[#19] Extract uploading logic into a separate package

Signed-off-by: Pavel Korotkov <pavel@nspcc.ru>
2021-03-31 19:58:42 +03:00 · 2021-03-31 19:58:42 +03:00 · eb92219e14
commit eb92219e14
parent 4c96885a42
9 changed files with 153 additions and 188 deletions
--- a/tokens/bearer-token.go
+++ b/tokens/bearer-token.go
@ -0,0 +1,93 @@
+package tokens
+
+import (
+	"bytes"
+	"context"
+	"encoding/base64"
+
+	"github.com/nspcc-dev/neofs-api-go/pkg/token"
+	"github.com/pkg/errors"
+	"github.com/valyala/fasthttp"
+)
+
+type fromHandler = func(h *fasthttp.RequestHeader) []byte
+
+const (
+	bearerTokenHdr = "Bearer"
+	bearerTokenKey = "__context_bearer_token_key"
+)
+
+// BearerToken usage:
+//
+// if err = storeBearerToken(ctx); err != nil {
+// 	log.Error("could not fetch bearer token", zap.Error(err))
+// 	c.Error("could not fetch bearer token", fasthttp.StatusBadRequest)
+// 	return
+// }
+
+func BearerTokenFromHeader(h *fasthttp.RequestHeader) []byte {
+	auth := h.Peek(fasthttp.HeaderAuthorization)
+	if auth == nil || !bytes.HasPrefix(auth, []byte(bearerTokenHdr)) {
+		return nil
+	}
+	if auth = bytes.TrimPrefix(auth, []byte(bearerTokenHdr+" ")); len(auth) == 0 {
+		return nil
+	}
+	return auth
+}
+
+func BearerTokenFromCookie(h *fasthttp.RequestHeader) []byte {
+	auth := h.Cookie(bearerTokenHdr)
+	if len(auth) == 0 {
+		return nil
+	}
+
+	return auth
+}
+
+func StoreBearerToken(ctx *fasthttp.RequestCtx) error {
+	tkn, err := fetchBearerToken(ctx)
+	if err != nil {
+		return err
+	}
+	// This is an analog of context.WithValue.
+	ctx.SetUserValue(bearerTokenKey, tkn)
+	return nil
+}
+
+func LoadBearerToken(ctx context.Context) (*token.BearerToken, error) {
+	if tkn, ok := ctx.Value(bearerTokenKey).(*token.BearerToken); ok && tkn != nil {
+		return tkn, nil
+	}
+	return nil, errors.New("found empty bearer token")
+}
+
+func fetchBearerToken(ctx *fasthttp.RequestCtx) (*token.BearerToken, error) {
+	// ignore empty value
+	if ctx == nil {
+		return nil, nil
+	}
+	var (
+		lastErr error
+
+		buf []byte
+		tkn = new(token.BearerToken)
+	)
+	for _, parse := range []fromHandler{BearerTokenFromHeader, BearerTokenFromCookie} {
+		if buf = parse(&ctx.Request.Header); buf == nil {
+			continue
+		} else if data, err := base64.StdEncoding.DecodeString(string(buf)); err != nil {
+			lastErr = errors.Wrap(err, "could not fetch marshaled from base64")
+			continue
+		} else if err = tkn.Unmarshal(data); err != nil {
+			lastErr = errors.Wrap(err, "could not unmarshal bearer token")
+			continue
+		} else if tkn == nil {
+			continue
+		}
+
+		return tkn, nil
+	}
+
+	return nil, lastErr
+}
--- a/tokens/bearer-token_test.go
+++ b/tokens/bearer-token_test.go
@ -0,0 +1,160 @@
+package tokens
+
+import (
+	"encoding/base64"
+	"testing"
+
+	"github.com/nspcc-dev/neofs-api-go/pkg/owner"
+	"github.com/nspcc-dev/neofs-api-go/pkg/token"
+	"github.com/stretchr/testify/require"
+	"github.com/valyala/fasthttp"
+)
+
+func makeTestCookie(value []byte) *fasthttp.RequestHeader {
+	header := new(fasthttp.RequestHeader)
+	header.SetCookie(bearerTokenHdr, string(value))
+	return header
+}
+
+func makeTestHeader(value []byte) *fasthttp.RequestHeader {
+	header := new(fasthttp.RequestHeader)
+	if value != nil {
