Refactor server handlers and add JSON helper functions

Author: jadolg

image.go

@@ -99,11 +99,7 @@ func createLayerMetadata(layerDir, diffID string, index int, imageConfig *ImageC
 		layerJSON["parent"] = prevDiffID
 	}
 
-	layerJSONBytes, err := json.Marshal(layerJSON)
-	if err != nil {
-		return fmt.Errorf("failed to marshal layer JSON: %w", err)
-	}
-	return os.WriteFile(filepath.Join(layerDir, "json"), layerJSONBytes, 0644)
+	return marshalJSONToFile(layerJSON, layerDir, "json")
 }
 
 // downloadAllLayers downloads all layers and returns their diff IDs
@@ -141,11 +137,7 @@ func createDockerManifest(ref ImageReference, configDigest string, layerPaths []
 		},
 	}
 
-	manifestJSONBytes, err := json.Marshal(manifestJSON)
-	if err != nil {
-		return fmt.Errorf("failed to marshal manifest JSON: %w", err)
-	}
-	return os.WriteFile(filepath.Join(tempDir, "manifest.json"), manifestJSONBytes, 0644)
+	return marshalJSONToFile(manifestJSON, tempDir, "manifest.json")
 }
 
 // createRepositoriesFile creates the repositories file for docker load
@@ -157,11 +149,7 @@ func createRepositoriesFile(ref ImageReference, layerPaths []string, tempDir str
 		imageName: {ref.Tag: topLayer},
 	}
 
-	reposBytes, err := json.Marshal(repositories)
-	if err != nil {
-		return fmt.Errorf("failed to marshal repositories JSON: %w", err)
-	}
-	return os.WriteFile(filepath.Join(tempDir, "repositories"), reposBytes, 0644)
+	return marshalJSONToFile(repositories, tempDir, "repositories")
 }
 
 // createOutputTar creates the final tar archive
@@ -247,3 +235,12 @@ func GetImagePlatforms(imageRef string) ([]Platform, error) {
 
 	return client.GetPlatforms(ref)
 }
+
+// marshalJSONToFile marshals v to JSON and writes it to dir/filename.
+func marshalJSONToFile(v interface{}, dir, filename string) error {
+	data, err := json.Marshal(v)
+	if err != nil {
+		return fmt.Errorf("failed to marshal %s: %w", filename, err)
+	}
+	return os.WriteFile(filepath.Join(dir, filename), data, 0644)
+}

registry.go

@@ -14,6 +14,7 @@ import (
 
 const bearerPrefix = "Bearer "
 const responseBodyStr = "response body"
+const invalidImageReferenceFormat = "invalid image reference: %w"
 
 // ImageReference represents a parsed Docker image reference
 type ImageReference struct {
@@ -133,14 +134,13 @@ func NewRegistryClient() *RegistryClient {
 // Authenticate obtains a token for the given image
 func (c *RegistryClient) Authenticate(ref ImageReference) error {
 	if err := ValidateImageReference(ref); err != nil {
-		return fmt.Errorf("invalid image reference: %w", err)
+		return fmt.Errorf(invalidImageReferenceFormat, err)
 	}
 
 	creds, hasCredentials := GetCredentials(ref.Registry)
+	c.username = "anonymous"
 	if hasCredentials {
 		c.username = creds.Username
-	} else {
-		c.username = "anonymous"
 	}
 
 	registryURL, err := buildRegistryURL(ref.Registry, "/v2/")
@@ -153,11 +153,12 @@ func (c *RegistryClient) Authenticate(ref ImageReference) error {
 	}
 	defer closeWithLog(resp.Body, responseBodyStr)
 
-	if resp.StatusCode == http.StatusOK {
+	switch resp.StatusCode {
+	case http.StatusOK:
 		return nil // No auth required
-	}
-
-	if resp.StatusCode != http.StatusUnauthorized {
+	case http.StatusUnauthorized:
+		// continue to token exchange below
+	default:
 		return fmt.Errorf("unexpected status: %d", resp.StatusCode)
 	}
 
