#!/usr/bin/env python3 # -*- coding: utf-8 -*- # Licensed to the Apache Software Foundation (ASF) under one or more # contributor license agreements. See the NOTICE file distributed with # this work for additional information regarding copyright ownership. # The ASF licenses this file to You under the Apache License, Version 2.0 # (the "License"); you may not use this file except in compliance with # the License. You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. ######################################################################## # OPENAPI-URI: /api/node/register ######################################################################## # post: # requestBody: # content: # application/json: # schema: # $ref: '#/components/schemas/NodeCredentials' # description: Node credentials # required: true # responses: # '200': # content: # application/json: # schema: # $ref: '#/components/schemas/APIKeyResult' # description: Node successfully registered with server # default: # content: # application/json: # schema: # $ref: '#/components/schemas/Error' # description: unexpected error # summary: Registers a new node with the Warble server # ######################################################################## """ This is the node registration handler for Apache Warble """ import json import re import time import plugins.crypto import plugins.registry import base64 def run(API, environ, indata, session): method = environ['REQUEST_METHOD'] # Registering a new node? if method == "POST": hostname = indata['hostname'] pubkey_pem = indata['pubkey'] nodeversion = indata['version'] # TODO: Check for incompatibilities! # Try loading the PEM try: pubkey = plugins.crypto.loads(pubkey_pem) except: raise API.exception(400, "Bad PEM payload passed from client!") # Okay, we have what we need for now. Register potential node and gen an API key node = plugins.registry.node(session) node.hostname = hostname node.pem = pubkey_pem node.version = nodeversion node.ip = environ.get('HTTP_X_FORWARDED_FOR', environ.get('REMOTE_ADDR', '0.0.0.0')) # Encrypt API key with the pub key we just got. base64 encode the result apikey_crypt = str(base64.b64encode(plugins.crypto.encrypt(pubkey, node.apikey)), 'ascii') node.save() yield json.dumps({"encrypted": True, "key": apikey_crypt}, indent = 2) return # Finally, if we hit a method we don't know, balk! yield API.exception(400, "I don't know this request method!!")