frostfs-api-go/session/types.go

package session

import (
	"context"
	"crypto/ecdsa"

	"github.com/nspcc-dev/neofs-api-go/internal"
)

// PrivateToken is an interface of session private part.
type PrivateToken interface {
	// PublicKey must return a binary representation of session public key.
	PublicKey() []byte

	// Sign must return the signature of passed data.
	//
	// Resulting signature must be verified by crypto.Verify function
	// with the session public key.
	Sign([]byte) ([]byte, error)

	// Expired must return true if and only if private token is expired in the given epoch number.
	Expired(uint64) bool
}

// PrivateTokenSource is an interface of private token storage with read access.
type PrivateTokenSource interface {
	// Fetch must return the storage record corresponding to the passed key.
	//
	// Resulting error must be ErrPrivateTokenNotFound if there is no corresponding record.
	Fetch(TokenID) (PrivateToken, error)
}

// EpochLifetimeStore is an interface of the storage of elements that lifetime is limited by NeoFS epoch.
type EpochLifetimeStore interface {
	// RemoveExpired must remove all elements that are expired in the given epoch.
	RemoveExpired(uint64) error
}

// PrivateTokenStore is an interface of the storage of private tokens addressable by TokenID.
type PrivateTokenStore interface {
	PrivateTokenSource
	EpochLifetimeStore

	// Store must save passed private token in the storage under the given key.
	//
	// Resulting error must be nil if private token was stored successfully.
	Store(TokenID, PrivateToken) error
}

// KeyStore is an interface of the storage of public keys addressable by OwnerID,
type KeyStore interface {
	// Get must return the storage record corresponding to the passed key.
	//
	// Resulting error must be ErrKeyNotFound if there is no corresponding record.
	Get(context.Context, OwnerID) ([]*ecdsa.PublicKey, error)
}

// ErrPrivateTokenNotFound is raised when addressed private token was not found in storage.
const ErrPrivateTokenNotFound = internal.Error("private token not found")
initial 2019-11-18 13:34:06 +00:00			`package session`

			`import (`
session: change KeyStore documentation 2020-04-29 09:44:35 +00:00			`"context"`
			`"crypto/ecdsa"`

Migrate to new repo 2020-03-31 07:05:26 +00:00			`"github.com/nspcc-dev/neofs-api-go/internal"`
session: replace PToken structure with PrivateToken interface In previous implementation PToken contained the full Token structure. Since private token is used for data signature only, storing unused fields of a user token is impractical. To emphasize the purpose of the private part of the session, it makes sense to provide the user of the session package with its interface. The interface will only provide the functionality of data signing with private session key. This commit: * removes PToken structure from session package; * defines PrivateToken interface of private session part; * adds the implementation of PrivateToken on unexported struct; * provides the constructor that generates session key internally. 2020-04-29 08:52:05 +00:00			`)`
initial 2019-11-18 13:34:06 +00:00
session: replace PToken structure with PrivateToken interface In previous implementation PToken contained the full Token structure. Since private token is used for data signature only, storing unused fields of a user token is impractical. To emphasize the purpose of the private part of the session, it makes sense to provide the user of the session package with its interface. The interface will only provide the functionality of data signing with private session key. This commit: * removes PToken structure from session package; * defines PrivateToken interface of private session part; * adds the implementation of PrivateToken on unexported struct; * provides the constructor that generates session key internally. 2020-04-29 08:52:05 +00:00			`// PrivateToken is an interface of session private part.`
			`type PrivateToken interface {`
			`// PublicKey must return a binary representation of session public key.`
			`PublicKey() []byte`
initial 2019-11-18 13:34:06 +00:00
session: replace PToken structure with PrivateToken interface In previous implementation PToken contained the full Token structure. Since private token is used for data signature only, storing unused fields of a user token is impractical. To emphasize the purpose of the private part of the session, it makes sense to provide the user of the session package with its interface. The interface will only provide the functionality of data signing with private session key. This commit: * removes PToken structure from session package; * defines PrivateToken interface of private session part; * adds the implementation of PrivateToken on unexported struct; * provides the constructor that generates session key internally. 2020-04-29 08:52:05 +00:00			`// Sign must return the signature of passed data.`
			`//`
			`// Resulting signature must be verified by crypto.Verify function`
			`// with the session public key.`
			`Sign([]byte) ([]byte, error)`
session: support the expiration of private tokens All sessions in NeoFS has limited in epochs lifetime. There is a need to limit the lifetime of private session tokens. This commmit: * extends PrivateToken interface with Expired method; * defines EpochLifetimeStore interface with RemoveExpired method and embeds it to PrivateTokenStore interface; * adds epoch value parameter to private token constructor. 2020-04-29 11:11:19 +00:00
			`// Expired must return true if and only if private token is expired in the given epoch number.`
			`Expired(uint64) bool`
session: replace PToken structure with PrivateToken interface In previous implementation PToken contained the full Token structure. Since private token is used for data signature only, storing unused fields of a user token is impractical. To emphasize the purpose of the private part of the session, it makes sense to provide the user of the session package with its interface. The interface will only provide the functionality of data signing with private session key. This commit: * removes PToken structure from session package; * defines PrivateToken interface of private session part; * adds the implementation of PrivateToken on unexported struct; * provides the constructor that generates session key internally. 2020-04-29 08:52:05 +00:00			`}`
initial 2019-11-18 13:34:06 +00:00
session: refactor token store This commit: * changes the set and signatures of TokenStore interface methods; * adds unit test for map storage. 2020-04-29 09:39:41 +00:00			`// PrivateTokenSource is an interface of private token storage with read access.`
			`type PrivateTokenSource interface {`
			`// Fetch must return the storage record corresponding to the passed key.`
			`//`
			`// Resulting error must be ErrPrivateTokenNotFound if there is no corresponding record.`
			`Fetch(TokenID) (PrivateToken, error)`
			`}`

