19 #ifndef GRPC_CORE_LIB_SECURITY_CREDENTIALS_CREDENTIALS_H
20 #define GRPC_CORE_LIB_SECURITY_CREDENTIALS_CREDENTIALS_H
48 #define GRPC_FAKE_TRANSPORT_SECURITY_TYPE "fake"
50 #define GRPC_CHANNEL_CREDENTIALS_TYPE_SSL "Ssl"
51 #define GRPC_CHANNEL_CREDENTIALS_TYPE_FAKE_TRANSPORT_SECURITY \
52 "FakeTransportSecurity"
53 #define GRPC_CHANNEL_CREDENTIALS_TYPE_GOOGLE_DEFAULT "GoogleDefault"
55 #define GRPC_CALL_CREDENTIALS_TYPE_OAUTH2 "Oauth2"
56 #define GRPC_CALL_CREDENTIALS_TYPE_JWT "Jwt"
57 #define GRPC_CALL_CREDENTIALS_TYPE_IAM "Iam"
58 #define GRPC_CALL_CREDENTIALS_TYPE_COMPOSITE "Composite"
60 #define GRPC_AUTHORIZATION_METADATA_KEY "authorization"
61 #define GRPC_IAM_AUTHORIZATION_TOKEN_METADATA_KEY \
62 "x-goog-iam-authorization-token"
63 #define GRPC_IAM_AUTHORITY_SELECTOR_METADATA_KEY "x-goog-iam-authority-selector"
65 #define GRPC_SECURE_TOKEN_REFRESH_THRESHOLD_SECS 60
67 #define GRPC_COMPUTE_ENGINE_METADATA_HOST "metadata.google.internal."
68 #define GRPC_COMPUTE_ENGINE_METADATA_TOKEN_PATH \
69 "/computeMetadata/v1/instance/service-accounts/default/token"
71 #define GRPC_GOOGLE_OAUTH2_SERVICE_HOST "oauth2.googleapis.com"
72 #define GRPC_GOOGLE_OAUTH2_SERVICE_TOKEN_PATH "/token"
74 #define GRPC_SERVICE_ACCOUNT_POST_BODY_PREFIX \
75 "grant_type=urn%3Aietf%3Aparams%3Aoauth%3Agrant-type%3Ajwt-bearer&" \
78 #define GRPC_REFRESH_TOKEN_POST_BODY_FORMAT_STRING \
79 "client_id=%s&client_secret=%s&refresh_token=%s&grant_type=refresh_token"
96 #define GRPC_ARG_CHANNEL_CREDENTIALS "grpc.channel_credentials"
134 const char*
type()
const {
return type_; }
199 return min_security_level_;
203 return "grpc_call_credentials did not provide debug string";
206 const char*
type()
const {
return type_; }
216 const char* md_key,
const char* md_value,
bool is_async);
234 const char*
type()
const {
return type_; }
243 void DestroyProcessor() {
244 if (processor_.
destroy !=
nullptr && processor_.
state !=
nullptr) {
254 #define GRPC_SERVER_CREDENTIALS_ARG "grpc.server_credentials"
Definition: ref_counted.h:282
RefCountedPtr< grpc_channel_credentials > Ref() GRPC_MUST_USE_RESULT
Definition: ref_counted.h:287
Definition: ref_counted_ptr.h:35
grpc_channel_credentials * grpc_channel_credentials_find_in_args(const grpc_channel_args *args)
Definition: credentials.cc:86
grpc_channel_credentials * grpc_channel_credentials_from_arg(const grpc_arg *arg)
Definition: credentials.cc:75
grpc_arg grpc_channel_credentials_to_arg(grpc_channel_credentials *credentials)
Definition: credentials.cc:68
grpc_credentials_status
Definition: credentials.h:43
@ GRPC_CREDENTIALS_OK
Definition: credentials.h:44
@ GRPC_CREDENTIALS_ERROR
Definition: credentials.h:45
void grpc_credentials_mdelem_array_add(grpc_credentials_mdelem_array *list, grpc_mdelem md)
Takes a new ref to md.
Definition: credentials_metadata.cc:42
grpc_arg grpc_server_credentials_to_arg(grpc_server_credentials *c)
Definition: credentials.cc:137
void grpc_credentials_mdelem_array_append(grpc_credentials_mdelem_array *dst, grpc_credentials_mdelem_array *src)
Appends all elements from src to dst, taking a new ref to each one.
