2022-06-07 07:37:12 +00:00
package jwt
import (
"errors"
"path/filepath"
"github.com/ethereum/go-ethereum/common/hexutil"
2022-08-16 12:20:13 +00:00
"github.com/prysmaticlabs/prysm/v3/cmd"
"github.com/prysmaticlabs/prysm/v3/crypto/rand"
"github.com/prysmaticlabs/prysm/v3/io/file"
2022-06-07 07:37:12 +00:00
"github.com/sirupsen/logrus"
"github.com/urfave/cli/v2"
)
const (
secretFileName = "jwt.hex"
)
var Commands = & cli . Command {
Name : "generate-auth-secret" ,
Usage : "creates a random, 32 byte hex string in a plaintext file to be used for authenticating JSON-RPC requests. If no --output-file flag is defined, the file will be created in the current working directory" ,
Description : ` creates a random, 32 byte hex string in a plaintext file to be used for authenticating JSON-RPC requests. If no --output-file flag is defined, the file will be created in the current working directory ` ,
Flags : cmd . WrapFlags ( [ ] cli . Flag {
cmd . JwtOutputFileFlag ,
} ) ,
Action : generateAuthSecretInFile ,
}
func generateAuthSecretInFile ( c * cli . Context ) error {
fileName := secretFileName
specifiedFilePath := c . String ( cmd . JwtOutputFileFlag . Name )
if len ( specifiedFilePath ) > 0 {
fileName = specifiedFilePath
}
var err error
fileName , err = file . ExpandPath ( fileName )
if err != nil {
return err
}
fileDir := filepath . Dir ( fileName )
exists , err := file . HasDir ( fileDir )
if err != nil {
return err
}
if ! exists {
if err := file . MkdirAll ( fileDir ) ; err != nil {
return err
}
}
secret , err := generateRandomHexString ( )
if err != nil {
return err
}
if err := file . WriteFile ( fileName , [ ] byte ( secret ) ) ; err != nil {
return err
}
logrus . Infof ( "Successfully wrote JSON-RPC authentication secret to file %s" , fileName )
return nil
}
func generateRandomHexString ( ) ( string , error ) {
secret := make ( [ ] byte , 32 )
randGen := rand . NewGenerator ( )
n , err := randGen . Read ( secret )
if err != nil {
return "" , err
} else if n <= 0 {
return "" , errors . New ( "rand: unexpected length" )
}
return hexutil . Encode ( secret ) , nil
}