authd/src/authd.cr


require "jwt"

require "ipc"

require "./user.cr"

module AuthD
	class Response
		enum Type
			Ok
			Malformed
			InvalidCredentials
			InvalidUser
			UserNotFound # For UID-based GetUser requests.
			AuthenticationError
		end
	end

	class Request
		enum Type
			GetToken
			AddUser
			GetUser
			GetUserByCredentials
			ModUser # Edit user attributes.
		end

		class GetToken
			JSON.mapping({
				# FIXME: Rename to "login" for consistency.
				login: String,
				password: String
			})
		end

		class AddUser
			JSON.mapping({
				# Only clients that have the right shared key will be allowed
				# to create users.
				shared_key: String,

				login: String,
				password: String,
				uid: Int32?,
				gid: Int32?,
				home: String?,
				shell: String?
			})
		end

		class GetUser
			JSON.mapping({
				uid: Int32
			})
		end

		class GetUserByCredentials
			JSON.mapping({
				login: String,
				password: String
			})
		end

		class ModUser
			JSON.mapping({
				shared_key: String,

				uid: Int32,
				password: String?,
				avatar: String?
			})
		end
	end

	class Client < IPC::Connection
		property key : String

		def initialize
			@key = ""

			initialize "auth"
		end

		def get_token?(login : String, password : String) : String?
			send Request::Type::GetToken, {
				:login => login,
				:password => password
			}.to_json

			response = read

			if response.type == Response::Type::Ok.value.to_u8
				String.new response.payload
			else
				nil
			end
		end

		def get_user?(login : String, password : String) : Passwd::User?
			send Request::Type::GetUserByCredentials, {
				:login => login,
				:password => password
			}.to_json

			response = read

			if response.type == Response::Type::Ok.value.to_u8
				Passwd::User.from_json String.new response.payload
			else
				nil
			end
		end

		def get_user?(uid : Int32)
			send Request::Type::GetUser, {:uid => uid}.to_json

			response = read

			if response.type == Response::Type::Ok.value.to_u8
				User.from_json String.new response.payload
			else
				nil
			end
		end

		def send(type : Request::Type, payload)
			send type.value.to_u8, payload
		end

		def decode_token(token)
			user, meta = JWT.decode token, @key, JWT::Algorithm::HS256

			user = Passwd::User.from_json user.to_json

			{user, meta}
		end

		# FIXME: Extra options may be useful to implement here.
		def add_user(login : String, password : String) : Passwd::User | Exception
			send Request::Type::AddUser, {
				:shared_key => @key,
				:login => login,
				:password => password
			}.to_json

			response = read

			payload = String.new response.payload
			case Response::Type.new response.type.to_i
			when Response::Type::Ok
				Passwd::User.from_json payload
			else
				Exception.new payload
			end
		end

		def mod_user(uid : Int32, password : String? = nil, avatar : String? = nil) : Bool | Exception
			payload = Hash(String, String|Int32).new
			payload["uid"] = uid
			payload["shared_key"] = @key

			password.try do |password|
				payload["password"] = password
			end

			avatar.try do |avatar|
				payload["avatar"] = avatar
			end

			send Request::Type::ModUser, payload.to_json

			response = read

			case Response::Type.new response.type.to_i
			when Response::Type::Ok
				true
			else
				Exception.new String.new response.payload
			end
		end
	end
end
Authd library added to provide an auto-check middleware. 2018-09-22 21:25:03 +02:00
			`require "jwt"`

