tokenserver/appengine/impl/services/minter/tokenminter/service.go - external/github.com/luci/luci-go - Git at Google

 // Copyright 2016 The LUCI Authors.
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.

 // Package tokenminter implements TokenMinter API.
 //
 // This is main public API of The Token Server.
 package tokenminter

 import (
 	"github.com/luci/luci-go/appengine/gaeauth/server/gaesigner"

 	"github.com/luci/luci-go/tokenserver/appengine/impl/certchecker"
 	"github.com/luci/luci-go/tokenserver/appengine/impl/delegation"
 	"github.com/luci/luci-go/tokenserver/appengine/impl/machinetoken"
 	"github.com/luci/luci-go/tokenserver/appengine/impl/serviceaccounts"

 	"github.com/luci/luci-go/tokenserver/api/minter/v1"
 )

 // Server implements minter.TokenMinterServer RPC interface.
 //
 // This is just an assembly of individual method implementations, properly
 // configured for use in GAE prod setting.
 type serverImpl struct {
 	machinetoken.MintMachineTokenRPC
 	delegation.MintDelegationTokenRPC
 	serviceaccounts.MintOAuthTokenGrantRPC
 	serviceaccounts.MintOAuthTokenViaGrantRPC
 }

 // NewServer returns prod TokenMinterServer implementation.
 //
 // It does all authorization checks inside.
 func NewServer() minter.TokenMinterServer {
 	return &serverImpl{
 		MintMachineTokenRPC: machinetoken.MintMachineTokenRPC{
 			Signer:           gaesigner.Signer{},
 			CheckCertificate: certchecker.CheckCertificate,
 			LogToken:         machinetoken.LogToken,
 		},
 		MintDelegationTokenRPC: delegation.MintDelegationTokenRPC{
 			Signer:   gaesigner.Signer{},
 			Rules:    delegation.GlobalRulesCache.Rules,
 			LogToken: delegation.LogToken,
 		},
 		MintOAuthTokenGrantRPC: serviceaccounts.MintOAuthTokenGrantRPC{
 			Signer: gaesigner.Signer{},
 			Rules:  serviceaccounts.GlobalRulesCache.Rules,
 		},
 	}
 }
	// Copyright 2016 The LUCI Authors.
	//
	// Licensed under the Apache License, Version 2.0 (the "License");
	// you may not use this file except in compliance with the License.
	// You may obtain a copy of the License at
	//
	// http://www.apache.org/licenses/LICENSE-2.0
	//
	// Unless required by applicable law or agreed to in writing, software
	// distributed under the License is distributed on an "AS IS" BASIS,
	// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	// See the License for the specific language governing permissions and
	// limitations under the License.

	// Package tokenminter implements TokenMinter API.
	//
	// This is main public API of The Token Server.
	package tokenminter

	import (
	"github.com/luci/luci-go/appengine/gaeauth/server/gaesigner"

	"github.com/luci/luci-go/tokenserver/appengine/impl/certchecker"
	"github.com/luci/luci-go/tokenserver/appengine/impl/delegation"
	"github.com/luci/luci-go/tokenserver/appengine/impl/machinetoken"
	"github.com/luci/luci-go/tokenserver/appengine/impl/serviceaccounts"

	"github.com/luci/luci-go/tokenserver/api/minter/v1"
	)

	// Server implements minter.TokenMinterServer RPC interface.
	//
	// This is just an assembly of individual method implementations, properly
	// configured for use in GAE prod setting.
	type serverImpl struct {
	machinetoken.MintMachineTokenRPC
	delegation.MintDelegationTokenRPC
	serviceaccounts.MintOAuthTokenGrantRPC
	serviceaccounts.MintOAuthTokenViaGrantRPC
	}

	// NewServer returns prod TokenMinterServer implementation.
	//
	// It does all authorization checks inside.
	func NewServer() minter.TokenMinterServer {
	return &serverImpl{
	MintMachineTokenRPC: machinetoken.MintMachineTokenRPC{
	Signer: gaesigner.Signer{},
	CheckCertificate: certchecker.CheckCertificate,
	LogToken: machinetoken.LogToken,
	},
	MintDelegationTokenRPC: delegation.MintDelegationTokenRPC{
	Signer: gaesigner.Signer{},
	Rules: delegation.GlobalRulesCache.Rules,
	LogToken: delegation.LogToken,
	},
	MintOAuthTokenGrantRPC: serviceaccounts.MintOAuthTokenGrantRPC{
	Signer: gaesigner.Signer{},
	Rules: serviceaccounts.GlobalRulesCache.Rules,
	},
	}
	}