mirror of
https://github.com/mainflux/mainflux.git
synced 2025-04-26 13:48:53 +08:00
b7b14cc8b6
* return certs on bootstrap view response Signed-off-by: SammyOina <sammyoina@gmail.com> * return updated certs when updated Signed-off-by: SammyOina <sammyoina@gmail.com> * fix test Signed-off-by: SammyOina <sammyoina@gmail.com> * fix test Signed-off-by: SammyOina <sammyoina@gmail.com> * fix test Signed-off-by: SammyOina <sammyoina@gmail.com> * fix test Signed-off-by: SammyOina <sammyoina@gmail.com> * fix tests Signed-off-by: SammyOina <sammyoina@gmail.com> * simplify tests Signed-off-by: SammyOina <sammyoina@gmail.com> * use named query Signed-off-by: SammyOina <sammyoina@gmail.com> * fix test Signed-off-by: SammyOina <sammyoina@gmail.com> * use named params Signed-off-by: SammyOina <sammyoina@gmail.com> * fix typo Signed-off-by: SammyOina <sammyoina@gmail.com> * use inline error checks remove unrequired conditions Signed-off-by: SammyOina <sammyoina@gmail.com> * sort slices before comparison Signed-off-by: SammyOina <sammyoina@gmail.com> * rename mainflux_id to thing_id rename MFThing to ThingID rename MFKey to ThingKey rename mainflux_key to thing_key Signed-off-by: SammyOina <sammyoina@gmail.com> * remove mainflux_channels Signed-off-by: SammyOina <sammyoina@gmail.com> * simplify unmarshaller Signed-off-by: SammyOina <sammyoina@gmail.com> --------- Signed-off-by: SammyOina <sammyoina@gmail.com>
96 lines
2.3 KiB
Go
96 lines
2.3 KiB
Go
// Copyright (c) Mainflux
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
|
|
package bootstrap
|
|
|
|
import (
|
|
"crypto/aes"
|
|
"crypto/cipher"
|
|
"crypto/rand"
|
|
"encoding/json"
|
|
"io"
|
|
"net/http"
|
|
)
|
|
|
|
// bootstrapRes represent Mainflux Response to the Bootatrap request.
|
|
// This is used as a response from ConfigReader and can easily be
|
|
// replace with any other response format.
|
|
type bootstrapRes struct {
|
|
ThingID string `json:"thing_id"`
|
|
ThingKey string `json:"thing_key"`
|
|
Channels []channelRes `json:"channels"`
|
|
Content string `json:"content,omitempty"`
|
|
ClientCert string `json:"client_cert,omitempty"`
|
|
ClientKey string `json:"client_key,omitempty"`
|
|
CACert string `json:"ca_cert,omitempty"`
|
|
}
|
|
|
|
type channelRes struct {
|
|
ID string `json:"id"`
|
|
Name string `json:"name,omitempty"`
|
|
Metadata interface{} `json:"metadata,omitempty"`
|
|
}
|
|
|
|
func (res bootstrapRes) Code() int {
|
|
return http.StatusOK
|
|
}
|
|
|
|
func (res bootstrapRes) Headers() map[string]string {
|
|
return map[string]string{}
|
|
}
|
|
|
|
func (res bootstrapRes) Empty() bool {
|
|
return false
|
|
}
|
|
|
|
type reader struct {
|
|
encKey []byte
|
|
}
|
|
|
|
// NewConfigReader return new reader which is used to generate response
|
|
// from the config.
|
|
func NewConfigReader(encKey []byte) ConfigReader {
|
|
return reader{encKey: encKey}
|
|
}
|
|
|
|
func (r reader) ReadConfig(cfg Config, secure bool) (interface{}, error) {
|
|
var channels []channelRes
|
|
for _, ch := range cfg.Channels {
|
|
channels = append(channels, channelRes{ID: ch.ID, Name: ch.Name, Metadata: ch.Metadata})
|
|
}
|
|
|
|
res := bootstrapRes{
|
|
ThingKey: cfg.ThingKey,
|
|
ThingID: cfg.ThingID,
|
|
Channels: channels,
|
|
Content: cfg.Content,
|
|
ClientCert: cfg.ClientCert,
|
|
ClientKey: cfg.ClientKey,
|
|
CACert: cfg.CACert,
|
|
}
|
|
if secure {
|
|
b, err := json.Marshal(res)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return r.encrypt(b)
|
|
}
|
|
|
|
return res, nil
|
|
}
|
|
|
|
func (r reader) encrypt(in []byte) ([]byte, error) {
|
|
block, err := aes.NewCipher(r.encKey)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
ciphertext := make([]byte, aes.BlockSize+len(in))
|
|
iv := ciphertext[:aes.BlockSize]
|
|
if _, err := io.ReadFull(rand.Reader, iv); err != nil {
|
|
return nil, err
|
|
}
|
|
stream := cipher.NewCFBEncrypter(block, iv)
|
|
stream.XORKeyStream(ciphertext[aes.BlockSize:], in)
|
|
return ciphertext, nil
|
|
}
|