session: support the expiration of private tokens All sessions in NeoFS has limited in epochs lifetime. There is a need to limit the lifetime of private session tokens. This commmit: * extends PrivateToken interface with Expired method; * defines EpochLifetimeStore interface with RemoveExpired method and embeds it to PrivateTokenStore interface; * adds epoch value parameter to private token constructor. 2020-04-29 11:11:19 +00:00			`// EpochLifetimeStore is an interface of the storage of elements that lifetime is limited by NeoFS epoch.`
			`type EpochLifetimeStore interface {`
			`// RemoveExpired must remove all elements that are expired in the given epoch.`
			`RemoveExpired(uint64) error`
			`}`

session: refactor token store This commit: * changes the set and signatures of TokenStore interface methods; * adds unit test for map storage. 2020-04-29 09:39:41 +00:00			`// PrivateTokenStore is an interface of the storage of private tokens addressable by TokenID.`
			`type PrivateTokenStore interface {`
			`PrivateTokenSource`
session: support the expiration of private tokens All sessions in NeoFS has limited in epochs lifetime. There is a need to limit the lifetime of private session tokens. This commmit: * extends PrivateToken interface with Expired method; * defines EpochLifetimeStore interface with RemoveExpired method and embeds it to PrivateTokenStore interface; * adds epoch value parameter to private token constructor. 2020-04-29 11:11:19 +00:00			`EpochLifetimeStore`
session: refactor token store This commit: * changes the set and signatures of TokenStore interface methods; * adds unit test for map storage. 2020-04-29 09:39:41 +00:00
			`// Store must save passed private token in the storage under the given key.`
			`//`
			`// Resulting error must be nil if private token was stored successfully.`
			`Store(TokenID, PrivateToken) error`
			`}`

session: change KeyStore documentation 2020-04-29 09:44:35 +00:00			`// KeyStore is an interface of the storage of public keys addressable by OwnerID,`
			`type KeyStore interface {`
			`// Get must return the storage record corresponding to the passed key.`
			`//`
			`// Resulting error must be ErrKeyNotFound if there is no corresponding record.`
			`Get(context.Context, OwnerID) ([]*ecdsa.PublicKey, error)`
			`}`

session: removes unused errors 2020-04-29 09:50:52 +00:00			`// ErrPrivateTokenNotFound is raised when addressed private token was not found in storage.`
session: refactor token store This commit: * changes the set and signatures of TokenStore interface methods; * adds unit test for map storage. 2020-04-29 09:39:41 +00:00			`const ErrPrivateTokenNotFound = internal.Error("private token not found")`