ms/blueprintsprocessor/modules/commons/grpc-lib/src/main/kotlin/org/onap/ccsdk/cds/blueprintsprocessor/grpc/service/TLSAuthGrpcClientService.kt

   1 /*
   2  * Copyright © 2018-2019 AT&T Intellectual Property.
   3  *
   4  * Licensed under the Apache License, Version 2.0 (the "License");
   5  * you may not use this file except in compliance with the License.
   6  * You may obtain a copy of the License at
   7  *
   8  *     http://www.apache.org/licenses/LICENSE-2.0
   9  *
  10  * Unless required by applicable law or agreed to in writing, software
  11  * distributed under the License is distributed on an "AS IS" BASIS,
  12  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  13  * See the License for the specific language governing permissions and
  14  * limitations under the License.
  15  */
  16
  17 package org.onap.ccsdk.cds.blueprintsprocessor.grpc.service
  18
  19 import io.grpc.ManagedChannel
  20 import io.grpc.internal.DnsNameResolverProvider
  21 import io.grpc.internal.PickFirstLoadBalancerProvider
  22 import io.grpc.netty.GrpcSslContexts
  23 import io.grpc.netty.NettyChannelBuilder
  24 import io.netty.handler.ssl.SslContext
  25 import org.onap.ccsdk.cds.blueprintsprocessor.grpc.TLSAuthGrpcClientProperties
  26 import org.onap.ccsdk.cds.blueprintsprocessor.grpc.interceptor.GrpcClientLoggingInterceptor
  27 import org.onap.ccsdk.cds.controllerblueprints.core.normalizedFile
  28
  29 class TLSAuthGrpcClientService(private val tlsAuthGrpcClientProperties: TLSAuthGrpcClientProperties)
  30     : BluePrintGrpcClientService {
  31
  32     override suspend fun channel(): ManagedChannel {
  33         return NettyChannelBuilder
  34                 .forAddress(tlsAuthGrpcClientProperties.host, tlsAuthGrpcClientProperties.port)
  35                 .nameResolverFactory(DnsNameResolverProvider())
  36                 .loadBalancerFactory(PickFirstLoadBalancerProvider())
  37                 .intercept(GrpcClientLoggingInterceptor())
  38                 .sslContext(sslContext())
  39                 .build()
  40     }
  41
  42     fun sslContext(): SslContext {
  43         val builder = GrpcSslContexts.forClient()
  44         if (tlsAuthGrpcClientProperties.trustCertCollection != null) {
  45             builder.trustManager(normalizedFile(tlsAuthGrpcClientProperties.trustCertCollection!!))
  46         }
  47         if (tlsAuthGrpcClientProperties.clientCertChain != null
  48                 && tlsAuthGrpcClientProperties.clientPrivateKey != null) {
  49             builder.keyManager(normalizedFile(tlsAuthGrpcClientProperties.clientCertChain!!),
  50                     normalizedFile(tlsAuthGrpcClientProperties.clientPrivateKey!!))
  51         }
  52         return builder.build()
  53     }
  54 }