mirror of
https://github.com/grafana/grafana.git
synced 2025-07-30 17:02:15 +08:00
226 lines
6.9 KiB
Go
226 lines
6.9 KiB
Go
package apistore
|
|
|
|
import (
|
|
"bytes"
|
|
"context"
|
|
"errors"
|
|
"fmt"
|
|
"math"
|
|
"time"
|
|
|
|
"github.com/google/uuid"
|
|
apiequality "k8s.io/apimachinery/pkg/api/equality"
|
|
apierrors "k8s.io/apimachinery/pkg/api/errors"
|
|
"k8s.io/apimachinery/pkg/runtime"
|
|
"k8s.io/apimachinery/pkg/types"
|
|
"k8s.io/apiserver/pkg/storage"
|
|
"k8s.io/klog/v2"
|
|
|
|
authtypes "github.com/grafana/authlib/types"
|
|
|
|
"github.com/grafana/grafana/pkg/apimachinery/utils"
|
|
"github.com/grafana/grafana/pkg/storage/unified/resourcepb"
|
|
)
|
|
|
|
func logN(n, b float64) float64 {
|
|
return math.Log(n) / math.Log(b)
|
|
}
|
|
|
|
// Slightly modified function from https://github.com/dustin/go-humanize (MIT).
|
|
func formatBytes(numBytes int) string {
|
|
base := 1024.0
|
|
sizes := []string{"B", "KiB", "MiB", "GiB", "TiB", "PiB", "EiB"}
|
|
if numBytes < 10 {
|
|
return fmt.Sprintf("%d B", numBytes)
|
|
}
|
|
e := math.Floor(logN(float64(numBytes), base))
|
|
suffix := sizes[int(e)]
|
|
val := math.Floor(float64(numBytes)/math.Pow(base, e)*10+0.5) / 10
|
|
return fmt.Sprintf("%.1f %s", val, suffix)
|
|
}
|
|
|
|
// Called on create
|
|
func (s *Storage) prepareObjectForStorage(ctx context.Context, newObject runtime.Object) ([]byte, string, error) {
|
|
info, ok := authtypes.AuthInfoFrom(ctx)
|
|
if !ok {
|
|
return nil, "", errors.New("missing auth info")
|
|
}
|
|
|
|
obj, err := utils.MetaAccessor(newObject)
|
|
if err != nil {
|
|
return nil, "", err
|
|
}
|
|
if obj.GetName() == "" {
|
|
return nil, "", storage.NewInvalidObjError("", "missing name")
|
|
}
|
|
if obj.GetResourceVersion() != "" {
|
|
return nil, "", storage.ErrResourceVersionSetOnCreate
|
|
}
|
|
if obj.GetUID() == "" {
|
|
obj.SetUID(types.UID(uuid.NewString()))
|
|
}
|
|
if obj.GetFolder() != "" && !s.opts.EnableFolderSupport {
|
|
return nil, "", apierrors.NewBadRequest(fmt.Sprintf("folders are not supported for: %s", s.gr.String()))
|
|
}
|
|
|
|
grantPermisions := obj.GetAnnotation(utils.AnnoKeyGrantPermissions)
|
|
if grantPermisions != "" {
|
|
obj.SetAnnotation(utils.AnnoKeyGrantPermissions, "") // remove the annotation
|
|
}
|
|
if err := checkManagerPropertiesOnCreate(info, obj); err != nil {
|
|
return nil, "", err
|
|
}
|
|
|
|
if s.opts.RequireDeprecatedInternalID {
|
|
// nolint:staticcheck
|
|
id := obj.GetDeprecatedInternalID()
|
|
if id < 1 {
|
|
// the ID must be smaller than 9007199254740991, otherwise we will lose prescision
|
|
// on the frontend, which uses the number type to store ids. The largest safe number in
|
|
// javascript is 9007199254740991, compared to 9223372036854775807 as the max int64
|
|
// nolint:staticcheck
|
|
obj.SetDeprecatedInternalID(s.snowflake.Generate().Int64() & ((1 << 52) - 1))
|
|
}
|
|
}
|
|
|
|
obj.SetGenerateName("") // Clear the random name field
|
|
obj.SetResourceVersion("")
|
|
obj.SetSelfLink("")
|
|
|
|
obj.SetUpdatedBy("")
|
|
obj.SetUpdatedTimestamp(nil)
|
|
obj.SetCreatedBy(info.GetUID())
|
|
obj.SetGeneration(1) // the first time we write
|
|
|
|
var buf bytes.Buffer
|
|
if err = s.codec.Encode(newObject, &buf); err != nil {
|
|
return nil, "", err
|
|
}
|
|
|
|
val, err := s.handleLargeResources(ctx, obj, buf)
|
|
return val, grantPermisions, err
|
|
}
|
|
|
|
// Called on update
|
|
func (s *Storage) prepareObjectForUpdate(ctx context.Context, updateObject runtime.Object, previousObject runtime.Object) ([]byte, error) {
|
|
info, ok := authtypes.AuthInfoFrom(ctx)
|
|
if !ok {
|
|
return nil, errors.New("missing auth info")
|
|
}
|
|
|
|
obj, err := utils.MetaAccessor(updateObject)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
if obj.GetName() == "" {
|
|
return nil, fmt.Errorf("updated object must have a name")
|
|
}
|
|
|
|
