Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Configurable Nonces #45

Merged
merged 4 commits into from
Oct 11, 2020
Merged

Configurable Nonces #45

Show file tree
Hide file tree
Changes from 2 commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
9920f9a
Configurable nonce creation
andrewmostello Oct 1, 2020
80d58dc
Refactor to make bytes read configurable
andrewmostello Oct 1, 2020
b1c539c
Trim and update per pull request comments
andrewmostello Oct 2, 2020
cabff48
Merge branch 'master' into noncer
dghubble Oct 11, 2020
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
17 changes: 4 additions & 13 deletions auther.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,8 +2,6 @@ package oauth1

import (
"bytes"
"crypto/rand"
"encoding/base64"
"fmt"
"io/ioutil"
"net/http"
Expand Down Expand Up @@ -38,16 +36,10 @@ type clock interface {
Now() time.Time
}

// A noncer provides random nonce strings.
type noncer interface {
Nonce() string
}

// auther adds an "OAuth" Authorization header field to requests.
type auther struct {
config *Config
clock clock
noncer noncer
}

func newAuther(config *Config) *auther {
Expand Down Expand Up @@ -137,12 +129,11 @@ func (a *auther) commonOAuthParams() map[string]string {

// Returns a base64 encoded random 32 byte string.
func (a *auther) nonce() string {
if a.noncer != nil {
return a.noncer.Nonce()
noncer := DefaultNoncer
Copy link
Owner

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Seems like this defaulting logic would more commonly belong in newAuther, retaining the field that was there?

The test changes in this PR have to do with this choice, and not testing the actual noncer details it seems.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

That makes sense. I was thinking about the pattern I use when the struct is exported and you're not sure whether it could be nil, but that doesn't apply here.

if cfg := a.config; cfg != nil && cfg.Noncer != nil {
noncer = cfg.Noncer
}
b := make([]byte, 32)
rand.Read(b)
return base64.StdEncoding.EncodeToString(b)
return noncer.Nonce()
}

// Returns the Unix epoch seconds.
Expand Down
13 changes: 9 additions & 4 deletions auther_test.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,9 +17,11 @@ func TestCommonOAuthParams(t *testing.T) {
}{
{
&auther{
&Config{ConsumerKey: "some_consumer_key"},
&Config{
ConsumerKey: "some_consumer_key",
Noncer: &fixedNoncer{"some_nonce"},
},
&fixedClock{time.Unix(50037133, 0)},
&fixedNoncer{"some_nonce"},
},
map[string]string{
"oauth_consumer_key": "some_consumer_key",
Expand All @@ -31,9 +33,12 @@ func TestCommonOAuthParams(t *testing.T) {
},
{
&auther{
&Config{ConsumerKey: "some_consumer_key", Realm: "photos"},
&Config{
ConsumerKey: "some_consumer_key",
Realm: "photos",
Noncer: &fixedNoncer{"some_nonce"},
},
&fixedClock{time.Unix(50037133, 0)},
&fixedNoncer{"some_nonce"},
},
map[string]string{
"oauth_consumer_key": "some_consumer_key",
Expand Down
2 changes: 2 additions & 0 deletions config.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -29,6 +29,8 @@ type Config struct {
Realm string
// OAuth1 Signer (defaults to HMAC-SHA1)
Signer Signer
// Noncer creates request nonces (defaults to DefaultNoncer)
Noncer Noncer
}

// NewConfig returns a new Config with the given consumer key and secret.
Expand Down
68 changes: 68 additions & 0 deletions noncer.go
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,68 @@
package oauth1

import (
"crypto/rand"
"encoding/base64"
"encoding/hex"
)

// Noncer provides random nonce strings.
type Noncer interface {
Nonce() string
}

// NoncerFunc is an adapter to allow the use of
// ordinary functions as Noncers. If f is a function
// with the appropriate signature, NoncerFunc(f) is a
// Noncer that calls f.
type NoncerFunc func() string
Copy link
Owner

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Probably not needed, folks can write a struct. And most should never need to alter the noncer.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Agreed.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is in there because it's how I originally implemented the Noncers (I didn't bother with separate types and just used NoncerFuncs).


// Nonce calls f().
func (f NoncerFunc) Nonce() string {
return f()
}

var (
// DefaultNoncer is the default Noncer. It reads 32
// bytes from crypto/rand and returns those bytes as a
// base64 encoded string.
DefaultNoncer Noncer = Base64Noncer{
Copy link
Owner

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Not sure what another exported type for this really gains. DefaultNoncer isn't something abstracting the real noncer in a way we'd be able to change it in future, your use case shows servers are sensitive to the details.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

That sounds good to me. I added this to have a designated default for package consumers who don't want to customize have a handy option, but it's redundant.

Length: 32,
}
)

// Base64Noncer reads Length bytes from crypto/rand and
// returns those bytes as a base64 encoded string. If
// Length is 0, 32 bytes are read.
type Base64Noncer struct {
Length int
Copy link
Owner

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is there a true need for altering the length? Every exported type and field is a library commitment.

Copy link
Owner

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Or if someone sets it below 32 there may be some concern about lack of uniqueness among nonces. The spec doesn't provide a hard requirement.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

That sounds good to me. I'm not invested either way.

}

// Nonce provides a random nonce string.
func (n Base64Noncer) Nonce() string {
length := n.Length
if length == 0 {
length = 32
}
b := make([]byte, length)
rand.Read(b)
return base64.StdEncoding.EncodeToString(b)
}

// HexNoncer reads Length bytes from crypto/rand and
// returns those bytes as a base64 encoded string. If
// Length is 0, 32 bytes are read.
type HexNoncer struct {
Copy link
Owner

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Does this need to be here? Those users who have special nonce needs can implement their own. Not sure hex is special or just your preferred variant.

