Use tagged switches more, rename ValidatePerm

Author: retrixe

auth/authenticator.go

@@ -23,10 +23,10 @@ type Authenticator interface {
 	ValidateAndReject(w http.ResponseWriter, r *http.Request) string
 	// HasPerm returns a boolean indicating whether or not the user has the requested permission.
 	HasPerm(username string, permission string) (bool, error)
-	// ValidatePermAndReject is called on an HTTP API request and returns the username if request is
+	// ValidateWithPermAndReject is called on an HTTP API request and returns the username if request is
 	// authenticated, and a boolean indicating whether or not the user has the requested permission.
 	// If unauthenticated or forbidden, the request is rejected with a 401 or 403 error respectively.
-	ValidatePermAndReject(w http.ResponseWriter, r *http.Request, permission string) (string, bool)
+	ValidateWithPermAndReject(w http.ResponseWriter, r *http.Request, permission string) (string, bool)
 	// CanManageAuth returns whether or not this authenticator can manage auth, i.e. users and tokens.
 	CanManageAuth() bool
 	// Login allows logging in a user and returning the token.
@@ -81,13 +81,13 @@ func (a *ReplaceableAuthenticator) HasPerm(username string, permission string) (
 	return a.Engine.HasPerm(username, permission)
 }
 
-// ValidatePermAndReject is called on an HTTP API request and returns the username if request is
+// ValidateWithPermAndReject is called on an HTTP API request and returns the username if request is
 // authenticated, and a boolean indicating whether or not the user has the requested permission.
 // If unauthenticated or forbidden, the request is rejected with a 401 or 403 error respectively.
-func (a *ReplaceableAuthenticator) ValidatePermAndReject(w http.ResponseWriter, r *http.Request, permission string) (string, bool) {
+func (a *ReplaceableAuthenticator) ValidateWithPermAndReject(w http.ResponseWriter, r *http.Request, permission string) (string, bool) {
 	a.EngineMutex.RLock()
 	defer a.EngineMutex.RUnlock()
-	return a.Engine.ValidatePermAndReject(w, r, permission)
+	return a.Engine.ValidateWithPermAndReject(w, r, permission)
 }
 
 // CanManageAuth returns whether or not this authenticator can manage auth, i.e. users and tokens.

auth/memory.go

@@ -104,10 +104,10 @@ func (*MemoryAuthenticator) HasPerm(_ string, _ string) (bool, error) {
 	return true, nil
 }
 
-// ValidatePermAndReject is called on an HTTP API request and returns the username if request is
+// ValidateWithPermAndReject is called on an HTTP API request and returns the username if request is
 // authenticated, and a boolean indicating whether or not the user has the requested permission.
 // If unauthenticated or forbidden, the request is rejected with a 401 or 403 error respectively.
-func (a *MemoryAuthenticator) ValidatePermAndReject(w http.ResponseWriter, r *http.Request, permission string) (string, bool) {
+func (a *MemoryAuthenticator) ValidateWithPermAndReject(w http.ResponseWriter, r *http.Request, permission string) (string, bool) {
 	username := a.ValidateAndReject(w, r)
 	if username == "" {
 		return "", false

auth/redis.go

@@ -171,10 +171,10 @@ func (*RedisAuthenticator) HasPerm(_ string, _ string) (bool, error) {
 	return true, nil
 }
 
-// ValidatePermAndReject is called on an HTTP API request and returns the username if request is
+// ValidateWithPermAndReject is called on an HTTP API request and returns the username if request is
 // authenticated, and a boolean indicating whether or not the user has the requested permission.
 // If unauthenticated or forbidden, the request is rejected with a 401 or 403 error respectively.
-func (a *RedisAuthenticator) ValidatePermAndReject(w http.ResponseWriter, r *http.Request, permission string) (string, bool) {
+func (a *RedisAuthenticator) ValidateWithPermAndReject(w http.ResponseWriter, r *http.Request, permission string) (string, bool) {
 	username := a.ValidateAndReject(w, r)
 	if username == "" {
 		return "", false

endpoints_auth.go

@@ -145,17 +145,17 @@ type accountsRequestBody struct {
 }
 
 func accountsEndpoint(connector *Connector, w http.ResponseWriter, r *http.Request) {
-	if !connector.Authenticator.CanManageAuth() {
+	if r.Method != "GET" && r.Method != "POST" && r.Method != "PATCH" && r.Method != "DELETE" {
+		httpError(w, "Only GET, POST, PATCH and DELETE are allowed!", http.StatusMethodNotAllowed)
+		return
+	} else if !connector.Authenticator.CanManageAuth() {
 		httpError(w, "This node does not support managing users. "+
 			"Perform user management on the primary node!", http.StatusForbidden)
 		return
 	}
 	user := connector.ValidateAndReject(w, r)
 	if user == "" {
 		return
-	} else if r.Method != "GET" && r.Method != "POST" && r.Method != "PATCH" && r.Method != "DELETE" {
-		httpError(w, "Only GET, POST, PATCH and DELETE are allowed!", http.StatusMethodNotAllowed)
-		return
 	}
 	var users map[string]string
 	contents, err := os.ReadFile(UsersJsonPath)

