2011-01-28 07:07:18 +00:00
|
|
|
/*
|
|
|
|
Copyright 2011 Google Inc.
|
|
|
|
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
you may not use this file except in compliance with the License.
|
|
|
|
You may obtain a copy of the License at
|
|
|
|
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
See the License for the specific language governing permissions and
|
|
|
|
limitations under the License.
|
|
|
|
*/
|
|
|
|
|
2013-07-08 04:12:18 +00:00
|
|
|
// The sigserver is a stand-alone JSON signing and verification server.
|
|
|
|
//
|
2013-01-11 07:03:46 +00:00
|
|
|
// TODO(bradfitz): as of 2012-01-10 this is very old and superceded by
|
|
|
|
// the general server and pkg/serverconfig. We should just make it
|
|
|
|
// possible to configure a signing-only server with
|
|
|
|
// serverconfig/genconfig.go. I think we basically already can. Then
|
|
|
|
// we can delete this.
|
2016-03-14 01:59:26 +00:00
|
|
|
package main // import "camlistore.org/server/sigserver"
|
2010-11-15 02:32:25 +00:00
|
|
|
|
|
|
|
import (
|
2010-11-15 03:08:33 +00:00
|
|
|
"flag"
|
|
|
|
"fmt"
|
2011-11-16 10:41:38 +00:00
|
|
|
"log"
|
2012-03-26 21:00:07 +00:00
|
|
|
"net/http"
|
2012-11-03 20:00:02 +00:00
|
|
|
|
|
|
|
"camlistore.org/pkg/auth"
|
2013-08-04 02:54:30 +00:00
|
|
|
"camlistore.org/pkg/blob"
|
2012-11-03 20:00:02 +00:00
|
|
|
"camlistore.org/pkg/httputil"
|
|
|
|
"camlistore.org/pkg/webserver"
|
2010-11-15 02:32:25 +00:00
|
|
|
)
|
|
|
|
|
2010-11-15 03:08:33 +00:00
|
|
|
var accessPassword string
|
|
|
|
|
2012-11-03 20:00:02 +00:00
|
|
|
var flagPubKeyDir = flag.String("pubkey-dir", "test/pubkey-blobs",
|
2010-12-14 02:20:31 +00:00
|
|
|
"Temporary development hack; directory to dig-xxxx.camli public keys.")
|
|
|
|
|
|
|
|
// TODO: for now, the only implementation of the blobref.Fetcher
|
|
|
|
// interface for fetching public keys is the "local, from disk"
|
|
|
|
// implementation used for testing. In reality we'd want to be able
|
|
|
|
// to fetch these from blobservers.
|
2013-08-04 05:29:57 +00:00
|
|
|
var pubKeyFetcher = blob.NewSimpleDirectoryFetcher(*flagPubKeyDir)
|
2010-12-14 02:20:31 +00:00
|
|
|
|
2010-11-29 15:35:16 +00:00
|
|
|
func handleRoot(conn http.ResponseWriter, req *http.Request) {
|
|
|
|
fmt.Fprintf(conn, "camsigd")
|
|
|
|
}
|
|
|
|
|
2010-11-15 03:31:47 +00:00
|
|
|
func handleCamliSig(conn http.ResponseWriter, req *http.Request) {
|
2011-07-02 16:09:50 +00:00
|
|
|
handler := func(conn http.ResponseWriter, req *http.Request) {
|
2010-12-06 06:34:46 +00:00
|
|
|
httputil.BadRequestError(conn, "Unsupported path or method.")
|
2010-11-15 03:31:47 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
switch req.Method {
|
|
|
|
case "POST":
|
|
|
|
switch req.URL.Path {
|
|
|
|
case "/camli/sig/sign":
|
2013-01-04 22:09:55 +00:00
|
|
|
handler = auth.RequireAuth(handleSign, auth.OpSign)
|
2010-11-30 07:22:11 +00:00
|
|
|
case "/camli/sig/verify":
|
|
|
|
handler = handleVerify
|
2010-11-15 03:31:47 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
handler(conn, req)
|
|
|
|
}
|
|
|
|
|
2010-11-15 02:32:25 +00:00
|
|
|
func main() {
|
2010-11-15 03:08:33 +00:00
|
|
|
flag.Parse()
|
|
|
|
|
2013-01-11 07:03:46 +00:00
|
|
|
mode, err := auth.FromEnv()
|
2011-11-16 10:41:38 +00:00
|
|
|
if err != nil {
|
|
|
|
log.Fatal(err)
|
2010-11-15 03:08:33 +00:00
|
|
|
}
|
2013-01-11 07:03:46 +00:00
|
|
|
auth.SetMode(mode)
|
2010-11-15 03:08:33 +00:00
|
|
|
|
2010-12-06 06:29:11 +00:00
|
|
|
ws := webserver.New()
|
|
|
|
ws.HandleFunc("/", handleRoot)
|
|
|
|
ws.HandleFunc("/camli/sig/", handleCamliSig)
|
|
|
|
ws.Serve()
|
2010-11-15 02:32:25 +00:00
|
|
|
}
|