Add a stringified credential option for LedgerStorage (#24314)

* add a stringified credential option for LedgerStorage * fix clippy::useless-format warning * change CredentialOption to enum CredentialType * rename credential_option to credential_type * restore LedgerStorage new fn signature * fmt Co-authored-by: Tyera Eulberg <tyera@solana.com>
2022-04-14 04:35:06 +08:00
parent e146e860e2
commit aea17c35ae
5 changed files with 40 additions and 12 deletions
--- a/storage-bigtable/src/access_token.rs
+++ b/storage-bigtable/src/access_token.rs
@@ -1,6 +1,7 @@
 pub use goauth::scopes::Scope;
 /// A module for managing a Google API access token
 use {
+    crate::CredentialType,
    goauth::{
        auth::{JwtClaims, Token},
        credentials::Credentials,
@@ -8,6 +9,7 @@ use {
    log::*,
    smpl_jwt::Jwt,
    std::{
+        str::FromStr,
        sync::{
            atomic::{AtomicBool, Ordering},
            {Arc, RwLock},
@@ -27,6 +29,10 @@ fn load_credentials(filepath: Option<String>) -> Result<Credentials, String> {
        .map_err(|err| format!("Failed to read GCP credentials from {}: {}", path, err))
 }

+fn load_stringified_credentials(credential: String) -> Result<Credentials, String> {
+    Credentials::from_str(&credential).map_err(|err| format!("{}", err))
+}
+
 #[derive(Clone)]
 pub struct AccessToken {
    credentials: Credentials,
@@ -36,8 +42,12 @@ pub struct AccessToken {
 }

 impl AccessToken {
-    pub async fn new(scope: Scope, credential_filepath: Option<String>) -> Result<Self, String> {
-        let credentials = load_credentials(credential_filepath)?;
+    pub async fn new(scope: Scope, credential_type: CredentialType) -> Result<Self, String> {
+        let credentials = match credential_type {
+            CredentialType::Filepath(fp) => load_credentials(fp)?,
+            CredentialType::Stringified(s) => load_stringified_credentials(s)?,
+        };
+
        if let Err(err) = credentials.rsa_key() {
            Err(format!("Invalid rsa key: {}", err))
        } else {
--- a/storage-bigtable/src/bigtable.rs
+++ b/storage-bigtable/src/bigtable.rs
@@ -4,7 +4,7 @@ use {
    crate::{
        access_token::{AccessToken, Scope},
        compression::{compress_best, decompress},
-        root_ca_certificate,
+        root_ca_certificate, CredentialType,
    },
    backoff::{future::retry, ExponentialBackoff},
    log::*,
@@ -125,7 +125,7 @@ impl BigTableConnection {
        instance_name: &str,
        read_only: bool,
        timeout: Option<Duration>,
-        credential_path: Option<String>,
+        credential_type: CredentialType,
    ) -> Result<Self> {
        match std::env::var("BIGTABLE_EMULATOR_HOST") {
            Ok(endpoint) => {
@@ -148,7 +148,7 @@ impl BigTableConnection {
                    } else {
                        Scope::BigTableData
                    },
-                    credential_path,
+                    credential_type,
                )
                .await
                .map_err(Error::AccessToken)?;
--- a/storage-bigtable/src/lib.rs
+++ b/storage-bigtable/src/lib.rs
@@ -364,11 +364,17 @@ impl From<LegacyTransactionByAddrInfo> for TransactionByAddrInfo {

 pub const DEFAULT_INSTANCE_NAME: &str = "solana-ledger";

+#[derive(Debug)]
+pub enum CredentialType {
+    Filepath(Option<String>),
+    Stringified(String),
+}
+
 #[derive(Debug)]
 pub struct LedgerStorageConfig {
    pub read_only: bool,
    pub timeout: Option<std::time::Duration>,
-    pub credential_path: Option<String>,
+    pub credential_type: CredentialType,
    pub instance_name: String,
 }

@@ -377,7 +383,7 @@ impl Default for LedgerStorageConfig {
        Self {
            read_only: true,
            timeout: None,
-            credential_path: None,
+            credential_type: CredentialType::Filepath(None),
            instance_name: DEFAULT_INSTANCE_NAME.to_string(),
        }
    }
@@ -397,7 +403,7 @@ impl LedgerStorage {
        Self::new_with_config(LedgerStorageConfig {
            read_only,
            timeout,
-            credential_path,
+            credential_type: CredentialType::Filepath(credential_path),
            ..LedgerStorageConfig::default()
        })
        .await
@@ -407,19 +413,27 @@ impl LedgerStorage {
        let LedgerStorageConfig {
            read_only,
            timeout,
-            credential_path,
            instance_name,
+            credential_type,
        } = config;
        let connection = bigtable::BigTableConnection::new(
            instance_name.as_str(),
            read_only,
            timeout,
-            credential_path,
+            credential_type,
        )
        .await?;
        Ok(Self { connection })
    }

+    pub async fn new_with_stringified_credential(credential: String) -> Result<Self> {
+        Self::new_with_config(LedgerStorageConfig {
+            credential_type: CredentialType::Stringified(credential),
+            ..LedgerStorageConfig::default()
+        })
+        .await
+    }
+
    /// Return the available slot that contains a block
    pub async fn get_first_available_block(&self) -> Result<Option<Slot>> {
        debug!("LedgerStorage::get_first_available_block request received");