server/auth/client.go - Issue 2646543003: server/auth: Add TokenSource call.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: server/auth/client.go

Issue 2646543003: server/auth: Add TokenSource call. (Closed)

Patch Set: Created 3 years, 11 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: server/auth/client.go

diff --git a/server/auth/client.go b/server/auth/client.go

index 1c14ad3cd2ee55223ad5bb454700779824e8e16f..da81d9364c2fdf9f3c32202d0abde7a8a84f2d61 100644

--- a/server/auth/client.go

+++ b/server/auth/client.go

@@ -11,6 +11,7 @@ import (

"time"

"golang.org/x/net/context"

+ "golang.org/x/oauth2"

"google.golang.org/grpc/credentials"

"github.com/luci/luci-go/common/auth"

@@ -102,7 +103,7 @@ func (o delegationTokenOption) apply(opts *rpcOptions) {

// client := &http.Client{Transport: tr}

// ...

func GetRPCTransport(c context.Context, kind RPCAuthorityKind, opts ...RPCOption) (http.RoundTripper, error) {

- options, err := makeRpcOptions(kind, opts)

+ options, err := makeRPCOptions(kind, opts)

if err != nil {

return nil, err

}

@@ -130,7 +131,7 @@ func GetRPCTransport(c context.Context, kind RPCAuthorityKind, opts ...RPCOption

// It can be used to authenticate outbound gPRC RPC's.

func GetPerRPCCredentials(kind RPCAuthorityKind, opts ...RPCOption) (credentials.PerRPCCredentials, error) {

- options, err := makeRpcOptions(kind, opts)

+ options, err := makeRPCOptions(kind, opts)

if err != nil {

return nil, err

}

@@ -152,6 +153,38 @@ func (creds perRPCCreds) RequireTransportSecurity() bool {

return true

}

+// GetTokenSourceAsSelf returns an oauth2.TokenSource bound to the supplied

+// Context that returns tokens for AsSelf authentication.

+//

+// If no scopes are provided, auth.OAuthScopeEmail will be used.

+//

+// While GetPerRPCCredentials is preferred, this can be used by packages that

+// cannot or do not properly handle this gRPC option.

+func GetTokenSourceAsSelf(c context.Context, scopes ...string) oauth2.TokenSource {

+ if len(scopes) == 0 {

+ scopes = []string{auth.OAuthScopeEmail}

+ }

+ return &tokenSource{c, scopes}

+type tokenSource struct {

+ context.Context

+ scopes []string

+func (ts *tokenSource) Token() (*oauth2.Token, error) {

+ cfg := GetConfig(ts)

+ if cfg == nil || cfg.AccessTokenProvider == nil {

+ return nil, ErrNotConfigured

+ }

+ tok, err := cfg.AccessTokenProvider(ts, ts.scopes)

+ if err != nil {

+ return nil, err

+ }

+ return tok.OAuth2Token(), nil

////////////////////////////////////////////////////////////////////////////////

// Internal stuff.

@@ -196,8 +229,8 @@ type rpcOptions struct {

rpcMocks *rpcMocks

}

-// makeRpcOptions applies all options and validates them.

-func makeRpcOptions(kind RPCAuthorityKind, opts []RPCOption) (*rpcOptions, error) {

+// makeRPCOptions applies all options and validates them.

+func makeRPCOptions(kind RPCAuthorityKind, opts []RPCOption) (*rpcOptions, error) {

options := &rpcOptions{kind: kind}

for _, o := range opts {

o.apply(options)

« no previous file with comments | « server/auth/cache_test.go ('k') | server/auth/client_test.go » ('j') | no next file with comments »