api: Add ChannelCredentials

Author: ejona86

api/src/main/java/io/grpc/ChannelCredentials.java

@@ -0,0 +1,38 @@
+/*
+ * Copyright 2020 The gRPC Authors
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package io.grpc;
+
+/**
+ * Represents a security configuration to be used for channels. There is no generic mechanism for
+ * processing arbitrary {@code ChannelCredentials}; the consumer of the credential (the channel)
+ * must support each implementation explicitly and separately. Consumers are not required to support
+ * all types or even all possible configurations for types that are partially supported, but they
+ * <em>must</em> at least fully support {@link ChoiceChannelCredentials}.
+ *
+ * <p>A {@code ChannelCredential} provides client identity and authenticates the server. This is
+ * different from {@link CallCredentials}, which only provides client identity. They can also
+ * influence types of encryption used and similar security configuration.
+ *
+ * <p>The concrete credential type should not be relevant to most users of the API and may be an
+ * implementation decision. Users should generally use the {@code ChannelCredentials} type for
+ * variables instead of the concrete type. Freshly-constructed credentials should be returned as
+ * {@code ChannelCredentials} instead of a concrete type to encourage this pattern. Concrete types
+ * would only be used after {@code instanceof} checks (which must consider
+ * {@code ChoiceChannelCredentials}!).
+ */
+@ExperimentalApi("https://github.com/grpc/grpc-java/issues/7479")
+public abstract class ChannelCredentials {}

api/src/main/java/io/grpc/ChoiceChannelCredentials.java

@@ -0,0 +1,57 @@
+/*
+ * Copyright 2020 The gRPC Authors
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package io.grpc;
+
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.Collections;
+import java.util.List;
+
+/**
+ * Provides a list of {@link ChannelCredentials}, where any one may be used. The credentials are in
+ * preference order.
+ */
+@ExperimentalApi("https://github.com/grpc/grpc-java/issues/7479")
+public final class ChoiceChannelCredentials extends ChannelCredentials {
+  /**
+   * Constructs with the provided {@code creds} as options, with preferred credentials first.
+   *
+   * @throws IllegalArgumentException if no creds are provided
+   */
+  public static ChannelCredentials create(ChannelCredentials... creds) {
+    if (creds.length == 0) {
+      throw new IllegalArgumentException("At least one credential is required");
+    }
+    return new ChoiceChannelCredentials(creds);
+  }
+
+  private final List<ChannelCredentials> creds;
+
+  private ChoiceChannelCredentials(ChannelCredentials... creds) {
+    for (ChannelCredentials cred : creds) {
+      if (cred == null) {
+        throw new NullPointerException();
+      }
+    }
+    this.creds = Collections.unmodifiableList(new ArrayList<>(Arrays.asList(creds)));
+  }
+
+  /** Non-empty list of credentials, in preference order. */
+  public List<ChannelCredentials> getCredentialsList() {
+    return creds;
+  }
+}

