×








UNCOV

662



        }




×







663



        now := p.timeNow()




6





664






6





665



        // Check if commitment can be renewed




6





666



        var errs errext.ErrorSet




6





667



        if dbCommitment.State != db.CommitmentStateActive {




7





668



                errs.Addf("invalid state %q", dbCommitment.State)




1





669



        } else if now.After(dbCommitment.ExpiresAt) {




7





670



                errs.Addf("invalid state %q", db.CommitmentStateExpired)




1





671



        }




1





672



        if now.Before(dbCommitment.ExpiresAt.Add(-commitmentRenewalPeriod)) {




7





673



                errs.Addf("renewal attempt too early")




1





674



        }




1





675



        if dbCommitment.RenewContextJSON.IsSome() {




7





676



                errs.Addf("already renewed")




1





677



        }




1





678












679



        if !errs.IsEmpty() {




10





680



                msg := "cannot renew this commitment: " + errs.Join(", ")




4





681



                http.Error(w, msg, http.StatusConflict)




4





682



                return




4





683



        }




4





684












685



        // Create renewed commitment










686



        tx, err := p.DB.Begin()




2






687



        if respondwith.ObfuscatedErrorText(w, err) {




2






UNCOV

688



                return




×








UNCOV

689



        }




×







690



        defer sqlext.RollbackUnlessCommitted(tx)




2





691






2





692



        var loc core.AZResourceLocation




2





693



        err = p.DB.QueryRow(findClusterAZResourceLocationByIDQuery, dbCommitment.AZResourceID).




2





694



                Scan(&loc.ServiceType, &loc.ResourceName, &loc.AvailabilityZone)




2





695



        if errors.Is(err, sql.ErrNoRows) {




2





696



                http.Error(w, "no route to this commitment", http.StatusNotFound)




×







697



                return




×








698



        } else if respondwith.ObfuscatedErrorText(w, err) {




2






UNCOV

699



                return




×








UNCOV

700



        }




×







701












702



        creationContext := db.CommitmentWorkflowContext{




2





703



                Reason:                 db.CommitmentReasonRenew,




2





704



                RelatedCommitmentIDs:   []db.ProjectCommitmentID{dbCommitment.ID},




2





705



                RelatedCommitmentUUIDs: []db.ProjectCommitmentUUID{dbCommitment.UUID},




2





706



        }




2





707



        buf, err := json.Marshal(creationContext)




2






708



        if respondwith.ObfuscatedErrorText(w, err) {




2






UNCOV

709



                return




×








UNCOV

710



        }




×







711



        dbRenewedCommitment := db.ProjectCommitment{




2





712



                UUID:                p.generateProjectCommitmentUUID(),




2





713



                ProjectID:           dbProject.ID,




2





714



                AZResourceID:        dbCommitment.AZResourceID,




2





715



                Amount:              dbCommitment.Amount,




2





716



                Duration:            dbCommitment.Duration,




2





717



                CreatedAt:           now,




2





718



                CreatorUUID:         token.UserUUID(),




2





719



                CreatorName:         fmt.Sprintf("%s@%s", token.UserName(), token.UserDomainName()),




2





720



                ConfirmBy:           Some(dbCommitment.ExpiresAt),




2





721



                ExpiresAt:           dbCommitment.Duration.AddTo(dbCommitment.ExpiresAt),




2





722



                State:               db.CommitmentStatePlanned,




2





723



                CreationContextJSON: json.RawMessage(buf),




2





724



        }




2





725






2





726



        err = tx.Insert(&dbRenewedCommitment)




2






727



        if respondwith.ObfuscatedErrorText(w, err) {




2






UNCOV

728



                return




×








UNCOV

729



        }




×







730












731



        renewContext := db.CommitmentWorkflowContext{




2





732



                Reason:                 db.CommitmentReasonRenew,




2





733



                RelatedCommitmentIDs:   []db.ProjectCommitmentID{dbRenewedCommitment.ID},




2





734



                RelatedCommitmentUUIDs: []db.ProjectCommitmentUUID{dbRenewedCommitment.UUID},




2





735



        }




2





736



        buf, err = json.Marshal(renewContext)




2






737



        if respondwith.ObfuscatedErrorText(w, err) {




2






UNCOV

738



                return




×








UNCOV

739



        }




×







740



        dbCommitment.RenewContextJSON = Some(json.RawMessage(buf))




2





741



        _, err = tx.Update(&dbCommitment)




2






742



        if respondwith.ObfuscatedErrorText(w, err) {




2






UNCOV

743



                return




×








UNCOV

744



        }




×







745












746



        err = tx.Commit()




2






747



        if respondwith.ObfuscatedErrorText(w, err) {




2






UNCOV

748



                return




×








UNCOV

749



        }




×







750












751



        maybeServiceInfo, err := p.Cluster.InfoForService(loc.ServiceType)




2






752



        if respondwith.ObfuscatedErrorText(w, err) {




2





753



                return




×







754



        }




×







755



        serviceInfo, ok := maybeServiceInfo.Unpack()




2





756



        if !ok {




2





757



                http.Error(w, "service not found", http.StatusNotFound)




×








UNCOV

758



                return




×








UNCOV

759



        }




×







760



        resourceInfo := core.InfoForResource(serviceInfo, loc.ResourceName)




2





761






2





762



        // Create resultset and auditlogs




2





763



        c := p.convertCommitmentToDisplayForm(dbRenewedCommitment, loc, token, resourceInfo.Unit)




2





764



        auditEvent := commitmentEventTarget{




2





765



                DomainID:        dbDomain.UUID,




2





766



                DomainName:      dbDomain.Name,




2





767



                ProjectID:       dbProject.UUID,




2





768



                ProjectName:     dbProject.Name,




2





769



                Commitments:     []limesresources.Commitment{c},




2





770



                WorkflowContext: Some(creationContext),




2





771



        }




2





772






2





773



        p.auditor.Record(audittools.Event{




2





774



                Time:       p.timeNow(),




2





775



                Request:    r,




2





776



                User:       token,




2





777



                ReasonCode: http.StatusAccepted,




2





778



                Action:     cadf.UpdateAction,




2





779



                Target:     auditEvent,




2





780



        })




2





781






2





782



        respondwith.JSON(w, http.StatusAccepted, map[string]any{"commitment": c})




2





783



}










784












785



// DeleteProjectCommitment handles DELETE /v1/domains/:domain_id/projects/:project_id/commitments/:id.










786



func (p *v1Provider) DeleteProjectCommitment(w http.ResponseWriter, r *http.Request) {




8





787



        httpapi.IdentifyEndpoint(r, "/v1/domains/:id/projects/:id/commitments/:id")




8





788



        token := p.CheckToken(r)




8





789



        if !token.Require(w, "project:edit") { // NOTE: There is a more specific AuthZ check further down below.




