Add keyring http endpoints

[kyhavlov]

First pass at adding the keyring endpoints for #2502

[kyhavlov]

Should these functions take an argument for overriding the ACL token used? Some of the other api functions do, but some don't so I wasn't sure.

[slackpad]

No, but I'd q *QueryOptions and q *WriteOptionsarguments to these methods and get the token from there. It kind of sucks that there's some extra fields in those that don't matter here, but that's kind of the common signature for these. We could add a helper that errors if there are things that are not supported, but we can just document for now.

[kyhavlov]

Is just returning the first error fine for these KeyringResponses? I thought about using multierror but it didn't seem useful because you'd just get a bunch of duplicate errors ("key must be 16/24/32 length" and the like)

[slackpad]

Yeah that makes sense. We could dedup them into a multierror maybe so you can tell if you have a handful of problems vs. having to run several times, since a short list would be super useful.

[slackpad]

Looks good - put a few comments in the review!

[slackpad]

Yeah that makes sense. We could dedup them into a multierror maybe so you can tell if you have a handful of problems vs. having to run several times, since a short list would be super useful.

[slackpad]

I'm thinking we can get rid of these /verb suffixes in the URLs and use HTTP verbs for everything:

GET /v1/operator/keyring -> list keys
POST /v1/operator/keyring -> Install a key
PUT /v1/operator/keyring -> use a key
DELETE /v1/operator/keyring -> remove a key

Still not super REST-y since we don't have the key in the path, but looks more REST-y and keeps the API a little smaller.

[slackpad]

This has extra fields that we wouldn't ever want to plumb directly (there's currently a panic() in the internal endpoint handler that we should change to an error if the Op isn't understood), so I'd make a simple unexported struct (define in here is fine) and a local string for the token and use those. There's stuff we don't use in this big struct so it's confusing to accept that here.

[slackpad]

Length check here?

[slackpad]

Didn't check a WAN vs. LAN (prolly count and compare at the end).

[slackpad]

This is a DELETE.

[slackpad]

I'd make this an unexported struct keyringRequest since it's not part of your interface for the actual API functions.

[slackpad]

No, but I'd q *QueryOptions and q *WriteOptionsarguments to these methods and get the token from there. It kind of sucks that there's some extra fields in those that don't matter here, but that's kind of the common signature for these. We could add a helper that errors if there are things that are not supported, but we can just document for now.

[slackpad]

It might be nice to add an endpoint here (or in the API client based on this) that summarizes the keys that have been successfully installed everywhere and are safe to switch to. Probably not in this pass, but it would be nice to know as an operator in a very high level way "this key is good to go".

[kyhavlov]

Addressed comments, should be ready for another look

[slackpad]

Just a couple trivial things and this is good to commit.

[slackpad]

Do you need the omitempty for anything?

[kyhavlov]

I can't remember why I added this - it's the only field in the struct and we only ever decode to it, so there's no reason for it to be in there

[slackpad]

Is this order deterministic?

[kyhavlov]

Yes, it's consistent; here we call executeKeyringOp with wan = true, then with wan = false, and in this test we always get back the wan reply first.

[slackpad]

These descriptions all say PUT - need to update with the right verbs.

[slackpad]

LGTM