vmario/fabaccess-bffh
1
0
Fork 0
mirror of https://gitlab.com/fabinfra/fabaccess/bffh.git synced 2024-11-22 14:57:56 +01:00
Code Issues Packages Projects Releases Wiki Activity

Start with API implementation

Browse Source
This commit is contained in:
Nadja Reitzenstein 2021-11-26 22:11:24 +01:00
parent 26b2888a09
commit 8c28e50cac
7 changed files with 209 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
api/schema

@ -1 +1 @@
Subproject commit a13478a3f00d6f00580dc344d3a697d90bc50377 Subproject commit d5ffd3c2b36eecf250639d11c51045740504c2f0

12
api/src/lib.rs
View File

@ -4,7 +4,7 @@
//! This crate contains slightly nicer and better documented bindings for the FabAccess API. //! This crate contains slightly nicer and better documented bindings for the FabAccess API.
mod schema; pub mod schema;
/// Authentication subsystem /// Authentication subsystem
pub mod auth { pub mod auth {
@ -34,7 +34,7 @@ pub mod role {
} }
pub mod user { pub mod user {
pub use crate::schema::user_capnp::*; pub use crate::schema::user_capnp::user::*;
} }
pub mod users { pub mod users {
@ -54,3 +54,11 @@ pub mod utils {
pub use crate::schema::utils_capnp::l10_n_string::*; pub use crate::schema::utils_capnp::l10_n_string::*;
} }
} }
pub mod bootstrap {
pub use crate::schema::main_capnp::bootstrap::*;
}
pub mod session {
pub use crate::schema::main_capnp::session::*;
}

2
bffhd/db.rs
View File

@ -53,7 +53,7 @@ use rkyv::Deserialize;
use rkyv::ser::serializers::AlignedSerializer; use rkyv::ser::serializers::AlignedSerializer;
use std::sync::Arc; use std::sync::Arc;
use std::path::Path; use std::path::Path;
use crate::users::db::{User, UserDB}; use crate::users::{User, UserDB};
use std::collections::HashMap; use std::collections::HashMap;
use crate::resource::state::{OwnedEntry, State, db::StateDB}; use crate::resource::state::{OwnedEntry, State, db::StateDB};
use std::iter::FromIterator; use std::iter::FromIterator;

117
bffhd/server/authentication.rs Normal file
View File

@ -0,0 +1,117 @@
use api::utils::l10n_string;
use std::ops::Deref;
use capnp::capability::Promise;
use capnp::Error;
use capnp_rpc::pry;
use rsasl::{gsasl_err_to_str, SaslError, Session};
use rsasl::session::Step::{Done, NeedsMore};
use api::auth::authentication::{
Server,
AbortParams,
AbortResults,
StepParams,
StepResults,
};
use api::auth::response::{
Reason,
Action,
};
pub struct Authentication {
state: State<()>,
}
enum State<D> {
InvalidMechanism,
Finished,
Aborted,
Running(Session<D>)
}
impl Server for Authentication {
fn step(&mut self, params: StepParams, mut results: StepResults) -> Promise<(), Error> {
use State::*;
match self.state {
InvalidMechanism => {
let mut builder = results.get();
let mut b = builder.init_error();
b.set_reason(Reason::BadMechanism);
b.set_action(Action::Permanent);
},
Finished => {
let mut builder = results.get();
let mut b = builder.init_error();
b.set_reason(Reason::Finished);
b.set_action(Action::Permanent);
},
Aborted => {
let mut builder = results.get();
let mut b = builder.init_error();
b.set_reason(Reason::Aborted);
b.set_action(Action::Permanent);
},
Running(ref mut session) => {
// TODO: If null what happens?
let data: &[u8] = pry!(pry!(params.get()).get_data());
let mut builder = results.get();
match session.step(data) {
Ok(Done(Data)) => {
let mut b = builder.init_successful();
},
Ok(NeedsMore(Data)) => {
builder.set_challenge(Data.deref());
},
Err(e) => {
let mut b = builder.init_error();
b.set_reason(Reason::Aborted);
b.set_action(Action::Permanent);
}
}
}
}
Promise::ok(())
}
fn abort(&mut self, _: AbortParams, _: AbortResults) -> Promise<(), Error> {
Promise::ok(())
}
}
#[repr(transparent)]
struct SaslE {
e: SaslError,
}
impl l10n_string::Server for SaslE {
fn get(&mut self,
params: l10n_string::GetParams,
mut results: l10n_string::GetResults
) -> Promise<(), Error>
{
let lang = pry!(pry!(params.get()).get_lang());
if lang == "en" {
let mut builder = results.get();
builder.set_lang("en");
builder.set_content(gsasl_err_to_str(self.e.0));
}
Promise::ok(())
}
fn available(
&mut self,
_: l10n_string::AvailableParams,
mut results: l10n_string::AvailableResults
) -> Promise<(), Error> {
let mut builder = results.get();
let mut langs = builder.init_langs(1);
langs.set(0, "en");
Promise::ok(())
}
}

