Added GCE provider

summerisgone · summerisgone · commit 03d18f645e9a · 2020-07-20T03:10:21.000+05:00
diff --git a/app/server.py b/app/server.py
@@ -21,7 +21,8 @@
 
 def run_playbook(data):
     global task_program
-    extra_vars = ' '.join(['{0}={1}'.format(key, data[key]) for key in data.keys()])
+    extra_vars = ' '.join(['{0}={1}'.format(key, data[key])
+                           for key in data.keys()])
     task_program = ['ansible-playbook', 'main.yml', '--extra-vars', extra_vars]
     return PlaybookCLI(task_program).run()
 
@@ -101,7 +102,7 @@ async def post_exit(_):
 
 
 @routes.post('/lightsail_regions')
-async def post_exit(request):
+async def lightsail_regions(request):
     data = await request.json()
     client = boto3.client(
         'lightsail',
@@ -115,7 +116,7 @@ async def post_exit(request):
 
 
 @routes.post('/ec2_regions')
-async def post_exit(request):
+async def ec2_regions(request):
     data = await request.json()
     client = boto3.client(
         'ec2',
@@ -126,16 +127,40 @@ async def post_exit(request):
     return web.json_response(response)
 
 
+@routes.get('/gce_config')
+async def check_gce_config(request):
+    gce_file = join(PROJECT_ROOT, 'configs', 'gce.json')
+    response = {}
+    try:
+        json.loads(open(gce_file, 'r').read())['project_id']
+        response['status'] = 'ok'
+    except IOError:
+        response['status'] = 'not_available'
+    except ValueError:
+        response['status'] = 'wrong_format'
+
+    return web.json_response(response)
+
+
 @routes.post('/gce_regions')
-async def post_exit(request):
-    #data = await request.json()
-    gce_config_file = 'configs/gce.json'  # 'data.get('gce_config_file')
-    project_id = json.loads(open(gce_config_file, 'r').read())['project_id']
+async def gce_regions(request):
+    data = await request.json()
+    gce_file_name = join(PROJECT_ROOT, 'configs', 'gce.json')
+    if data.get('project_id'):
+        # File is missing, save it. We can't get file path from browser :(
+        with open(gce_file_name, 'w') as f:
+            f.write(json.dumps(data))
+    else:
+        with open(gce_file_name, 'r') as f:
+            data = json.loads(f.read())
 
     response = AuthorizedSession(
-        service_account.Credentials.from_service_account_file(gce_config_file).with_scopes(
-            ['https://www.googleapis.com/auth/compute'])).get(
-        'https://www.googleapis.com/compute/v1/projects/{project_id}/regions'.format(project_id=project_id))
+        service_account.Credentials.from_service_account_info(
+            data).with_scopes(
+                ['https://www.googleapis.com/auth/compute'])).get(
+                'https://www.googleapis.com/compute/v1/projects/{project_id}/regions'.format(
+                    project_id=data['project_id'])
+    )
 
     return web.json_response(json.loads(response.content))
 
