sendnrw/netbird
2
0
Fork 0
mirror of https://github.com/netbirdio/netbird.git synced 2026-05-03 07:36:39 +00:00
Code Issues Packages Projects Releases Wiki Activity

add management API to store

Browse Source
This commit is contained in:
pascal
2026-01-16 16:16:29 +01:00
parent 51261fe7a9
commit 2851e38a1f
13 changed files with 1085 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

293
shared/management/http/api/openapi.yml
View File

@@ -36,6 +36,8 @@ tags:
x-cloud-only: true
- name: Identity Providers
description: Interact with and view information about identity providers.
- name: Services
description: Interact with and view information about exposed services.
- name: Instance
description: Instance setup and status endpoints for initial configuration.
components:
@@ -1905,7 +1907,8 @@ components:
"route.add", "route.delete", "route.update",
"nameserver.group.add", "nameserver.group.delete", "nameserver.group.update",
"peer.ssh.disable", "peer.ssh.enable", "peer.rename", "peer.login.expiration.disable", "peer.login.expiration.enable", "peer.login.expire",
"service.user.create", "personal.access.token.create", "service.user.delete", "personal.access.token.delete" ]
"service.user.create", "personal.access.token.create", "service.user.delete", "personal.access.token.delete",
"service.create", "service.update", "service.delete" ]
example: route.add
initiator_id:
description: The ID of the initiator of the event. E.g., an ID of a user that triggered the event.
@@ -2428,6 +2431,147 @@ components:
- issuer
- client_id
- client_secret
Service:
type: object
properties:
id:
type: string
description: Service ID
name:
type: string
description: Service name
description:
type: string
description: Service description
domain:
type: string
description: Domain for the service
targets:
type: array
items:
$ref: '#/components/schemas/ServiceTarget'
description: List of target backends for this service
distribution_groups:
type: array
items:
type: string
description: List of group IDs that can access this service
enabled:
type: boolean
description: Whether the service is enabled
exposed:
type: boolean
description: Whether the service is exposed
auth:
$ref: '#/components/schemas/ServiceAuthConfig'
required:
- id
- name
- domain
- targets
- distribution_groups
- enabled
- exposed
ServiceRequest:
type: object
properties:
name:
type: string
description: Service name
description:
type: string
description: Service description
domain:
type: string
description: Domain for the service
targets:
type: array
items:
$ref: '#/components/schemas/ServiceTarget'
description: List of target backends for this service
distribution_groups:
type: array
items:
type: string
description: List of group IDs that can access this service
enabled:
type: boolean
description: Whether the service is enabled
default: true
exposed:
type: boolean
description: Whether the service is exposed
default: false
auth:
$ref: '#/components/schemas/ServiceAuthConfig'
required:
- name
- domain
- targets
- distribution_groups
ServiceTarget:
type: object
properties:
path:
type: string
description: URL path prefix for this target
host:
type: string
description: Backend host:port for this target
enabled:
type: boolean
description: Whether this target is enabled
required:
- path
- host
- enabled
ServiceAuthConfig:
type: object
properties:
type:
type: string
enum: [basic, pin, bearer]
description: Authentication type
basic_auth:
$ref: '#/components/schemas/BasicAuthConfig'
pin_auth:
$ref: '#/components/schemas/PINAuthConfig'
bearer_auth:
$ref: '#/components/schemas/BearerAuthConfig'
required:
- type
BasicAuthConfig:
type: object
properties:
username:
type: string
description: Basic auth username
password:
type: string
description: Basic auth password
required:
- username
- password
PINAuthConfig:
type: object
properties:
pin:
type: string
description: PIN value
header:
type: string
description: HTTP header name for PIN
required:
- pin
- header
BearerAuthConfig:
type: object
properties:
enabled:
type: boolean
description: Whether bearer auth is enabled
required:
- enabled
InstanceStatus:
type: object
description: Instance status information
@@ -5629,3 +5773,150 @@ paths:
"$ref": "#/components/responses/forbidden"
'500':
"$ref": "#/components/responses/internal_error"
/api/services:
get:
summary: List all Services
description: Returns a list of all exposed services
tags: [ Services ]
security:
- BearerAuth: [ ]
- TokenAuth: [ ]
responses:
'200':
description: A JSON Array of Services
content:
application/json:
schema:
type: array
items:
$ref: '#/components/schemas/Service'
'401':
"$ref": "#/components/responses/requires_authentication"
'403':
"$ref": "#/components/responses/forbidden"
'500':
"$ref": "#/components/responses/internal_error"
post:
summary: Create a Service
description: Creates a new exposed service
tags: [ Services ]
security:
- BearerAuth: [ ]
- TokenAuth: [ ]
requestBody:
description: New service request
content:
application/json:
schema:
$ref: '#/components/schemas/ServiceRequest'
responses:
'200':
description: Service created
content:
application/json:
schema:
$ref: '#/components/schemas/Service'
'400':
"$ref": "#/components/responses/bad_request"
'401':
"$ref": "#/components/responses/requires_authentication"
'403':
"$ref": "#/components/responses/forbidden"
'500':
"$ref": "#/components/responses/internal_error"
/api/services/{serviceId}:
get:
summary: Retrieve a Service
description: Get information about a specific service
tags: [ Services ]
security:
- BearerAuth: [ ]
- TokenAuth: [ ]
parameters:
- in: path
name: serviceId
required: true
schema:
type: string
description: The unique identifier of a service
responses:
'200':
description: A Service object
content:
application/json:
schema:
$ref: '#/components/schemas/Service'
'400':
"$ref": "#/components/responses/bad_request"
'401':
"$ref": "#/components/responses/requires_authentication"
'403':
"$ref": "#/components/responses/forbidden"
'404':
"$ref": "#/components/responses/not_found"
'500':
"$ref": "#/components/responses/internal_error"
put:
summary: Update a Service
description: Update an existing service configuration
tags: [ Services ]
security:
- BearerAuth: [ ]
- TokenAuth: [ ]
parameters:
- in: path
name: serviceId
required: true
schema:
type: string
description: The unique identifier of a service
requestBody:
description: Service update request
content:
application/json:
schema:
$ref: '#/components/schemas/ServiceRequest'
responses:
'200':
description: Service updated
content:
application/json:
schema:
$ref: '#/components/schemas/Service'
'400':
"$ref": "#/components/responses/bad_request"
'401':
"$ref": "#/components/responses/requires_authentication"
'403':
"$ref": "#/components/responses/forbidden"
'404':
"$ref": "#/components/responses/not_found"
'500':
"$ref": "#/components/responses/internal_error"
delete:
summary: Delete a Service
description: Delete an existing service
tags: [ Services ]
security:
- BearerAuth: [ ]
- TokenAuth: [ ]
parameters:
- in: path
name: serviceId
required: true
schema:
type: string
description: The unique identifier of a service
responses:
'200':
description: Service deleted
'400':
"$ref": "#/components/responses/bad_request"
'401':
"$ref": "#/components/responses/requires_authentication"
'403':
"$ref": "#/components/responses/forbidden"
'404':
"$ref": "#/components/responses/not_found"
'500':
"$ref": "#/components/responses/internal_error"

