move acl to pbs_config workspaces, pbs_api_types cleanups

2021-09-09 10:32:44 +02:00
parent 1cb08a0a05
commit 8cc3760e74
58 changed files with 1064 additions and 1161 deletions
--- a/src/api2/config/access/openid.rs
+++ b/src/api2/config/access/openid.rs
@ -6,9 +6,10 @@ use ::serde::{Deserialize, Serialize};

 use proxmox::api::{api, Permission, Router, RpcEnvironment};

+use pbs_api_types::{
+    PROXMOX_CONFIG_DIGEST_SCHEMA, REALM_ID_SCHEMA, PRIV_SYS_AUDIT, PRIV_REALM_ALLOCATE,
+};
 use pbs_config::domains::{self, OpenIdRealmConfig, OpenIdRealmConfigUpdater};
-use crate::config::acl::{PRIV_SYS_AUDIT, PRIV_REALM_ALLOCATE};
-use crate::api2::types::*;

 #[api(
    input: {
--- a/src/api2/config/acme.rs
+++ b/src/api2/config/acme.rs
@ -16,9 +16,10 @@ use proxmox::list_subdirs_api_method;
 use proxmox_acme_rs::account::AccountData as AcmeAccountData;
 use proxmox_acme_rs::Account;

+use pbs_api_types::{Authid, PRIV_SYS_MODIFY};
+
 use crate::acme::AcmeClient;
-use crate::api2::types::{AcmeAccountName, AcmeChallengeSchema, Authid, KnownAcmeDirectory};
-use crate::config::acl::PRIV_SYS_MODIFY;
+use crate::api2::types::{AcmeAccountName, AcmeChallengeSchema, KnownAcmeDirectory};
 use crate::config::acme::plugin::{
    self, DnsPlugin, DnsPluginCore, DnsPluginCoreUpdater, PLUGIN_ID_SCHEMA,
 };
--- a/src/api2/config/changer.rs
+++ b/src/api2/config/changer.rs
@ -11,23 +11,13 @@ use proxmox::api::{
 };

 use pbs_api_types::{
-    Authid,
-    PROXMOX_CONFIG_DIGEST_SCHEMA,
-    CHANGER_NAME_SCHEMA,
-    SLOT_ARRAY_SCHEMA,
-    ScsiTapeChanger,
-    ScsiTapeChangerUpdater,
-    LtoTapeDrive,
+    Authid, ScsiTapeChanger, ScsiTapeChangerUpdater, LtoTapeDrive,
+    PROXMOX_CONFIG_DIGEST_SCHEMA, CHANGER_NAME_SCHEMA, SLOT_ARRAY_SCHEMA,
+    PRIV_TAPE_AUDIT, PRIV_TAPE_MODIFY,
 };

 use crate::{
-    config::{
-        cached_user_info::CachedUserInfo,
-        acl::{
-            PRIV_TAPE_AUDIT,
-            PRIV_TAPE_MODIFY,
-        },
-    },
+    config::cached_user_info::CachedUserInfo,
    tape::{
        linux_tape_changer_list,
        check_drive_path,
--- a/src/api2/config/datastore.rs
+++ b/src/api2/config/datastore.rs
@ -11,6 +11,11 @@ use proxmox::api::schema::{ApiType, parse_property_string};
 use pbs_datastore::chunk_store::ChunkStore;
 use pbs_datastore::task::TaskState;
 use pbs_config::BackupLockGuard;
+use pbs_api_types::{
+    Authid, DatastoreNotify,
+    DATASTORE_SCHEMA, PROXMOX_CONFIG_DIGEST_SCHEMA,
+    PRIV_DATASTORE_ALLOCATE, PRIV_DATASTORE_AUDIT, PRIV_DATASTORE_MODIFY,
+};

 use crate::api2::config::sync::delete_sync_job;
 use crate::api2::config::verify::delete_verification_job;
@ -19,10 +24,8 @@ use crate::api2::admin::{
    sync::list_sync_jobs,
    verify::list_verification_jobs,
 };
-use crate::api2::types::*;
 use crate::config::cached_user_info::CachedUserInfo;
 use crate::config::datastore::{self, DataStoreConfig, DataStoreConfigUpdater};
-use crate::config::acl::{PRIV_DATASTORE_ALLOCATE, PRIV_DATASTORE_AUDIT, PRIV_DATASTORE_MODIFY};
 use crate::server::{jobstate, WorkerTask};

