RubyGems - aspera-cli - Versions diffs - 4.16.0 → 4.17.0 - Mend

aspera-cli 4.16.0 → 4.17.0

Files changed (97) hide show

checksums.yaml +4 -4
checksums.yaml.gz.sig +0 -0
data/CHANGELOG.md +50 -19
data/CONTRIBUTING.md +3 -1
data/README.md +965 -793
data/bin/asession +29 -21
data/lib/aspera/{fasp/agent_alpha.rb → agent/alpha.rb} +26 -25
data/lib/aspera/{fasp/agent_base.rb → agent/base.rb} +15 -12
data/lib/aspera/{fasp/agent_connect.rb → agent/connect.rb} +13 -11
data/lib/aspera/{fasp/agent_direct.rb → agent/direct.rb} +49 -53
data/lib/aspera/{fasp/agent_httpgw.rb → agent/httpgw.rb} +20 -19
data/lib/aspera/{fasp/agent_node.rb → agent/node.rb} +20 -33
data/lib/aspera/{fasp/agent_trsdk.rb → agent/trsdk.rb} +11 -11
data/lib/aspera/api/aoc.rb +586 -0
data/lib/aspera/api/ats.rb +46 -0
data/lib/aspera/api/cos_node.rb +95 -0
data/lib/aspera/api/node.rb +344 -0
data/lib/aspera/ascmd.rb +46 -10
data/lib/aspera/{fasp → ascp}/installation.rb +5 -5
data/lib/aspera/{fasp → ascp}/management.rb +3 -8
data/lib/aspera/{fasp → ascp}/products.rb +1 -1
data/lib/aspera/assert.rb +30 -30
data/lib/aspera/cli/basic_auth_plugin.rb +11 -10
data/lib/aspera/cli/extended_value.rb +1 -1
data/lib/aspera/cli/formatter.rb +13 -13
data/lib/aspera/cli/hints.rb +5 -5
data/lib/aspera/cli/main.rb +35 -28
data/lib/aspera/cli/manager.rb +25 -24
data/lib/aspera/cli/plugin.rb +22 -15
data/lib/aspera/cli/plugin_factory.rb +61 -0
data/lib/aspera/cli/plugins/alee.rb +7 -7
data/lib/aspera/cli/plugins/aoc.rb +83 -77
data/lib/aspera/cli/plugins/ats.rb +32 -33
data/lib/aspera/cli/plugins/bss.rb +3 -4
data/lib/aspera/cli/plugins/config.rb +169 -186
data/lib/aspera/cli/plugins/console.rb +8 -6
data/lib/aspera/cli/plugins/cos.rb +19 -18
data/lib/aspera/cli/plugins/faspex.rb +61 -54
data/lib/aspera/cli/plugins/faspex5.rb +150 -103
data/lib/aspera/cli/plugins/node.rb +68 -73
data/lib/aspera/cli/plugins/orchestrator.rb +34 -44
data/lib/aspera/cli/plugins/preview.rb +31 -31
data/lib/aspera/cli/plugins/server.rb +31 -33
data/lib/aspera/cli/plugins/shares.rb +13 -11
data/lib/aspera/cli/sync_actions.rb +8 -8
data/lib/aspera/cli/transfer_agent.rb +32 -19
data/lib/aspera/cli/transfer_progress.rb +1 -1
data/lib/aspera/cli/version.rb +1 -1
data/lib/aspera/colors.rb +5 -0
data/lib/aspera/command_line_builder.rb +14 -14
data/lib/aspera/coverage.rb +1 -2
data/lib/aspera/data_repository.rb +1 -1
data/lib/aspera/environment.rb +2 -3
data/lib/aspera/faspex_gw.rb +5 -6
data/lib/aspera/faspex_postproc.rb +1 -1
data/lib/aspera/id_generator.rb +2 -2
data/lib/aspera/json_rpc.rb +5 -5
data/lib/aspera/keychain/encrypted_hash.rb +6 -6
data/lib/aspera/keychain/macos_security.rb +27 -22
data/lib/aspera/log.rb +2 -2
data/lib/aspera/nagios.rb +3 -3
data/lib/aspera/node_simulator.rb +5 -6
data/lib/aspera/oauth/base.rb +143 -0
data/lib/aspera/oauth/factory.rb +124 -0
data/lib/aspera/oauth/generic.rb +34 -0
data/lib/aspera/oauth/jwt.rb +51 -0
data/lib/aspera/oauth/url_json.rb +31 -0
data/lib/aspera/oauth/web.rb +50 -0
data/lib/aspera/oauth.rb +5 -331
data/lib/aspera/open_application.rb +7 -7
data/lib/aspera/persistency_action_once.rb +4 -4
data/lib/aspera/persistency_folder.rb +2 -2
data/lib/aspera/preview/generator.rb +5 -5
data/lib/aspera/preview/terminal.rb +3 -2
data/lib/aspera/preview/utils.rb +3 -3
data/lib/aspera/proxy_auto_config.rb +4 -4
data/lib/aspera/rest.rb +175 -144
data/lib/aspera/rest_errors_aspera.rb +3 -3
data/lib/aspera/resumer.rb +77 -0
