gitlab-org--gitlab-foss/lib/api/runners.rb

module API
  class Runners < Grape::API
    include PaginationParams

    before { authenticate! }

    resource :runners do
      desc 'Get runners available for user' do
        success Entities::Runner
      end
      params do
        optional :scope, type: String, values: %w[active paused online],
                         desc: 'The scope of specific runners to show'
        use :pagination
      end
      get do
        runners = filter_runners(current_user.ci_authorized_runners, params[:scope], without: %w(specific shared))
        present paginate(runners), with: Entities::Runner
      end

      desc 'Get all runners - shared and specific' do
        success Entities::Runner
      end
      params do
        optional :scope, type: String, values: %w[active paused online specific shared],
                         desc: 'The scope of specific runners to show'
        use :pagination
      end
      get 'all' do
        authenticated_as_admin!
        runners = filter_runners(Ci::Runner.all, params[:scope])
        present paginate(runners), with: Entities::Runner
      end

      desc "Get runner's details" do
        success Entities::RunnerDetails
      end
      params do
        requires :id, type: Integer, desc: 'The ID of the runner'
      end
      get ':id' do
        runner = get_runner(params[:id])
        authenticate_show_runner!(runner)

        present runner, with: Entities::RunnerDetails, current_user: current_user
      end

      desc "Update runner's details" do
        success Entities::RunnerDetails
      end
      params do
        requires :id, type: Integer, desc: 'The ID of the runner'
        optional :description, type: String, desc: 'The description of the runner'
        optional :active, type: Boolean, desc: 'The state of a runner'
        optional :tag_list, type: Array[String], desc: 'The list of tags for a runner'
        optional :run_untagged, type: Boolean, desc: 'Flag indicating the runner can execute untagged jobs'
        optional :locked, type: Boolean, desc: 'Flag indicating the runner is locked'
        optional :access_level, type: String, values: Ci::Runner.access_levels.keys,
                                desc: 'The access_level of the runner'
        at_least_one_of :description, :active, :tag_list, :run_untagged, :locked, :access_level
      end
      put ':id' do
        runner = get_runner(params.delete(:id))
        authenticate_update_runner!(runner)
        update_service = Ci::UpdateRunnerService.new(runner)

        if update_service.update(declared_params(include_missing: false))
          present runner, with: Entities::RunnerDetails, current_user: current_user
        else
          render_validation_error!(runner)
        end
      end

      desc 'Remove a runner' do
        success Entities::Runner
      end
      params do
        requires :id, type: Integer, desc: 'The ID of the runner'
      end
      delete ':id' do
        runner = get_runner(params[:id])

        authenticate_delete_runner!(runner)

        destroy_conditionally!(runner)
      end

      desc 'List jobs running on a runner' do
        success Entities::JobBasicWithProject
      end
      params do
        requires :id, type: Integer, desc: 'The ID of the runner'
        optional :status, type: String, desc: 'Status of the job', values: Ci::Build::AVAILABLE_STATUSES
        use :pagination
      end
      get  ':id/jobs' do
        runner = get_runner(params[:id])
        authenticate_list_runners_jobs!(runner)

        jobs = RunnerJobsFinder.new(runner, params).execute

        present paginate(jobs), with: Entities::JobBasicWithProject
      end
    end

    params do
      requires :id, type: String, desc: 'The ID of a project'
    end
    resource :projects, requirements: API::PROJECT_ENDPOINT_REQUIREMENTS do
      before { authorize_admin_project }

      desc 'Get runners available for project' do
        success Entities::Runner
      end
      params do
        optional :scope, type: String, values: %w[active paused online specific shared],
                         desc: 'The scope of specific runners to show'
        use :pagination
      end
      get ':id/runners' do
        runners = filter_runners(Ci::Runner.owned_or_shared(user_project.id), params[:scope])
        present paginate(runners), with: Entities::Runner
      end

      desc 'Enable a runner for a project' do
        success Entities::Runner
      end
      params do
        requires :runner_id, type: Integer, desc: 'The ID of the runner'
      end
      post ':id/runners' do
        runner = get_runner(params[:runner_id])
        authenticate_enable_runner!(runner)

        runner_project = runner.assign_to(user_project)