diff --git a/app/static/provider-gce.vue b/app/static/provider-gce.vue
@@ -1,5 +1,44 @@
 <template>
   <div>
+    <div
+      class="form-group dropzone"
+      v-if="ui_needs_upload"
+      v-on:dragover.prevent="dragover_handler"
+      v-on:dragleave.prevent="dragleave_handler"
+      v-on:drop.prevent="drop_handler"
+      v-on:click="show_file_select"
+      v-bind:class="{
+        'dropzone--can-drop': ui_can_drop,
+        'dropzone--error': ui_drop_error,
+        'dropzone--success': ui_drop_success,
+      }"
+    >
+      <strong>Drag your GCE config file or click here</strong>
+      <p>
+        File <code>configs/gce.json</code> was not found. Please create it (<a
+          href="https://github.com/trailofbits/algo/blob/master/docs/cloud-gce.md"
+          target="_blank"
+          rel="noopener noreferrer"
+          >how?</a
+        >) or upload.
+      </p>
+      <p>After upload it <strong>will be saved</strong> in the configs folder.</p>
+      <div v-if="ui_drop_error" class="alert alert-warning" role="alert">
+        <strong>Error:</strong> {{ ui_drop_error }}.
+      </div>
+
+      <div v-if="ui_drop_success" class="alert alert-success" role="alert">
+        <strong>{{ ui_drop_filename }} loaded successfully</strong>
+      </div>
+    </div>
+    <input type="file" accept=".json,applciation/json" v-on:change="filechange_handler" />
+
+    <div class="form-group">
+      <region-select v-model="region" v-bind:options="ui_region_options" v-bind:loading="ui_loading_check || ui_loading_regions">
+        <label>Please specify <code>gce.json</code> credentials file to select region</label>
+      </region-select>
+    </div>
+
     <button
       class="btn btn-primary"
       type="button"
@@ -13,51 +52,158 @@
 