data/lib/aspera/ssh.rb +6 -1
data/lib/aspera/{fasp → transfer}/error.rb +3 -3
data/lib/aspera/{fasp → transfer}/error_info.rb +1 -1
data/lib/aspera/{fasp → transfer}/faux_file.rb +1 -1
data/lib/aspera/{fasp → transfer}/parameters.rb +58 -89
data/lib/aspera/{fasp/transfer_spec.rb → transfer/spec.rb} +18 -16
data/lib/aspera/{fasp/parameters.yaml → transfer/spec.yaml} +4 -99
data/lib/aspera/{fasp → transfer}/sync.rb +32 -32
data/lib/aspera/{fasp → transfer}/uri.rb +9 -8
data/lib/aspera/web_server_simple.rb +11 -3
data.tar.gz.sig +0 -0
metadata +36 -63
metadata.gz.sig +0 -0
data/lib/aspera/aoc.rb +0 -601
data/lib/aspera/ats_api.rb +0 -47
data/lib/aspera/cos_node.rb +0 -94
data/lib/aspera/fasp/resume_policy.rb +0 -79
data/lib/aspera/node.rb +0 -339

data/lib/aspera/api/aoc.rb ADDED Viewed

@@ -0,0 +1,586 @@
+# frozen_string_literal: true
+require 'aspera/log'
+require 'aspera/assert'
+require 'aspera/rest'
+require 'aspera/hash_ext'
+require 'aspera/data_repository'
+require 'aspera/transfer/spec'
+require 'aspera/api/node'
+require 'base64'
+require 'cgi'
+module Aspera
+  module Api
+    class AoC < Aspera::Rest
+      PRODUCT_NAME = 'Aspera on Cloud'
+      DEFAULT_WORKSPACE = ''
+      # Production domain of AoC
+      PROD_DOMAIN = 'ibmaspera.com' # cspell:disable-line
+      # to avoid infinite loop in pub link redirection
+      MAX_AOC_URL_REDIRECT = 10
+      CLIENT_ID_PREFIX = 'aspera.'
+      # Well-known AoC globals client apps
+      GLOBAL_CLIENT_APPS = DataRepository::ELEMENTS.select{|i|i.to_s.start_with?(CLIENT_ID_PREFIX)}.freeze
+      # cookie prefix so that console can decode identity
+      COOKIE_PREFIX_CONSOLE_AOC = 'aspera.aoc'
+      # path in URL of public links
+      PUBLIC_LINK_PATHS = %w[/packages/public/receive /packages/public/send /files/public /public/files /public/package /public/send].freeze
+      JWT_AUDIENCE = 'https://api.asperafiles.com/api/v1/oauth2/token'
+      OAUTH_API_SUBPATH = 'api/v1/oauth2'
+      # minimum fields for user info if retrieval fails
+      USER_INFO_FIELDS_MIN = %w[name email id default_workspace_id organization_id].freeze
+      # types of events for shared folder creation
+      # Node events: permission.created permission.modified permission.deleted
+      PERMISSIONS_CREATED = ['permission.created'].freeze
+      private_constant :MAX_AOC_URL_REDIRECT,
+        :CLIENT_ID_PREFIX,
+        :GLOBAL_CLIENT_APPS,
+        :COOKIE_PREFIX_CONSOLE_AOC,
+        :PUBLIC_LINK_PATHS,
+        :JWT_AUDIENCE,
+        :OAUTH_API_SUBPATH,
+        :USER_INFO_FIELDS_MIN,
+        :PERMISSIONS_CREATED
+      # various API scopes supported
+      SCOPE_FILES_SELF = 'self'
+      SCOPE_FILES_USER = 'user:all'
+      SCOPE_FILES_ADMIN = 'admin:all'
+      SCOPE_FILES_ADMIN_USER = 'admin-user:all'
+      SCOPE_FILES_ADMIN_USER_USER = "#{SCOPE_FILES_ADMIN_USER}+#{SCOPE_FILES_USER}"
+      FILES_APP = 'files'
+      PACKAGES_APP = 'packages'
+      API_V1 = 'api/v1'
+      # class static methods
+      class << self
+        # strings /Applications/Aspera\ Drive.app/Contents/MacOS/AsperaDrive|grep -E '.{100}==$'|base64 --decode
+        def get_client_info(client_name=nil)
+          client_key = client_name.nil? ? GLOBAL_CLIENT_APPS.first : client_name.to_sym
+          return client_key, DataRepository.instance.item(client_key)
+        end
+        # base API url depends on domain, which could be "qa.xxx"
