Skip to content

Commit

Permalink
Merge pull request #76 from katmastt/main
Browse files Browse the repository at this point in the history 
Tokens implementation
  • Loading branch information
@eleni-adamidi
eleni-adamidi authored Mar 21, 2024
2 parents f1f8bf8 + 48fd0b9 commit b6ba6b7
Show file tree
Hide file tree
Showing 19 changed files with 1,300 additions and 15 deletions.
1 change: 1 addition & 0 deletions controllers/AdministrationController.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -33,6 +33,7 @@
use app\models\Analytics;
use app\models\ColdStorageRequest;
use webvimark\modules\UserManagement\models\User as Userw;
use app\models\Schema;

class AdministrationController extends Controller
{
Expand Down
297 changes: 297 additions & 0 deletions controllers/ProjectController.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,8 @@

namespace app\controllers;

use app\models\Token;
use app\models\NewTokenRequestForm;
use app\components\EmailVerifiedFilter;
use app\models\ColdStorageAutoaccept;
use app\models\ColdStorageLimits;
Expand Down Expand Up @@ -2653,6 +2655,40 @@ public function actionEditProject($id)



}

if ($prType==0){

//if the owner removed users, delete them from the schema api project
$removed_users = array();
$schema_api_url=Yii::$app->params['schema_api_url'];
$schema_api_token=Yii::$app->params['schema_api_token'];
$headers = [
'Authorization: '.$schema_api_token,
'Content-Type: application/json'
];

foreach ($pold['user_list'] as $prev_user){
$found=0;
foreach($prequest['user_list'] as $cur_user){
if ($prev_user==$cur_user){
$found=1;
}
}
if ($found==0){
$removed_users[] = $prev_user;
}
}
foreach ($removed_users as $removed_user) {
$user=User::returnUsernameById($removed_user);
$username=explode('@',$user)[0];
// echo $user;
// ob_flush();
$URL = $schema_api_url."/api_auth/contexts/{$prequest->name}/users/{$username}";
Token::DeleteUserFromProject($URL, $headers);

}

}

if ($prType==2)
Expand Down Expand Up @@ -3799,6 +3835,267 @@ public function actionDeleteProject($pid, $pname){
}


public function actionTokenManagement($id) {

// $schema_api=SchemaAPI::find()->one();
$schema_api_url=Yii::$app->params['schema_api_url'];
$schema_api_token=Yii::$app->params['schema_api_token'];
$existing=Vm::find()->where(['project_id'=>$id])->andWhere(['active'=>true])->one();
$project=Project::find()->where(['id'=>$id])->one();
$project_id=$project->id;

//make an API call to schema API to validate if the user is registered
$user=Userw::getCurrentUser();
$username=explode('@',$user['username'])[0];
$headers = [
'Authorization: '.$schema_api_token,
'Content-Type: application/json'
];

//$URL1 = "http://62.217.122.242:8080/api_auth/users/";
//$URL = $URL1."{$username}";
$URL = $schema_api_url."/api_auth/users/{$username}";
$user_exists = Token::UserRegistered($URL, $headers);
//user is not registed => register user
if ($user_exists == 0) {
$temp1 = '{"username":';
$temp2 = '"';
//$temp3 = '",';
$temp4 = $temp2.$username.$temp2.'}';
//$URL = "http://62.217.122.242:8080/api_auth/users";
$URL = $schema_api_url."/api_auth/users";
$user_post = $temp1.$temp4;
$return=Token::Register($URL, $headers, $user_post);
$issued_tokens = 0;
}

//make an API call to schema API to validate if the project is registered
$pname = $project->name;
$URL = $schema_api_url."/api_auth/contexts/{$pname}";
$project_exists = Token::ProjectRegistered($URL, $headers);
$strArray=array();

