mirror of
https://github.com/ceph/ceph-csi.git
synced 2024-11-22 14:20:19 +00:00
47b202554e
This commit adds the Azure SDK for Azure key vault KMS integration to the Ceph CSI driver. Signed-off-by: Praveen M <m.praveen@ibm.com>
110 lines
2.7 KiB
Go
110 lines
2.7 KiB
Go
package jwt
|
|
|
|
import (
|
|
"encoding/json"
|
|
"fmt"
|
|
)
|
|
|
|
// MapClaims is a claims type that uses the map[string]interface{} for JSON
|
|
// decoding. This is the default claims type if you don't supply one
|
|
type MapClaims map[string]interface{}
|
|
|
|
// GetExpirationTime implements the Claims interface.
|
|
func (m MapClaims) GetExpirationTime() (*NumericDate, error) {
|
|
return m.parseNumericDate("exp")
|
|
}
|
|
|
|
// GetNotBefore implements the Claims interface.
|
|
func (m MapClaims) GetNotBefore() (*NumericDate, error) {
|
|
return m.parseNumericDate("nbf")
|
|
}
|
|
|
|
// GetIssuedAt implements the Claims interface.
|
|
func (m MapClaims) GetIssuedAt() (*NumericDate, error) {
|
|
return m.parseNumericDate("iat")
|
|
}
|
|
|
|
// GetAudience implements the Claims interface.
|
|
func (m MapClaims) GetAudience() (ClaimStrings, error) {
|
|
return m.parseClaimsString("aud")
|
|
}
|
|
|
|
// GetIssuer implements the Claims interface.
|
|
func (m MapClaims) GetIssuer() (string, error) {
|
|
return m.parseString("iss")
|
|
}
|
|
|
|
// GetSubject implements the Claims interface.
|
|
func (m MapClaims) GetSubject() (string, error) {
|
|
return m.parseString("sub")
|
|
}
|
|
|
|
// parseNumericDate tries to parse a key in the map claims type as a number
|
|
// date. This will succeed, if the underlying type is either a [float64] or a
|
|
// [json.Number]. Otherwise, nil will be returned.
|
|
func (m MapClaims) parseNumericDate(key string) (*NumericDate, error) {
|
|
v, ok := m[key]
|
|
if !ok {
|
|
return nil, nil
|
|
}
|
|
|
|
switch exp := v.(type) {
|
|
case float64:
|
|
if exp == 0 {
|
|
return nil, nil
|
|
}
|
|
|
|
return newNumericDateFromSeconds(exp), nil
|
|
case json.Number:
|
|
v, _ := exp.Float64()
|
|
|
|
return newNumericDateFromSeconds(v), nil
|
|
}
|
|
|
|
return nil, newError(fmt.Sprintf("%s is invalid", key), ErrInvalidType)
|
|
}
|
|
|
|
// parseClaimsString tries to parse a key in the map claims type as a
|
|
// [ClaimsStrings] type, which can either be a string or an array of string.
|
|
func (m MapClaims) parseClaimsString(key string) (ClaimStrings, error) {
|
|
var cs []string
|
|
switch v := m[key].(type) {
|
|
case string:
|
|
cs = append(cs, v)
|
|
case []string:
|
|
cs = v
|
|
case []interface{}:
|
|
for _, a := range v {
|
|
vs, ok := a.(string)
|
|
if !ok {
|
|
return nil, newError(fmt.Sprintf("%s is invalid", key), ErrInvalidType)
|
|
}
|
|
cs = append(cs, vs)
|
|
}
|
|
}
|
|
|
|
return cs, nil
|
|
}
|
|
|
|
// parseString tries to parse a key in the map claims type as a [string] type.
|
|
// If the key does not exist, an empty string is returned. If the key has the
|
|
// wrong type, an error is returned.
|
|
func (m MapClaims) parseString(key string) (string, error) {
|
|
var (
|
|
ok bool
|
|
raw interface{}
|
|
iss string
|
|
)
|
|
raw, ok = m[key]
|
|
if !ok {
|
|
return "", nil
|
|
}
|
|
|
|
iss, ok = raw.(string)
|
|
if !ok {
|
|
return "", newError(fmt.Sprintf("%s is invalid", key), ErrInvalidType)
|
|
}
|
|
|
|
return iss, nil
|
|
}
|