aljaz/cyphernode
1
0
Fork 0
mirror of https://github.com/aljazceru/cyphernode.git synced 2025-12-17 04:35:14 +01:00
Code Issues Packages Projects Releases Wiki Activity

I dropped a few tokens on the ground and I forgot about them

Browse Source
This commit is contained in:
kexkey
2021-11-17 01:37:44 -05:00
parent b7c89ef759
commit 40a5ff828a
4 changed files with 7 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
api_auth_docker/tests/test-gatekeeper.sh
View File

@@ -196,7 +196,6 @@ generate_token() {
trace 3 "[generate_token] d=${d}\n" trace 3 "[generate_token] d=${d}\n"
local p64=$(exec_in_test_container sh -c "echo -n '{\"id\":\"${id}\",\"exp\":${d}}' | basenc --base64url | tr -d '='") local p64=$(exec_in_test_container sh -c "echo -n '{\"id\":\"${id}\",\"exp\":${d}}' | basenc --base64url | tr -d '='")
trace 3 "[generate_token] p64=${p64}\n" trace 3 "[generate_token] p64=${p64}\n"
# local s=$(echo -n "${h64}.${p64}" | openssl dgst -hmac "${key}" -sha256 -r | cut -sd ' ' -f1)
local sig=$(exec_in_test_container sh -c "echo -n \"${h64}.${p64}\" | openssl dgst -hmac \"${key}\" -sha256 -r -binary | basenc --base64url | tr -d '='") local sig=$(exec_in_test_container sh -c "echo -n \"${h64}.${p64}\" | openssl dgst -hmac \"${key}\" -sha256 -r -binary | basenc --base64url | tr -d '='")
trace 3 "[generate_token] sig=${sig}\n" trace 3 "[generate_token] sig=${sig}\n"
local token="${h64}.${p64}.${sig}" local token="${h64}.${p64}.${sig}"

2
clients/shell/cyphernode-client.sh
View File

@@ -8,7 +8,7 @@ invoke_cyphernode()
local post=${2} local post=${2}
local p64=$(echo -n '{"id":"'${id}'","exp":'$((`date +"%s"`+10))'}' | basenc --base64url | tr -d '=') local p64=$(echo -n '{"id":"'${id}'","exp":'$((`date +"%s"`+10))'}' | basenc --base64url | tr -d '=')
local s=$(echo -n "$h64.$p64" | openssl dgst -hmac "$key" -sha256 -r | cut -sd ' ' -f1) local s=$(echo -n "$h64.$p64" | openssl dgst -hmac "$key" -sha256 -r -binary | basenc --base64url | tr -d '=')
local token="$h64.$p64.$s" local token="$h64.$p64.$s"
if [ -n "${post}" ]; then if [ -n "${post}" ]; then