117
shared/management/http/api/types.gen.go
View File

@@ -193,6 +193,13 @@ const (
ResourceTypeSubnet ResourceType = "subnet"
)
// Defines values for ServiceAuthConfigType.
const (
ServiceAuthConfigTypeBasic ServiceAuthConfigType = "basic"
ServiceAuthConfigTypeBearer ServiceAuthConfigType = "bearer"
ServiceAuthConfigTypePin ServiceAuthConfigType = "pin"
)
// Defines values for UserStatus.
const (
UserStatusActive UserStatus = "active"
@@ -368,6 +375,21 @@ type AvailablePorts struct {
Udp int `json:"udp"`
}
// BasicAuthConfig defines model for BasicAuthConfig.
type BasicAuthConfig struct {
// Password Basic auth password
Password string `json:"password"`
// Username Basic auth username
Username string `json:"username"`
}
// BearerAuthConfig defines model for BearerAuthConfig.
type BearerAuthConfig struct {
// Enabled Whether bearer auth is enabled
Enabled bool `json:"enabled"`
}
// Checks List of objects that perform the actual checks
type Checks struct {
// GeoLocationCheck Posture check for geo location
@@ -1125,6 +1147,15 @@ type OSVersionCheck struct {
Windows *MinKernelVersionCheck `json:"windows,omitempty"`
}
// PINAuthConfig defines model for PINAuthConfig.
type PINAuthConfig struct {
// Header HTTP header name for PIN
Header string `json:"header"`
// Pin PIN value
Pin string `json:"pin"`
}
// Peer defines model for Peer.
type Peer struct {
// ApprovalRequired (Cloud only) Indicates whether peer needs approval
@@ -1785,6 +1816,86 @@ type RulePortRange struct {
Start int `json:"start"`
}
// Service defines model for Service.
type Service struct {
Auth *ServiceAuthConfig `json:"auth,omitempty"`
// Description Service description
Description *string `json:"description,omitempty"`
// DistributionGroups List of group IDs that can access this service
DistributionGroups []string `json:"distribution_groups"`
// Domain Domain for the service
Domain string `json:"domain"`
// Enabled Whether the service is enabled
Enabled bool `json:"enabled"`
// Exposed Whether the service is exposed
Exposed bool `json:"exposed"`
// Id Service ID
Id string `json:"id"`
// Name Service name
Name string `json:"name"`
// Targets List of target backends for this service
Targets []ServiceTarget `json:"targets"`
}
// ServiceAuthConfig defines model for ServiceAuthConfig.
type ServiceAuthConfig struct {
BasicAuth *BasicAuthConfig `json:"basic_auth,omitempty"`
BearerAuth *BearerAuthConfig `json:"bearer_auth,omitempty"`
PinAuth *PINAuthConfig `json:"pin_auth,omitempty"`
// Type Authentication type
Type ServiceAuthConfigType `json:"type"`
}
// ServiceAuthConfigType Authentication type
type ServiceAuthConfigType string
// ServiceRequest defines model for ServiceRequest.
type ServiceRequest struct {
Auth *ServiceAuthConfig `json:"auth,omitempty"`
// Description Service description
Description *string `json:"description,omitempty"`
// DistributionGroups List of group IDs that can access this service
DistributionGroups []string `json:"distribution_groups"`
// Domain Domain for the service
Domain string `json:"domain"`
// Enabled Whether the service is enabled
Enabled *bool `json:"enabled,omitempty"`
// Exposed Whether the service is exposed
Exposed *bool `json:"exposed,omitempty"`
// Name Service name
Name string `json:"name"`
// Targets List of target backends for this service
Targets []ServiceTarget `json:"targets"`
}
// ServiceTarget defines model for ServiceTarget.
type ServiceTarget struct {
// Enabled Whether this target is enabled
Enabled bool `json:"enabled"`
// Host Backend host:port for this target
Host string `json:"host"`
// Path URL path prefix for this target
Path string `json:"path"`
}
// SetupKey defines model for SetupKey.
type SetupKey struct {
// AllowExtraDnsLabels Allow extra DNS labels to be added to the peer
@@ -2246,6 +2357,12 @@ type PostApiRoutesJSONRequestBody = RouteRequest
// PutApiRoutesRouteIdJSONRequestBody defines body for PutApiRoutesRouteId for application/json ContentType.
type PutApiRoutesRouteIdJSONRequestBody = RouteRequest
// PostApiServicesJSONRequestBody defines body for PostApiServices for application/json ContentType.
type PostApiServicesJSONRequestBody = ServiceRequest
// PutApiServicesServiceIdJSONRequestBody defines body for PutApiServicesServiceId for application/json ContentType.
type PutApiServicesServiceIdJSONRequestBody = ServiceRequest
// PostApiSetupJSONRequestBody defines body for PostApiSetup for application/json ContentType.
type PostApiSetupJSONRequestBody = SetupRequest