8






UNCOV

790



                return




×








UNCOV

791



        }




×







792



        dbDomain := p.FindDomainFromRequest(w, r)




8





793



        if dbDomain == nil {




9





794



                return




1





795



        }




1





796



        dbProject := p.FindProjectFromRequest(w, r, dbDomain)




7





797



        if dbProject == nil {




8





798



                return




1





799



        }




1





800












801



        // load commitment










802



        var dbCommitment db.ProjectCommitment




6





803



        err := p.DB.SelectOne(&dbCommitment, findProjectCommitmentByIDQuery, mux.Vars(r)["id"], dbProject.ID)




6





804



        if errors.Is(err, sql.ErrNoRows) {




7





805



                http.Error(w, "no such commitment", http.StatusNotFound)




1





806



                return




1






807



        } else if respondwith.ObfuscatedErrorText(w, err) {




6






UNCOV

808



                return




×








UNCOV

809



        }




×







810



        var loc core.AZResourceLocation




5





811



        err = p.DB.QueryRow(findClusterAZResourceLocationByIDQuery, dbCommitment.AZResourceID).




5





812



                Scan(&loc.ServiceType, &loc.ResourceName, &loc.AvailabilityZone)




5





813



        if errors.Is(err, sql.ErrNoRows) {




5





814



                // defense in depth: this should not happen because all the relevant tables are connected by FK constraints




×







815



                http.Error(w, "no route to this commitment", http.StatusNotFound)




×







816



                return




×








817



        } else if respondwith.ObfuscatedErrorText(w, err) {




5






UNCOV

818



                return




×








UNCOV

819



        }




×







820












821



        // check authorization for this specific commitment










822



        if !p.canDeleteCommitment(token, dbCommitment) {




6





823



                http.Error(w, "Forbidden", http.StatusForbidden)




1





824



                return




1





825



        }




1





826












827



        // perform deletion










828



        _, err = p.DB.Delete(&dbCommitment)




4






829



        if respondwith.ObfuscatedErrorText(w, err) {




4






UNCOV

830



                return




×







831



        }




×







832



        maybeServiceInfo, err := p.Cluster.InfoForService(loc.ServiceType)




4






833



        if respondwith.ObfuscatedErrorText(w, err) {




4






UNCOV

834



                return




×








UNCOV

835



        }




×







836



        serviceInfo, ok := maybeServiceInfo.Unpack()




4





837



        if !ok {




4





838



                http.Error(w, "service not found", http.StatusNotFound)




×








UNCOV

839



                return




×








UNCOV

840



        }




×







841



        resourceInfo := core.InfoForResource(serviceInfo, loc.ResourceName)




4





842



        c := p.convertCommitmentToDisplayForm(dbCommitment, loc, token, resourceInfo.Unit)




4





843



        p.auditor.Record(audittools.Event{




4





844



                Time:       p.timeNow(),




4





845



                Request:    r,




4





846



                User:       token,




4





847



                ReasonCode: http.StatusNoContent,




4





848



                Action:     cadf.DeleteAction,




4





849



                Target: commitmentEventTarget{




4





850



                        DomainID:    dbDomain.UUID,




4





851



                        DomainName:  dbDomain.Name,




4





852



                        ProjectID:   dbProject.UUID,




4





853



                        ProjectName: dbProject.Name,




4





854



                        Commitments: []limesresources.Commitment{c},




4





855



                },




4





856



        })




4





857






4





858



        w.WriteHeader(http.StatusNoContent)




4





859



}










860












861



func (p *v1Provider) canDeleteCommitment(token *gopherpolicy.Token, commitment db.ProjectCommitment) bool {




64





862



        // up to 24 hours after creation of fresh commitments, future commitments can still be deleted by their creators




64





863



        if commitment.State == db.CommitmentStatePlanned || commitment.State == db.CommitmentStatePending || commitment.State == db.CommitmentStateActive {




128





864



                var creationContext db.CommitmentWorkflowContext




64





865



                err := json.Unmarshal(commitment.CreationContextJSON, &creationContext)




64





866



                if err == nil && creationContext.Reason == db.CommitmentReasonCreate && p.timeNow().Before(commitment.CreatedAt.Add(24*time.Hour)) {




104





867



                        if token.Check("project:edit") {




80





868



                                return true




40





869



                        }




40





870



                }










871



        }










872












873



        // afterwards, a more specific permission is required to delete it










874



        //










875



        // This protects cloud admins making capacity planning decisions based on future commitments










876



        // from having their forecasts ruined by project admins suffering from buyer's remorse.










877



        return token.Check("project:uncommit")




24





878



}










879












880



// StartCommitmentTransfer handles POST /v1/domains/:id/projects/:id/commitments/:id/start-transfer










881



func (p *v1Provider) StartCommitmentTransfer(w http.ResponseWriter, r *http.Request) {




8





882



        httpapi.IdentifyEndpoint(r, "/v1/domains/:id/projects/:id/commitments/:id/start-transfer")




8





883



        token := p.CheckToken(r)




8





884



        if !token.Require(w, "project:edit") {




8






UNCOV

885



                return




×








UNCOV

886



        }




×







887



        dbDomain := p.FindDomainFromRequest(w, r)




8





888



        if dbDomain == nil {




8






UNCOV

889



                return




×








UNCOV

890



        }




×







891



        dbProject := p.FindProjectFromRequest(w, r, dbDomain)




8





892



        if dbProject == nil {




8






UNCOV

893



                return




×








UNCOV

894



        }




×







895



        // TODO: eventually migrate this struct into go-api-declarations










896



        var parseTarget struct {




8





897



                Request struct {




8





898



                        Amount         uint64                                  `json:"amount"`




8





899



                        TransferStatus limesresources.CommitmentTransferStatus `json:"transfer_status,omitempty"`




8





900



                } `json:"commitment"`




8





901



        }




8





902



        if !RequireJSON(w, r, &parseTarget) {




8






UNCOV

903



                return




×








UNCOV

904



        }




×







905



        req := parseTarget.Request




8





906






8





907



        if req.TransferStatus != limesresources.CommitmentTransferStatusUnlisted && req.TransferStatus != limesresources.CommitmentTransferStatusPublic {




8





908



                http.Error(w, fmt.Sprintf("Invalid transfer_status code. Must be %s or %s.", limesresources.CommitmentTransferStatusUnlisted, limesresources.CommitmentTransferStatusPublic), http.StatusBadRequest)




×








UNCOV

909



                return




×








UNCOV

910



        }




×







911












912



        if req.Amount <= 0 {




9





913



                http.Error(w, "delivered amount needs to be a positive value.", http.StatusBadRequest)




1





914



                return




1





915



        }




1





916












917



        // load commitment










918



        var dbCommitment db.ProjectCommitment




7





919



        err := p.DB.SelectOne(&dbCommitment, findProjectCommitmentByIDQuery, mux.Vars(r)["id"], dbProject.ID)




7





920



        if errors.Is(err, sql.ErrNoRows) {




7





921



                http.Error(w, "no such commitment", http.StatusNotFound)




×







922



                return




×








923



        } else if respondwith.ObfuscatedErrorText(w, err) {




7






UNCOV

924



                return




×








UNCOV

925



        }




×







926












927



        // Mark whole commitment or a newly created, splitted one as transferrable.










