class RegisterSur(Resource):
def __init__(self):
super(RegisterSur, self).__init__()
self.app = current_app
self.Helpers = Helpers(self.app.config)
account_id = "ACC-ID-RANDOM"
self.operator_key = self.Helpers.get_key()
self.request_timeout = self.app.config["TIMEOUT"]
self.payload = \
{
"version": "1.2",
"link_id": "",
"operator_id": account_id,
"service_id": "",
"surrogate_id": "",
"operator_key": self.operator_key["pub"],
"cr_keys": "",
"iat": int(time.time()), # TODO: set to iat when Account version used supports it
}
debug_log.info(dumps(self.payload, indent=3))
self.service_registry_handler = ServiceRegistryHandler(
current_app.config["SERVICE_REGISTRY_SEARCH_DOMAIN"],
current_app.config["SERVICE_REGISTRY_SEARCH_ENDPOINT"])
self.am_url = current_app.config["ACCOUNT_MANAGEMENT_URL"]
self.am_user = current_app.config["ACCOUNT_MANAGEMENT_USER"]
self.am_password = current_app.config["ACCOUNT_MANAGEMENT_PASSWORD"]
self.timeout = current_app.config["TIMEOUT"]
try:
self.AM = AccountManagerHandler(self.am_url, self.am_user,
self.am_password, self.timeout)
except Exception as e:
debug_log.warn(
"Initialization of AccountManager failed. We will crash later but note it here.\n{}"
.format(repr(e)))
self.query_db = self.Helpers.query_db
@error_handler
def post(self):
try:
debug_log.info(dumps(request.json))
sq.task("Load json payload as object")
js = request.json
sq.task("Load account_id and service_id from database")
query = self.query_db("select * from session_store where code=%s;",
(js["code"], ))
debug_log.info(type(query))
debug_log.info(query)
dict_query = loads(query)
debug_log.debug("{} {}".format(type(query), query))
account_id = dict_query["account_id"]
self.payload["service_id"] = dict_query["service_id"]
# Check Surrogate_ID exists.
# Fill token_key
try:
sq.task("Verify surrogate_id and token_key exist")
token_key = js["token_key"]
self.payload["surrogate_id"] = js["surrogate_id"]
#self.payload["token_key"] = {"key": token_key}
sq.task("Store surrogate_id and keys for CR steps later on.")
key_template = {
"token_key": token_key,
"pop_key": token_key
} # TODO: Get pop_key here?
self.Helpers.store_service_key_json(
kid=token_key["kid"],
surrogate_id=js["surrogate_id"],
key_json=key_template)
except Exception as e:
debug_log.exception(e)
raise DetailedHTTPException(
exception=e,
detail={
"msg":
"Received Invalid JSON that may not contain surrogate_id",
"json": js
})
#sq.task("Fetch and fill token_issuer_keys")
# TODO: Token keys separetely when the time is right.
#self.payload["token_issuer_keys"][0] = self.Helpers.get_key()["pub"]
# Create template
self.payload["link_id"] = str(guid())
# TODO: Currently you can generate endlessly new slr even if one exists already
sq.task("Fill template for Account Manager")
template = {
"code": js["code"],
"data": {
"slr": {
"type": "ServiceLinkRecord",
"attributes": self.payload,
},
"surrogate_id": {
"type": "SurrogateId",
"attributes": {
"surrogate_id": self.payload["surrogate_id"],
"service_id": self.payload["service_id"],
"account_id": account_id
}
}
},
}
debug_log.info("###########Template for Account Manager#")
debug_log.info(dumps(template, indent=3))
debug_log.info("########################################")
sq.send_to("Account Manager", "Sign SLR at Account Manager")
try:
reply = self.AM.sign_slr(template, account_id)
except AttributeError as e:
raise DetailedHTTPException(
status=502,
title=
"It would seem initiating Account Manager Handler has failed.",
detail="Account Manager might be down or unresponsive.",
trace=traceback.format_exc(limit=100).splitlines())
debug_log.info(dumps(reply, indent=2))
# Parse JSON form Account Manager to format Service_Mgmnt understands.
try:
req = {
"data": {
"code": js["code"],
},
"slr": reply["data"]["slr"]["attributes"]["slr"]
}
debug_log.info("SLR O: {}".format(dumps(req, indent=3)))
except Exception as e:
raise DetailedHTTPException(
exception=e,
detail=
"Parsing JSON form Account Manager to format Service_Mgmnt understands has failed.",
trace=traceback.format_exc(limit=100).splitlines())
try:
sq.send_to(
"Service_Components Mgmnt",
"Send created and signed SLR to Service_Components Mgnt")
endpoint = "/api/1.2/slr/slr"
service_url = self.service_registry_handler.getService_url(
self.payload["service_id"].encode())
debug_log.info("Service_ulr = {}, type: {}".format(
service_url, type(service_url)))
response = post("{}{}".format(service_url, endpoint),
json=req,
timeout=self.request_timeout)
debug_log.info("Request sent.")
