feat: adding implementation for client lib #36

raserva · 2022-05-23T21:40:17Z

Few things to note:

The environment config library does not gracefully handle overwrite and default flags set. In this library, you pass in an existing object (originally set using YAML in this code), and if "overwrite" is set, then existing values are overwritten if env vars are set. There is also functionality to specify a default if no env var is set. Right now, if default and overwrite is set, existing (YAML) values will always be overwritten. Therefore, the precedence (if using the library) is env vars > default > yaml. However, i would like env vars > yaml > default, and must set it manually through code.

Currently, the core JVS implementations use a different library for JWT creation & signing. Here is another PR that does the necessary changes server-side: #37

Co-authored-by: Seth Vargo <seth@sethvargo.com>

raserva · 2022-05-25T18:40:18Z

This should be ready for another pass, whenever people have time

client-lib/go/client/jvs_client.go

client-lib/go/client/jvs_client_test.go

pkg/jvscrypto/key_hosting.go

Co-authored-by: cshou <cshou@google.com>

client-lib/go/go.mod

added all asked changes.

* feat: add config class and logic * PR feedback * change version from float to integer * changed int8 to uint 8 in config version * feat: Added protobufs and gen_protos script * added newline * removed extra newline * remove optional * s/v1/v0 * adding implementation for jvs server * add newly generated protos * implementing jvs server * minor updates * adding config tests * PR feedback * Update pkg/config/justification_config.go Co-authored-by: Seth Vargo <seth@sethvargo.com> * feat: added signing code to jvs * minor updates * Update to not use gcp jwt library * minor cosmetic fixes * minor fixes * PR feedback * updated comment * ran go mod tidy and go format * PR feedback * fix issue * feat: Implementing cert rotation logic that leverages an external db to save some state * PR feedback * cont'd * PR feedback * updates * reduce nesting * added working implementation & tests * small fixes and comments * tidy * moar tests * changed to use labels * updated labels to match kms guidelines * remove unnecessary config members * added comment * fix bug where current time is not updated. * refactor to make state store an interface * add required dependency to main * added some comments * move method into state store * starting public key api * PR feedback * more public key implementation * minor updates * remove dependency, some PR feedback * add cache * only save primary in labels * change to en cache * fix one merge miss * clean up rotation handler * order similar functions together * go mod tidy * update to use zap * PR feedback * added the cache tests * fix comment * add return after http err * fix some linter issues * PR feedback * Update pkg/jvscrypto/key_hosting_test.go Co-authored-by: cshou <cshou@google.com> * adding client libs * added ECDSA key sanity check * update some other strings to remove escaped quotes * feat: adding client implementation * few small improvements * switched to JWX library * formatting * cache timeout validation * remove print statements * add doc * Update client-lib/go/client/jvs_client.go Co-authored-by: cshou <cshou@google.com> * Update client-lib/go/client/jvs_client_test.go Co-authored-by: cshou <cshou@google.com> * Update client-lib/go/client/jvs_client_test.go Co-authored-by: cshou <cshou@google.com> * Update client-lib/go/client/jvs_client_test.go Co-authored-by: cshou <cshou@google.com> * Update client-lib/go/client/jvs_client_test.go Co-authored-by: cshou <cshou@google.com> * Update client-lib/go/client/jvs_client_test.go Co-authored-by: cshou <cshou@google.com> * Update client-lib/go/client/jvs_client_test.go Co-authored-by: cshou <cshou@google.com> * Update client-lib/go/client/jvs_client_test.go Co-authored-by: cshou <cshou@google.com> * Update client-lib/go/client/jvs_client_test.go Co-authored-by: cshou <cshou@google.com> * refactored tests Co-authored-by: Seth Vargo <seth@sethvargo.com> Co-authored-by: cshou <cshou@google.com>