35
bffhd/server/mod.rs
View File

@ -1,2 +1,37 @@
use capnp::capability::Promise;
use capnp::Error;
use api::bootstrap::{
Server,
MechanismsParams,
MechanismsResults,
CreateSessionParams,
CreateSessionResults
};
mod tls; mod tls;
mod authentication;
struct ApiSystem {
}
impl Server for ApiSystem {
fn mechanisms(
&mut self,
_: MechanismsParams,
_: MechanismsResults
) -> Promise<(), Error>
{
todo!()
}
fn create_session(
&mut self,
_: CreateSessionParams,
_: CreateSessionResults
) -> Promise<(), Error>
{
todo!()
}
}

10
bffhd/users/db.rs
View File

@ -1,8 +1,9 @@
use std::sync::Arc; use std::sync::Arc;
use crate::db::{RawDB, DB, AllocAdapter, Environment, Result}; use crate::db::{RawDB, DB, AllocAdapter, Environment, Result};
use crate::db::{DatabaseFlags, LMDBorrow, RoTransaction, WriteFlags, }; use crate::db::{DatabaseFlags, LMDBorrow, RoTransaction, WriteFlags, };
use super::User;
use rkyv::{Archive, Serialize, Deserialize, Archived}; use rkyv::{Deserialize, Archived};
type Adapter = AllocAdapter<User>; type Adapter = AllocAdapter<User>;
#[derive(Clone, Debug)] #[derive(Clone, Debug)]
@ -11,13 +12,6 @@ pub struct UserDB {
db: DB<Adapter>, db: DB<Adapter>,
} }
#[derive(Debug, Clone, Archive, Serialize, Deserialize, serde::Serialize, serde::Deserialize)]
pub struct User {
id: u128,
username: String,
roles: Vec<String>,
}
impl UserDB { impl UserDB {
pub unsafe fn new(env: Arc<Environment>, db: RawDB) -> Self { pub unsafe fn new(env: Arc<Environment>, db: RawDB) -> Self {
let db = DB::new_unchecked(db); let db = DB::new_unchecked(db);

43
bffhd/users/mod.rs
View File

@ -1,2 +1,43 @@
use rkyv::{Archive, Serialize, Deserialize};
pub mod db; use capnp::capability::Promise;
use capnp::Error;
use api::user::{
info,
manage,
admin,
};
mod db;
pub use db::UserDB;
#[derive(Debug, Clone, Archive, Serialize, Deserialize, serde::Serialize, serde::Deserialize)]
pub struct User {
id: u128,
username: String,
roles: Vec<String>,
}
impl User {
}
impl info::Server for User {
fn list_roles(
&mut self,
params: info::ListRolesParams,
mut results: info::ListRolesResults
) -> Promise<(), Error>
{
Promise::ok(())
}
}
impl manage::Server for User {
}
impl admin::Server for User {
}