Finished conversion to a libIPC-based microservice. 2018-11-12 18:51:21 +01:00			`require "ipc"`
User -> AuthD::User, authd_user : AuthD::User 2018-09-22 21:42:21 +02:00
Finished conversion to a libIPC-based microservice. 2018-11-12 18:51:21 +01:00			`require "./user.cr"`
Authd library added to provide an auto-check middleware. 2018-09-22 21:25:03 +02:00
Finished conversion to a libIPC-based microservice. 2018-11-12 18:51:21 +01:00			`module AuthD`
Grooming. 2019-11-22 17:31:56 +01:00			`class Response`
			`enum Type`
			`Ok`
			`Malformed`
			`InvalidCredentials`
			`InvalidUser`
			`UserNotFound # For UID-based GetUser requests.`
			`AuthenticationError`
			`end`
Finished conversion to a libIPC-based microservice. 2018-11-12 18:51:21 +01:00			`end`
Authd library added to provide an auto-check middleware. 2018-09-22 21:25:03 +02:00
Grooming. 2019-11-22 17:31:56 +01:00			`class Request`
			`enum Type`
			`GetToken`
			`AddUser`
			`GetUser`
			`GetUserByCredentials`
			`ModUser # Edit user attributes.`
			`end`
Authd library added to provide an auto-check middleware. 2018-09-22 21:25:03 +02:00
Grooming. 2019-11-22 17:31:56 +01:00			`class GetToken`
			`JSON.mapping({`
			`# FIXME: Rename to "login" for consistency.`
			`login: String,`
			`password: String`
			`})`
			`end`
Authd library added to provide an auto-check middleware. 2018-09-22 21:25:03 +02:00
Grooming. 2019-11-22 17:31:56 +01:00			`class AddUser`
			`JSON.mapping({`
			`# Only clients that have the right shared key will be allowed`
			`# to create users.`
			`shared_key: String,`

			`login: String,`
			`password: String,`
			`uid: Int32?,`
			`gid: Int32?,`
			`home: String?,`
			`shell: String?`
			`})`
			`end`
WIP registration. 2018-12-19 13:54:19 +01:00
Grooming. 2019-11-22 17:31:56 +01:00			`class GetUser`
			`JSON.mapping({`
			`uid: Int32`
			`})`
			`end`
GetUser requests. 2019-01-07 17:04:20 +01:00
Grooming. 2019-11-22 17:31:56 +01:00			`class GetUserByCredentials`
			`JSON.mapping({`
			`login: String,`
			`password: String`
			`})`
			`end`
AuthD::Client#get_user?(login, password) added. 2019-02-16 22:06:56 +01:00
Grooming. 2019-11-22 17:31:56 +01:00			`class ModUser`
			`JSON.mapping({`
			`shared_key: String,`
Imposed authentication on a few requests. 2019-10-10 20:58:44 +02:00
Grooming. 2019-11-22 17:31:56 +01:00			`uid: Int32,`
			`password: String?,`
			`avatar: String?`
			`})`
			`end`
ModUser request. 2019-05-29 16:06:11 +02:00			`end`

Updates for new libipc APIs. 2019-06-05 22:30:29 +02:00			`class Client < IPC::Connection`
Finished conversion to a libIPC-based microservice. 2018-11-12 18:51:21 +01:00			`property key : String`

			`def initialize`
			`@key = ""`

			`initialize "auth"`
Authd library added to provide an auto-check middleware. 2018-09-22 21:25:03 +02:00			`end`

IPC.cr API updates. 2019-06-06 01:16:52 +02:00			`def get_token?(login : String, password : String) : String?`
Grooming. 2019-11-22 17:31:56 +01:00			`send Request::Type::GetToken, {`
Variable naming. Some breaking changes in the communications with authd (some request attributes renamed), but projects using AuthD::Client shouldn’t see anything. 2018-12-17 04:39:01 +01:00			`:login => login,`
Finished conversion to a libIPC-based microservice. 2018-11-12 18:51:21 +01:00			`:password => password`
			`}.to_json`

			`response = read`

Grooming. 2019-11-22 17:31:56 +01:00			`if response.type == Response::Type::Ok.value.to_u8`
IPC.cr API updates. 2019-06-06 01:16:52 +02:00			`String.new response.payload`
Finished conversion to a libIPC-based microservice. 2018-11-12 18:51:21 +01:00			`else`
			`nil`
Authd library added to provide an auto-check middleware. 2018-09-22 21:25:03 +02:00			`end`
			`end`

Grooming, preparing for split. 2019-11-17 15:50:26 +01:00			`def get_user?(login : String, password : String) : Passwd::User?`
Grooming. 2019-11-22 17:31:56 +01:00			`send Request::Type::GetUserByCredentials, {`
AuthD::Client#get_user?(login, password) added. 2019-02-16 22:06:56 +01:00			`:login => login,`
			`:password => password`
			`}.to_json`

			`response = read`

Grooming. 2019-11-22 17:31:56 +01:00			`if response.type == Response::Type::Ok.value.to_u8`
Grooming, preparing for split. 2019-11-17 15:50:26 +01:00			`Passwd::User.from_json String.new response.payload`
AuthD::Client#get_user?(login, password) added. 2019-02-16 22:06:56 +01:00			`else`
			`nil`
			`end`
			`end`