 #[api(
--- a/src/api2/config/drive.rs
+++ b/src/api2/config/drive.rs
@ -5,22 +5,12 @@ use serde_json::Value;
 use proxmox::api::{api, Router, RpcEnvironment, Permission};

 use pbs_api_types::{
-    Authid,
-    PROXMOX_CONFIG_DIGEST_SCHEMA,
-    DRIVE_NAME_SCHEMA,
-    LtoTapeDrive,
-    LtoTapeDriveUpdater,
-    ScsiTapeChanger,
+    Authid, LtoTapeDrive, LtoTapeDriveUpdater, ScsiTapeChanger,
+    PROXMOX_CONFIG_DIGEST_SCHEMA, DRIVE_NAME_SCHEMA, PRIV_TAPE_AUDIT, PRIV_TAPE_MODIFY,
 };

 use crate::{
-    config::{
-        cached_user_info::CachedUserInfo,
-        acl::{
-            PRIV_TAPE_AUDIT,
-            PRIV_TAPE_MODIFY,
-        },
-    },
+    config::cached_user_info::CachedUserInfo,
    tape::{
        lto_tape_device_list,
        check_drive_path,
--- a/src/api2/config/media_pool.rs
+++ b/src/api2/config/media_pool.rs
@ -11,21 +11,11 @@ use proxmox::{
 };

 use pbs_api_types::{
-    Authid,
-    MEDIA_POOL_NAME_SCHEMA,
-    MediaPoolConfig,
-    MediaPoolConfigUpdater,
+    Authid, MediaPoolConfig, MediaPoolConfigUpdater, MEDIA_POOL_NAME_SCHEMA,
+    PRIV_TAPE_AUDIT, PRIV_TAPE_MODIFY,
 };

-use crate::{
-    config::{
-        cached_user_info::CachedUserInfo,
-        acl::{
-            PRIV_TAPE_AUDIT,
-            PRIV_TAPE_MODIFY,
-        },
-    },
-};
+use crate::config::cached_user_info::CachedUserInfo;

 #[api(
    protected: true,
--- a/src/api2/config/remote.rs
+++ b/src/api2/config/remote.rs
@ -9,11 +9,11 @@ use pbs_client::{HttpClient, HttpClientOptions};
 use pbs_api_types::{
    REMOTE_ID_SCHEMA, REMOTE_PASSWORD_SCHEMA, Remote, RemoteConfig, RemoteConfigUpdater,
    Authid, PROXMOX_CONFIG_DIGEST_SCHEMA, DataStoreListItem, SyncJobConfig,
+    PRIV_REMOTE_AUDIT, PRIV_REMOTE_MODIFY,
 };
 use pbs_config::sync;

 use crate::config::cached_user_info::CachedUserInfo;
-use crate::config::acl::{PRIV_REMOTE_AUDIT, PRIV_REMOTE_MODIFY};

 #[api(
    input: {
--- a/src/api2/config/sync.rs
+++ b/src/api2/config/sync.rs
@ -6,18 +6,11 @@ use proxmox::api::{api, Permission, Router, RpcEnvironment};

 use pbs_api_types::{
    Authid, SyncJobConfig, SyncJobConfigUpdater, JOB_ID_SCHEMA, PROXMOX_CONFIG_DIGEST_SCHEMA,
+    PRIV_DATASTORE_AUDIT, PRIV_DATASTORE_BACKUP, PRIV_DATASTORE_MODIFY, PRIV_DATASTORE_PRUNE,
+    PRIV_REMOTE_AUDIT, PRIV_REMOTE_READ,
 };
 use pbs_config::sync;