+        def api_base_url(organization: 'api', api_domain: PROD_DOMAIN)
+          return "https://#{organization}.#{api_domain}"
+        end
+        def metering_api(entitlement_id, customer_id, api_domain=PROD_DOMAIN)
+          return Rest.new(
+            base_url: "#{api_base_url(api_domain: api_domain)}/metering/v1",
+            headers:  {'X-Aspera-Entitlement-Authorization' => Rest.basic_token(entitlement_id, customer_id)}
+          )
+        end
+        # split host of http://myorg.asperafiles.com in org and domain
+        def url_parts(uri)
+          raise "No host found in URL.Please check URL format: https://myorg.#{PROD_DOMAIN}" if uri.host.nil?
+          parts = uri.host.split('.', 2)
+          Aspera.assert(parts.length == 2){"expecting a public FQDN for #{PRODUCT_NAME}"}
+          return parts
+        end
+        # @param url [String] URL of AoC public link
+        # @return [Hash] information about public link, or nil if not a public link
+        def link_info(url)
+          final_uri = Rest.new(base_url: url, redirect_max: MAX_AOC_URL_REDIRECT).read('')[:http].uri
+          raise 'AoC shall redirect to login page' if final_uri.query.nil?
+          decoded_query = Rest.decode_query(final_uri.query)
+          # is that a public link ?
+          if decoded_query.key?('token')
+            Log.log.warn{"Unknown pub link path: #{final_uri.path}"} unless PUBLIC_LINK_PATHS.include?(final_uri.path)
+            # ok we get it !
+            return {
+              instance_domain: url_parts(final_uri)[1],
+              url:             "https://#{final_uri.host}",
+              token:           decoded_query['token']
+            }
+          end
+          Log.log.debug{"path=#{final_uri.path} does not end with /login"} unless final_uri.path.end_with?('/login')
+          if decoded_query['state']
+            # can be a private link
+            state_uri = URI.parse(decoded_query['state'])
+            if state_uri.query && decoded_query['redirect_uri']
+              decoded_state = Rest.decode_query(state_uri.query)
+              if decoded_state.key?('short_link_url')
+                if (m = state_uri.path.match(%r{/files/workspaces/([0-9]+)/all/([0-9]+):([0-9]+)}))
+                  redirect_uri = URI.parse(decoded_query['redirect_uri'])
+                  parts = url_parts(redirect_uri)
+                  return {
+                    instance_domain: parts[1],
+                    organization:    parts[0],
+                    url:             "https://#{redirect_uri.host}",
+                    private_link:    {
+                      workspace_id: m[1],
+                      node_id:      m[2],
+                      file_id:      m[3]
+                    }
+                  }
+                end
+              end
+            end
+          end
+          parts = url_parts(URI.parse(url))
+          return {
+            instance_domain: parts[1],
+            organization:    parts[0]
+          }
+        end
+      end # static methods
+      attr_reader :private_link
+      def initialize(subpath: API_V1, url:, auth:, client_id: nil, client_secret: nil, scope: nil, redirect_uri: nil, private_key: nil, passphrase: nil, username: nil,
+        password: nil, workspace: nil, secret_finder: nil)
+        # test here because link may set url
+        raise ArgumentError, 'Missing mandatory option: url' if url.nil?
