1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
|
# frozen_string_literal: true
module API
module Terraform
class StateVersion < ::API::Base
default_format :json
feature_category :infrastructure_as_code
urgency :low
before do
authenticate!
authorize! :read_terraform_state, user_project
end
params do
requires :id, types: [String, Integer], desc: 'The ID or URL-encoded path of the project'
end
resource :projects, requirements: API::NAMESPACE_OR_PROJECT_REQUIREMENTS do
namespace ':id/terraform/state/:name/versions/:serial' do
params do
requires :name, type: String, desc: 'The name of a Terraform state'
requires :serial, type: Integer, desc: 'The version number of the state'
end
helpers do
def remote_state_handler
::Terraform::RemoteStateHandler.new(user_project, current_user, name: params[:name])
end
def find_version(serial)
remote_state_handler.find_with_lock do |state|
version = state.versions.find_by_version(serial)
if version.present?
yield version
else
not_found!
end
end
end
end
desc 'Get a Terraform state version' do
detail 'Get a Terraform state version'
success File
failure [
{ code: 403, message: 'Forbidden' },
{ code: 404, message: 'Not found' }
]
tags %w[terraform_state]
end
route_setting :authentication, basic_auth_personal_access_token: true, job_token_allowed: :basic_auth
get do
find_version(params[:serial]) do |version|
env['api.format'] = :binary # Bypass json serialization
body version.file.read
status :ok
end
end
desc 'Delete a Terraform state version' do
detail 'Delete a Terraform state version'
success code: 204
failure [
{ code: 403, message: 'Forbidden' },
{ code: 404, message: 'Not found' }
]
tags %w[terraform_state]
end
route_setting :authentication, basic_auth_personal_access_token: true, job_token_allowed: :basic_auth
delete do
authorize! :admin_terraform_state, user_project
find_version(params[:serial]) do |version|
version.destroy!
body false
status :no_content
end
end
end
end
end
end
end
|