grafana/pkg/components/imguploader/webdavuploader.go

package imguploader

import (
	"bytes"
	"context"
	"fmt"
	"io"
	"net"
	"net/http"
	"net/url"
	"os"
	"path"
	"strings"
	"time"

	"github.com/grafana/grafana/pkg/util"
)

type WebdavUploader struct {
	url        string
	username   string
	password   string
	public_url string
}

var netTransport = &http.Transport{
	Proxy: http.ProxyFromEnvironment,
	Dial: (&net.Dialer{
		Timeout: time.Minute,
	}).Dial,
	TLSHandshakeTimeout: 5 * time.Second,
}

var netClient = &http.Client{
	Timeout:   time.Second * 60,
	Transport: netTransport,
}

func (u *WebdavUploader) PublicURL(filename string) string {
	if strings.Contains(u.public_url, "{{file}}") {
		return strings.ReplaceAll(u.public_url, "{{file}}", filename)
	}

	publicURL, _ := url.Parse(u.public_url)
	publicURL.Path = path.Join(publicURL.Path, filename)
	return publicURL.String()
}

func (u *WebdavUploader) Upload(ctx context.Context, imgToUpload string) (string, error) {
	url, _ := url.Parse(u.url)
	filename, err := util.GetRandomString(20)
	if err != nil {
		return "", err
	}

	filename += pngExt
	url.Path = path.Join(url.Path, filename)

	// We can ignore the gosec G304 warning on this one because `imgToUpload` comes
	// from alert notifiers and is only used to upload images generated by alerting.
	// nolint:gosec
	imgData, err := os.ReadFile(imgToUpload)
	if err != nil {
		return "", err
	}

	req, err := http.NewRequest("PUT", url.String(), bytes.NewReader(imgData))
	if err != nil {
		return "", err
	}
	if ctx != nil {
		req = req.WithContext(ctx)
	}
	if u.username != "" {
		req.SetBasicAuth(u.username, u.password)
	}

	res, err := netClient.Do(req)
	if err != nil {
		return "", err
	}
	defer func() {
		if err := res.Body.Close(); err != nil {
			logger.Warn("Failed to close response body", "err", err)
		}
	}()

	if res.StatusCode != http.StatusCreated {
		body, err := io.ReadAll(res.Body)
		if err != nil {
			return "", fmt.Errorf("failed to read response body: %w", err)
		}
		return "", fmt.Errorf("failed to upload image, statuscode: %d, body: %s", res.StatusCode, body)
	}

	if u.public_url != "" {
		return u.PublicURL(filename), nil
	}

	return url.String(), nil
}

func NewWebdavImageUploader(url, username, password, public_url string) (*WebdavUploader, error) {
	return &WebdavUploader{
		url:        url,
		username:   username,
		password:   password,
		public_url: public_url,
	}, nil
}
feat(alerting): add support for uploading images to webdav. closes #5770 2016-08-10 23:27:39 +08:00			`package imguploader`

			`import (`
			`"bytes"`
pass context to image uploaders 2017-09-15 21:05:48 +08:00			`"context"`
feat(alerting): add support for uploading images to webdav. closes #5770 2016-08-10 23:27:39 +08:00			`"fmt"`
Handle ioutil deprecations (#53526) * replace ioutil.ReadFile -> os.ReadFile * replace ioutil.ReadAll -> io.ReadAll * replace ioutil.TempFile -> os.CreateTemp * replace ioutil.NopCloser -> io.NopCloser * replace ioutil.WriteFile -> os.WriteFile * replace ioutil.TempDir -> os.MkdirTemp * replace ioutil.Discard -> io.Discard 2022-08-10 21:37:51 +08:00			`"io"`
tech: avoid using http.DefaultClient 2017-02-25 00:22:12 +08:00			`"net"`
feat(alerting): add support for uploading images to webdav. closes #5770 2016-08-10 23:27:39 +08:00			`"net/http"`
			`"net/url"`
Handle ioutil deprecations (#53526) * replace ioutil.ReadFile -> os.ReadFile * replace ioutil.ReadAll -> io.ReadAll * replace ioutil.TempFile -> os.CreateTemp * replace ioutil.NopCloser -> io.NopCloser * replace ioutil.WriteFile -> os.WriteFile * replace ioutil.TempDir -> os.MkdirTemp * replace ioutil.Discard -> io.Discard 2022-08-10 21:37:51 +08:00			`"os"`
feat(alerting): add support for uploading images to webdav. closes #5770 2016-08-10 23:27:39 +08:00			`"path"`
Handle query string in storage public_url (#9351) (#12555) 2018-07-18 02:10:12 +08:00			`"strings"`
tech: avoid using http.DefaultClient 2017-02-25 00:22:12 +08:00			`"time"`
feat(alerting): add support for uploading images to webdav. closes #5770 2016-08-10 23:27:39 +08:00
			`"github.com/grafana/grafana/pkg/util"`
			`)`