@@ -168,56 +169,70 @@ func (c *RegistryClient) Authenticate(ref ImageReference) error {
 
 	realm, service, scope := parseAuthHeader(authHeader, ref.Repository)
 
-	// Validate the realm URL to prevent SSRF
+	if err := validateAuthRealm(realm); err != nil {
+		return err
+	}
+
+	token, err := c.fetchToken(realm, service, scope, creds, hasCredentials)
+	if err != nil {
+		return err
+	}
+	c.token = token
+	return nil
+}
+
+// validateAuthRealm checks that the token realm URL is safe to contact (SSRF protection).
+func validateAuthRealm(realm string) error {
 	parsedRealm, err := url.Parse(realm)
 	if err != nil {
 		return fmt.Errorf("invalid auth realm URL: %w", err)
 	}
 	if parsedRealm.Scheme != "https" && parsedRealm.Scheme != "http" {
 		return fmt.Errorf("invalid auth realm scheme: %s", parsedRealm.Scheme)
 	}
-	// Validate the realm host to prevent SSRF to internal/private networks
 	if err := validateRegistry(parsedRealm.Host); err != nil {
 		return fmt.Errorf("invalid auth realm host: %w", err)
 	}
+	return nil
+}
 
+// fetchToken requests a Bearer token from the auth realm and returns it.
+func (c *RegistryClient) fetchToken(realm, service, scope string, creds RegistryCredentials, hasCredentials bool) (string, error) {
 	tokenURL := fmt.Sprintf("%s?service=%s&scope=%s", realm, url.QueryEscape(service), url.QueryEscape(scope))
 
 	req, err := http.NewRequest("GET", tokenURL, nil)
 	if err != nil {
-		return err
+		return "", err
 	}
-
 	if hasCredentials {
 		auth := base64.StdEncoding.EncodeToString([]byte(creds.Username + ":" + creds.Password))
 		req.Header.Set("Authorization", "Basic "+auth)
 	}
 
-	resp, err = c.httpClient.Do(req)
+	resp, err := c.httpClient.Do(req)
 	if err != nil {
-		return err
+		return "", err
 	}
 	defer closeWithLog(resp.Body, responseBodyStr)
 
 	if resp.StatusCode != http.StatusOK {
 		body, _ := io.ReadAll(io.LimitReader(resp.Body, 4096))
-		return fmt.Errorf("authentication failed: %d - %s", resp.StatusCode, string(body))
+		return "", fmt.Errorf("authentication failed: %d - %s", resp.StatusCode, string(body))
 	}
 
 	var tokenResp struct {
 		Token       string `json:"token"`
 		AccessToken string `json:"access_token"`
 	}
 	if err := json.NewDecoder(resp.Body).Decode(&tokenResp); err != nil {
-		return err
+		return "", err
 	}
 
-	c.token = tokenResp.Token
-	if c.token == "" {
-		c.token = tokenResp.AccessToken
+	token := tokenResp.Token
+	if token == "" {
+		token = tokenResp.AccessToken
 	}
-
-	return nil
+	return token, nil
 }
 
 // GetAuthenticatedUser returns the username used for authentication
@@ -370,7 +385,7 @@ func (c *RegistryClient) doSafeRegistryRequest(registry, pathFormat string, head
 // fetchManifestResponse fetches the raw manifest response from the registry.
 func (c *RegistryClient) fetchManifestResponse(ref ImageReference, reference string) (*http.Response, error) {
 	if err := ValidateImageReference(ref); err != nil {
-		return nil, fmt.Errorf("invalid image reference: %w", err)
+		return nil, fmt.Errorf(invalidImageReferenceFormat, err)
 	}
 
 	headers := map[string]string{"Accept": manifestAcceptHeader}
@@ -379,10 +394,6 @@ func (c *RegistryClient) fetchManifestResponse(ref ImageReference, reference str
 
