forked from mendersoftware/deviceauth
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathserver.go
116 lines (93 loc) · 3.47 KB
/
server.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
// Copyright 2018 Northern.tech AS
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
package main
import (
"net/http"
"time"
"github.com/ant0ine/go-json-rest/rest"
"github.com/mendersoftware/go-lib-micro/config"
"github.com/mendersoftware/go-lib-micro/log"
"github.com/pkg/errors"
api_http "github.com/mendersoftware/deviceauth/api/http"
"github.com/mendersoftware/deviceauth/client/orchestrator"
"github.com/mendersoftware/deviceauth/client/tenant"
dconfig "github.com/mendersoftware/deviceauth/config"
"github.com/mendersoftware/deviceauth/devauth"
"github.com/mendersoftware/deviceauth/jwt"
"github.com/mendersoftware/deviceauth/keys"
"github.com/mendersoftware/deviceauth/store/mongo"
)
func SetupAPI(stacktype string) (*rest.Api, error) {
api := rest.NewApi()
if err := SetupMiddleware(api, stacktype); err != nil {
return nil, errors.Wrap(err, "failed to setup middleware")
}
//this will override the framework's error resp to the desired one:
// {"error": "msg"}
// instead of:
// {"Error": "msg"}
rest.ErrorFieldName = "error"
return api, nil
}
func RunServer(c config.Reader) error {
l := log.New(log.Ctx{})
privKey, err := keys.LoadRSAPrivate(c.GetString(dconfig.SettingServerPrivKeyPath))
if err != nil {
return errors.Wrap(err, "failed to read rsa private key")
}
db, err := mongo.NewDataStoreMongo(
mongo.DataStoreMongoConfig{
ConnectionString: c.GetString(dconfig.SettingDb),
SSL: c.GetBool(dconfig.SettingDbSSL),
SSLSkipVerify: c.GetBool(dconfig.SettingDbSSLSkipVerify),
Username: c.GetString(dconfig.SettingDbUsername),
Password: c.GetString(dconfig.SettingDbPassword),
})
if err != nil {
return errors.Wrap(err, "database connection failed")
}
jwtHandler := jwt.NewJWTHandlerRS256(privKey)
orchClientConf := orchestrator.Config{
OrchestratorAddr: c.GetString(dconfig.SettingOrchestratorAddr),
Timeout: time.Duration(30) * time.Second,
}
devauth := devauth.NewDevAuth(db,
orchestrator.NewClient(orchClientConf),
jwtHandler,
devauth.Config{
Issuer: c.GetString(dconfig.SettingJWTIssuer),
ExpirationTime: int64(c.GetInt(dconfig.SettingJWTExpirationTimeout)),
MaxDevicesLimitDefault: uint64(c.GetInt(dconfig.SettingMaxDevicesLimitDefault)),
})
if tadmAddr := c.GetString(dconfig.SettingTenantAdmAddr); tadmAddr != "" {
l.Infof("settting up tenant verification")
tc := tenant.NewClient(tenant.Config{
TenantAdmAddr: tadmAddr,
})
devauth = devauth.WithTenantVerification(tc)
}
api, err := SetupAPI(c.GetString(dconfig.SettingMiddleware))
if err != nil {
return errors.Wrap(err, "API setup failed")
}
devauthapi := api_http.NewDevAuthApiHandlers(devauth, db)
apph, err := devauthapi.GetApp()
if err != nil {
return errors.Wrap(err, "device authentication API handlers setup failed")
}
api.SetApp(apph)
addr := c.GetString(dconfig.SettingListen)
l.Printf("listening on %s", addr)
return http.ListenAndServe(addr, api.MakeHandler())
}