+        raise ArgumentError, 'Missing mandatory option: scope' if scope.nil?
+        # default values for client id
+        client_id, client_secret = self.class.get_client_info if client_id.nil?
+        # access key secrets are provided out of band to get node api access
+        # key: access key
+        # value: associated secret
+        @secret_finder = secret_finder
+        @workspace_name = workspace
+        @cache_user_info = nil
+        @cache_url_token_info = nil
+        @context_cache = nil
+        auth_params = {
+          type:          :oauth2,
+          client_id:     client_id,
+          client_secret: client_secret,
+          scope:         scope
+        }
+        # analyze type of url
+        url_info = AoC.link_info(url)
+        Log.log.debug{Log.dump(:url_info, url_info)}
+        @private_link = url_info[:private_link]
+        auth_params[:grant_method] = if url_info.key?(:token)
+          :url_json
+        else
+          raise ArgumentError, 'Missing mandatory option: auth' if auth.nil?
+          auth
+        end
+        # this is the base API url
+        api_url_base = self.class.api_base_url(api_domain: url_info[:instance_domain])
+        # auth URL
+        auth_params[:base_url] = "#{api_url_base}/#{OAUTH_API_SUBPATH}/#{url_info[:organization]}"
+        # fill other auth parameters based on OAuth method
+        case auth_params[:grant_method]
+        when :web
+          raise ArgumentError, 'Missing mandatory option: redirect_uri' if redirect_uri.nil?
+          auth_params[:redirect_uri] = redirect_uri
+        when :jwt
+          raise ArgumentError, 'Missing mandatory option: private_key' if private_key.nil?
+          raise ArgumentError, 'Missing mandatory option: username' if username.nil?
+          auth_params[:private_key_obj] = OpenSSL::PKey::RSA.new(private_key, passphrase)
+          auth_params[:payload] = {
+            iss: auth_params[:client_id], # issuer
+            sub: username, # subject
+            aud: JWT_AUDIENCE
+          }
+          # add jwt payload for global client id
+          auth_params[:payload][:org] = url_info[:organization] if GLOBAL_CLIENT_APPS.include?(auth_params[:client_id])
+        when :url_json
+          auth_params[:url] = {grant_type: 'url_token'} # URL arguments
+          auth_params[:json] = {url_token: url_info[:token]} # JSON body
+          # password protection of link
+          auth_params[:json][:password] = password unless password.nil?
+          # basic auth required for /token
+          auth_params[:auth] = {type: :basic, username: auth_params[:client_id], password: auth_params[:client_secret]}
+        else Aspera.error_unexpected_value(auth_params[:grant_method])
+        end
+        super(
+          base_url: "#{api_url_base}/#{subpath}",
+          auth: auth_params
+          )
+      end
+      def public_link
+        return nil unless auth_params[:grant_method].eql?(:url_json)
+        return @cache_url_token_info unless @cache_url_token_info.nil?
+        # TODO: can there be several in list ?
+        @cache_url_token_info = read('url_tokens')[:data].first
+        return @cache_url_token_info
+      end
+      def assert_public_link_types(expected)
+        Aspera.assert_values(public_link['purpose'], expected){'public link type'}
+      end
+      def additional_persistence_ids
+        return [current_user_info['id']] if public_link.nil?
+        return [] # TODO : public_link['id'] ?
+      end
+      # cached user information
+      def current_user_info(exception: false)
+        return @cache_user_info unless @cache_user_info.nil?
+        # get our user's default information
+        @cache_user_info =
+          begin
+            read('self')[:data]
+          rescue StandardError => e
+            raise e if exception
+            Log.log.debug{"ignoring error: #{e}"}
+            {}
+          end
+        USER_INFO_FIELDS_MIN.each{|f|@cache_user_info[f] = nil if @cache_user_info[f].nil?}
+        return @cache_user_info
+      end
+      # @param application [Symbol] :files or :packages
+      # @return [Hash] current context information: workspace, and home node/file if app is "Files"
+      def context(application = nil)
+        return @context_cache unless @context_cache.nil?
+        Aspera.assert(!application.nil?){'application must be set once'}
+        Aspera.assert_values(application, %i[files packages])
+        ws_id =
+          if !public_link.nil?
