RubyGems - aspera-cli - Versions diffs - 4.16.0 → 4.17.0 - Mend

aspera-cli 4.16.0 → 4.17.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (97) hide show

checksums.yaml +4 -4
checksums.yaml.gz.sig +0 -0
data/CHANGELOG.md +50 -19
data/CONTRIBUTING.md +3 -1
data/README.md +965 -793
data/bin/asession +29 -21
data/lib/aspera/{fasp/agent_alpha.rb → agent/alpha.rb} +26 -25
data/lib/aspera/{fasp/agent_base.rb → agent/base.rb} +15 -12
data/lib/aspera/{fasp/agent_connect.rb → agent/connect.rb} +13 -11
data/lib/aspera/{fasp/agent_direct.rb → agent/direct.rb} +49 -53
data/lib/aspera/{fasp/agent_httpgw.rb → agent/httpgw.rb} +20 -19
data/lib/aspera/{fasp/agent_node.rb → agent/node.rb} +20 -33
data/lib/aspera/{fasp/agent_trsdk.rb → agent/trsdk.rb} +11 -11
data/lib/aspera/api/aoc.rb +586 -0
data/lib/aspera/api/ats.rb +46 -0
data/lib/aspera/api/cos_node.rb +95 -0
data/lib/aspera/api/node.rb +344 -0
data/lib/aspera/ascmd.rb +46 -10
data/lib/aspera/{fasp → ascp}/installation.rb +5 -5
data/lib/aspera/{fasp → ascp}/management.rb +3 -8
data/lib/aspera/{fasp → ascp}/products.rb +1 -1
data/lib/aspera/assert.rb +30 -30
data/lib/aspera/cli/basic_auth_plugin.rb +11 -10
data/lib/aspera/cli/extended_value.rb +1 -1
data/lib/aspera/cli/formatter.rb +13 -13
data/lib/aspera/cli/hints.rb +5 -5
data/lib/aspera/cli/main.rb +35 -28
data/lib/aspera/cli/manager.rb +25 -24
data/lib/aspera/cli/plugin.rb +22 -15
data/lib/aspera/cli/plugin_factory.rb +61 -0
data/lib/aspera/cli/plugins/alee.rb +7 -7
data/lib/aspera/cli/plugins/aoc.rb +83 -77
data/lib/aspera/cli/plugins/ats.rb +32 -33
data/lib/aspera/cli/plugins/bss.rb +3 -4
data/lib/aspera/cli/plugins/config.rb +169 -186
data/lib/aspera/cli/plugins/console.rb +8 -6
data/lib/aspera/cli/plugins/cos.rb +19 -18
data/lib/aspera/cli/plugins/faspex.rb +61 -54
data/lib/aspera/cli/plugins/faspex5.rb +150 -103
data/lib/aspera/cli/plugins/node.rb +68 -73
data/lib/aspera/cli/plugins/orchestrator.rb +34 -44
data/lib/aspera/cli/plugins/preview.rb +31 -31
data/lib/aspera/cli/plugins/server.rb +31 -33
data/lib/aspera/cli/plugins/shares.rb +13 -11
data/lib/aspera/cli/sync_actions.rb +8 -8
data/lib/aspera/cli/transfer_agent.rb +32 -19
data/lib/aspera/cli/transfer_progress.rb +1 -1
data/lib/aspera/cli/version.rb +1 -1
data/lib/aspera/colors.rb +5 -0
data/lib/aspera/command_line_builder.rb +14 -14
data/lib/aspera/coverage.rb +1 -2
data/lib/aspera/data_repository.rb +1 -1
data/lib/aspera/environment.rb +2 -3
data/lib/aspera/faspex_gw.rb +5 -6
data/lib/aspera/faspex_postproc.rb +1 -1
data/lib/aspera/id_generator.rb +2 -2
data/lib/aspera/json_rpc.rb +5 -5
data/lib/aspera/keychain/encrypted_hash.rb +6 -6
data/lib/aspera/keychain/macos_security.rb +27 -22
data/lib/aspera/log.rb +2 -2
data/lib/aspera/nagios.rb +3 -3
data/lib/aspera/node_simulator.rb +5 -6
data/lib/aspera/oauth/base.rb +143 -0
data/lib/aspera/oauth/factory.rb +124 -0
data/lib/aspera/oauth/generic.rb +34 -0
data/lib/aspera/oauth/jwt.rb +51 -0
data/lib/aspera/oauth/url_json.rb +31 -0
data/lib/aspera/oauth/web.rb +50 -0
data/lib/aspera/oauth.rb +5 -331
data/lib/aspera/open_application.rb +7 -7
data/lib/aspera/persistency_action_once.rb +4 -4
data/lib/aspera/persistency_folder.rb +2 -2
data/lib/aspera/preview/generator.rb +5 -5
data/lib/aspera/preview/terminal.rb +3 -2
data/lib/aspera/preview/utils.rb +3 -3
data/lib/aspera/proxy_auto_config.rb +4 -4
data/lib/aspera/rest.rb +175 -144
data/lib/aspera/rest_errors_aspera.rb +3 -3
