Pass auth token through headers instead of query param.

Also make the retry behavior customizable by clients.

Author: clems4ever

internal/client/graph_api.go

@@ -1,15 +1,16 @@
 package client
 
 import (
+	"time"
+
 	"github.com/clems4ever/go-graphkb/internal/knowledge"
 )
 
 // GraphAPI represent the graph API from a data source point of view
 type GraphAPI struct {
 	client *GraphClient
 
-	parallelization int
-	chunkSize       int
+	options GraphAPIOptions
 }
 
 // GraphAPIOptions options to pass to build graph API
@@ -26,37 +27,63 @@ type GraphAPIOptions struct {
 
 	// The size of a chunk of updates, i.e., number of assets or relations sent in one HTTP request to the streaming API.
 	ChunkSize int
+
+	// Max number of retries before giving up (default is 10)
+	MaxRetries int
+	// The base delay between retries (default is 5 seconds). This delay is multiplied by the backoff factor.
+	RetryDelay time.Duration
+
+	// The backoff factor (default is 1.01)
+	RetryBackoffFactor float64
 }
 
 // NewGraphAPI create an emitter of graph
 func NewGraphAPI(options GraphAPIOptions) *GraphAPI {
 	return &GraphAPI{
-		client:          NewGraphClient(options.URL, options.AuthToken, options.SkipVerify),
-		parallelization: options.Parallelization,
-		chunkSize:       options.ChunkSize,
+		client:  NewGraphClient(options.URL, options.AuthToken, options.SkipVerify),
+		options: options,
 	}
 }
 
 // CreateTransaction create a full graph transaction. This kind of transaction will diff the new graph
 // with previous version of it.
 func (gapi *GraphAPI) CreateTransaction(currentGraph *knowledge.Graph) *Transaction {
-	var parallelization = gapi.parallelization
+	var parallelization = gapi.options.Parallelization
 	if parallelization == 0 {
 		parallelization = 30
 	}
 
-	var chunkSize = gapi.chunkSize
+	var chunkSize = gapi.options.ChunkSize
 	if chunkSize == 0 {
 		chunkSize = 1000
 	}
 
+	var maxRetries = gapi.options.MaxRetries
+	if maxRetries == 0 {
+		maxRetries = 10
+	}
+
+	var retryDelay = gapi.options.RetryDelay
+	if retryDelay == 0 {
+		retryDelay = 5 * time.Second
+	}
+
+	var retryBackoff = gapi.options.RetryBackoffFactor
+	if retryBackoff == 0.0 {
+		retryBackoff = 1.01
+	}
+
 	transaction := new(Transaction)
 	transaction.newGraph = knowledge.NewGraph()
 	transaction.binder = knowledge.NewGraphBinder(transaction.newGraph)
 	transaction.client = gapi.client
 	transaction.currentGraph = currentGraph
 	transaction.parallelization = parallelization
 	transaction.chunkSize = chunkSize
+
+	transaction.retryCount = maxRetries
+	transaction.retryDelay = retryDelay
+	transaction.retryBackoffFactor = retryBackoff
 	return transaction
 }
 

internal/client/graph_client.go

@@ -5,11 +5,13 @@ import (
 	"crypto/tls"
 	"encoding/json"
 	"fmt"
+	"io"
 	"io/ioutil"
 	"net/http"
 
 	"github.com/clems4ever/go-graphkb/internal/knowledge"
 	"github.com/clems4ever/go-graphkb/internal/schema"
+	"github.com/clems4ever/go-graphkb/internal/utils"
 )
 
 // ErrTooManyRequests error representing too many requests to the API
@@ -37,11 +39,18 @@ func NewGraphClient(URL, authToken string, skipVerify bool) *GraphClient {
 	}
 }
 
+func (gc *GraphClient) newRequest(method, path string, body io.Reader) (*http.Request, error) {
+	req, err := http.NewRequest(method, fmt.Sprintf("%s%s", gc.url, path), body)
+	if err != nil {
+		return nil, err
+	}
+	req.Header.Add(utils.XAuthTokenHeader, gc.authToken)
+	return req, nil
+}
+
 // ReadCurrentGraph read the current graph stored in graph kb
 func (gc *GraphClient) ReadCurrentGraph() (*knowledge.Graph, error) {
-	url := fmt.Sprintf("%s/api/graph/read?token=%s", gc.url, gc.authToken)
-
-	req, err := http.NewRequest("GET", url, nil)
+	req, err := gc.newRequest("GET", "/api/graph/read", nil)
 	if err != nil {
 		return nil, err
 	}
@@ -81,8 +90,7 @@ func (gc *GraphClient) UpdateSchema(sg schema.SchemaGraph) error {
 		return fmt.Errorf("Unable to marshall request body")
 	}
 
