1 /* 2 * 3 * Copyright 2015 gRPC authors. 4 * 5 * Licensed under the Apache License, Version 2.0 (the "License"); 6 * you may not use this file except in compliance with the License. 7 * You may obtain a copy of the License at 8 * 9 * http://www.apache.org/licenses/LICENSE-2.0 10 * 11 * Unless required by applicable law or agreed to in writing, software 12 * distributed under the License is distributed on an "AS IS" BASIS, 13 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 14 * See the License for the specific language governing permissions and 15 * limitations under the License. 16 * 17 */ 18 19 #ifndef GRPC_INTERNAL_CPP_SERVER_SECURE_SERVER_CREDENTIALS_H 20 #define GRPC_INTERNAL_CPP_SERVER_SECURE_SERVER_CREDENTIALS_H 21 22 #include <memory> 23 24 #include <grpcpp/security/server_credentials.h> 25 #include <grpcpp/security/tls_credentials_options.h> 26 27 #include <grpc/grpc_security.h> 28 29 #include "src/cpp/server/thread_pool_interface.h" 30 31 namespace grpc { 32 33 class SecureServerCredentials; 34 35 class AuthMetadataProcessorAyncWrapper final { 36 public: 37 static void Destroy(void* wrapper); 38 39 static void Process(void* wrapper, grpc_auth_context* context, 40 const grpc_metadata* md, size_t num_md, 41 grpc_process_auth_metadata_done_cb cb, void* user_data); 42 AuthMetadataProcessorAyncWrapper(const std::shared_ptr<AuthMetadataProcessor> & processor)43 explicit AuthMetadataProcessorAyncWrapper( 44 const std::shared_ptr<AuthMetadataProcessor>& processor) 45 : processor_(processor) { 46 if (processor && processor->IsBlocking()) { 47 thread_pool_.reset(CreateDefaultThreadPool()); 48 } 49 } 50 51 private: 52 void InvokeProcessor(grpc_auth_context* context, const grpc_metadata* md, 53 size_t num_md, grpc_process_auth_metadata_done_cb cb, 54 void* user_data); 55 std::unique_ptr<ThreadPoolInterface> thread_pool_; 56 std::shared_ptr<AuthMetadataProcessor> processor_; 57 }; 58 59 class SecureServerCredentials final : public ServerCredentials { 60 public: SecureServerCredentials(grpc_server_credentials * creds)61 explicit SecureServerCredentials(grpc_server_credentials* creds) 62 : creds_(creds) {} ~SecureServerCredentials()63 ~SecureServerCredentials() override { 64 grpc_server_credentials_release(creds_); 65 } 66 67 int AddPortToServer(const std::string& addr, grpc_server* server) override; 68 69 void SetAuthMetadataProcessor( 70 const std::shared_ptr<grpc::AuthMetadataProcessor>& processor) override; 71 c_creds()72 grpc_server_credentials* c_creds() { return creds_; } 73 74 private: AsSecureServerCredentials()75 SecureServerCredentials* AsSecureServerCredentials() override { return this; } 76 77 grpc_server_credentials* creds_; 78 std::unique_ptr<grpc::AuthMetadataProcessorAyncWrapper> processor_; 79 }; 80 81 } // namespace grpc 82 83 #endif // GRPC_INTERNAL_CPP_SERVER_SECURE_SERVER_CREDENTIALS_H 84