ING-963: Added a /v1/callerIdentity endpoint.

couchbase · Nov 1, 2024 · 227c8c5 · 227c8c5
1 parent d06977e
commit 227c8c5
Show file tree

Hide file tree

Showing 4 changed files with 77 additions and 0 deletions.
diff --git a/dataapiv1/spec.yaml b/dataapiv1/spec.yaml
@@ -3,6 +3,28 @@ info:
   version: 1.0.0
   title: Couchbase Data API
 paths:
+  '/v1/callerIdentity':
+    parameters:
+      - $ref: '#/components/parameters/AuthorizationHeader'
+    get:
+      operationId: getCallerIdentity
+      tags:
+        - Tools
+      responses:
+        '200':
+          description: Successfully fetched the current callers identity.
+          content:
+            'application/json':
+              schema:
+                type: object
+                properties:
+                  user:
+                    type: string
+                    description: The user that is making the request.
+        '403':
+          $ref: '#/components/responses/Forbidden' 
+        '500':
+          $ref: '#/components/responses/InternalServerError'
   '/v1/buckets/{bucketName}/scopes/{scopeName}/collections/{collectionName}/documents/{documentKey}':
     parameters:
       - $ref: '#/components/parameters/AuthorizationHeader'

diff --git a/gateway/dapiimpl/server_v1/dataapi_tools.go b/gateway/dapiimpl/server_v1/dataapi_tools.go
@@ -0,0 +1,20 @@
+package server_v1
+
+import (
+	"context"
+
+	"github.com/couchbase/stellar-gateway/dataapiv1"
+)
+
+func (s *DataApiServer) GetCallerIdentity(
+	ctx context.Context, in dataapiv1.GetCallerIdentityRequestObject,
+) (dataapiv1.GetCallerIdentityResponseObject, error) {
+	user, _, errSt := s.authHandler.GetOboUserFromRequest(ctx, in.Params.Authorization)
+	if errSt != nil {
+		return nil, errSt.Err()
+	}
+
+	return dataapiv1.GetCallerIdentity200JSONResponse{
+		User: &user,
+	}, nil
+}
diff --git a/gateway/test/dapi_tools_test.go b/gateway/test/dapi_tools_test.go
@@ -0,0 +1,35 @@
+package test
+
+import (
+	"fmt"
+	"net/http"
+
+	"github.com/stretchr/testify/assert"
+)
+
+func (s *GatewayOpsTestSuite) TestDapiCallerIdentity() {
+	s.Run("Basic", func() {
+		resp := s.sendTestHttpRequest(&testHttpRequest{
+			Method: http.MethodGet,
+			Path:   "/v1/callerIdentity",
+			Headers: map[string]string{
+				"Authorization": s.basicRestCreds,
+			},
+		})
+		requireRestSuccess(s.T(), resp)
+		assert.JSONEq(s.T(), fmt.Sprintf(`{"user":"%s"}`, s.testClusterInfo.BasicUser), string(resp.Body))
+	})
+
+	s.Run("InvalidAuth", func() {
+		resp := s.sendTestHttpRequest(&testHttpRequest{
+			Method: http.MethodGet,
+			Path:   "/v1/callerIdentity",
+			Headers: map[string]string{
+				"Authorization": s.badRestCreds,
+			},
+		})
+		requireRestError(s.T(), resp, http.StatusForbidden, &testRestError{
+			Code: "InvalidAuth",
+		})
+	})
+}
diff --git a/gateway/test/depi_utils_test.go → gateway/test/dapi_utils_test.go b/gateway/test/depi_utils_test.go → gateway/test/dapi_utils_test.go