Finish integration into Neos, provider wrapper script

Author: hlubek

Classes/Controller/BackendController.php

@@ -0,0 +1,18 @@
+<?php
+namespace Flowpack\Prunner\Controller;
+
+use Neos\Flow\Annotations as Flow;
+
+class BackendController extends \Neos\Flow\Mvc\Controller\ActionController
+{
+
+    public function indexAction()
+    {
+
+    }
+
+    public function frameAction()
+    {
+
+    }
+}

Classes/Controller/ProxyController.php

@@ -0,0 +1,84 @@
+<?php
+namespace Flowpack\Prunner\Controller;
+
+use Firebase\JWT\JWT;
+use GuzzleHttp\Client;
+use Neos\Flow\Annotations as Flow;
+use Symfony\Component\Yaml\Exception\ParseException;
+use Symfony\Component\Yaml\Yaml;
+
+class ProxyController extends \Neos\Flow\Mvc\Controller\ActionController
+{
+
+    /**
+     * @Flow\InjectConfiguration(path="apiBaseUrl")
+     * @var string
+     */
+    protected $apiBaseUrl;
+
+    /**
+     * @Flow\InjectConfiguration(path="directory")
+     * @var string
+     */
+    protected $directory;
+
+    /**
+     * @Flow\InjectConfiguration(path="jwtSecret")
+     * @var string
+     */
+    protected $jwtSecret;
+
+    /**
+     * @Flow\Inject
+     * @var \Neos\Flow\Security\Context
+     */
+    protected $context;
+
+    public function indexAction(string $path, string $subpath)
+    {
+        // Simple workaround to have slashes in route parts...
+        $apiPath = $path;
+        if ($subpath !== '') {
+            $apiPath .= '/' . $subpath;
+        }
+        $url = rtrim($this->apiBaseUrl, '/') . '/' . $apiPath;
+
+        // Create JWT token for user
+
+        if (!empty($this->jwtSecret)) {
+            $jwtSecret = $this->jwtSecret;
+        } else {
+            try {
+                // Try to parse prunner config to get JWT secret
+                $config = Yaml::parseFile($this->directory . '/.prunner.yml');
+                $jwtSecret = $config['jwt_secret'];
+            } catch (ParseException $e) {
+                $this->response->setContentType('application/json');
+                $this->response->setStatusCode(500);
+                return json_encode(['error' => 'Invalid prunner configuration']);
+            }
+        }
+
+        $accountIdentifier = $this->context->getAccount()->getAccountIdentifier();
+
+        // Generate JWT token on the fly with expiration in 60 seconds
+        $authToken = JWT::encode([
+            'sub' => $accountIdentifier,
+            'exp' => time() + 60
+        ], $jwtSecret, 'HS256');
+
+        $client = new Client();
+        $response = $client->request($this->request->getHttpRequest()->getMethod(), $url, [
+            'headers' => [
+                'Authorization' => 'Bearer ' . $authToken
+            ],
+            'body' => $this->request->getHttpRequest()->getBody(),
+            'http_errors' => false
+        ]);
+
+        $this->response->setContentType('application/json');
+        $this->response->setStatusCode($response->getStatusCode());
+
+        return $response->getBody();
+    }
+}

Configuration/Policy.yaml

@@ -0,0 +1,19 @@
+privilegeTargets:
+  'Neos\Neos\Security\Authorization\Privilege\ModulePrivilege':
+    'Flowpack.Prunner:BackendModule':
+      matcher: 'administration/prunner'
+
+  'Neos\Flow\Security\Authorization\Privilege\Method\MethodPrivilege':
+    'Flowpack.Prunner:ApiProxy':
+      label: Perform proxy requests to prunner API
+      matcher: 'method(Flowpack\Prunner\Controller\ProxyController->indexAction())'
+
+roles:
+  'Neos.Neos:Administrator':
+    privileges:
+      -
+        privilegeTarget: 'Flowpack.Prunner:BackendModule'
+        permission: GRANT
+      -
+        privilegeTarget: 'Flowpack.Prunner:ApiProxy'
+        permission: GRANT

Configuration/Routes.yaml

@@ -0,0 +1,20 @@
+-
+  name: 'Prunner Frame'
+  uriPattern: 'neos/prunner/frame'
+  defaults:
+    '@package': 'Flowpack.Prunner'
+    '@controller': 'Backend'
+    '@format': 'html'
+    '@action': 'frame'
+  appendExceedingArguments: true
+
+-
+  name: 'Prunner API Proxy'
+  uriPattern: 'neos/prunner/proxy/{path}(/{subpath})'
+  defaults:
+    '@package': 'Flowpack.Prunner'
+    '@controller': 'Proxy'
+    '@format': 'json'
+    '@action': 'index'
+    subpath: ''
+  appendExceedingArguments: true

Configuration/Settings.yaml

@@ -0,0 +1,34 @@
+Flowpack:
+  Prunner:
+    # Base URL to prunner API
+    apiBaseUrl: 'http://localhost:9009/'
+    # Working directory of prunner for loading config
+    directory: '%FLOW_PATH_ROOT%'
+    # Explicitly set JWT secret if prunner config is not accessible
+    jwtSecret: ~
+
+Neos:
+  Neos:
+    modules:
+      'administration':
+        submodules:
+          'prunner':
+            label: 'Prunner'
+            controller: 'Flowpack\Prunner\Controller\BackendController'
+            description: 'Run custom pipelines with tasks'
+            icon: 'fas fa-exchange'
+
+  Flow:
+    security:
+      authentication:
+        providers:
+          'Neos.Neos:Backend':
+            requestPatterns:
+              'Flowpack.Prunner:Controllers':
+                pattern: 'ControllerObjectName'
+                patternOptions:
+                  controllerObjectNamePattern: 'Flowpack\Prunner\Controller\.*'
+    mvc:
+      routes:
+        'Flowpack.Prunner':
+          position: 'before Neos.Neos'

Resources/Private/Scripts/prunner

@@ -0,0 +1,16 @@
+#!/bin/sh
+
+SCRIPTS_DIR=$(dirname "$(realpath $0)")
+
+OS_TYPE=$(uname -s)
+ARCH_TYPE=$(uname -m)
+
+# Make a very simple check if we have a bundled binary for the right OS / architecture
+BIN_TARGET="$SCRIPTS_DIR/../Bin/$OS_TYPE/$ARCH_TYPE/prunner"
+
+if [ -f "$BIN_TARGET" ]; then
+    $BIN_TARGET
+else
+    echo "Unsupported OS or architecture"
+    exit 1
+fi

Resources/Private/Templates/Backend/Frame.html

@@ -0,0 +1,3 @@
+<div data-component="PrunnerUi" data-prop-api-base-url="/neos/prunner/proxy/" data-prop-extra-api-headers="{f:format.json(value: {X-Flow-Csrftoken: '{f:security.csrfToken()}'})}"></div>
+<script src="{f:uri.resource(path: 'resource://Flowpack.Prunner/Public/prunner-ui/index.js')}"></script>
+<link rel="stylesheet" type="text/css" href="{f:uri.resource(path: 'resource://Flowpack.Prunner/Public/prunner-ui/index.css')}" />

Resources/Private/Templates/Backend/Index.html

@@ -0,0 +1,4 @@
+{namespace neos=Neos\Neos\ViewHelpers}
+<div class="neos-content neos-container-fluid" style="height: calc(100vh - 200px)">
+    <iframe src="/neos/prunner/frame" width="100%" height="100%"></iframe>
+</div>