928



        tx, err := p.DB.Begin()




7






929



        if respondwith.ObfuscatedErrorText(w, err) {




7






UNCOV

930



                return




×








UNCOV

931



        }




×







932



        defer sqlext.RollbackUnlessCommitted(tx)




7





933



        transferToken := p.generateTransferToken()




7





934






7





935



        // Deny requests with a greater amount than the commitment.




7





936



        if req.Amount > dbCommitment.Amount {




8





937



                http.Error(w, "delivered amount exceeds the commitment amount.", http.StatusBadRequest)




1





938



                return




1





939



        }




1





940












941



        if req.Amount == dbCommitment.Amount {




10





942



                dbCommitment.TransferStatus = req.TransferStatus




4





943



                dbCommitment.TransferToken = Some(transferToken)




4





944



                _, err = tx.Update(&dbCommitment)




4






945



                if respondwith.ObfuscatedErrorText(w, err) {




4






UNCOV

946



                        return




×








UNCOV

947



                }




×







948



        } else {




2





949



                now := p.timeNow()




2





950



                transferAmount := req.Amount




2





951



                remainingAmount := dbCommitment.Amount - req.Amount




2





952



                transferCommitment, err := p.buildSplitCommitment(dbCommitment, transferAmount)




2






953



                if respondwith.ObfuscatedErrorText(w, err) {




2






UNCOV

954



                        return




×








UNCOV

955



                }




×







956



                transferCommitment.TransferStatus = req.TransferStatus




2





957



                transferCommitment.TransferToken = Some(transferToken)




2





958



                remainingCommitment, err := p.buildSplitCommitment(dbCommitment, remainingAmount)




2






959



                if respondwith.ObfuscatedErrorText(w, err) {




2






UNCOV

960



                        return




×







961



                }




×







962



                err = tx.Insert(&transferCommitment)




2






963



                if respondwith.ObfuscatedErrorText(w, err) {




2






UNCOV

964



                        return




×







965



                }




×







966



                err = tx.Insert(&remainingCommitment)




2






967



                if respondwith.ObfuscatedErrorText(w, err) {




2






UNCOV

968



                        return




×








UNCOV

969



                }




×







970



                supersedeContext := db.CommitmentWorkflowContext{




2





971



                        Reason:                 db.CommitmentReasonSplit,




2





972



                        RelatedCommitmentIDs:   []db.ProjectCommitmentID{transferCommitment.ID, remainingCommitment.ID},




2





973



                        RelatedCommitmentUUIDs: []db.ProjectCommitmentUUID{transferCommitment.UUID, remainingCommitment.UUID},




2





974



                }




2





975



                buf, err := json.Marshal(supersedeContext)




2






976



                if respondwith.ObfuscatedErrorText(w, err) {




2






UNCOV

977



                        return




×








UNCOV

978



                }




×







979



                dbCommitment.State = db.CommitmentStateSuperseded




2





980



                dbCommitment.SupersededAt = Some(now)




2





981



                dbCommitment.SupersedeContextJSON = Some(json.RawMessage(buf))




2





982



                _, err = tx.Update(&dbCommitment)




2






983



                if respondwith.ObfuscatedErrorText(w, err) {




2






UNCOV

984



                        return




×








UNCOV

985



                }




×







986



                dbCommitment = transferCommitment




2





987



        }










988



        err = tx.Commit()




6






989



        if respondwith.ObfuscatedErrorText(w, err) {




6






UNCOV

990



                return




×







991



        }




×







992












993



        var loc core.AZResourceLocation




6





994



        err = p.DB.QueryRow(findClusterAZResourceLocationByIDQuery, dbCommitment.AZResourceID).




6





995



                Scan(&loc.ServiceType, &loc.ResourceName, &loc.AvailabilityZone)




6





996



        if errors.Is(err, sql.ErrNoRows) {




6






UNCOV

997



                // defense in depth: this should not happen because all the relevant tables are connected by FK constraints




×








UNCOV

998



                http.Error(w, "no route to this commitment", http.StatusNotFound)




×







999



                return




×








1000



        } else if respondwith.ObfuscatedErrorText(w, err) {




6





1001



                return




×








UNCOV

1002



        }




×







1003












1004



        maybeServiceInfo, err := p.Cluster.InfoForService(loc.ServiceType)




6






1005



        if respondwith.ObfuscatedErrorText(w, err) {




6





1006



                return




×







1007



        }




×







1008



        serviceInfo, ok := maybeServiceInfo.Unpack()




6





1009



        if !ok {




6





1010



                http.Error(w, "service not found", http.StatusNotFound)




×







1011



                return




×







1012



        }




×







1013



        resourceInfo := core.InfoForResource(serviceInfo, loc.ResourceName)




6





1014



        c := p.convertCommitmentToDisplayForm(dbCommitment, loc, token, resourceInfo.Unit)




6






1015



        if respondwith.ObfuscatedErrorText(w, err) {




6






UNCOV

1016



                return




×








UNCOV

1017



        }




×







1018



        p.auditor.Record(audittools.Event{




6





1019



                Time:       p.timeNow(),




6





1020



                Request:    r,




6





1021



                User:       token,




6





1022



                ReasonCode: http.StatusAccepted,




6





1023



                Action:     cadf.UpdateAction,




6





1024



                Target: commitmentEventTarget{




6





1025



                        DomainID:    dbDomain.UUID,




6





1026



                        DomainName:  dbDomain.Name,




6





1027



                        ProjectID:   dbProject.UUID,




6





1028



                        ProjectName: dbProject.Name,




6





1029



                        Commitments: []limesresources.Commitment{c},




6





1030



                },




6





1031



        })




6





1032



        respondwith.JSON(w, http.StatusAccepted, map[string]any{"commitment": c})




6





1033



}










1034












1035



func (p *v1Provider) buildSplitCommitment(dbCommitment db.ProjectCommitment, amount uint64) (db.ProjectCommitment, error) {




5





1036



        now := p.timeNow()




5





1037



        creationContext := db.CommitmentWorkflowContext{




5





1038



                Reason:                 db.CommitmentReasonSplit,




5





1039



                RelatedCommitmentIDs:   []db.ProjectCommitmentID{dbCommitment.ID},




5





1040



                RelatedCommitmentUUIDs: []db.ProjectCommitmentUUID{dbCommitment.UUID},




5





1041



        }




5





1042



        buf, err := json.Marshal(creationContext)




5





1043



        if err != nil {




5






UNCOV

1044



                return db.ProjectCommitment{}, err




×








UNCOV

1045



        }




×







1046



        return db.ProjectCommitment{




5





1047



                UUID:                p.generateProjectCommitmentUUID(),




5





1048



                ProjectID:           dbCommitment.ProjectID,




5





1049



                AZResourceID:        dbCommitment.AZResourceID,




5





1050



                Amount:              amount,




5





1051



                Duration:            dbCommitment.Duration,




5





1052



                CreatedAt:           now,




5





1053



                CreatorUUID:         dbCommitment.CreatorUUID,




5





1054



                CreatorName:         dbCommitment.CreatorName,




5





1055



                ConfirmBy:           dbCommitment.ConfirmBy,




5





1056



                ConfirmedAt:         dbCommitment.ConfirmedAt,




5





1057



                ExpiresAt:           dbCommitment.ExpiresAt,




5





1058



                CreationContextJSON: json.RawMessage(buf),




5





1059



                State:               dbCommitment.State,




5





1060



        }, nil




5





1061



}










1062












1063



func (p *v1Provider) buildConvertedCommitment(dbCommitment db.ProjectCommitment, azResourceID db.ClusterAZResourceID, amount uint64) (db.ProjectCommitment, error) {




