mirror of
https://gitlab.com/fabinfra/fabaccess/bffh.git
synced 2024-11-26 00:24:55 +01:00
Start with API implementation
This commit is contained in:
parent
26b2888a09
commit
8c28e50cac
@ -1 +1 @@
|
|||||||
Subproject commit a13478a3f00d6f00580dc344d3a697d90bc50377
|
Subproject commit d5ffd3c2b36eecf250639d11c51045740504c2f0
|
@ -4,7 +4,7 @@
|
|||||||
//! This crate contains slightly nicer and better documented bindings for the FabAccess API.
|
//! This crate contains slightly nicer and better documented bindings for the FabAccess API.
|
||||||
|
|
||||||
|
|
||||||
mod schema;
|
pub mod schema;
|
||||||
|
|
||||||
/// Authentication subsystem
|
/// Authentication subsystem
|
||||||
pub mod auth {
|
pub mod auth {
|
||||||
@ -34,7 +34,7 @@ pub mod role {
|
|||||||
}
|
}
|
||||||
|
|
||||||
pub mod user {
|
pub mod user {
|
||||||
pub use crate::schema::user_capnp::*;
|
pub use crate::schema::user_capnp::user::*;
|
||||||
}
|
}
|
||||||
|
|
||||||
pub mod users {
|
pub mod users {
|
||||||
@ -54,3 +54,11 @@ pub mod utils {
|
|||||||
pub use crate::schema::utils_capnp::l10_n_string::*;
|
pub use crate::schema::utils_capnp::l10_n_string::*;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
pub mod bootstrap {
|
||||||
|
pub use crate::schema::main_capnp::bootstrap::*;
|
||||||
|
}
|
||||||
|
|
||||||
|
pub mod session {
|
||||||
|
pub use crate::schema::main_capnp::session::*;
|
||||||
|
}
|
@ -53,7 +53,7 @@ use rkyv::Deserialize;
|
|||||||
use rkyv::ser::serializers::AlignedSerializer;
|
use rkyv::ser::serializers::AlignedSerializer;
|
||||||
use std::sync::Arc;
|
use std::sync::Arc;
|
||||||
use std::path::Path;
|
use std::path::Path;
|
||||||
use crate::users::db::{User, UserDB};
|
use crate::users::{User, UserDB};
|
||||||
use std::collections::HashMap;
|
use std::collections::HashMap;
|
||||||
use crate::resource::state::{OwnedEntry, State, db::StateDB};
|
use crate::resource::state::{OwnedEntry, State, db::StateDB};
|
||||||
use std::iter::FromIterator;
|
use std::iter::FromIterator;
|
||||||
|
117
bffhd/server/authentication.rs
Normal file
117
bffhd/server/authentication.rs
Normal file
@ -0,0 +1,117 @@
|
|||||||
|
use api::utils::l10n_string;
|
||||||
|
|
||||||
|
use std::ops::Deref;
|
||||||
|
use capnp::capability::Promise;
|
||||||
|
use capnp::Error;
|
||||||
|
use capnp_rpc::pry;
|
||||||
|
|
||||||
|
use rsasl::{gsasl_err_to_str, SaslError, Session};
|
||||||
|
use rsasl::session::Step::{Done, NeedsMore};
|
||||||
|
|
||||||
|
use api::auth::authentication::{
|
||||||
|
Server,
|
||||||
|
AbortParams,
|
||||||
|
AbortResults,
|
||||||
|
StepParams,
|
||||||
|
StepResults,
|
||||||
|
};
|
||||||
|
use api::auth::response::{
|
||||||
|
Reason,
|
||||||
|
Action,
|
||||||
|
};
|
||||||
|
|
||||||
|
|
||||||
|
pub struct Authentication {
|
||||||
|
state: State<()>,
|
||||||
|
}
|
||||||
|
|
||||||
|
enum State<D> {
|
||||||
|
InvalidMechanism,
|
||||||
|
Finished,
|
||||||
|
Aborted,
|
||||||
|
Running(Session<D>)
|
||||||
|
}
|
||||||
|
|
||||||
|
impl Server for Authentication {
|
||||||
|
fn step(&mut self, params: StepParams, mut results: StepResults) -> Promise<(), Error> {
|
||||||
|
use State::*;
|
||||||
|
match self.state {
|
||||||
|
InvalidMechanism => {
|
||||||
|
let mut builder = results.get();
|
||||||
|
let mut b = builder.init_error();
|
||||||
|
b.set_reason(Reason::BadMechanism);
|
||||||
|
b.set_action(Action::Permanent);
|
||||||
|
},
|
||||||
|
Finished => {
|
||||||
|
let mut builder = results.get();
|
||||||
|
let mut b = builder.init_error();
|
||||||
|
b.set_reason(Reason::Finished);
|
||||||
|
b.set_action(Action::Permanent);
|
||||||
|
},
|
||||||
|
Aborted => {
|
||||||
|
let mut builder = results.get();
|
||||||
|
let mut b = builder.init_error();
|
||||||
|
b.set_reason(Reason::Aborted);
|
||||||
|
b.set_action(Action::Permanent);
|
||||||
|
},
|
||||||
|
Running(ref mut session) => {
|
||||||
|
// TODO: If null what happens?