			`type WebdavUploader struct {`
webdav: allow specification of a different public_url than upload url 2017-03-23 23:23:46 +08:00			`url string`
			`username string`
			`password string`
			`public_url string`
feat(alerting): add support for uploading images to webdav. closes #5770 2016-08-10 23:27:39 +08:00			`}`

tech: avoid using http.DefaultClient 2017-02-25 00:22:12 +08:00			`var netTransport = &http.Transport{`
Indenting fix 2017-05-17 08:58:18 +08:00			`Proxy: http.ProxyFromEnvironment,`
tech: avoid using http.DefaultClient 2017-02-25 00:22:12 +08:00			`Dial: (&net.Dialer{`
Refactor time durations (#58484) This change uses `time.Second` in place of `1000 * time.Millisecond` and `time.Minute` in place of `60*time.Second`. 2022-11-22 15:09:15 +08:00			`Timeout: time.Minute,`
tech: avoid using http.DefaultClient 2017-02-25 00:22:12 +08:00			`}).Dial,`
			`TLSHandshakeTimeout: 5 * time.Second,`
			`}`

			`var netClient = &http.Client{`
			`Timeout: time.Second * 60,`
			`Transport: netTransport,`
			`}`

Handle query string in storage public_url (#9351) (#12555) 2018-07-18 02:10:12 +08:00			`func (u *WebdavUploader) PublicURL(filename string) string {`
imagestorage: fix templating of public_url option for webdav (#74885) * spelling in error message * imguploader: fix template for webdav url Since a few years ago, when loading the config file, the template gets replaced in the expanding env var phase (see ##25075) and introduced a bug in the webdav public_url config option. This commit changes the template syntax to be {{file}}. This doesn't get expanded and removed when the config file is loaded. * devenv: add a block for a WebDAV server * Adding alerting as codeowners for webdav --------- Co-authored-by: Timur Olzhabayev <timur.olzhabayev@grafana.com> 2023-09-28 05:35:10 +08:00			`if strings.Contains(u.public_url, "{{file}}") {`
			`return strings.ReplaceAll(u.public_url, "{{file}}", filename)`
Handle query string in storage public_url (#9351) (#12555) 2018-07-18 02:10:12 +08:00			`}`
Chore: a bit of spring cleaning (#16710) * Chore: use early return technic everywhere And enable "indent-error-flow" revive rule * Chore: remove if-return rule from revive config * Chore: improve error messages And enable "error-strings" revive rule * Chore: enable "error-naming" revive rule * Chore: make linter happy * Chore: do not duplicate gofmt execution * Chore: make linter happy * Chore: address the pull review comments 2019-04-23 16:24:47 +08:00
			`publicURL, _ := url.Parse(u.public_url)`
			`publicURL.Path = path.Join(publicURL.Path, filename)`
			`return publicURL.String()`
Handle query string in storage public_url (#9351) (#12555) 2018-07-18 02:10:12 +08:00			`}`

Security: Add gosec G304 auditing annotations (#29578) * Security: Add gosec G304 auditing annotations Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * Add gosec annotations Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * Add gosec annotations Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * Add gosec annotations Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * space Signed-off-by: bergquist <carl.bergquist@gmail.com> * Add gosec annotations Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> Co-authored-by: bergquist <carl.bergquist@gmail.com> 2020-12-04 05:13:06 +08:00			`func (u *WebdavUploader) Upload(ctx context.Context, imgToUpload string) (string, error) {`
feat(alerting): add support for uploading images to webdav. closes #5770 2016-08-10 23:27:39 +08:00			`url, _ := url.Parse(u.url)`
pkg/util: Check errors (#19832) * pkg/util: Check errors * pkg/services: DRY up code 2019-10-23 16:40:12 +08:00			`filename, err := util.GetRandomString(20)`
			`if err != nil {`
			`return "", err`
			`}`

			`filename += pngExt`
webdav: allow specification of a different public_url than upload url 2017-03-23 23:23:46 +08:00			`url.Path = path.Join(url.Path, filename)`
feat(alerting): add support for uploading images to webdav. closes #5770 2016-08-10 23:27:39 +08:00
Security: Add gosec G304 auditing annotations (#29578) * Security: Add gosec G304 auditing annotations Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * Add gosec annotations Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * Add gosec annotations Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * add G304 auditing comment Signed-off-by: bergquist <carl.bergquist@gmail.com> * Add gosec annotations Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * space Signed-off-by: bergquist <carl.bergquist@gmail.com> * Add gosec annotations Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> Co-authored-by: bergquist <carl.bergquist@gmail.com> 2020-12-04 05:13:06 +08:00			// We can ignore the gosec G304 warning on this one because `imgToUpload` comes
			`// from alert notifiers and is only used to upload images generated by alerting.`
			`// nolint:gosec`
Handle ioutil deprecations (#53526) * replace ioutil.ReadFile -> os.ReadFile * replace ioutil.ReadAll -> io.ReadAll * replace ioutil.TempFile -> os.CreateTemp * replace ioutil.NopCloser -> io.NopCloser * replace ioutil.WriteFile -> os.WriteFile * replace ioutil.TempDir -> os.MkdirTemp * replace ioutil.Discard -> io.Discard 2022-08-10 21:37:51 +08:00			`imgData, err := os.ReadFile(imgToUpload)`
pkg/components: fix ineffassign issues 2018-04-24 02:03:57 +08:00			`if err != nil {`
			`return "", err`
			`}`