2





1064



        now := p.timeNow()




2





1065



        creationContext := db.CommitmentWorkflowContext{




2





1066



                Reason:                 db.CommitmentReasonConvert,




2





1067



                RelatedCommitmentIDs:   []db.ProjectCommitmentID{dbCommitment.ID},




2





1068



                RelatedCommitmentUUIDs: []db.ProjectCommitmentUUID{dbCommitment.UUID},




2





1069



        }




2





1070



        buf, err := json.Marshal(creationContext)




2





1071



        if err != nil {




2






UNCOV

1072



                return db.ProjectCommitment{}, err




×








UNCOV

1073



        }




×







1074



        return db.ProjectCommitment{




2





1075



                UUID:                p.generateProjectCommitmentUUID(),




2





1076



                ProjectID:           dbCommitment.ProjectID,




2





1077



                AZResourceID:        azResourceID,




2





1078



                Amount:              amount,




2





1079



                Duration:            dbCommitment.Duration,




2





1080



                CreatedAt:           now,




2





1081



                CreatorUUID:         dbCommitment.CreatorUUID,




2





1082



                CreatorName:         dbCommitment.CreatorName,




2





1083



                ConfirmBy:           dbCommitment.ConfirmBy,




2





1084



                ConfirmedAt:         dbCommitment.ConfirmedAt,




2





1085



                ExpiresAt:           dbCommitment.ExpiresAt,




2





1086



                CreationContextJSON: json.RawMessage(buf),




2





1087



                State:               dbCommitment.State,




2





1088



        }, nil




2





1089



}










1090












1091



// GetCommitmentByTransferToken handles GET /v1/commitments/{token}










1092



func (p *v1Provider) GetCommitmentByTransferToken(w http.ResponseWriter, r *http.Request) {




2





1093



        httpapi.IdentifyEndpoint(r, "/v1/commitments/:token")




2





1094



        token := p.CheckToken(r)




2





1095



        if !token.Require(w, "cluster:show_basic") {




2






UNCOV

1096



                return




×








UNCOV

1097



        }




×







1098



        transferToken := mux.Vars(r)["token"]




2





1099






2





1100



        // The token column is a unique key, so we expect only one result.




2





1101



        var dbCommitment db.ProjectCommitment




2





1102



        err := p.DB.SelectOne(&dbCommitment, findCommitmentByTransferToken, transferToken)




2





1103



        if errors.Is(err, sql.ErrNoRows) {




3





1104



                http.Error(w, "no matching commitment found.", http.StatusNotFound)




1





1105



                return




1






1106



        } else if respondwith.ObfuscatedErrorText(w, err) {




2






UNCOV

1107



                return




×








UNCOV

1108



        }




×







1109












1110



        var loc core.AZResourceLocation




1





1111



        err = p.DB.QueryRow(findClusterAZResourceLocationByIDQuery, dbCommitment.AZResourceID).




1





1112



                Scan(&loc.ServiceType, &loc.ResourceName, &loc.AvailabilityZone)




1





1113



        if errors.Is(err, sql.ErrNoRows) {




1





1114



                // defense in depth: this should not happen because all the relevant tables are connected by FK constraints




×







1115



                http.Error(w, "location data not found.", http.StatusNotFound)




×







1116



                return




×








1117



        } else if respondwith.ObfuscatedErrorText(w, err) {




1






UNCOV

1118



                return




×







1119



        }




×







1120












1121



        maybeServiceInfo, err := p.Cluster.InfoForService(loc.ServiceType)




1






1122



        if respondwith.ObfuscatedErrorText(w, err) {




1






UNCOV

1123



                return




×







1124



        }




×







1125



        serviceInfo, ok := maybeServiceInfo.Unpack()




1





1126



        if !ok {




1






UNCOV

1127



                http.Error(w, "service not found", http.StatusNotFound)




×








UNCOV

1128



                return




×








UNCOV

1129



        }




×







1130



        resourceInfo := core.InfoForResource(serviceInfo, loc.ResourceName)




1





1131



        c := p.convertCommitmentToDisplayForm(dbCommitment, loc, token, resourceInfo.Unit)




1





1132



        respondwith.JSON(w, http.StatusAccepted, map[string]any{"commitment": c})




1





1133



}










1134












1135



// TransferCommitment handles POST /v1/domains/{domain_id}/projects/{project_id}/transfer-commitment/{id}?token={token}










1136



func (p *v1Provider) TransferCommitment(w http.ResponseWriter, r *http.Request) {




5





1137



        httpapi.IdentifyEndpoint(r, "/v1/domains/:id/projects/:id/transfer-commitment/:id")




5





1138



        token := p.CheckToken(r)




5





1139



        if !token.Require(w, "project:edit") {




5






UNCOV

1140



                return




×








UNCOV

1141



        }




×







1142



        transferToken := r.Header.Get("Transfer-Token")




5





1143



        if transferToken == "" {




6





1144



                http.Error(w, "no transfer token provided", http.StatusBadRequest)




1





1145



                return




1





1146



        }




1





1147



        commitmentID := mux.Vars(r)["id"]




4





1148



        if commitmentID == "" {




4






UNCOV

1149



                http.Error(w, "no transfer token provided", http.StatusBadRequest)




×








UNCOV

1150



                return




×







1151



        }




×







1152



        dbDomain := p.FindDomainFromRequest(w, r)




4





1153



        if dbDomain == nil {




4






UNCOV

1154



                return




×







1155



        }




×







1156



        targetProject := p.FindProjectFromRequest(w, r, dbDomain)




4





1157



        if targetProject == nil {




4






UNCOV

1158



                return




×








UNCOV

1159



        }




×







1160












1161



        // find commitment by transfer_token










1162



        var dbCommitment db.ProjectCommitment




4





1163



        err := p.DB.SelectOne(&dbCommitment, getCommitmentWithMatchingTransferTokenQuery, commitmentID, transferToken)




4





1164



        if errors.Is(err, sql.ErrNoRows) {




5





1165



                http.Error(w, "no matching commitment found", http.StatusNotFound)




1





1166



                return




1






1167



        } else if respondwith.ObfuscatedErrorText(w, err) {




4






UNCOV

1168



                return




×








UNCOV

1169



        }




×







1170












1171



        var loc core.AZResourceLocation




3





1172



        err = p.DB.QueryRow(findClusterAZResourceLocationByIDQuery, dbCommitment.AZResourceID).