data/lib/aspera/resumer.rb +77 -0
data/lib/aspera/ssh.rb +6 -1
data/lib/aspera/{fasp → transfer}/error.rb +3 -3
data/lib/aspera/{fasp → transfer}/error_info.rb +1 -1
data/lib/aspera/{fasp → transfer}/faux_file.rb +1 -1
data/lib/aspera/{fasp → transfer}/parameters.rb +58 -89
data/lib/aspera/{fasp/transfer_spec.rb → transfer/spec.rb} +18 -16
data/lib/aspera/{fasp/parameters.yaml → transfer/spec.yaml} +4 -99
data/lib/aspera/{fasp → transfer}/sync.rb +32 -32
data/lib/aspera/{fasp → transfer}/uri.rb +9 -8
data/lib/aspera/web_server_simple.rb +11 -3
data.tar.gz.sig +0 -0
metadata +36 -63
metadata.gz.sig +0 -0
data/lib/aspera/aoc.rb +0 -601
data/lib/aspera/ats_api.rb +0 -47
data/lib/aspera/cos_node.rb +0 -94
data/lib/aspera/fasp/resume_policy.rb +0 -79
data/lib/aspera/node.rb +0 -339

data/lib/aspera/api/aoc.rb ADDED Viewed

@@ -0,0 +1,586 @@
+# frozen_string_literal: true
+require 'aspera/log'
+require 'aspera/assert'
+require 'aspera/rest'
+require 'aspera/hash_ext'
+require 'aspera/data_repository'
+require 'aspera/transfer/spec'
+require 'aspera/api/node'
+require 'base64'
+require 'cgi'
+module Aspera
+  module Api
+    class AoC < Aspera::Rest
+      PRODUCT_NAME = 'Aspera on Cloud'
+      DEFAULT_WORKSPACE = ''
+      # Production domain of AoC
+      PROD_DOMAIN = 'ibmaspera.com' # cspell:disable-line
+      # to avoid infinite loop in pub link redirection
+      MAX_AOC_URL_REDIRECT = 10
+      CLIENT_ID_PREFIX = 'aspera.'
+      # Well-known AoC globals client apps
+      GLOBAL_CLIENT_APPS = DataRepository::ELEMENTS.select{|i|i.to_s.start_with?(CLIENT_ID_PREFIX)}.freeze
+      # cookie prefix so that console can decode identity
+      COOKIE_PREFIX_CONSOLE_AOC = 'aspera.aoc'
+      # path in URL of public links
+      PUBLIC_LINK_PATHS = %w[/packages/public/receive /packages/public/send /files/public /public/files /public/package /public/send].freeze
+      JWT_AUDIENCE = 'https://api.asperafiles.com/api/v1/oauth2/token'
+      OAUTH_API_SUBPATH = 'api/v1/oauth2'
+      # minimum fields for user info if retrieval fails
+      USER_INFO_FIELDS_MIN = %w[name email id default_workspace_id organization_id].freeze
+      # types of events for shared folder creation
+      # Node events: permission.created permission.modified permission.deleted
+      PERMISSIONS_CREATED = ['permission.created'].freeze
+      private_constant :MAX_AOC_URL_REDIRECT,
+        :CLIENT_ID_PREFIX,
+        :GLOBAL_CLIENT_APPS,
+        :COOKIE_PREFIX_CONSOLE_AOC,
+        :PUBLIC_LINK_PATHS,
+        :JWT_AUDIENCE,
+        :OAUTH_API_SUBPATH,
+        :USER_INFO_FIELDS_MIN,
+        :PERMISSIONS_CREATED
+      # various API scopes supported
+      SCOPE_FILES_SELF = 'self'
+      SCOPE_FILES_USER = 'user:all'
+      SCOPE_FILES_ADMIN = 'admin:all'
+      SCOPE_FILES_ADMIN_USER = 'admin-user:all'
+      SCOPE_FILES_ADMIN_USER_USER = "#{SCOPE_FILES_ADMIN_USER}+#{SCOPE_FILES_USER}"
+      FILES_APP = 'files'
+      PACKAGES_APP = 'packages'
+      API_V1 = 'api/v1'
+      # class static methods
+      class << self
+        # strings /Applications/Aspera\ Drive.app/Contents/MacOS/AsperaDrive|grep -E '.{100}==$'|base64 --decode
+        def get_client_info(client_name=nil)
+          client_key = client_name.nil? ? GLOBAL_CLIENT_APPS.first : client_name.to_sym
+          return client_key, DataRepository.instance.item(client_key)
+        end
+        # base API url depends on domain, which could be "qa.xxx"
