cdramey
/
alrm
1
0
Fork 0
Code Releases Activity
Browse Source

segregated api machinery

master
Christopher Ramey 3 years ago
parent
5571401103
commit
86f304e1b8
2 changed files with 22 additions and 21 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 40
      api/command.go
  2. 3
      server/http.go

40
server/apicommand.go → api/command.go
View File

@ -1,4 +1,4 @@
package server
package api
import (
"crypto/hmac"
@ -8,63 +8,63 @@ import (
"time"
)
type APICommand struct {
type Command struct {
Expires time.Time `json:"exp"`
Command string `json:"cmd"`
Scheme string `json:"sch"`
Signature []byte `json:"sig,omitempty"`
}
func ParseAPICommand(jsn []byte) (*APICommand, error) {
api := &APICommand{}
err := json.Unmarshal(jsn, api)
func ParseCommand(jsn []byte) (*Command, error) {
cmd := &Command{}
err := json.Unmarshal(jsn, cmd)
if err != nil {
return nil, err
}
return api, nil
return cmd, nil
}
func (ac *APICommand) JSON() ([]byte, error) {
return json.Marshal(ac)
func (c *Command) JSON() ([]byte, error) {
return json.Marshal(c)
}
func (ac *APICommand) Sign(key []byte) error {
switch ac.Scheme {
func (c *Command) Sign(key []byte) error {
switch c.Scheme {
case "hmac-sha256":
j, err := ac.JSON()
j, err := c.JSON()
if err != nil {
return fmt.Errorf("json encoding error")
}
mac := hmac.New(sha256.New, key)
mac.Write(j)
ac.Signature = mac.Sum(nil)
c.Signature = mac.Sum(nil)
case "":
return fmt.Errorf("scheme may not be empty")
default:
return fmt.Errorf("unsupported scheme: %s", ac.Scheme)
return fmt.Errorf("unsupported scheme: %s", c.Scheme)
}
return nil
}
func (ac *APICommand) Validate(key []byte) error {
cpy := &APICommand{
Expires: ac.Expires,
Command: ac.Command,
Scheme: ac.Scheme,
func (c *Command) Validate(key []byte) error {
cpy := &Command{
Expires: c.Expires,
Command: c.Command,
Scheme: c.Scheme,
}
err := cpy.Sign(key)
if err != nil {
return err
}
if !hmac.Equal(cpy.Signature, ac.Signature) {
if !hmac.Equal(cpy.Signature, c.Signature) {
return fmt.Errorf("invalid signature")
}
if time.Now().After(ac.Expires) {
if time.Now().After(c.Expires) {
return fmt.Errorf("command expired")
}

3
server/http.go
View File

@ -3,6 +3,7 @@ package server
import (
"fmt"
"net/http"
"git.binarythought.com/cdramey/alrm/api"
)
func (s *Server) ServeHTTP(w http.ResponseWriter, r *http.Request) {
@ -14,7 +15,7 @@ func (s *Server) ServeHTTP(w http.ResponseWriter, r *http.Request) {
http.Error(w, "no command given", http.StatusBadRequest)
return
}
cmd, err := ParseAPICommand([]byte(c))
cmd, err := api.ParseCommand([]byte(c))
if err != nil {
http.Error(w, fmt.Sprintf("error parsing command: %s", err.Error()),
http.StatusBadRequest)

Write Preview
Loading…
Cancel
Save