forked from TrueCloudLab/frostfs-node
da1961cdf9
Signed-off-by: Leonard Lyubich <leonard@nspcc.ru>
58 lines
1.4 KiB
Go
58 lines
1.4 KiB
Go
package util
|
|
|
|
import (
|
|
"context"
|
|
"crypto/ecdsa"
|
|
|
|
"github.com/nspcc-dev/neofs-api-go/v2/signature"
|
|
"github.com/pkg/errors"
|
|
)
|
|
|
|
type UnaryHandler func(context.Context, interface{}) (interface{}, error)
|
|
|
|
type UnarySignService struct {
|
|
key *ecdsa.PrivateKey
|
|
|
|
unaryHandler UnaryHandler
|
|
}
|
|
|
|
func NewUnarySignService(key *ecdsa.PrivateKey, handler UnaryHandler) *UnarySignService {
|
|
return &UnarySignService{
|
|
key: key,
|
|
unaryHandler: handler,
|
|
}
|
|
}
|
|
|
|
func (s *UnarySignService) HandleServerStreamRequest(ctx context.Context, req interface{}) (interface{}, error) {
|
|
return s.verifyAndProc(ctx, req)
|
|
}
|
|
|
|
func (s *UnarySignService) HandleUnaryRequest(ctx context.Context, req interface{}) (interface{}, error) {
|
|
// verify and process request
|
|
resp, err := s.verifyAndProc(ctx, req)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
// sign the response
|
|
if err := signature.SignServiceMessage(s.key, resp); err != nil {
|
|
return nil, errors.Wrap(err, "could not sign response")
|
|
}
|
|
|
|
return resp, nil
|
|
}
|
|
|
|
func (s *UnarySignService) verifyAndProc(ctx context.Context, req interface{}) (interface{}, error) {
|
|
// verify request signatures
|
|
if err := signature.VerifyServiceMessage(req); err != nil {
|
|
return nil, errors.Wrap(err, "could not verify request")
|
|
}
|
|
|
|
// process request
|
|
resp, err := s.unaryHandler(ctx, req)
|
|
if err != nil {
|
|
return nil, errors.Wrap(err, "could not handle request")
|
|
}
|
|
|
|
return resp, nil
|
|
}
|