+        def api_base_url(organization: 'api', api_domain: PROD_DOMAIN)
+          return "https://#{organization}.#{api_domain}"
+        end
+        def metering_api(entitlement_id, customer_id, api_domain=PROD_DOMAIN)
+          return Rest.new(
+            base_url: "#{api_base_url(api_domain: api_domain)}/metering/v1",
+            headers:  {'X-Aspera-Entitlement-Authorization' => Rest.basic_token(entitlement_id, customer_id)}
+          )
+        end
+        # split host of http://myorg.asperafiles.com in org and domain
+        def url_parts(uri)
+          raise "No host found in URL.Please check URL format: https://myorg.#{PROD_DOMAIN}" if uri.host.nil?
+          parts = uri.host.split('.', 2)
+          Aspera.assert(parts.length == 2){"expecting a public FQDN for #{PRODUCT_NAME}"}
+          return parts
+        end
+        # @param url [String] URL of AoC public link
+        # @return [Hash] information about public link, or nil if not a public link
+        def link_info(url)
+          final_uri = Rest.new(base_url: url, redirect_max: MAX_AOC_URL_REDIRECT).read('')[:http].uri
+          raise 'AoC shall redirect to login page' if final_uri.query.nil?
+          decoded_query = Rest.decode_query(final_uri.query)
+          # is that a public link ?
+          if decoded_query.key?('token')
+            Log.log.warn{"Unknown pub link path: #{final_uri.path}"} unless PUBLIC_LINK_PATHS.include?(final_uri.path)
+            # ok we get it !
+            return {
+              instance_domain: url_parts(final_uri)[1],
+              url:             "https://#{final_uri.host}",
+              token:           decoded_query['token']
+            }
+          end
+          Log.log.debug{"path=#{final_uri.path} does not end with /login"} unless final_uri.path.end_with?('/login')
+          if decoded_query['state']
+            # can be a private link
+            state_uri = URI.parse(decoded_query['state'])
+            if state_uri.query && decoded_query['redirect_uri']
+              decoded_state = Rest.decode_query(state_uri.query)
+              if decoded_state.key?('short_link_url')
+                if (m = state_uri.path.match(%r{/files/workspaces/([0-9]+)/all/([0-9]+):([0-9]+)}))
+                  redirect_uri = URI.parse(decoded_query['redirect_uri'])
+                  parts = url_parts(redirect_uri)
+                  return {
+                    instance_domain: parts[1],
+                    organization:    parts[0],
+                    url:             "https://#{redirect_uri.host}",
+                    private_link:    {
+                      workspace_id: m[1],
+                      node_id:      m[2],
+                      file_id:      m[3]
+                    }
+                  }
+                end
+              end
+            end
+          end
+          parts = url_parts(URI.parse(url))
+          return {
+            instance_domain: parts[1],
+            organization:    parts[0]
+          }
+        end
+      end # static methods
+      attr_reader :private_link
+      def initialize(subpath: API_V1, url:, auth:, client_id: nil, client_secret: nil, scope: nil, redirect_uri: nil, private_key: nil, passphrase: nil, username: nil,
+        password: nil, workspace: nil, secret_finder: nil)
+        # test here because link may set url
+        raise ArgumentError, 'Missing mandatory option: url' if url.nil?