// project is not registered => register project
if($project_exists == 0){
$quotas = Project::getOndemandQuotasApi($project->id);
$temp1 = '{"name":';
$temp2 = '"';
$quo = [];
$i = 0;
foreach ($quotas[0] as $q) {
$quo[$i] = $q;
$i=$i+1;
}
//$temp3 = '",';
$project_post = '{"name":"'.$pname.'","max_tasks":'.$quo[0].',"max_cpu":'.$quo[1].',"max_ram_gb":'.$quo[2]. '}';
//$temp4 = $temp2.$pname.$temp2.'}';
// $URL = "http://62.217.122.242:8080/api_auth/contexts";
$URL = $schema_api_url."/api_auth/contexts";
//$project_post = $temp1.$temp4;
$return=Token::Register($URL, $headers, $project_post);
$issued_tokens = 0;
}
elseif ($project_exists == 1) {
$quotas = Project::getOndemandQuotasApi($project->id);
//$project=Project::find()->where(['name'=>$pname])->one();
$temp1 = '{"name":';
$temp2 = '"';
$quo = [];
$i = 0;
foreach ($quotas[0] as $q) {
$quo[$i] = $q;
$i=$i+1;
}
//$temp3 = '",';
$project_post = '{"name":"'.$pname.'","max_tasks":'.$quo[0].',"max_cpu":'.$quo[1].',"max_ram_gb":'.$quo[2]. '}';
//$temp4 = $temp2.$pname.$temp2.'}';
// $URL = "http://62.217.122.242:8080/api_auth/contexts/{$pname}";
$URL = $schema_api_url."/api_auth/contexts/{$pname}";
//$project_post = $temp1.$temp4;
$return=Token::EditToken($URL, $headers, $project_post);
// $URL2 = "/tokens";
// $URL = $URL1.$pname.$URL2;
// $issued_tokens = Token::GetTokens($URL, $headers);

}
else {
//placeholder for bad request
}
// $URL = "http://62.217.122.242:8080/api_auth/contexts/{$pname}/users";
$URL = $schema_api_url."/api_auth/contexts/{$pname}/users";
//check if the user is registered to the project
$user_registered = Token::IsUserRegisteredProject($URL, $headers, $username);
//user is not registered to the project
if ($user_registered == 0) {
$temp1 = '{"username":';
$temp2 = '"';
$temp4 = $temp2.$username.$temp2.'}';
$post_body = $temp1.$temp4;
$return = Token::Register($URL, $headers, $post_body);
return $this->render('token_management',['model'=>$existing, 'requestId'=>$id, 'project'=>$project, 'issued_tokens'=>0,
'strArray'=>'', 'URL'=>$URL, 'headers'=>$headers, 'project_exists'=>$project_exists]);
} else {
// $URL = "http://62.217.122.242:8080/api_auth/contexts/{$pname}/users/{$username}/tokens?status=active";
$URL = $schema_api_url."/api_auth/contexts/{$pname}/users/{$username}/tokens?status=active";
//$URL = "http://62.217.122.242:8080/api_auth/contexts/context0/users/user0/tokens";
$issued_tokens = Token::GetTokens($URL, $headers);
return $this->render('token_management',['model'=>$existing, 'requestId'=>$id, 'project'=>$project, 'issued_tokens'=>$issued_tokens[0],
'strArray'=>$issued_tokens[1], 'URL'=>$URL, 'headers'=>$headers, 'project_exists'=>$project_exists]);
}
}

public function actionNewTokenRequest($id, $mode, $uuid){
//retrieve schema API base url and authentication token
// $schema_api=SchemaAPI::find()->one();
$schema_api_url=Yii::$app->params['schema_api_url'];
$schema_api_token=Yii::$app->params['schema_api_token'];
// $schema_api_url=$schema_api->schema_api_url;
// $schema_api_token=$schema_api->schema_api_auth_token;

$existing=Vm::find()->where(['project_id'=>$id])->andWhere(['active'=>true])->one();

$project=Project::find()->where(['id'=>$id])->one();
$project_id=$project->id;
$pname = $project->name;
$model = new NewTokenRequestForm();

