-
Notifications
You must be signed in to change notification settings - Fork 6
/
Program.cs
81 lines (71 loc) · 2.81 KB
/
Program.cs
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
// Copyright 2019 The gRPC Authors
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
using System;
using System.Collections.Generic;
using System.IO;
using System.Linq;
using System.Threading.Tasks;
using Grpc.Core;
using Helloworld;
using JWT;
using JWT.Builder;
using JWT.Algorithms;
namespace GreeterServer
{
class Program
{
const int Port = 8000;
public static void Main(string[] args)
{
ServerCredentials serverCredentials = null;
var securityOption = Environment.GetEnvironmentVariable("GREETER_SERVER_SECURITY");
switch (securityOption)
{
case "insecure":
serverCredentials = ServerCredentials.Insecure;
break;
case "tls":
serverCredentials = CreateSslServerCredentials(mutualTls: false);
break;
case "mtls":
serverCredentials = CreateSslServerCredentials(mutualTls: true);
break;
default:
throw new ArgumentException("Illegal security option.");
}
Console.WriteLine("Starting server with security: " + securityOption);
Server server = new Server()
{
Services = { Greeter.BindService(new GreeterImpl()) },
Ports = { new ServerPort("0.0.0.0", Port, serverCredentials) },
};
server.Start();
Console.WriteLine("Started server on port " + Port);
server.ShutdownTask.Wait();
}
public static SslServerCredentials CreateSslServerCredentials(bool mutualTls)
{
var certsPath = Environment.GetEnvironmentVariable("CERTS_PATH");
var keyCertPair = new KeyCertificatePair(
File.ReadAllText(Path.Combine(certsPath, "server.pem")),
File.ReadAllText(Path.Combine(certsPath, "server.key")));
if (!mutualTls)
{
return new SslServerCredentials(new[] { keyCertPair });
}
var caRoots = File.ReadAllText(Path.Combine(certsPath, "ca.pem"));
return new SslServerCredentials(new[] { keyCertPair }, caRoots, SslClientCertificateRequestType.RequestAndRequireAndVerify);
}
}
}