3





1173



                Scan(&loc.ServiceType, &loc.ResourceName, &loc.AvailabilityZone)




3





1174



        if errors.Is(err, sql.ErrNoRows) {




3





1175



                // defense in depth: this should not happen because all the relevant tables are connected by FK constraints




×







1176



                http.Error(w, "no route to this commitment", http.StatusNotFound)




×







1177



                return




×








1178



        } else if respondwith.ObfuscatedErrorText(w, err) {




3






UNCOV

1179



                return




×








UNCOV

1180



        }




×







1181












1182



        // check that the target project allows commitments at all










1183



        var (




3





1184



                azResourceID              db.ClusterAZResourceID




3





1185



                resourceAllowsCommitments bool




3





1186



        )




3





1187



        err = p.DB.QueryRow(findClusterAZResourceIDByLocationQuery, targetProject.ID, loc.ServiceType, loc.ResourceName, loc.AvailabilityZone).




3





1188



                Scan(&azResourceID, &resourceAllowsCommitments)




3






1189



        if respondwith.ObfuscatedErrorText(w, err) {




3





1190



                return




×







1191



        }




×







1192



        if !resourceAllowsCommitments {




3





1193



                msg := fmt.Sprintf("resource %s/%s is not enabled in the target project", loc.ServiceType, loc.ResourceName)




×








UNCOV

1194



                http.Error(w, msg, http.StatusUnprocessableEntity)




×








UNCOV

1195



                return




×








UNCOV

1196



        }




×







1197



        _ = azResourceID // returned by the above query, but not used in this function




3





1198






3





1199



        // validate that we have enough committable capacity on the receiving side




3





1200



        tx, err := p.DB.Begin()




3






1201



        if respondwith.ObfuscatedErrorText(w, err) {




3






UNCOV

1202



                return




×







1203



        }




×







1204



        defer sqlext.RollbackUnlessCommitted(tx)




3





1205



        ok, err := datamodel.CanMoveExistingCommitment(dbCommitment.Amount, loc, dbCommitment.ProjectID, targetProject.ID, p.Cluster, tx)




3






1206



        if respondwith.ObfuscatedErrorText(w, err) {




3






UNCOV

1207



                return




×








UNCOV

1208



        }




×







1209



        if !ok {




4





1210



                http.Error(w, "not enough committable capacity on the receiving side", http.StatusConflict)




1





1211



                return




1





1212



        }




1





1213












1214



        dbCommitment.TransferStatus = ""




2





1215



        dbCommitment.TransferToken = None[string]()




2





1216



        dbCommitment.ProjectID = targetProject.ID




2





1217



        _, err = tx.Update(&dbCommitment)




2






1218



        if respondwith.ObfuscatedErrorText(w, err) {




2






UNCOV

1219



                return




×







1220



        }




×







1221



        err = tx.Commit()




2






1222



        if respondwith.ObfuscatedErrorText(w, err) {




2






UNCOV

1223



                return




×








UNCOV

1224



        }




×







1225












1226



        maybeServiceInfo, err := p.Cluster.InfoForService(loc.ServiceType)




2






1227



        if respondwith.ObfuscatedErrorText(w, err) {




2





1228



                return




×







1229



        }




×







1230



        serviceInfo, ok := maybeServiceInfo.Unpack()




2





1231



        if !ok {




2





1232



                http.Error(w, "service not found", http.StatusNotFound)




×







1233



                return




×








UNCOV

1234



        }




×







1235



        resourceInfo := core.InfoForResource(serviceInfo, loc.ResourceName)




2





1236



        c := p.convertCommitmentToDisplayForm(dbCommitment, loc, token, resourceInfo.Unit)




2





1237



        p.auditor.Record(audittools.Event{




2





1238



                Time:       p.timeNow(),




2





1239



                Request:    r,




2





1240



                User:       token,




2





1241



                ReasonCode: http.StatusAccepted,




2





1242



                Action:     cadf.UpdateAction,




2





1243



                Target: commitmentEventTarget{




2





1244



                        DomainID:    dbDomain.UUID,




2





1245



                        DomainName:  dbDomain.Name,




2





1246



                        ProjectID:   targetProject.UUID,




2





1247



                        ProjectName: targetProject.Name,




2





1248



                        Commitments: []limesresources.Commitment{c},




2





1249



                },




2





1250



        })




2





1251






2





1252



        respondwith.JSON(w, http.StatusAccepted, map[string]any{"commitment": c})




2





1253



}










1254












1255



// GetCommitmentConversion handles GET /v1/commitment-conversion/{service_type}/{resource_name}










1256



func (p *v1Provider) GetCommitmentConversions(w http.ResponseWriter, r *http.Request) {




2





1257



        httpapi.IdentifyEndpoint(r, "/v1/commitment-conversion/:service_type/:resource_name")




2





1258



        token := p.CheckToken(r)




2





1259



        if !token.Require(w, "cluster:show_basic") {




2





1260



                return




×








UNCOV

1261



        }




×







1262












1263



        // TODO v2 API: This endpoint should be project-scoped in order to make it










1264



        // easier to select the correct domain scope for the CommitmentBehavior.










1265



        forTokenScope := func(behavior core.CommitmentBehavior) core.ScopedCommitmentBehavior {




13





1266



                name := cmp.Or(token.ProjectScopeDomainName(), token.DomainScopeName(), "")




11





1267



                if name != "" {




22





1268



                        return behavior.ForDomain(name)




11





1269



                }




11






UNCOV

1270



                return behavior.ForCluster()




×







1271



        }










1272












1273



        // validate request










1274



        vars := mux.Vars(r)




2





1275



        serviceInfos, err := p.Cluster.AllServiceInfos()




2






1276



        if respondwith.ObfuscatedErrorText(w, err) {




2





1277



                return




×








UNCOV

1278



        }




×







1279












1280



        nm := core.BuildResourceNameMapping(p.Cluster, serviceInfos)




2





1281



        sourceServiceType, sourceResourceName, exists := nm.MapFromV1API(




2





1282



                limes.ServiceType(vars["service_type"]),




2





1283



                limesresources.ResourceName(vars["resource_name"]),




2





1284



        )




2





1285



        if !exists {




2





1286



                msg := fmt.Sprintf("no such service and/or resource: %s/%s", vars["service_type"], vars["resource_name"])




×







1287



                http.Error(w, msg, http.StatusUnprocessableEntity)




×







1288



                return




×








UNCOV

1289



        }




×







1290



        sourceBehavior := forTokenScope(p.Cluster.CommitmentBehaviorForResource(sourceServiceType, sourceResourceName))




2





1291






2





1292



        serviceInfo := core.InfoForService(serviceInfos, sourceServiceType)




2





1293



        sourceResInfo := core.InfoForResource(serviceInfo, sourceResourceName)




2





1294






2





1295



        // enumerate possible conversions




2





1296



        conversions := make([]limesresources.CommitmentConversionRule, 0)




2





1297



        if sourceBehavior.ConversionRule.IsSome() {




4





1298



                for _, targetServiceType := range slices.Sorted(maps.Keys(serviceInfos)) {




8





1299



                        for targetResourceName, targetResInfo := range serviceInfos[targetServiceType].Resources {




28





1300



                                if sourceServiceType == targetServiceType && sourceResourceName == targetResourceName {