+        raise ArgumentError, 'Missing mandatory option: scope' if scope.nil?
+        # default values for client id
+        client_id, client_secret = self.class.get_client_info if client_id.nil?
+        # access key secrets are provided out of band to get node api access
+        # key: access key
+        # value: associated secret
+        @secret_finder = secret_finder
+        @workspace_name = workspace
+        @cache_user_info = nil
+        @cache_url_token_info = nil
+        @context_cache = nil
+        auth_params = {
+          type:          :oauth2,
+          client_id:     client_id,
+          client_secret: client_secret,
+          scope:         scope
+        }
+        # analyze type of url
+        url_info = AoC.link_info(url)
+        Log.log.debug{Log.dump(:url_info, url_info)}
+        @private_link = url_info[:private_link]
+        auth_params[:grant_method] = if url_info.key?(:token)
+          :url_json
+        else
+          raise ArgumentError, 'Missing mandatory option: auth' if auth.nil?
+          auth
+        end
+        # this is the base API url
+        api_url_base = self.class.api_base_url(api_domain: url_info[:instance_domain])
+        # auth URL
+        auth_params[:base_url] = "#{api_url_base}/#{OAUTH_API_SUBPATH}/#{url_info[:organization]}"
+        # fill other auth parameters based on OAuth method
+        case auth_params[:grant_method]
+        when :web
+          raise ArgumentError, 'Missing mandatory option: redirect_uri' if redirect_uri.nil?
+          auth_params[:redirect_uri] = redirect_uri
+        when :jwt
+          raise ArgumentError, 'Missing mandatory option: private_key' if private_key.nil?
+          raise ArgumentError, 'Missing mandatory option: username' if username.nil?
+          auth_params[:private_key_obj] = OpenSSL::PKey::RSA.new(private_key, passphrase)
+          auth_params[:payload] = {
+            iss: auth_params[:client_id], # issuer
+            sub: username, # subject
+            aud: JWT_AUDIENCE
+          }
+          # add jwt payload for global client id
+          auth_params[:payload][:org] = url_info[:organization] if GLOBAL_CLIENT_APPS.include?(auth_params[:client_id])
+        when :url_json
+          auth_params[:url] = {grant_type: 'url_token'} # URL arguments
+          auth_params[:json] = {url_token: url_info[:token]} # JSON body
+          # password protection of link
+          auth_params[:json][:password] = password unless password.nil?
+          # basic auth required for /token
+          auth_params[:auth] = {type: :basic, username: auth_params[:client_id], password: auth_params[:client_secret]}
+        else Aspera.error_unexpected_value(auth_params[:grant_method])
+        end
+        super(
+          base_url: "#{api_url_base}/#{subpath}",
+          auth: auth_params
+          )
+      end
+      def public_link
+        return nil unless auth_params[:grant_method].eql?(:url_json)
+        return @cache_url_token_info unless @cache_url_token_info.nil?
+        # TODO: can there be several in list ?
+        @cache_url_token_info = read('url_tokens')[:data].first
+        return @cache_url_token_info
+      end
+      def assert_public_link_types(expected)
+        Aspera.assert_values(public_link['purpose'], expected){'public link type'}
+      end
+      def additional_persistence_ids
+        return [current_user_info['id']] if public_link.nil?
+        return [] # TODO : public_link['id'] ?
+      end
+      # cached user information
+      def current_user_info(exception: false)
+        return @cache_user_info unless @cache_user_info.nil?
+        # get our user's default information
+        @cache_user_info =
+          begin
+            read('self')[:data]
+          rescue StandardError => e
+            raise e if exception
+            Log.log.debug{"ignoring error: #{e}"}
+            {}
+          end
+        USER_INFO_FIELDS_MIN.each{|f|@cache_user_info[f] = nil if @cache_user_info[f].nil?}
+        return @cache_user_info
+      end
+      # @param application [Symbol] :files or :packages
+      # @return [Hash] current context information: workspace, and home node/file if app is "Files"
+      def context(application = nil)
+        return @context_cache unless @context_cache.nil?
+        Aspera.assert(!application.nil?){'application must be set once'}
+        Aspera.assert_values(application, %i[files packages])
+        ws_id =
+          if !public_link.nil?
