nezha/service/rpc/auth.go

package rpc

import (
	"context"

	"google.golang.org/grpc/codes"
	"google.golang.org/grpc/metadata"
	"google.golang.org/grpc/status"

	"github.com/naiba/nezha/service/singleton"
)

type AuthHandler struct {
	ClientSecret string
}

func (a *AuthHandler) GetRequestMetadata(ctx context.Context, uri ...string) (map[string]string, error) {
	return map[string]string{"client_secret": a.ClientSecret}, nil
}

func (a *AuthHandler) RequireTransportSecurity() bool {
	return false
}

func (a *AuthHandler) Check(ctx context.Context) (uint64, error) {
	md, ok := metadata.FromIncomingContext(ctx)
	if !ok {
		return 0, status.Errorf(codes.Unauthenticated, "获取 metaData 失败")
	}

	var clientSecret string
	if value, ok := md["client_secret"]; ok {
		clientSecret = value[0]
	}

	singleton.ServerLock.RLock()
	defer singleton.ServerLock.RUnlock()
	clientID, hasID := singleton.SecretToID[clientSecret]
	if !hasID {
		return 0, status.Errorf(codes.Unauthenticated, "客户端认证失败")
	}
	_, hasServer := singleton.ServerList[clientID]
	if !hasServer {
		return 0, status.Errorf(codes.Unauthenticated, "客户端认证失败")
	}
	return clientID, nil
}
Web 服务 2019-12-08 16:59:58 +08:00			`package rpc`
gRPC 上报系统信息 2019-12-07 18:14:40 +08:00
			`import (`
			`"context"`

			`"google.golang.org/grpc/codes"`
			`"google.golang.org/grpc/metadata"`
			`"google.golang.org/grpc/status"`
theme-mdui by @MikoyChinese 2022-01-09 11:54:14 +08:00
			`"github.com/naiba/nezha/service/singleton"`
gRPC 上报系统信息 2019-12-07 18:14:40 +08:00			`)`

			`type AuthHandler struct {`
客户端授权验证 2019-12-09 16:02:49 +08:00			`ClientSecret string`
gRPC 上报系统信息 2019-12-07 18:14:40 +08:00			`}`

			`func (a *AuthHandler) GetRequestMetadata(ctx context.Context, uri ...string) (map[string]string, error) {`
♻️ v4: 去掉添加 Agent ID 要求需要更新面板 close #83 2021-01-30 17:10:51 +08:00			`return map[string]string{"client_secret": a.ClientSecret}, nil`
gRPC 上报系统信息 2019-12-07 18:14:40 +08:00			`}`

			`func (a *AuthHandler) RequireTransportSecurity() bool {`
🔨 开启 pprof、优化 agent 2021-05-10 18:04:38 +08:00			`return false`
gRPC 上报系统信息 2019-12-07 18:14:40 +08:00			`}`

♻️ v4: 去掉添加 Agent ID 要求需要更新面板 close #83 2021-01-30 17:10:51 +08:00			`func (a *AuthHandler) Check(ctx context.Context) (uint64, error) {`
gRPC 上报系统信息 2019-12-07 18:14:40 +08:00			`md, ok := metadata.FromIncomingContext(ctx)`
			`if !ok {`
♻️ v4: 去掉添加 Agent ID 要求需要更新面板 close #83 2021-01-30 17:10:51 +08:00			`return 0, status.Errorf(codes.Unauthenticated, "获取 metaData 失败")`
gRPC 上报系统信息 2019-12-07 18:14:40 +08:00			`}`
♻️ v4: 去掉添加 Agent ID 要求需要更新面板 close #83 2021-01-30 17:10:51 +08:00
✨ feat: 展示排序 close #29 2021-01-08 21:04:50 +08:00			`var clientSecret string`
展示服务器列表 2019-12-09 18:14:31 +08:00			`if value, ok := md["client_secret"]; ok {`
			`clientSecret = value[0]`
gRPC 上报系统信息 2019-12-07 18:14:40 +08:00			`}`

theme-mdui by @MikoyChinese 2022-01-09 11:54:14 +08:00			`singleton.ServerLock.RLock()`
			`defer singleton.ServerLock.RUnlock()`
			`clientID, hasID := singleton.SecretToID[clientSecret]`
🐛 修复修改服务器导致 Agent 离线 2021-07-25 23:50:08 +08:00			`if !hasID {`
			`return 0, status.Errorf(codes.Unauthenticated, "客户端认证失败")`
			`}`
theme-mdui by @MikoyChinese 2022-01-09 11:54:14 +08:00			`_, hasServer := singleton.ServerList[clientID]`
🐛 修复修改服务器导致 Agent 离线 2021-07-25 23:50:08 +08:00			`if !hasServer {`
♻️ v4: 去掉添加 Agent ID 要求需要更新面板 close #83 2021-01-30 17:10:51 +08:00			`return 0, status.Errorf(codes.Unauthenticated, "客户端认证失败")`
gRPC 上报系统信息 2019-12-07 18:14:40 +08:00			`}`
♻️ v4: 去掉添加 Agent ID 要求需要更新面板 close #83 2021-01-30 17:10:51 +08:00			`return clientID, nil`
gRPC 上报系统信息 2019-12-07 18:14:40 +08:00			`}`