/* * * Copyright 2015 gRPC authors. * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. * */ #include #include #include "src/core/lib/iomgr/load_file.h" #include "src/core/lib/security/credentials/jwt/jwt_credentials.h" #include #include #include #include void create_jwt(const char* json_key_file_path, const char* service_url, const char* scope) { grpc_auth_json_key key; char* jwt; grpc_slice json_key_data; GPR_ASSERT(GRPC_LOG_IF_ERROR( "load_file", grpc_load_file(json_key_file_path, 1, &json_key_data))); key = grpc_auth_json_key_create_from_string( (const char*)GRPC_SLICE_START_PTR(json_key_data)); grpc_slice_unref(json_key_data); if (!grpc_auth_json_key_is_valid(&key)) { fprintf(stderr, "Could not parse json key.\n"); exit(1); } jwt = grpc_jwt_encode_and_sign( &key, service_url == NULL ? GRPC_JWT_OAUTH2_AUDIENCE : service_url, grpc_max_auth_token_lifetime(), scope); grpc_auth_json_key_destruct(&key); if (jwt == NULL) { fprintf(stderr, "Could not create JWT.\n"); exit(1); } fprintf(stdout, "%s\n", jwt); gpr_free(jwt); } int main(int argc, char** argv) { const char* scope = NULL; const char* json_key_file_path = NULL; const char* service_url = NULL; grpc_init(); gpr_cmdline* cl = gpr_cmdline_create("create_jwt"); gpr_cmdline_add_string(cl, "json_key", "File path of the json key.", &json_key_file_path); gpr_cmdline_add_string(cl, "scope", "OPTIONAL Space delimited permissions. Mutually " "exclusive with service_url", &scope); gpr_cmdline_add_string(cl, "service_url", "OPTIONAL service URL. Mutually exclusive with scope.", &service_url); gpr_cmdline_parse(cl, argc, argv); if (json_key_file_path == NULL) { fprintf(stderr, "Missing --json_key option.\n"); exit(1); } if (scope != NULL) { if (service_url != NULL) { fprintf(stderr, "Options --scope and --service_url are mutually exclusive.\n"); exit(1); } } else if (service_url == NULL) { fprintf(stderr, "Need one of --service_url or --scope options.\n"); exit(1); } create_jwt(json_key_file_path, service_url, scope); gpr_cmdline_destroy(cl); grpc_shutdown(); return 0; }