 // getManifest retrieves the image manifest for the given platform
 func (c *RegistryClient) getManifest(ref ImageReference, platform Platform) (*ManifestV2, error) {
-	if err := ValidateImageReference(ref); err != nil {
-		return nil, fmt.Errorf("invalid image reference: %w", err)
-	}
-
 	resp, err := c.fetchManifestResponse(ref, ref.Tag)
 	if err != nil {
 		return nil, err
@@ -405,7 +416,7 @@ func (c *RegistryClient) getManifest(ref ImageReference, platform Platform) (*Ma
 
 func (c *RegistryClient) getManifestByDigest(ref ImageReference, digest string) (*ManifestV2, error) {
 	if err := ValidateImageReference(ref); err != nil {
-		return nil, fmt.Errorf("invalid image reference: %w", err)
+		return nil, fmt.Errorf(invalidImageReferenceFormat, err)
 	}
 
 	if err := validateDigest(digest); err != nil {
@@ -436,7 +447,7 @@ func (c *RegistryClient) getManifestByDigest(ref ImageReference, digest string)
 // DownloadBlob downloads a blob to a file
 func (c *RegistryClient) DownloadBlob(ref ImageReference, digest, destPath string) error {
 	if err := ValidateImageReference(ref); err != nil {
-		return fmt.Errorf("invalid image reference: %w", err)
+		return fmt.Errorf(invalidImageReferenceFormat, err)
 	}
 
 	if err := validateDigest(digest); err != nil {

server.go

@@ -115,42 +115,16 @@ func (s *Server) logoHandler(w http.ResponseWriter, _ *http.Request) {
 
 // imageHandler handles the /image endpoint
 func (s *Server) imageHandler(w http.ResponseWriter, r *http.Request) {
-
-	imageName := r.URL.Query().Get("name")
-	if imageName == "" {
-		writeJSONError(w, "missing required 'name' query parameter", http.StatusBadRequest)
+	imageName, ok := extractImageName(w, r)
+	if !ok {
 		return
 	}
 
-	imageName, err := sanitizeImageName(imageName)
-	if err != nil {
-		writeJSONError(w, fmt.Sprintf("invalid image name: %v", err), http.StatusBadRequest)
+	platform, ok := platformFromRequest(w, r)
+	if !ok {
 		return
 	}
 
-	platform := DefaultPlatform()
-	if osParam := r.URL.Query().Get("os"); osParam != "" {
-		if err := validatePlatformParam("os", osParam); err != nil {
-			writeJSONError(w, err.Error(), http.StatusBadRequest)
-			return
-		}
-		platform.OS = osParam
-	}
-	if archParam := r.URL.Query().Get("arch"); archParam != "" {
-		if err := validatePlatformParam("arch", archParam); err != nil {
-			writeJSONError(w, err.Error(), http.StatusBadRequest)
-			return
-		}
-		platform.Architecture = archParam
-	}
-	if variantParam := r.URL.Query().Get("variant"); variantParam != "" {
-		if err := validatePlatformParam("variant", variantParam); err != nil {
-			writeJSONError(w, err.Error(), http.StatusBadRequest)
-			return
-		}
-		platform.Variant = variantParam
-	}
-
 	cachePath := s.cache.GetCachePath(imageName, platform)
 
 	if _, err := os.Stat(cachePath); err == nil {
@@ -160,7 +134,7 @@ func (s *Server) imageHandler(w http.ResponseWriter, r *http.Request) {
 	}
 
 	log.Printf("Downloading image: %s (%s)\n", imageName, platform)
-	sfKey := fmt.Sprintf("%s_%s_%s_%s", imageName, platform.OS, platform.Architecture, platform.Variant)
+	sfKey := imageName + "_" + platform.String()
 	result, err, _ := s.downloadGroup.Do(sfKey, func() (interface{}, error) {
 		return DownloadImage(imageName, s.cache.Dir(), platform)
 	})
@@ -177,15 +151,8 @@ func (s *Server) imageHandler(w http.ResponseWriter, r *http.Request) {
 