+            Log.log.debug('Using workspace of public link')
+            public_link['data']['workspace_id']
+          elsif !private_link.nil?
+            Log.log.debug('Using workspace of private link')
+            private_link[:workspace_id]
+          elsif @workspace_name.eql?(DEFAULT_WORKSPACE)
+            Log.log.debug('Using default workspace'.green)
+            raise 'User does not have default workspace, please specify workspace' if current_user_info['default_workspace_id'].nil?
+            current_user_info['default_workspace_id']
+          elsif @workspace_name.nil?
+            nil
+          else
+            lookup_by_name('workspaces', @workspace_name)['id']
+          end
+        ws_info =
+          if ws_id.nil?
+            nil
+          else
+            read("workspaces/#{ws_id}")[:data]
+          end
+        @context_cache = if ws_info.nil?
+          {
+            workspace_id:   nil,
+            workspace_name: 'Shared folders'
+          }
+        else
+          {
+            workspace_id:   ws_info['id'],
+            workspace_name: ws_info['name']
+          }
+        end
+        return @context_cache unless application.eql?(:files)
+        if !public_link.nil?
+          assert_public_link_types(['view_shared_file'])
+          @context_cache[:home_node_id] = public_link['data']['node_id']
+          @context_cache[:home_file_id] = public_link['data']['file_id']
+        elsif !private_link.nil?
+          @context_cache[:home_node_id] = private_link[:node_id]
+          @context_cache[:home_file_id] = private_link[:file_id]
+        elsif ws_info
+          @context_cache[:home_node_id] = ws_info['home_node_id']
+          @context_cache[:home_file_id] = ws_info['home_file_id']
+        else
+          # not part of any workspace, but has some folder shared
+          user_info = current_user_info(exception: true) rescue {'read_only_home_node_id' => nil, 'read_only_home_file_id' => nil}
+          @context_cache[:home_node_id] = user_info['read_only_home_node_id']
+          @context_cache[:home_file_id] = user_info['read_only_home_file_id']
+        end
+        raise "Cannot get user's home node id, check your default workspace or specify one" if @context_cache[:home_node_id].to_s.empty?
+        Log.log.debug{Log.dump(:context, @context_cache)}
+        return @context_cache
+      end
+      # @param node_id [String] identifier of node in AoC
+      # @param workspace_id [String] workspace identifier
+      # @param workspace_name [String] workspace name
+      # @param scope e.g. Node::SCOPE_USER, or nil (requires secret)
+      # @param package_info [Hash] created package information
+      # @returns [Node] a node API for access key
+      def node_api_from(node_id:, workspace_id: nil, workspace_name: nil, scope: Node::SCOPE_USER, package_info: nil)
+        Aspera.assert_type(node_id, String)
+        node_info = read("nodes/#{node_id}")[:data]
+        if workspace_name.nil? && !workspace_id.nil?
+          workspace_name = read("workspaces/#{workspace_id}")[:data]['name']
+        end
+        app_info = {
+          api:            self, # for callback
+          app:            package_info.nil? ? FILES_APP : PACKAGES_APP,
+          node_info:      node_info,
+          workspace_id:   workspace_id,
+          workspace_name: workspace_name
+        }
+        if PACKAGES_APP.eql?(app_info[:app])
+          raise 'package info required' if package_info.nil?
+          app_info[:package_id] = package_info['id']
+          app_info[:package_name] = package_info['name']
+        end
+        node_params = {base_url: node_info['url']}
+        # if secret is available
+        if scope.nil?
+          node_params[:auth] = {
+            type:     :basic,
+            username: node_info['access_key'],
+            password: @secret_finder&.lookup_secret(url: node_info['url'], username: node_info['access_key'], mandatory: true)
+          }
+        else
+          # OAuth bearer token
+          node_params[:auth] = auth_params.clone
+          node_params[:auth][:scope] = Node.token_scope(node_info['access_key'], scope)
+          # special header required for bearer token only
+          node_params[:headers] = {Node::HEADER_X_ASPERA_ACCESS_KEY => node_info['access_key']}
+        end
+        node_params[:app_info] = app_info
+        return Node.new(**node_params)
+      end
+      # Check metadata: remove when validation is done server side
+      def validate_metadata(pkg_data)
+        # validate only for shared inboxes
+        return unless pkg_data['recipients'].is_a?(Array) &&
+          pkg_data['recipients'].first.is_a?(Hash) &&
+          pkg_data['recipients'].first.key?('type') &&
+          pkg_data['recipients'].first['type'].eql?('dropbox')
+        meta_schema = read("dropboxes/#{pkg_data['recipients'].first['id']}")[:data]['metadata_schema']
+        if meta_schema.nil? || meta_schema.empty?
