Allow creating a new token from the input string for admin (#549)

ikhoon · web-flow · commit 4ac5e3a2b2d5 · 2021-01-19T15:19:59.000+09:00
Motivation: When migrating a Central Dogma into another Central Dogma, a repository could be easily migrated by copying its file folder under `/data`. However, it is difficult to merge the tokens of two systems because all tokens are managed by `tokens` repository. Modifications: - Allow creating a new token from `sceret` parameter for admin - Increase timeout of `ZooKeeperCommandExecutorTest.hierarchicalQuorumsWithFailOver()` for receiving flakiness - Result: - You can now create a new token with non-random string starting with `appToken-` for admin - Fixes #550
diff --git a/it/src/test/java/com/linecorp/centraldogma/it/NonRandomTokenTest.java b/it/src/test/java/com/linecorp/centraldogma/it/NonRandomTokenTest.java
@@ -0,0 +1,72 @@
+/*
+ * Copyright 2021 LINE Corporation
+ *
+ * LINE Corporation licenses this file to you under the Apache License,
+ * version 2.0 (the "License"); you may not use this file except in compliance
+ * with the License. You may obtain a copy of the License at:
+ *
+ *   https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
+ * License for the specific language governing permissions and limitations
+ * under the License.
+ */
+
+package com.linecorp.centraldogma.it;
+
+import static com.linecorp.centraldogma.testing.internal.auth.TestAuthMessageUtil.login;
+import static org.assertj.core.api.Assertions.assertThat;
+
+import org.junit.jupiter.api.Test;
+import org.junit.jupiter.api.extension.RegisterExtension;
+
+import com.linecorp.armeria.client.WebClient;
+import com.linecorp.armeria.common.AggregatedHttpResponse;
+import com.linecorp.armeria.common.HttpRequest;
+import com.linecorp.armeria.common.HttpStatus;
+import com.linecorp.armeria.common.MediaType;
+import com.linecorp.armeria.common.auth.OAuth2Token;
+import com.linecorp.centraldogma.internal.Jackson;
+import com.linecorp.centraldogma.internal.api.v1.AccessToken;
+import com.linecorp.centraldogma.server.CentralDogmaBuilder;
+import com.linecorp.centraldogma.testing.internal.auth.TestAuthMessageUtil;
+import com.linecorp.centraldogma.testing.internal.auth.TestAuthProviderFactory;
+import com.linecorp.centraldogma.testing.junit.CentralDogmaExtension;
+
+class NonRandomTokenTest {
+
+    @RegisterExtension
+    static final CentralDogmaExtension dogma = new CentralDogmaExtension() {
+        @Override
+        protected void configure(CentralDogmaBuilder builder) {
+            builder.administrators(TestAuthMessageUtil.USERNAME);
+            builder.authProviderFactory(new TestAuthProviderFactory());
+        }
+    };
+
+    @Test
+    void createNonRandomToken() throws Exception {
+        final WebClient client = dogma.httpClient();
+        final AggregatedHttpResponse response = login(client,
+                                                      TestAuthMessageUtil.USERNAME,
+                                                      TestAuthMessageUtil.PASSWORD);
+
+        assertThat(response.status()).isEqualTo(HttpStatus.OK);
+        final String sessionId = Jackson.readValue(response.content().array(), AccessToken.class)
+                                        .accessToken();
+        final WebClient adminClient = WebClient.builder(client.uri())
+                                               .auth(OAuth2Token.of(sessionId)).build();
+
+        final HttpRequest request = HttpRequest.builder()
+                                               .post("/api/v1/tokens")
+                                               .content(MediaType.FORM_DATA,
+                                                        "secret=appToken-secret&isAdmin=true&appId=foo")
+                                               .build();
+        AggregatedHttpResponse res = adminClient.execute(request).aggregate().join();
+        assertThat(res.status()).isEqualTo(HttpStatus.CREATED);
+        res = adminClient.get("/api/v1/tokens").aggregate().join();
+        assertThat(res.contentUtf8()).contains("\"secret\":\"appToken-secret\"");
+    }
+}
diff --git a/server/src/main/java/com/linecorp/centraldogma/server/internal/api/TokenService.java b/server/src/main/java/com/linecorp/centraldogma/server/internal/api/TokenService.java
@@ -22,6 +22,8 @@
 import java.util.Collection;
 import java.util.concurrent.CompletableFuture;
 
