frostfs-node/cmd/neofs-cli/modules/session/create.go

package session

import (
	"fmt"
	"io/ioutil"

	"github.com/google/uuid"
	internalclient "github.com/nspcc-dev/neofs-node/cmd/neofs-cli/internal/client"
	"github.com/nspcc-dev/neofs-node/cmd/neofs-cli/internal/commonflags"
	"github.com/nspcc-dev/neofs-node/cmd/neofs-cli/internal/key"
	"github.com/nspcc-dev/neofs-node/pkg/network"
	"github.com/nspcc-dev/neofs-sdk-go/client"
	neofsecdsa "github.com/nspcc-dev/neofs-sdk-go/crypto/ecdsa"
	"github.com/nspcc-dev/neofs-sdk-go/session"
	"github.com/spf13/cobra"
	"github.com/spf13/viper"
)

const (
	lifetimeFlag = "lifetime"
	outFlag      = "out"
	jsonFlag     = commonflags.JSON
)

const defaultLifetime = 10

var createCmd = &cobra.Command{
	Use:   "create",
	Short: "Create session token",
	RunE:  createSession,
	PersistentPreRun: func(cmd *cobra.Command, _ []string) {
		_ = viper.BindPFlag(commonflags.WalletPath, cmd.Flags().Lookup(commonflags.WalletPath))
		_ = viper.BindPFlag(commonflags.Account, cmd.Flags().Lookup(commonflags.Account))
	},
}

func init() {
	createCmd.Flags().Uint64P(lifetimeFlag, "l", defaultLifetime, "number of epochs for token to stay valid")
	createCmd.Flags().StringP(commonflags.WalletPath, commonflags.WalletPathShorthand, commonflags.WalletPathDefault, commonflags.WalletPathUsage)
	createCmd.Flags().StringP(commonflags.Account, commonflags.AccountShorthand, commonflags.AccountDefault, commonflags.AccountUsage)
	createCmd.Flags().String(outFlag, "", "file to write session token to")
	createCmd.Flags().Bool(jsonFlag, false, "output token in JSON")
	createCmd.Flags().StringP(commonflags.RPC, commonflags.RPCShorthand, commonflags.RPCDefault, commonflags.RPCUsage)

	_ = cobra.MarkFlagRequired(createCmd.Flags(), lifetimeFlag)
	_ = cobra.MarkFlagRequired(createCmd.Flags(), commonflags.WalletPath)
	_ = cobra.MarkFlagRequired(createCmd.Flags(), outFlag)
	_ = cobra.MarkFlagRequired(createCmd.Flags(), commonflags.RPC)
}

func createSession(cmd *cobra.Command, _ []string) error {
	privKey := key.Get(cmd)

	var netAddr network.Address
	addrStr, _ := cmd.Flags().GetString(commonflags.RPC)
	if err := netAddr.FromString(addrStr); err != nil {
		return err
	}

	c, err := internalclient.GetSDKClient(privKey, netAddr)
	if err != nil {
		return err
	}

	lifetime := uint64(defaultLifetime)
	if lfArg, _ := cmd.Flags().GetUint64(lifetimeFlag); lfArg != 0 {
		lifetime = lfArg
	}

	var tok session.Object

	err = CreateSession(&tok, c, lifetime)
	if err != nil {
		return err
	}

	var data []byte

	if toJSON, _ := cmd.Flags().GetBool(jsonFlag); toJSON {
		data, err = tok.MarshalJSON()
		if err != nil {
			return fmt.Errorf("decode session token JSON: %w", err)
		}
	} else {
		data = tok.Marshal()
	}

	filename, _ := cmd.Flags().GetString(outFlag)
	if err := ioutil.WriteFile(filename, data, 0644); err != nil {
		return fmt.Errorf("can't write token to file: %w", err)
	}
	return nil
}

// CreateSession opens a new communication with NeoFS storage node using client connection.
// The session is expected to be maintained by the storage node during the given
// number of epochs.
//
// Fills ID, lifetime and session key.
func CreateSession(dst *session.Object, c *client.Client, lifetime uint64) error {
	var netInfoPrm internalclient.NetworkInfoPrm
	netInfoPrm.SetClient(c)

	ni, err := internalclient.NetworkInfo(netInfoPrm)
	if err != nil {
		return fmt.Errorf("can't fetch network info: %w", err)
	}

	cur := ni.NetworkInfo().CurrentEpoch()
	exp := cur + lifetime

	var sessionPrm internalclient.CreateSessionPrm
	sessionPrm.SetClient(c)
	sessionPrm.SetExp(exp)

