Merge pull request #602 from shutter-network/feat/read-only-endpoint

added middleware to enable/disable read only endpoints

Author: blockchainluffy

rolling-shutter/keyper/kprapi/kprapi.go

@@ -33,6 +33,7 @@ type Config interface {
 	GetHTTPListenAddress() string
 	GetAddress() common.Address
 	GetInstanceID() uint64
+	GetEnableWriteOperations() bool
 }
 
 type Server struct {
@@ -149,6 +150,8 @@ func (srv *Server) waitShutdown(ctx context.Context) error {
 func (srv *Server) setupAPIRouter(swagger *openapi3.T) http.Handler {
 	router := chi.NewRouter()
 
+	router.Use(kproapi.ConfigMiddleware(srv.config.GetEnableWriteOperations()))
+
 	router.Use(chimiddleware.OapiRequestValidator(swagger))
 	_ = kproapi.HandlerFromMux(srv, router)
 

rolling-shutter/keyper/kprconfig/config.go

@@ -23,6 +23,7 @@ type Config struct {
 	DatabaseURL string
 
 	HTTPEnabled       bool
+	HTTPReadOnly      bool
 	HTTPListenAddress string
 
 	P2P         *p2p.Config
@@ -59,6 +60,10 @@ func (c *Config) GetHTTPListenAddress() string {
 	return c.HTTPListenAddress
 }
 
+func (c *Config) GetEnableWriteOperations() bool {
+	return c.HTTPEnabled && !c.HTTPReadOnly
+}
+
 func (c *Config) GetMaxNumKeysPerMessage() uint64 {
 	return c.MaxNumKeysPerMessage
 }

rolling-shutter/keyper/kproapi/middleware.go

@@ -0,0 +1,89 @@
+package kproapi
+
+import (
+	"encoding/json"
+	"net/http"
+
+	"github.com/getkin/kin-openapi/openapi3"
+)
+
+// isReadOnlyEndpoint checks if an endpoint is marked as read-only in the OpenAPI spec.
+func isReadOnlyEndpoint(operation *openapi3.Operation) bool {
+	// Try to get the value directly from the map first.
+	if val, exists := operation.Extensions["x-read-only"]; exists {
+		// Handle json.RawMessage case.
+		if rawMsg, ok := val.(json.RawMessage); ok {
+			return string(rawMsg) == "true"
+		}
+
+		// Handle direct boolean case.
+		if boolVal, ok := val.(bool); ok {
+			return boolVal
+		}
+	}
+	return false
+}
+
+// shouldEnableEndpoint determines if an endpoint should be accessible based on its type and configuration.
+func shouldEnableEndpoint(operation *openapi3.Operation, enableWriteOperations bool) bool {
+	if isReadOnlyEndpoint(operation) {
+		return true
+	}
+	return enableWriteOperations
+}
+
+// findOperation looks up the OpenAPI operation for the given path and method.
+func findOperation(spec *openapi3.T, path string, method string) *openapi3.Operation {
+	pathItem := spec.Paths.Find(path)
+	if pathItem == nil {
+		return nil
+	}
+
+	switch method {
+	case http.MethodGet:
+		return pathItem.Get
+	case http.MethodPost:
+		return pathItem.Post
+	case http.MethodPut:
+		return pathItem.Put
+	case http.MethodDelete:
+		return pathItem.Delete
+	default:
+		return nil
+	}
+}
+
+// ConfigMiddleware creates a middleware that controls endpoint access based on configuration.
+func ConfigMiddleware(enableWriteOperations bool) MiddlewareFunc {
+	return ConfigMiddlewareWithSpec(enableWriteOperations, GetSwagger)
+}
+
+// ConfigMiddlewareWithSpec creates a middleware that controls endpoint access based on configuration.
+// This accepts a function to get the spec, making it more testable.
+func ConfigMiddlewareWithSpec(enableWriteOperations bool, getSpec func() (*openapi3.T, error)) MiddlewareFunc {
+	return func(next http.Handler) http.Handler {
+		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+			// Load the OpenAPI specification.
+			spec, err := getSpec()
+			if err != nil {
+				http.Error(w, "Internal server error", http.StatusInternalServerError)
+				return
+			}
+
+			// Find the operation for this request.
+			operation := findOperation(spec, r.URL.Path, r.Method)
+			if operation == nil {
+				http.Error(w, "Endpoint not found", http.StatusNotFound)
+				return
+			}
+
+			// Check if the endpoint should be accessible.
+			if !shouldEnableEndpoint(operation, enableWriteOperations) {
+				http.Error(w, "Endpoint not enabled", http.StatusForbidden)
+				return
+			}
+
+			next.ServeHTTP(w, r)
+		})
+	}
+}

