cdramey
/
alrm
1
0
Fork 0
Code Releases Activity
A simple monitoring solution written in Go (work in progress)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
46 Commits
2 Branches
0 Tags
185 KiB
Tree: aa65b64867
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'aa65b64867'
${ noResults }
alrm/api/command.go

80 lines
1.4 KiB
Raw Normal View History

segregated api machinery
3 years ago
added hmac validation to http based api
3 years ago
segregated api machinery
3 years ago
added hmac validation to http based api
3 years ago
added client calls for running servers
3 years ago
segregated api machinery
3 years ago
added hmac validation to http based api
3 years ago
segregated api machinery
3 years ago
added hmac validation to http based api
3 years ago
segregated api machinery
3 years ago
added hmac validation to http based api
3 years ago
segregated api machinery
3 years ago
added hmac validation to http based api
3 years ago
segregated api machinery
3 years ago
added hmac validation to http based api
3 years ago
segregated api machinery
3 years ago
added hmac validation to http based api
3 years ago
segregated api machinery
3 years ago
added hmac validation to http based api
3 years ago
segregated api machinery
3 years ago
added hmac validation to http based api
3 years ago
segregated api machinery
3 years ago
added hmac validation to http based api
3 years ago
segregated api machinery
3 years ago
added hmac validation to http based api
3 years ago
  1. package api
  3. import (
  4. "crypto/hmac"
  5. "crypto/sha256"
  6. "encoding/json"
  7. "fmt"
  8. "time"
  9. )
  11. type Command struct {
  12. Expires time.Time `json:"exp"`
  13. Command string `json:"cmd"`
  14. Scheme string `json:"sch"`
  15. Signature []byte `json:"sig,omitempty"`
  16. }
  18. func NewCommand(cm string) *Command {
  19. return &Command{
  20. Expires: time.Now().Add(time.Second * 5),
  21. Command: cm,
  22. Scheme: "hmac-sha256",
  23. }
  24. }
  26. func ParseCommand(jsn []byte) (*Command, error) {
  27. cmd := &Command{}
  28. err := json.Unmarshal(jsn, cmd)
  29. if err != nil {
  30. return nil, err
  31. }
  32. return cmd, nil
  33. }
  35. func (c *Command) JSON() ([]byte, error) {
  36. return json.Marshal(c)
  37. }
  39. func (c *Command) Sign(key []byte) error {
  40. switch c.Scheme {
  41. case "hmac-sha256":
  42. j, err := c.JSON()
  43. if err != nil {
  44. return fmt.Errorf("json encoding error")
  45. }
  47. mac := hmac.New(sha256.New, key)
  48. mac.Write(j)
  49. c.Signature = mac.Sum(nil)
  51. case "":
  52. return fmt.Errorf("scheme may not be empty")
  54. default:
  55. return fmt.Errorf("unsupported scheme: %s", c.Scheme)
  56. }
  57. return nil
  58. }
  60. func (c *Command) Validate(key []byte) error {
  61. cpy := &Command{
  62. Expires: c.Expires,
  63. Command: c.Command,
  64. Scheme: c.Scheme,
  65. }
  66. err := cpy.Sign(key)
  67. if err != nil {
  68. return err
  69. }
  71. if !hmac.Equal(cpy.Signature, c.Signature) {
  72. return fmt.Errorf("invalid signature")
  73. }
  75. if time.Now().After(c.Expires) {
  76. return fmt.Errorf("command expired")
  77. }
  79. return nil
  80. }