Home Verkennen Help
Registreren Inloggen
publics
/
etcd-io__etcd
0
0
Vork 0
Bestanden Issues 0 Pull-aanvragen 0 Wiki
Boom: adb126afc4
Aftakkingen Labels
etcd-io__etcd
/
proxy
/
grpcproxy
/
util.go

util.go 2.3 KB
Geschiedenis Ruwe

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475 
  1. // Copyright 2017 The etcd Authors
    2. 

  2. //
    3. 

  3. // Licensed under the Apache License, Version 2.0 (the "License");
    4. 

  4. // you may not use this file except in compliance with the License.
    5. 

  5. // You may obtain a copy of the License at
    6. 

  6. //
    7. 

  7. //     http://www.apache.org/licenses/LICENSE-2.0
    8. 

  8. //
    9. 

  9. // Unless required by applicable law or agreed to in writing, software
    10. 

  10. // distributed under the License is distributed on an "AS IS" BASIS,
    11. 

  11. // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    12. 

  12. // See the License for the specific language governing permissions and
    13. 

  13. // limitations under the License.
    14. 

  14. 

  15. package grpcproxy
    16. 

  16. 

  17. import (
    18. 

  18. 	"context"
    19. 

  19. 

  20. 	"go.etcd.io/etcd/etcdserver/api/v3rpc/rpctypes"
    21. 

  21. 

  22. 	"google.golang.org/grpc"
    23. 

  23. 	"google.golang.org/grpc/metadata"
    24. 

  24. )
    25. 

  25. 

  26. func getAuthTokenFromClient(ctx context.Context) string {
    27. 

  27. 	md, ok := metadata.FromIncomingContext(ctx)
    28. 

  28. 	if ok {
    29. 

  29. 		ts, ok := md[rpctypes.TokenFieldNameGRPC]
    30. 

  30. 		if ok {
    31. 

  31. 			return ts[0]
    32. 

  32. 		}
    33. 

  33. 	}
    34. 

  34. 	return ""
    35. 

  35. }
    36. 

  36. 

  37. func withClientAuthToken(ctx, ctxWithToken context.Context) context.Context {
    38. 

  38. 	token := getAuthTokenFromClient(ctxWithToken)
    39. 

  39. 	if token != "" {
    40. 

  40. 		ctx = context.WithValue(ctx, rpctypes.TokenFieldNameGRPC, token)
    41. 

  41. 	}
    42. 

  42. 	return ctx
    43. 

  43. }
    44. 

  44. 

  45. type proxyTokenCredential struct {
    46. 

  46. 	token string
    47. 

  47. }
    48. 

  48. 

  49. func (cred *proxyTokenCredential) RequireTransportSecurity() bool {
    50. 

  50. 	return false
    51. 

  51. }
    52. 

  52. 

  53. func (cred *proxyTokenCredential) GetRequestMetadata(ctx context.Context, s ...string) (map[string]string, error) {
    54. 

  54. 	return map[string]string{
    55. 

  55. 		rpctypes.TokenFieldNameGRPC: cred.token,
    56. 

  56. 	}, nil
    57. 

  57. }
    58. 

  58. 

  59. func AuthUnaryClientInterceptor(ctx context.Context, method string, req, reply interface{}, cc *grpc.ClientConn, invoker grpc.UnaryInvoker, opts ...grpc.CallOption) error {
    60. 

  60. 	token := getAuthTokenFromClient(ctx)
    61. 

  61. 	if token != "" {
    62. 

  62. 		tokenCred := &proxyTokenCredential{token}
    63. 

  63. 		opts = append(opts, grpc.PerRPCCredentials(tokenCred))
    64. 

  64. 	}
    65. 

  65. 	return invoker(ctx, method, req, reply, cc, opts...)
    66. 

  66. }
    67. 

  67. 

  68. func AuthStreamClientInterceptor(ctx context.Context, desc *grpc.StreamDesc, cc *grpc.ClientConn, method string, streamer grpc.Streamer, opts ...grpc.CallOption) (grpc.ClientStream, error) {
    69. 

  69. 	tokenif := ctx.Value(rpctypes.TokenFieldNameGRPC)
    70. 

  70. 	if tokenif != nil {
    71. 

  71. 		tokenCred := &proxyTokenCredential{tokenif.(string)}
    72. 

  72. 		opts = append(opts, grpc.PerRPCCredentials(tokenCred))
    73. 

  73. 	}
    74. 

  74. 	return streamer(ctx, desc, cc, method, opts...)
    75. 

  75. }
    76.