feat(alerting): add support for uploading images to webdav. closes #5770 2016-08-10 23:27:39 +08:00			`req, err := http.NewRequest("PUT", url.String(), bytes.NewReader(imgData))`
pkg/components: fix ineffassign issues 2018-04-24 02:03:57 +08:00			`if err != nil {`
			`return "", err`
			`}`
Alerting: Fix image rendering and uploading timeout preventing to send alert notifications (#21536) * svc alerting - use a shorter ctx to upload the img This will prevent timeout on img upload to cancel the notifications from being sent * components img uploader - pass the ctx to aws lib * make webdavuploader use the ctx * make azureblobuploader use the ctx * rename uploadImage() to renderAndUploadImage() for better clarity about what this method work * Use timeout + 2s for plugin renderer (same as service and phantomjs) * Make sure that original EvalContext is updated after render and upload * Verify notification sent even if render or image upload times out * fix lint * fixes after review Co-authored-by: Edouard Hur <3418467+hekmon@users.noreply.github.com> Fixes #21018 2020-01-17 19:07:16 +08:00			`if ctx != nil {`
			`req = req.WithContext(ctx)`
			`}`
fix(webdav): adds missing auth headers closes #6779 2016-12-02 23:18:40 +08:00			`if u.username != "" {`
			`req.SetBasicAuth(u.username, u.password)`
			`}`

tech: avoid using http.DefaultClient 2017-02-25 00:22:12 +08:00			`res, err := netClient.Do(req)`
feat(alerting): add support for uploading images to webdav. closes #5770 2016-08-10 23:27:39 +08:00			`if err != nil {`
			`return "", err`
			`}`
Chore: Disable default golangci-lint filter (#29751) * Disable default golangci-lint filter Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Chore: Fix linter warnings Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> 2020-12-15 16:32:06 +08:00			`defer func() {`
			`if err := res.Body.Close(); err != nil {`
			`logger.Warn("Failed to close response body", "err", err)`
			`}`
			`}()`
feat(alerting): add support for uploading images to webdav. closes #5770 2016-08-10 23:27:39 +08:00
			`if res.StatusCode != http.StatusCreated {`
Handle ioutil deprecations (#53526) * replace ioutil.ReadFile -> os.ReadFile * replace ioutil.ReadAll -> io.ReadAll * replace ioutil.TempFile -> os.CreateTemp * replace ioutil.NopCloser -> io.NopCloser * replace ioutil.WriteFile -> os.WriteFile * replace ioutil.TempDir -> os.MkdirTemp * replace ioutil.Discard -> io.Discard 2022-08-10 21:37:51 +08:00			`body, err := io.ReadAll(res.Body)`
Chore: Disable default golangci-lint filter (#29751) * Disable default golangci-lint filter Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Chore: Fix linter warnings Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> 2020-12-15 16:32:06 +08:00			`if err != nil {`
			`return "", fmt.Errorf("failed to read response body: %w", err)`
			`}`
Chore: Fix staticcheck issues (#28860) * Chore: Fix issues reported by staticcheck Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Undo changes Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Chore: Fix issues reported by staticcheck Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix test Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Fix test Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> 2020-11-05 20:07:06 +08:00			`return "", fmt.Errorf("failed to upload image, statuscode: %d, body: %s", res.StatusCode, body)`
feat(alerting): add support for uploading images to webdav. closes #5770 2016-08-10 23:27:39 +08:00			`}`

webdav: allow specification of a different public_url than upload url 2017-03-23 23:23:46 +08:00			`if u.public_url != "" {`
Handle query string in storage public_url (#9351) (#12555) 2018-07-18 02:10:12 +08:00			`return u.PublicURL(filename), nil`
webdav: allow specification of a different public_url than upload url 2017-03-23 23:23:46 +08:00			`}`
webdav: add tests + path.join for public url param Fixes #7914. Fixes #7921 2017-04-25 23:20:03 +08:00
			`return url.String(), nil`
feat(alerting): add support for uploading images to webdav. closes #5770 2016-08-10 23:27:39 +08:00			`}`

webdav: allow specification of a different public_url than upload url 2017-03-23 23:23:46 +08:00			`func NewWebdavImageUploader(url, username, password, public_url string) (*WebdavUploader, error) {`
feat(alerting): add support for uploading images to webdav. closes #5770 2016-08-10 23:27:39 +08:00			`return &WebdavUploader{`
webdav: allow specification of a different public_url than upload url 2017-03-23 23:23:46 +08:00			`url: url,`
			`username: username,`
			`password: password,`
			`public_url: public_url,`
feat(alerting): add support for uploading images to webdav. closes #5770 2016-08-10 23:27:39 +08:00			`}, nil`
			`}`