|
||||||
|
let data: &[u8] = pry!(pry!(params.get()).get_data());
|
||||||
|
|
||||||
|
let mut builder = results.get();
|
||||||
|
match session.step(data) {
|
||||||
|
Ok(Done(Data)) => {
|
||||||
|
let mut b = builder.init_successful();
|
||||||
|
},
|
||||||
|
Ok(NeedsMore(Data)) => {
|
||||||
|
builder.set_challenge(Data.deref());
|
||||||
|
},
|
||||||
|
Err(e) => {
|
||||||
|
let mut b = builder.init_error();
|
||||||
|
b.set_reason(Reason::Aborted);
|
||||||
|
b.set_action(Action::Permanent);
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
Promise::ok(())
|
||||||
|
}
|
||||||
|
|
||||||
|
fn abort(&mut self, _: AbortParams, _: AbortResults) -> Promise<(), Error> {
|
||||||
|
Promise::ok(())
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
#[repr(transparent)]
|
||||||
|
struct SaslE {
|
||||||
|
e: SaslError,
|
||||||
|
}
|
||||||
|
|
||||||
|
impl l10n_string::Server for SaslE {
|
||||||
|
fn get(&mut self,
|
||||||
|
params: l10n_string::GetParams,
|
||||||
|
mut results: l10n_string::GetResults
|
||||||
|
) -> Promise<(), Error>
|
||||||
|
{
|
||||||
|
let lang = pry!(pry!(params.get()).get_lang());
|
||||||
|
if lang == "en" {
|
||||||
|
let mut builder = results.get();
|
||||||
|
builder.set_lang("en");
|
||||||
|
builder.set_content(gsasl_err_to_str(self.e.0));
|
||||||
|
}
|
||||||
|
|
||||||
|
Promise::ok(())
|
||||||
|
}
|
||||||
|
|
||||||
|
fn available(
|
||||||
|
&mut self,
|
||||||
|
_: l10n_string::AvailableParams,
|
||||||
|
mut results: l10n_string::AvailableResults
|
||||||
|
) -> Promise<(), Error> {
|
||||||
|
let mut builder = results.get();
|
||||||
|
let mut langs = builder.init_langs(1);
|
||||||
|
langs.set(0, "en");
|
||||||
|
Promise::ok(())
|
||||||
|
}
|
||||||
|
}
|
@ -1,2 +1,37 @@
|
|||||||
|
use capnp::capability::Promise;
|
||||||
|
use capnp::Error;
|
||||||
|
|
||||||
|
use api::bootstrap::{
|
||||||
|
Server,
|
||||||
|
MechanismsParams,
|
||||||
|
MechanismsResults,
|
||||||
|
CreateSessionParams,
|
||||||
|
CreateSessionResults
|
||||||
|
};
|
||||||
|
|
||||||
mod tls;
|
mod tls;
|
||||||
|
mod authentication;
|
||||||
|
|
||||||
|
struct ApiSystem {
|
||||||
|
|
||||||
|
}
|
||||||
|
|
||||||
|
impl Server for ApiSystem {
|
||||||
|
fn mechanisms(
|
||||||
|
&mut self,
|
||||||
|
_: MechanismsParams,
|
||||||
|
_: MechanismsResults
|
||||||
|
) -> Promise<(), Error>
|
||||||
|
{
|
||||||
|
todo!()
|
||||||
|
}
|
||||||
|
|
||||||
|
fn create_session(
|
||||||
|
&mut self,
|
||||||
|
_: CreateSessionParams,
|
||||||
