FINOS Legend GitLab Integrator
- By FINOS
| Channel | Revision | Published | Runs on |
|---|---|---|---|
| latest/stable | 35 | 14 Aug 2023 | |
| latest/edge | 35 | 08 Aug 2023 |
juju deploy finos-legend-gitlab-integrator-k8s
Deploy Kubernetes operators easily with Juju, the Universal Operator Lifecycle Manager. Need a Kubernetes cluster? Install MicroK8s to create a full CNCF-certified Kubernetes system in under 60 seconds.
Platform:
charms.finos_legend_gitlab_integrator_k8s.v0.legend_gitlab
-
- Last updated 22 Oct 2021
- Revision Library version 0.4
# Copyright 2021 Canonical Ltd.
# See LICENSE file for licensing details.
"""Charm library formalizing FINOS GitLab relations."""
import json
import logging
from ops import framework
# The unique Charmhub library identifier, never change it
LIBID = "4f850403ae5d45aba38e3beaf3eb829e"
# Increment this major API version when introducing breaking changes
LIBAPI = 0
# Increment this PATCH version before using `charmcraft publish-lib` or reset
# to 0 if you are raising the major API version
LIBPATCH = 4
REQUIRED_LEGEND_GITLAB_CREDENTIALS = [
"client_id", "client_secret", "openid_discovery_url",
"gitlab_host", "gitlab_port", "gitlab_scheme",
"gitlab_host_cert_b64"]
logger = logging.getLogger(__name__)
def _validate_legend_gitlab_credentials(creds):
"""Raises a ValueError if the provided GitLab creds dict isn't correct."""
if not isinstance(creds, dict):
raise ValueError("Gitlab creds must be a dict, got: %r", creds)
if any([creds.get(k) is None
for k in REQUIRED_LEGEND_GITLAB_CREDENTIALS]):
raise ValueError(
"Improper gitlab credentials provided, must be a dict with "
"the following keys: %s. Got: %r" % (
REQUIRED_LEGEND_GITLAB_CREDENTIALS, creds))
str_keys = [
"client_id", "client_secret", "openid_discovery_url", "gitlab_host",
"gitlab_scheme", "gitlab_host_cert_b64"]
mistyped_strs = {
key: creds[key] for key in str_keys if not isinstance(creds[key], str)}
if mistyped_strs:
raise ValueError(
"Following keys must have string values: %s" % mistyped_strs)
if not isinstance(creds['gitlab_port'], int):
raise ValueError("Port must be an int, got: %r" % creds['gitlab_port'])
return True
def set_legend_gitlab_creds_in_relation_data(
relation_data, creds, validate_creds=True):
"""Set connection data for GitLab in the provided relation data.
Args:
relation_data: Data of the relation to set the info into.
validate_creds: Whether or not to check the structure of the data.
Returns:
True if the provided creds were successfully set.
Raises:
ValueError: if the provided credentials are misformatted.
"""
try:
_validate_legend_gitlab_credentials(creds)
except ValueError:
if validate_creds:
raise
logger.warning(
"Setting incorrectly structured GitLab relation data '%s'",
creds)
relation_data["legend-gitlab-connection"] = json.dumps(creds)
return True
def _validate_legend_gitlab_redirect_uris(redirect_uris):
"""Raises a ValueError if the provided rediret_uris are incorrectly formatted."""
if not isinstance(redirect_uris, list) or not all([
isinstance(elem, str) for elem in redirect_uris]):
raise ValueError(
"Improper redirect_uris parameter provided. Must be a list of "
"strings. Got: %r" % redirect_uris)
return True
def set_legend_gitlab_redirect_uris_in_relation_data(
relation_data, redirect_uris):
"""Set redirect URI list for OAuth redirects in the provided relation data.
Args:
redirect_uris: list of strings of redirect URLs for this service.
Returns:
True if the provided creds are of a valid structure, else False.
Raises:
ValueError: if the provided redirect URI parameter is incorrect.
"""
_validate_legend_gitlab_redirect_uris(redirect_uris)
relation_data["legend-gitlab-redirect-uris"] = json.dumps(redirect_uris)
return True
class LegendGitlabConsumer(framework.Object):
"""Class facilitating and formalizing interactions with the GitLab integrator."""
def __init__(self, charm, relation_name='finos-gitlab'):
super().__init__(charm, relation_name)
self.charm = charm
self.relation_name = relation_name
def get_legend_gitlab_creds(self, relation_id):
"""Get GitLab OAuth connection data from the provided relation.
Args:
relation_id: ID of the relation to fetch data from.
Returns:
Dictionary with the following structure:
{
"client_id": "<client_id>",
"client_secret": "<client_secret>"
"openid_discovery_url": "<URL>",
"gitlab_host": "<GitLab hostname or IP>",
"gitlab_port": <port>,
"gitlab_scheme": "<http/https>",
"gitlab_host_cert_b64": "<base64 DER certificate>"
}
Raises:
TooManyRelatedAppsError if relation id is not provided and
multiple relation of the same name are present.
ValueError: if the GitLab creds are misformatted.
"""
relation = self.framework.model.get_relation(
self.relation_name, relation_id)
if not relation:
logger.warning(
"No relation of type '%s' with ID '%s' could be found.",
self.relation_name, relation_id)
return {}
relation_data = relation.data[relation.app]
creds = None
creds_data = relation_data.get("legend-gitlab-connection", "{}")
try:
creds = json.loads(creds_data)
except Exception as ex:
raise ValueError(
"Could not deserialize Legend GitLab creds JSON: %s." % (
creds_data)) from ex
if not creds:
return {}
_validate_legend_gitlab_credentials(creds)
return creds
def get_legend_redirect_uris(self, relation_id):
"""Get GitLab redirect URIs from the provided relation.
Args:
relation_id: ID of the relation to fetch data from.
Returns:
List of strings of redirect URIs.
Raises:
TooManyRelatedAppsError if relation id is not provided and
multiple relation of the same name are present.
ValueError: if the GitLab redirect URIs are misformatted.
"""
relation = self.framework.model.get_relation(
self.relation_name, relation_id)
if not relation:
logger.warning(
"No relation of type '%s' with ID '%s' could be found.",
self.relation_name, relation_id)
return []
relation_data = relation.data[relation.app]
redirect_uris = None
redirect_uris_data = relation_data.get(
"legend-gitlab-redirect-uris", "[]")
try:
redirect_uris = json.loads(redirect_uris_data)
except Exception as ex:
raise ValueError(
"Could not deserialize Legend GitLab URIs JSON: %s" % (
redirect_uris_data)) from ex
if not redirect_uris:
return []
_validate_legend_gitlab_redirect_uris(redirect_uris)
return redirect_uris