RFD-322: Add /v1/ endpoints for organizations and projects

common/src/api/external/mod.rs

@@ -288,6 +288,18 @@ impl TryFrom<String> for NameOrId {
     }
 }
 
+impl From<Name> for NameOrId {
+    fn from(name: Name) -> Self {
+        NameOrId::Name(name)
+    }
+}
+
+impl From<Uuid> for NameOrId {
+    fn from(id: Uuid) -> Self {
+        NameOrId::Id(id)
+    }
+}
+
 impl JsonSchema for NameOrId {
     fn schema_name() -> String {
         "NameOrId".to_string()

nexus/db-model/src/name.rs

@@ -37,6 +37,12 @@ use serde::{Deserialize, Serialize};
 #[display("{0}")]
 pub struct Name(pub external::Name);
 
+impl From<Name> for external::NameOrId {
+    fn from(name: Name) -> Self {
+        Self::Name(name.0)
+    }
+}
+
 NewtypeFrom! { () pub struct Name(external::Name); }
 NewtypeDeref! { () pub struct Name(external::Name); }
 

nexus/src/app/instance.rs

@@ -62,56 +62,36 @@ impl super::Nexus {
         instance_selector: &'a params::InstanceSelector,
     ) -> LookupResult<lookup::Instance<'a>> {
         match instance_selector {
-            params::InstanceSelector { instance: NameOrId::Id(id), .. } => {
-                // TODO: 400 if project or organization are present
+            params::InstanceSelector {
+                project_selector: None,
+                instance: NameOrId::Id(id),
+            } => {
                 let instance =
                     LookupPath::new(opctx, &self.db_datastore).instance_id(*id);
                 Ok(instance)
             }
             params::InstanceSelector {
-                instance: NameOrId::Name(instance_name),
-                project: Some(NameOrId::Id(project_id)),
-                ..
+                project_selector: Some(project_selector),
+                instance: NameOrId::Name(name),
             } => {
-                // TODO: 400 if organization is present
-                let instance = LookupPath::new(opctx, &self.db_datastore)
-                    .project_id(*project_id)
-                    .instance_name(Name::ref_cast(instance_name));
+                let instance = self
+                    .project_lookup(opctx, project_selector)?
+                    .instance_name(Name::ref_cast(name));
                 Ok(instance)
             }
             params::InstanceSelector {
-                instance: NameOrId::Name(instance_name),
-                project: Some(NameOrId::Name(project_name)),
-                organization: Some(NameOrId::Id(organization_id)),
+                project_selector: Some(_),
+                instance: NameOrId::Id(_),
             } => {
-                let instance = LookupPath::new(opctx, &self.db_datastore)
-                    .organization_id(*organization_id)
-                    .project_name(Name::ref_cast(project_name))
-                    .instance_name(Name::ref_cast(instance_name));
-                Ok(instance)
+                Err(Error::invalid_request(
+                    "when providing instance as an ID, project should not be specified",
+                ))
             }
-            params::InstanceSelector {
-                instance: NameOrId::Name(instance_name),
-                project: Some(NameOrId::Name(project_name)),
-                organization: Some(NameOrId::Name(organization_name)),
-            } => {
-                let instance = LookupPath::new(opctx, &self.db_datastore)
-                    .organization_name(Name::ref_cast(organization_name))
-                    .project_name(Name::ref_cast(project_name))
-                    .instance_name(Name::ref_cast(instance_name));
-                Ok(instance)
+            _ => {
+                Err(Error::invalid_request(
+                    "instance should either be UUID or project should be specified",
+                ))
             }
-            // TODO: Add a better error message
-            _ => Err(Error::InvalidRequest {
-                message: "
-                Unable to resolve instance. Expected one of
-                    - instance: Uuid 
-                    - instance: Name, project: Uuid
-                    - instance: Name, project: Name, organization: Uuid
-                    - instance: Name, project: Name, organization: Name
-                "
-                .to_string(),
-            }),
         }
     }
 

nexus/src/app/organization.rs

@@ -7,6 +7,7 @@
 use crate::authz;
 use crate::context::OpContext;
 use crate::db;
+use crate::db::lookup;
 use crate::db::lookup::LookupPath;
 use crate::db::model::Name;
 use crate::external_api::params;
@@ -18,10 +19,32 @@ use omicron_common::api::external::DeleteResult;
 use omicron_common::api::external::Error;
 use omicron_common::api::external::ListResultVec;
 use omicron_common::api::external::LookupResult;
+use omicron_common::api::external::NameOrId;
 use omicron_common::api::external::UpdateResult;
+use ref_cast::RefCast;
 use uuid::Uuid;
 