        if runner_project.persisted?
          present runner, with: Entities::Runner
        else
          conflict!("Runner was already enabled for this project")
        end
      end

      desc "Disable project's runner" do
        success Entities::Runner
      end
      params do
        requires :runner_id, type: Integer, desc: 'The ID of the runner'
      end
      delete ':id/runners/:runner_id' do
        runner_project = user_project.runner_projects.find_by(runner_id: params[:runner_id])
        not_found!('Runner') unless runner_project

        runner = runner_project.runner
        forbidden!("Only one project associated with the runner. Please remove the runner instead") if runner.projects.count == 1

        destroy_conditionally!(runner_project)
      end
    end

    helpers do
      def filter_runners(runners, scope, options = {})
        return runners unless scope.present?

        available_scopes = ::Ci::Runner::AVAILABLE_SCOPES
        if options[:without]
          available_scopes = available_scopes - options[:without]
        end

        if (available_scopes & [scope]).empty?
          render_api_error!('Scope contains invalid value', 400)
        end

        runners.public_send(scope) # rubocop:disable GitlabSecurity/PublicSend
      end

      def get_runner(id)
        runner = Ci::Runner.find(id)
        not_found!('Runner') unless runner
        runner
      end

      def authenticate_show_runner!(runner)
        return if runner.is_shared || current_user.admin?

        forbidden!("No access granted") unless user_can_access_runner?(runner)
      end

      def authenticate_update_runner!(runner)
        return if current_user.admin?

        forbidden!("Runner is shared") if runner.is_shared?
        forbidden!("No access granted") unless user_can_access_runner?(runner)
      end

      def authenticate_delete_runner!(runner)
        return if current_user.admin?

        forbidden!("Runner is shared") if runner.is_shared?
        forbidden!("Runner associated with more than one project") if runner.projects.count > 1
        forbidden!("No access granted") unless user_can_access_runner?(runner)
      end

      def authenticate_enable_runner!(runner)
        forbidden!("Runner is shared") if runner.is_shared?
        forbidden!("Runner is locked") if runner.locked?
        return if current_user.admin?

        forbidden!("No access granted") unless user_can_access_runner?(runner)
      end

      def authenticate_list_runners_jobs!(runner)
        return if current_user.admin?

        forbidden!("No access granted") unless user_can_access_runner?(runner)
      end

      def user_can_access_runner?(runner)
        current_user.ci_authorized_runners.exists?(runner.id)
      end
    end
  end
end
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`module API`
			`class Runners < Grape::API`
Use the pagination helper in the API 2016-12-04 12:11:19 -05:00			`include PaginationParams`

Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`before { authenticate! }`

			`resource :runners do`
Grapify runners API 2016-11-09 10:29:07 -05:00			`desc 'Get runners available for user' do`
			`success Entities::Runner`
			`end`
			`params do`
			`optional :scope, type: String, values: %w[active paused online],`
			`desc: 'The scope of specific runners to show'`
Use the pagination helper in the API 2016-12-04 12:11:19 -05:00			`use :pagination`
Grapify runners API 2016-11-09 10:29:07 -05:00			`end`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`get do`
Enable Style/WordArray 2017-02-22 12:46:57 -05:00			`runners = filter_runners(current_user.ci_authorized_runners, params[:scope], without: %w(specific shared))`
Split `/runners` entrypoint to `/runners` and `/runners/all` 2016-02-02 09:52:02 -05:00			`present paginate(runners), with: Entities::Runner`
			`end`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00
Grapify runners API 2016-11-09 10:29:07 -05:00			`desc 'Get all runners - shared and specific' do`
			`success Entities::Runner`
			`end`
			`params do`
			`optional :scope, type: String, values: %w[active paused online specific shared],`
			`desc: 'The scope of specific runners to show'`
Use the pagination helper in the API 2016-12-04 12:11:19 -05:00			`use :pagination`
Grapify runners API 2016-11-09 10:29:07 -05:00			`end`
Split `/runners` entrypoint to `/runners` and `/runners/all` 2016-02-02 09:52:02 -05:00			`get 'all' do`
			`authenticated_as_admin!`
			`runners = filter_runners(Ci::Runner.all, params[:scope])`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`present paginate(runners), with: Entities::Runner`
			`end`