 // platformsHandler handles the /platforms endpoint
 func (s *Server) platformsHandler(w http.ResponseWriter, r *http.Request) {
-	imageName := r.URL.Query().Get("name")
-	if imageName == "" {
-		writeJSONError(w, "missing required 'name' query parameter", http.StatusBadRequest)
-		return
-	}
-
-	imageName, err := sanitizeImageName(imageName)
-	if err != nil {
-		writeJSONError(w, fmt.Sprintf("invalid image name: %v", err), http.StatusBadRequest)
+	imageName, ok := extractImageName(w, r)
+	if !ok {
 		return
 	}
 
@@ -199,12 +166,46 @@ func (s *Server) platformsHandler(w http.ResponseWriter, r *http.Request) {
 		platforms = []Platform{}
 	}
 
-	w.Header().Set(contentTypeHeader, "application/json")
-	if err := json.NewEncoder(w).Encode(map[string]interface{}{
-		"platforms": platforms,
-	}); err != nil {
-		log.Printf("Failed to write platforms response: %v\n", err)
+	writeJSON(w, http.StatusOK, map[string]interface{}{"platforms": platforms})
+}
+
+// extractImageName reads and sanitizes the "name" query parameter, writing an
+// error response and returning false if it is missing or invalid.
+func extractImageName(w http.ResponseWriter, r *http.Request) (string, bool) {
+	imageName := r.URL.Query().Get("name")
+	if imageName == "" {
+		writeJSONError(w, "missing required 'name' query parameter", http.StatusBadRequest)
+		return "", false
+	}
+	imageName, err := sanitizeImageName(imageName)
+	if err != nil {
+		writeJSONError(w, fmt.Sprintf("invalid image name: %v", err), http.StatusBadRequest)
+		return "", false
 	}
+	return imageName, true
+}
+
+// platformFromRequest parses and validates the os/arch/variant query parameters,
+// writing an error response and returning false if any value is invalid.
+func platformFromRequest(w http.ResponseWriter, r *http.Request) (Platform, bool) {
+	platform := DefaultPlatform()
+	for _, field := range []struct {
+		param string
+		dest  *string
+	}{
+		{"os", &platform.OS},
+		{"arch", &platform.Architecture},
+		{"variant", &platform.Variant},
+	} {
+		if val := r.URL.Query().Get(field.param); val != "" {
+			if err := validatePlatformParam(field.param, val); err != nil {
+				writeJSONError(w, err.Error(), http.StatusBadRequest)
+				return Platform{}, false
+			}
+			*field.dest = val
+		}
+	}
+	return platform, true
 }
 
 // serveImageFile streams an image tar file to the response with Range request support
@@ -246,17 +247,20 @@ func (s *Server) serveImageFile(w http.ResponseWriter, r *http.Request, imagePat
 	pullsCountMetric.Inc()
 }
 
-// writeJSONError writes a JSON error response
-func writeJSONError(w http.ResponseWriter, message string, statusCode int) {
+// writeJSON writes a JSON response with the given status code.
+func writeJSON(w http.ResponseWriter, statusCode int, v interface{}) {
 	w.Header().Set(contentTypeHeader, "application/json")
 	w.WriteHeader(statusCode)
-	err := json.NewEncoder(w).Encode(map[string]string{"error": message})
-	if err != nil {
-		errorsTotalMetric.Inc()
-		log.Printf("Failed to write JSON error response: %v\n", err)
+	if err := json.NewEncoder(w).Encode(v); err != nil {
+		log.Printf("Failed to write JSON response: %v\n", err)
 	}
 }
 
+// writeJSONError writes a JSON error response.
+func writeJSONError(w http.ResponseWriter, message string, statusCode int) {
+	writeJSON(w, statusCode, map[string]string{"error": message})
+}
+
 // humanizeBytes converts bytes to a human-readable format
 func humanizeBytes(bytes int64) string {
 	const unit = 1024