feat(console-wallet): adds basic grpc authentication #4532

sdbondi · 2022-08-24T14:30:07Z

Description

adds basic password auth interceptor to wallet grpc.
disables grpc by default
adds hash-grpc-password command that produces a salted hashed password that clients can use for authentication
adds cli args to explicitly enable grpc
adds wallet.grpc_authentication configuration
allow grpc client to use basic auth if configured
add --enable-grpc cli flag to wallet

Fixes #4478
Secure GRPC calls with basic auth.
User should explicitly enable grpc when it is needed.

Usage:

Basic unit tests
Manually (POSTman and running a miner with GRPC auth enabled)

applications/tari_app_grpc/src/authentication/basic_auth.rs

sdbondi force-pushed the wallet-grpc-auth branch 4 times, most recently from 3cffeff to 40e7f44 Compare August 24, 2022 15:41

jorgeantonio21 reviewed Aug 24, 2022

View reviewed changes

applications/tari_app_grpc/src/authentication/basic_auth.rs Outdated Show resolved Hide resolved

sdbondi added 5 commits August 25, 2022 08:29

feat(console-wallet): adds basic grpc authentication

d1e35f6

feat: configure grpc via cli, disable grpc on wallet by default

df65c1f

update wallet grpc client to include basic auth

a830aab

feat(miner): add client wallet grpc authentication interceptor

a463ca3

review: add more error details when bad credentials are used

6f8a5f3

sdbondi force-pushed the wallet-grpc-auth branch from 8fba3e4 to 6f8a5f3 Compare August 25, 2022 04:29

add --enable-grpc cli flag

3829fd7

stringhandler approved these changes Aug 25, 2022

View reviewed changes

stringhandler merged commit 2615c1b into tari-project:development Aug 25, 2022

sdbondi deleted the wallet-grpc-auth branch August 25, 2022 11:56