-use crate::config::acl::{
-    PRIV_DATASTORE_AUDIT,
-    PRIV_DATASTORE_BACKUP,
-    PRIV_DATASTORE_MODIFY,
-    PRIV_DATASTORE_PRUNE,
-    PRIV_REMOTE_AUDIT,
-    PRIV_REMOTE_READ,
-};
-
 use crate::config::cached_user_info::CachedUserInfo;

 pub fn check_sync_job_read_access(
@ -371,7 +364,7 @@ user: read@pbs
 user: write@pbs

 "###).expect("test user.cfg is not parsable");
-    let acl_tree = crate::config::acl::AclTree::from_raw(r###"
+    let acl_tree = pbs_config::acl::AclTree::from_raw(r###"
 acl:1:/datastore/localstore1:read@pbs,write@pbs:DatastoreAudit
 acl:1:/datastore/localstore1:write@pbs:DatastoreBackup
 acl:1:/datastore/localstore2:write@pbs:DatastorePowerUser
--- a/src/api2/config/tape_backup_job.rs
+++ b/src/api2/config/tape_backup_job.rs
@ -7,17 +7,10 @@ use proxmox::api::{api, Router, RpcEnvironment, Permission};
 use pbs_api_types::{
    Authid, TapeBackupJobConfig, TapeBackupJobConfigUpdater,
    JOB_ID_SCHEMA, PROXMOX_CONFIG_DIGEST_SCHEMA,
+    PRIV_TAPE_AUDIT, PRIV_TAPE_MODIFY,
 };

-use crate::{
-    config::{
-        cached_user_info::CachedUserInfo,
-        acl::{
-            PRIV_TAPE_AUDIT,
-            PRIV_TAPE_MODIFY,
-        },
-    },
-};
+use crate::config::cached_user_info::CachedUserInfo;

 #[api(
    input: {
--- a/src/api2/config/tape_encryption_keys.rs
+++ b/src/api2/config/tape_encryption_keys.rs
@ -15,6 +15,7 @@ use pbs_api_types::{
    Fingerprint, KeyInfo, Kdf,
    TAPE_ENCRYPTION_KEY_FINGERPRINT_SCHEMA,
    PROXMOX_CONFIG_DIGEST_SCHEMA, PASSWORD_HINT_SCHEMA,
+    PRIV_TAPE_AUDIT, PRIV_TAPE_MODIFY,
 };

 use pbs_config::key_config::KeyConfig;
@ -28,15 +29,6 @@ use pbs_config::tape_encryption_keys::{
    insert_key,
 };

-use crate::{
-    config::{
-        acl::{
-            PRIV_TAPE_AUDIT,
-            PRIV_TAPE_MODIFY,
-        },
-    },
-};
-
 #[api(
    input: {
        properties: {},
--- a/src/api2/config/verify.rs
+++ b/src/api2/config/verify.rs
@ -6,15 +6,10 @@ use proxmox::api::{api, Permission, Router, RpcEnvironment};

 use pbs_api_types::{
    Authid, VerificationJobConfig, VerificationJobConfigUpdater, JOB_ID_SCHEMA,
-    PROXMOX_CONFIG_DIGEST_SCHEMA,
+    PROXMOX_CONFIG_DIGEST_SCHEMA, PRIV_DATASTORE_AUDIT, PRIV_DATASTORE_VERIFY,
 };
 use pbs_config::verify;

-use crate::config::acl::{
-    PRIV_DATASTORE_AUDIT,
-    PRIV_DATASTORE_VERIFY,
-};
-
 use crate::config::cached_user_info::CachedUserInfo;

 #[api(