mirror of
https://github.com/apidoorman/doorman.git
synced 2026-05-02 06:09:40 -05:00
seniorswe
167 lines
6.7 KiB
Python
167 lines
6.7 KiB
Python
"""
|
|
The contents of this file are property of doorman.so
|
|
Review the Apache License 2.0 for valid authorization of use
|
|
See https://github.com/pypeople-dev/doorman for more information
|
|
"""
|
|
|
|
from pymongo import MongoClient, IndexModel, ASCENDING
|
|
from utils import password_util
|
|
from dotenv import load_dotenv
|
|
import os
|
|
|
|
load_dotenv()
|
|
|
|
class Database:
|
|
def __init__(self):
|
|
self.memory_only = os.getenv("MEM_OR_REDIS", "MEM").upper() == "MEM"
|
|
if self.memory_only:
|
|
self.client = None
|
|
self.db = None
|
|
self.db_existed = False
|
|
print("Memory-only mode: MongoDB connection bypassed")
|
|
return
|
|
mongo_hosts = os.getenv("MONGO_DB_HOSTS")
|
|
replica_set_name = os.getenv("MONGO_REPLICA_SET_NAME")
|
|
host_list = [host.strip() for host in mongo_hosts.split(',') if host.strip()]
|
|
self.db_existed = True
|
|
if len(host_list) > 1 and replica_set_name:
|
|
connection_uri = f"mongodb://{','.join(host_list)}/doorman?replicaSet={replica_set_name}"
|
|
else:
|
|
connection_uri = f"mongodb://{','.join(host_list)}/doorman"
|
|
self.client = MongoClient(
|
|
connection_uri,
|
|
serverSelectionTimeoutMS=5000,
|
|
maxPoolSize=100,
|
|
minPoolSize=5
|
|
)
|
|
self.db = self.client.get_database()
|
|
def initialize_collections(self):
|
|
if self.memory_only:
|
|
print("Memory-only mode: Skipping MongoDB collection initialization")
|
|
return
|
|
collections = ['users', 'apis', 'endpoints', 'groups', 'roles', 'subscriptions', 'routings', 'token_defs', 'user_tokens', 'endpoint_validations']
|
|
for collection in collections:
|
|
if collection not in self.db.list_collection_names():
|
|
self.db_existed = False
|
|
self.db.create_collection(collection)
|
|
print(f'Created collection: {collection}')
|
|
if not self.db_existed:
|
|
if not self.db.users.find_one({"username": "admin"}):
|
|
self.db.users.insert_one({
|
|
"username": "admin",
|
|
"email": os.getenv("STARTUP_ADMIN_EMAIL"),
|
|
"password": password_util.hash_password(os.getenv("STARTUP_ADMIN_PASSWORD")),
|
|
"role": "admin",
|
|
"groups": ["ALL", "admin"],
|
|
"rate_limit_duration": 2000000,
|
|
"rate_limit_duration_type": "minute",
|
|
"throttle_duration": 100000000,
|
|
"throttle_duration_type": "second",
|
|
"throttle_wait_duration": 5000000,
|
|
"throttle_wait_duration_type": "seconds",
|
|
"custom_attributes": {
|
|
"custom_key": "custom_value"
|
|
},
|
|
"active": True
|
|
})
|
|
if not self.db.roles.find_one({"role_name": "admin"}):
|
|
self.db.roles.insert_one({
|
|
"role_name": 'admin',
|
|
"role_description": "admin role",
|
|
"manage_users": True,
|
|
"manage_apis": True,
|
|
"manage_endpoints": True,
|
|
"manage_groups": True,
|
|
"manage_roles": True,
|
|
"manage_routings": True,
|
|
"manage_gateway": True,
|
|
"manage_subscriptions": True
|
|
})
|
|
if not self.db.groups.find_one({"group_name": "admin"}):
|
|
self.db.groups.insert_one({
|
|
"group_name": "admin",
|
|
"group_description": "Administrator group with full access",
|
|
"api_access": []
|
|
})
|
|
if not self.db.groups.find_one({"group_name": "ALL"}):
|
|
self.db.groups.insert_one({
|
|
"group_name": "ALL",
|
|
"group_description": "Default group with access to all APIs",
|
|
"api_access": []
|
|
})
|
|
|
|
def create_indexes(self):
|
|
if self.memory_only:
|
|
print("Memory-only mode: Skipping MongoDB index creation")
|
|
return
|
|
self.db.apis.create_indexes([
|
|
IndexModel([("api_id", ASCENDING)], unique=True),
|
|
IndexModel([("name", ASCENDING), ("version", ASCENDING)])
|
|
])
|
|
self.db.endpoints.create_indexes([
|
|
IndexModel([("endpoint_method", ASCENDING), ("api_name", ASCENDING), ("api_version", ASCENDING), ("endpoint_uri", ASCENDING)], unique=True),
|
|
])
|
|
self.db.users.create_indexes([
|
|
IndexModel([("username", ASCENDING)], unique=True),
|
|
IndexModel([("email", ASCENDING)], unique=True)
|
|
])
|
|
self.db.groups.create_indexes([
|
|
IndexModel([("group_name", ASCENDING)], unique=True)
|
|
])
|
|
self.db.roles.create_indexes([
|
|
IndexModel([("role_name", ASCENDING)], unique=True)
|
|
])
|
|
self.db.subscriptions.create_indexes([
|
|
IndexModel([("username", ASCENDING)], unique=True)
|
|
])
|
|
self.db.routings.create_indexes([
|
|
IndexModel([("client_key", ASCENDING)], unique=True)
|
|
])
|
|
self.db.token_defs.create_indexes([
|
|
IndexModel([("api_token_group", ASCENDING)], unique=True),
|
|
IndexModel([("username", ASCENDING)], unique=True)
|
|
])
|
|
self.db.endpoint_validations.create_indexes([
|
|
IndexModel([("endpoint_id", ASCENDING)], unique=True)
|
|
])
|
|
|
|
def is_memory_only(self) -> bool:
|
|
return self.memory_only
|
|
|
|
def get_mode_info(self) -> dict:
|
|
return {
|
|
'mode': 'memory_only' if self.memory_only else 'mongodb',
|
|
'mongodb_connected': not self.memory_only and self.client is not None,
|
|
'collections_available': not self.memory_only,
|
|
'cache_backend': os.getenv("MEM_OR_REDIS", "REDIS")
|
|
}
|
|
|
|
database = Database()
|
|
database.initialize_collections()
|
|
database.create_indexes()
|
|
if database.memory_only:
|
|
db = None
|
|
mongodb_client = None
|
|
api_collection = None
|
|
endpoint_collection = None
|
|
group_collection = None
|
|
role_collection = None
|
|
routing_collection = None
|
|
subscriptions_collection = None
|
|
user_collection = None
|
|
token_def_collection = None
|
|
user_token_collection = None
|
|
endpoint_validation_collection = None
|
|
else:
|
|
db = database.db
|
|
mongodb_client = database.client
|
|
api_collection = db.apis
|
|
endpoint_collection = db.endpoints
|
|
group_collection = db.groups
|
|
role_collection = db.roles
|
|
routing_collection = db.routings
|
|
subscriptions_collection = db.subscriptions
|
|
user_collection = db.users
|
|
token_def_collection = db.token_defs
|
|
user_token_collection = db.user_tokens
|
|
endpoint_validation_collection = db.endpoint_validations |