internal/rpc/auth/auth.go

package auth

import (
	"Open_IM/internal/common/check"
	"Open_IM/pkg/common/constant"
	"Open_IM/pkg/common/db/controller"
	"Open_IM/pkg/common/log"
	promePkg "Open_IM/pkg/common/prometheus"
	"Open_IM/pkg/common/token_verify"
	"Open_IM/pkg/common/tracelog"
	"Open_IM/pkg/getcdv3"
	pbAuth "Open_IM/pkg/proto/auth"
	pbRelay "Open_IM/pkg/proto/relay"
	"Open_IM/pkg/utils"
	"context"
	"net"
	"strconv"
	"strings"

	grpcPrometheus "github.com/grpc-ecosystem/go-grpc-prometheus"

	"Open_IM/pkg/common/config"

	"google.golang.org/grpc"
)

func (s *rpcAuth) UserToken(ctx context.Context, req *pbAuth.UserTokenReq) (*pbAuth.UserTokenResp, error) {
	resp := pbAuth.UserTokenResp{}
	if _, err := check.GetUsersInfo(ctx, req.UserID); err != nil {
		return nil, err
	}
	token, err := s.CreateToken(ctx, req.UserID, int(req.PlatformID), config.Config.TokenPolicy.AccessExpire)
	if err != nil {
		return nil, err
	}
	resp.Token = token
	resp.ExpireTimeSeconds = config.Config.TokenPolicy.AccessExpire
	return &resp, nil
}

func (s *rpcAuth) parseToken(ctx context.Context, tokensString, operationID string) (claims *token_verify.Claims, err error) {
	claims, err = token_verify.GetClaimFromToken(tokensString)
	if err != nil {
		return nil, utils.Wrap(err, "")
	}
	m, err := s.GetTokens(ctx, claims.UID, claims.Platform)
	if err != nil {
		return nil, err
	}

	if v, ok := m[tokensString]; ok {
		switch v {
		case constant.NormalToken:
			return claims, nil
		case constant.KickedToken:
			return nil, utils.Wrap(constant.ErrTokenKicked, "this token has been kicked by other same terminal ")
		default:
			return nil, utils.Wrap(constant.ErrTokenUnknown, "")
		}
	}
	return nil, utils.Wrap(constant.ErrTokenNotExist, "redis token map not find")
}

func (s *rpcAuth) ParseToken(ctx context.Context, req *pbAuth.ParseTokenReq) (*pbAuth.ParseTokenResp, error) {
	resp := pbAuth.ParseTokenResp{}
	claims, err := s.parseToken(ctx, req.Token, req.OperationID)
	if err != nil {
		return nil, err
	}
	resp.UserID = claims.UID
	resp.Platform = claims.Platform
	resp.ExpireTimeSeconds = claims.ExpiresAt.Unix()
	return &resp, nil
}

func (s *rpcAuth) ForceLogout(ctx context.Context, req *pbAuth.ForceLogoutReq) (*pbAuth.ForceLogoutResp, error) {
	resp := pbAuth.ForceLogoutResp{}
	if err := token_verify.CheckAdmin(ctx); err != nil {
		return nil, err
	}
	if err := s.forceKickOff(ctx, req.UserID, req.PlatformID, tracelog.GetOperationID(ctx)); err != nil {
		return nil, err
	}
	return &resp, nil
}

func (s *rpcAuth) forceKickOff(ctx context.Context, userID string, platformID int32, operationID string) error {
	grpcCons := getcdv3.GetDefaultGatewayConn4Unique(config.Config.Etcd.EtcdSchema, strings.Join(config.Config.Etcd.EtcdAddr, ","), operationID)
	for _, v := range grpcCons {
		client := pbRelay.NewRelayClient(v)
		kickReq := &pbRelay.KickUserOfflineReq{OperationID: operationID, KickUserIDList: []string{userID}, PlatformID: platformID}
		log.NewInfo(operationID, "KickUserOffline ", client, kickReq.String())
		_, err := client.KickUserOffline(ctx, kickReq)
		return utils.Wrap(err, "")
	}
	return constant.ErrInternalServer.Wrap()
}

type rpcAuth struct {
	rpcPort         int
	rpcRegisterName string
	etcdSchema      string
	etcdAddr        []string
	controller.AuthInterface
}

func NewRpcAuthServer(port int) *rpcAuth {
	log.NewPrivateLog(constant.LogFileName)
	return &rpcAuth{
		rpcPort:         port,
		rpcRegisterName: config.Config.RpcRegisterName.OpenImAuthName,
		etcdSchema:      config.Config.Etcd.EtcdSchema,
		etcdAddr:        config.Config.Etcd.EtcdAddr,
	}
}

func (s *rpcAuth) Run() {
	operationID := utils.OperationIDGenerator()
	log.NewInfo(operationID, "rpc auth start...")

