github.com/m3db/m3@v1.5.1-0.20231129193456-75a402aa583b/src/m3em/integration/resources/cert.go (about)

     1  // Copyright (c) 2017 Uber Technologies, Inc.
     2  //
     3  // Permission is hereby granted, free of charge, to any person obtaining a copy
     4  // of this software and associated documentation files (the "Software"), to deal
     5  // in the Software without restriction, including without limitation the rights
     6  // to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
     7  // copies of the Software, and to permit persons to whom the Software is
     8  // furnished to do so, subject to the following conditions:
     9  //
    10  // The above copyright notice and this permission notice shall be included in
    11  // all copies or substantial portions of the Software.
    12  //
    13  // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
    14  // IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
    15  // FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
    16  // AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
    17  // LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
    18  // OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
    19  // THE SOFTWARE.
    20  
    21  // +build integration
    22  
    23  package resources
    24  
    25  import (
    26  	xgrpc "github.com/m3db/m3/src/m3em/x/grpc"
    27  
    28  	"google.golang.org/grpc/credentials"
    29  )
    30  
    31  const (
    32  	caCrtResource      = "CertAuth.crt"
    33  	clientCrtResources = "m3em_client.uberinternal.com.crt"
    34  	clientKeyResources = "m3em_client.uberinternal.com.key"
    35  	serverName         = "m3em_server.uberinternal.com"
    36  	serverCrtResources = "m3em_server.uberinternal.com.crt"
    37  	serverKeyResources = "m3em_server.uberinternal.com.key"
    38  )
    39  
    40  // ClientTransportCredentials return a DialOption for TLS Client communication
    41  func ClientTransportCredentials() (credentials.TransportCredentials, error) {
    42  	caCrt, err := Asset(caCrtResource)
    43  	if err != nil {
    44  		return nil, err
    45  	}
    46  
    47  	clientCrt, err := Asset(clientCrtResources)
    48  	if err != nil {
    49  		return nil, err
    50  	}
    51  
    52  	clientKey, err := Asset(clientKeyResources)
    53  	if err != nil {
    54  		return nil, err
    55  	}
    56  
    57  	return xgrpc.NewClientCredentials(serverName, caCrt, clientCrt, clientKey)
    58  }
    59  
    60  // ServerTransportCredentials return a DialOption for TLS Server communication
    61  func ServerTransportCredentials() (credentials.TransportCredentials, error) {
    62  	caCrt, err := Asset(caCrtResource)
    63  	if err != nil {
    64  		return nil, err
    65  	}
    66  
    67  	serverCrt, err := Asset(serverCrtResources)
    68  	if err != nil {
    69  		return nil, err
    70  	}
    71  
    72  	serverKey, err := Asset(serverKeyResources)
    73  	if err != nil {
    74  		return nil, err
    75  	}
    76  
    77  	return xgrpc.NewServerCredentials(caCrt, serverCrt, serverKey)
    78  }