dkirillov/frostfs-s3-gw
1
0
Fork 0
forked from TrueCloudLab/frostfs-s3-gw
Code Issues Pull requests Projects Releases Packages Wiki Activity
frostfs-s3-gw/pkg/service/control/client/client.go

92 lines
2 KiB
Go
Raw Normal View History

[#XX] Add control service Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>
2023-10-17 17:49:57 +03:00
package client
import (
"context"
[#XX] Support AddPolicy method to control API Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>
2023-10-19 16:37:35 +03:00
"encoding/json"
[#XX] Add control service Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>
2023-10-17 17:49:57 +03:00
"fmt"
"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/pkg/service/control"
controlSvc "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/pkg/service/control/server"
[#XX] Update client add policy methods Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>
2023-10-31 17:25:09 +03:00
policyengine "git.frostfs.info/TrueCloudLab/policy-engine"
[#XX] Support AddPolicy method to control API Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>
2023-10-19 16:37:35 +03:00
engineiam "git.frostfs.info/TrueCloudLab/policy-engine/iam"
[#XX] Add control service Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>
2023-10-17 17:49:57 +03:00
"github.com/nspcc-dev/neo-go/pkg/crypto/keys"
"go.uber.org/zap"
"google.golang.org/grpc"
"google.golang.org/grpc/credentials/insecure"
)
type Client struct {
svc control.ControlServiceClient
key *keys.PrivateKey
}
type Config struct {
Logger *zap.Logger
}
func New(ctx context.Context, addr string, key *keys.PrivateKey) (*Client, error) {
conn, err := grpc.Dial(addr, grpc.WithTransportCredentials(insecure.NewCredentials()))
if err != nil {
return nil, fmt.Errorf("failed to dial s3 gw control api: %w", err)
}
svc := control.NewControlServiceClient(conn)
[#XX] Support AddPolicy method to control API Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>
2023-10-19 16:37:35 +03:00
// todo consider add invoking healthcheck
// c.Healthcheck(ctx)
[#XX] Add control service Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>
2023-10-17 17:49:57 +03:00
return &Client{
svc: svc,
key: key,
}, nil
}
func (c *Client) Healthcheck(ctx context.Context) error {
req := &control.HealthCheckRequest{}
sig, err := controlSvc.SignMessage(&c.key.PrivateKey, req.Body)
if err != nil {
return err
}
req.Signature = sig
res, err := c.svc.HealthCheck(ctx, req)
if err != nil {
return err
}
if res.Body.HealthStatus != control.HealthStatus_READY {
return fmt.Errorf("service isn't ready, status: %s", res.Body.HealthStatus)
}
return nil
}
[#XX] Support AddPolicy method to control API Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>
2023-10-19 16:37:35 +03:00
[#XX] Update client add policy methods Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>
2023-10-31 17:25:09 +03:00
func (c *Client) AddPolicyIAM(ctx context.Context, policy string) error {
[#XX] Support AddPolicy method to control API Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>
2023-10-19 16:37:35 +03:00
var p engineiam.Policy
if err := json.Unmarshal([]byte(policy), &p); err != nil {
return err
}
chain, err := p.ToChain()
if err != nil {
return err
}
[#XX] Update client add policy methods Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>
2023-10-31 17:25:09 +03:00
return c.AddPolicy(ctx, chain)
}
func (c *Client) AddPolicy(ctx context.Context, chain *policyengine.Chain) error {
[#XX] Support AddPolicy method to control API Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>
2023-10-19 16:37:35 +03:00
req := &control.AddPolicyRequest{
Body: chain.Bytes(),
}
sig, err := controlSvc.SignMessage(&c.key.PrivateKey, req.Body)
if err != nil {
return err
}
req.Signature = sig
_, err = c.svc.AddPolicy(ctx, req)
return err
}
Reference in a new issue Copy permalink