+            Log.log.debug('Using workspace of public link')
+            public_link['data']['workspace_id']
+          elsif !private_link.nil?
+            Log.log.debug('Using workspace of private link')
+            private_link[:workspace_id]
+          elsif @workspace_name.eql?(DEFAULT_WORKSPACE)
+            Log.log.debug('Using default workspace'.green)
+            raise 'User does not have default workspace, please specify workspace' if current_user_info['default_workspace_id'].nil?
+            current_user_info['default_workspace_id']
+          elsif @workspace_name.nil?
+            nil
+          else
+            lookup_by_name('workspaces', @workspace_name)['id']
+          end
+        ws_info =
+          if ws_id.nil?
+            nil
+          else
+            read("workspaces/#{ws_id}")[:data]
+          end
+        @context_cache = if ws_info.nil?
+          {
+            workspace_id:   nil,
+            workspace_name: 'Shared folders'
+          }
+        else
+          {
+            workspace_id:   ws_info['id'],
+            workspace_name: ws_info['name']
+          }
+        end
+        return @context_cache unless application.eql?(:files)
+        if !public_link.nil?
+          assert_public_link_types(['view_shared_file'])
+          @context_cache[:home_node_id] = public_link['data']['node_id']
+          @context_cache[:home_file_id] = public_link['data']['file_id']
+        elsif !private_link.nil?
+          @context_cache[:home_node_id] = private_link[:node_id]
+          @context_cache[:home_file_id] = private_link[:file_id]
+        elsif ws_info
+          @context_cache[:home_node_id] = ws_info['home_node_id']
+          @context_cache[:home_file_id] = ws_info['home_file_id']
+        else
+          # not part of any workspace, but has some folder shared
+          user_info = current_user_info(exception: true) rescue {'read_only_home_node_id' => nil, 'read_only_home_file_id' => nil}
+          @context_cache[:home_node_id] = user_info['read_only_home_node_id']
+          @context_cache[:home_file_id] = user_info['read_only_home_file_id']
+        end
+        raise "Cannot get user's home node id, check your default workspace or specify one" if @context_cache[:home_node_id].to_s.empty?
+        Log.log.debug{Log.dump(:context, @context_cache)}
+        return @context_cache
+      end
+      # @param node_id [String] identifier of node in AoC
+      # @param workspace_id [String] workspace identifier
+      # @param workspace_name [String] workspace name
+      # @param scope e.g. Node::SCOPE_USER, or nil (requires secret)
+      # @param package_info [Hash] created package information
+      # @returns [Node] a node API for access key
+      def node_api_from(node_id:, workspace_id: nil, workspace_name: nil, scope: Node::SCOPE_USER, package_info: nil)
+        Aspera.assert_type(node_id, String)
+        node_info = read("nodes/#{node_id}")[:data]
+        if workspace_name.nil? && !workspace_id.nil?
+          workspace_name = read("workspaces/#{workspace_id}")[:data]['name']
+        end
+        app_info = {
+          api:            self, # for callback
+          app:            package_info.nil? ? FILES_APP : PACKAGES_APP,
+          node_info:      node_info,
+          workspace_id:   workspace_id,
+          workspace_name: workspace_name
+        }
+        if PACKAGES_APP.eql?(app_info[:app])
+          raise 'package info required' if package_info.nil?
+          app_info[:package_id] = package_info['id']
+          app_info[:package_name] = package_info['name']
+        end
+        node_params = {base_url: node_info['url']}
+        # if secret is available
+        if scope.nil?
+          node_params[:auth] = {
+            type:     :basic,
+            username: node_info['access_key'],
+            password: @secret_finder&.lookup_secret(url: node_info['url'], username: node_info['access_key'], mandatory: true)
+          }
+        else
+          # OAuth bearer token
+          node_params[:auth] = auth_params.clone
+          node_params[:auth][:scope] = Node.token_scope(node_info['access_key'], scope)
+          # special header required for bearer token only
+          node_params[:headers] = {Node::HEADER_X_ASPERA_ACCESS_KEY => node_info['access_key']}
+        end
+        node_params[:app_info] = app_info
+        return Node.new(**node_params)
+      end
+      # Check metadata: remove when validation is done server side
+      def validate_metadata(pkg_data)
+        # validate only for shared inboxes
+        return unless pkg_data['recipients'].is_a?(Array) &&
+          pkg_data['recipients'].first.is_a?(Hash) &&
+          pkg_data['recipients'].first.key?('type') &&
+          pkg_data['recipients'].first['type'].eql?('dropbox')
+        meta_schema = read("dropboxes/#{pkg_data['recipients'].first['id']}")[:data]['metadata_schema']
+        if meta_schema.nil? || meta_schema.empty?
