veryroundbird.house / core
forked from tangled.org/core
this repo has no description
fork atom
core / appview / state / signer.go
at add-migrations 3.1 kB view raw
1package state 2 3import ( 4 "bytes" 5 "crypto/hmac" 6 "crypto/sha256" 7 "encoding/hex" 8 "encoding/json" 9 "fmt" 10 "net/http" 11 "net/url" 12 "time" 13) 14 15type SignerTransport struct { 16 Secret string 17} 18 19func (s SignerTransport) RoundTrip(req *http.Request) (*http.Response, error) { 20 timestamp := time.Now().Format(time.RFC3339) 21 mac := hmac.New(sha256.New, []byte(s.Secret)) 22 message := req.Method + req.URL.Path + timestamp 23 mac.Write([]byte(message)) 24 signature := hex.EncodeToString(mac.Sum(nil)) 25 req.Header.Set("X-Signature", signature) 26 req.Header.Set("X-Timestamp", timestamp) 27 return http.DefaultTransport.RoundTrip(req) 28} 29 30type SignedClient struct { 31 Secret string 32 Url *url.URL 33 client *http.Client 34} 35 36func NewSignedClient(domain, secret string, dev bool) (*SignedClient, error) { 37 client := &http.Client{ 38 Timeout: 5 * time.Second, 39 Transport: SignerTransport{ 40 Secret: secret, 41 }, 42 } 43 44 uri := "https" 45 if dev { 46 uri = "http" 47 } 48 url, err := url.Parse(fmt.Sprintf("%s://%s", uri, domain)) 49 if err != nil { 50 return nil, err 51 } 52 53 signedClient := &SignedClient{ 54 Secret: secret, 55 client: client, 56 Url: url, 57 } 58 59 return signedClient, nil 60} 61 62func (s *SignedClient) newRequest(method, endpoint string, body []byte) (*http.Request, error) { 63 return http.NewRequest(method, s.Url.JoinPath(endpoint).String(), bytes.NewReader(body)) 64} 65 66func (s *SignedClient) Init(did string) (*http.Response, error) { 67 const ( 68 Method = "POST" 69 Endpoint = "/init" 70 ) 71 72 body, _ := json.Marshal(map[string]any{ 73 "did": did, 74 }) 75 76 req, err := s.newRequest(Method, Endpoint, body) 77 if err != nil { 78 return nil, err 79 } 80 81 return s.client.Do(req) 82} 83 84func (s *SignedClient) NewRepo(did, repoName, defaultBranch string) (*http.Response, error) { 85 const ( 86 Method = "PUT" 87 Endpoint = "/repo/new" 88 ) 89 90 body, _ := json.Marshal(map[string]any{ 91 "did": did, 92 "name": repoName, 93 "default_branch": defaultBranch, 94 }) 95 96 req, err := s.newRequest(Method, Endpoint, body) 97 if err != nil { 98 return nil, err 99 } 100 101 return s.client.Do(req) 102} 103 104func (s *SignedClient) RemoveRepo(did, repoName string) (*http.Response, error) { 105 const ( 106 Method = "DELETE" 107 Endpoint = "/repo" 108 ) 109 110 body, _ := json.Marshal(map[string]any{ 111 "did": did, 112 "name": repoName, 113 }) 114 115 req, err := s.newRequest(Method, Endpoint, body) 116 if err != nil { 117 return nil, err 118 } 119 120 return s.client.Do(req) 121} 122 123func (s *SignedClient) AddMember(did string) (*http.Response, error) { 124 const ( 125 Method = "PUT" 126 Endpoint = "/member/add" 127 ) 128 129 body, _ := json.Marshal(map[string]any{ 130 "did": did, 131 }) 132 133 req, err := s.newRequest(Method, Endpoint, body) 134 if err != nil { 135 return nil, err 136 } 137 138 return s.client.Do(req) 139} 140 141func (s *SignedClient) AddCollaborator(ownerDid, repoName, memberDid string) (*http.Response, error) { 142 const ( 143 Method = "POST" 144 ) 145 endpoint := fmt.Sprintf("/%s/%s/collaborator/add", ownerDid, repoName) 146 147 body, _ := json.Marshal(map[string]any{ 148 "did": memberDid, 149 }) 150 151 req, err := s.newRequest(Method, endpoint, body) 152 if err != nil { 153 return nil, err 154 } 155 156 return s.client.Do(req) 157}