Adopt dsync interface changes and major cleanup on RPC server/client.

* Rename GenericArgs to AuthRPCArgs * Rename GenericReply to AuthRPCReply * Remove authConfig.loginMethod and add authConfig.ServiceName * Rename loginServer to AuthRPCServer * Rename RPCLoginArgs to LoginRPCArgs * Rename RPCLoginReply to LoginRPCReply * Version and RequestTime are added to LoginRPCArgs and verified by server side, not client side. * Fix data race in lockMaintainence loop.
2025-11-20 09:56:07 -05:00 · 2016-12-23 20:42:19 +05:30
parent cde6496172
commit 6d10f4c19a
39 changed files with 1083 additions and 949 deletions
--- a/cmd/browser-peer-rpc.go
+++ b/cmd/browser-peer-rpc.go
@@ -24,22 +24,28 @@ import (

 // Login handler implements JWT login token generator, which upon login request
 // along with username and password is generated.
-func (br *browserPeerAPIHandlers) LoginHandler(args *RPCLoginArgs, reply *RPCLoginReply) error {
+func (br *browserPeerAPIHandlers) Login(args *LoginRPCArgs, reply *LoginRPCReply) error {
+	// Validate LoginRPCArgs
+	if err := args.IsValid(); err != nil {
+		return err
+	}
+
+	// Authenticate using JWT.
 	token, err := authenticateWeb(args.Username, args.Password)
 	if err != nil {
 		return err
 	}

-	reply.Token = token
-	reply.ServerVersion = Version
-	reply.Timestamp = time.Now().UTC()
+	// Return the token.
+	reply.AuthToken = token
+
 	return nil
 }

 // SetAuthPeerArgs - Arguments collection for SetAuth RPC call
 type SetAuthPeerArgs struct {
 	// For Auth
-	GenericArgs
+	AuthRPCArgs

 	// New credentials that receiving peer should update to.
 	Creds credential
@@ -52,10 +58,9 @@ type SetAuthPeerArgs struct {
 // will be forced to re-establish connections. Connections will be
 // re-established only when the sending client has also updated its
 // credentials.
-func (br *browserPeerAPIHandlers) SetAuthPeer(args SetAuthPeerArgs, reply *GenericReply) error {
-	// Check auth
-	if !isAuthTokenValid(args.Token) {
-		return errInvalidToken
+func (br *browserPeerAPIHandlers) SetAuthPeer(args SetAuthPeerArgs, reply *AuthRPCReply) error {
+	if err := args.IsAuthenticated(); err != nil {
+		return err
 	}

 	// Update credentials in memory
@@ -82,6 +87,7 @@ func updateCredsOnPeers(creds credential) map[string]error {
 	errs := make([]error, len(peers))
 	var wg sync.WaitGroup

+	serverCred := serverConfig.GetCredential()
 	// Launch go routines to send request to each peer in parallel.
 	for ix := range peers {
 		wg.Add(1)
@@ -96,13 +102,13 @@ func updateCredsOnPeers(creds credential) map[string]error {
 			}

 			// Initialize client
-			client := newAuthClient(&authConfig{
-				accessKey:   serverConfig.GetCredential().AccessKey,
-				secretKey:   serverConfig.GetCredential().SecretKey,
-				address:     peers[ix],
-				secureConn:  isSSL(),
-				path:        path.Join(reservedBucket, browserPeerPath),
-				loginMethod: "Browser.LoginHandler",
+			client := newAuthRPCClient(authConfig{
+				accessKey:       serverCred.AccessKey,
+				secretKey:       serverCred.SecretKey,
+				serverAddr:      peers[ix],
+				secureConn:      isSSL(),
+				serviceEndpoint: path.Join(reservedBucket, browserPeerPath),
+				serviceName:     "Browser",
 			})

 			// Construct RPC call arguments.
@@ -110,14 +116,14 @@ func updateCredsOnPeers(creds credential) map[string]error {

 			// Make RPC call - we only care about error
 			// response and not the reply.
-			err := client.Call("Browser.SetAuthPeer", &args, &GenericReply{})
+			err := client.Call("Browser.SetAuthPeer", &args, &AuthRPCReply{})

 			// We try a bit hard (3 attempts with 1 second delay)
 			// to set creds on peers in case of failure.
 			if err != nil {
 				for i := 0; i < 2; i++ {
 					time.Sleep(1 * time.Second) // 1 second delay.
-					err = client.Call("Browser.SetAuthPeer", &args, &GenericReply{})
+					err = client.Call("Browser.SetAuthPeer", &args, &AuthRPCReply{})
 					if err == nil {
 						break
 					}