+          Log.log.debug('no metadata in shared inbox')
+          return
+        end
+        Aspera.assert(pkg_data.key?('metadata')){"package requires metadata: #{meta_schema}"}
+        pkg_meta = pkg_data['metadata']
+        Aspera.assert_type(pkg_meta, Array){'metadata'}
+        Log.log.debug{Log.dump(:metadata, pkg_meta)}
+        pkg_meta.each do |field|
+          Aspera.assert_type(field, Hash){'metadata field'}
+          Aspera.assert(field.key?('name')){'metadata field must have name'}
+          Aspera.assert(field.key?('values')){'metadata field must have values'}
+          Aspera.assert_type(field['values'], Array){'metadata field values'}
+          Aspera.assert(!meta_schema.none?{|i|i['name'].eql?(field['name'])}){"unknown metadata field: #{field['name']}"}
+        end
+        meta_schema.each do |field|
+          provided = pkg_meta.select{|i|i['name'].eql?(field['name'])}
+          raise "only one field with name #{field['name']} allowed" if provided.count > 1
+          raise "missing mandatory field: #{field['name']}" if field['required'] && provided.empty?
+        end
+      end
+      # Normalize package creation recipient lists as expected by AoC API
+      # AoC expects {type: , id: }, but ascli allows providing either the native values or just a name
+      # in that case, the name is resolved and replaced with {type: , id: }
+      # @param package_data The whole package creation payload
+      # @param recipient_list_field The field in structure, i.e. recipients or bcc_recipients
+      # @return nil package_data is modified
+      def resolve_package_recipients(package_data, ws_id, recipient_list_field, new_user_option)
+        return unless package_data.key?(recipient_list_field)
+        Aspera.assert_type(package_data[recipient_list_field], Array){recipient_list_field}
+        new_user_option = {'package_contact' => true} if new_user_option.nil?
+        Aspera.assert_type(new_user_option, Hash){'new_user_option'}
+        # list with resolved elements
+        resolved_list = []
+        package_data[recipient_list_field].each do |short_recipient_info|
+          case short_recipient_info
+          when Hash # native API information, check keys
+            Aspera.assert(short_recipient_info.keys.sort.eql?(%w[id type])){"#{recipient_list_field} element shall have fields: id and type"}
+          when String # CLI helper: need to resolve provided name to type/id
+            # email: user, else dropbox
+            entity_type = short_recipient_info.include?('@') ? 'contacts' : 'dropboxes'
+            begin
+              full_recipient_info = lookup_by_name(entity_type, short_recipient_info, {'current_workspace_id' => ws_id})
+            rescue RuntimeError => e
+              raise e unless e.message.start_with?(ENTITY_NOT_FOUND)
+              # dropboxes cannot be created on the fly
+              raise "No such shared inbox in workspace #{ws_id}" if entity_type.eql?('dropboxes')
+              # unknown user: create it as external user
+              full_recipient_info = create('contacts', {
+                'current_workspace_id' => ws_id,
+                'email'                => short_recipient_info
+              }.merge(new_user_option))[:data]
+            end
+            short_recipient_info = if entity_type.eql?('dropboxes')
+              {'id' => full_recipient_info['id'], 'type' => 'dropbox'}
+            else
+              {'id' => full_recipient_info['source_id'], 'type' => full_recipient_info['source_type']}
+            end
+          else # unexpected extended value, must be String or Hash
+            raise "#{recipient_list_field} item must be a String (email, shared inbox) or Hash (id,type)"
+          end # type of recipient info
+          # add original or resolved recipient info
+          resolved_list.push(short_recipient_info)
+        end
+        # replace with resolved elements
+        package_data[recipient_list_field] = resolved_list
+        return nil
+      end
+      # CLI allows simplified format for metadata: transform if necessary for API
+      def update_package_metadata_for_api(pkg_data)
+        case pkg_data['metadata']
+        when Array, NilClass # no action
+        when Hash
+          api_meta = []
+          pkg_data['metadata'].each do |k, v|
+            api_meta.push({
+              # 'input_type' => 'single-dropdown',
+              'name'   => k,
+              'values' => v.is_a?(Array) ? v : [v]
+            })
+          end
+          pkg_data['metadata'] = api_meta
+        else Aspera.error_unexpected_value(pkg_meta.class)
+        end
+        return nil
+      end
+      # create a package
+      # @param package_data [Hash] package creation (with extensions...)