api/src/main/java/io/grpc/CompositeCallCredentials.java

@@ -0,0 +1,101 @@
+/*
+ * Copyright 2020 The gRPC Authors
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package io.grpc;
+
+import com.google.common.base.Preconditions;
+import java.util.concurrent.Executor;
+
+/**
+ * Uses multiple {@code CallCredentials} as if they were one. If the first credential fails, the
+ * second will not be used. Both must succeed to allow the RPC.
+ */
+@ExperimentalApi("https://github.com/grpc/grpc-java/issues/7479")
+public final class CompositeCallCredentials extends CallCredentials {
+  private final CallCredentials credentials1;
+  private final CallCredentials credentials2;
+
+  public CompositeCallCredentials(CallCredentials creds1, CallCredentials creds2) {
+    this.credentials1 = Preconditions.checkNotNull(creds1, "creds1");
+    this.credentials2 = Preconditions.checkNotNull(creds2, "creds2");
+  }
+
+  @Override
+  public void applyRequestMetadata(
+      RequestInfo requestInfo, Executor appExecutor, MetadataApplier applier) {
+    credentials1.applyRequestMetadata(requestInfo, appExecutor,
+        new WrappingMetadataApplier(requestInfo, appExecutor, applier, Context.current()));
+  }
+
+  @Override
+  public void thisUsesUnstableApi() {}
+
+  private final class WrappingMetadataApplier extends MetadataApplier {
+    private final RequestInfo requestInfo;
+    private final Executor appExecutor;
+    private final MetadataApplier delegate;
+    private final Context context;
+
+    public WrappingMetadataApplier(
+        RequestInfo requestInfo, Executor appExecutor, MetadataApplier delegate, Context context) {
+      this.requestInfo = requestInfo;
+      this.appExecutor = appExecutor;
+      this.delegate = Preconditions.checkNotNull(delegate, "delegate");
+      this.context = Preconditions.checkNotNull(context, "context");
+    }
+
+    @Override
+    public void apply(Metadata headers) {
+      Preconditions.checkNotNull(headers, "headers");
+      Context previous = context.attach();
+      try {
+        credentials2.applyRequestMetadata(
+            requestInfo, appExecutor, new CombiningMetadataApplier(delegate, headers));
+      } finally {
+        context.detach(previous);
+      }
+    }
+
+    @Override
+    public void fail(Status status) {
+      delegate.fail(status);
+    }
+  }
+
+  private static final class CombiningMetadataApplier extends MetadataApplier {
+    private final MetadataApplier delegate;
+    private final Metadata firstHeaders;
+
+    public CombiningMetadataApplier(MetadataApplier delegate, Metadata firstHeaders) {
+      this.delegate = delegate;
+      this.firstHeaders = firstHeaders;
+    }
+
+    @Override
+    public void apply(Metadata headers) {
+      Preconditions.checkNotNull(headers, "headers");
+      Metadata combined = new Metadata();
+      combined.merge(firstHeaders);
+      combined.merge(headers);
+      delegate.apply(combined);
+    }
+
+    @Override
+    public void fail(Status status) {
+      delegate.fail(status);
+    }
+  }
+}

api/src/main/java/io/grpc/CompositeChannelCredentials.java

@@ -0,0 +1,49 @@
+/*
+ * Copyright 2020 The gRPC Authors
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package io.grpc;
+
+import com.google.common.base.Preconditions;
+
+/**
+ * {@code ChannelCredentials} which use per-RPC {@link CallCredentials}. If the {@code
+ * ChannelCredentials} has multiple {@code CallCredentials} (e.g., a composite credential inside a
+ * composite credential), then all of the {@code CallCredentials} should be used; one {@code
+ * CallCredentials} does not override another.
+ */
+@ExperimentalApi("https://github.com/grpc/grpc-java/issues/7479")
+public final class CompositeChannelCredentials extends ChannelCredentials {
+  public static ChannelCredentials create(
+      ChannelCredentials channelCreds, CallCredentials callCreds) {
+    return new CompositeChannelCredentials(channelCreds, callCreds);
+  }
+
+  private final ChannelCredentials channelCredentials;
+  private final CallCredentials callCredentials;
+
+  private CompositeChannelCredentials(ChannelCredentials channelCreds, CallCredentials callCreds) {
+    this.channelCredentials = Preconditions.checkNotNull(channelCreds, "channelCreds");
+    this.callCredentials = Preconditions.checkNotNull(callCreds, "callCreds");
+  }
+
+  public ChannelCredentials getChannelCredentials() {
+    return channelCredentials;
+  }
+
+  public CallCredentials getCallCredentials() {
+    return callCredentials;
+  }
+}

api/src/main/java/io/grpc/Grpc.java

@@ -20,6 +20,8 @@
 import java.lang.annotation.Retention;
 import java.lang.annotation.RetentionPolicy;
 import java.net.SocketAddress;
+import java.net.URI;
+import java.net.URISyntaxException;
 import javax.net.ssl.SSLSession;
 
