2025-02-10 23:07:41 -05:00
|
|
|
package client
|
|
|
|
|
|
|
|
|
|
import (
|
2025-02-20 21:49:05 -05:00
|
|
|
"bytes"
|
2025-02-21 20:09:23 -05:00
|
|
|
"context"
|
2025-02-10 23:07:41 -05:00
|
|
|
"crypto"
|
|
|
|
|
"crypto/ecdsa"
|
|
|
|
|
"crypto/ed25519"
|
|
|
|
|
"crypto/rsa"
|
|
|
|
|
"fmt"
|
|
|
|
|
"net/http"
|
2025-02-20 21:49:05 -05:00
|
|
|
"net/url"
|
2025-02-10 23:07:41 -05:00
|
|
|
"reflect"
|
|
|
|
|
|
|
|
|
|
"github.com/common-fate/httpsig"
|
|
|
|
|
"github.com/common-fate/httpsig/alg_ecdsa"
|
|
|
|
|
"github.com/common-fate/httpsig/alg_ed25519"
|
|
|
|
|
"github.com/common-fate/httpsig/alg_rsa"
|
|
|
|
|
"github.com/common-fate/httpsig/signer"
|
|
|
|
|
)
|
|
|
|
|
|
2025-02-20 23:12:04 -05:00
|
|
|
func Post(baseUrl *url.URL, key crypto.PrivateKey, keyId string, data []byte) (*http.Response, error) {
|
2025-02-20 21:49:05 -05:00
|
|
|
client, err := getSigningClient(key, keyId)
|
|
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var req *http.Request
|
|
|
|
|
|
2025-02-21 20:09:23 -05:00
|
|
|
req, err = http.NewRequest("POST", baseUrl.String(), bytes.NewBuffer(data))
|
2025-02-20 21:49:05 -05:00
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
req.Header.Add("Content-Type", "application/json")
|
|
|
|
|
|
|
|
|
|
resp, err := client.Do(req)
|
|
|
|
|
|
|
|
|
|
return resp, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func getSigningClient(key crypto.PrivateKey, keyId string) (*http.Client, error) {
|
2025-02-10 23:07:41 -05:00
|
|
|
var alg signer.Algorithm
|
|
|
|
|
|
|
|
|
|
switch p := key.(type) {
|
|
|
|
|
case *rsa.PrivateKey:
|
|
|
|
|
alg = alg_rsa.NewRSAPKCS256Signer(p)
|
|
|
|
|
case *ed25519.PrivateKey:
|
|
|
|
|
alg = alg_ed25519.Ed25519{PrivateKey: *p}
|
|
|
|
|
case *ecdsa.PrivateKey:
|
|
|
|
|
alg = alg_ecdsa.NewP256Signer(p)
|
|
|
|
|
default:
|
|
|
|
|
return nil, fmt.Errorf("type is unknown: %s", reflect.TypeOf(key))
|
|
|
|
|
}
|
|
|
|
|
|
2025-02-21 20:09:23 -05:00
|
|
|
coveredComponents := []string{"@method", "@target-uri", "content-type", "content-length"}
|
|
|
|
|
|
2025-02-10 23:07:41 -05:00
|
|
|
client := httpsig.NewClient(httpsig.ClientOpts{
|
2025-02-21 20:09:23 -05:00
|
|
|
Tag: "auth",
|
|
|
|
|
KeyID: keyId,
|
|
|
|
|
Alg: alg,
|
|
|
|
|
CoveredComponents: coveredComponents,
|
|
|
|
|
|
|
|
|
|
OnDeriveSigningString: func(ctx context.Context, stringToSign string) {
|
|
|
|
|
fmt.Printf("string to sign:\n%s\n", stringToSign)
|
|
|
|
|
},
|
2025-02-10 23:07:41 -05:00
|
|
|
})
|
|
|
|
|
|
|
|
|
|
return client, nil
|
|
|
|
|
}
|