raserva and others added 30 commits April 19, 2022 22:38

feat: add config class and logic

8a97b8e

PR feedback

5868c92

change version from float to integer

7a4831a

changed int8 to uint 8 in config version

7f0d533

feat: Added protobufs and gen_protos script

a90f317

added newline

7ffe726

removed extra newline

13a85c6

Merge branch 'main' into rsrv-protos

0a50402

remove optional

364538a

s/v1/v0

d914274

adding implementation for jvs server

ecf1a47

add newly generated protos

8b1060c

Merge branch 'main' into rsrv-protos

831b63f

Merge branch 'rsrv-protos' into rsrv-jvs-service

bf77dac

implementing jvs server

40f7602

Merge branch 'main' into rsrv-jvs-service

00a9c65

minor updates

2944c6d

adding config tests

eaa58e6

PR feedback

498f271

Update pkg/config/justification_config.go

b093d8a

Co-authored-by: Seth Vargo <seth@sethvargo.com>

feat: added signing code to jvs

8b69954

Merge branch 'main' into rsrv-jvs-impl

ed16923

minor updates

528060c

Update to not use gcp jwt library

b83a150

minor cosmetic fixes

9283e47

minor fixes

31976e8

PR feedback

cae72df

updated comment

5e2f7fe

ran go mod tidy and go format

4b184f4

PR feedback

27e84a9

raserva marked this pull request as draft May 24, 2022 17:05

raserva changed the title ~~feat: adding implementation for client lib~~ !! DO NOT REVIEW - RE WRITING !! feat: adding implementation for client lib May 24, 2022

raserva added 3 commits May 24, 2022 21:59

switched to JWX library

10ad476

formatting

5b006e8

cache timeout validation

012ec50

raserva marked this pull request as ready for review May 24, 2022 22:19

raserva changed the title ~~!! DO NOT REVIEW - RE WRITING !! feat: adding implementation for client lib~~ feat: adding implementation for client lib May 24, 2022

raserva added 2 commits May 24, 2022 22:49

remove print statements

3df822d

add doc

1d9c721

raserva mentioned this pull request May 24, 2022

feat: Updated server code to correctly set key id and add caching/updating for kms signer #37

Merged

capri-xiyue approved these changes May 25, 2022

View reviewed changes

yolocs previously requested changes May 25, 2022

View reviewed changes

raserva and others added 10 commits May 25, 2022 14:32

Update client-lib/go/client/jvs_client.go

cdbbeaa

Co-authored-by: cshou <cshou@google.com>

Update client-lib/go/client/jvs_client_test.go

07776b7

Co-authored-by: cshou <cshou@google.com>

Update client-lib/go/client/jvs_client_test.go

56afc51

Co-authored-by: cshou <cshou@google.com>

Update client-lib/go/client/jvs_client_test.go

4e7e06d

Co-authored-by: cshou <cshou@google.com>

Update client-lib/go/client/jvs_client_test.go

5cf3790

Co-authored-by: cshou <cshou@google.com>

Update client-lib/go/client/jvs_client_test.go

379f44d

Co-authored-by: cshou <cshou@google.com>

Update client-lib/go/client/jvs_client_test.go

3d07a08

Co-authored-by: cshou <cshou@google.com>

Update client-lib/go/client/jvs_client_test.go

cd39419

Co-authored-by: cshou <cshou@google.com>

Update client-lib/go/client/jvs_client_test.go

9ae8f89

Co-authored-by: cshou <cshou@google.com>

refactored tests

f7cfcaf

raserva force-pushed the cli-lib branch from 5a54a1f to f7cfcaf Compare May 26, 2022 00:14

sethvargo approved these changes May 26, 2022

View reviewed changes

client-lib/go/go.mod Show resolved Hide resolved

sethvargo merged commit 31a075a into main May 26, 2022

sethvargo deleted the cli-lib branch May 26, 2022 21:08

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat: adding implementation for client lib #36

feat: adding implementation for client lib #36

raserva commented May 23, 2022 •

edited

Loading

raserva commented May 25, 2022

feat: adding implementation for client lib #36

feat: adding implementation for client lib #36

Conversation

raserva commented May 23, 2022 • edited Loading

raserva commented May 25, 2022

raserva commented May 23, 2022 •

edited

Loading