-	url := fmt.Sprintf("%s/api/graph/schema?token=%s", gc.url, gc.authToken)
-	req, err := http.NewRequest("PUT", url, bytes.NewBuffer(b))
+	req, err := gc.newRequest("PUT", "/api/graph/schema", bytes.NewBuffer(b))
 	if err != nil {
 		return err
 	}
@@ -113,8 +121,7 @@ func (gc *GraphClient) InsertAssets(assets []knowledge.Asset) error {
 		return fmt.Errorf("Unable to marshall request body")
 	}
 
-	url := fmt.Sprintf("%s/api/graph/asset?token=%s", gc.url, gc.authToken)
-	req, err := http.NewRequest("PUT", url, bytes.NewBuffer(b))
+	req, err := gc.newRequest("PUT", "/api/graph/assets", bytes.NewBuffer(b))
 	if err != nil {
 		return err
 	}
@@ -145,8 +152,7 @@ func (gc *GraphClient) DeleteAssets(assets []knowledge.Asset) error {
 		return fmt.Errorf("Unable to marshall request body")
 	}
 
-	url := fmt.Sprintf("%s/api/graph/asset?token=%s", gc.url, gc.authToken)
-	req, err := http.NewRequest("DELETE", url, bytes.NewBuffer(b))
+	req, err := gc.newRequest("DELETE", "/api/graph/assets", bytes.NewBuffer(b))
 	if err != nil {
 		return err
 	}
@@ -177,8 +183,7 @@ func (gc *GraphClient) InsertRelations(relations []knowledge.Relation) error {
 		return fmt.Errorf("Unable to marshall request body")
 	}
 
-	url := fmt.Sprintf("%s/api/graph/relation?token=%s", gc.url, gc.authToken)
-	req, err := http.NewRequest("PUT", url, bytes.NewBuffer(b))
+	req, err := gc.newRequest("PUT", "/api/graph/relations", bytes.NewBuffer(b))
 	if err != nil {
 		return err
 	}
@@ -209,8 +214,7 @@ func (gc *GraphClient) DeleteRelations(relations []knowledge.Relation) error {
 		return fmt.Errorf("Unable to marshall request body")
 	}
 
-	url := fmt.Sprintf("%s/api/graph/relation?token=%s", gc.url, gc.authToken)
-	req, err := http.NewRequest("DELETE", url, bytes.NewBuffer(b))
+	req, err := gc.newRequest("DELETE", "/api/graph/relations", bytes.NewBuffer(b))
 	if err != nil {
 		return err
 	}

internal/client/transaction.go

@@ -32,6 +32,10 @@ type Transaction struct {
 
 	// The number of items to send to the streaming API in one request
 	chunkSize int
+
+	retryCount         int
+	retryDelay         time.Duration
+	retryBackoffFactor float64
 }
 
 // Relate create a relation between two assets
@@ -49,12 +53,12 @@ func (cgt *Transaction) Bind(asset string, assetType schema.AssetType) {
 }
 
 // withRetryOnTooManyRequests helper retrying the function when too many request error has been received
-func withRetryOnTooManyRequests(fn func() error, maxRetries int) error {
+func withRetryOnTooManyRequests(fn func() error, backoffFactor float64, maxRetries int, delay time.Duration) error {
 	trials := 0
 	for {
 		err := fn()
 		if err != nil {
-			backoffTime := time.Duration(int(math.Pow(1.01, float64(trials)))*15) * time.Second
+			backoffTime := time.Duration(int(math.Pow(backoffFactor, float64(trials)))) * delay
 			fmt.Printf("Sleeping for %d seconds\n", backoffTime/time.Second)
 			time.Sleep(backoffTime)
 		} else {
@@ -104,7 +108,7 @@ func (cgt *Transaction) Commit() (*knowledge.Graph, error) {
 			relations = append(relations, r.(knowledge.Relation))
 		}
 		f := p.Exec(func() error {
-			if err := withRetryOnTooManyRequests(func() error { return cgt.client.DeleteRelations(relations) }, 10); err != nil {
+			if err := withRetryOnTooManyRequests(func() error { return cgt.client.DeleteRelations(relations) }, cgt.retryBackoffFactor, cgt.retryCount, cgt.retryDelay); err != nil {
 				return fmt.Errorf("Unable to remove the relations %v: %v", relations, err)
 			}
 			progress.Add(len(relations))
@@ -119,7 +123,7 @@ func (cgt *Transaction) Commit() (*knowledge.Graph, error) {
 			assets = append(assets, a.(knowledge.Asset))
 		}
 		f := p.Exec(func() error {
-			if err := withRetryOnTooManyRequests(func() error { return cgt.client.InsertAssets(assets) }, 10); err != nil {
+			if err := withRetryOnTooManyRequests(func() error { return cgt.client.InsertAssets(assets) }, cgt.retryBackoffFactor, cgt.retryCount, cgt.retryDelay); err != nil {
 				return fmt.Errorf("Unable to upsert the asset %v: %v", assets, err)
 			}
 			progress.Add(len(assets))
@@ -144,7 +148,7 @@ func (cgt *Transaction) Commit() (*knowledge.Graph, error) {
 			assets = append(assets, a.(knowledge.Asset))
 		}
 		f := p.Exec(func() error {
-			if err := withRetryOnTooManyRequests(func() error { return cgt.client.DeleteAssets(assets) }, 10); err != nil {
+			if err := withRetryOnTooManyRequests(func() error { return cgt.client.DeleteAssets(assets) }, cgt.retryBackoffFactor, cgt.retryCount, cgt.retryDelay); err != nil {
 				return fmt.Errorf("Unable to remove the asset %v: %v", assets, err)
 			}
 			progress.Add(len(assets))
@@ -159,7 +163,7 @@ func (cgt *Transaction) Commit() (*knowledge.Graph, error) {
 			relations = append(relations, r.(knowledge.Relation))
 		}
 		f := p.Exec(func() error {
-			if err := withRetryOnTooManyRequests(func() error { return cgt.client.InsertRelations(relations) }, 10); err != nil {
+			if err := withRetryOnTooManyRequests(func() error { return cgt.client.InsertRelations(relations) }, cgt.retryBackoffFactor, cgt.retryCount, cgt.retryDelay); err != nil {
 				return fmt.Errorf("Unable to upsert the relation %v: %v", relations, err)
 			}
 			progress.Add(len(relations))

internal/handlers/token.go

@@ -5,24 +5,25 @@ import (
 	"net/http"
 
 	"github.com/clems4ever/go-graphkb/internal/sources"
+	"github.com/clems4ever/go-graphkb/internal/utils"
 )
 
 // IsTokenValid is the token valid
 func IsTokenValid(registry sources.Registry, r *http.Request) (bool, string, error) {
-	token, ok := r.URL.Query()["token"]
+	token := r.Header.Get(utils.XAuthTokenHeader)
 
-	if !ok || len(token) != 1 {
-		return false, "", fmt.Errorf("Unable to detect token query parameter")
+	if token == "" {
+		return false, "", fmt.Errorf("No auth token provided")
 	}
 
 	sourceToToken, err := registry.ListSources(r.Context())
 
 	if err != nil {
-		return false, "", err
+		return false, "", fmt.Errorf("Unable to list the sources: %v", err)
 	}
 
 	for sn, t := range sourceToToken {
-		if t == token[0] {
+		if t == token {
 			return true, sn, nil
 		}
 	}

internal/server/server.go

@@ -320,10 +320,10 @@ func StartServer(listenInterface string,
 	sem := semaphore.NewWeighted(concurrency)
 
 	r.HandleFunc("/api/graph/schema", handlers.PutSchema(sourcesRegistry, graphUpdater, sem)).Methods("PUT")
-	r.HandleFunc("/api/graph/asset", handlers.PutAsset(sourcesRegistry, graphUpdater, sem)).Methods("PUT")
-	r.HandleFunc("/api/graph/relation", handlers.PutRelation(sourcesRegistry, graphUpdater, sem)).Methods("PUT")
-	r.HandleFunc("/api/graph/asset", handlers.DeleteAsset(sourcesRegistry, graphUpdater, sem)).Methods("DELETE")
-	r.HandleFunc("/api/graph/relation", handlers.DeleteRelation(sourcesRegistry, graphUpdater, sem)).Methods("DELETE")
+	r.HandleFunc("/api/graph/assets", handlers.PutAsset(sourcesRegistry, graphUpdater, sem)).Methods("PUT")
+	r.HandleFunc("/api/graph/assets", handlers.DeleteAsset(sourcesRegistry, graphUpdater, sem)).Methods("DELETE")
+	r.HandleFunc("/api/graph/relations", handlers.PutRelation(sourcesRegistry, graphUpdater, sem)).Methods("PUT")
+	r.HandleFunc("/api/graph/relations", handlers.DeleteRelation(sourcesRegistry, graphUpdater, sem)).Methods("DELETE")
 
 	r.HandleFunc("/api/query", postQueryHandler).Methods("POST")
 	r.PathPrefix("/").Handler(http.FileServer(http.Dir("./web/build/")))

internal/utils/constant.go

@@ -0,0 +1,6 @@
+package utils
+
+var (
+	// XAuthTokenHeader is the name of the header supposed to contain the auth token
+	XAuthTokenHeader = "X-Auth-Token"
+)