24





1301



                                        continue




2





1302



                                }










1303



                                if sourceResInfo.Unit != targetResInfo.Unit {




31





1304



                                        continue




11





1305



                                }










1306












1307



                                targetBehavior := forTokenScope(p.Cluster.CommitmentBehaviorForResource(targetServiceType, targetResourceName))




9





1308



                                if rate, ok := sourceBehavior.GetConversionRateTo(targetBehavior).Unpack(); ok {




13





1309



                                        apiServiceType, apiResourceName, ok := nm.MapToV1API(targetServiceType, targetResourceName)




4





1310



                                        if ok {




8





1311



                                                conversions = append(conversions, limesresources.CommitmentConversionRule{




4





1312



                                                        FromAmount:     rate.FromAmount,




4





1313



                                                        ToAmount:       rate.ToAmount,




4





1314



                                                        TargetService:  apiServiceType,




4





1315



                                                        TargetResource: apiResourceName,




4





1316



                                                })




4





1317



                                        }




4





1318



                                }










1319



                        }










1320



                }










1321



        }










1322












1323



        // use a defined sorting to ensure deterministic behavior in tests










1324



        slices.SortFunc(conversions, func(lhs, rhs limesresources.CommitmentConversionRule) int {




5





1325



                result := strings.Compare(string(lhs.TargetService), string(rhs.TargetService))




3





1326



                if result != 0 {




5





1327



                        return result




2





1328



                }




2





1329



                return strings.Compare(string(lhs.TargetResource), string(rhs.TargetResource))




1





1330



        })










1331












1332



        respondwith.JSON(w, http.StatusOK, map[string]any{"conversions": conversions})




2





1333



}










1334












1335



// ConvertCommitment handles POST /v1/domains/{domain_id}/projects/{project_id}/commitments/{commitment_id}/convert










1336



func (p *v1Provider) ConvertCommitment(w http.ResponseWriter, r *http.Request) {




9





1337



        httpapi.IdentifyEndpoint(r, "/v1/domains/:domain_id/projects/:project_id/commitments/:commitment_id/convert")




9





1338



        token := p.CheckToken(r)




9





1339



        if !token.Require(w, "project:edit") {




9





1340



                return




×








UNCOV

1341



        }




×







1342



        commitmentID := mux.Vars(r)["commitment_id"]




9





1343



        if commitmentID == "" {




9





1344



                http.Error(w, "no transfer token provided", http.StatusBadRequest)




×







1345



                return




×








UNCOV

1346



        }




×







1347



        dbDomain := p.FindDomainFromRequest(w, r)




9





1348



        if dbDomain == nil {




9





1349



                return




×








UNCOV

1350



        }




×







1351



        dbProject := p.FindProjectFromRequest(w, r, dbDomain)




9





1352



        if dbProject == nil {




9





1353



                return




×








UNCOV

1354



        }




×







1355












1356



        // section: sourceBehavior










1357



        var dbCommitment db.ProjectCommitment




9





1358



        err := p.DB.SelectOne(&dbCommitment, findProjectCommitmentByIDQuery, commitmentID, dbProject.ID)




9





1359



        if errors.Is(err, sql.ErrNoRows) {




10





1360



                http.Error(w, "no such commitment", http.StatusNotFound)




1





1361



                return




1






1362



        } else if respondwith.ObfuscatedErrorText(w, err) {




9





1363



                return




×








UNCOV

1364



        }




×







1365



        var sourceLoc core.AZResourceLocation




8





1366



        err = p.DB.QueryRow(findClusterAZResourceLocationByIDQuery, dbCommitment.AZResourceID).




8





1367



                Scan(&sourceLoc.ServiceType, &sourceLoc.ResourceName, &sourceLoc.AvailabilityZone)




8





1368



        if errors.Is(err, sql.ErrNoRows) {




8





1369



                // defense in depth: this should not happen because all the relevant tables are connected by FK constraints




×







1370



                http.Error(w, "no route to this commitment", http.StatusNotFound)




×







1371



                return




×








1372



        } else if respondwith.ObfuscatedErrorText(w, err) {




8





1373



                return




×








UNCOV

1374



        }




×







1375



        sourceBehavior := p.Cluster.CommitmentBehaviorForResource(sourceLoc.ServiceType, sourceLoc.ResourceName).ForDomain(dbDomain.Name)




8





1376






8





1377



        // section: targetBehavior




8





1378



        var parseTarget struct {




8





1379



                Request struct {




8





1380



                        TargetService  limes.ServiceType           `json:"target_service"`




8





1381



                        TargetResource limesresources.ResourceName `json:"target_resource"`




8





1382



                        SourceAmount   uint64                      `json:"source_amount"`




8





1383



                        TargetAmount   uint64                      `json:"target_amount"`




8





1384



                } `json:"commitment"`




8





1385



        }




8





1386



        if !RequireJSON(w, r, &parseTarget) {




8





1387



                return




×








UNCOV

1388



        }




×







1389



        req := parseTarget.Request




8





1390



        serviceInfos, err := p.Cluster.AllServiceInfos()




8






1391



        if respondwith.ObfuscatedErrorText(w, err) {




8





1392



                return




×








UNCOV

1393



        }




×







1394



        nm := core.BuildResourceNameMapping(p.Cluster, serviceInfos)




8





1395



        targetServiceType, targetResourceName, exists := nm.MapFromV1API(req.TargetService, req.TargetResource)




8





1396



        if !exists {




8





1397



                msg := fmt.Sprintf("no such service and/or resource: %s/%s", req.TargetService, req.TargetResource)




×







1398



                http.Error(w, msg, http.StatusUnprocessableEntity)




×







1399



                return




×








UNCOV

1400



        }




×







1401



        targetBehavior := p.Cluster.CommitmentBehaviorForResource(targetServiceType, targetResourceName).ForDomain(dbDomain.Name)




8





1402



        if sourceLoc.ResourceName == targetResourceName && sourceLoc.ServiceType == targetServiceType {




9





1403



                http.Error(w, "conversion attempt to the same resource.", http.StatusConflict)




1





1404



                return




1





1405



        }




1





1406



        if len(targetBehavior.Durations) == 0 {




7





1407



                msg := fmt.Sprintf("commitments are not enabled for resource %s/%s", req.TargetService, req.TargetResource)




×







1408



                http.Error(w, msg, http.StatusUnprocessableEntity)




×







1409



                return




×








UNCOV

1410



        }




×







1411



        rate, ok := sourceBehavior.GetConversionRateTo(targetBehavior).Unpack()




7





1412



        if !ok {




8





1413



                msg := fmt.Sprintf("commitment is not convertible into resource %s/%s", req.TargetService, req.TargetResource)




1





1414



                http.Error(w, msg, http.StatusUnprocessableEntity)




1





1415



                return




1





1416



        }




1





1417












1418



        // section: conversion










1419



        if req.SourceAmount > dbCommitment.Amount {




6





1420



                msg := fmt.Sprintf("unprocessable source amount. provided: %v, commitment: %v", req.SourceAmount, dbCommitment.Amount)




×







1421



                http.Error(w, msg, http.StatusConflict)