if not response.ok:
raise DetailedHTTPException(
status=response.status_code,
detail={
"Error from Service_Components Mgmnt":
loads(response.text)
},
title=response.reason)
except DetailedHTTPException as e:
raise e
except Exception as e:
raise DetailedHTTPException(
exception=e,
detail="Sending SLR to service has failed",
trace=traceback.format_exc(limit=100).splitlines())
except DetailedHTTPException as e:
raise e
except Exception as e:
raise DetailedHTTPException(
title="Creation of SLR has failed.",
exception=e,
trace=traceback.format_exc(limit=100).splitlines())
class RegisterSur(Resource):
def __init__(self):
super(RegisterSur, self).__init__()
self.app = current_app
#print(current_app.config)
keysize = current_app.config["KEYSIZE"]
cert_key_path = current_app.config["CERT_KEY_PATH"]
self.request_timeout = current_app.config["TIMEOUT"]
SUPER_DEBUG = True
account_id = "ACC-ID-RANDOM"
user_account_id = account_id + "_" + str(guid())
# Keys need to come from somewhere else instead of being generated each time.
gen = {"generate": "EC", "cvr": "P-256", "kid": user_account_id}
gen3 = {"generate": "RSA", "size": keysize, "kid": account_id}
operator_key = jwk.JWK(**gen3)
try:
with open(cert_key_path, "r") as cert_file:
operator_key2 = jwk.JWK(**loads(load(cert_file)))
operator_key = operator_key2
except Exception as e:
print(e)
with open(cert_key_path, "w+") as cert_file:
dump(operator_key.export(), cert_file, indent=2)
# Template to send the key to key server
template = {
account_id: {
"cr_keys": loads(operator_key.export_public()),
"token_keys": loads(operator_key.export_public())
}
}
# post("http://localhost:6666/key", json=template)
self.payload = \
{
"version": "1.2",
"link_id": "",
"operator_id": account_id,
"service_id": "SRV-SH14W4S3", # How do we know this?
"surrogate_id": "",
"token_key": "",
"operator_key": loads(operator_key.export_public()),
"cr_keys": "",
"created": "" # time.time(),
}
debug_log.info(dumps(self.payload, indent=3))
protti = {"alg": "RS256"}
headeri = {
"kid": user_account_id,
"jwk": loads(operator_key.export_public())
}
self.service_registry_handler = ServiceRegistryHandler()
self.am_url = current_app.config["ACCOUNT_MANAGEMENT_URL"]
self.am_user = current_app.config["ACCOUNT_MANAGEMENT_USER"]
self.am_password = current_app.config["ACCOUNT_MANAGEMENT_PASSWORD"]
self.timeout = current_app.config["TIMEOUT"]
try:
self.AM = AccountManagerHandler(self.am_url, self.am_user,
self.am_password, self.timeout)
except Exception as e:
debug_log.warn(
"Initialization of AccountManager failed. We will crash later but note it here.\n{}"
.format(repr(e)))
self.Helpers = Helpers(current_app.config)
self.query_db = self.Helpers.query_db
@error_handler
def post(self):
try:
debug_log.info(dumps(request.json))
sq.task("Load json payload as object")
js = request.json
sq.task("Load account_id and service_id from database")
for code_json in self.query_db(
"select * from session_store where code = ?;",
[js["code"]]):
debug_log.debug("{} {}".format(type(code_json), code_json))
account_id = loads(code_json["json"])["account_id"]
self.payload["service_id"] = loads(
code_json["json"])["service_id"]
# Check Surrogate_ID exists.
# Fill token_key
try:
sq.task("Verify surrogate_id and token_key exist")
self.payload["surrogate_id"] = js["surrogate_id"]
self.payload["token_key"] = {"key": js["token_key"]}
except Exception as e:
raise DetailedHTTPException(
exception=e,
detail={
"msg":
"Received Invalid JSON that may not contain surrogate_id",
"json": js
})
# Create template
self.payload["link_id"] = str(guid())
# TODO: Currently you can generate endlessly new slr even if one exists already
sq.task("Fill template for Account Mgmnt")
template = {
"code": js["code"],
"data": {
"slr": {
"type": "ServiceLinkRecord",
"attributes": self.payload,
},
"surrogate_id": {
"type": "SurrogateId",
"attributes": {
"surrogate_id": self.payload["surrogate_id"],
"service_id": self.payload["service_id"],
"account_id": account_id
}
}
},
}
debug_log.info("###########Template for Account Manager#")
debug_log.info(dumps(template, indent=3))
debug_log.info("########################################")
sq.send_to("Account Manager", "Sign SLR at Account Manager")
try:
reply = self.AM.sign_slr(template, account_id)
except AttributeError as e:
raise DetailedHTTPException(
status=502,
title=
"It would seem initiating Account Manager Handler has failed.",
detail="Account Manager might be down or unresponsive.",
trace=traceback.format_exc(limit=100).splitlines())
debug_log.info(dumps(reply, indent=2))
# Parse JSON form Account Manager to format Service_Mgmnt understands.
try:
req = {
"data": {
"code": js["code"],
},
"slr": reply["data"]["slr"]["attributes"]["slr"]
}
debug_log.info("SLR O: {}".format(dumps(req, indent=3)))
except Exception as e:
raise DetailedHTTPException(
exception=e,
detail=
"Parsing JSON form Account Manager to format Service_Mgmnt understands has failed.",
trace=traceback.format_exc(limit=100).splitlines())
try:
sq.send_to(
"Service_Components Mgmnt",
"Send created and signed SLR to Service_Components Mgnt")
endpoint = "/api/1.2/slr/slr"
service_url = self.service_registry_handler.getService_url(
self.payload["service_id"].encode())
debug_log.info("Service_ulr = {}, type: {}".format(
service_url, type(service_url)))
response = post("{}{}".format(service_url, endpoint),
json=req,
timeout=self.request_timeout)
debug_log.info("Request sent.")
if not response.ok:
raise DetailedHTTPException(
status=response.status_code,
detail={
"Error from Service_Components Mgmnt":
loads(response.text)
},
title=response.reason)
except DetailedHTTPException as e:
raise e
except Exception as e:
raise DetailedHTTPException(
exception=e,
detail="Sending SLR to service has failed",
trace=traceback.format_exc(limit=100).splitlines())
except DetailedHTTPException as e:
raise e
except Exception as e:
raise DetailedHTTPException(
title="Creation of SLR has failed.",
exception=e,
trace=traceback.format_exc(limit=100).splitlines())