go.chromium.org/luci@v0.0.0-20240309015107-7cdc2e660f33/auth_service/impl/servers/internals/server.go (about) 1 // Copyright 2021 The LUCI Authors. 2 // 3 // Licensed under the Apache License, Version 2.0 (the "License"); 4 // you may not use this file except in compliance with the License. 5 // You may obtain a copy of the License at 6 // 7 // http://www.apache.org/licenses/LICENSE-2.0 8 // 9 // Unless required by applicable law or agreed to in writing, software 10 // distributed under the License is distributed on an "AS IS" BASIS, 11 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 12 // See the License for the specific language governing permissions and 13 // limitations under the License. 14 15 // Package internals contains Internals server implementation. 16 package internals 17 18 import ( 19 "context" 20 21 "google.golang.org/grpc/codes" 22 "google.golang.org/grpc/status" 23 24 "go.chromium.org/luci/common/retry/transient" 25 "go.chromium.org/luci/server/auth/xsrf" 26 27 "go.chromium.org/luci/auth_service/api/internalspb" 28 ) 29 30 // Server implements Internals server. 31 type Server struct { 32 internalspb.UnimplementedInternalsServer 33 } 34 35 // RefreshXSRFToken implements the corresponding RPC method. 36 func (*Server) RefreshXSRFToken(ctx context.Context, req *internalspb.RefreshXSRFTokenRequest) (*internalspb.XSRFToken, error) { 37 switch err := xsrf.Check(ctx, req.XsrfToken); { 38 case transient.Tag.In(err): 39 return nil, status.Errorf(codes.Internal, "transient error when checking the XSRF token: %s", err) 40 case err != nil: 41 return nil, status.Errorf(codes.PermissionDenied, "bad XSRF token: %s", err) 42 } 43 44 refreshed, err := xsrf.Token(ctx) 45 if err != nil { 46 return nil, status.Errorf(codes.Internal, "failed to generate new XSRF token: %s", err) 47 } 48 49 return &internalspb.XSRFToken{XsrfToken: refreshed}, nil 50 }