×







1422



                return




×








UNCOV

1423



        }




×







1424



        conversionAmount := (req.SourceAmount / rate.FromAmount) * rate.ToAmount




6





1425



        remainderAmount := req.SourceAmount % rate.FromAmount




6





1426



        if remainderAmount > 0 {




8





1427



                msg := fmt.Sprintf("amount: %v does not fit into conversion rate of: %v", req.SourceAmount, rate.FromAmount)




2





1428



                http.Error(w, msg, http.StatusConflict)




2





1429



                return




2





1430



        }




2





1431



        if conversionAmount != req.TargetAmount {




5





1432



                msg := fmt.Sprintf("conversion mismatch. provided: %v, calculated: %v", req.TargetAmount, conversionAmount)




1





1433



                http.Error(w, msg, http.StatusConflict)




1





1434



                return




1





1435



        }




1





1436












1437



        tx, err := p.DB.Begin()




3






1438



        if respondwith.ObfuscatedErrorText(w, err) {




3





1439



                return




×








UNCOV

1440



        }




×







1441



        defer sqlext.RollbackUnlessCommitted(tx)




3





1442






3





1443



        var (




3





1444



                targetAZResourceID        db.ClusterAZResourceID




3





1445



                resourceAllowsCommitments bool




3





1446



        )




3





1447



        err = p.DB.QueryRow(findClusterAZResourceIDByLocationQuery, dbProject.ID, targetServiceType, targetResourceName, sourceLoc.AvailabilityZone).




3





1448



                Scan(&targetAZResourceID, &resourceAllowsCommitments)




3






1449



        if respondwith.ObfuscatedErrorText(w, err) {




3





1450



                return




×








UNCOV

1451



        }




×







1452



        // defense in depth. ServiceType and ResourceName of source and target are already checked. Here it's possible to explicitly check the ID's.










1453



        if dbCommitment.AZResourceID == targetAZResourceID {




3





1454



                http.Error(w, "conversion attempt to the same resource.", http.StatusConflict)




×







1455



                return




×








UNCOV

1456



        }




×







1457



        if !resourceAllowsCommitments {




3





1458



                msg := fmt.Sprintf("resource %s/%s is not enabled in this project", targetServiceType, targetResourceName)




×







1459



                http.Error(w, msg, http.StatusUnprocessableEntity)




×







1460



                return




×








UNCOV

1461



        }




×







1462



        targetLoc := core.AZResourceLocation{




3





1463



                ServiceType:      targetServiceType,




3





1464



                ResourceName:     targetResourceName,




3





1465



                AvailabilityZone: sourceLoc.AvailabilityZone,




3





1466



        }




3





1467



        // The commitment at the source resource was already confirmed and checked.




3





1468



        // Therefore only the addition to the target resource has to be checked against.




3





1469



        if dbCommitment.ConfirmedAt.IsSome() {




5





1470



                ok, err := datamodel.CanConfirmNewCommitment(targetLoc, dbProject.ID, conversionAmount, p.Cluster, p.DB)




2






1471



                if respondwith.ObfuscatedErrorText(w, err) {




2





1472



                        return




×








UNCOV

1473



                }




×







1474



                if !ok {




3





1475



                        http.Error(w, "not enough capacity to confirm the commitment", http.StatusUnprocessableEntity)




1





1476



                        return




1





1477



                }




1





1478



        }










1479












1480



        auditEvent := commitmentEventTarget{




2





1481



                DomainID:    dbDomain.UUID,




2





1482



                DomainName:  dbDomain.Name,




2





1483



                ProjectID:   dbProject.UUID,




2





1484



                ProjectName: dbProject.Name,




2





1485



        }




2





1486






2





1487



        var (




2





1488



                relatedCommitmentIDs   []db.ProjectCommitmentID




2





1489



                relatedCommitmentUUIDs []db.ProjectCommitmentUUID




2





1490



        )




2





1491



        remainingAmount := dbCommitment.Amount - req.SourceAmount




2





1492



        serviceInfo := core.InfoForService(serviceInfos, sourceLoc.ServiceType)




2





1493



        resourceInfo := core.InfoForResource(serviceInfo, sourceLoc.ResourceName)




2





1494



        if remainingAmount > 0 {




3





1495



                remainingCommitment, err := p.buildSplitCommitment(dbCommitment, remainingAmount)




1






1496



                if respondwith.ObfuscatedErrorText(w, err) {




1





1497



                        return




×








UNCOV

1498



                }




×







1499



                relatedCommitmentIDs = append(relatedCommitmentIDs, remainingCommitment.ID)




1





1500



                relatedCommitmentUUIDs = append(relatedCommitmentUUIDs, remainingCommitment.UUID)




1





1501



                err = tx.Insert(&remainingCommitment)




1






1502



                if respondwith.ObfuscatedErrorText(w, err) {




1





1503



                        return




×








UNCOV

1504



                }




×







1505



                auditEvent.Commitments = append(auditEvent.Commitments,




1





1506



                        p.convertCommitmentToDisplayForm(remainingCommitment, sourceLoc, token, resourceInfo.Unit),




1





1507



                )




1





1508



        }










1509












1510



        convertedCommitment, err := p.buildConvertedCommitment(dbCommitment, targetAZResourceID, conversionAmount)




2






1511



        if respondwith.ObfuscatedErrorText(w, err) {




2





1512



                return




×








UNCOV

1513



        }




×







1514



        relatedCommitmentIDs = append(relatedCommitmentIDs, convertedCommitment.ID)




2





1515



        relatedCommitmentUUIDs = append(relatedCommitmentUUIDs, convertedCommitment.UUID)




2





1516



        err = tx.Insert(&convertedCommitment)




2






1517



        if respondwith.ObfuscatedErrorText(w, err) {




2





1518



                return




×








UNCOV

1519



        }




×







1520












1521



        // supersede the original commitment










1522



        now := p.timeNow()




2





1523



        supersedeContext := db.CommitmentWorkflowContext{




2





1524



                Reason:                 db.CommitmentReasonConvert,




2





1525



                RelatedCommitmentIDs:   relatedCommitmentIDs,




2





1526



                RelatedCommitmentUUIDs: relatedCommitmentUUIDs,




2





1527



        }




2





1528



        buf, err := json.Marshal(supersedeContext)




2






1529



        if respondwith.ObfuscatedErrorText(w, err) {




2





1530



                return




×








UNCOV

1531



        }




×







1532



        dbCommitment.State = db.CommitmentStateSuperseded




2





1533



        dbCommitment.SupersededAt = Some(now)




2





1534



        dbCommitment.SupersedeContextJSON = Some(json.RawMessage(buf))




2





1535



        _, err = tx.Update(&dbCommitment)




2






1536



        if respondwith.ObfuscatedErrorText(w, err) {




2





1537



                return




×








UNCOV

1538



        }




×







1539












1540



        err = tx.Commit()




2






1541



        if respondwith.ObfuscatedErrorText(w, err) {




2





1542



                return




×








UNCOV

1543



        }




×







1544












1545



        c := p.convertCommitmentToDisplayForm(convertedCommitment, targetLoc, token, resourceInfo.Unit)




2





1546



        auditEvent.Commitments = append([]limesresources.Commitment{c}, auditEvent.Commitments...)




