2 * Copyright © 2018-2019 AT&T Intellectual Property.
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
17 package org.onap.ccsdk.cds.blueprintsprocessor.grpc.service
19 import io.grpc.ManagedChannel
20 import io.grpc.internal.DnsNameResolverProvider
21 import io.grpc.internal.PickFirstLoadBalancerProvider
22 import io.grpc.netty.GrpcSslContexts
23 import io.grpc.netty.NettyChannelBuilder
24 import io.netty.handler.ssl.SslContext
25 import org.onap.ccsdk.cds.blueprintsprocessor.grpc.TLSAuthGrpcClientProperties
26 import org.onap.ccsdk.cds.blueprintsprocessor.grpc.interceptor.GrpcClientLoggingInterceptor
27 import org.onap.ccsdk.cds.controllerblueprints.core.normalizedFile
29 class TLSAuthGrpcClientService(private val tlsAuthGrpcClientProperties: TLSAuthGrpcClientProperties)
30 : BluePrintGrpcClientService {
32 override suspend fun channel(): ManagedChannel {
33 return NettyChannelBuilder
34 .forAddress(tlsAuthGrpcClientProperties.host, tlsAuthGrpcClientProperties.port)
35 .nameResolverFactory(DnsNameResolverProvider())
36 .loadBalancerFactory(PickFirstLoadBalancerProvider())
37 .intercept(GrpcClientLoggingInterceptor())
38 .sslContext(sslContext())
42 fun sslContext(): SslContext {
43 val builder = GrpcSslContexts.forClient()
44 if (tlsAuthGrpcClientProperties.trustCertCollection != null) {
45 builder.trustManager(normalizedFile(tlsAuthGrpcClientProperties.trustCertCollection!!))
47 if (tlsAuthGrpcClientProperties.clientCertChain != null
48 && tlsAuthGrpcClientProperties.clientPrivateKey != null) {
49 builder.keyManager(normalizedFile(tlsAuthGrpcClientProperties.clientCertChain!!),
50 normalizedFile(tlsAuthGrpcClientProperties.clientPrivateKey!!))
52 return builder.build()