 impl super::Nexus {
+    pub fn organization_lookup<'a>(
+        &'a self,
+        opctx: &'a OpContext,
+        organization_selector: &'a params::OrganizationSelector,
+    ) -> LookupResult<lookup::Organization<'a>> {
+        match organization_selector {
+            params::OrganizationSelector { organization: NameOrId::Id(id) } => {
+                let organization = LookupPath::new(opctx, &self.db_datastore)
+                    .organization_id(*id);
+                Ok(organization)
+            }
+            params::OrganizationSelector {
+                organization: NameOrId::Name(name),
+            } => {
+                let organization = LookupPath::new(opctx, &self.db_datastore)
+                    .organization_name(Name::ref_cast(name));
+                Ok(organization)
+            }
+        }
+    }
     pub async fn organization_create(
         &self,
         opctx: &OpContext,
@@ -30,30 +53,6 @@ impl super::Nexus {
         self.db_datastore.organization_create(opctx, new_organization).await
     }
 
-    pub async fn organization_fetch(
-        &self,
-        opctx: &OpContext,
-        organization_name: &Name,
-    ) -> LookupResult<db::model::Organization> {
-        let (.., db_organization) = LookupPath::new(opctx, &self.db_datastore)
-            .organization_name(organization_name)
-            .fetch()
-            .await?;
-        Ok(db_organization)
-    }
-
-    pub async fn organization_fetch_by_id(
-        &self,
-        opctx: &OpContext,
-        organization_id: &Uuid,
-    ) -> LookupResult<db::model::Organization> {
-        let (.., db_organization) = LookupPath::new(opctx, &self.db_datastore)
-            .organization_id(*organization_id)
-            .fetch()
-            .await?;
-        Ok(db_organization)
-    }
-
     pub async fn organizations_list_by_name(
         &self,
         opctx: &OpContext,
@@ -73,27 +72,20 @@ impl super::Nexus {
     pub async fn organization_delete(
         &self,
         opctx: &OpContext,
-        organization_name: &Name,
+        organization_lookup: &lookup::Organization<'_>,
     ) -> DeleteResult {
-        let (.., authz_org, db_org) =
-            LookupPath::new(opctx, &self.db_datastore)
-                .organization_name(organization_name)
-                .fetch()
-                .await?;
+        let (.., authz_org, db_org) = organization_lookup.fetch().await?;
         self.db_datastore.organization_delete(opctx, &authz_org, &db_org).await
     }
 
     pub async fn organization_update(
         &self,
         opctx: &OpContext,
-        organization_name: &Name,
+        organization_lookup: &lookup::Organization<'_>,
         new_params: &params::OrganizationUpdate,
     ) -> UpdateResult<db::model::Organization> {
         let (.., authz_organization) =
-            LookupPath::new(opctx, &self.db_datastore)
-                .organization_name(organization_name)
-                .lookup_for(authz::Action::Modify)
-                .await?;
+            organization_lookup.lookup_for(authz::Action::Modify).await?;
         self.db_datastore
             .organization_update(
                 opctx,
@@ -108,12 +100,10 @@ impl super::Nexus {
     pub async fn organization_fetch_policy(
         &self,
         opctx: &OpContext,
-        organization_name: &Name,
+        organization_lookup: &lookup::Organization<'_>,
     ) -> LookupResult<shared::Policy<authz::OrganizationRole>> {
-        let (.., authz_org) = LookupPath::new(opctx, &self.db_datastore)
-            .organization_name(organization_name)
-            .lookup_for(authz::Action::ReadPolicy)
-            .await?;
+        let (.., authz_org) =
+            organization_lookup.lookup_for(authz::Action::ReadPolicy).await?;
         let role_assignments = self
             .db_datastore
             .role_assignment_fetch_visible(opctx, &authz_org)
@@ -128,13 +118,11 @@ impl super::Nexus {
     pub async fn organization_update_policy(
         &self,
         opctx: &OpContext,
-        organization_name: &Name,
+        organization_lookup: &lookup::Organization<'_>,
         policy: &shared::Policy<authz::OrganizationRole>,
     ) -> UpdateResult<shared::Policy<authz::OrganizationRole>> {
-        let (.., authz_org) = LookupPath::new(opctx, &self.db_datastore)
-            .organization_name(organization_name)
-            .lookup_for(authz::Action::ModifyPolicy)
-            .await?;
+        let (.., authz_org) =
+            organization_lookup.lookup_for(authz::Action::ModifyPolicy).await?;
 
         let role_assignments = self
             .db_datastore