2





1547



        auditEvent.WorkflowContext = Some(db.CommitmentWorkflowContext{




2





1548



                Reason:                 db.CommitmentReasonSplit,




2





1549



                RelatedCommitmentIDs:   []db.ProjectCommitmentID{dbCommitment.ID},




2





1550



                RelatedCommitmentUUIDs: []db.ProjectCommitmentUUID{dbCommitment.UUID},




2





1551



        })




2





1552



        p.auditor.Record(audittools.Event{




2





1553



                Time:       p.timeNow(),




2





1554



                Request:    r,




2





1555



                User:       token,




2





1556



                ReasonCode: http.StatusAccepted,




2





1557



                Action:     cadf.UpdateAction,




2





1558



                Target:     auditEvent,




2





1559



        })




2





1560






2





1561



        respondwith.JSON(w, http.StatusAccepted, map[string]any{"commitment": c})




2





1562



}










1563












1564



// ExtendCommitmentDuration handles POST /v1/domains/{domain_id}/projects/{project_id}/commitments/{commitment_id}/update-duration










1565



func (p *v1Provider) UpdateCommitmentDuration(w http.ResponseWriter, r *http.Request) {




6





1566



        httpapi.IdentifyEndpoint(r, "/v1/domains/:domain_id/projects/:project_id/commitments/:commitment_id/update-duration")




6





1567



        token := p.CheckToken(r)




6





1568



        if !token.Require(w, "project:edit") {




6





1569



                return




×








UNCOV

1570



        }




×







1571



        commitmentID := mux.Vars(r)["commitment_id"]




6





1572



        if commitmentID == "" {




6





1573



                http.Error(w, "no transfer token provided", http.StatusBadRequest)




×







1574



                return




×








UNCOV

1575



        }




×







1576



        dbDomain := p.FindDomainFromRequest(w, r)




6





1577



        if dbDomain == nil {




6





1578



                return




×








UNCOV

1579



        }




×







1580



        dbProject := p.FindProjectFromRequest(w, r, dbDomain)




6





1581



        if dbProject == nil {




6





1582



                return




×








UNCOV

1583



        }




×







1584



        var Request struct {




6





1585



                Duration limesresources.CommitmentDuration `json:"duration"`




6





1586



        }




6





1587



        req := Request




6





1588



        if !RequireJSON(w, r, &req) {




6





1589



                return




×








UNCOV

1590



        }




×







1591












1592



        var dbCommitment db.ProjectCommitment




6





1593



        err := p.DB.SelectOne(&dbCommitment, findProjectCommitmentByIDQuery, commitmentID, dbProject.ID)




6





1594



        if errors.Is(err, sql.ErrNoRows) {




6





1595



                http.Error(w, "no such commitment", http.StatusNotFound)




×







1596



                return




×








1597



        } else if respondwith.ObfuscatedErrorText(w, err) {




6





1598



                return




×








UNCOV

1599



        }




×







1600












1601



        now := p.timeNow()




6





1602



        if dbCommitment.ExpiresAt.Before(now) || dbCommitment.ExpiresAt.Equal(now) {




7





1603



                http.Error(w, "unable to process expired commitment", http.StatusForbidden)




1





1604



                return




1





1605



        }




1





1606












1607



        if dbCommitment.State == db.CommitmentStateSuperseded {




6





1608



                msg := fmt.Sprintf("unable to operate on commitment with a state of %s", dbCommitment.State)




1





1609



                http.Error(w, msg, http.StatusForbidden)




1





1610



                return




1





1611



        }




1





1612












1613



        var loc core.AZResourceLocation




4





1614



        err = p.DB.QueryRow(findClusterAZResourceLocationByIDQuery, dbCommitment.AZResourceID).




4





1615



                Scan(&loc.ServiceType, &loc.ResourceName, &loc.AvailabilityZone)




4





1616



        if errors.Is(err, sql.ErrNoRows) {




4





1617



                // defense in depth: this should not happen because all the relevant tables are connected by FK constraints




×







1618



                http.Error(w, "no route to this commitment", http.StatusNotFound)




×







1619



                return




×








1620



        } else if respondwith.ObfuscatedErrorText(w, err) {




4





1621



                return




×








UNCOV

1622



        }




×







1623



        behavior := p.Cluster.CommitmentBehaviorForResource(loc.ServiceType, loc.ResourceName).ForDomain(dbDomain.Name)




4





1624



        if !slices.Contains(behavior.Durations, req.Duration) {




5





1625



                msg := fmt.Sprintf("provided duration: %s does not match the config %v", req.Duration, behavior.Durations)




1





1626



                http.Error(w, msg, http.StatusUnprocessableEntity)




1





1627



                return




1





1628



        }




1





1629












1630



        newExpiresAt := req.Duration.AddTo(dbCommitment.ConfirmBy.UnwrapOr(dbCommitment.CreatedAt))




3





1631



        if newExpiresAt.Before(dbCommitment.ExpiresAt) {




4





1632



                msg := fmt.Sprintf("duration change from %s to %s forbidden", dbCommitment.Duration, req.Duration)




1





1633



                http.Error(w, msg, http.StatusForbidden)




1





1634



                return




1





1635



        }




1





1636












1637



        dbCommitment.Duration = req.Duration




2





1638



        dbCommitment.ExpiresAt = newExpiresAt




2





1639



        _, err = p.DB.Update(&dbCommitment)




2






1640



        if respondwith.ObfuscatedErrorText(w, err) {




2





1641



                return




×








UNCOV

1642



        }




×







1643












1644



        maybeServiceInfo, err := p.Cluster.InfoForService(loc.ServiceType)




2






1645



        if respondwith.ObfuscatedErrorText(w, err) {




2





1646



                return




×








UNCOV

1647



        }




×







1648



        serviceInfo, ok := maybeServiceInfo.Unpack()




2





1649



        if !ok {




2





1650



                http.Error(w, "service not found", http.StatusNotFound)




×







1651



                return




×








UNCOV

1652



        }




×







1653



        resourceInfo := core.InfoForResource(serviceInfo, loc.ResourceName)




2





1654



        c := p.convertCommitmentToDisplayForm(dbCommitment, loc, token, resourceInfo.Unit)




2





1655



        p.auditor.Record(audittools.Event{




2





1656



                Time:       p.timeNow(),




2





1657



                Request:    r,




2





1658



                User:       token,




2





1659



                ReasonCode: http.StatusOK,




2





1660



                Action:     cadf.UpdateAction,




2





1661



                Target: commitmentEventTarget{




2





1662



                        DomainID:    dbDomain.UUID,




2





1663



                        DomainName:  dbDomain.Name,




2





1664



                        ProjectID:   dbProject.UUID,




2





1665



                        ProjectName: dbProject.Name,




2





1666



                        Commitments: []limesresources.Commitment{c},




2





1667



                },




2





1668



        })




2





1669






2





1670



        respondwith.JSON(w, http.StatusOK, map[string]any{"commitment": c})




2





1671



}
























    

  • 

    •