tokenserver/appengine/impl/serviceaccounts/rpc_inspect_oauth_token_grant.go - Issue 2999483002: tokenserver: Implement InspectOAuthTokenGrant RPC.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: tokenserver/appengine/impl/serviceaccounts/rpc_inspect_oauth_token_grant.go

Issue 2999483002: tokenserver: Implement InspectOAuthTokenGrant RPC. (Closed)

Patch Set: Created 3 years, 4 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« no previous file with comments | « tokenserver/appengine/impl/serviceaccounts/grant.go ('k') | tokenserver/appengine/impl/serviceaccounts/rpc_inspect_oauth_token_grant_test.go » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: tokenserver/appengine/impl/serviceaccounts/rpc_inspect_oauth_token_grant.go

diff --git a/tokenserver/appengine/impl/serviceaccounts/rpc_inspect_oauth_token_grant.go b/tokenserver/appengine/impl/serviceaccounts/rpc_inspect_oauth_token_grant.go

index dbc8cfd5a4dd859169f5f07fba8772788e0e0562..a8e388694061f1631579d918e0d8d1f6a11cc1cf 100644

--- a/tokenserver/appengine/impl/serviceaccounts/rpc_inspect_oauth_token_grant.go

+++ b/tokenserver/appengine/impl/serviceaccounts/rpc_inspect_oauth_token_grant.go

@@ -9,14 +9,35 @@ import (

"google.golang.org/grpc"

"google.golang.org/grpc/codes"

+ "github.com/luci/luci-go/server/auth/signing"

+ "github.com/luci/luci-go/tokenserver/api"

"github.com/luci/luci-go/tokenserver/api/admin/v1"

)

-// InspectOAuthTokenGrantRPC implements Admin.InspectOAuthTokenGrant method.

+// InspectOAuthTokenGrantRPC implements admin.InspectOAuthTokenGrant method.

type InspectOAuthTokenGrantRPC struct {

+ // Signer is mocked in tests.

+ //

+ // In prod it is gaesigner.Signer.

+ Signer signing.Signer

}

// InspectOAuthTokenGrant decodes the given OAuth token grant.

-func (r *ImportServiceAccountsConfigsRPC) InspectOAuthTokenGrant(c context.Context, req *admin.InspectOAuthTokenGrantRequest) (*admin.InspectOAuthTokenGrantResponse, error) {

- return nil, grpc.Errorf(codes.Unavailable, "not implemented")

+func (r *InspectOAuthTokenGrantRPC) InspectOAuthTokenGrant(c context.Context, req *admin.InspectOAuthTokenGrantRequest) (*admin.InspectOAuthTokenGrantResponse, error) {

+ inspection, err := InspectGrant(c, r.Signer, req.Token)

+ if err != nil {

+ return nil, grpc.Errorf(codes.Internal, err.Error())

+ }

+ resp := &admin.InspectOAuthTokenGrantResponse{

+ Valid: inspection.Signed && inspection.NonExpired,

+ Signed: inspection.Signed,

+ NonExpired: inspection.NonExpired,

+ InvalidityReason: inspection.InvalidityReason,

+ }

+ if env, _ := inspection.Envelope.(*tokenserver.OAuthTokenGrantEnvelope); env != nil {

+ resp.SigningKeyId = env.KeyId

+ }

+ resp.TokenBody, _ = inspection.Body.(*tokenserver.OAuthTokenGrantBody)

+ return resp, nil

}