github.com/vnforks/kid@v5.11.1+incompatible/api4/license.go (about) 1 // Copyright (c) 2017-present Mattermost, Inc. All Rights Reserved. 2 // See License.txt for license information. 3 4 package api4 5 6 import ( 7 "bytes" 8 "io" 9 "net/http" 10 11 "github.com/mattermost/mattermost-server/model" 12 ) 13 14 func (api *API) InitLicense() { 15 api.BaseRoutes.ApiRoot.Handle("/license", api.ApiSessionRequired(addLicense)).Methods("POST") 16 api.BaseRoutes.ApiRoot.Handle("/license", api.ApiSessionRequired(removeLicense)).Methods("DELETE") 17 api.BaseRoutes.ApiRoot.Handle("/license/client", api.ApiHandler(getClientLicense)).Methods("GET") 18 } 19 20 func getClientLicense(c *Context, w http.ResponseWriter, r *http.Request) { 21 format := r.URL.Query().Get("format") 22 23 if format == "" { 24 c.Err = model.NewAppError("getClientLicense", "api.license.client.old_format.app_error", nil, "", http.StatusNotImplemented) 25 return 26 } 27 28 if format != "old" { 29 c.SetInvalidParam("format") 30 return 31 } 32 33 etag := c.App.GetClientLicenseEtag(true) 34 if c.HandleEtag(etag, "Get Client License", w, r) { 35 return 36 } 37 38 var clientLicense map[string]string 39 40 if c.App.SessionHasPermissionTo(c.App.Session, model.PERMISSION_MANAGE_SYSTEM) { 41 clientLicense = c.App.ClientLicense() 42 } else { 43 clientLicense = c.App.GetSanitizedClientLicense() 44 } 45 46 w.Header().Set(model.HEADER_ETAG_SERVER, etag) 47 w.Write([]byte(model.MapToJson(clientLicense))) 48 } 49 50 func addLicense(c *Context, w http.ResponseWriter, r *http.Request) { 51 c.LogAudit("attempt") 52 53 if !c.App.SessionHasPermissionTo(c.App.Session, model.PERMISSION_MANAGE_SYSTEM) { 54 c.SetPermissionError(model.PERMISSION_MANAGE_SYSTEM) 55 return 56 } 57 58 if *c.App.Config().ExperimentalSettings.RestrictSystemAdmin { 59 c.Err = model.NewAppError("addLicense", "api.restricted_system_admin", nil, "", http.StatusForbidden) 60 return 61 } 62 63 err := r.ParseMultipartForm(*c.App.Config().FileSettings.MaxFileSize) 64 if err != nil { 65 http.Error(w, err.Error(), http.StatusBadRequest) 66 return 67 } 68 69 m := r.MultipartForm 70 71 fileArray, ok := m.File["license"] 72 if !ok { 73 c.Err = model.NewAppError("addLicense", "api.license.add_license.no_file.app_error", nil, "", http.StatusBadRequest) 74 return 75 } 76 77 if len(fileArray) <= 0 { 78 c.Err = model.NewAppError("addLicense", "api.license.add_license.array.app_error", nil, "", http.StatusBadRequest) 79 return 80 } 81 82 fileData := fileArray[0] 83 84 file, err := fileData.Open() 85 if err != nil { 86 c.Err = model.NewAppError("addLicense", "api.license.add_license.open.app_error", nil, err.Error(), http.StatusBadRequest) 87 return 88 } 89 defer file.Close() 90 91 buf := bytes.NewBuffer(nil) 92 io.Copy(buf, file) 93 94 license, appErr := c.App.SaveLicense(buf.Bytes()) 95 if appErr != nil { 96 if appErr.Id == model.EXPIRED_LICENSE_ERROR { 97 c.LogAudit("failed - expired or non-started license") 98 } else if appErr.Id == model.INVALID_LICENSE_ERROR { 99 c.LogAudit("failed - invalid license") 100 } else { 101 c.LogAudit("failed - unable to save license") 102 } 103 c.Err = appErr 104 return 105 } 106 107 c.LogAudit("success") 108 w.Write([]byte(license.ToJson())) 109 } 110 111 func removeLicense(c *Context, w http.ResponseWriter, r *http.Request) { 112 c.LogAudit("attempt") 113 114 if !c.App.SessionHasPermissionTo(c.App.Session, model.PERMISSION_MANAGE_SYSTEM) { 115 c.SetPermissionError(model.PERMISSION_MANAGE_SYSTEM) 116 return 117 } 118 119 if *c.App.Config().ExperimentalSettings.RestrictSystemAdmin { 120 c.Err = model.NewAppError("removeLicense", "api.restricted_system_admin", nil, "", http.StatusForbidden) 121 return 122 } 123 124 if err := c.App.RemoveLicense(); err != nil { 125 c.Err = err 126 return 127 } 128 129 c.LogAudit("success") 130 ReturnStatusOK(w) 131 }