-
Notifications
You must be signed in to change notification settings - Fork 591
/
TLSContext.scala
125 lines (103 loc) · 4.8 KB
/
TLSContext.scala
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
/*
* Copyright (c) 2013 Functional Streams for Scala
*
* Permission is hereby granted, free of charge, to any person obtaining a copy of
* this software and associated documentation files (the "Software"), to deal in
* the Software without restriction, including without limitation the rights to
* use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of
* the Software, and to permit persons to whom the Software is furnished to do so,
* subject to the following conditions:
*
* The above copyright notice and this permission notice shall be included in all
* copies or substantial portions of the Software.
*
* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS
* FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR
* COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER
* IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
* CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
*/
package fs2
package io
package net
package tls
import cats.effect.kernel.{Async, Resource}
/** Allows creation of [[TLSSocket]]s.
*/
sealed trait TLSContext[F[_]] extends TLSContextPlatform[F] {
/** Creates a `TLSSocket` builder in client mode. */
def client(socket: Socket[F]): Resource[F, TLSSocket[F]] =
clientBuilder(socket).build
/** Creates a `TLSSocket` builder in client mode, allowing optional parameters to be configured. */
def clientBuilder(socket: Socket[F]): TLSContext.SocketBuilder[F, TLSSocket]
@deprecated("Use client(socket) or clientBuilder(socket).with(...).build", "3.0.6")
def client(
socket: Socket[F],
params: TLSParameters = TLSParameters.Default,
logger: Option[String => F[Unit]] = None
): Resource[F, TLSSocket[F]] =
clientBuilder(socket).withParameters(params).withOldLogging(logger).build
/** Creates a `TLSSocket` builder in server mode. */
def server(socket: Socket[F]): Resource[F, TLSSocket[F]] =
serverBuilder(socket).build
/** Creates a `TLSSocket` builder in server mode, allowing optional parameters to be configured. */
def serverBuilder(socket: Socket[F]): TLSContext.SocketBuilder[F, TLSSocket]
@deprecated("Use server(socket) or serverBuilder(socket).with(...).build", "3.0.6")
def server(
socket: Socket[F],
params: TLSParameters = TLSParameters.Default,
logger: Option[String => F[Unit]] = None
): Resource[F, TLSSocket[F]] =
serverBuilder(socket).withParameters(params).withOldLogging(logger).build
}
object TLSContext extends TLSContextCompanionPlatform {
private[tls] trait UnsealedTLSContext[F[_]] extends TLSContext[F]
sealed trait Builder[F[_]] extends BuilderPlatform[F] {
/** Creates a `TLSContext` from the system default `SSLContext`. */
def systemResource: Resource[F, TLSContext[F]]
/** Creates a `TLSContext` which trusts all certificates. */
def insecureResource: Resource[F, TLSContext[F]]
}
private[tls] trait UnsealedBuilder[F[_]] extends Builder[F]
object Builder extends BuilderCompanionPlatform {
def forAsync[F[_]: Async]: Builder[F] = new AsyncBuilder
}
sealed trait SocketBuilder[F[_], S[_[_]]] {
def withParameters(params: TLSParameters): SocketBuilder[F, S]
def withLogging(log: (=> String) => F[Unit]): SocketBuilder[F, S]
def withoutLogging: SocketBuilder[F, S]
def withLogger(logger: TLSLogger[F]): SocketBuilder[F, S]
private[tls] def withOldLogging(log: Option[String => F[Unit]]): SocketBuilder[F, S]
def build: Resource[F, S[F]]
}
object SocketBuilder {
private[tls] type Build[F[_], S[_[_]]] =
(TLSParameters, TLSLogger[F]) => Resource[F, S[F]]
private[tls] def apply[F[_], S[_[_]]](
mkSocket: Build[F, S]
): SocketBuilder[F, S] =
instance(mkSocket, TLSParameters.Default, TLSLogger.Disabled)
private def instance[F[_], S[_[_]]](
mkSocket: Build[F, S],
params: TLSParameters,
logger: TLSLogger[F]
): SocketBuilder[F, S] =
new SocketBuilder[F, S] {
def withParameters(params: TLSParameters): SocketBuilder[F, S] =
instance(mkSocket, params, logger)
def withLogging(log: (=> String) => F[Unit]): SocketBuilder[F, S] =
withLogger(TLSLogger.Enabled(log))
def withoutLogging: SocketBuilder[F, S] =
withLogger(TLSLogger.Disabled)
def withLogger(logger: TLSLogger[F]): SocketBuilder[F, S] =
instance(mkSocket, params, logger)
private[tls] def withOldLogging(
log: Option[String => F[Unit]]
): SocketBuilder[F, S] =
log.map(f => withLogging(m => f(m))).getOrElse(withoutLogging)
def build: Resource[F, S[F]] =
mkSocket(params, logger)
}
}
}