http-signature-normalization/http-signature-normalization-actix/examples/server.rs

use actix_web::{http::StatusCode, web, App, HttpRequest, HttpResponse, HttpServer, ResponseError};
use http_signature_normalization_actix::prelude::*;
use sha2::{Digest, Sha256};
use std::future::{ready, Ready};
use tracing::info;
use tracing_actix_web::TracingLogger;
use tracing_error::ErrorLayer;
use tracing_subscriber::{layer::SubscriberExt, EnvFilter};

#[derive(Clone, Debug)]
struct MyVerify;

impl SignatureVerify for MyVerify {
    type Error = MyError;
    type Future = Ready<Result<bool, Self::Error>>;

    fn signature_verify(
        &mut self,
        algorithm: Option<Algorithm>,
        key_id: String,
        signature: String,
        signing_string: String,
    ) -> Self::Future {
        match algorithm {
            Some(Algorithm::Hs2019) => (),
            _ => return ready(Err(MyError::Algorithm)),
        };

        if key_id != "my-key-id" {
            return ready(Err(MyError::Key));
        }

        let decoded = match base64::decode(&signature) {
            Ok(decoded) => decoded,
            Err(_) => return ready(Err(MyError::Decode)),
        };

        info!("Signing String\n{}", signing_string);

        ready(Ok(decoded == signing_string.as_bytes()))
    }
}

async fn index(
    (_, sig_verified): (DigestVerified, SignatureVerified),
    req: HttpRequest,
    _body: web::Bytes,
) -> &'static str {
    info!("Verified request for {}", sig_verified.key_id());
    info!("{:?}", req);
    "Eyyyyup"
}

#[actix_rt::main]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
    let env_filter = EnvFilter::try_from_default_env().unwrap_or_else(|_| EnvFilter::new("info"));

    let subscriber = tracing_subscriber::Registry::default()
        .with(env_filter)
        .with(ErrorLayer::default())
        .with(tracing_subscriber::fmt::layer());

    tracing::subscriber::set_global_default(subscriber)?;

    let config = Config::default().require_header("accept").require_digest();

    HttpServer::new(move || {
        App::new()
            .wrap(VerifyDigest::new(Sha256::new()).optional())
            .wrap(VerifySignature::new(MyVerify, config.clone()).optional())
            .wrap(TracingLogger::default())
            .route("/", web::post().to(index))
    })
    .bind("127.0.0.1:8010")?
    .run()
    .await?;

    Ok(())
}

#[derive(Debug, thiserror::Error)]
enum MyError {
    #[error("Failed to verify, {0}")]
    Verify(#[from] PrepareVerifyError),

    #[error("Unsupported algorithm")]
    Algorithm,

    #[error("Couldn't decode signature")]
    Decode,

    #[error("Invalid key")]
    Key,
}

impl ResponseError for MyError {
    fn status_code(&self) -> StatusCode {
        StatusCode::BAD_REQUEST
    }