+      # @param validate_meta [TrueClass,FalseClass] true to validate parameters locally
+      # @param new_user_option [Hash] options if an unknown user is specified
+      # @return transfer spec, node api and package information
+      def create_package_simple(package_data, validate_meta, new_user_option)
+        update_package_metadata_for_api(package_data)
+        # list of files to include in package, optional
+        # package_data['file_names']||=[..list of filenames to transfer...]
+        # lookup users
+        resolve_package_recipients(package_data, package_data['workspace_id'], 'recipients', new_user_option)
+        resolve_package_recipients(package_data, package_data['workspace_id'], 'bcc_recipients', new_user_option)
+        validate_metadata(package_data) if validate_meta
+        #  create a new package container
+        created_package = create('packages', package_data)[:data]
+        package_node_api = node_api_from(
+          node_id: created_package['node_id'],
+          workspace_id: created_package['workspace_id'],
+          package_info: created_package)
+        # tell AoC what to expect in package: 1 transfer (can also be done after transfer)
+        # TODO: if multi session was used we should probably tell
+        # also, currently no "multi-source" , i.e. only from client-side files, unless "node" agent is used
+        update("packages/#{created_package['id']}", {'sent' => true, 'transfers_expected' => 1})[:data]
+        return {
+          spec: package_node_api.transfer_spec_gen4(created_package['contents_file_id'], Transfer::Spec::DIRECTION_SEND),
+          node: package_node_api,
+          info: created_package
+        }
+      end
+      # Add transfer spec
+      # callback in Node (transfer_spec_gen4)
+      def add_ts_tags(transfer_spec:, app_info:)
+        # translate transfer direction to upload/download
+        transfer_type = Transfer::Spec.action(transfer_spec)
+        # Analytics tags
+        ################
+        transfer_spec.deep_merge!({
+          'tags' => {
+            Transfer::Spec::TAG_RESERVED => {
+              'usage_id' => "aspera.files.workspace.#{app_info[:workspace_id]}", # activity tracking
+              'files'    => {
+                'files_transfer_action' => "#{transfer_type}_#{app_info[:app].gsub(/s$/, '')}",
+                'workspace_name'        => app_info[:workspace_name], # activity tracking
+                'workspace_id'          => app_info[:workspace_id]
+              }
+            }
+          }
+        })
+        # Console cookie
+        ################
+        # we are sure that fields are not nil
+        cookie_elements = [app_info[:app], current_user_info['name'] || 'public link', current_user_info['email'] || 'none'].map{|e|Base64.strict_encode64(e)}
+        cookie_elements.unshift(COOKIE_PREFIX_CONSOLE_AOC)
+        transfer_spec['cookie'] = cookie_elements.join(':')
+        # Application tags
+        ##################
+        case app_info[:app]
+        when FILES_APP
+          file_id = transfer_spec['tags'][Transfer::Spec::TAG_RESERVED]['node']['file_id']
+          transfer_spec.deep_merge!({'tags' => {Transfer::Spec::TAG_RESERVED => {'files' => {'parentCwd' => "#{app_info[:node_info]['id']}:#{file_id}"}}}}) \
+            unless transfer_spec.key?('remote_access_key')
+        when PACKAGES_APP
+          transfer_spec.deep_merge!({
+            'tags' => {
+              Transfer::Spec::TAG_RESERVED => {
+                'files' => {
+                  'package_id'        => app_info[:package_id],
+                  'package_name'      => app_info[:package_name],
+                  'package_operation' => transfer_type
+                }
+              }
+            }
+          })
+        end
+        transfer_spec['tags'][Transfer::Spec::TAG_RESERVED]['files']['node_id'] = app_info[:node_info]['id']
+        transfer_spec['tags'][Transfer::Spec::TAG_RESERVED]['app'] = app_info[:app]
+      end
+      ID_AK_ADMIN = 'ASPERA_ACCESS_KEY_ADMIN'
+      # Callback from Plugins::Node
+      # add application specific tags to permissions creation
+      # @param create_param [Hash] parameters for creating permissions