Grapify runners API 2016-11-09 10:29:07 -05:00			`desc "Get runner's details" do`
			`success Entities::RunnerDetails`
			`end`
			`params do`
			`requires :id, type: Integer, desc: 'The ID of the runner'`
			`end`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`get ':id' do`
			`runner = get_runner(params[:id])`
Modify authentication check methods in runners API 2016-02-04 05:01:16 -05:00			`authenticate_show_runner!(runner)`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00
Modify runner projects selecting method in runners API 2016-02-10 06:26:56 -05:00			`present runner, with: Entities::RunnerDetails, current_user: current_user`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`end`

Grapify runners API 2016-11-09 10:29:07 -05:00			`desc "Update runner's details" do`
			`success Entities::RunnerDetails`
			`end`
			`params do`
			`requires :id, type: Integer, desc: 'The ID of the runner'`
			`optional :description, type: String, desc: 'The description of the runner'`
			`optional :active, type: Boolean, desc: 'The state of a runner'`
			`optional :tag_list, type: Array[String], desc: 'The list of tags for a runner'`
			`optional :run_untagged, type: Boolean, desc: 'Flag indicating the runner can execute untagged jobs'`
			`optional :locked, type: Boolean, desc: 'Flag indicating the runner is locked'`
Improve API arguments as String 2017-08-29 03:09:30 -04:00			`optional :access_level, type: String, values: Ci::Runner.access_levels.keys,`
			`desc: 'The access_level of the runner'`
Add API support 2017-08-23 12:28:57 -04:00			`at_least_one_of :description, :active, :tag_list, :run_untagged, :locked, :access_level`
Grapify runners API 2016-11-09 10:29:07 -05:00			`end`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`put ':id' do`
Grapify runners API 2016-11-09 10:29:07 -05:00			`runner = get_runner(params.delete(:id))`
Modify authentication check methods in runners API 2016-02-04 05:01:16 -05:00			`authenticate_update_runner!(runner)`
Use UpdateRunnerService to update runner in API: TODO: Add tests to make sure controllers and API would tick the queue. 2017-02-08 09:29:44 -05:00			`update_service = Ci::UpdateRunnerService.new(runner)`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00
Use UpdateRunnerService to update runner in API: TODO: Add tests to make sure controllers and API would tick the queue. 2017-02-08 09:29:44 -05:00			`if update_service.update(declared_params(include_missing: false))`
Modify and fix output of delete and update of a runner 2016-02-10 08:20:51 -05:00			`present runner, with: Entities::RunnerDetails, current_user: current_user`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`else`
			`render_validation_error!(runner)`
			`end`
			`end`

Grapify runners API 2016-11-09 10:29:07 -05:00			`desc 'Remove a runner' do`
			`success Entities::Runner`
			`end`
			`params do`
			`requires :id, type: Integer, desc: 'The ID of the runner'`
			`end`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`delete ':id' do`
			`runner = get_runner(params[:id])`
API: Respect the 'If-Unmodified-Since' for delete endpoints 2017-03-01 08:35:48 -05:00
Modify authentication check methods in runners API 2016-02-04 05:01:16 -05:00			`authenticate_delete_runner!(runner)`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00
Conditionally destroy a ressource 2017-03-02 07:14:13 -05:00			`destroy_conditionally!(runner)`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`end`
Add new API endpoint - list jobs of a specified runner 2017-11-16 11:12:33 -05:00
Add information about project 2017-11-16 13:44:14 -05:00			`desc 'List jobs running on a runner' do`
Modify output 2017-11-21 06:37:18 -05:00			`success Entities::JobBasicWithProject`
Add information about project 2017-11-16 13:44:14 -05:00			`end`
Add new API endpoint - list jobs of a specified runner 2017-11-16 11:12:33 -05:00			`params do`
			`requires :id, type: Integer, desc: 'The ID of the runner'`
Refactorize jobs finding logic 2017-11-27 16:59:01 -05:00			`optional :status, type: String, desc: 'Status of the job', values: Ci::Build::AVAILABLE_STATUSES`
Add new API endpoint - list jobs of a specified runner 2017-11-16 11:12:33 -05:00			`use :pagination`
			`end`
			`get ':id/jobs' do`
			`runner = get_runner(params[:id])`
			`authenticate_list_runners_jobs!(runner)`