 /**
@@ -62,4 +64,64 @@ private Grpc() {
   @Retention(RetentionPolicy.SOURCE)
   @Documented
   public @interface TransportAttr {}
+
+  /**
+   * Creates a channel builder with a target string and credentials. The target can be either a
+   * valid {@link NameResolver}-compliant URI, or an authority string.
+   *
+   * <p>A {@code NameResolver}-compliant URI is an absolute hierarchical URI as defined by {@link
+   * java.net.URI}. Example URIs:
+   * <ul>
+   *   <li>{@code "dns:///foo.googleapis.com:8080"}</li>
+   *   <li>{@code "dns:///foo.googleapis.com"}</li>
+   *   <li>{@code "dns:///%5B2001:db8:85a3:8d3:1319:8a2e:370:7348%5D:443"}</li>
+   *   <li>{@code "dns://8.8.8.8/foo.googleapis.com:8080"}</li>
+   *   <li>{@code "dns://8.8.8.8/foo.googleapis.com"}</li>
+   *   <li>{@code "zookeeper://zk.example.com:9900/example_service"}</li>
+   * </ul>
+   *
+   * <p>An authority string will be converted to a {@code NameResolver}-compliant URI, which has
+   * the scheme from the name resolver with the highest priority (e.g. {@code "dns"}),
+   * no authority, and the original authority string as its path after properly escaped.
+   * We recommend libraries to specify the schema explicitly if it is known, since libraries cannot
+   * know which NameResolver will be default during runtime.
+   * Example authority strings:
+   * <ul>
+   *   <li>{@code "localhost"}</li>
+   *   <li>{@code "127.0.0.1"}</li>
+   *   <li>{@code "localhost:8080"}</li>
+   *   <li>{@code "foo.googleapis.com:8080"}</li>
+   *   <li>{@code "127.0.0.1:8080"}</li>
+   *   <li>{@code "[2001:db8:85a3:8d3:1319:8a2e:370:7348]"}</li>
+   *   <li>{@code "[2001:db8:85a3:8d3:1319:8a2e:370:7348]:443"}</li>
+   * </ul>
+   */
+  @ExperimentalApi("https://github.com/grpc/grpc-java/issues/7479")
+  public static ManagedChannelBuilder<?> newChannelBuilder(
+      String target, ChannelCredentials creds) {
+    return ManagedChannelRegistry.getDefaultRegistry().newChannelBuilder(target, creds);
+  }
+
+  /**
+   * Creates a channel builder from a host, port, and credentials. The host and port are combined to
+   * form an authority string and then passed to {@link #newChannelBuilder(String,
+   * ChannelCredentials)}. IPv6 addresses are properly surrounded by square brackets ("[]").
+   */
+  @ExperimentalApi("https://github.com/grpc/grpc-java/issues/7479")
+  public static ManagedChannelBuilder<?> newChannelBuilderForAddress(
+      String host, int port, ChannelCredentials creds) {
+    return newChannelBuilder(authorityFromHostAndPort(host, port), creds);
+  }
+
+  /**
+   * Combine a host and port into an authority string.
+   */
+  // A copy of GrpcUtil.authorityFromHostAndPort
+  private static String authorityFromHostAndPort(String host, int port) {
+    try {
+      return new URI(null, null, host, port, null, null, null).getAuthority();
+    } catch (URISyntaxException ex) {
+      throw new IllegalArgumentException("Invalid host or port: " + host + " " + port, ex);
+    }
+  }
 }

api/src/main/java/io/grpc/InsecureChannelCredentials.java

@@ -0,0 +1,27 @@
+/*
+ * Copyright 2020 The gRPC Authors
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package io.grpc;
+
+/** No client identity, authentication, or encryption is to be used. */
+@ExperimentalApi("https://github.com/grpc/grpc-java/issues/7479")
+public final class InsecureChannelCredentials extends ChannelCredentials {
+  public static ChannelCredentials create() {
+    return new InsecureChannelCredentials();
+  }
+
+  private InsecureChannelCredentials() {}
+}

api/src/main/java/io/grpc/ManagedChannelBuilder.java

@@ -182,6 +182,7 @@ public T offloadExecutor(Executor executor) {
    * not perform HTTP/1.1 upgrades.
    *
    * @return this
+   * @throws IllegalStateException if ChannelCredentials were provided when constructing the builder
    * @throws UnsupportedOperationException if plaintext mode is not supported.
    * @since 1.11.0
    */
@@ -193,6 +194,7 @@ public T usePlaintext() {
    * Makes the client use TLS.
    *
    * @return this
+   * @throws IllegalStateException if ChannelCredentials were provided when constructing the builder
    * @throws UnsupportedOperationException if transport security is not supported.
    * @since 1.9.0
    */