2018-09-22 19:08:28 +02:00
|
|
|
require "uuid"
|
2018-11-12 18:51:21 +01:00
|
|
|
require "option_parser"
|
2018-09-22 19:08:28 +02:00
|
|
|
|
|
|
|
|
require "jwt"
|
|
|
|
|
|
|
|
|
|
require "pg"
|
|
|
|
|
require "crecto"
|
|
|
|
|
|
2018-11-12 18:51:21 +01:00
|
|
|
require "ipc"
|
|
|
|
|
|
|
|
|
|
require "./authd.cr"
|
|
|
|
|
|
|
|
|
|
extend AuthD
|
2018-09-22 21:23:50 +02:00
|
|
|
|
2018-09-22 19:08:28 +02:00
|
|
|
authd_db_name = "authd"
|
|
|
|
|
authd_db_hostname = "localhost"
|
|
|
|
|
authd_db_user = "user"
|
2018-09-22 19:46:48 +02:00
|
|
|
authd_db_password = "nico-nico-nii"
|
|
|
|
|
authd_jwt_key = "nico-nico-nii"
|
2018-09-22 19:08:28 +02:00
|
|
|
|
2018-11-12 18:51:21 +01:00
|
|
|
OptionParser.parse! do |parser|
|
2018-09-22 19:46:48 +02:00
|
|
|
parser.on "-d name", "--database-name name", "Database name." do |name|
|
|
|
|
|
authd_db_name = name
|
2018-09-22 19:08:28 +02:00
|
|
|
end
|
|
|
|
|
|
2018-09-22 19:46:48 +02:00
|
|
|
parser.on "-u name", "--database-username user", "Database user." do |name|
|
|
|
|
|
authd_db_user = name
|
2018-09-22 19:08:28 +02:00
|
|
|
end
|
|
|
|
|
|
2018-09-22 19:46:48 +02:00
|
|
|
parser.on "-a host", "--hostname host", "Database host name." do |host|
|
|
|
|
|
authd_db_hostname = host
|
2018-09-22 19:08:28 +02:00
|
|
|
end
|
|
|
|
|
|
2018-09-22 19:46:48 +02:00
|
|
|
parser.on "-P file", "--password-file file", "Password file." do |file_name|
|
2018-09-24 22:10:24 +02:00
|
|
|
authd_db_password = File.read(file_name).chomp
|
2018-09-22 19:46:48 +02:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
parser.on "-K file", "--key-file file", "JWT key file" do |file_name|
|
2018-09-24 22:10:24 +02:00
|
|
|
authd_jwt_key = File.read(file_name).chomp
|
2018-09-22 19:08:28 +02:00
|
|
|
end
|
|
|
|
|
|
2018-11-12 18:51:21 +01:00
|
|
|
parser.on "-h", "--help", "Show this help" do
|
|
|
|
|
puts parser
|
2018-09-22 19:08:28 +02:00
|
|
|
|
2018-11-12 18:51:21 +01:00
|
|
|
exit 0
|
2018-09-22 19:08:28 +02:00
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
2018-09-23 16:17:48 +02:00
|
|
|
module DataBase
|
2018-09-22 19:08:28 +02:00
|
|
|
extend Crecto::Repo
|
|
|
|
|
end
|
|
|
|
|
|
2018-11-12 18:51:21 +01:00
|
|
|
DataBase.config do |conf|
|
|
|
|
|
conf.adapter = Crecto::Adapters::Postgres
|
|
|
|
|
conf.hostname = authd_db_hostname
|
|
|
|
|
conf.database = authd_db_name
|
|
|
|
|
conf.username = authd_db_user
|
|
|
|
|
conf.password = authd_db_password
|
|
|
|
|
end
|
2018-09-23 16:17:48 +02:00
|
|
|
|
2018-11-12 18:51:21 +01:00
|
|
|
# Dummy query to check DB connection is possible.
|
|
|
|
|
begin
|
|
|
|
|
DataBase.all User, Crecto::Repo::Query.new
|
|
|
|
|
rescue e
|
|
|
|
|
puts "Database connection failed: #{e.message}"
|
2018-09-23 16:17:48 +02:00
|
|
|
|
2018-11-12 18:51:21 +01:00
|
|
|
exit 1
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
##
|
|
|
|
|
# Provides a JWT-based authentication scheme for service-specific users.
|
|
|
|
|
IPC::Service.new "auth" do |event|
|
|
|
|
|
client = event.client
|
|
|
|
|
|
|
|
|
|
case event
|
|
|
|
|
when IPC::Event::Message
|
|
|
|
|
message = event.message
|
|
|
|
|
payload = message.payload
|
|
|
|
|
|
|
|
|
|
case RequestTypes.new message.type.to_i
|
|
|
|
|
when RequestTypes::GET_TOKEN
|
|
|
|
|
begin
|
|
|
|
|
request = GetTokenRequest.from_json payload
|
|
|
|
|
rescue e
|
|
|
|
|
client.send ResponseTypes::MALFORMED_REQUEST.value.to_u8, e.message || ""
|
|
|
|
|
|
|
|
|
|
next
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
user = DataBase.get_by User,
|
|
|
|
|
username: request.username,
|
|
|
|
|
password: request.password
|
|
|
|
|
|
|
|
|
|
if user.nil?
|
|
|
|
|
client.send ResponseTypes::INVALID_CREDENTIALS.value.to_u8, ""
|
|
|
|
|
|
|
|
|
|
next
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
client.send ResponseTypes::OK.value.to_u8,
|
|
|
|
|
JWT.encode user.to_h, authd_jwt_key, "HS256"
|
|
|
|
|
end
|
2018-09-23 16:17:48 +02:00
|
|
|
end
|
2018-09-22 19:08:28 +02:00
|
|
|
end
|
2018-11-12 18:51:21 +01:00
|
|
|
|
