Arati R
77775d548a
* Add test for create method
Co-authored-by: Tania B <10127682+undef1nd@users.noreply.github.com>
* Change structure of entity package to break import cycle
* Update wire file
---------
Co-authored-by: Tania B <10127682+undef1nd@users.noreply.github.com>
197 lines
4.4 KiB
Go
197 lines
4.4 KiB
Go
package server
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
"strconv"
|
|
|
|
"github.com/go-jose/go-jose/v3/jwt"
|
|
"github.com/grafana/dskit/services"
|
|
"github.com/prometheus/client_golang/prometheus"
|
|
"google.golang.org/grpc/metadata"
|
|
|
|
"github.com/grafana/grafana/pkg/infra/appcontext"
|
|
"github.com/grafana/grafana/pkg/infra/tracing"
|
|
"github.com/grafana/grafana/pkg/modules"
|
|
"github.com/grafana/grafana/pkg/registry"
|
|
"github.com/grafana/grafana/pkg/services/featuremgmt"
|
|
"github.com/grafana/grafana/pkg/services/grpcserver"
|
|
"github.com/grafana/grafana/pkg/services/grpcserver/interceptors"
|
|
"github.com/grafana/grafana/pkg/services/store/entity"
|
|
"github.com/grafana/grafana/pkg/services/store/entity/db/dbimpl"
|
|
"github.com/grafana/grafana/pkg/services/store/entity/sqlstash"
|
|
"github.com/grafana/grafana/pkg/services/user"
|
|
"github.com/grafana/grafana/pkg/setting"
|
|
)
|
|
|
|
var (
|
|
_ Service = (*service)(nil)
|
|
_ registry.BackgroundService = (*service)(nil)
|
|
_ registry.CanBeDisabled = (*service)(nil)
|
|
)
|
|
|
|
func init() {
|
|
// do nothing
|
|
}
|
|
|
|
type Service interface {
|
|
services.NamedService
|
|
registry.BackgroundService
|
|
registry.CanBeDisabled
|
|
}
|
|
|
|
type service struct {
|
|
*services.BasicService
|
|
|
|
config *config
|
|
|
|
cfg *setting.Cfg
|
|
features featuremgmt.FeatureToggles
|
|
|
|
stopCh chan struct{}
|
|
stoppedCh chan error
|
|
|
|
handler grpcserver.Provider
|
|
|
|
tracing *tracing.TracingService
|
|
|
|
authenticator interceptors.Authenticator
|
|
}
|
|
|
|
type Authenticator struct{}
|
|
|
|
func (f *Authenticator) Authenticate(ctx context.Context) (context.Context, error) {
|
|
md, ok := metadata.FromIncomingContext(ctx)
|
|
if !ok {
|
|
return nil, fmt.Errorf("no metadata found")
|
|
}
|
|
|
|
// TODO: use id token instead of these fields
|
|
login := md.Get("grafana-login")[0]
|
|
if login == "" {
|
|
return nil, fmt.Errorf("no login found in context")
|
|
}
|
|
userID, err := strconv.ParseInt(md.Get("grafana-userid")[0], 10, 64)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("invalid user id: %w", err)
|
|
}
|
|
orgID, err := strconv.ParseInt(md.Get("grafana-orgid")[0], 10, 64)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("invalid org id: %w", err)
|
|
}
|
|
|
|
// TODO: validate id token
|
|
idToken := md.Get("grafana-idtoken")[0]
|
|
if idToken == "" {
|
|
return nil, fmt.Errorf("no id token found in context")
|
|
}
|
|
jwtToken, err := jwt.ParseSigned(idToken)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("invalid id token: %w", err)
|
|
}
|
|
claims := jwt.Claims{}
|
|
err = jwtToken.UnsafeClaimsWithoutVerification(&claims)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("invalid id token: %w", err)
|
|
}
|
|
// fmt.Printf("JWT CLAIMS: %+v\n", claims)
|
|
|
|
return appcontext.WithUser(ctx, &user.SignedInUser{
|
|
Login: login,
|
|
UserID: userID,
|
|
OrgID: orgID,
|
|
}), nil
|
|
}
|
|
|
|
var _ interceptors.Authenticator = (*Authenticator)(nil)
|
|
|
|
func ProvideService(
|
|
cfg *setting.Cfg,
|
|
features featuremgmt.FeatureToggles,
|
|
) (*service, error) {
|
|
tracing, err := tracing.ProvideService(cfg)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
authn := &Authenticator{}
|
|
|
|
s := &service{
|
|
config: newConfig(cfg),
|
|
cfg: cfg,
|
|
features: features,
|
|
stopCh: make(chan struct{}),
|
|
authenticator: authn,
|
|
tracing: tracing,
|
|
}
|
|
|
|
// This will be used when running as a dskit service
|
|
s.BasicService = services.NewBasicService(s.start, s.running, nil).WithName(modules.StorageServer)
|
|
|
|
return s, nil
|
|
}
|
|
|
|
func (s *service) IsDisabled() bool {
|
|
return !s.config.enabled
|
|
}
|
|
|
|
// Run is an adapter for the BackgroundService interface.
|
|
func (s *service) Run(ctx context.Context) error {
|
|
if err := s.start(ctx); err != nil {
|
|
return err
|
|
}
|
|
return s.running(ctx)
|
|
}
|
|
|
|
func (s *service) start(ctx context.Context) error {
|
|
// TODO: use wire
|
|
|
|
// TODO: support using grafana db connection?
|
|
eDB, err := dbimpl.ProvideEntityDB(nil, s.cfg, s.features)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
err = eDB.Init()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
store, err := sqlstash.ProvideSQLEntityServer(eDB)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
s.handler, err = grpcserver.ProvideService(s.cfg, s.features, s.authenticator, s.tracing, prometheus.DefaultRegisterer)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
entity.RegisterEntityStoreServer(s.handler.GetServer(), store)
|
|
|
|
err = s.handler.Run(ctx)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func (s *service) running(ctx context.Context) error {
|
|
// skip waiting for the server in prod mode
|
|
if !s.config.devMode {
|
|
<-ctx.Done()
|
|
return nil
|
|
}
|
|
|
|
select {
|
|
case err := <-s.stoppedCh:
|
|
if err != nil {
|
|
return err
|
|
}
|
|
case <-ctx.Done():
|
|
close(s.stopCh)
|
|
}
|
|
return nil
|
|
}
|