Home Explore Help
Register Sign In
publics
/
etcd-io__etcd
0
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

grpcproxy: add auth

Xiang Li 9 years ago
parent
851d69181d
commit
e1892e264d
2 changed files with 112 additions and 0 deletions
Split View Show Diff Stats
  1. 2 0
      etcdmain/grpc_proxy.go
  2. 110 0
      proxy/grpcproxy/auth.go

+ 2 - 0
etcdmain/grpc_proxy.go
View File 

@@ -92,6 +92,7 @@ func startGRPCProxy(cmd *cobra.Command, args []string) {
 
 	clusterp := grpcproxy.NewClusterProxy(client)
 
 	leasep := grpcproxy.NewLeaseProxy(client)
 
 	mainp := grpcproxy.NewMaintenanceProxy(client)
 
+	authp := grpcproxy.NewAuthProxy(client)
 
 
 	server := grpc.NewServer()
 
 	pb.RegisterKVServer(server, kvp)
 
@@ -99,6 +100,7 @@ func startGRPCProxy(cmd *cobra.Command, args []string) {
 
 	pb.RegisterClusterServer(server, clusterp)
 
 	pb.RegisterLeaseServer(server, leasep)
 
 	pb.RegisterMaintenanceServer(server, mainp)
 
+	pb.RegisterAuthServer(server, authp)
 
 
 	server.Serve(l)
 
 }

+ 110 - 0
proxy/grpcproxy/auth.go
View File 

@@ -0,0 +1,110 @@
 
+// Copyright 2016 The etcd Authors
 
+//
 
+// Licensed under the Apache License, Version 2.0 (the "License");
 
+// you may not use this file except in compliance with the License.
 
+// You may obtain a copy of the License at
 
+//
 
+//     http://www.apache.org/licenses/LICENSE-2.0
 
+//
 
+// Unless required by applicable law or agreed to in writing, software
 
+// distributed under the License is distributed on an "AS IS" BASIS,
 
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 
+// See the License for the specific language governing permissions and
 
+// limitations under the License.
 
+
 
+package grpcproxy
 
+
 
+import (
 
+	"golang.org/x/net/context"
 
+
 
+	"github.com/coreos/etcd/clientv3"
 
+	pb "github.com/coreos/etcd/etcdserver/etcdserverpb"
 
+)
 
+
 
+type AuthProxy struct {
 
+	client *clientv3.Client
 
+}
 
+
 
+func NewAuthProxy(c *clientv3.Client) pb.AuthServer {
 
+	return &AuthProxy{client: c}
 
+}
 
+
 
+func (ap *AuthProxy) AuthEnable(ctx context.Context, r *pb.AuthEnableRequest) (*pb.AuthEnableResponse, error) {
 
+	conn := ap.client.ActiveConnection()
 
+	return pb.NewAuthClient(conn).AuthEnable(ctx, r)
 
+}
 
+
 
+func (ap *AuthProxy) AuthDisable(ctx context.Context, r *pb.AuthDisableRequest) (*pb.AuthDisableResponse, error) {
 
+	conn := ap.client.ActiveConnection()
 
+	return pb.NewAuthClient(conn).AuthDisable(ctx, r)
 
+}
 
+
 
+func (ap *AuthProxy) Authenticate(ctx context.Context, r *pb.AuthenticateRequest) (*pb.AuthenticateResponse, error) {
 
+	conn := ap.client.ActiveConnection()
 
+	return pb.NewAuthClient(conn).Authenticate(ctx, r)
 
+}
 
+
 
+func (ap *AuthProxy) RoleAdd(ctx context.Context, r *pb.AuthRoleAddRequest) (*pb.AuthRoleAddResponse, error) {
 
+	conn := ap.client.ActiveConnection()
 
+	return pb.NewAuthClient(conn).RoleAdd(ctx, r)
 
+}
 
+
 
+func (ap *AuthProxy) RoleDelete(ctx context.Context, r *pb.AuthRoleDeleteRequest) (*pb.AuthRoleDeleteResponse, error) {
 