	sessionRes, err := internalclient.CreateSession(sessionPrm)
	if err != nil {
		return fmt.Errorf("can't open session: %w", err)
	}

	binIDSession := sessionRes.ID()

	var keySession neofsecdsa.PublicKey

	err = keySession.Decode(sessionRes.SessionKey())
	if err != nil {
		return fmt.Errorf("decode public session key: %w", err)
	}

	var idSession uuid.UUID

	err = idSession.UnmarshalBinary(binIDSession)
	if err != nil {
		return fmt.Errorf("decode session ID: %w", err)
	}

	dst.SetID(idSession)
	dst.SetNbf(cur)
	dst.SetIat(cur)
	dst.SetExp(exp)
	dst.SetAuthKey(&keySession)

	return nil
}
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`package session`

			`import (`
			`"fmt"`
			`"io/ioutil"`

[#1423] session: Upgrade SDK package Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-05-18 15:20:08 +00:00			`"github.com/google/uuid"`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`internalclient "github.com/nspcc-dev/neofs-node/cmd/neofs-cli/internal/client"`
[#1379] neofs-cli: Move common flags to a separate package Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-05-18 09:22:02 +00:00			`"github.com/nspcc-dev/neofs-node/cmd/neofs-cli/internal/commonflags"`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`"github.com/nspcc-dev/neofs-node/cmd/neofs-cli/internal/key"`
			`"github.com/nspcc-dev/neofs-node/pkg/network"`
			`"github.com/nspcc-dev/neofs-sdk-go/client"`
[#1423] session: Upgrade SDK package Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-05-18 15:20:08 +00:00			`neofsecdsa "github.com/nspcc-dev/neofs-sdk-go/crypto/ecdsa"`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`"github.com/nspcc-dev/neofs-sdk-go/session"`
			`"github.com/spf13/cobra"`
[#1379] neofs-cli: Bind key-related arguments to viper Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-05-18 10:38:45 +00:00			`"github.com/spf13/viper"`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`)`

			`const (`
			`lifetimeFlag = "lifetime"`
			`outFlag = "out"`
[#1323] neofs-cli: Reuse JSON flag for multiple commands Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-06-23 13:52:47 +00:00			`jsonFlag = commonflags.JSON`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`)`

			`const defaultLifetime = 10`

			`var createCmd = &cobra.Command{`
			`Use: "create",`
			`Short: "Create session token",`
			`RunE: createSession,`
[#1379] neofs-cli: Bind key-related arguments to viper Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-05-18 10:38:45 +00:00			`PersistentPreRun: func(cmd *cobra.Command, _ []string) {`
			`_ = viper.BindPFlag(commonflags.WalletPath, cmd.Flags().Lookup(commonflags.WalletPath))`
			`_ = viper.BindPFlag(commonflags.Account, cmd.Flags().Lookup(commonflags.Account))`
			`},`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`}`

			`func init() {`
			`createCmd.Flags().Uint64P(lifetimeFlag, "l", defaultLifetime, "number of epochs for token to stay valid")`
[#1379] neofs-cli: Move common flags to a separate package Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-05-18 09:22:02 +00:00			`createCmd.Flags().StringP(commonflags.WalletPath, commonflags.WalletPathShorthand, commonflags.WalletPathDefault, commonflags.WalletPathUsage)`
			`createCmd.Flags().StringP(commonflags.Account, commonflags.AccountShorthand, commonflags.AccountDefault, commonflags.AccountUsage)`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`createCmd.Flags().String(outFlag, "", "file to write session token to")`
			`createCmd.Flags().Bool(jsonFlag, false, "output token in JSON")`
[#1379] neofs-cli: Move common flags to a separate package Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-05-18 09:22:02 +00:00			`createCmd.Flags().StringP(commonflags.RPC, commonflags.RPCShorthand, commonflags.RPCDefault, commonflags.RPCUsage)`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00
			`_ = cobra.MarkFlagRequired(createCmd.Flags(), lifetimeFlag)`
[#1379] neofs-cli: Move common flags to a separate package Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-05-18 09:22:02 +00:00			`_ = cobra.MarkFlagRequired(createCmd.Flags(), commonflags.WalletPath)`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`_ = cobra.MarkFlagRequired(createCmd.Flags(), outFlag)`
[#1379] neofs-cli: Move common flags to a separate package Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-05-18 09:22:02 +00:00			`_ = cobra.MarkFlagRequired(createCmd.Flags(), commonflags.RPC)`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`}`

