ARROW-10487 [FlightRPC][C++] Header-based auth in clients #8724
Conversation
…d server header authentication in Java
…lyndonb-bq/arrow into jduo/lyndon/flight-auth-cpp-redesign-client
|
@lidavidm |
cpp/src/arrow/flight/client.cc
Outdated
| @@ -51,6 +51,7 @@ | |||
|
|
|||
| #include "arrow/flight/client_auth.h" | |||
| #include "arrow/flight/client_middleware.h" | |||
| #include "arrow/flight/client_header_auth_middleware.h" | |||
There was a problem hiding this comment.
Is this ordering alphabetical? If so this should be up one...
There was a problem hiding this comment.
Yes, was waiting for feedback on design before proper formatting. I will correct this.
cpp/src/arrow/flight/client.cc
Outdated
| @@ -328,7 +332,7 @@ class GrpcClientInterceptorAdapterFactory | |||
| : public grpc::experimental::ClientInterceptorFactoryInterface { | |||
| public: | |||
| GrpcClientInterceptorAdapterFactory( | |||
| std::vector<std::shared_ptr<ClientMiddlewareFactory>> middleware) | |||
| std::vector<std::shared_ptr<ClientMiddlewareFactory>>& middleware) | |||
There was a problem hiding this comment.
This should either be const reference or a pointer.
There was a problem hiding this comment.
So, I'd rather we store a reference to this interceptor factory instead of a reference to the middleware with a mutable pointer back, i.e. I'd rather have this class own the middleware as it currently does, and have FlightClient call a method of this class to add more middleware at runtime.
cpp/src/arrow/flight/client.cc
Outdated
| @@ -371,7 +375,7 @@ class GrpcClientInterceptorAdapterFactory | |||
| } | |||
|
|
|||
| private: | |||
| std::vector<std::shared_ptr<ClientMiddlewareFactory>> middleware_; | |||
| std::vector<std::shared_ptr<ClientMiddlewareFactory>>& middleware_; | |||
There was a problem hiding this comment.
Intention is to keep the reference and not a copy?
There was a problem hiding this comment.
This should be a pointer if not a copy.
There was a problem hiding this comment.
It was to keep the reference, but you got me thinking more and I think I should just take a copy and then make a function to allow adding to the middleware on the fly, since the issue is that I need to be able to add and remove middleware from the interceptor. I will rejig this.
cpp/src/arrow/flight/client.cc
Outdated
| @@ -963,8 +967,9 @@ class FlightClient::FlightClientImpl { | |||
|
|
|||
| std::vector<std::unique_ptr<grpc::experimental::ClientInterceptorFactoryInterface>> | |||
| interceptors; | |||
| middleware = std::move(options.middleware); | |||
There was a problem hiding this comment.
Goal was so that middleware was retained in this class so I could push and pop it. I am going to adjust the implementation though.
cpp/src/arrow/flight/client.cc
Outdated
| @@ -993,6 +998,30 @@ class FlightClient::FlightClientImpl { | |||
| return Status::OK(); | |||
| } | |||
|
|
|||
| Status AuthenticateBasicToken(std::string username, std::string password, | |||
There was a problem hiding this comment.
Should username/password be passed by const ref?
cpp/src/arrow/flight/client.cc
Outdated
| Status AuthenticateBasicToken(std::string username, std::string password, | ||
| std::pair<std::string, std::string>* bearer_token) { | ||
| // Add bearer token factory to middleware so it can intercept the bearer token. | ||
| middleware.push_back(std::make_shared<ClientBearerTokenFactory>(bearer_token)); |
There was a problem hiding this comment.
This looks odd to create the shared pointer after you've passed in the raw pointer....it seems like the method itself should take a shared pointer.
There was a problem hiding this comment.
The raw pointer is unpopulated, so it's passed to the BearerTokenFactory's constructor, which stores it and populated it when it receives the bearer token. I could make the client pass the whole factory in with the bearer token already inside it, but it's more work and requires they understand what's going on more than they otherwise would need to.
| void ClientBearerTokenMiddleware::ReceivedHeaders( | ||
| const CallHeaders& incoming_headers) { | ||
| // Grab the auth token if one exists. | ||
| auto bearer_iter = incoming_headers.find(AUTH_HEADER); |
| // Check if the value of the auth token starts with the bearer prefix, latch the token. | ||
| std::string bearer_val = bearer_iter->second.to_string(); | ||
| if (bearer_val.size() > BEARER_PREFIX.size()) { | ||
| bool hasPrefix = std::equal(bearer_val.begin(), bearer_val.begin() + BEARER_PREFIX.size(), BEARER_PREFIX.begin(), |
There was a problem hiding this comment.
