nezha/service/rpc/auth.go

package rpc

import (
	"context"
	"fmt"

	"github.com/p14yground/nezha/model"
	"github.com/p14yground/nezha/service/dao"
	"google.golang.org/grpc/codes"
	"google.golang.org/grpc/metadata"
	"google.golang.org/grpc/status"
)

// AuthHandler ..
type AuthHandler struct {
	ClientID     string
	ClientSecret string
}

// GetRequestMetadata ..
func (a *AuthHandler) GetRequestMetadata(ctx context.Context, uri ...string) (map[string]string, error) {
	return map[string]string{"app_key": a.ClientID, "app_secret": a.ClientSecret}, nil
}

// RequireTransportSecurity ..
func (a *AuthHandler) RequireTransportSecurity() bool {
	return !dao.Conf.Debug
}

// Check ..
func (a *AuthHandler) Check(ctx context.Context) error {
	md, ok := metadata.FromIncomingContext(ctx)
	if !ok {
		return status.Errorf(codes.Unauthenticated, "获取 metaData 失败")
	}

	var (
		ClientID     string
		ClientSecret string
	)
	if value, ok := md["app_key"]; ok {
		ClientID = value[0]
	}
	if value, ok := md["app_secret"]; ok {
		ClientSecret = value[0]
	}

	if _, ok := dao.Cache.Get(fmt.Sprintf("%s%s%s", model.CtxKeyServer, ClientID, ClientSecret)); !ok {
		return status.Errorf(codes.Unauthenticated, "客户端认证失败")
	}

	return nil
}
Web 服务 2019-12-08 03:59:58 -05:00			`package rpc`
gRPC 上报系统信息 2019-12-07 05:14:40 -05:00
			`import (`
			`"context"`
客户端授权验证 2019-12-09 03:02:49 -05:00			`"fmt"`
gRPC 上报系统信息 2019-12-07 05:14:40 -05:00
客户端授权验证 2019-12-09 03:02:49 -05:00			`"github.com/p14yground/nezha/model"`
			`"github.com/p14yground/nezha/service/dao"`
gRPC 上报系统信息 2019-12-07 05:14:40 -05:00			`"google.golang.org/grpc/codes"`
			`"google.golang.org/grpc/metadata"`
			`"google.golang.org/grpc/status"`
			`)`

			`// AuthHandler ..`
			`type AuthHandler struct {`
客户端授权验证 2019-12-09 03:02:49 -05:00			`ClientID string`
			`ClientSecret string`
gRPC 上报系统信息 2019-12-07 05:14:40 -05:00			`}`

			`// GetRequestMetadata ..`
			`func (a *AuthHandler) GetRequestMetadata(ctx context.Context, uri ...string) (map[string]string, error) {`
客户端授权验证 2019-12-09 03:02:49 -05:00			`return map[string]string{"app_key": a.ClientID, "app_secret": a.ClientSecret}, nil`
gRPC 上报系统信息 2019-12-07 05:14:40 -05:00			`}`

			`// RequireTransportSecurity ..`
			`func (a *AuthHandler) RequireTransportSecurity() bool {`
客户端授权验证 2019-12-09 03:02:49 -05:00			`return !dao.Conf.Debug`
gRPC 上报系统信息 2019-12-07 05:14:40 -05:00			`}`

			`// Check ..`
			`func (a *AuthHandler) Check(ctx context.Context) error {`
			`md, ok := metadata.FromIncomingContext(ctx)`
			`if !ok {`
客户端授权验证 2019-12-09 03:02:49 -05:00			`return status.Errorf(codes.Unauthenticated, "获取 metaData 失败")`
gRPC 上报系统信息 2019-12-07 05:14:40 -05:00			`}`

			`var (`
客户端授权验证 2019-12-09 03:02:49 -05:00			`ClientID string`
			`ClientSecret string`
gRPC 上报系统信息 2019-12-07 05:14:40 -05:00			`)`
			`if value, ok := md["app_key"]; ok {`
客户端授权验证 2019-12-09 03:02:49 -05:00			`ClientID = value[0]`
gRPC 上报系统信息 2019-12-07 05:14:40 -05:00			`}`
			`if value, ok := md["app_secret"]; ok {`
客户端授权验证 2019-12-09 03:02:49 -05:00			`ClientSecret = value[0]`
gRPC 上报系统信息 2019-12-07 05:14:40 -05:00			`}`

客户端授权验证 2019-12-09 03:02:49 -05:00			`if _, ok := dao.Cache.Get(fmt.Sprintf("%s%s%s", model.CtxKeyServer, ClientID, ClientSecret)); !ok {`
			`return status.Errorf(codes.Unauthenticated, "客户端认证失败")`
gRPC 上报系统信息 2019-12-07 05:14:40 -05:00			`}`

			`return nil`
			`}`