Beispiel #1
0
 /**
  * Gets CloudCredentials entity
  *
  * @param   string  $cloudCredentialsId Unique identifier of the CloudCredentials
  *
  * @return Entity\CloudCredentials
  *
  * @throws ApiErrorException
  */
 public function getCloudCredentials($cloudCredentialsId)
 {
     /* @var $cloudCredentials Entity\CloudCredentials */
     $cloudCredentials = Entity\CloudCredentials::findPk($cloudCredentialsId);
     if (empty($cloudCredentials)) {
         throw new ApiErrorException(404, ErrorMessage::ERR_OBJECT_NOT_FOUND, "Requested Cloud Credentials either does not exist or is not owned by you.");
     }
     switch ($cloudCredentials->getScope()) {
         case ScopeInterface::SCOPE_SCALR:
             break;
         case ScopeInterface::SCOPE_ACCOUNT:
             if ($cloudCredentials->accountId != $this->getUser()->getAccountId()) {
                 throw new ApiErrorException(404, ErrorMessage::ERR_OBJECT_NOT_FOUND, "Requested Cloud Credentials either does not exist or is not owned by you.");
             }
             break;
         case ScopeInterface::SCOPE_ENVIRONMENT:
             if (!($this->getUser()->canManageAcl() || $this->getUser()->hasAccessToEnvironment($cloudCredentials->envId))) {
                 throw new ApiErrorException(403, ErrorMessage::ERR_PERMISSION_VIOLATION, "Insufficient permissions");
             }
     }
     return $cloudCredentials;
 }
Beispiel #2
0
 /**
  * @param string $cloudCredentialsId
  * @param bool $modify
  *
  * @return Entity\CloudCredentials
  * @throws ApiErrorException
  */
 public function getCloudCredentials($cloudCredentialsId, $modify = false)
 {
     $cloudCredentials = Entity\CloudCredentials::findPk($cloudCredentialsId);
     if (empty($cloudCredentials) || !$this->hasPermissions($cloudCredentials, $modify)) {
         throw new ApiErrorException(404, ErrorMessage::ERR_OBJECT_NOT_FOUND, "Requested Cloud Credentials either does not exist or is not owned by you.");
     }
     return $cloudCredentials;
 }
Beispiel #3
0
            $envCloudCredentials = new Entity\EnvironmentCloudCredentials();
            /* @var $cloudCredentials Entity\CloudCredentials */
            $cloudCredentials = Entity\CloudCredentials::findOne([\Scalr\Model\AbstractEntity::STMT_FROM => "{$cloudCredentials->table()} JOIN {$envCloudCredentials->table('cecc')} ON {$cloudCredentials->columnId()} = {$envCloudCredentials->columnCloudCredentialsId('cecc')} AND {$cloudCredentials->columnCloud()} = {$envCloudCredentials->columnCloud('cecc')}", \Scalr\Model\AbstractEntity::STMT_WHERE => "{$envCloudCredentials->columnEnvId('cecc')} = {$envCloudCredentials->qstr('envId', $envId)} AND {$envCloudCredentials->columnCloud('cecc')} = {$envCloudCredentials->qstr('cloud', $cloud)}"]);
            if (!empty($cloudCredentials)) {
                $cloudCredId = $cloudCredentials->id;
                $cloudCredentials->bindEnvironment($envId);
                return $cloudCredId;
            }
            return null;
        });
    }
    $cloudCredId = $cont->get($envCloudCredId);
    $contCloudCredId = "cloud_creds.{$cloudCredId}";
    if (!$cont->initialized($contCloudCredId)) {
        $cont->setShared($contCloudCredId, function ($cont) use($envId, $cloud, $cloudCredId, &$cloudCredentials) {
            if (!(isset($cloudCredentials) || empty($cloudCredentials = Entity\CloudCredentials::findPk($cloudCredId)))) {
                $cloudCredentials->bindEnvironment($envId);
            }
            return $cloudCredentials ?: false;
        });
    }
    if (empty($cloudCredentials = $cont->get($contCloudCredId))) {
        $cloudCredentials = new Entity\CloudCredentials();
        $cloudCredentials->accountId = empty($cont->environment) || $cont->environment->id != $envId ? \Scalr_Environment::init()->loadById($envId)->getAccountId() : $cont->environment;
        $cloudCredentials->envId = $envId;
        $cloudCredentials->cloud = $cloud;
    }
    return $cloudCredentials;
});
$container->setShared('saml.config', function ($cont) {
    $settings = $cont->config->get('scalr.connections.saml');