rolling-shutter/keyper/kproapi/middleware_test.go

@@ -0,0 +1,269 @@
+package kproapi
+
+import (
+	"encoding/json"
+	"net/http"
+	"net/http/httptest"
+	"testing"
+
+	"github.com/getkin/kin-openapi/openapi3"
+	"github.com/stretchr/testify/assert"
+)
+
+func TestIsReadOnlyEndpoint(t *testing.T) {
+	tests := []struct {
+		name      string
+		operation *openapi3.Operation
+		want      bool
+	}{
+		{
+			name: "read-only with json.RawMessage true",
+			operation: func() *openapi3.Operation {
+				op := &openapi3.Operation{}
+				op.Extensions = map[string]interface{}{
+					"x-read-only": json.RawMessage("true"),
+				}
+				return op
+			}(),
+			want: true,
+		},
+		{
+			name: "read-only with json.RawMessage false",
+			operation: func() *openapi3.Operation {
+				op := &openapi3.Operation{}
+				op.Extensions = map[string]interface{}{
+					"x-read-only": json.RawMessage("false"),
+				}
+				return op
+			}(),
+			want: false,
+		},
+		{
+			name: "read-only with direct boolean true",
+			operation: func() *openapi3.Operation {
+				op := &openapi3.Operation{}
+				op.Extensions = map[string]interface{}{
+					"x-read-only": true,
+				}
+				return op
+			}(),
+			want: true,
+		},
+		{
+			name: "no read-only extension",
+			operation: func() *openapi3.Operation {
+				op := &openapi3.Operation{}
+				op.Extensions = map[string]interface{}{}
+				return op
+			}(),
+			want: false,
+		},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			got := isReadOnlyEndpoint(tt.operation)
+			assert.Equal(t, tt.want, got)
+		})
+	}
+}
+
+func TestShouldEnableEndpoint(t *testing.T) {
+	tests := []struct {
+		name           string
+		operation      *openapi3.Operation
+		enableWriteOps bool
+		want           bool
+	}{
+		{
+			name: "read-only endpoint with write ops disabled",
+			operation: func() *openapi3.Operation {
+				op := &openapi3.Operation{}
+				op.Extensions = map[string]interface{}{
+					"x-read-only": json.RawMessage("true"),
+				}
+				return op
+			}(),
+			enableWriteOps: false,
+			want:           true,
+		},
+		{
+			name: "write endpoint with write ops enabled",
+			operation: func() *openapi3.Operation {
+				op := &openapi3.Operation{}
+				op.Extensions = map[string]interface{}{}
+				return op
+			}(),
+			enableWriteOps: true,
+			want:           true,
+		},
+		{
+			name: "write endpoint with write ops disabled",
+			operation: func() *openapi3.Operation {
+				op := &openapi3.Operation{}
+				op.Extensions = map[string]interface{}{}
+				return op
+			}(),
+			enableWriteOps: false,
+			want:           false,
+		},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			got := shouldEnableEndpoint(tt.operation, tt.enableWriteOps)
+			assert.Equal(t, tt.want, got)
+		})
+	}
+}
+
+func TestFindOperation(t *testing.T) {
+	// Create a test spec
+	spec := &openapi3.T{
+		Paths: openapi3.Paths{
+			"/test": &openapi3.PathItem{
+				Get:    &openapi3.Operation{},
+				Post:   &openapi3.Operation{},
+				Put:    &openapi3.Operation{},
+				Delete: &openapi3.Operation{},
+			},
+		},
+	}
+
+	tests := []struct {
+		name   string
+		path   string
+		method string
+		want   *openapi3.Operation
+	}{
+		{