10
cyphernodeconf_docker/templates/installer/testfeatures.sh
View File

@@ -17,7 +17,7 @@ checkgatekeeper() {
# Let's test expiration: 1 second in payload, request 2 seconds later # Let's test expiration: 1 second in payload, request 2 seconds later
local p64=$(echo -n '{"id":"'${id}'","exp":'$(date +"%s")'}' | basenc --base64url | tr -d '=') local p64=$(echo -n '{"id":"'${id}'","exp":'$(date +"%s")'}' | basenc --base64url | tr -d '=')
local s=$(echo -n "$h64.$p64" | openssl dgst -hmac "$k" -sha256 -r | cut -sd ' ' -f1) local s=$(echo -n "$h64.$p64" | openssl dgst -hmac "$k" -sha256 -r -binary | basenc --base64url | tr -d '=')
local token="$h64.$p64.$s" local token="$h64.$p64.$s"
echo " Testing expired request... " > /dev/console echo " Testing expired request... " > /dev/console
@@ -27,12 +27,12 @@ checkgatekeeper() {
# Let's test authentication (signature) # Let's test authentication (signature)
p64=$(echo -n '{"id":"'${id}'","exp":'$((`date +"%s"`+10))'}' | basenc --base64url | tr -d '=') p64=$(echo -n '{"id":"'${id}'","exp":'$((`date +"%s"`+10))'}' | basenc --base64url | tr -d '=')
s=$(echo -n "$h64.$p64" | openssl dgst -hmac "$k" -sha256 -r | cut -sd ' ' -f1) s=$(echo -n "$h64.$p64" | openssl dgst -hmac "$k" -sha256 -r -binary | basenc --base64url | tr -d '=')
token="$h64.$p64.a$s" token="$h64.$p64.a$s"
echo " Testing bad signature... " > /dev/console echo " Testing bad signature... " > /dev/console
rc=$(curl -s -o /dev/null -w "%{http_code}" -H "Authorization: Bearer $token" --cacert /gatekeeper/certs/cert.pem https://gatekeeper:<%= gatekeeper_port %>/v0/getblockinfo) rc=$(curl -s -o /dev/null -w "%{http_code}" -H "Authorization: Bearer $token" --cacert /gatekeeper/certs/cert.pem https://gatekeeper:<%= gatekeeper_port %>/v0/getblockinfo)
[ "${rc}" -ne "403" ] && return 30 [ "${rc}" -ne "401" ] && return 30
# Let's test authorization (action access for groups) # Let's test authorization (action access for groups)
@@ -45,7 +45,7 @@ checkgatekeeper() {
id="002" id="002"
eval k='$ukey_'$id eval k='$ukey_'$id
p64=$(echo -n '{"id":"'${id}'","exp":'$((`date +"%s"`+10))'}' | basenc --base64url | tr -d '=') p64=$(echo -n '{"id":"'${id}'","exp":'$((`date +"%s"`+10))'}' | basenc --base64url | tr -d '=')
s=$(echo -n "$h64.$p64" | openssl dgst -hmac "$k" -sha256 -r | cut -sd ' ' -f1) s=$(echo -n "$h64.$p64" | openssl dgst -hmac "$k" -sha256 -r -binary | basenc --base64url | tr -d '=')
token="$h64.$p64.$s" token="$h64.$p64.$s"
echo " Testing spender trying to do an internal action call... " > /dev/console echo " Testing spender trying to do an internal action call... " > /dev/console
@@ -56,7 +56,7 @@ checkgatekeeper() {
id="003" id="003"
eval k='$ukey_'$id eval k='$ukey_'$id
p64=$(echo -n '{"id":"'${id}'","exp":'$((`date +"%s"`+10))'}' | basenc --base64url | tr -d '=') p64=$(echo -n '{"id":"'${id}'","exp":'$((`date +"%s"`+10))'}' | basenc --base64url | tr -d '=')
s=$(echo -n "$h64.$p64" | openssl dgst -hmac "$k" -sha256 -r | cut -sd ' ' -f1) s=$(echo -n "$h64.$p64" | openssl dgst -hmac "$k" -sha256 -r -binary | basenc --base64url | tr -d '=')
token="$h64.$p64.$s" token="$h64.$p64.$s"
echo " Testing admin trying to do an internal action call... " > /dev/console echo " Testing admin trying to do an internal action call... " > /dev/console

2
doc/README.md
View File

@@ -79,7 +79,7 @@ Currently, basic LN functionalities is offered by Cyphernode. You can:
If you need the authorization header to copy/paste in another tool, put your API ID (id=) and API key (k=) in the following command: If you need the authorization header to copy/paste in another tool, put your API ID (id=) and API key (k=) in the following command:
```shell ```shell
id="003";h64=$(echo -n "{\"alg\":\"HS256\",\"typ\":\"JWT\"}" | base64);p64=$(echo -n "{\"id\":\"$id\",\"exp\":$((`date +"%s"`+60))}" | base64);k="b9b8d527a1a27af2ad1697db3521f883760c342fc386dbc42c4efbb1a4d5e0af";s=$(echo -n "$h64.$p64" | openssl dgst -hmac "$k" -sha256 -r | cut -sd ' ' -f1);token="$h64.$p64.$s";echo "Bearer $token" id="003";key="b9b8d527a1a27af2ad1697db3521f883760c342fc386dbc42c4efbb1a4d5e0af";h64=$(echo -n '{"alg":"HS256","typ":"JWT"}' | basenc --base64url | tr -d '=');p64=$(echo -n '{"id":"'${id}'","exp":'$((`date +"%s"`+10))'}' | basenc --base64url | tr -d '=');sig=$(echo -n "${h64}.${p64}" | openssl dgst -hmac "${key}" -sha256 -r -binary | basenc --base64url | tr -d '=');token="${h64}.${p64}.${sig}";echo "Bearer $token"
``` ```
Directly using curl on command line, put your API ID (id=) and API key (k=) in the following commands: Directly using curl on command line, put your API ID (id=) and API key (k=) in the following commands: