add GetOrCreateService()

Author: sp-yduck

proxmox/service.go

@@ -1,36 +1,78 @@
 package proxmox
 
 import (
+	"crypto/sha256"
 	"crypto/tls"
 	"errors"
+	"fmt"
 	"net/http"
+	"sync"
 
 	"github.com/sp-yduck/proxmox-go/rest"
 )
 
+var (
+	// global Service map against sessionKeys in map[sessionKey]Session
+	sessionCache sync.Map
+
+	// mutex to control access to the GetOrCreate function to avoid duplicate
+	// session creations on startup
+	sessionMutex sync.Mutex
+)
+
 type Service struct {
 	restclient *rest.RESTClient
 }
 
+type Params struct {
+	// base endpoint of proxmox rest api
+	endpoint string
+
+	// auth config
+	authConfig AuthConfig
+
+	// rest client config
+	clientConfig ClientConfig
+}
+
+type ClientConfig struct {
+	InsecureSkipVerify bool
+}
+
 type AuthConfig struct {
-	Username string
-	Password string
-	TokenID  string
-	Secret   string
+	// user or token
+	AuthMethod string
+	Username   string
+	Password   string
+	TokenID    string
+	Secret     string
 }
 
-func NewService(url string, authConfig AuthConfig, insecure bool) (*Service, error) {
-	var loginOption rest.ClientOption
-	if authConfig.Username != "" && authConfig.Password != "" {
-		loginOption = rest.WithUserPassword(authConfig.Username, authConfig.Password)
-	} else if authConfig.TokenID != "" && authConfig.Secret != "" {
-		loginOption = rest.WithAPIToken(authConfig.TokenID, authConfig.Secret)
-	} else {
-		return nil, errors.New("invalid authentication config")
+func GetOrCreateService(params Params) (*Service, error) {
+	sessionMutex.Lock()
+	defer sessionMutex.Unlock()
+
+	key := retrieveSessionKey(params)
+	if cachedSession, ok := sessionCache.Load(key); ok {
+		return cachedSession.(*Service), nil
+	}
+
+	s, err := NewService(params)
+	if err != nil {
+		return nil, err
+	}
+	sessionCache.Store(key, s)
+	return s, nil
+}
+
+func NewService(params Params) (*Service, error) {
+	loginOption, err := makeLoginOpts(params.authConfig)
+	if err != nil {
+		return nil, err
 	}
 	clientOptions := []rest.ClientOption{loginOption}
 
-	if insecure {
+	if params.clientConfig.InsecureSkipVerify {
 		baseClient := &http.Client{
 			Transport: &http.Transport{
 				TLSClientConfig: &tls.Config{
@@ -41,7 +83,7 @@ func NewService(url string, authConfig AuthConfig, insecure bool) (*Service, err
 		clientOptions = append(clientOptions, rest.WithClient(baseClient))
 	}
 
-	restclient, err := rest.NewRESTClient(url, clientOptions...)
+	restclient, err := rest.NewRESTClient(params.endpoint, clientOptions...)
 	if err != nil {
 		return nil, err
 	}
@@ -96,3 +138,33 @@ func NewServiceWithAPIToken(url, tokenid, secret string, insecure bool) (*Servic
 func (s *Service) RESTClient() *rest.RESTClient {
 	return s.restclient
 }
+
+func makeLoginOpts(authConfig AuthConfig) (rest.ClientOption, error) {
+	if authConfig.AuthMethod == "token" && authConfig.TokenID != "" && authConfig.Secret != "" {
+		return rest.WithAPIToken(authConfig.TokenID, authConfig.Secret), nil
+	} else if authConfig.AuthMethod == "user" && authConfig.Username != "" && authConfig.Password != "" {
+		return rest.WithUserPassword(authConfig.Username, authConfig.Password), nil
+	}
+	return nil, errors.New("invalid authentication config")
+}
+
+func retrieveSessionKey(params Params) string {
+	var id string
+	var secret []byte
+	h := sha256.New()
+	switch params.authConfig.AuthMethod {
+	case "token":
+		id = params.authConfig.TokenID
+		h.Write([]byte(params.authConfig.Secret))
+		secret = h.Sum(nil)
+	case "user":
+		id = params.authConfig.Username
+		h.Write([]byte(params.authConfig.Password))
+		secret = h.Sum(nil)
+	default:
+		id = params.authConfig.Username
+		h.Write([]byte(params.authConfig.Password))
+		secret = h.Sum(nil)
+	}
+	return fmt.Sprintf("%s#%s#%x", params.endpoint, id, secret)
+}

proxmox/service_test.go

@@ -0,0 +1,44 @@
+package proxmox
+
+import (
+	"os"
+	"testing"
+)
+
+func TestGetOrCreateService(t *testing.T) {
+	url := os.Getenv("PROXMOX_URL")
+	user := os.Getenv("PROXMOX_USERNAME")
+	password := os.Getenv("PROXMOX_PASSWORD")
+	tokeid := os.Getenv("PROXMOX_TOKENID")
+	secret := os.Getenv("PROXMOX_SECRET")
+	method := os.Getenv("PROXMOX_AUTH_METHOD")
+	if url == "" {
+		t.Fatal("url must not be empty")
+	}
+
+	params := Params{
+		endpoint: url,
+		authConfig: AuthConfig{
+			AuthMethod: method,
+			Username:   user,
+			Password:   password,
+			TokenID:    tokeid,
+			Secret:     secret,
+		},
+		clientConfig: ClientConfig{
+			InsecureSkipVerify: true,
+		},
+	}
+
+	var svc *Service
+	for i := 0; i < 10; i++ {
+		s, err := GetOrCreateService(params)
+		if err != nil {
+			t.Fatalf("failed to get/create service: %v", err)
+		}
+		if i > 0 && s != svc {
+			t.Fatalf("should not create new service: %v(cached)!=%v(new)", svc, s)
+		}
+		svc = s
+	}
+}

proxmox/suite_test.go

@@ -18,18 +18,26 @@ func (s *TestSuite) SetupSuite() {
 	password := os.Getenv("PROXMOX_PASSWORD")
 	tokeid := os.Getenv("PROXMOX_TOKENID")
 	secret := os.Getenv("PROXMOX_SECRET")
+	method := os.Getenv("PROXMOX_AUTH_METHOD")
 	if url == "" {
 		s.T().Fatal("url must not be empty")
 	}
 