+			name:   "GET operation exists",
+			path:   "/test",
+			method: http.MethodGet,
+			want:   spec.Paths.Find("/test").Get,
+		},
+		{
+			name:   "POST operation exists",
+			path:   "/test",
+			method: http.MethodPost,
+			want:   spec.Paths.Find("/test").Post,
+		},
+		{
+			name:   "PUT operation exists",
+			path:   "/test",
+			method: http.MethodPut,
+			want:   spec.Paths.Find("/test").Put,
+		},
+		{
+			name:   "DELETE operation exists",
+			path:   "/test",
+			method: http.MethodDelete,
+			want:   spec.Paths.Find("/test").Delete,
+		},
+		{
+			name:   "non-existent path",
+			path:   "/nonexistent",
+			method: http.MethodGet,
+			want:   nil,
+		},
+		{
+			name:   "unsupported method",
+			path:   "/test",
+			method: "PATCH",
+			want:   nil,
+		},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			got := findOperation(spec, tt.path, tt.method)
+			assert.Equal(t, tt.want, got)
+		})
+	}
+}
+
+func TestConfigMiddleware(t *testing.T) {
+	// Create a test spec with both read-only and write operations
+	spec := &openapi3.T{
+		Paths: openapi3.Paths{
+			"/read": &openapi3.PathItem{
+				Get: func() *openapi3.Operation {
+					op := &openapi3.Operation{}
+					op.Extensions = map[string]interface{}{
+						"x-read-only": json.RawMessage("true"),
+					}
+					return op
+				}(),
+			},
+			"/write": &openapi3.PathItem{
+				Post: &openapi3.Operation{},
+			},
+		},
+	}
+
+	// Create a function that returns our test spec.
+	//nolint:unparam
+	getTestSpec := func() (*openapi3.T, error) {
+		return spec, nil
+	}
+
+	tests := []struct {
+		name           string
+		enableWriteOps bool
+		path           string
+		method         string
+		expectedStatus int
+	}{
+		{
+			name:           "read-only endpoint with write ops disabled",
+			enableWriteOps: false,
+			path:           "/read",
+			method:         http.MethodGet,
+			expectedStatus: http.StatusOK,
+		},
+		{
+			name:           "write endpoint with write ops enabled",
+			enableWriteOps: true,
+			path:           "/write",
+			method:         http.MethodPost,
+			expectedStatus: http.StatusOK,
+		},
+		{
+			name:           "write endpoint with write ops disabled",
+			enableWriteOps: false,
+			path:           "/write",
+			method:         http.MethodPost,
+			expectedStatus: http.StatusForbidden,
+		},
+		{
+			name:           "non-existent endpoint",
+			enableWriteOps: true,
+			path:           "/nonexistent",
+			method:         http.MethodGet,
+			expectedStatus: http.StatusNotFound,
+		},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			// Create a test handler that always returns 200 OK.
+			nextHandler := http.HandlerFunc(func(w http.ResponseWriter, _ *http.Request) {
+				w.WriteHeader(http.StatusOK)
+			})
+
+			// Create the middleware with our test spec
+			middleware := ConfigMiddlewareWithSpec(tt.enableWriteOps, getTestSpec)
+			handler := middleware(nextHandler)
+
+			// Create a test request
+			req := httptest.NewRequest(tt.method, tt.path, http.NoBody)
+			w := httptest.NewRecorder()
+
+			// Serve the request
+			handler.ServeHTTP(w, req)
+
+			// Check the response
+			assert.Equal(t, tt.expectedStatus, w.Code)
+		})
+	}
+}