/
client.go
97 lines (81 loc) · 2.21 KB
/
client.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
// Copyright 2018 Canonical Ltd.
// Licensed under the AGPLv3, see LICENCE file for details.
package common
import (
"crypto/rsa"
"crypto/x509"
"encoding/pem"
"fmt"
"github.com/juju/errors"
ociCommon "github.com/oracle/oci-go-sdk/v65/common"
)
type JujuConfigProvider struct {
Key []byte
Fingerprint string
Passphrase string
Tenancy string
User string
OCIRegion string
}
func ValidateKey(key []byte, passphrase string) error {
keyBlock, _ := pem.Decode(key)
if keyBlock == nil {
return errors.Errorf("invalid private key")
}
if x509.IsEncryptedPEMBlock(keyBlock) {
if _, err := x509.DecryptPEMBlock(keyBlock, []byte(passphrase)); err != nil {
return errors.Annotatef(err, "decrypting private key")
}
}
return nil
}
func (j JujuConfigProvider) TenancyOCID() (string, error) {
if j.Tenancy == "" {
return "", errors.Errorf("tenancyOCID is not set")
}
return j.Tenancy, nil
}
func (j JujuConfigProvider) UserOCID() (string, error) {
if j.User == "" {
return "", errors.Errorf("userOCID is not set")
}
return j.User, nil
}
func (j JujuConfigProvider) KeyFingerprint() (string, error) {
if j.Fingerprint == "" {
return "", errors.Errorf("Fingerprint is not set")
}
return j.Fingerprint, nil
}
func (j JujuConfigProvider) Region() (string, error) {
if j.OCIRegion == "" {
return "", errors.Errorf("Region is not set")
}
return j.OCIRegion, nil
}
func (j JujuConfigProvider) PrivateRSAKey() (*rsa.PrivateKey, error) {
if j.Key == nil {
return nil, errors.Errorf("private key is not set")
}
key, err := ociCommon.PrivateKeyFromBytes(
j.Key, &j.Passphrase)
return key, err
}
func (j JujuConfigProvider) KeyID() (string, error) {
if err := j.Validate(); err != nil {
return "", err
}
return fmt.Sprintf("%s/%s/%s", j.Tenancy, j.User, j.Fingerprint), nil
}
func (j JujuConfigProvider) AuthType() (ociCommon.AuthConfig, error) {
return ociCommon.AuthConfig{}, errors.NotImplementedf("AuthType")
}
func (j JujuConfigProvider) Validate() error {
if j.Tenancy == "" || j.User == "" || j.Fingerprint == "" {
return errors.Errorf("config provider is not properly initialized")
}
if err := ValidateKey(j.Key, j.Passphrase); err != nil {
return errors.Trace(err)
}
return nil
}