+      # @param app_info [Hash] application information
+      def permissions_set_create_params(create_param:, app_info:)
+        # workspace shared folder:
+        # access_id = "#{ID_AK_ADMIN}_WS_#{app_info[:workspace_id]}"
+        default_params = {
+          # 'access_type'   => 'user', # mandatory: user or group
+          # 'access_id'     => access_id, # id of user or group
+          'tags' => {
+            Transfer::Spec::TAG_RESERVED => {
+              'files' => {
+                'workspace' => {
+                  'id'                => app_info[:workspace_id],
+                  'workspace_name'    => app_info[:workspace_name],
+                  'user_name'         => current_user_info['name'],
+                  'shared_by_user_id' => current_user_info['id'],
+                  'shared_by_name'    => current_user_info['name'],
+                  'shared_by_email'   => current_user_info['email'],
+                  # 'shared_with_name'  => access_id,
+                  'access_key'        => app_info[:node_info]['access_key'],
+                  'node'              => app_info[:node_info]['name']
+                }
+              }
+            }
+          }
+        }
+        create_param.deep_merge!(default_params)
+        if create_param.key?('with')
+          contact_info = lookup_by_name(
+            'contacts',
+            create_param['with'],
+            {'current_workspace_id' => app_info[:workspace_id], 'context' => 'share_folder'})
+          create_param.delete('with')
+          create_param['access_type'] = contact_info['source_type']
+          create_param['access_id'] = contact_info['source_id']
+          create_param['tags'][Transfer::Spec::TAG_RESERVED]['files']['workspace']['shared_with_name'] = contact_info['email']
+        end
+        # optional
+        app_info[:opt_link_name] = create_param.delete('link_name')
+      end
+      # Callback from Plugins::Node
+      # send shared folder event to AoC
+      # @param created_data [Hash] response from permission creation
+      # @param app_info [Hash] hash with app info
+      # @param types [Array] event types
+      def permissions_send_event(created_data:, app_info:, types: PERMISSIONS_CREATED)
+        Aspera.assert_type(types, Array)
+        Aspera.assert(!types.empty?)
+        event_creation = {
+          'types'        => types,
+          'node_id'      => app_info[:node_info]['id'],
+          'workspace_id' => app_info[:workspace_id],
+          'data'         => created_data
+        }
+        # (optional). The name of the folder to be displayed to the destination user.
+        # Use it if its value is different from the "share_as" field.
+        event_creation['link_name'] = app_info[:opt_link_name] unless app_info[:opt_link_name].nil?
+        create('events', event_creation)
+      end
+    end
+  end
+end

data/lib/aspera/api/ats.rb ADDED Viewed

@@ -0,0 +1,46 @@
+# frozen_string_literal: true
+require 'aspera/log'
+require 'aspera/rest'
+module Aspera
+  module Api
+    class Ats < Aspera::Rest
+      SERVICE_BASE_URL = 'https://ats.aspera.io'
+      # currently supported clouds
+      # Note to Aspera: shall be an API call
+      CLOUD_NAME = {
+        aws:       'Amazon Web Services',
+        azure:     'Microsoft Azure',
+        google:    'Google Cloud',
+        limelight: 'Limelight',
+        rackspace: 'Rackspace',
+        softlayer: 'IBM Cloud'
+      }.freeze
+      private_constant :CLOUD_NAME
+      def initialize
+        super(base_url: "#{SERVICE_BASE_URL}/pub/v1")
+        # cache of server data
+        @all_servers_cache = nil
+      end
+      def cloud_names; CLOUD_NAME; end
+      # all available ATS servers
+      # NOTE to Aspera: an API shall be created to retrieve all servers at once
+      def all_servers
+        if @all_servers_cache.nil?
+          @all_servers_cache = []
+          CLOUD_NAME.each_key do |name|
+            read("servers/#{name.to_s.upcase}")[:data].each do |i|
+              @all_servers_cache.push(i)
+            end
+          end
+        end
+        return @all_servers_cache
+      end
+    end
+  end
+end