+	conn := ap.client.ActiveConnection()
 
+	return pb.NewAuthClient(conn).RoleDelete(ctx, r)
 
+}
 
+
 
+func (ap *AuthProxy) RoleGet(ctx context.Context, r *pb.AuthRoleGetRequest) (*pb.AuthRoleGetResponse, error) {
 
+	conn := ap.client.ActiveConnection()
 
+	return pb.NewAuthClient(conn).RoleGet(ctx, r)
 
+}
 
+
 
+func (ap *AuthProxy) RoleList(ctx context.Context, r *pb.AuthRoleListRequest) (*pb.AuthRoleListResponse, error) {
 
+	conn := ap.client.ActiveConnection()
 
+	return pb.NewAuthClient(conn).RoleList(ctx, r)
 
+}
 
+
 
+func (ap *AuthProxy) RoleRevokePermission(ctx context.Context, r *pb.AuthRoleRevokePermissionRequest) (*pb.AuthRoleRevokePermissionResponse, error) {
 
+	conn := ap.client.ActiveConnection()
 
+	return pb.NewAuthClient(conn).RoleRevokePermission(ctx, r)
 
+}
 
+
 
+func (ap *AuthProxy) RoleGrantPermission(ctx context.Context, r *pb.AuthRoleGrantPermissionRequest) (*pb.AuthRoleGrantPermissionResponse, error) {
 
+	conn := ap.client.ActiveConnection()
 
+	return pb.NewAuthClient(conn).RoleGrantPermission(ctx, r)
 
+}
 
+
 
+func (ap *AuthProxy) UserAdd(ctx context.Context, r *pb.AuthUserAddRequest) (*pb.AuthUserAddResponse, error) {
 
+	conn := ap.client.ActiveConnection()
 
+	return pb.NewAuthClient(conn).UserAdd(ctx, r)
 
+}
 
+
 
+func (ap *AuthProxy) UserDelete(ctx context.Context, r *pb.AuthUserDeleteRequest) (*pb.AuthUserDeleteResponse, error) {
 
+	conn := ap.client.ActiveConnection()
 
+	return pb.NewAuthClient(conn).UserDelete(ctx, r)
 
+}
 
+
 
+func (ap *AuthProxy) UserGet(ctx context.Context, r *pb.AuthUserGetRequest) (*pb.AuthUserGetResponse, error) {
 
+	conn := ap.client.ActiveConnection()
 
+	return pb.NewAuthClient(conn).UserGet(ctx, r)
 
+}
 
+
 
+func (ap *AuthProxy) UserList(ctx context.Context, r *pb.AuthUserListRequest) (*pb.AuthUserListResponse, error) {
 
+	conn := ap.client.ActiveConnection()
 
+	return pb.NewAuthClient(conn).UserList(ctx, r)
 
+}
 
+
 
+func (ap *AuthProxy) UserGrantRole(ctx context.Context, r *pb.AuthUserGrantRoleRequest) (*pb.AuthUserGrantRoleResponse, error) {
 
+	conn := ap.client.ActiveConnection()
 
+	return pb.NewAuthClient(conn).UserGrantRole(ctx, r)
 
+}
 
+
 
+func (ap *AuthProxy) UserRevokeRole(ctx context.Context, r *pb.AuthUserRevokeRoleRequest) (*pb.AuthUserRevokeRoleResponse, error) {
 
+	conn := ap.client.ActiveConnection()
 
+	return pb.NewAuthClient(conn).UserRevokeRole(ctx, r)
 
+}
 
+
 
+func (ap *AuthProxy) UserChangePassword(ctx context.Context, r *pb.AuthUserChangePasswordRequest) (*pb.AuthUserChangePasswordResponse, error) {
 
+	conn := ap.client.ActiveConnection()
 
+	return pb.NewAuthClient(conn).UserChangePassword(ctx, r)
 
+}