+          Log.log.debug('no metadata in shared inbox')
+          return
+        end
+        Aspera.assert(pkg_data.key?('metadata')){"package requires metadata: #{meta_schema}"}
+        pkg_meta = pkg_data['metadata']
+        Aspera.assert_type(pkg_meta, Array){'metadata'}
+        Log.log.debug{Log.dump(:metadata, pkg_meta)}
+        pkg_meta.each do |field|
+          Aspera.assert_type(field, Hash){'metadata field'}
+          Aspera.assert(field.key?('name')){'metadata field must have name'}
+          Aspera.assert(field.key?('values')){'metadata field must have values'}
+          Aspera.assert_type(field['values'], Array){'metadata field values'}
+          Aspera.assert(!meta_schema.none?{|i|i['name'].eql?(field['name'])}){"unknown metadata field: #{field['name']}"}
+        end
+        meta_schema.each do |field|
+          provided = pkg_meta.select{|i|i['name'].eql?(field['name'])}
+          raise "only one field with name #{field['name']} allowed" if provided.count > 1
+          raise "missing mandatory field: #{field['name']}" if field['required'] && provided.empty?
+        end
+      end
+      # Normalize package creation recipient lists as expected by AoC API
+      # AoC expects {type: , id: }, but ascli allows providing either the native values or just a name
+      # in that case, the name is resolved and replaced with {type: , id: }
+      # @param package_data The whole package creation payload
+      # @param recipient_list_field The field in structure, i.e. recipients or bcc_recipients
+      # @return nil package_data is modified
+      def resolve_package_recipients(package_data, ws_id, recipient_list_field, new_user_option)
+        return unless package_data.key?(recipient_list_field)
+        Aspera.assert_type(package_data[recipient_list_field], Array){recipient_list_field}
+        new_user_option = {'package_contact' => true} if new_user_option.nil?
+        Aspera.assert_type(new_user_option, Hash){'new_user_option'}
+        # list with resolved elements
+        resolved_list = []
+        package_data[recipient_list_field].each do |short_recipient_info|
+          case short_recipient_info
+          when Hash # native API information, check keys
+            Aspera.assert(short_recipient_info.keys.sort.eql?(%w[id type])){"#{recipient_list_field} element shall have fields: id and type"}
+          when String # CLI helper: need to resolve provided name to type/id
+            # email: user, else dropbox
+            entity_type = short_recipient_info.include?('@') ? 'contacts' : 'dropboxes'
+            begin
+              full_recipient_info = lookup_by_name(entity_type, short_recipient_info, {'current_workspace_id' => ws_id})
+            rescue RuntimeError => e
+              raise e unless e.message.start_with?(ENTITY_NOT_FOUND)
+              # dropboxes cannot be created on the fly
+              raise "No such shared inbox in workspace #{ws_id}" if entity_type.eql?('dropboxes')
+              # unknown user: create it as external user
+              full_recipient_info = create('contacts', {
+                'current_workspace_id' => ws_id,
+                'email'                => short_recipient_info
+              }.merge(new_user_option))[:data]
+            end
+            short_recipient_info = if entity_type.eql?('dropboxes')
+              {'id' => full_recipient_info['id'], 'type' => 'dropbox'}
+            else
+              {'id' => full_recipient_info['source_id'], 'type' => full_recipient_info['source_type']}
+            end
+          else # unexpected extended value, must be String or Hash
+            raise "#{recipient_list_field} item must be a String (email, shared inbox) or Hash (id,type)"
+          end # type of recipient info
+          # add original or resolved recipient info
+          resolved_list.push(short_recipient_info)
+        end
+        # replace with resolved elements
+        package_data[recipient_list_field] = resolved_list
+        return nil
+      end
+      # CLI allows simplified format for metadata: transform if necessary for API
+      def update_package_metadata_for_api(pkg_data)
+        case pkg_data['metadata']
+        when Array, NilClass # no action
+        when Hash
+          api_meta = []
+          pkg_data['metadata'].each do |k, v|
+            api_meta.push({
+              # 'input_type' => 'single-dropdown',
+              'name'   => k,
+              'values' => v.is_a?(Array) ? v : [v]
+            })
+          end
+          pkg_data['metadata'] = api_meta
+        else Aspera.error_unexpected_value(pkg_meta.class)
+        end
+        return nil
+      end
+      # create a package
+      # @param package_data [Hash] package creation (with extensions...)
