NOISSUE - Implementation of gRPC mTLS

[arvindh123]

Pull request title should be MF-XXX - description or NOISSUE - description where XXX is ID of issue that this PR relate to.
Please review the CONTRIBUTING.md file for detailed contributing guidelines.

What does this do?

This PR aims to add MTLS (Mutual Transport Layer Security) support for the gRPC client in the Mainflux . It includes changes to both the gRPC server side and client side. The implementation of MTLS ensures secure communication between the client and server by requiring authentication and encryption for the transmitted data.

Which issue(s) does this PR fix/relate to?

Put here Resolves #XXX to auto-close the issue that your PR fixes (if such)
No

List any changes that modify/break current functionality

No

Have you included tests for your changes?

Did you document any new/modified functionality?

Notes

[codecov]

Codecov Report

Merging #1848 (ef8bfc6) into master (9dbe87f) will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##           master    #1848   +/-   ##
=======================================
  Coverage   67.16%   67.16%           
=======================================
  Files         118      118           
  Lines        9076     9076           
=======================================
  Hits         6096     6096           
  Misses       2351     2351           
  Partials      629      629           

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

[dborovcanin]

We need documentation for this, probably with a PR to MF docs.

[rodneyosodo]

I am getting these warning on

make run args "-d"


GNU Make 4.3
Built for x86_64-pc-linux-gnu
Copyright (C) 1988-2020 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Reading makefiles...
Reading makefile 'Makefile'...
Updating makefiles....
 Considering target file 'Makefile'.
  Looking for an implicit rule for 'Makefile'.
  Trying pattern rule with stem 'Makefile'.
  Trying implicit prerequisite 'Makefile.o'.
  Trying pattern rule with stem 'Makefile'.
  Trying implicit prerequisite 'Makefile.c'.
  Trying pattern rule with stem 'Makefile'.
  Trying implicit prerequisite 'Makefile.cc'.
  Trying pattern rule with stem 'Makefile'.
  Trying implicit prerequisite 'Makefile.C'.
  Trying pattern rule with stem 'Makefile'.
  Trying implicit prerequisite 'Makefile.cpp'.

[rodneyosodo]

LGTM

[drasko]

@dborovcanin to review, please

[dborovcanin]

Overall, the PR looks good. However, Makefile and the whole process of running services looks a little bit to complex now. I'd like you try to:

1. Avoid repetition of compose files (especially since ssl/docker-compose.grpc-mtls.yml is just a repetition of 2 sections)
2. Avoid two compose files for add-ons, as well
3. Avoid special prefixes for addons
4. Simplify Makefile (ssl/Makefile looks fine, only the root Makefile needs some love)

[arvindh123]

@mainflux/contributors @mainflux/maintainers
To test this PR and to run gRPC with mTLS , following docs will be helpful

Running Mainflux Core Services

To run all the Mainflux core services, use the following command:

make run

This command will start all the mainflux core services.

If you want to run the Mainflux core services with gRPC mTLS enabled, use the following command:

GRPC_MTLS=true make run

If you want to run the Mainflux core services with gRPC TLS enabled, use the following command:

GRPC_TLS=true make run

This will start all the mainflux core services with secure communication using automatically generated certificates if they are not already available.

Running Specific Addons

If you only want to run specific addons, you can specify them in the command. For example, to run the timescale-reader and timescale-writer addons, use the following command:

make run_addons timescale-reader timescale-writer

This command will start the specified addons.

If you want to run specific addons with gRPC mTLS enabled, use the following command:

GRPC_MTLS=true make run_addons timescale-reader timescale-writer

If you want to run specific addons with gRPC TLS enabled, use the following command:

GRPC_TLS=true make run_addons timescale-reader timescale-writer

This will start the specified addons with secure communication using automatically generated certificates if they are not already available.

Running Addons Services

To run all the addons services, you can use the following command:

make run_addons

This command will start all the addons services.

If you want to run the addons services with gRPC mTLS enabled, you can use the following command:

GRPC_MTLS=true make run_addons

If you want to run the addons services with gRPC TLS enabled, you can use the following command:

GRPC_TLS=true make run_addons

This will start all the addons services with secure communication using automatically generated certificates if they are not already available.

[dborovcanin]

Add an empty line.

[dborovcanin]

Same.

[dborovcanin]

Same. Chack all the other files for this, as well.

[drasko]

Change this to Go idiomatic way of denoting consts.

[drasko]

Can you try doing it in one line, but making it readable?

[drasko]

LGTM