	listenIP := ""
	if config.Config.ListenIP == "" {
		listenIP = "0.0.0.0"
	} else {
		listenIP = config.Config.ListenIP
	}
	address := listenIP + ":" + strconv.Itoa(s.rpcPort)
	listener, err := net.Listen("tcp", address)
	if err != nil {
		panic("listening err:" + err.Error() + s.rpcRegisterName)
	}
	log.NewInfo(operationID, "listen network success, ", address, listener)
	var grpcOpts []grpc.ServerOption
	if config.Config.Prometheus.Enable {
		promePkg.NewGrpcRequestCounter()
		promePkg.NewGrpcRequestFailedCounter()
		promePkg.NewGrpcRequestSuccessCounter()
		promePkg.NewUserRegisterCounter()
		promePkg.NewUserLoginCounter()
		grpcOpts = append(grpcOpts, []grpc.ServerOption{
			// grpc.UnaryInterceptor(promePkg.UnaryServerInterceptorProme),
			grpc.StreamInterceptor(grpcPrometheus.StreamServerInterceptor),
			grpc.UnaryInterceptor(grpcPrometheus.UnaryServerInterceptor),
		}...)
	}
	srv := grpc.NewServer(grpcOpts...)
	defer srv.GracefulStop()

	//service registers with etcd
	pbAuth.RegisterAuthServer(srv, s)
	rpcRegisterIP := config.Config.RpcRegisterIP
	if config.Config.RpcRegisterIP == "" {
		rpcRegisterIP, err = utils.GetLocalIP()
		if err != nil {
			log.Error("", "GetLocalIP failed ", err.Error())
		}
	}
	log.NewInfo("", "rpcRegisterIP", rpcRegisterIP)

	err = getcdv3.RegisterEtcd(s.etcdSchema, strings.Join(s.etcdAddr, ","), rpcRegisterIP, s.rpcPort, s.rpcRegisterName, 10, "")
	if err != nil {
		log.NewError(operationID, "RegisterEtcd failed ", err.Error(),
			s.etcdSchema, strings.Join(s.etcdAddr, ","), rpcRegisterIP, s.rpcPort, s.rpcRegisterName)
		panic(utils.Wrap(err, "register auth module  rpc to etcd err"))

	}
	log.NewInfo(operationID, "RegisterAuthServer ok ", s.etcdSchema, strings.Join(s.etcdAddr, ","), rpcRegisterIP, s.rpcPort, s.rpcRegisterName)
	err = srv.Serve(listener)
	if err != nil {
		log.NewError(operationID, "Serve failed ", err.Error())
		return
	}
	log.NewInfo(operationID, "rpc auth ok")
}
tidy code 2021-12-27 16:48:05 +08:00			`package auth`

			`import (`
Error code standardization 2023-01-31 20:33:33 +08:00			`"Open_IM/internal/common/check"`
tidy code 2021-12-27 16:48:05 +08:00			`"Open_IM/pkg/common/constant"`
Error code standardization 2023-01-31 20:33:33 +08:00			`"Open_IM/pkg/common/db/controller"`
tidy code 2021-12-27 16:48:05 +08:00			`"Open_IM/pkg/common/log"`
promethues 2022-09-14 17:45:38 +08:00			`promePkg "Open_IM/pkg/common/prometheus"`
tidy code 2021-12-27 16:48:05 +08:00			`"Open_IM/pkg/common/token_verify"`
Error code standardization 2023-01-31 20:33:33 +08:00			`"Open_IM/pkg/common/tracelog"`
Error code standardization 2023-01-11 11:24:38 +08:00			`"Open_IM/pkg/getcdv3"`
tidy code 2021-12-27 16:48:05 +08:00			`pbAuth "Open_IM/pkg/proto/auth"`
group administrator access 2022-06-06 23:19:07 +08:00			`pbRelay "Open_IM/pkg/proto/relay"`
tidy code 2021-12-27 16:48:05 +08:00			`"Open_IM/pkg/utils"`
			`"context"`
			`"net"`
			`"strconv"`
			`"strings"`