Refactorize jobs finding logic 2017-11-27 16:59:01 -05:00			`jobs = RunnerJobsFinder.new(runner, params).execute`
Allow filtering by 'status' 2017-11-21 06:37:07 -05:00
Modify output 2017-11-21 06:37:18 -05:00			`present paginate(jobs), with: Entities::JobBasicWithProject`
Add new API endpoint - list jobs of a specified runner 2017-11-16 11:12:33 -05:00			`end`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`end`

Grapify runners API 2016-11-09 10:29:07 -05:00			`params do`
			`requires :id, type: String, desc: 'The ID of a project'`
			`end`
API: Use defined project requirements 2017-08-31 07:44:49 -04:00			`resource :projects, requirements: API::PROJECT_ENDPOINT_REQUIREMENTS do`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`before { authorize_admin_project }`

Grapify runners API 2016-11-09 10:29:07 -05:00			`desc 'Get runners available for project' do`
			`success Entities::Runner`
			`end`
			`params do`
			`optional :scope, type: String, values: %w[active paused online specific shared],`
			`desc: 'The scope of specific runners to show'`
Use the pagination helper in the API 2016-12-04 12:11:19 -05:00			`use :pagination`
Grapify runners API 2016-11-09 10:29:07 -05:00			`end`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`get ':id/runners' do`
			`runners = filter_runners(Ci::Runner.owned_or_shared(user_project.id), params[:scope])`
			`present paginate(runners), with: Entities::Runner`
			`end`
Add feature to enable/disable runner in project 2016-01-29 09:40:25 -05:00
Grapify runners API 2016-11-09 10:29:07 -05:00			`desc 'Enable a runner for a project' do`
			`success Entities::Runner`
			`end`
			`params do`
			`requires :runner_id, type: Integer, desc: 'The ID of the runner'`
			`end`
Move :runner_id param to POST body when enabling specific runner in project 2016-02-16 06:05:48 -05:00			`post ':id/runners' do`
Add feature to enable/disable runner in project 2016-01-29 09:40:25 -05:00			`runner = get_runner(params[:runner_id])`
Modify authentication check methods in runners API 2016-02-04 05:01:16 -05:00			`authenticate_enable_runner!(runner)`
Add feature to enable/disable runner in project 2016-01-29 09:40:25 -05:00
Return the association and check it in controller instead: Feedback: https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/4641#note_12444891 2016-06-14 11:11:43 -04:00			`runner_project = runner.assign_to(user_project)`

			`if runner_project.persisted?`
Give 409 Conflict whenever the runner was already enabled 2016-06-14 10:17:01 -04:00			`present runner, with: Entities::Runner`
			`else`
			`conflict!("Runner was already enabled for this project")`
			`end`
Add feature to enable/disable runner in project 2016-01-29 09:40:25 -05:00			`end`

Grapify runners API 2016-11-09 10:29:07 -05:00			`desc "Disable project's runner" do`
			`success Entities::Runner`
			`end`
			`params do`
			`requires :runner_id, type: Integer, desc: 'The ID of the runner'`
			`end`
Add feature to enable/disable runner in project 2016-01-29 09:40:25 -05:00			`delete ':id/runners/:runner_id' do`
			`runner_project = user_project.runner_projects.find_by(runner_id: params[:runner_id])`
			`not_found!('Runner') unless runner_project`

			`runner = runner_project.runner`
Modify authentication check methods in runners API 2016-02-04 05:01:16 -05:00			`forbidden!("Only one project associated with the runner. Please remove the runner instead") if runner.projects.count == 1`
Add feature to enable/disable runner in project 2016-01-29 09:40:25 -05:00
Conditionally destroy a ressource 2017-03-02 07:14:13 -05:00			`destroy_conditionally!(runner_project)`
Add feature to enable/disable runner in project 2016-01-29 09:40:25 -05:00			`end`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`end`

			`helpers do`
Fix runners filtering 2016-02-05 09:35:21 -05:00			`def filter_runners(runners, scope, options = {})`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`return runners unless scope.present?`

			`available_scopes = ::Ci::Runner::AVAILABLE_SCOPES`
Fix runners filtering 2016-02-05 09:35:21 -05:00			`if options[:without]`
			`available_scopes = available_scopes - options[:without]`
			`end`