-	authConfig := AuthConfig{
-		Username: user,
-		Password: password,
-		TokenID:  tokeid,
-		Secret:   secret,
+	params := Params{
+		endpoint: url,
+		authConfig: AuthConfig{
+			AuthMethod: method,
+			Username:   user,
+			Password:   password,
+			TokenID:    tokeid,
+			Secret:     secret,
+		},
+		clientConfig: ClientConfig{
+			InsecureSkipVerify: true,
+		},
 	}
 
-	service, err := NewService(url, authConfig, true)
+	service, err := NewService(params)
 	if err != nil {
 		s.T().Fatalf("failed to create new service: %v", err)
 	}

proxmox/websocket_test.go

@@ -18,7 +18,8 @@ func (s *TestSuite) TestVNCWebSocketClient() {
 		s.T().Fatalf("write error: %v", err)
 	}
 
-	ctx, _ := context.WithTimeout(context.TODO(), 10*time.Second)
+	ctx, cancel := context.WithTimeout(context.TODO(), 10*time.Second)
+	defer cancel()
 	out, _, err := client.Read(ctx)
 	if err != nil {
 		s.T().Fatalf("failed read message: %v", err)
@@ -35,7 +36,8 @@ func (s *TestSuite) TestExec() {
 	}
 	defer client.Close()
 
-	ctx, _ := context.WithTimeout(context.TODO(), 5*time.Second)
+	ctx, cancel := context.WithTimeout(context.TODO(), 5*time.Second)
+	defer cancel()
 	out, code, err := client.Exec(ctx, "whoami | base64 | base64 -d")
 	if err != nil {
 		s.T().Fatalf("failed to exec command: %s : %d : %v", out, code, err)
@@ -51,7 +53,8 @@ func (s *TestSuite) TestWriteFile() {
 	}
 	defer client.Close()
 
-	ctx, _ := context.WithTimeout(context.TODO(), 15*time.Second)
+	ctx, cancel := context.WithTimeout(context.TODO(), 15*time.Second)
+	defer cancel()
 	err = client.WriteFile(ctx, "this is a file content", "~/test-write-file.txt")
 	if err != nil {
 		s.T().Fatalf("failed to exec command: %v", err)

rest/client.go

@@ -10,14 +10,17 @@ import (
 	"strings"
 	"time"
 
-	"github.com/pkg/errors"
-
 	"github.com/sp-yduck/proxmox-go/api"
 )
 
+const (
+	defaultUserAgent = "sp-yduck/proxmox-go"
+)
+
 type RESTClient struct {
 	endpoint    string
 	httpClient  *http.Client
+	tokenid     string
 	token       string
 	session     *api.Session
 	credentials *TicketRequest
@@ -90,6 +93,7 @@ func WithUserPassword(username, password string) ClientOption {
 
 func WithAPIToken(tokenid, secret string) ClientOption {
 	return func(c *RESTClient) {
+		c.tokenid = tokenid
 		c.token = fmt.Sprintf("%s=%s", tokenid, secret)
 	}
 }
@@ -165,9 +169,11 @@ func (c *RESTClient) makeAuthHeaders() http.Header {
 	header.Add("Accept", "application/json")
 	if c.token != "" {
 		header.Add("Authorization", fmt.Sprintf("PVEAPIToken=%s", c.token))
+		header.Add("User-Agent", fmt.Sprintf("%s:%s", defaultUserAgent, c.tokenid))
 	} else if c.session != nil {
 		header.Add("Cookie", fmt.Sprintf("PVEAuthCookie=%s", c.session.Ticket))
 		header.Add("CSRFPreventionToken", c.session.CSRFPreventionToken)
+		header.Add("User-Agent", fmt.Sprintf("%s:%s", defaultUserAgent, c.session.Username))
 	}
 	return header
 }
@@ -188,7 +194,7 @@ func checkResponse(res *http.Response) error {
 
 	body, err := io.ReadAll(res.Body)
 	if err != nil {
-		return errors.Errorf("failed to read body while handling http response of status %d : %v", res.StatusCode, err)
+		return fmt.Errorf("failed to read body while handling http response of status %d : %v", res.StatusCode, err)
 	}
 
 	if res.StatusCode == http.StatusInternalServerError || res.StatusCode == http.StatusNotImplemented {
@@ -204,10 +210,10 @@ func checkResponse(res *http.Response) error {
 			return err
 		}
 		if body, ok := errorskey["errors"]; ok {
-			return errors.Errorf("bad request: %s - %s", res.Status, body)
+			return fmt.Errorf("bad request: %s - %s", res.Status, body)
 		}
-		return errors.Errorf("bad request: %s - %s", res.Status, string(body))
+		return fmt.Errorf("bad request: %s - %s", res.Status, string(body))
 	}
 
-	return errors.Errorf("code: %d", res.StatusCode)
+	return fmt.Errorf("code: %d", res.StatusCode)
 }