endpoints_files.go

@@ -56,11 +56,12 @@ func filesEndpoint(connector *Connector, w http.ResponseWriter, r *http.Request)
 		httpError(w, "This server does not exist!", http.StatusNotFound)
 		return
 	}
-	if r.Method == "GET" {
+	switch r.Method {
+	case "GET":
 		filesEndpointGet(w, r, process)
-	} else if r.Method == "PATCH" {
+	case "PATCH":
 		filesEndpointPatch(connector, w, r, process, id, user)
-	} else {
+	default:
 		httpError(w, "Only GET and PATCH are allowed!", http.StatusMethodNotAllowed)
 	}
 }
@@ -363,15 +364,16 @@ func fileEndpoint(connector *Connector, w http.ResponseWriter, r *http.Request)
 		httpError(w, "The file requested is outside the server!", http.StatusForbidden)
 		return
 	}
-	if r.Method == "GET" {
+	switch r.Method {
+	case "GET":
 		fileEndpointGet(connector, w, r, id, filePath, user)
-	} else if r.Method == "DELETE" {
+	case "DELETE":
 		fileEndpointDelete(connector, w, r, id, filePath, user)
-	} else if r.Method == "POST" {
+	case "POST":
 		fileEndpointPost(connector, w, r, id, filePath, user)
-	} else if r.Method == "PATCH" {
+	case "PATCH":
 		fileEndpointPatch(connector, w, r, process, id, user)
-	} else {
+	default:
 		httpError(w, "Only GET, POST, PATCH and DELETE are allowed!", http.StatusMethodNotAllowed)
 	}
 }
@@ -733,15 +735,16 @@ func compressionEndpoint(connector *Connector, w http.ResponseWriter, r *http.Re
 			}
 		} else {
 			var archive *tar.Writer
-			if compression == "true" || compression == "gzip" || compression == "" {
+			switch compression {
+			case "true", "gzip", "":
 				compressionWriter := gzip.NewWriter(archiveFile)
 				defer compressionWriter.Close()
 				archive = tar.NewWriter(compressionWriter)
-			} else if compression == "xz" || compression == "zstd" {
+			case "xz", "zstd":
 				compressionWriter := system.NativeCompressionWriter(archiveFile, compression)
 				defer compressionWriter.Close()
 				archive = tar.NewWriter(compressionWriter)
-			} else {
+			default:
 				archive = tar.NewWriter(archiveFile)
 			}
 			defer archive.Close()

endpoints_misc.go

@@ -28,11 +28,9 @@ func configEndpoint(connector *Connector, w http.ResponseWriter, r *http.Request
 	user := connector.ValidateAndReject(w, r)
 	if user == "" {
 		return
-	} else if r.Method != "GET" && r.Method != "PATCH" {
-		httpError(w, "Only GET and PATCH are allowed!", http.StatusMethodNotAllowed)
-		return
 	}
-	if r.Method == "GET" {
+	switch r.Method {
+	case "GET":
 		contents, err := os.ReadFile(ConfigJsonPath)
 		if err != nil {
 			log.Println("Error reading "+ConfigJsonPath+" when user accessed /config!", err)
@@ -42,7 +40,7 @@ func configEndpoint(connector *Connector, w http.ResponseWriter, r *http.Request
 		connector.Info("config.view", "ip", GetIP(r), "user", user)
 		w.Header().Set("content-type", "application/json")
 		_, _ = w.Write(contents)
-	} else if r.Method == "PATCH" {
+	case "PATCH":
 		var buffer bytes.Buffer
 		_, err := buffer.ReadFrom(r.Body)
 		if err != nil {
@@ -77,6 +75,8 @@ func configEndpoint(connector *Connector, w http.ResponseWriter, r *http.Request
 		connector.Info("config.edit", "ip", GetIP(r), "user", user, "newConfig", config)
 		writeJsonStringRes(w, "{\"success\":true}")
 		info.Println("Config updated remotely by user over HTTP API (see action logs for info)!")
+	default:
+		httpError(w, "Only GET and PATCH are allowed!", http.StatusMethodNotAllowed)
 	}
 }
 
@@ -156,11 +156,12 @@ func serverEndpoint(connector *Connector, w http.ResponseWriter, r *http.Request
 		httpError(w, "This server does not exist!", http.StatusNotFound)
 		return
 	}
-	if r.Method == "GET" {
+	switch r.Method {
+	case "GET":
 		serverEndpointGet(w, process)
-	} else if r.Method == "POST" {
+	case "POST":
 		serverEndpointPost(connector, w, r, process, id, user)
-	} else {
+	default:
 		httpError(w, "Only GET and POST is allowed!", http.StatusMethodNotAllowed)
 	}
 }
@@ -211,7 +212,8 @@ func serverEndpointPost(connector *Connector, w http.ResponseWriter, r *http.Req
 	}
 	operation := strings.ToUpper(body.String())
 	// Check whether the operation is correct or not.
-	if operation == "START" {
+	switch operation {
+	case "START":
 		// Start process if required.
 		if process.Online.Load() != 1 {
 			err = process.StartProcess(connector)
@@ -221,7 +223,7 @@ func serverEndpointPost(connector *Connector, w http.ResponseWriter, r *http.Req
 		res := make(map[string]bool)
 		res["success"] = err == nil
 		writeJsonStructRes(w, res) // skipcq GSC-G104
-	} else if operation == "STOP" || operation == "KILL" || operation == "TERM" {
+	case "STOP", "KILL", "TERM":
 		// Stop process if required.
 		if process.Online.Load() == 1 {
 			// Octyne 2.x should drop STOP or move it to SIGTERM.
@@ -237,9 +239,8 @@ func serverEndpointPost(connector *Connector, w http.ResponseWriter, r *http.Req
 		res := make(map[string]bool)
 		res["success"] = true
 		writeJsonStructRes(w, res) // skipcq GSC-G104
-	} else {
+	default:
 		httpError(w, "Invalid operation requested!", http.StatusBadRequest)
-		return
 	}
 }