prometheus 2022-09-15 16:27:36 +08:00			`grpcPrometheus "github.com/grpc-ecosystem/go-grpc-prometheus"`

tidy code 2021-12-27 16:48:05 +08:00			`"Open_IM/pkg/common/config"`

			`"google.golang.org/grpc"`
			`)`

Error code standardization 2023-01-31 20:33:33 +08:00			`func (s rpcAuth) UserToken(ctx context.Context, req pbAuth.UserTokenReq) (*pbAuth.UserTokenResp, error) {`
			`resp := pbAuth.UserTokenResp{}`
			`if _, err := check.GetUsersInfo(ctx, req.UserID); err != nil {`
			`return nil, err`
tidy code 2021-12-28 20:28:01 +08:00			`}`
Error code standardization 2023-01-31 20:41:45 +08:00			`token, err := s.CreateToken(ctx, req.UserID, int(req.PlatformID), config.Config.TokenPolicy.AccessExpire)`
tidy code 2021-12-27 16:48:05 +08:00			`if err != nil {`
Error code standardization 2023-01-31 20:33:33 +08:00			`return nil, err`
tidy code 2021-12-27 16:48:05 +08:00			`}`
Error code standardization 2023-01-31 20:33:33 +08:00			`resp.Token = token`
Error code standardization 2023-01-31 20:41:45 +08:00			`resp.ExpireTimeSeconds = config.Config.TokenPolicy.AccessExpire`
Error code standardization 2023-01-31 20:33:33 +08:00			`return &resp, nil`
tidy code 2021-12-27 16:48:05 +08:00			`}`

Error code standardization 2023-01-31 20:33:33 +08:00			`func (s rpcAuth) parseToken(ctx context.Context, tokensString, operationID string) (claims token_verify.Claims, err error) {`
			`claims, err = token_verify.GetClaimFromToken(tokensString)`
user get token add account judge 2022-11-26 12:09:36 +08:00			`if err != nil {`
Error code standardization 2023-01-31 20:33:33 +08:00			`return nil, utils.Wrap(err, "")`
user get token add account judge 2022-11-26 12:09:36 +08:00			`}`
Error code standardization 2023-01-31 20:33:33 +08:00			`m, err := s.GetTokens(ctx, claims.UID, claims.Platform)`
tidy code 2021-12-27 16:48:05 +08:00			`if err != nil {`
Error code standardization 2023-01-31 20:33:33 +08:00			`return nil, err`
tidy code 2021-12-27 16:48:05 +08:00			`}`
Error code standardization 2023-01-31 20:33:33 +08:00
			`if v, ok := m[tokensString]; ok {`
			`switch v {`
			`case constant.NormalToken:`
			`return claims, nil`
			`case constant.KickedToken:`
			`return nil, utils.Wrap(constant.ErrTokenKicked, "this token has been kicked by other same terminal ")`
			`default:`
			`return nil, utils.Wrap(constant.ErrTokenUnknown, "")`
			`}`
			`}`
			`return nil, utils.Wrap(constant.ErrTokenNotExist, "redis token map not find")`
tidy code 2021-12-27 16:48:05 +08:00			`}`

Error code standardization 2023-01-31 20:33:33 +08:00			`func (s rpcAuth) ParseToken(ctx context.Context, req pbAuth.ParseTokenReq) (*pbAuth.ParseTokenResp, error) {`
			`resp := pbAuth.ParseTokenResp{}`
			`claims, err := s.parseToken(ctx, req.Token, req.OperationID)`
add ParseToken rpc 2022-09-21 20:20:26 +08:00			`if err != nil {`
Error code standardization 2023-01-31 20:33:33 +08:00			`return nil, err`
add ParseToken rpc 2022-09-21 20:20:26 +08:00			`}`
Error code standardization 2023-01-31 20:33:33 +08:00			`resp.UserID = claims.UID`
			`resp.Platform = claims.Platform`
			`resp.ExpireTimeSeconds = claims.ExpiresAt.Unix()`
add ParseToken rpc 2022-09-21 20:20:26 +08:00			`return &resp, nil`
			`}`