+      # @param validate_meta [TrueClass,FalseClass] true to validate parameters locally
+      # @param new_user_option [Hash] options if an unknown user is specified
+      # @return transfer spec, node api and package information
+      def create_package_simple(package_data, validate_meta, new_user_option)
+        update_package_metadata_for_api(package_data)
+        # list of files to include in package, optional
+        # package_data['file_names']||=[..list of filenames to transfer...]
+        # lookup users
+        resolve_package_recipients(package_data, package_data['workspace_id'], 'recipients', new_user_option)
+        resolve_package_recipients(package_data, package_data['workspace_id'], 'bcc_recipients', new_user_option)
+        validate_metadata(package_data) if validate_meta
+        #  create a new package container
+        created_package = create('packages', package_data)[:data]
+        package_node_api = node_api_from(
+          node_id: created_package['node_id'],
+          workspace_id: created_package['workspace_id'],
+          package_info: created_package)
+        # tell AoC what to expect in package: 1 transfer (can also be done after transfer)
+        # TODO: if multi session was used we should probably tell
+        # also, currently no "multi-source" , i.e. only from client-side files, unless "node" agent is used
+        update("packages/#{created_package['id']}", {'sent' => true, 'transfers_expected' => 1})[:data]
+        return {
+          spec: package_node_api.transfer_spec_gen4(created_package['contents_file_id'], Transfer::Spec::DIRECTION_SEND),
+          node: package_node_api,
+          info: created_package
+        }
+      end
+      # Add transfer spec
+      # callback in Node (transfer_spec_gen4)
+      def add_ts_tags(transfer_spec:, app_info:)
+        # translate transfer direction to upload/download
+        transfer_type = Transfer::Spec.action(transfer_spec)
+        # Analytics tags
+        ################
+        transfer_spec.deep_merge!({
+          'tags' => {
+            Transfer::Spec::TAG_RESERVED => {
+              'usage_id' => "aspera.files.workspace.#{app_info[:workspace_id]}", # activity tracking
+              'files'    => {
+                'files_transfer_action' => "#{transfer_type}_#{app_info[:app].gsub(/s$/, '')}",
+                'workspace_name'        => app_info[:workspace_name], # activity tracking
+                'workspace_id'          => app_info[:workspace_id]
+              }
+            }
+          }
+        })
+        # Console cookie
+        ################
+        # we are sure that fields are not nil
+        cookie_elements = [app_info[:app], current_user_info['name'] || 'public link', current_user_info['email'] || 'none'].map{|e|Base64.strict_encode64(e)}
+        cookie_elements.unshift(COOKIE_PREFIX_CONSOLE_AOC)
+        transfer_spec['cookie'] = cookie_elements.join(':')
+        # Application tags
+        ##################
+        case app_info[:app]
+        when FILES_APP
+          file_id = transfer_spec['tags'][Transfer::Spec::TAG_RESERVED]['node']['file_id']
+          transfer_spec.deep_merge!({'tags' => {Transfer::Spec::TAG_RESERVED => {'files' => {'parentCwd' => "#{app_info[:node_info]['id']}:#{file_id}"}}}}) \
+            unless transfer_spec.key?('remote_access_key')
+        when PACKAGES_APP
+          transfer_spec.deep_merge!({
+            'tags' => {
+              Transfer::Spec::TAG_RESERVED => {
+                'files' => {
+                  'package_id'        => app_info[:package_id],
+                  'package_name'      => app_info[:package_name],
+                  'package_operation' => transfer_type
+                }
+              }
+            }
+          })
+        end
+        transfer_spec['tags'][Transfer::Spec::TAG_RESERVED]['files']['node_id'] = app_info[:node_info]['id']
+        transfer_spec['tags'][Transfer::Spec::TAG_RESERVED]['app'] = app_info[:app]
+      end
+      ID_AK_ADMIN = 'ASPERA_ACCESS_KEY_ADMIN'
+      # Callback from Plugins::Node
+      # add application specific tags to permissions creation
+      # @param create_param [Hash] parameters for creating permissions