$headers = [
'Authorization: '.$schema_api_token,
'Content-Type: application/json'
];

if ($model->load(Yii::$app->request->post())) {
$prequest=ProjectRequest::find()->where(['project_id'=>$id])->one();
$exp_date = new \DateTime($prequest->end_date);
$s_exp_date = new \DateTime($model->expiration_date);
$message=$model->validateDates($exp_date, $s_exp_date, $mode);

if( $message=='ok'|| $message =='empty') {
// valid data received in $model
if ($message!='ok' && $message!='empty' && !empty($prequest)){
Yii::$app->session->setFlash('danger', "$message");
return $this->redirect(['project/token-management', 'id'=>$id]);
//return $this->actionTokenManagement($project_id,$model->expiration_date);

} elseif($message=='empty'&& !empty($prequest) && $mode==0 ) {
$s_exp_date = $exp_date;
}

$time = date('h:i:s');
if ($mode == 1){
$user=Userw::getCurrentUser();
$username=explode('@',$user['username'])[0];
$pname = $project->name;
$URL = $schema_api_url."/api_auth/contexts/{$pname}/users/{$username}/tokens/{$uuid}";
$temp1 = '{"title":';
$temp2 = '"';
$temp3 = '"}';
if ($message != 'empty') {
$temp4 = $temp2.$model->name.$temp2;
$patch = $temp1.$temp4.',"expiry":"'.$s_exp_date->format("Y-m-d")."T".$time.'.000000"}';
} else {
$temp4 = $temp2.$model->name.$temp3;
$patch = $temp1.$temp4;
}
Token::EditToken($URL, $headers, $patch);
$success = 'Your token information was updated succesfully.';
Yii::$app->session->setFlash('success', "$success");
return $this->redirect(['project/token-management','id'=>$id]);
//return $this->actionTokenManagement($project_id, $patch );

} elseif ($mode == 0){
$pname = $project->name;
$user=Userw::getCurrentUser();
$username=explode('@',$user['username'])[0];
// $URL = "http://62.217.122.242:8080/api_auth/contexts/{$pname}/users/{$username}/tokens";
$URL = $schema_api_url."/api_auth/contexts/{$pname}/users/{$username}/tokens";
$token = Token::CreateNewToken($URL, $headers, $model->name, $s_exp_date, $pname, $username);
if (!empty($token[0])){
$success = 'Your new token is the following, please store it: '. $token[0];
Yii::$app->session->setFlash('success-new-token', "$success");
} else {
$error = 'Error during token creation: <br>'.$token[1];
Yii::$app->session->setFlash('error', "$error");
}
return $this->redirect(['project/token-management','id'=>$id]);
//return $this->actionTokenManagement($project_id,$model->expiration_date);
}
} else {

Yii::$app->session->setFlash('danger', "$message");
//return $this->actionOnDemandLp($project_id,$model->expiration_date);
}

} else {

if ($mode == 1) {
$pname = $project->name;
$user=Userw::getCurrentUser();
$username=explode('@',$user['username'])[0];
// $URL = "http://62.217.122.242:8080/api_auth/contexts/{$pname}/users/{$username}/tokens/{$uuid}";
$URL = $schema_api_url."/api_auth/contexts/{$pname}/users/{$username}/tokens/{$uuid}";
$token_details = Token::GetTokenDetails($URL, $headers);
$exp_date = $token_details[1]->format('y-m-d');
return $this->render('new_token_request', ['model' => $model, 'requestId'=>$id, 'project'=>$project, 'mode'=>$mode, 'uuid'=>$uuid, 'title'=>$token_details[0], 'exp_date'=>$exp_date]);

} elseif ($mode==0) {
return $this->render('new_token_request', ['model' => $model, 'requestId'=>$id, 'project'=>$project, 'mode'=>$mode, 'uuid'=>$uuid]);

} else {

$pname = $project->name;
$user=Userw::getCurrentUser();
$username=explode('@',$user['username'])[0];
// $URL = "http://62.217.122.242:8080/api_auth/contexts/{$pname}/users/{$username}/tokens/{$uuid}";
$URL = $schema_api_url."/api_auth/contexts/{$pname}/users/{$username}/tokens/{$uuid}";
// $URL = $URL1.$pname."/tokens"."/".$uuid;
$out=Token::DeleteToken($URL, $headers);
$success = 'Your token was deleted.';
Yii::$app->session->setFlash('success', "$success");
//return $this->actionTokenManagement($project_id);
return $this->redirect(['project/token-management', 'id'=>$id]);