Definition: credentials_metadata.cc:48
grpc_server_credentials * grpc_find_server_credentials_in_args(const grpc_channel_args *args)
Definition: credentials.cc:152
std::string grpc_get_well_known_google_credentials_file_path_impl(void)
Definition: credentials_generic.cc:32
void grpc_override_well_known_credentials_path_getter(grpc_well_known_credentials_path_getter getter)
Definition: google_default_credentials.cc:410
std::string(* grpc_well_known_credentials_path_getter)(void)
Definition: credentials.h:90
void grpc_credentials_mdelem_array_destroy(grpc_credentials_mdelem_array *list)
Definition: credentials_metadata.cc:56
void grpc_credentials_metadata_request_destroy(grpc_credentials_metadata_request *r)
Definition: credentials.h:281
std::string grpc_get_well_known_google_credentials_file_path(void)
Definition: google_default_credentials.cc:405
grpc_credentials_metadata_request * grpc_credentials_metadata_request_create(grpc_core::RefCountedPtr< grpc_call_credentials > creds)
Definition: credentials.h:276
grpc_call_credentials * grpc_md_only_test_credentials_create(const char *md_key, const char *md_value, bool is_async)
Definition: fake_credentials.cc:110
grpc_server_credentials * grpc_server_credentials_from_arg(const grpc_arg *arg)
Definition: credentials.cc:142
grpc_security_level
Definition: grpc_security_constants.h:129
@ GRPC_PRIVACY_AND_INTEGRITY
Definition: grpc_security_constants.h:133
grpc_error_handle error
Definition: lame_client.cc:54
void grpc_http_response_destroy(grpc_http_response *response)
Definition: parser.cc:364
A single argument...
Definition: grpc_types.h:103
Context that can be used by metadata credentials plugin in order to create auth related metadata.
Definition: grpc_security.h:402
Definition: credentials.h:173
grpc_call_credentials(const char *type, grpc_security_level min_security_level=GRPC_PRIVACY_AND_INTEGRITY)
Definition: credentials.h:175
~grpc_call_credentials() override=default
const char * type() const
Definition: credentials.h:206
virtual std::string debug_string()
Definition: credentials.h:202
virtual bool get_request_metadata(grpc_polling_entity *pollent, grpc_auth_metadata_context context, grpc_credentials_mdelem_array *md_array, grpc_closure *on_request_metadata, grpc_error_handle *error)=0
virtual void cancel_get_request_metadata(grpc_credentials_mdelem_array *md_array, grpc_error_handle error)=0
virtual grpc_security_level min_security_level() const
Definition: credentials.h:198
An array of arguments that can be passed around.
Definition: grpc_types.h:132
Definition: credentials.h:102
virtual grpc_core::RefCountedPtr< grpc_channel_credentials > duplicate_without_call_credentials()
Definition: credentials.h:121
grpc_channel_credentials(const char *type)
Definition: credentials.h:104
~grpc_channel_credentials() override=default
const char * type() const
Definition: credentials.h:134
virtual grpc_channel_args * update_arguments(grpc_channel_args *args)
Definition: credentials.h:130
virtual grpc_core::RefCountedPtr< grpc_channel_security_connector > create_security_connector(grpc_core::RefCountedPtr< grpc_call_credentials > call_creds, const char *target, const grpc_channel_args *args, grpc_channel_args **new_args)=0
A closure over a grpc_iomgr_cb_func.
Definition: closure.h:56
Definition: credentials.h:153
grpc_mdelem * md
Definition: credentials.h:154
size_t size
Definition: credentials.h:155
Definition: error_internal.h:41
Definition: metadata.h:98
Definition: polling_entity.h:37
Definition: credentials.h:224
const grpc_auth_metadata_processor & auth_metadata_processor() const
Definition: credentials.h:236
grpc_server_credentials(const char *type)
Definition: credentials.h:226
const char * type() const
Definition: credentials.h:234
virtual grpc_core::RefCountedPtr< grpc_server_security_connector > create_security_connector(const grpc_channel_args *args)=0
~grpc_server_credentials() override
Definition: credentials.h:228
void set_auth_metadata_processor(const grpc_auth_metadata_processor &processor)
Definition: credentials.cc:104