-
Notifications
You must be signed in to change notification settings - Fork 4
/
http_curl_client.go
128 lines (101 loc) · 2.58 KB
/
http_curl_client.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
package cloudcontroller
import (
"errors"
"fmt"
"io"
"log"
"net/http"
"net/url"
"strings"
"sync"
)
type HTTPCurlClient struct {
d Doer
f TokenFetcher
r SaveAndRestager
a string
mu sync.RWMutex
accessToken string
}
type Doer interface {
Do(*http.Request) (*http.Response, error)
}
type TokenFetcher interface {
Token() (string, string, error)
}
type SaveAndRestager interface {
SaveAndRestage(refreshToken string)
}
type SaveAndRestagerFunc func(string)
func (f SaveAndRestagerFunc) SaveAndRestage(refToken string) {
f(refToken)
}
func NewHTTPCurlClient(apiAddr string, d Doer, f TokenFetcher, r SaveAndRestager) *HTTPCurlClient {
return &HTTPCurlClient{d: d, f: f, a: apiAddr, r: r}
}
func (c *HTTPCurlClient) Curl(url, method, body string) ([]byte, error) {
accToken, _, err := c.token()
if err != nil {
return nil, err
}
return c.authCurl(url, method, body, accToken)
}
func (c *HTTPCurlClient) authCurl(URL, method, body, token string) ([]byte, error) {
if method == http.MethodGet && body != "" {
log.Panic("GET method must not have a body")
}
u, err := url.Parse(c.a)
if err != nil {
log.Fatalf("failed to parse CAPI address: %s", err)
}
URL = u.String() + URL
req, _ := http.NewRequest(method, URL, io.NopCloser(strings.NewReader(body)))
if token != "" {
req.Header.Set("Authorization", token)
}
if method != http.MethodGet {
req.Header.Set("Content-Type", "application/json")
}
resp, err := c.d.Do(req)
if err != nil {
return nil, err
}
data, err := io.ReadAll(resp.Body)
if err != nil {
return nil, err
}
if resp.StatusCode == http.StatusUnauthorized {
c.accessToken = ""
var refToken string
_, refToken, err = c.token()
if err != nil {
return nil, err
}
c.r.SaveAndRestage(refToken)
return nil, errors.New("unexpected status code 401")
}
if resp.StatusCode > 299 || resp.StatusCode < 200 {
return nil, fmt.Errorf("unexpected status code %d: %s", resp.StatusCode, data)
}
return data, nil
}
func (c *HTTPCurlClient) token() (string, string, error) {
c.mu.RLock()
accToken := c.accessToken
c.mu.RUnlock()
if accToken != "" {
return accToken, "", nil
}
// We are unprotected via locks here, which can imply that multiple
// go-routines are attempting to refresh the token at the same time. Both
// will succeed and both will save the token. This is a performance
// concern and unlikely. We are going to leave it for now.
accessToken, refToken, err := c.f.Token()
if err != nil {
return "", "", err
}
c.mu.Lock()
defer c.mu.Unlock()
c.accessToken = accessToken
return c.accessToken, refToken, nil
}