mc/mcr
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
Files
0838bcbab2b1da8a4437985fabe1fe9ade53b4d5
mcr/internal/grpcserver/registry.go
Kyle Isom 758aa91bfc Migrate gRPC server to mcdsl grpcserver package 
Replace MCR's custom auth, admin, and logging interceptors with the
shared mcdsl grpcserver package. This eliminates ~110 lines of
interceptor code and uses the same method-map auth pattern used by
metacrypt.

Key changes:
- server.go: delegate to mcdslgrpc.New() for TLS, logging, and auth
- interceptors.go: replaced with MethodMap definition (public, auth-required, admin-required)
- Handler files: switch from auth.ClaimsFromContext to mcdslauth.TokenInfoFromContext
- auth/client.go: add Authenticator() accessor for the underlying mcdsl authenticator
- Tests: use mock MCIAS HTTP server instead of fakeValidator interface
- Vendor: add mcdsl/grpcserver to vendor directory

ListRepositories and GetRepository are now explicitly auth-required
(not admin-required), matching the REST API. Previously they were
implicitly auth-required by not being in the bypass or admin maps.

Security: method map uses default-deny -- unmapped RPCs are rejected.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-26 14:46:03 -07:00

205 lines
5.6 KiB
Go
Raw Blame History

package grpcserver
import (
"context"
"errors"
"fmt"
"time"
"google.golang.org/grpc/codes"
"google.golang.org/grpc/status"
"github.com/google/uuid"
mcdslauth "git.wntrmute.dev/kyle/mcdsl/auth"
pb "git.wntrmute.dev/kyle/mcr/gen/mcr/v1"
"git.wntrmute.dev/kyle/mcr/internal/db"
"git.wntrmute.dev/kyle/mcr/internal/gc"
)
// registryService implements pb.RegistryServiceServer.
type registryService struct {
pb.UnimplementedRegistryServiceServer
db *db.DB
collector *gc.Collector
gcStatus *GCStatus
auditFn AuditFunc
}
func (s *registryService) ListRepositories(_ context.Context, req *pb.ListRepositoriesRequest) (*pb.ListRepositoriesResponse, error) {
limit := int32(50)
offset := int32(0)
if req.GetPagination() != nil {
if req.Pagination.Limit > 0 {
limit = req.Pagination.Limit
}
if req.Pagination.Offset >= 0 {
offset = req.Pagination.Offset
}
}
repos, err := s.db.ListRepositoriesWithMetadata(int(limit), int(offset))
if err != nil {
return nil, status.Errorf(codes.Internal, "internal error")
}
var result []*pb.RepositoryMetadata
for _, r := range repos {
result = append(result, &pb.RepositoryMetadata{
Name: r.Name,
TagCount: int32(r.TagCount), //nolint:gosec // tag count fits int32
ManifestCount: int32(r.ManifestCount), //nolint:gosec // manifest count fits int32
TotalSize: r.TotalSize,
CreatedAt: r.CreatedAt,
})
}
return &pb.ListRepositoriesResponse{Repositories: result}, nil
}
func (s *registryService) GetRepository(_ context.Context, req *pb.GetRepositoryRequest) (*pb.GetRepositoryResponse, error) {
if req.GetName() == "" {
return nil, status.Errorf(codes.InvalidArgument, "repository name required")
}
detail, err := s.db.GetRepositoryDetail(req.Name)
if err != nil {
if errors.Is(err, db.ErrRepoNotFound) {
return nil, status.Errorf(codes.NotFound, "repository not found")
}
return nil, status.Errorf(codes.Internal, "internal error")
}
resp := &pb.GetRepositoryResponse{
Name: detail.Name,
TotalSize: detail.TotalSize,
CreatedAt: detail.CreatedAt,
}
for _, t := range detail.Tags {
resp.Tags = append(resp.Tags, &pb.TagInfo{
Name: t.Name,