|
_: CreateSessionResults
|
||||||
|
) -> Promise<(), Error>
|
||||||
|
{
|
||||||
|
todo!()
|
||||||
|
}
|
||||||
|
}
|
@ -1,8 +1,9 @@
|
|||||||
use std::sync::Arc;
|
use std::sync::Arc;
|
||||||
use crate::db::{RawDB, DB, AllocAdapter, Environment, Result};
|
use crate::db::{RawDB, DB, AllocAdapter, Environment, Result};
|
||||||
use crate::db::{DatabaseFlags, LMDBorrow, RoTransaction, WriteFlags, };
|
use crate::db::{DatabaseFlags, LMDBorrow, RoTransaction, WriteFlags, };
|
||||||
|
use super::User;
|
||||||
|
|
||||||
use rkyv::{Archive, Serialize, Deserialize, Archived};
|
use rkyv::{Deserialize, Archived};
|
||||||
|
|
||||||
type Adapter = AllocAdapter<User>;
|
type Adapter = AllocAdapter<User>;
|
||||||
#[derive(Clone, Debug)]
|
#[derive(Clone, Debug)]
|
||||||
@ -11,13 +12,6 @@ pub struct UserDB {
|
|||||||
db: DB<Adapter>,
|
db: DB<Adapter>,
|
||||||
}
|
}
|
||||||
|
|
||||||
#[derive(Debug, Clone, Archive, Serialize, Deserialize, serde::Serialize, serde::Deserialize)]
|
|
||||||
pub struct User {
|
|
||||||
id: u128,
|
|
||||||
username: String,
|
|
||||||
roles: Vec<String>,
|
|
||||||
}
|
|
||||||
|
|
||||||
impl UserDB {
|
impl UserDB {
|
||||||
pub unsafe fn new(env: Arc<Environment>, db: RawDB) -> Self {
|
pub unsafe fn new(env: Arc<Environment>, db: RawDB) -> Self {
|
||||||
let db = DB::new_unchecked(db);
|
let db = DB::new_unchecked(db);
|
||||||
|
@ -1,2 +1,43 @@
|
|||||||
|
use rkyv::{Archive, Serialize, Deserialize};
|
||||||
|
|
||||||
pub mod db;
|
use capnp::capability::Promise;
|
||||||
|
use capnp::Error;
|
||||||
|
|
||||||
|
use api::user::{
|
||||||
|
info,
|
||||||
|
manage,
|
||||||
|
admin,
|
||||||
|
};
|
||||||
|
|
||||||
|
mod db;
|
||||||
|
pub use db::UserDB;
|
||||||
|
|
||||||
|
#[derive(Debug, Clone, Archive, Serialize, Deserialize, serde::Serialize, serde::Deserialize)]
|
||||||
|
pub struct User {
|
||||||
|
id: u128,
|
||||||
|
username: String,
|
||||||
|
roles: Vec<String>,
|
||||||
|
}
|
||||||
|
|
||||||
|
impl User {
|
||||||
|
|
||||||
|
}
|
||||||
|
|
||||||
|
impl info::Server for User {
|
||||||
|
fn list_roles(
|
||||||
|
&mut self,
|
||||||
|
params: info::ListRolesParams,
|
||||||
|
mut results: info::ListRolesResults
|
||||||
|
) -> Promise<(), Error>
|
||||||
|
{
|
||||||
|
Promise::ok(())
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
impl manage::Server for User {
|
||||||
|
|
||||||
|
}
|
||||||
|
|
||||||
|
impl admin::Server for User {
|
||||||
|
|
||||||
|
}
|
Loading…
Reference in New Issue
Block a user