aboutsummaryrefslogtreecommitdiffstats
path: root/library/python/tvmauth/src/utils.h
blob: 70168eae9b8a5cc2dda0d23525d57ebe3099801d (plain) (blame) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109

#pragma once

#include <library/cpp/tvmauth/version.h>
#include <library/cpp/tvmauth/client/facade.h>
#include <library/cpp/tvmauth/client/misc/utils.h>
#include <library/cpp/tvmauth/client/misc/api/threaded_updater.h>
#include <library/cpp/tvmauth/client/misc/tool/settings.h>

#include <util/system/getpid.h>

namespace NTvmAuthPy {
    class TPidCheckedClient: public NTvmAuth::TTvmClient {
    public:
        using TTvmClient::TTvmClient;

        TString GetServiceTicketFor(const NTvmAuth::TClientSettings::TAlias& dst) const {
            pid_.check();
            return TTvmClient::GetServiceTicketFor(dst);
        }

        TString GetServiceTicketFor(const NTvmAuth::TTvmId dst) const {
            pid_.check();
            return TTvmClient::GetServiceTicketFor(dst);
        }

        NTvmAuth::TCheckedServiceTicket CheckServiceTicket(TStringBuf ticket) const {
            pid_.check();
            return TTvmClient::CheckServiceTicket(ticket);
        }

        NTvmAuth::TCheckedUserTicket CheckUserTicket(TStringBuf ticket) const {
            pid_.check();
            return TTvmClient::CheckUserTicket(ticket);
        }

        NTvmAuth::TCheckedUserTicket CheckUserTicketWithOveridedEnv(TStringBuf ticket, NTvmAuth::EBlackboxEnv env) const {
            pid_.check();
            return TTvmClient::CheckUserTicket(ticket, env);
        }

        NTvmAuth::NRoles::TRolesPtr GetRoles() const {
            pid_.check();
            return TTvmClient::GetRoles();
        }

    private:
        struct TPidCheck {
            TPidCheck()
                : pid_(GetPID())
            {
            }

            void check() const {
                const TProcessId pid = GetPID();
                Y_ENSURE_EX(pid == pid_,
                            NTvmAuth::TNonRetriableException()
                                << "Creating TvmClient is forbidden before fork. Original pid: " << pid_
                                << ". Current pid: " << pid);
            }

        private:
            const TProcessId pid_;
        } const pid_;
    };

    template <typename T>
    T&& Move(T& d) {
        return std::move(d);
    }

    template <typename T>
    THolder<T> ToHeap(T& t) {
        return MakeHolder<T>(std::move(t));
    }

    THolder<NTvmAuth::TServiceContext> CheckingFactory(NTvmAuth::TTvmId selfTvmId, TStringBuf tvmKeysResponse) {
        return MakeHolder<NTvmAuth::TServiceContext>(
            NTvmAuth::TServiceContext::CheckingFactory(selfTvmId, tvmKeysResponse));
    }

    THolder<NTvmAuth::TServiceContext> SigningFactory(TStringBuf secretBase64) {
        return MakeHolder<NTvmAuth::TServiceContext>(
            NTvmAuth::TServiceContext::SigningFactory(secretBase64));
    }

    TString GetServiceTicketForId(const TPidCheckedClient& cl, NTvmAuth::TTvmId dst) {
        return cl.GetServiceTicketFor(dst);
    }

    TPidCheckedClient* CreateTvmApiClient(NTvmAuth::NTvmApi::TClientSettings& s, NTvmAuth::TLoggerPtr logger) {
        s.LibVersionPrefix = "py_";
        return new TPidCheckedClient(s, logger);
    }

    class TTvmToolClientSettings: public NTvmAuth::NTvmTool::TClientSettings {
    public:
        using TClientSettings::TClientSettings;
    };

    TPidCheckedClient* CreateTvmToolClient(const TTvmToolClientSettings& s, NTvmAuth::TLoggerPtr logger) {
        return new TPidCheckedClient(s, logger);
    }

    TString GetPyVersion() {
        return TString("py_") + NTvmAuth::LibVersion();
    }

    using TOptUid = std::optional<NTvmAuth::TUid>;
}
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-11 11:20:34 +0000