+import javax.annotation.Nullable;
+
 import com.fasterxml.jackson.databind.JsonNode;
 import com.google.common.collect.ImmutableList;
 import com.google.common.collect.ImmutableMap;
@@ -42,6 +44,7 @@
 import com.linecorp.armeria.server.annotation.ResponseConverter;
 import com.linecorp.armeria.server.annotation.StatusCode;
 import com.linecorp.centraldogma.common.Author;
+import com.linecorp.centraldogma.common.Revision;
 import com.linecorp.centraldogma.internal.Jackson;
 import com.linecorp.centraldogma.server.command.CommandExecutor;
 import com.linecorp.centraldogma.server.internal.api.converter.CreateApiResponseConverter;
@@ -104,10 +107,21 @@ public CompletableFuture<Collection<Token>> listTokens(User loginUser) {
     @ResponseConverter(CreateApiResponseConverter.class)
     public CompletableFuture<HttpResult<Token>> createToken(@Param String appId,
                                                             @Param boolean isAdmin,
+                                                            @Param @Nullable String secret,
                                                             Author author, User loginUser) {
         checkArgument(!isAdmin || loginUser.isAdmin(),
                       "Only administrators are allowed to create an admin-level token.");
-        return mds.createToken(author, appId, isAdmin)
+
+        checkArgument(secret == null || loginUser.isAdmin(),
+                      "Only administrators are allowed to create a new token from the given secret string");
+
+        final CompletableFuture<Revision> tokenFuture;
+        if (secret != null) {
+            tokenFuture = mds.createToken(author, appId, secret, isAdmin);
+        } else {
+            tokenFuture = mds.createToken(author, appId, isAdmin);
+        }
+        return tokenFuture
                   .thenCompose(unused -> mds.findTokenByAppId(appId))
                   .thenApply(token -> {
                       final ResponseHeaders headers = ResponseHeaders.of(HttpStatus.CREATED,
diff --git a/server/src/test/java/com/linecorp/centraldogma/server/internal/api/TokenServiceTest.java b/server/src/test/java/com/linecorp/centraldogma/server/internal/api/TokenServiceTest.java
@@ -63,10 +63,10 @@ static void setUp() {
 
     @Test
     void adminToken() {
-        final Token token = tokenService.createToken("forAdmin1", true, adminAuthor, admin).join()
+        final Token token = tokenService.createToken("forAdmin1", true, null, adminAuthor, admin).join()
                                         .content();
         assertThat(token.isActive()).isTrue();
-        assertThatThrownBy(() -> tokenService.createToken("forAdmin2", true, guestAuthor, guest)
+        assertThatThrownBy(() -> tokenService.createToken("forAdmin2", true, null, guestAuthor, guest)
                                              .join())
                 .isInstanceOf(IllegalArgumentException.class);
 
@@ -87,9 +87,9 @@ void adminToken() {
 
     @Test
     void userToken() {
-        final Token userToken1 = tokenService.createToken("forUser1", false, adminAuthor, admin)
+        final Token userToken1 = tokenService.createToken("forUser1", false, null, adminAuthor, admin)
                                              .join().content();
-        final Token userToken2 = tokenService.createToken("forUser2", false, guestAuthor, guest)
+        final Token userToken2 = tokenService.createToken("forUser2", false, null, guestAuthor, guest)
                                              .join().content();
         assertThat(userToken1.isActive()).isTrue();
         assertThat(userToken2.isActive()).isTrue();
@@ -111,4 +111,21 @@ void userToken() {
             assertThat(t.deactivation()).isEqualTo(userToken2.deactivation());
         });
     }
+
+    @Test
+    void nonRandomToken() {
+        final Token token = tokenService.createToken("forAdmin1", true, "appToken-secret", adminAuthor,
+                                                     admin)
+                                        .join().content();
+        assertThat(token.isActive()).isTrue();
+
+        final Collection<Token> tokens = tokenService.listTokens(admin).join();
+        assertThat(tokens.stream().filter(t -> !StringUtil.isNullOrEmpty(t.secret()))).hasSize(1);
+
+        assertThatThrownBy(() -> tokenService.createToken("forUser1", true, "appToken-secret", guestAuthor,
+                                                          guest)
+                                             .join())
+                .isInstanceOf(IllegalArgumentException.class);
+        tokenService.deleteToken(ctx, "forAdmin1", adminAuthor, admin).join();
+    }
 }
diff --git a/server/src/test/java/com/linecorp/centraldogma/server/internal/replication/ZooKeeperCommandExecutorTest.java b/server/src/test/java/com/linecorp/centraldogma/server/internal/replication/ZooKeeperCommandExecutorTest.java
@@ -42,6 +42,7 @@
 
 import org.apache.curator.framework.recipes.locks.InterProcessSemaphoreV2;
 import org.junit.jupiter.api.Test;
+import org.junit.jupiter.api.Timeout;
 import org.junit.jupiter.api.function.ThrowingConsumer;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
@@ -254,6 +255,7 @@ void hierarchicalQuorums() throws Throwable {
     }
 
     @Test
+    @Timeout(120)
     void hierarchicalQuorumsWithFailOver() throws Throwable {
         try (Cluster cluster = Cluster.builder()
                                       .numReplicas(9)
