public async Task <IActionResult> CreateCloudProviderService(Guid organizationId, [FromBody] OrganizationCPSPostRp organizationCPSRp) { if (!ModelState.IsValid) { return(this.BadRequest(ModelState)); } if (organizationCPSRp.Type == Domain.Models.CloudProviderService.AWS && string.IsNullOrEmpty(organizationCPSRp.AccessSecret)) { ModelState.AddModelError("", "Access Secret is required"); return(this.BadRequest(ModelState)); } if (organizationCPSRp.Type == Domain.Models.CloudProviderService.Azure) { if (string.IsNullOrEmpty(organizationCPSRp.AccessName)) { ModelState.AddModelError("", "Subscription Name is required"); } if (string.IsNullOrEmpty(organizationCPSRp.AccessAppId)) { ModelState.AddModelError("", "Application Id is required"); } if (string.IsNullOrEmpty(organizationCPSRp.AccessAppSecret)) { ModelState.AddModelError("", "Application Secret is required"); } if (string.IsNullOrEmpty(organizationCPSRp.AccessDirectory)) { ModelState.AddModelError("", "Directory is required"); } if (ModelState.ErrorCount > 0) { return(this.BadRequest(ModelState)); } } await _organizationCPSService.CreateCloudProviderService(organizationId, organizationCPSRp); if (_domainManagerService.HasNotFounds()) { return(this.NotFound(_domainManagerService.GetForbidden())); } if (_domainManagerService.HasForbidden()) { return(this.Forbidden(_domainManagerService.GetForbidden())); } if (_domainManagerService.HasConflicts()) { return(this.Conflict(_domainManagerService.GetConflicts())); } return(this.Ok()); }
public async Task CreateCloudProviderService(Guid organizationId, OrganizationCPSPostRp resource) { string loggedUserId = _identityService.GetUserId(); User user = await _userRepository.GetUser(loggedUserId); Organization organization = user.FindOrganizationById(organizationId); if (organization == null) { await _domainManagerService.AddNotFound($"The organzation with id {organizationId} does not exists."); return; } PipelineRole role = user.GetRoleInOrganization(organizationId); if (role != PipelineRole.OrganizationAdmin) { await _domainManagerService.AddForbidden($"You are not authorized to create settings in this organization."); return; } //OrganizationCPS organizationCPS = organization.GetCloudProviderServiceByType(resource.Type); //if (organizationCPS != null) //{ // await _domainManagerService.AddConflict($"The cloud provider service with type {resource.Type} already exists."); // return; //} OrganizationCPS existingCSP = organization.GetCloudProviderServiceByName(resource.Name); if (existingCSP != null) { await _domainManagerService.AddConflict($"The cloud provider service {resource.Name} has already been taken."); return; } bool validCredentials = await _cpsCredentialService(resource.Type).ValidateCredentials(resource.AccessId, resource.AccessName, resource.AccessSecret, resource.AccessAppId, resource.AccessAppSecret, resource.AccessDirectory, resource.AccessRegion); if (!validCredentials) { if (resource.Type == CloudProviderService.AWS) { await _domainManagerService.AddConflict($"The credentials are not valid"); } else { await _domainManagerService.AddConflict($"The credentials are not valid or the client does not have enough privileges"); } return; } user.AddCloudProviderService(organizationId, resource.Name, resource.Type, _dataProtectorService.Protect(resource.AccessId), _dataProtectorService.Protect(resource.AccessName), _dataProtectorService.Protect(resource.AccessSecret), _dataProtectorService.Protect(resource.AccessAppId), _dataProtectorService.Protect(resource.AccessAppSecret), _dataProtectorService.Protect(resource.AccessDirectory), _dataProtectorService.Protect(resource.AccessRegion)); _userRepository.Update(user); await _userRepository.SaveChanges(); }