[keyserver] Handle invalid CSAT for Identity RPCs
AcceptedPublic
Actions

Authored by bartek on Sun, Nov 24, 11:33 PM.

Details

Reviewers

varun
kamil

Summary

Address ENG-6544
Similiar to D13992 but for keyserver

Only authenticated RPC calls are wrapped (from auth.proto). Unauth RPC calls are left unchanged

Depends on D13992, D14028

Test Plan

Malformed token stored in the metadata table. When an auth RPC was called, the value was cleared. Subsequent service calls caused new login attempt and recreated the metadata values

Diff Detail

Repository

rCOMM Comm

Lint

No Lint Coverage

Unit

No Test Coverage

Event Timeline

bartek created this revision.Sun, Nov 24, 11:33 PM

bartek held this revision as a draft.

Herald added subscribers: tomek, ashoat. · View Herald TranscriptSun, Nov 24, 11:33 PM

Harbormaster completed remote builds in B32796: Diff 45983.Mon, Nov 25, 12:21 AM

bartek published this revision for review.Mon, Nov 25, 2:07 AM

Worth adding to the Summary or Test Plan that this includes all RPC (all usages of getRustAPI) other than unath RPCs.

Ideally, I would see this improved and have this typed like IdentityServiceClient, and to be lazy initialized when we e.g. call getRustAPI only once, I think those stateless functions are hard to maintain, but this is not feedback to this diff, we can create a follow-up task to consider this if you agree.

keyserver/src/utils/identity-utils.js
22–24	shouldn't we use `include()`?

This revision is now accepted and ready to land.Mon, Nov 25, 4:47 AM

kamil mentioned this in D14024: [native] Handle invalid CSAT in Identity RPCs.Mon, Nov 25, 5:09 AM

In D14029#390957, @kamil wrote:

Worth adding to the Summary or Test Plan that this includes all RPC (all usages of getRustAPI) other than unath RPCs.

Good point, this might not be immediately obvious.

Ideally, I would see this improved and have this typed like IdentityServiceClient, and to be lazy initialized when we e.g. call getRustAPI only once, I think those stateless functions are hard to maintain, but this is not feedback to this diff, we can create a follow-up task to consider this if you agree.

I have drafted an implementation that proxies RustAPI object and wraps every promise call within a try-catch. Finally I considered it an overkill but that would solve your concern

keyserver/src/utils/identity-utils.js
22–24	For Identity RPCs we have the `Display` trait implemented (derived) on Rust side which exactly displays the error code. I used `includes()` only for Tunnelbroker error traits because their Display is implemented more implicitly and also shared between client and server, so more likely to change in the future. Using includes there made sense to make it more future-proof. Here, the Display trait is right in rust-node-addon, so there's no need.