Cloud Access Policy support (#129)

* Add support for cloud access policies

* Add Token field

* Update is a post

* Update is a POST for policies as well

* Remove unnecessary newline

Author: julienduchesne

cloud_access_policy.go

@@ -0,0 +1,103 @@
+package gapi
+
+import (
+	"bytes"
+	"encoding/json"
+	"fmt"
+	"net/url"
+	"time"
+)
+
+type CloudAccessPolicyLabelPolicy struct {
+	Selector string `json:"selector"`
+}
+
+type CloudAccessPolicyRealm struct {
+	Type          string                         `json:"type"`
+	Identifier    string                         `json:"identifier"`
+	LabelPolicies []CloudAccessPolicyLabelPolicy `json:"labelPolicies"`
+}
+
+type CreateCloudAccessPolicyInput struct {
+	Name        string                   `json:"name"`
+	DisplayName string                   `json:"displayName"`
+	Scopes      []string                 `json:"scopes"`
+	Realms      []CloudAccessPolicyRealm `json:"realms"`
+}
+
+type UpdateCloudAccessPolicyInput struct {
+	DisplayName string                   `json:"displayName"`
+	Scopes      []string                 `json:"scopes"`
+	Realms      []CloudAccessPolicyRealm `json:"realms"`
+}
+
+type CloudAccessPolicy struct {
+	Name        string                   `json:"name"`
+	DisplayName string                   `json:"displayName"`
+	Scopes      []string                 `json:"scopes"`
+	Realms      []CloudAccessPolicyRealm `json:"realms"`
+
+	// The following fields are not part of the input, but are returned by the API.
+	ID        string    `json:"id"`
+	OrgID     string    `json:"orgId"`
+	CreatedAt time.Time `json:"createdAt"`
+	UpdatedAt time.Time `json:"updatedAt"`
+}
+
+type CloudAccessPolicyItems struct {
+	Items []*CloudAccessPolicy `json:"items"`
+}
+
+func (c *Client) CloudAccessPolicies(region string) (CloudAccessPolicyItems, error) {
+	policies := CloudAccessPolicyItems{}
+	err := c.request("GET", "/api/v1/accesspolicies", url.Values{
+		"region": []string{region},
+	}, nil, &policies)
+
+	return policies, err
+}
+
+func (c *Client) CloudAccessPolicyByID(region, id string) (CloudAccessPolicy, error) {
+	policy := CloudAccessPolicy{}
+	err := c.request("GET", fmt.Sprintf("/api/v1/accesspolicies/%s", id), url.Values{
+		"region": []string{region},
+	}, nil, &policy)
+
+	return policy, err
+}
+
+func (c *Client) CreateCloudAccessPolicy(region string, input CreateCloudAccessPolicyInput) (CloudAccessPolicy, error) {
+	result := CloudAccessPolicy{}
+
+	data, err := json.Marshal(input)
+	if err != nil {
+		return result, err
+	}
+
+	err = c.request("POST", "/api/v1/accesspolicies", url.Values{
+		"region": []string{region},
+	}, bytes.NewBuffer(data), &result)
+
+	return result, err
+}
+
+func (c *Client) UpdateCloudAccessPolicy(region, id string, input UpdateCloudAccessPolicyInput) (CloudAccessPolicy, error) {
+	result := CloudAccessPolicy{}
+
+	data, err := json.Marshal(input)
+	if err != nil {
+		return result, err
+	}
+
+	err = c.request("POST", fmt.Sprintf("/api/v1/accesspolicies/%s", id), url.Values{
+		"region": []string{region},
+	}, bytes.NewBuffer(data), &result)
+
+	return result, err
+}
+
+func (c *Client) DeleteCloudAccessPolicy(region, id string) error {
+	return c.request("DELETE", fmt.Sprintf("/api/v1/accesspolicies/%s", id), url.Values{
+		"region": []string{region},
+	}, nil, nil)
+}

cloud_access_policy_token.go

@@ -0,0 +1,92 @@
+package gapi
+
+import (
+	"bytes"
+	"encoding/json"
+	"fmt"
+	"net/url"
+	"time"
+)
+
+type CreateCloudAccessPolicyTokenInput struct {
+	AccessPolicyID string    `json:"accessPolicyId"`
+	Name           string    `json:"name"`
+	DisplayName    string    `json:"displayName"`
+	ExpiresAt      time.Time `json:"expiresAt"`
+}
+
+type UpdateCloudAccessPolicyTokenInput struct {
+	DisplayName string `json:"displayName"`
+}
+
+type CloudAccessPolicyToken struct {
+	ID             string    `json:"id"`
+	AccessPolicyID string    `json:"accessPolicyId"`
+	Name           string    `json:"name"`
+	DisplayName    string    `json:"displayName"`
+	ExpiresAt      time.Time `json:"expiresAt"`
+	FirstUsedAt    time.Time `json:"firstUsedAt"`
+	CreatedAt      time.Time `json:"createdAt"`
+	UpdatedAt      time.Time `json:"updatedAt"`
+
+	Token string `json:"token,omitempty"` // Only returned when creating a token.
+}
+
+type CloudAccessPolicyTokenItems struct {
+	Items []*CloudAccessPolicyToken `json:"items"`
+}
+
+func (c *Client) CloudAccessPolicyTokens(region, accessPolicyID string) (CloudAccessPolicyTokenItems, error) {
+	tokens := CloudAccessPolicyTokenItems{}
+	err := c.request("GET", "/api/v1/tokens", url.Values{
+		"region":         []string{region},
+		"accessPolicyId": []string{accessPolicyID},
+	}, nil, &tokens)
+
+	return tokens, err
+}
+
+func (c *Client) CloudAccessPolicyTokenByID(region, id string) (CloudAccessPolicyToken, error) {
+	token := CloudAccessPolicyToken{}
+	err := c.request("GET", fmt.Sprintf("/api/v1/tokens/%s", id), url.Values{
+		"region": []string{region},
+	}, nil, &token)
+
+	return token, err
+}
+
+func (c *Client) CreateCloudAccessPolicyToken(region string, input CreateCloudAccessPolicyTokenInput) (CloudAccessPolicyToken, error) {
+	token := CloudAccessPolicyToken{}
+
+	data, err := json.Marshal(input)
+	if err != nil {
+		return token, err
+	}
+
+	err = c.request("POST", "/api/v1/tokens", url.Values{
+		"region": []string{region},
+	}, bytes.NewBuffer(data), &token)
+
+	return token, err
+}
+
+func (c *Client) UpdateCloudAccessPolicyToken(region, id string, input UpdateCloudAccessPolicyTokenInput) (CloudAccessPolicyToken, error) {
+	token := CloudAccessPolicyToken{}
+
+	data, err := json.Marshal(input)
+	if err != nil {
+		return token, err
+	}
+
+	err = c.request("POST", fmt.Sprintf("/api/v1/tokens/%s", id), url.Values{
+		"region": []string{region},
+	}, bytes.NewBuffer(data), &token)
+
+	return token, err
+}
+
+func (c *Client) DeleteCloudAccessPolicyToken(region, id string) error {
+	return c.request("DELETE", fmt.Sprintf("/api/v1/tokens/%s", id), url.Values{
+		"region": []string{region},
+	}, nil, nil)
+}