GetUser requests. 2019-01-07 17:04:20 +01:00			`def get_user?(uid : Int32)`
Grooming. 2019-11-22 17:31:56 +01:00			`send Request::Type::GetUser, {:uid => uid}.to_json`
GetUser requests. 2019-01-07 17:04:20 +01:00
			`response = read`

Grooming. 2019-11-22 17:31:56 +01:00			`if response.type == Response::Type::Ok.value.to_u8`
Missed IPC.cr update. Duh~, hopefully we’ll soon have automated tests. 2019-06-29 02:43:31 +02:00			`User.from_json String.new response.payload`
GetUser requests. 2019-01-07 17:04:20 +01:00			`else`
			`nil`
			`end`
			`end`

Grooming. 2019-11-22 17:31:56 +01:00			`def send(type : Request::Type, payload)`
WIP registration. 2018-12-19 13:54:19 +01:00			`send type.value.to_u8, payload`
			`end`

Finished conversion to a libIPC-based microservice. 2018-11-12 18:51:21 +01:00			`def decode_token(token)`
Update to new crystal-jwt APIs. 2019-06-28 18:20:34 +02:00			`user, meta = JWT.decode token, @key, JWT::Algorithm::HS256`
Finished conversion to a libIPC-based microservice. 2018-11-12 18:51:21 +01:00
Grooming, preparing for split. 2019-11-17 15:50:26 +01:00			`user = Passwd::User.from_json user.to_json`
Finished conversion to a libIPC-based microservice. 2018-11-12 18:51:21 +01:00
			`{user, meta}`
			`end`
WIP registration. 2018-12-19 13:54:19 +01:00
			`# FIXME: Extra options may be useful to implement here.`
Grooming, preparing for split. 2019-11-17 15:50:26 +01:00			`def add_user(login : String, password : String) : Passwd::User \| Exception`
Grooming. 2019-11-22 17:31:56 +01:00			`send Request::Type::AddUser, {`
Imposed authentication on a few requests. 2019-10-10 20:58:44 +02:00			`:shared_key => @key,`
WIP registration. 2018-12-19 13:54:19 +01:00			`:login => login,`
			`:password => password`
			`}.to_json`

			`response = read`

IPC.cr API updates. 2019-06-06 01:16:52 +02:00			`payload = String.new response.payload`
Grooming. 2019-11-22 17:31:56 +01:00			`case Response::Type.new response.type.to_i`
			`when Response::Type::Ok`
Grooming, preparing for split. 2019-11-17 15:50:26 +01:00			`Passwd::User.from_json payload`
WIP registration. 2018-12-19 13:54:19 +01:00			`else`
IPC.cr API updates. 2019-06-06 01:16:52 +02:00			`Exception.new payload`
WIP registration. 2018-12-19 13:54:19 +01:00			`end`
			`end`
ModUser request. 2019-05-29 16:06:11 +02:00
Avatar update through ModUserRequest. 2019-05-29 19:45:03 +02:00			`def mod_user(uid : Int32, password : String? = nil, avatar : String? = nil) : Bool \| Exception`
ModUser request. 2019-05-29 16:06:11 +02:00			`payload = Hash(String, String\|Int32).new`
			`payload["uid"] = uid`
Imposed authentication on a few requests. 2019-10-10 20:58:44 +02:00			`payload["shared_key"] = @key`
ModUser request. 2019-05-29 16:06:11 +02:00
			`password.try do \|password\|`
			`payload["password"] = password`
			`end`

Avatar update through ModUserRequest. 2019-05-29 19:45:03 +02:00			`avatar.try do \|avatar\|`
			`payload["avatar"] = avatar`
			`end`

Grooming. 2019-11-22 17:31:56 +01:00			`send Request::Type::ModUser, payload.to_json`
ModUser request. 2019-05-29 16:06:11 +02:00
			`response = read`

Grooming. 2019-11-22 17:31:56 +01:00			`case Response::Type.new response.type.to_i`
			`when Response::Type::Ok`
ModUser request. 2019-05-29 16:06:11 +02:00			`true`
			`else`
IPC.cr API updates. 2019-06-06 01:16:52 +02:00			`Exception.new String.new response.payload`
ModUser request. 2019-05-29 16:06:11 +02:00			`end`
			`end`
Authd library added to provide an auto-check middleware. 2018-09-22 21:25:03 +02:00			`end`
			`end`