Error code standardization 2023-01-31 20:33:33 +08:00			`func (s rpcAuth) ForceLogout(ctx context.Context, req pbAuth.ForceLogoutReq) (*pbAuth.ForceLogoutResp, error) {`
			`resp := pbAuth.ForceLogoutResp{}`
Error code standardization 2023-01-31 20:41:45 +08:00			`if err := token_verify.CheckAdmin(ctx); err != nil {`
Error code standardization 2023-01-31 20:33:33 +08:00			`return nil, err`
			`}`
			`if err := s.forceKickOff(ctx, req.UserID, req.PlatformID, tracelog.GetOperationID(ctx)); err != nil {`
			`return nil, err`
			`}`
			`return &resp, nil`
group administrator access 2022-06-06 23:19:07 +08:00			`}`

Error code standardization 2023-01-31 20:33:33 +08:00			`func (s *rpcAuth) forceKickOff(ctx context.Context, userID string, platformID int32, operationID string) error {`
etcd 2022-08-17 14:57:57 +08:00			`grpcCons := getcdv3.GetDefaultGatewayConn4Unique(config.Config.Etcd.EtcdSchema, strings.Join(config.Config.Etcd.EtcdAddr, ","), operationID)`
ForceLogout 2022-06-07 11:50:37 +08:00			`for _, v := range grpcCons {`
rename 2022-07-20 21:07:46 +08:00			`client := pbRelay.NewRelayClient(v)`
ForceLogout 2022-06-07 11:50:37 +08:00			`kickReq := &pbRelay.KickUserOfflineReq{OperationID: operationID, KickUserIDList: []string{userID}, PlatformID: platformID}`
log 2022-06-07 16:18:23 +08:00			`log.NewInfo(operationID, "KickUserOffline ", client, kickReq.String())`
Error code standardization 2023-01-31 20:33:33 +08:00			`_, err := client.KickUserOffline(ctx, kickReq)`
ForceLogout 2022-06-07 11:50:37 +08:00			`return utils.Wrap(err, "")`
			`}`
Error code standardization 2023-01-31 20:33:33 +08:00			`return constant.ErrInternalServer.Wrap()`
group info set 2022-06-06 20:39:45 +08:00			`}`

tidy code 2021-12-27 16:48:05 +08:00			`type rpcAuth struct {`
			`rpcPort int`
			`rpcRegisterName string`
			`etcdSchema string`
			`etcdAddr []string`
Error code standardization 2023-01-31 20:33:33 +08:00			`controller.AuthInterface`
tidy code 2021-12-27 16:48:05 +08:00			`}`

			`func NewRpcAuthServer(port int) *rpcAuth {`
Merge log files 2022-03-31 11:15:06 +08:00			`log.NewPrivateLog(constant.LogFileName)`
tidy code 2021-12-27 16:48:05 +08:00			`return &rpcAuth{`
			`rpcPort: port,`
			`rpcRegisterName: config.Config.RpcRegisterName.OpenImAuthName,`
			`etcdSchema: config.Config.Etcd.EtcdSchema,`
			`etcdAddr: config.Config.Etcd.EtcdAddr,`
			`}`
			`}`