 <script>
 module.exports = {
-  data: function() {
+  data: function () {
     return {
+      drop_error: null,
       gce_credentials_file: null,
       region: null,
       // helper variables
-      region_options: [],
-      is_loading: false
+      ui_can_drop: false,
+      ui_drop_error: null,
+      ui_drop_success: null,
+      ui_drop_filename: null,
+      ui_needs_upload: null,
+      ui_loading_regions: false,
+      ui_loading_check: false,
+      ui_region_options: []
     };
   },
+  created: function() {
+    this.check_config();
+  },
   computed: {
     is_valid() {
       return this.gce_credentials_file && this.region;
-    },
-    is_region_disabled() {
-      return !(this.gce_credentials_file) || this.is_loading;
     }
   },
   methods: {
-    load_regions() {
-      if (this.gce_credentials_file && this.region_options.length === 0) {
-        this.is_loading = true;
-        fetch('/gce_regions', {
-          method: 'post',
-          headers: {
-            'Content-Type': 'application/json'
-          },
-          body: JSON.stringify({
-            gce_credentials_file: this.gce_credentials_file
-          })
-        })
+    show_file_select(e) {
+      if (e.target.tagName === 'A') {
+        return;
+      }
+      const input = this.$el.querySelector(['input[type=file]']);
+      const event = new MouseEvent('click', {
+        'view': window,
+        'bubbles': true,
+        'cancelable': true
+      });
+      input.dispatchEvent(event);
+    },
+    dragover_handler(e) {
+      this.ui_can_drop = true;
+      this.ui_drop_success = false;
+      this.ui_drop_error = false;
+      this.ui_drop_filename = null;
+    },
+    dragleave_handler() {
+      this.ui_can_drop = false;
+    },
+    drop_handler(e) {
+      try {
+        const droppedFiles = e.dataTransfer.files;
+        if (droppedFiles.length !== 1) {
+          this.ui_drop_error = 'Please upload GCE config as single file';
+        }
+        this.read_file(droppedFiles[0]);
+      } catch (e) {
+        this.ui_drop_error = 'Unhandled error while trying to read GCE config';
+      }
+    },
+    filechange_handler(e) {
+      if (e.target.files.length) {
+        this.read_file(e.target.files[0]);
+      }
+    },
+    read_file(file) {
+        if (file.type !== 'application/json') {
+          this.ui_drop_error = 'Incorrect file type';
+        }
+        const reader = new FileReader();
+        reader.onload =  e => {
+          let gce_config_content = null;
+          try {
+            gce_config_content = JSON.parse(e.target.result);
+            this.ui_drop_success = true;
+            this.ui_drop_filename = file.name;
+            this.gce_credentials_file = 'configs/gce.json';
+          } catch (e) {
+            this.ui_drop_error = 'JSON format error';
+          }
+          gce_config_content && this.load_regions(gce_config_content);
+        }
+        reader.onerror =  e => {
+          this.ui_drop_error = 'Error while reading file';
+        }
+        reader.readAsText(file);
+      
+    },
+    check_config() {
+      this.ui_loading_check = true;
+      fetch("/gce_config")
         .then(r => r.json())
-        .then(data => {
-          this.region_options = data;
+        .then(response => {
+          if (response.status === 'ok') {
+            this.gce_credentials_file = 'configs/gce.json';
+            this.load_regions();
+            this.ui_needs_upload = false;
+          } else {
+            this.ui_needs_upload = true;
+          }
         })
         .finally(() => {
-          this.is_loading = false;
+          this.ui_loading_check = false;
         });
+    },
+    load_regions(gce_config_content) {
+      if (this.gce_credentials_file && this.ui_region_options.length === 0) {
+        this.ui_loading_regions = true;
+        fetch("/gce_regions", {
+          method: "post",
+          headers: {
+            "Content-Type": "application/json",
+          },
+          body: gce_config_content ? JSON.stringify(gce_config_content) : '{}',
+        })
+          .then((r) => r.json())
+          .then((data) => {
+            this.ui_region_options = data.items.map(i => ({
+              value: i.name,
+              key: i.name
+            }));
+          })
+          .finally(() => {
+            this.ui_loading_regions = false;
+          });
       }
     },
     submit() {
-      this.$emit('submit', {
+      this.$emit("submit", {
         gce_credentials_file: this.gce_credentials_file,
-        region: this.region
+        region: this.region,
       });
-    }
-  }
+    },
+  },
+  components: {
+    "region-select": window.httpVueLoader("/static/region-select.vue"),
+  },
 };
 </script>
+<style scoped>
+.dropzone {
+  padding: 2em;
+  border: 5px dotted #ccc;
+  cursor: pointer;
+}
+input[type=file] {
+  visibility: hidden;
+}
+.dropzone--can-drop {
+  border-color: var(--blue);
+}
+.dropzone--error {
+  border-color: var(--red);
+}
+.dropzone--success {
+  border-color: var(--green);
+}
+</style>
diff --git a/app/static/provider-setup.vue b/app/static/provider-setup.vue
@@ -59,7 +59,8 @@ module.exports = {
   components: {
     'digitalocean': window.httpVueLoader('/static/provider-do.vue'),
     'lightsail': window.httpVueLoader('/static/provider-lightsail.vue'),
-    'ec2': window.httpVueLoader('/static/provider-ec2.vue')
+    'ec2': window.httpVueLoader('/static/provider-ec2.vue'),
+    'gce': window.httpVueLoader('/static/provider-gce.vue')
   }
 };
 </script>
diff --git a/app/static/region-select.vue b/app/static/region-select.vue
@@ -0,0 +1,44 @@
+<template>
+  <div class="form-group">
+    <label v-if="ui_show_slot"><slot></slot></label>
+    <label v-if="ui_show_loading">Loading regions...</label>
+    <label v-if="ui_show_select_prompt"
+      >What region should the server be located in?</label
+    >
+    <select
+      name="region"
+      class="form-control"
+      v-bind:value="value"
+      v-bind:disabled="ui_disabled"
+      v-on:input="$emit('input', $event.target.value)"
+    >
+      <option value disabled>Select region</option>
+      <option
+        v-for="(region, i) in options"
+        v-bind:key="i"
+        v-bind:value="region.key"
+        >{{ region.value }}</option
+      >
+    </select>
+  </div>
+</template>
+
+<script>
+module.exports = {
+  props: ["value", "options", "loading"],
+  computed: {
+      ui_disabled: function() {
+          return !this.options.length || this.loading;
+      },
+      ui_show_slot: function() {
+          return !this.loading && !this.options.length
+      },
+      ui_show_loading: function() {
+          return this.loading;
+      },
+      ui_show_select_prompt: function() {
+          return this.options.length > 0;
+      }
+  }
+};
+</script>