    fn error_response(&self) -> HttpResponse {
        HttpResponse::BadRequest().finish()
    }
}
Update actix examples with tracing 2021-09-18 01:04:04 +00:00			`use actix_web::{http::StatusCode, web, App, HttpRequest, HttpResponse, HttpServer, ResponseError};`
Bump http-signature-normalization version, update actix to 3.0 2020-03-16 00:29:47 +00:00			`use http_signature_normalization_actix::prelude::*;`
Add digest header as feature 2019-09-13 01:12:35 +00:00			`use sha2::{Digest, Sha256};`
Update actix examples with tracing 2021-09-18 01:04:04 +00:00			`use std::future::{ready, Ready};`
			`use tracing::info;`
			`use tracing_actix_web::TracingLogger;`
			`use tracing_error::ErrorLayer;`
			`use tracing_subscriber::{layer::SubscriberExt, EnvFilter};`
Add actix example 2019-09-11 23:06:36 +00:00
Add Http Signature verification middleware and... Move base64 out of base lib 2019-09-13 22:55:51 +00:00			`#[derive(Clone, Debug)]`
			`struct MyVerify;`
Add actix example 2019-09-11 23:06:36 +00:00
Add Http Signature verification middleware and... Move base64 out of base lib 2019-09-13 22:55:51 +00:00			`impl SignatureVerify for MyVerify {`
			`type Error = MyError;`
Bump http-signature-normalization version, update actix to 3.0 2020-03-16 00:29:47 +00:00			`type Future = Ready<Result<bool, Self::Error>>;`
Add Http Signature verification middleware and... Move base64 out of base lib 2019-09-13 22:55:51 +00:00
			`fn signature_verify(`
			`&mut self,`
			`algorithm: Option<Algorithm>,`
impl Display for Algorithm, own values in actix verifier 2020-04-22 22:15:32 +00:00			`key_id: String,`
			`signature: String,`
			`signing_string: String,`
Add Http Signature verification middleware and... Move base64 out of base lib 2019-09-13 22:55:51 +00:00			`) -> Self::Future {`
			`match algorithm {`
			`Some(Algorithm::Hs2019) => (),`
Update actix examples with tracing 2021-09-18 01:04:04 +00:00			`_ => return ready(Err(MyError::Algorithm)),`
Add Http Signature verification middleware and... Move base64 out of base lib 2019-09-13 22:55:51 +00:00			`};`

Check key-id 2019-09-13 23:12:12 +00:00			`if key_id != "my-key-id" {`
Update actix examples with tracing 2021-09-18 01:04:04 +00:00			`return ready(Err(MyError::Key));`
Check key-id 2019-09-13 23:12:12 +00:00			`}`

impl Display for Algorithm, own values in actix verifier 2020-04-22 22:15:32 +00:00			`let decoded = match base64::decode(&signature) {`
Bump http-signature-normalization version, update actix to 3.0 2020-03-16 00:29:47 +00:00			`Ok(decoded) => decoded,`
Update actix examples with tracing 2021-09-18 01:04:04 +00:00			`Err(_) => return ready(Err(MyError::Decode)),`
Bump http-signature-normalization version, update actix to 3.0 2020-03-16 00:29:47 +00:00			`};`
Add actix example 2019-09-11 23:06:36 +00:00
Update actix examples with tracing 2021-09-18 01:04:04 +00:00			`info!("Signing String\n{}", signing_string);`
Allow for generating requests without created field 2020-03-17 23:54:00 +00:00
Update actix examples with tracing 2021-09-18 01:04:04 +00:00			`ready(Ok(decoded == signing_string.as_bytes()))`
Add actix example 2019-09-11 23:06:36 +00:00			`}`
			`}`

Add method to retrieve key_id from request data 2020-03-17 19:47:00 +00:00			`async fn index(`
			`(_, sig_verified): (DigestVerified, SignatureVerified),`
			`req: HttpRequest,`
Don't use Rc<RefCell<>> 2020-03-25 16:00:37 +00:00			`_body: web::Bytes,`
Add method to retrieve key_id from request data 2020-03-17 19:47:00 +00:00			`) -> &'static str {`
			`info!("Verified request for {}", sig_verified.key_id());`
			`info!("{:?}", req);`
Add Http Signature verification middleware and... Move base64 out of base lib 2019-09-13 22:55:51 +00:00			`"Eyyyyup"`
			`}`

Bump http-signature-normalization version, update actix to 3.0 2020-03-16 00:29:47 +00:00			`#[actix_rt::main]`
			`async fn main() -> Result<(), Box<dyn std::error::Error>> {`
Update actix examples with tracing 2021-09-18 01:04:04 +00:00			`let env_filter = EnvFilter::try_from_default_env().unwrap_or_else(\|_\| EnvFilter::new("info"));`