Error code standardization 2023-01-31 20:33:33 +08:00			`func (s *rpcAuth) Run() {`
log 2022-04-20 20:58:51 +08:00			`operationID := utils.OperationIDGenerator()`
			`log.NewInfo(operationID, "rpc auth start...")`
tidy code 2021-12-27 16:48:05 +08:00
rpc register ip 2022-05-07 17:05:05 +08:00			`listenIP := ""`
			`if config.Config.ListenIP == "" {`
			`listenIP = "0.0.0.0"`
			`} else {`
			`listenIP = config.Config.ListenIP`
			`}`
Error code standardization 2023-01-31 20:33:33 +08:00			`address := listenIP + ":" + strconv.Itoa(s.rpcPort)`
tidy code 2021-12-27 16:48:05 +08:00			`listener, err := net.Listen("tcp", address)`
			`if err != nil {`
Error code standardization 2023-01-31 20:33:33 +08:00			`panic("listening err:" + err.Error() + s.rpcRegisterName)`
tidy code 2021-12-27 16:48:05 +08:00			`}`
log 2022-04-20 20:58:51 +08:00			`log.NewInfo(operationID, "listen network success, ", address, listener)`
prome 2022-09-15 01:22:20 +08:00			`var grpcOpts []grpc.ServerOption`
			`if config.Config.Prometheus.Enable {`
prome 2022-09-15 08:45:10 +08:00			`promePkg.NewGrpcRequestCounter()`
			`promePkg.NewGrpcRequestFailedCounter()`
			`promePkg.NewGrpcRequestSuccessCounter()`
prome 2022-09-15 09:30:23 +08:00			`promePkg.NewUserRegisterCounter()`
			`promePkg.NewUserLoginCounter()`
prometheus 2022-09-15 16:27:36 +08:00			`grpcOpts = append(grpcOpts, []grpc.ServerOption{`
prometheus 2022-09-15 16:39:49 +08:00			`// grpc.UnaryInterceptor(promePkg.UnaryServerInterceptorProme),`
prometheus 2022-09-15 16:27:36 +08:00			`grpc.StreamInterceptor(grpcPrometheus.StreamServerInterceptor),`
			`grpc.UnaryInterceptor(grpcPrometheus.UnaryServerInterceptor),`
			`}...)`
prome 2022-09-15 01:22:20 +08:00			`}`
			`srv := grpc.NewServer(grpcOpts...)`
tidy code 2021-12-27 16:48:05 +08:00			`defer srv.GracefulStop()`

			`//service registers with etcd`
Error code standardization 2023-01-31 20:33:33 +08:00			`pbAuth.RegisterAuthServer(srv, s)`
Rpc Register IP 2022-06-23 09:24:05 +08:00			`rpcRegisterIP := config.Config.RpcRegisterIP`
rpc register ip 2022-05-07 17:05:05 +08:00			`if config.Config.RpcRegisterIP == "" {`
			`rpcRegisterIP, err = utils.GetLocalIP()`
			`if err != nil {`
			`log.Error("", "GetLocalIP failed ", err.Error())`
			`}`
			`}`
k8s 2022-05-29 19:44:22 +08:00			`log.NewInfo("", "rpcRegisterIP", rpcRegisterIP)`
Rpc Register IP 2022-06-23 09:24:05 +08:00
Error code standardization 2023-01-31 20:33:33 +08:00			`err = getcdv3.RegisterEtcd(s.etcdSchema, strings.Join(s.etcdAddr, ","), rpcRegisterIP, s.rpcPort, s.rpcRegisterName, 10, "")`
tidy code 2021-12-27 16:48:05 +08:00			`if err != nil {`
log 2022-04-20 20:58:51 +08:00			`log.NewError(operationID, "RegisterEtcd failed ", err.Error(),`
Error code standardization 2023-01-31 20:33:33 +08:00			`s.etcdSchema, strings.Join(s.etcdAddr, ","), rpcRegisterIP, s.rpcPort, s.rpcRegisterName)`
group file update 2022-08-26 17:41:58 +08:00			`panic(utils.Wrap(err, "register auth module rpc to etcd err"))`

tidy code 2021-12-27 16:48:05 +08:00			`}`
Error code standardization 2023-01-31 20:33:33 +08:00			`log.NewInfo(operationID, "RegisterAuthServer ok ", s.etcdSchema, strings.Join(s.etcdAddr, ","), rpcRegisterIP, s.rpcPort, s.rpcRegisterName)`
tidy code 2021-12-27 16:48:05 +08:00			`err = srv.Serve(listener)`
			`if err != nil {`
log 2022-04-20 20:58:51 +08:00			`log.NewError(operationID, "Serve failed ", err.Error())`
tidy code 2021-12-27 16:48:05 +08:00			`return`
			`}`
log 2022-04-20 20:58:51 +08:00			`log.NewInfo(operationID, "rpc auth ok")`
tidy code 2021-12-27 16:48:05 +08:00			`}`