Seems like they use snake_case instead of camelCase.
| void ClientBearerTokenMiddleware::CallCompleted(const Status& status) { } | ||
|
|
||
| void ClientBearerTokenFactory::StartCall(const CallInfo& info, std::unique_ptr<ClientMiddleware>* middleware) { | ||
| *middleware = std::unique_ptr<ClientBearerTokenMiddleware>(new ClientBearerTokenMiddleware(bearer_token)); |
|
|
||
| void ClientBearerTokenMiddleware::CallCompleted(const Status& status) { } | ||
|
|
||
| void ClientBearerTokenFactory::StartCall(const CallInfo& info, std::unique_ptr<ClientMiddleware>* middleware) { |
There was a problem hiding this comment.
Would it be better to pass a reference instead of a pointer?
There was a problem hiding this comment.
Can't this is a method of the base class, I think it's done this way to allow you to assign a new unique pointer to it without exposing the other middlewares they are already holding in their vector.
| std::string string_format(const std::string& format, const Args... args) { | ||
| // Check size requirement for new string and increment by 1 for null terminator. | ||
| size_t size = std::snprintf(nullptr, 0, format.c_str(), args ...) + 1; | ||
| if(size <= 0){ |
| } | ||
|
|
||
| std::string base64_encode(const std::string& input) { | ||
| static const std::string base64_chars = |
There was a problem hiding this comment.
This doesn't exist in the codebase already?
There was a problem hiding this comment.
Yes, I found it. Will remove this.
|
Note, for formatting, use clang-format; for naming conventions, please follow Google C++ guidelines. See the developer docs. In particular, use snake_case, use pointers instead of non-const references, and note that constants are named kCamelCase not UPPER_SNAKE_CASE. |
| #include <cctype> | ||
| #include <string> | ||
|
|
||
| const std::string AUTH_HEADER = "authorization"; |
There was a problem hiding this comment.
Do these need to be in the header, or should they be only in the CC.
If in the header, I think they're created anew for each compilation unit, and thus should be defined as extern with the actual value defined in the CC to avoid multiple instantiations.
There was a problem hiding this comment.
Some initial comments.
Also:
- We should have unit tests, not just integration tests
- If you want this to actually run as part of the integration suite, you'll have to add it to the list of test scenarios and various other places; maybe take a look at the commit:
0188e45
cpp/src/arrow/flight/client.cc
Outdated
| @@ -328,7 +332,7 @@ class GrpcClientInterceptorAdapterFactory | |||
| : public grpc::experimental::ClientInterceptorFactoryInterface { | |||
| public: | |||
| GrpcClientInterceptorAdapterFactory( | |||
| std::vector<std::shared_ptr<ClientMiddlewareFactory>> middleware) | |||
| std::vector<std::shared_ptr<ClientMiddlewareFactory>>& middleware) | |||
There was a problem hiding this comment.
This should either be const reference or a pointer.
cpp/src/arrow/flight/client.cc
Outdated
| @@ -371,7 +375,7 @@ class GrpcClientInterceptorAdapterFactory | |||
| } | |||
|
|
|||
| private: | |||
| std::vector<std::shared_ptr<ClientMiddlewareFactory>> middleware_; | |||
| std::vector<std::shared_ptr<ClientMiddlewareFactory>>& middleware_; | |||
There was a problem hiding this comment.
This should be a pointer if not a copy.
cpp/src/arrow/flight/client.cc
Outdated
| @@ -328,7 +332,7 @@ class GrpcClientInterceptorAdapterFactory | |||
| : public grpc::experimental::ClientInterceptorFactoryInterface { | |||
| public: | |||
| GrpcClientInterceptorAdapterFactory( | |||
| std::vector<std::shared_ptr<ClientMiddlewareFactory>> middleware) | |||
| std::vector<std::shared_ptr<ClientMiddlewareFactory>>& middleware) | |||
There was a problem hiding this comment.
So, I'd rather we store a reference to this interceptor factory instead of a reference to the middleware with a mutable pointer back, i.e. I'd rather have this class own the middleware as it currently does, and have FlightClient call a method of this class to add more middleware at runtime.
cpp/src/arrow/flight/client.h
Outdated
| @@ -65,6 +65,9 @@ class ARROW_FLIGHT_EXPORT FlightCallOptions { | |||
|
|
|||
| /// \brief IPC writer options, if applicable for the call. | |||
| ipc::IpcWriteOptions write_options; | |||
|
|
|||
| /// \brief Metadata for client to add to context. | |||
| std::vector<std::pair<std::string, std::string>> metadata; | |||
There was a problem hiding this comment.