+		header.Set(fasthttp.HeaderAuthorization, bearerTokenHdr+" "+string(value))
+	}
+	return header
+}
+
+func Test_fromCookie(t *testing.T) {
+	cases := []struct {
+		name   string
+		actual []byte
+		expect []byte
+	}{
+		{name: "empty"},
+		{name: "normal", actual: []byte("TOKEN"), expect: []byte("TOKEN")},
+	}
+
+	for _, tt := range cases {
+		t.Run(tt.name, func(t *testing.T) {
+			require.Equal(t, tt.expect, BearerTokenFromCookie(makeTestCookie(tt.actual)))
+		})
+	}
+}
+
+func Test_fromHeader(t *testing.T) {
+	cases := []struct {
+		name   string
+		actual []byte
+		expect []byte
+	}{
+		{name: "empty"},
+		{name: "normal", actual: []byte("TOKEN"), expect: []byte("TOKEN")},
+	}
+
+	for _, tt := range cases {
+		t.Run(tt.name, func(t *testing.T) {
+			require.Equal(t, tt.expect, BearerTokenFromHeader(makeTestHeader(tt.actual)))
+		})
+	}
+}
+
+func Test_fetchBearerToken(t *testing.T) {
+	uid := owner.NewID()
+
+	tkn := new(token.BearerToken)
+	tkn.SetOwner(uid)
+
+	data, err := tkn.Marshal()
+
+	require.NoError(t, err)
+
+	t64 := base64.StdEncoding.EncodeToString(data)
+	require.NotEmpty(t, t64)
+
+	cases := []struct {
+		name string
+
+		cookie string
+		header string
+
+		error  string
+		expect *token.BearerToken
+	}{
+		{name: "empty"},
+
+		{name: "bad base64 header", header: "WRONG BASE64", error: "could not fetch marshaled from base64"},
+		{name: "bad base64 cookie", cookie: "WRONG BASE64", error: "could not fetch marshaled from base64"},
+
+		{name: "header token unmarshal error", header: "dGVzdAo=", error: "could not unmarshal bearer token"},
+		{name: "cookie token unmarshal error", cookie: "dGVzdAo=", error: "could not unmarshal bearer token"},
+
+		{
+			name:   "bad header and cookie",
+			header: "WRONG BASE64",
+			cookie: "dGVzdAo=",
+			error:  "could not unmarshal bearer token",
+		},
+
+		{
+			name:   "bad header, but good cookie",
+			header: "dGVzdAo=",
+			cookie: t64,
+			expect: tkn,
+		},
+
+		{name: "ok for header", header: t64, expect: tkn},
+		{name: "ok for cookie", cookie: t64, expect: tkn},
+	}
+
+	for _, tt := range cases {
+		t.Run(tt.name, func(t *testing.T) {
+			ctx := makeTestRequest(tt.cookie, tt.header)
+			actual, err := fetchBearerToken(ctx)
+
+			if tt.error == "" {
+				require.NoError(t, err)
+				require.Equal(t, tt.expect, actual)
+
+				return
+			}
+
+			require.Contains(t, err.Error(), tt.error)
+		})
+	}
+}
+
+func makeTestRequest(cookie, header string) *fasthttp.RequestCtx {
+	ctx := new(fasthttp.RequestCtx)
+
+	if cookie != "" {
+		ctx.Request.Header.SetCookie(bearerTokenHdr, cookie)
+	}
+
+	if header != "" {
+		ctx.Request.Header.Set(fasthttp.HeaderAuthorization, bearerTokenHdr+" "+header)
+	}
+	return ctx
+}
+
+func Test_checkAndPropagateBearerToken(t *testing.T) {
+	uid := owner.NewID()
+
+	tkn := new(token.BearerToken)
+	tkn.SetOwner(uid)
+
+	data, err := tkn.Marshal()
+	require.NoError(t, err)
+
+	t64 := base64.StdEncoding.EncodeToString(data)
+	require.NotEmpty(t, t64)
+
+	ctx := makeTestRequest(t64, "")
+
+	// Expect to see the token within the context.
+	require.NoError(t, StoreBearerToken(ctx))
+
+	// Expect to see the same token without errors.
+	actual, err := LoadBearerToken(ctx)
+	require.NoError(t, err)
+	require.Equal(t, tkn, actual)
+}