package service import ( "context" "errors" "time" "github.com/fleetdm/fleet/v4/server/fleet" "github.com/fleetdm/fleet/v4/server/mdm/maintainedapps" ) type addFleetMaintainedAppRequest struct { TeamID *uint `json:"team_id"` AppID uint `json:"fleet_maintained_app_id"` InstallScript string `json:"install_script"` PreInstallQuery string `json:"pre_install_query"` PostInstallScript string `json:"post_install_script"` SelfService bool `json:"self_service"` UninstallScript string `json:"uninstall_script"` } type addFleetMaintainedAppResponse struct { Err error `json:"error,omitempty"` } func (r addFleetMaintainedAppResponse) error() error { return r.Err } func addFleetMaintainedAppEndpoint(ctx context.Context, request interface{}, svc fleet.Service) (errorer, error) { req := request.(*addFleetMaintainedAppRequest) ctx, cancel := context.WithTimeout(ctx, maintainedapps.InstallerTimeout) defer cancel() err := svc.AddFleetMaintainedApp( ctx, req.TeamID, req.AppID, req.InstallScript, req.PreInstallQuery, req.PostInstallScript, req.UninstallScript, req.SelfService, ) if err != nil { if errors.Is(err, context.DeadlineExceeded) { err = fleet.NewGatewayTimeoutError("Couldn't upload. Request timeout. Please make sure your server and load balancer timeout is long enough.", err) } return &addFleetMaintainedAppResponse{Err: err}, nil } return &addFleetMaintainedAppResponse{}, nil } func (svc *Service) AddFleetMaintainedApp(ctx context.Context, teamID *uint, appID uint, installScript, preInstallQuery, postInstallScript, uninstallScript string, selfService bool) error { // skipauth: No authorization check needed due to implementation returning // only license error. svc.authz.SkipAuthorization(ctx) return fleet.ErrMissingLicense } type listFleetMaintainedAppsRequest struct { fleet.ListOptions TeamID uint `query:"team_id"` } type listFleetMaintainedAppsResponse struct { Count int `json:"count"` AppsUpdatedAt *time.Time `json:"apps_updated_at"` FleetMaintainedApps []fleet.MaintainedApp `json:"fleet_maintained_apps"` Meta *fleet.PaginationMetadata `json:"meta"` Err error `json:"error,omitempty"` } func (r listFleetMaintainedAppsResponse) error() error { return r.Err } func listFleetMaintainedAppsEndpoint(ctx context.Context, request any, svc fleet.Service) (errorer, error) { req := request.(*listFleetMaintainedAppsRequest) req.IncludeMetadata = true apps, meta, err := svc.ListFleetMaintainedApps(ctx, req.TeamID, req.ListOptions) if err != nil { return listFleetMaintainedAppsResponse{Err: err}, nil } var latest time.Time for _, app := range apps { if app.UpdatedAt != nil && !app.UpdatedAt.IsZero() && app.UpdatedAt.After(latest) { latest = *app.UpdatedAt } } listResp := listFleetMaintainedAppsResponse{ FleetMaintainedApps: apps, Count: int(meta.TotalResults), //nolint:gosec // dismiss G115 Meta: meta, } if !latest.IsZero() { listResp.AppsUpdatedAt = &latest } return listResp, nil } func (svc *Service) ListFleetMaintainedApps(ctx context.Context, teamID uint, opts fleet.ListOptions) ([]fleet.MaintainedApp, *fleet.PaginationMetadata, error) { // skipauth: No authorization check needed due to implementation returning // only license error. svc.authz.SkipAuthorization(ctx) return nil, nil, fleet.ErrMissingLicense } type getFleetMaintainedAppRequest struct { AppID uint `url:"app_id"` } type getFleetMaintainedAppResponse struct { FleetMaintainedApp *fleet.MaintainedApp `json:"fleet_maintained_app"` Err error `json:"error,omitempty"` } func (r getFleetMaintainedAppResponse) error() error { return r.Err } func getFleetMaintainedApp(ctx context.Context, request any, svc fleet.Service) (errorer, error) { req := request.(*getFleetMaintainedAppRequest) app, err := svc.GetFleetMaintainedApp(ctx, req.AppID) if err != nil { return getFleetMaintainedAppResponse{Err: err}, nil } return getFleetMaintainedAppResponse{FleetMaintainedApp: app}, nil } func (svc *Service) GetFleetMaintainedApp(ctx context.Context, appID uint) (*fleet.MaintainedApp, error) { // skipauth: No authorization check needed due to implementation returning // only license error. svc.authz.SkipAuthorization(ctx) return nil, fleet.ErrMissingLicense }