Digest: t.Digest,
})
}
for _, m := range detail.Manifests {
resp.Manifests = append(resp.Manifests, &pb.ManifestInfo{
Digest: m.Digest,
MediaType: m.MediaType,
Size: m.Size,
CreatedAt: m.CreatedAt,
})
}
return resp, nil
}
func (s *registryService) DeleteRepository(ctx context.Context, req *pb.DeleteRepositoryRequest) (*pb.DeleteRepositoryResponse, error) {
if req.GetName() == "" {
return nil, status.Errorf(codes.InvalidArgument, "repository name required")
}
if err := s.db.DeleteRepository(req.Name); err != nil {
if errors.Is(err, db.ErrRepoNotFound) {
return nil, status.Errorf(codes.NotFound, "repository not found")
}
return nil, status.Errorf(codes.Internal, "internal error")
}
if s.auditFn != nil {
info := mcdslauth.TokenInfoFromContext(ctx)
actorID := ""
if info != nil {
actorID = info.Username
}
s.auditFn("repo_deleted", actorID, req.Name, "", "", nil)
}
return &pb.DeleteRepositoryResponse{}, nil
}
func (s *registryService) GarbageCollect(_ context.Context, _ *pb.GarbageCollectRequest) (*pb.GarbageCollectResponse, error) {
s.gcStatus.mu.Lock()
if s.gcStatus.running {
s.gcStatus.mu.Unlock()
return nil, status.Errorf(codes.AlreadyExists, "garbage collection already running")
}
s.gcStatus.running = true
s.gcStatus.mu.Unlock()
gcID := uuid.New().String()
// Run GC asynchronously like the REST handler. GC is a long-running
// background operation that must not be tied to the request context,
// so we intentionally use context.Background() inside runGC.
go s.runGC(gcID) //nolint:gosec // G118: GC must outlive the triggering RPC
return &pb.GarbageCollectResponse{Id: gcID}, nil
}
// runGC executes garbage collection in the background. It uses
// context.Background() because GC must not be cancelled when the
// triggering RPC completes.
func (s *registryService) runGC(gcID string) {
startedAt := time.Now().UTC().Format(time.RFC3339)
if s.auditFn != nil {
s.auditFn("gc_started", "", "", "", "", map[string]string{
"gc_id": gcID,
})
}
var blobsRemoved int
var bytesFreed int64
var gcErr error
if s.collector != nil {
r, err := s.collector.Run(context.Background()) //nolint:gosec // GC is intentionally background, not request-scoped
if err != nil {
gcErr = err
}
if r != nil {
blobsRemoved = r.BlobsRemoved
bytesFreed = r.BytesFreed
}
}
completedAt := time.Now().UTC().Format(time.RFC3339)
s.gcStatus.mu.Lock()
s.gcStatus.running = false
s.gcStatus.lastRun = &gcLastRun{
StartedAt: startedAt,
CompletedAt: completedAt,
BlobsRemoved: blobsRemoved,
BytesFreed: bytesFreed,
}
s.gcStatus.mu.Unlock()
if s.auditFn != nil && gcErr == nil {
details := map[string]string{
"gc_id": gcID,
"blobs_removed": fmt.Sprintf("%d", blobsRemoved),
"bytes_freed": fmt.Sprintf("%d", bytesFreed),
}
s.auditFn("gc_completed", "", "", "", "", details)
}
}
func (s *registryService) GetGCStatus(_ context.Context, _ *pb.GetGCStatusRequest) (*pb.GetGCStatusResponse, error) {
s.gcStatus.mu.Lock()
resp := &pb.GetGCStatusResponse{
Running: s.gcStatus.running,
}
if s.gcStatus.lastRun != nil {
resp.LastRun = &pb.GCLastRun{
StartedAt: s.gcStatus.lastRun.StartedAt,
CompletedAt: s.gcStatus.lastRun.CompletedAt,
BlobsRemoved: int32(s.gcStatus.lastRun.BlobsRemoved), //nolint:gosec // blob count fits int32
BytesFreed: s.gcStatus.lastRun.BytesFreed,
}
}
s.gcStatus.mu.Unlock()
return resp, nil
}
Reference in New Issue View Git Blame Copy Permalink