I believe we call it headers elsewhere, so this should stay consistent with that.
There was a problem hiding this comment.
Will correct this.
cpp/src/arrow/flight/client.h
Outdated
| @@ -191,6 +194,14 @@ class ARROW_FLIGHT_EXPORT FlightClient { | |||
| Status Authenticate(const FlightCallOptions& options, | |||
| std::unique_ptr<ClientAuthHandler> auth_handler); | |||
|
|
|||
| /// \brief Authenticate to the server using the given handler. | |||
There was a problem hiding this comment.
There's no handler in play here.
| #include <cctype> | ||
| #include <string> | ||
|
|
||
| const std::string AUTH_HEADER = "authorization"; |
There was a problem hiding this comment.
These should be named kAuthHeader etc. and should go in the .cc file unless we actually want to expose these to users.
Or alternatively, the other constants are currently in one of the _internal.h headers.
| namespace flight { | ||
|
|
||
| // TODO: Need to add documentation in this file. | ||
| void ARROW_FLIGHT_EXPORT AddBasicAuthHeaders(grpc::ClientContext* context, |
There was a problem hiding this comment.
This is internal - it shouldn't be in a public header. (Ditto for the grpc include.)
| @@ -0,0 +1,78 @@ | |||
| // Licensed to the Apache Software Foundation (ASF) under one | |||
There was a problem hiding this comment.
This should probably be an _internal.h header since I don't think any of this is intended to be directly used outside of the implementation here.
| *bearer_token = std::make_pair("", ""); | ||
| } | ||
|
|
||
| template<typename ... Args> |
There was a problem hiding this comment.
I don't think we need an entire templated function to concatenate two strings.
| // Check size requirement for new string and increment by 1 for null terminator. | ||
| size_t size = std::snprintf(nullptr, 0, format.c_str(), args ...) + 1; | ||
| if(size <= 0){ | ||
| throw std::runtime_error("Error during string formatting. Format: '" + format + "'."); |
There was a problem hiding this comment.
And Arrow disallows exceptions.
…round unit tests but checking in WIP.
|
By the way, for CMake formatting, please use cmake_format |
[2] Fixed option passing.
…ndon/flight-auth-cpp-redesign-client
cpp/src/arrow/flight/client.cc
Outdated
| @@ -1198,6 +1227,12 @@ Status FlightClient::Authenticate(const FlightCallOptions& options, | |||
| return impl_->Authenticate(options, std::move(auth_handler)); | |||
| } | |||
|
|
|||
| Status FlightClient::AuthenticateBasicToken( | |||
There was a problem hiding this comment.
Could we make this arrow::Result<std::pair<>>?
There was a problem hiding this comment.
Yep, I will make this change.
cpp/src/arrow/flight/flight_test.cc
Outdated
| std::pair<std::string, std::string> bearer_token; | ||
| // Note: Status intentionally ignored because it requires C++ server implementation of | ||
| // header auth. For now it returns an IOError. | ||
| arrow::Status status = client_->AuthenticateBasicToken( |
There was a problem hiding this comment.
If the intent is to test that this fails, we can ASSERT_RAISES(IOError, status) - even if we had an implementation of header auth, we'd want this to fail, right?
There was a problem hiding this comment.
Sorry, this was an artifact of my initial test implementation which was incorrect on the test server, and always caused an error. I forgot to remove it from the negative test once I fixed it. I will correct this.
[2] Switched return type of AuthenticateBasicToken to use arrow::Result instead of Status and removed bearer token from parameter list
|
@lidavidm Hey David, I have made the requested changes. I got a random Javascript failure in one of the CI teardowns, not sure if this is accepted or if you can restart the CI build (I do not have permission to restart it myself). |
lidavidm
changed the title
|
Thanks @lyndonb-bq! |
Added support for header based authentication in clients. - Added support for base 64 encoded username / password auth to match Java implementation - Added bearer token receiving and populating of call options to send back - Added unit tests that connects C++ client and a mock C++ server to test authentication Closes apache#8724 from lyndonb-bq/jduo/lyndon/flight-auth-cpp-redesign-client Authored-by: Lyndon Bauto <lyndonb@bitquilltech.com> Signed-off-by: David Li <li.davidm96@gmail.com>
Added support for header based authentication in clients.