			`let subscriber = tracing_subscriber::Registry::default()`
			`.with(env_filter)`
			`.with(ErrorLayer::default())`
			`.with(tracing_subscriber::fmt::layer());`

			`tracing::subscriber::set_global_default(subscriber)?;`
Add basic digest logging handle differing digest name cases 2020-03-17 19:27:38 +00:00
Add methods for explicit mastodon compat, requiring digest Update actix library with new methods Build reqwest client with feature parity to actix client 2020-09-29 23:57:59 +00:00			`let config = Config::default().require_header("accept").require_digest();`
Add Http Signature verification middleware and... Move base64 out of base lib 2019-09-13 22:55:51 +00:00
Add actix example 2019-09-11 23:06:36 +00:00			`HttpServer::new(move \|\| {`
			`App::new()`
Add Verified FromRequest types for optional middlewares 2019-09-13 23:27:04 +00:00			`.wrap(VerifyDigest::new(Sha256::new()).optional())`
Make signature header lowercase as per h2 requirements 2020-03-17 20:12:10 +00:00			`.wrap(VerifySignature::new(MyVerify, config.clone()).optional())`
Bump tracing-actix-web, remove workaround, bump version 2021-09-21 15:43:06 +00:00			`.wrap(TracingLogger::default())`
Add digest header as feature 2019-09-13 01:12:35 +00:00			`.route("/", web::post().to(index))`
Add actix example 2019-09-11 23:06:36 +00:00			`})`
			`.bind("127.0.0.1:8010")?`
Bump http-signature-normalization version, update actix to 3.0 2020-03-16 00:29:47 +00:00			`.run()`
			`.await?;`
Add actix example 2019-09-11 23:06:36 +00:00
			`Ok(())`
			`}`

Bump http-signature-normalization version, update actix to 3.0 2020-03-16 00:29:47 +00:00			`#[derive(Debug, thiserror::Error)]`
Add actix example 2019-09-11 23:06:36 +00:00			`enum MyError {`
Add ability to require headers in signature 2020-04-23 17:54:56 +00:00			`#[error("Failed to verify, {0}")]`
Bump http-signature-normalization version, update actix to 3.0 2020-03-16 00:29:47 +00:00			`Verify(#[from] PrepareVerifyError),`
Add actix example 2019-09-11 23:06:36 +00:00
Bump http-signature-normalization version, update actix to 3.0 2020-03-16 00:29:47 +00:00			`#[error("Unsupported algorithm")]`
Use Failure in more places 2019-09-13 01:29:24 +00:00			`Algorithm,`
Add Http Signature verification middleware and... Move base64 out of base lib 2019-09-13 22:55:51 +00:00
Bump http-signature-normalization version, update actix to 3.0 2020-03-16 00:29:47 +00:00			`#[error("Couldn't decode signature")]`
Add Http Signature verification middleware and... Move base64 out of base lib 2019-09-13 22:55:51 +00:00			`Decode,`
Check key-id 2019-09-13 23:12:12 +00:00
Bump http-signature-normalization version, update actix to 3.0 2020-03-16 00:29:47 +00:00			`#[error("Invalid key")]`
Check key-id 2019-09-13 23:12:12 +00:00			`Key,`
Add actix example 2019-09-11 23:06:36 +00:00			`}`

			`impl ResponseError for MyError {`
Bump http-signature-normalization version, update actix to 3.0 2020-03-16 00:29:47 +00:00			`fn status_code(&self) -> StatusCode {`
			`StatusCode::BAD_REQUEST`
Add Http Signature verification middleware and... Move base64 out of base lib 2019-09-13 22:55:51 +00:00			`}`

Bump http-signature-normalization version, update actix to 3.0 2020-03-16 00:29:47 +00:00			`fn error_response(&self) -> HttpResponse {`
			`HttpResponse::BadRequest().finish()`
Add actix example 2019-09-11 23:06:36 +00:00			`}`
			`}`