2021-02-26 02:45:45 +01:00
|
|
|
package di
|
|
|
|
|
|
|
|
import (
|
2024-02-01 12:11:39 +01:00
|
|
|
"crypto/rand"
|
|
|
|
"crypto/rsa"
|
2021-02-26 02:45:45 +01:00
|
|
|
"crypto/x509"
|
|
|
|
"encoding/base64"
|
|
|
|
"encoding/pem"
|
|
|
|
"strings"
|
|
|
|
|
2024-02-01 08:12:34 +01:00
|
|
|
"ely.by/chrly/internal/http"
|
2024-02-01 12:11:39 +01:00
|
|
|
"ely.by/chrly/internal/security"
|
2024-02-01 07:58:26 +01:00
|
|
|
|
2023-12-13 17:29:12 +01:00
|
|
|
"github.com/defval/di"
|
2021-02-26 02:45:45 +01:00
|
|
|
"github.com/spf13/viper"
|
|
|
|
)
|
|
|
|
|
2024-02-01 12:11:39 +01:00
|
|
|
var securityDiOptions = di.Options(
|
2021-02-26 02:45:45 +01:00
|
|
|
di.Provide(newTexturesSigner,
|
|
|
|
di.As(new(http.TexturesSigner)),
|
|
|
|
),
|
|
|
|
)
|
|
|
|
|
2024-02-01 12:11:39 +01:00
|
|
|
func newTexturesSigner(config *viper.Viper) (*security.Signer, error) {
|
2021-02-27 02:37:59 +01:00
|
|
|
keyStr := config.GetString("chrly.signing.key")
|
2021-02-26 02:45:45 +01:00
|
|
|
if keyStr == "" {
|
2024-02-01 12:11:39 +01:00
|
|
|
// TODO: log a message about the generated signing key and the way to specify it permanently
|
|
|
|
privateKey, err := rsa.GenerateKey(rand.Reader, 2048)
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
return security.NewSigner(privateKey), nil
|
2021-02-26 02:45:45 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
var keyBytes []byte
|
|
|
|
if strings.HasPrefix(keyStr, "base64:") {
|
|
|
|
base64Value := keyStr[7:]
|
|
|
|
decodedKey, err := base64.URLEncoding.DecodeString(base64Value)
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
keyBytes = decodedKey
|
|
|
|
} else {
|
|
|
|
keyBytes = []byte(keyStr)
|
|
|
|
}
|
|
|
|
|
|
|
|
rawPem, _ := pem.Decode(keyBytes)
|
2024-02-01 12:11:39 +01:00
|
|
|
privateKey, err := x509.ParsePKCS1PrivateKey(rawPem.Bytes)
|
2021-02-26 02:45:45 +01:00
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
2024-02-01 12:11:39 +01:00
|
|
|
return security.NewSigner(privateKey), nil
|
2021-02-26 02:45:45 +01:00
|
|
|
}
|