app/controllers/services_controller.rb from SUSE/rmt

app/controllers/services_controller.rb
Summary

Maintainability

0 mins
Test Coverage

Issues
require 'rmt'
require 'rmt/misc'
require 'active_support/builder'

class ServicesController < ApplicationController

  include ActionController::MimeResponds

  before_action :authenticate_system, only: %w[legacy_service]

  # The #show method was historically not being put behind an authentication
  # wall, but we have detected that Zypper follows the HTTP Basic authentication
  # mechanism whenever requested (even in this case). Thus, we can try to
  # authenticate requests on this method for Zypper so we have a better picture
  # which systems are still being active (even if not using SUSEConnect).
  before_action only: %w[show] do
    ua = request.headers['HTTP_USER_AGENT']

    # Zypper will never provide the `system_token` credentials for the system.
    # Hence, if there are duplicates, we will not be able to deterministically
    # tell which system is to be updated. Just skip it altogether on this case.
    authenticate_system(skip_on_duplicated: true) if ua && ua.downcase.starts_with?('zypp')
  end

  ZYPPER_SERVICE_TTL = 86400

  def show
    service = Service.find(params[:id])
    repos = service.repositories.exclude_installer_updates

    builder = Builder::XmlMarkup.new
    service_xml = builder.repoindex(ttl: ZYPPER_SERVICE_TTL) do
      # NOTE: We only care to add the ?credentials parameter to the repository URL if
      # we are *NOT* dealing with plain RMT but the authentication engine of Public Cloud.
      # The engine requires to supply the service name to function properly, since repositories
      # are authenticated in this case.
      service_name = defined?(StrictAuthentication::Engine) ? service.name : nil

      repos.each do |repo|
        attributes = {
          url: make_repo_url(request.base_url, repo.local_path, service_name),
          alias: repo.name,
          name: repo.name,
          autorefresh: repo.autorefresh,
          enabled: repo.enabled
        }

        builder.repo attributes
      end
    end

    render xml: service_xml
  rescue ActiveRecord::RecordNotFound
    untranslated = N_('Requested service not found')
    render(xml: { error: untranslated, localized_error: _(untranslated) }, status: 404) and return
  end

  def legacy_service
    repos = Repository.joins(services: :activations).where('activations.system_id' => @system.id, mirroring_enabled: true)

    builder = Builder::XmlMarkup.new
    service_xml = builder.repoindex do
      repos.each do |repo|
        attributes = {
          url: make_repo_url(
            request.base_url,
            repo.local_path,
            RMT::Misc.make_smt_service_name(request.base_url)
          ),
          alias: repo.name,
          name: repo.name,
          autorefresh: repo.autorefresh,
          enabled: repo.enabled
        }

        builder.repo attributes
      end
    end

    render xml: service_xml
  end

  protected

  # overridden by ZypperAuth plugin
  def make_repo_url(base_url, repo_local_path, service_name)
    RMT::Misc.make_repo_url(base_url, repo_local_path, service_name)
  end

end