+      # @param app_info [Hash] application information
+      def permissions_set_create_params(create_param:, app_info:)
+        # workspace shared folder:
+        # access_id = "#{ID_AK_ADMIN}_WS_#{app_info[:workspace_id]}"
+        default_params = {
+          # 'access_type'   => 'user', # mandatory: user or group
+          # 'access_id'     => access_id, # id of user or group
+          'tags' => {
+            Transfer::Spec::TAG_RESERVED => {
+              'files' => {
+                'workspace' => {
+                  'id'                => app_info[:workspace_id],
+                  'workspace_name'    => app_info[:workspace_name],
+                  'user_name'         => current_user_info['name'],
+                  'shared_by_user_id' => current_user_info['id'],
+                  'shared_by_name'    => current_user_info['name'],
+                  'shared_by_email'   => current_user_info['email'],
+                  # 'shared_with_name'  => access_id,
+                  'access_key'        => app_info[:node_info]['access_key'],
+                  'node'              => app_info[:node_info]['name']
+                }
+              }
+            }
+          }
+        }
+        create_param.deep_merge!(default_params)
+        if create_param.key?('with')
+          contact_info = lookup_by_name(
+            'contacts',
+            create_param['with'],
+            {'current_workspace_id' => app_info[:workspace_id], 'context' => 'share_folder'})
+          create_param.delete('with')
+          create_param['access_type'] = contact_info['source_type']
+          create_param['access_id'] = contact_info['source_id']
+          create_param['tags'][Transfer::Spec::TAG_RESERVED]['files']['workspace']['shared_with_name'] = contact_info['email']
+        end
+        # optional
+        app_info[:opt_link_name] = create_param.delete('link_name')
+      end
+      # Callback from Plugins::Node
+      # send shared folder event to AoC
+      # @param created_data [Hash] response from permission creation
+      # @param app_info [Hash] hash with app info
+      # @param types [Array] event types
+      def permissions_send_event(created_data:, app_info:, types: PERMISSIONS_CREATED)
+        Aspera.assert_type(types, Array)
+        Aspera.assert(!types.empty?)
+        event_creation = {
+          'types'        => types,
+          'node_id'      => app_info[:node_info]['id'],
+          'workspace_id' => app_info[:workspace_id],
+          'data'         => created_data
+        }
+        # (optional). The name of the folder to be displayed to the destination user.
+        # Use it if its value is different from the "share_as" field.
+        event_creation['link_name'] = app_info[:opt_link_name] unless app_info[:opt_link_name].nil?
+        create('events', event_creation)
+      end
+    end
+  end
+end

data/lib/aspera/api/ats.rb ADDED Viewed

@@ -0,0 +1,46 @@
+# frozen_string_literal: true
+require 'aspera/log'
+require 'aspera/rest'
+module Aspera
+  module Api
+    class Ats < Aspera::Rest
+      SERVICE_BASE_URL = 'https://ats.aspera.io'
+      # currently supported clouds
+      # Note to Aspera: shall be an API call
+      CLOUD_NAME = {
+        aws:       'Amazon Web Services',
+        azure:     'Microsoft Azure',
+        google:    'Google Cloud',
+        limelight: 'Limelight',
+        rackspace: 'Rackspace',
+        softlayer: 'IBM Cloud'
+      }.freeze
+      private_constant :CLOUD_NAME
+      def initialize
+        super(base_url: "#{SERVICE_BASE_URL}/pub/v1")
+        # cache of server data
+        @all_servers_cache = nil
+      end
+      def cloud_names; CLOUD_NAME; end
+      # all available ATS servers
+      # NOTE to Aspera: an API shall be created to retrieve all servers at once
+      def all_servers
+        if @all_servers_cache.nil?
+          @all_servers_cache = []
+          CLOUD_NAME.each_key do |name|
+            read("servers/#{name.to_s.upcase}")[:data].each do |i|
+              @all_servers_cache.push(i)
+            end
+          end
+        end
+        return @all_servers_cache
+      end
+    end
+  end
+end