mirror of https://github.com/grpc/grpc.git
The C based gRPC (C++, Python, Ruby, Objective-C, PHP, C#)
https://grpc.io/
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
98 lines
3.1 KiB
98 lines
3.1 KiB
/* |
|
* |
|
* Copyright 2015 gRPC authors. |
|
* |
|
* Licensed under the Apache License, Version 2.0 (the "License"); |
|
* you may not use this file except in compliance with the License. |
|
* You may obtain a copy of the License at |
|
* |
|
* http://www.apache.org/licenses/LICENSE-2.0 |
|
* |
|
* Unless required by applicable law or agreed to in writing, software |
|
* distributed under the License is distributed on an "AS IS" BASIS, |
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
|
* See the License for the specific language governing permissions and |
|
* limitations under the License. |
|
* |
|
*/ |
|
|
|
#include <stdio.h> |
|
#include <string.h> |
|
|
|
#include <grpc/slice.h> |
|
#include <grpc/support/alloc.h> |
|
#include <grpc/support/log.h> |
|
|
|
#include "src/core/lib/iomgr/load_file.h" |
|
#include "src/core/lib/security/credentials/jwt/jwt_credentials.h" |
|
#include "test/core/util/cmdline.h" |
|
|
|
void create_jwt(const char* json_key_file_path, const char* service_url, |
|
const char* scope) { |
|
grpc_auth_json_key key; |
|
char* jwt; |
|
grpc_slice json_key_data; |
|
GPR_ASSERT(GRPC_LOG_IF_ERROR( |
|
"load_file", grpc_load_file(json_key_file_path, 1, &json_key_data))); |
|
key = grpc_auth_json_key_create_from_string( |
|
reinterpret_cast<const char*> GRPC_SLICE_START_PTR(json_key_data)); |
|
grpc_slice_unref(json_key_data); |
|
if (!grpc_auth_json_key_is_valid(&key)) { |
|
fprintf(stderr, "Could not parse json key.\n"); |
|
fflush(stderr); |
|
exit(1); |
|
} |
|
jwt = grpc_jwt_encode_and_sign( |
|
&key, service_url == nullptr ? GRPC_JWT_OAUTH2_AUDIENCE : service_url, |
|
grpc_max_auth_token_lifetime(), scope); |
|
grpc_auth_json_key_destruct(&key); |
|
if (jwt == nullptr) { |
|
fprintf(stderr, "Could not create JWT.\n"); |
|
fflush(stderr); |
|
exit(1); |
|
} |
|
fprintf(stdout, "%s\n", jwt); |
|
gpr_free(jwt); |
|
} |
|
|
|
int main(int argc, char** argv) { |
|
const char* scope = nullptr; |
|
const char* json_key_file_path = nullptr; |
|
const char* service_url = nullptr; |
|
grpc_init(); |
|
gpr_cmdline* cl = gpr_cmdline_create("create_jwt"); |
|
gpr_cmdline_add_string(cl, "json_key", "File path of the json key.", |
|
&json_key_file_path); |
|
gpr_cmdline_add_string(cl, "scope", |
|
"OPTIONAL Space delimited permissions. Mutually " |
|
"exclusive with service_url", |
|
&scope); |
|
gpr_cmdline_add_string(cl, "service_url", |
|
"OPTIONAL service URL. Mutually exclusive with scope.", |
|
&service_url); |
|
gpr_cmdline_parse(cl, argc, argv); |
|
|
|
if (json_key_file_path == nullptr) { |
|
fprintf(stderr, "Missing --json_key option.\n"); |
|
fflush(stderr); |
|
exit(1); |
|
} |
|
if (scope != nullptr) { |
|
if (service_url != nullptr) { |
|
fprintf(stderr, |
|
"Options --scope and --service_url are mutually exclusive.\n"); |
|
fflush(stderr); |
|
exit(1); |
|
} |
|
} else if (service_url == nullptr) { |
|
fprintf(stderr, "Need one of --service_url or --scope options.\n"); |
|
fflush(stderr); |
|
exit(1); |
|
} |
|
|
|
create_jwt(json_key_file_path, service_url, scope); |
|
|
|
gpr_cmdline_destroy(cl); |
|
grpc_shutdown(); |
|
return 0; |
|
}
|
|
|