}
// either the page is initially displayed or there is some validation error

}
if ($mode == 0){
return $this->render('new_token_request', ['model' => $model, 'requestId'=>$id, 'project'=>$project, 'mode'=>$mode, 'uuid'=>$uuid]);
} elseif($mode == 1){
$pname = $project->name;
$user=Userw::getCurrentUser();
$username=explode('@',$user['username'])[0];
// $URL = "http://62.217.122.242:8080/api_auth/contexts/{$pname}/users/{$username}/tokens/{$uuid}";
$URL = $schema_api_url."/api_auth/contexts/{$pname}/users/{$username}/tokens/{$uuid}";
//$URL = "http://62.217.122.242:8080/api_auth/contexts/context0/users/user0/tokens/{$uuid}";
$token_details = Token::GetTokenDetails($URL, $headers);
$exp_date = $token_details[1]->format('y-m-d');
return $this->render('new_token_request', ['model' => $model, 'requestId'=>$id, 'project'=>$project, 'mode'=>$mode, 'uuid'=>$uuid, 'title'=>$token_details[0], 'exp_date'=>$exp_date]);
}


}

public function actionOnDemandAccess($id) {

$configuration=Configuration::find()->one();
$schema_url=$configuration->schema_url;
$existing=Vm::find()->where(['project_id'=>$id])->andWhere(['active'=>true])->one();
$project=Project::find()->where(['id'=>$id])->one();
$request_id = $project['latest_project_request_id'];
$project_id=$project->id;

$details=OndemandRequest::findOne(['request_id'=>$request_id]);
$usage=ProjectRequest::getProjectSchemaUsage($project->name);
$num_of_jobs=$details->num_of_jobs;
$used_jobs=$usage['count'];
$remaining_jobs=$num_of_jobs-$used_jobs;

return $this->render('on_demand_access', ['project'=>$project, 'details'=>$details,'initial_jobs'=>$num_of_jobs, 'remaining_jobs'=>$remaining_jobs, 'usage'=>$usage, 'request_id'=>$request_id, 'id'=>$id, 'compute'=>$schema_url ]);

}



}

46 changes: 46 additions & 0 deletions models/NewTokenRequestForm.php
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,46 @@
<?php

namespace app\models;

use Yii;
use yii\base\Model;

class NewTokenRequestForm extends Model
{
public $name;
public $expiration_date;

public function rules()
{
return [
[['name', 'expiration_date'], 'safe'],
['expiration_date', 'validateDates'],
];
}

public function validateDates($date_e, $given_date, $mode)
{
if (!empty($this->expiration_date)){

if (strtotime($this->expiration_date) < strtotime(date("Y-m-d"))) {
if ($mode==0){
return 'Token creation was unsuccessful: please provide a valid date.';
} else {
return 'Token edit was unsuccessful: please provide a valid date.';
}
} elseif ($given_date->format("Y-m-d") > $date_e->format("Y-m-d")) {
if ($mode==0){
return 'Token creation was unsuccessful: please provide a date that does not exceed the expiration date of the project.';
} else {
return 'Token edit was unsuccessful: please provide a date that does not exceed the expiration date of the project.';
}
} else {
return "ok";
}
} else {
return 'empty';
}

}

}
13 changes: 13 additions & 0 deletions models/Project.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1574,4 +1574,17 @@ public static function DeleteProject($pid){
}

}

public static function getOndemandQuotasApi($project_id){
$query=new Query;

$query->select(['odr.num_of_jobs','odr.ram','odr.cores'])
->from('project as p')
->innerJoin('project_request as pr','p.latest_project_request_id=pr.id')
->innerJoin('ondemand_request as odr','pr.id=odr.request_id')
->where(['p.id'=>$project_id])
->one();
$results=$query->all();
return $results;
}
}
Loading

0 comments on commit b6ba6b7

Please sign in to comment.