Copy link
Owner

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I suppose, go ahead and keep it. If we're going to export an interface, there should be two concrete types that implement it.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Doesn't need to be there, and I'm good either way. I know what I need to use and I tossed it in here as an alternative option. I'll keep it in per your second comment, but I'm fine either way.

Length int
}

// Nonce provides a random nonce string.
func (n HexNoncer) Nonce() string {
length := n.Length
if length == 0 {
length = 32
}
b := make([]byte, length)
rand.Read(b)
return hex.EncodeToString(b)
}
13 changes: 8 additions & 5 deletions reference_test.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -33,9 +33,10 @@ func TestTwitterRequestTokenAuthHeader(t *testing.T) {
AuthorizeURL: "https://api.twitter.com/oauth/authorize",
AccessTokenURL: "https://api.twitter.com/oauth/access_token",
},
Noncer: &fixedNoncer{expectedNonce},
}

auther := &auther{config, &fixedClock{time.Unix(unixTimestamp, 0)}, &fixedNoncer{expectedNonce}}
auther := &auther{config, &fixedClock{time.Unix(unixTimestamp, 0)}}
req, err := http.NewRequest("POST", config.Endpoint.RequestTokenURL, nil)
assert.Nil(t, err)
err = auther.setRequestTokenAuthHeader(req)
Expand Down Expand Up @@ -70,9 +71,10 @@ func TestTwitterAccessTokenAuthHeader(t *testing.T) {
AuthorizeURL: "https://api.twitter.com/oauth/authorize",
AccessTokenURL: "https://api.twitter.com/oauth/access_token",
},
Noncer: &fixedNoncer{expectedNonce},
}

auther := &auther{config, &fixedClock{time.Unix(unixTimestamp, 0)}, &fixedNoncer{expectedNonce}}
auther := &auther{config, &fixedClock{time.Unix(unixTimestamp, 0)}}
req, err := http.NewRequest("POST", config.Endpoint.AccessTokenURL, nil)
assert.Nil(t, err)
err = auther.setAccessTokenAuthHeader(req, expectedRequestToken, requestTokenSecret, expectedVerifier)
Expand Down Expand Up @@ -105,10 +107,11 @@ var twitterConfig = &Config{
AuthorizeURL: "https://api.twitter.com/oauth/authorize",
AccessTokenURL: "https://api.twitter.com/oauth/access_token",
},
Noncer: &fixedNoncer{expectedNonce},
}

func TestTwitterParameterString(t *testing.T) {
auther := &auther{twitterConfig, &fixedClock{time.Unix(unixTimestampOfRequest, 0)}, &fixedNoncer{expectedNonce}}
auther := &auther{twitterConfig, &fixedClock{time.Unix(unixTimestampOfRequest, 0)}}
values := url.Values{}
values.Add("status", "Hello Ladies + Gentlemen, a signed OAuth request!")
// note: the reference example is old and uses api v1 in the URL
Expand All @@ -125,7 +128,7 @@ func TestTwitterParameterString(t *testing.T) {
}

func TestTwitterSignatureBase(t *testing.T) {
auther := &auther{twitterConfig, &fixedClock{time.Unix(unixTimestampOfRequest, 0)}, &fixedNoncer{expectedNonce}}
auther := &auther{twitterConfig, &fixedClock{time.Unix(unixTimestampOfRequest, 0)}}
values := url.Values{}
values.Add("status", "Hello Ladies + Gentlemen, a signed OAuth request!")
// note: the reference example is old and uses api v1 in the URL
Expand All @@ -148,7 +151,7 @@ func TestTwitterRequestAuthHeader(t *testing.T) {
expectedSignature := PercentEncode("tnnArxj06cWHq44gCs1OSKk/jLY=")
expectedTimestamp := "1318622958"

auther := &auther{twitterConfig, &fixedClock{time.Unix(unixTimestampOfRequest, 0)}, &fixedNoncer{expectedNonce}}
auther := &auther{twitterConfig, &fixedClock{time.Unix(unixTimestampOfRequest, 0)}}
values := url.Values{}
values.Add("status", "Hello Ladies + Gentlemen, a signed OAuth request!")

Expand Down
8 changes: 3 additions & 5 deletions transport_test.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -32,11 +32,11 @@ func TestTransport(t *testing.T) {
config := &Config{
ConsumerKey: expectedConsumerKey,
ConsumerSecret: "consumer_secret",
Noncer: &fixedNoncer{expectedNonce},
}
auther := &auther{
config: config,
clock: &fixedClock{time.Unix(123456789, 0)},
noncer: &fixedNoncer{expectedNonce},
}
tr := &Transport{
source: StaticTokenSource(NewToken(expectedToken, "some_secret")),
Expand Down Expand Up @@ -69,9 +69,8 @@ func TestTransport_nilSource(t *testing.T) {
tr := &Transport{
source: nil,
auther: &auther{
config: &Config{},
config: &Config{Noncer: &fixedNoncer{"any_nonce"}},
clock: &fixedClock{time.Unix(123456789, 0)},
noncer: &fixedNoncer{"any_nonce"},
},
}
client := &http.Client{Transport: tr}
Expand All @@ -86,9 +85,8 @@ func TestTransport_emptySource(t *testing.T) {
tr := &Transport{
source: StaticTokenSource(nil),
auther: &auther{
config: &Config{},
config: &Config{Noncer: &fixedNoncer{"any_nonce"}},
clock: &fixedClock{time.Unix(123456789, 0)},
noncer: &fixedNoncer{"any_nonce"},
},
}
client := &http.Client{Transport: tr}
Expand Down