previous, err := utils.MetaAccessor(previousObject)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
if previous.GetUID() == "" {
|
|
klog.Errorf("object is missing UID: %s, %s", obj.GetGroupVersionKind().String(), obj.GetName())
|
|
} else if obj.GetUID() != previous.GetUID() {
|
|
// Eventually this should be a real error or logged
|
|
// However the dashboard dual write behavior hits this every time, so we will ignore it
|
|
// if obj.GetUID() != "" {
|
|
// klog.Errorf("object UID mismatch: %s, was:%s, now: %s", obj.GetGroupVersionKind().String(), previous.GetName(), obj.GetUID())
|
|
// }
|
|
obj.SetUID(previous.GetUID())
|
|
}
|
|
|
|
if obj.GetName() != previous.GetName() {
|
|
return nil, fmt.Errorf("name mismatch between existing and updated object")
|
|
}
|
|
|
|
obj.SetCreatedBy(previous.GetCreatedBy())
|
|
obj.SetCreationTimestamp(previous.GetCreationTimestamp())
|
|
obj.SetResourceVersion("") // removed from saved JSON because the RV is not yet calculated
|
|
obj.SetAnnotation(utils.AnnoKeyGrantPermissions, "") // Grant is ignored for update requests
|
|
|
|
// for dashboards, a mutation hook will set it if it didn't exist on the previous obj
|
|
// avoid setting it back to 0
|
|
previousInternalID := previous.GetDeprecatedInternalID() // nolint:staticcheck
|
|
if previousInternalID != 0 {
|
|
obj.SetDeprecatedInternalID(previousInternalID) // nolint:staticcheck
|
|
}
|
|
|
|
// Check if we should bump the generation
|
|
changed := obj.GetFolder() != previous.GetFolder()
|
|
if changed {
|
|
if !s.opts.EnableFolderSupport {
|
|
return nil, apierrors.NewBadRequest(fmt.Sprintf("folders are not supported for: %s", s.gr.String()))
|
|
}
|
|
// TODO: check that we can move the folder?
|
|
} else if obj.GetDeletionTimestamp() != nil && previous.GetDeletionTimestamp() == nil {
|
|
changed = true // bump generation when deleted
|
|
} else {
|
|
spec, e1 := obj.GetSpec()
|
|
oldSpec, e2 := previous.GetSpec()
|
|
if e1 == nil && e2 == nil {
|
|
if !apiequality.Semantic.DeepEqual(spec, oldSpec) {
|
|
changed = true
|
|
}
|
|
}
|
|
}
|
|
|
|
// Mark the resource as changed
|
|
if changed {
|
|
obj.SetGeneration(previous.GetGeneration() + 1)
|
|
obj.SetUpdatedBy(info.GetUID())
|
|
obj.SetUpdatedTimestampMillis(time.Now().UnixMilli())
|
|
|
|
// Only validate when the generation has changed
|
|
if err := checkManagerPropertiesOnUpdateSpec(info, obj, previous); err != nil {
|
|
return nil, err
|
|
}
|
|
} else {
|
|
obj.SetGeneration(previous.GetGeneration())
|
|
obj.SetAnnotation(utils.AnnoKeyUpdatedBy, previous.GetAnnotation(utils.AnnoKeyUpdatedBy))
|
|
obj.SetAnnotation(utils.AnnoKeyUpdatedTimestamp, previous.GetAnnotation(utils.AnnoKeyUpdatedTimestamp))
|
|
}
|
|
|
|
var buf bytes.Buffer
|
|
if err = s.codec.Encode(updateObject, &buf); err != nil {
|
|
return nil, err
|
|
}
|
|
return s.handleLargeResources(ctx, obj, buf)
|
|
}
|
|
|
|
func (s *Storage) handleLargeResources(ctx context.Context, obj utils.GrafanaMetaAccessor, buf bytes.Buffer) ([]byte, error) {
|
|
support := s.opts.LargeObjectSupport
|
|
size := buf.Len()
|
|
if support != nil && size > support.Threshold() {
|
|
if support.MaxSize() > 0 && size > support.MaxSize() {
|
|
return nil, fmt.Errorf("request object is too big (%s > %s)", formatBytes(size), formatBytes(support.MaxSize()))
|
|
}
|
|
|
|
key := &resourcepb.ResourceKey{
|
|
Group: s.gr.Group,
|
|
Resource: s.gr.Resource,
|
|
Namespace: obj.GetNamespace(),
|
|
Name: obj.GetName(),
|
|
}
|
|
|
|
err := support.Deconstruct(ctx, key, s.store, obj, buf.Bytes())
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
buf.Reset()
|
|
orig, ok := obj.GetRuntimeObject()
|
|
if !ok {
|
|
return nil, fmt.Errorf("error using object as runtime object")
|
|
}
|
|
|
|
// Now encode the smaller version
|
|
if err = s.codec.Encode(orig, &buf); err != nil {
|
|
return nil, err
|
|
}
|
|
}
|
|
return buf.Bytes(), nil
|
|
}
|