Fix runners filtering in API 2016-01-29 10:44:29 -05:00			`if (available_scopes & [scope]).empty?`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`render_api_error!('Scope contains invalid value', 400)`
			`end`
Fix runners filtering in API 2016-01-29 10:44:29 -05:00
Whitelist or fix additional `Gitlab/PublicSend` cop violations An upcoming update to rubocop-gitlab-security added additional violations. 2017-08-10 12:39:26 -04:00			`runners.public_send(scope) # rubocop:disable GitlabSecurity/PublicSend`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`end`

			`def get_runner(id)`
			`runner = Ci::Runner.find(id)`
			`not_found!('Runner') unless runner`
			`runner`
			`end`

Modify authentication check methods in runners API 2016-02-04 05:01:16 -05:00			`def authenticate_show_runner!(runner)`
Remove the User#is_admin? method 2017-04-08 22:20:57 -04:00			`return if runner.is_shared \|\| current_user.admin?`
Adds Rubocop rule for line break after guard clause Adds a rubocop rule (with autocorrect) to ensure line break after guard clauses. 2017-11-14 04:02:39 -05:00
Modify authentication check methods in runners API 2016-02-04 05:01:16 -05:00			`forbidden!("No access granted") unless user_can_access_runner?(runner)`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`end`

Modify authentication check methods in runners API 2016-02-04 05:01:16 -05:00			`def authenticate_update_runner!(runner)`
Remove the User#is_admin? method 2017-04-08 22:20:57 -04:00			`return if current_user.admin?`
Adds Rubocop rule for line break after guard clause Adds a rubocop rule (with autocorrect) to ensure line break after guard clauses. 2017-11-14 04:02:39 -05:00
Modify authentication check methods in runners API 2016-02-04 05:01:16 -05:00			`forbidden!("Runner is shared") if runner.is_shared?`
			`forbidden!("No access granted") unless user_can_access_runner?(runner)`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`end`

Modify authentication check methods in runners API 2016-02-04 05:01:16 -05:00			`def authenticate_delete_runner!(runner)`
Remove the User#is_admin? method 2017-04-08 22:20:57 -04:00			`return if current_user.admin?`
Adds Rubocop rule for line break after guard clause Adds a rubocop rule (with autocorrect) to ensure line break after guard clauses. 2017-11-14 04:02:39 -05:00
Modify authentication check methods in runners API 2016-02-04 05:01:16 -05:00			`forbidden!("Runner is shared") if runner.is_shared?`
			`forbidden!("Runner associated with more than one project") if runner.projects.count > 1`
			`forbidden!("No access granted") unless user_can_access_runner?(runner)`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`end`

Modify authentication check methods in runners API 2016-02-04 05:01:16 -05:00			`def authenticate_enable_runner!(runner)`
			`forbidden!("Runner is shared") if runner.is_shared?`
Avoid enabling locked runners. Give 403 in this case 2016-06-14 10:58:38 -04:00			`forbidden!("Runner is locked") if runner.locked?`
Remove the User#is_admin? method 2017-04-08 22:20:57 -04:00			`return if current_user.admin?`
Adds Rubocop rule for line break after guard clause Adds a rubocop rule (with autocorrect) to ensure line break after guard clauses. 2017-11-14 04:02:39 -05:00
Modify authentication check methods in runners API 2016-02-04 05:01:16 -05:00			`forbidden!("No access granted") unless user_can_access_runner?(runner)`
Add feature to enable/disable runner in project 2016-01-29 09:40:25 -05:00			`end`

Add new API endpoint - list jobs of a specified runner 2017-11-16 11:12:33 -05:00			`def authenticate_list_runners_jobs!(runner)`
			`return if current_user.admin?`

			`forbidden!("No access granted") unless user_can_access_runner?(runner)`
			`end`

Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`def user_can_access_runner?(runner)`
Modify authentication check methods in runners API 2016-02-04 05:01:16 -05:00			`current_user.ci_authorized_runners.exists?(runner.id)`
Add basic runners management API - add feature to list runners - add feature to show runners details - add feature to delete runner - add feature to update runner 2016-01-26 11:03:38 -05:00			`end`
			`end`
			`end`
			`end`