			`func createSession(cmd *cobra.Command, _ []string) error {`
[#1424] neofs-cli: Fail immediately if a key can't be fetched If the key can't be fetched, an error is always returned, so it makes sense to fail the whole command inside of a `key.Get*()`. Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-05-24 08:22:23 +00:00			`privKey := key.Get(cmd)`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00
			`var netAddr network.Address`
[#1379] neofs-cli: Move common flags to a separate package Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-05-18 09:22:02 +00:00			`addrStr, _ := cmd.Flags().GetString(commonflags.RPC)`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`if err := netAddr.FromString(addrStr); err != nil {`
			`return err`
			`}`

			`c, err := internalclient.GetSDKClient(privKey, netAddr)`
			`if err != nil {`
			`return err`
			`}`

			`lifetime := uint64(defaultLifetime)`
			`if lfArg, _ := cmd.Flags().GetUint64(lifetimeFlag); lfArg != 0 {`
			`lifetime = lfArg`
			`}`

[#1423] session: Upgrade SDK package Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-05-18 15:20:08 +00:00			`var tok session.Object`
[#1400] owner: Upgrade SDK package Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-05-17 13:59:46 +00:00
[#1423] session: Upgrade SDK package Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-05-18 15:20:08 +00:00			`err = CreateSession(&tok, c, lifetime)`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`if err != nil {`
			`return err`
			`}`

			`var data []byte`

			`if toJSON, _ := cmd.Flags().GetBool(jsonFlag); toJSON {`
			`data, err = tok.MarshalJSON()`
[#1423] session: Upgrade SDK package Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-05-18 15:20:08 +00:00			`if err != nil {`
			`return fmt.Errorf("decode session token JSON: %w", err)`
			`}`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`} else {`
[#1423] session: Upgrade SDK package Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-05-18 15:20:08 +00:00			`data = tok.Marshal()`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`}`

			`filename, _ := cmd.Flags().GetString(outFlag)`
			`if err := ioutil.WriteFile(filename, data, 0644); err != nil {`
			`return fmt.Errorf("can't write token to file: %w", err)`
			`}`
			`return nil`
			`}`

[#1423] session: Upgrade SDK package Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-05-18 15:20:08 +00:00			`// CreateSession opens a new communication with NeoFS storage node using client connection.`
			`// The session is expected to be maintained by the storage node during the given`
			`// number of epochs.`
			`//`
			`// Fills ID, lifetime and session key.`
			`func CreateSession(dst session.Object, c client.Client, lifetime uint64) error {`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`var netInfoPrm internalclient.NetworkInfoPrm`
			`netInfoPrm.SetClient(c)`

			`ni, err := internalclient.NetworkInfo(netInfoPrm)`
			`if err != nil {`
[#1423] session: Upgrade SDK package Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-05-18 15:20:08 +00:00			`return fmt.Errorf("can't fetch network info: %w", err)`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`}`

			`cur := ni.NetworkInfo().CurrentEpoch()`
			`exp := cur + lifetime`

			`var sessionPrm internalclient.CreateSessionPrm`
			`sessionPrm.SetClient(c)`
			`sessionPrm.SetExp(exp)`

			`sessionRes, err := internalclient.CreateSession(sessionPrm)`
			`if err != nil {`
[#1423] session: Upgrade SDK package Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-05-18 15:20:08 +00:00			`return fmt.Errorf("can't open session: %w", err)`
			`}`

			`binIDSession := sessionRes.ID()`

			`var keySession neofsecdsa.PublicKey`

			`err = keySession.Decode(sessionRes.SessionKey())`
			`if err != nil {`
			`return fmt.Errorf("decode public session key: %w", err)`
			`}`

			`var idSession uuid.UUID`

			`err = idSession.UnmarshalBinary(binIDSession)`
			`if err != nil {`
			`return fmt.Errorf("decode session ID: %w", err)`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`}`

[#1423] session: Upgrade SDK package Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-05-18 15:20:08 +00:00			`dst.SetID(idSession)`
			`dst.SetNbf(cur)`
			`dst.SetIat(cur)`
			`dst.SetExp(exp)`
			`dst.SetAuthKey(&keySession)`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00
[#1423] session: Upgrade SDK package Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-05-18 15:20:08 +00:00			`return nil`
[#1216] neofs-cli: Allow to create and save session token Signed-off-by: Evgenii Stratonikov <evgeniy@nspcc.ru> 2022-03-28 10:32:18 +00:00			`}`