package cloudmigrationimpl import ( "context" "encoding/base64" "fmt" "time" "github.com/grafana/grafana/pkg/infra/db" "github.com/grafana/grafana/pkg/services/cloudmigration" "github.com/grafana/grafana/pkg/services/secrets" "github.com/grafana/grafana/pkg/services/sqlstore" "github.com/grafana/grafana/pkg/util" ) var _ store = (*sqlStore)(nil) type sqlStore struct { db db.DB secretsService secrets.Service } func (ss *sqlStore) GetMigrationByUID(ctx context.Context, uid string) (*cloudmigration.CloudMigration, error) { var cm cloudmigration.CloudMigration err := ss.db.WithDbSession(ctx, func(sess *db.Session) error { exist, err := sess.Where("uid=?", uid).Get(&cm) if err != nil { return err } if !exist { return cloudmigration.ErrMigrationNotFound } return nil }) if err := ss.decryptToken(ctx, &cm); err != nil { return &cm, err } return &cm, err } func (ss *sqlStore) CreateMigrationRun(ctx context.Context, cmr cloudmigration.CloudMigrationRun) (string, error) { err := ss.db.WithDbSession(ctx, func(sess *db.Session) error { cmr.Created = time.Now() cmr.Updated = time.Now() cmr.Finished = time.Now() cmr.UID = util.GenerateShortUID() _, err := sess.Insert(&cmr) return err }) if err != nil { return "", err } return cmr.UID, nil } func (ss *sqlStore) CreateMigration(ctx context.Context, migration cloudmigration.CloudMigration) (*cloudmigration.CloudMigration, error) { if err := ss.encryptToken(ctx, &migration); err != nil { return nil, err } err := ss.db.WithDbSession(ctx, func(sess *sqlstore.DBSession) error { migration.Created = time.Now() migration.Updated = time.Now() migration.UID = util.GenerateShortUID() _, err := sess.Insert(&migration) if err != nil { return err } return nil }) if err != nil { return nil, err } return &migration, nil } func (ss *sqlStore) GetAllCloudMigrations(ctx context.Context) ([]*cloudmigration.CloudMigration, error) { var migrations = make([]*cloudmigration.CloudMigration, 0) err := ss.db.WithDbSession(ctx, func(sess *db.Session) error { return sess.Find(&migrations) }) if err != nil { return nil, err } for i := 0; i < len(migrations); i++ { m := migrations[i] if err := ss.decryptToken(ctx, m); err != nil { return migrations, err } } return migrations, nil } func (ss *sqlStore) DeleteMigration(ctx context.Context, uid string) (*cloudmigration.CloudMigration, error) { var c cloudmigration.CloudMigration err := ss.db.WithDbSession(ctx, func(sess *db.Session) error { exist, err := sess.Where("uid=?", uid).Get(&c) if err != nil { return err } if !exist { return cloudmigration.ErrMigrationNotFound } id := c.ID affected, err := sess.Delete(&cloudmigration.CloudMigration{ ID: id, }) if affected == 0 { return cloudmigration.ErrMigrationNotDeleted } return err }) return &c, err } func (ss *sqlStore) GetMigrationStatus(ctx context.Context, cmrUID string) (*cloudmigration.CloudMigrationRun, error) { var c cloudmigration.CloudMigrationRun err := ss.db.WithDbSession(ctx, func(sess *db.Session) error { exist, err := sess.Where("uid=?", cmrUID).Get(&c) if err != nil { return err } if !exist { return cloudmigration.ErrMigrationRunNotFound } return nil }) return &c, err } func (ss *sqlStore) GetMigrationStatusList(ctx context.Context, migrationUID string) ([]*cloudmigration.CloudMigrationRun, error) { var runs = make([]*cloudmigration.CloudMigrationRun, 0) err := ss.db.WithDbSession(ctx, func(sess *db.Session) error { return sess.Find(&runs, &cloudmigration.CloudMigrationRun{ CloudMigrationUID: migrationUID, }) }) if err != nil { return nil, err } return runs, nil } func (ss *sqlStore) encryptToken(ctx context.Context, cm *cloudmigration.CloudMigration) error { s, err := ss.secretsService.Encrypt(ctx, []byte(cm.AuthToken), secrets.WithoutScope()) if err != nil { return fmt.Errorf("encrypting auth token: %w", err) } cm.AuthToken = base64.StdEncoding.EncodeToString(s) return nil } func (ss *sqlStore) decryptToken(ctx context.Context, cm *cloudmigration.CloudMigration) error { decoded, err := base64.StdEncoding.DecodeString(cm.AuthToken) if err != nil { return fmt.Errorf("token could not be decoded") } t, err := ss.secretsService.Decrypt(ctx, decoded) if err != nil { return fmt.Errorf("decrypting auth token: %w", err) } cm.AuthToken = string(t) return nil }