feat: impl to create new enollments using APKAM-OTP #453

srieteja · 2024-11-28T23:39:16Z

Closes #451

- What I did

AtAuth changes

Implement auth_cli that can send enroll requests using OTP and cut an atKeys file once that enrollment is approved.
fix at_activate bug: at_activate crashes when the atsign does not start with '@'
Introduce a new flag 'v' that makes activate_cli and auth_cli more verbose
Introduce new params 'd', 'p', 'n' in arg_parser that parses device_name, app_name and namespaces from command-line

AtClient changes

Add a new param to atclient_pkam_authenticate() named 'err_msg' that is populated with the error message from the server in case of an error
Introduce new option in get_public_key_request_options named 'should_auth' that allows the user to specify if the key provided to 'atclient_get_public_key()' should be fetched with/without auth. Supporting getter, setter, init and free methods have also been implemented.

AtCommons changes

Introduce new method in atcommons/enroll_namespace.c that parses namespace list strings and returns a 'enroll_namespace_t' struct
fix bug: The length var in enroll_namespace_list_t struct defaults to SIZE_MAX. (Fixed, defaults to 0 now)

- How I did it

fix bug: The length var in enroll_namespace_list_t struct defaults to SIZE_MAX: In 'atcommons_enroll_namespace_list_append' before appending the namespace to list, check if the length is equal to SIZE_MAX. Set to 0 if true.
Introduce new option in get_public_key_request_options named 'should_auth': If should auth is set to true, the client performs a 'plookup' for the given key. Otherwise performs a 'lookup'.

- How to verify it

test for 'atcommons_enroll_namespace_list_from_string' on the way

- Description for the changelog

feat: impl to create new enollments using APKAM-OTP

…-> "atclient_authenticate_options_*"

…t_commons # Conflicts: # packages/atcommons/CMakeLists.txt

…t_commons # Conflicts: # packages/atauth/src/atactivate.c

Bumps the github-actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action). Updates `github/codeql-action` from 3.27.1 to 3.27.3 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@4f3212b...396bb3e) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps the github-actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action). Updates `github/codeql-action` from 3.27.3 to 3.27.4 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@396bb3e...ea9e4e3) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps the github-actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action). Updates `github/codeql-action` from 3.27.4 to 3.27.5 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@ea9e4e3...f09c1c0) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] <[email protected]>

packages/atauth/CMakeLists.txt

packages/atauth/include/atauth/atauth_constants.h

packages/atclient/src/atclient.c

packages/atcommons/include/atcommons/cjson.h

packages/atcommons/src/enroll_namespace.c

* feat: introduce new params into the arg_parser * feat: add param "err_msg" to atclient_pkam_authenticate * feat: new method to parse enroll_namespace_list_t from string * feat: introduce auth_cli * chore: revert changes reg recursive write in atclient/connection.c * feat: migrate constants to atauth_constants.h + minor refactoring * feat: support for unauthenticated public key lookup * feat: support to parse enroll namespaces from string * feat: add new request param 'should_auth' in get_public_key_request_options * feat: completed auth_cli implementation * feat: impl multiple exits for auth_cli + minor refactoring * fix: linux specific header issue + unit test * chore: fix examples * fix: introduce init method and use for enroll namespace list --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: xavierchanth <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* feat: venv tools * feat: Almost working * feat: use dev_env tag * fix: memory bug in atclient_pkam_authenticate * feat: implement atclient_connection_set_read_timeout * fix: add compatibility to staging in test_atclient_pkam_authenticate * fix: test commands in CI * fix: file name * feat: add step to start venv in CI * ci: install docker-compose step * ci: * ci: add longer sleeps * chore: remove unused keys * chore: remove sudo from pkam_virtualenv.sh * feat: move mbedtls sockets into its own layer under connection * chore: address review comments & cleanup work * ci: * ci: * feat: add read timeout to functional_tests_pkam_auth * fix: * fix: do not overwrite ret value during tear down in functional tests * feat: impl to create new enollments using APKAM-OTP (#453) * feat: introduce new params into the arg_parser * feat: add param "err_msg" to atclient_pkam_authenticate * feat: new method to parse enroll_namespace_list_t from string * feat: introduce auth_cli * chore: revert changes reg recursive write in atclient/connection.c * feat: migrate constants to atauth_constants.h + minor refactoring * feat: support for unauthenticated public key lookup * feat: support to parse enroll namespaces from string * feat: add new request param 'should_auth' in get_public_key_request_options * feat: completed auth_cli implementation * feat: impl multiple exits for auth_cli + minor refactoring * fix: linux specific header issue + unit test * chore: fix examples * fix: introduce init method and use for enroll namespace list --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: xavierchanth <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * feat: Almost working * fix: add compatibility to staging in test_atclient_pkam_authenticate * feat: venv tools * feat: Almost working * feat: use dev_env tag * fix: test commands in CI * fix: file name * feat: add step to start venv in CI * ci: install docker-compose step * ci: * ci: add longer sleeps * chore: remove unused keys * feat: move mbedtls sockets into its own layer under connection * chore: address review comments & cleanup work * ci: * ci: * fix: do not overwrite ret value during tear down in functional tests * feat: impl to create new enollments using APKAM-OTP (#453) * feat: introduce new params into the arg_parser * feat: add param "err_msg" to atclient_pkam_authenticate * feat: new method to parse enroll_namespace_list_t from string * feat: introduce auth_cli * chore: revert changes reg recursive write in atclient/connection.c * feat: migrate constants to atauth_constants.h + minor refactoring * feat: support for unauthenticated public key lookup * feat: support to parse enroll namespaces from string * feat: add new request param 'should_auth' in get_public_key_request_options * feat: completed auth_cli implementation * feat: impl multiple exits for auth_cli + minor refactoring * fix: linux specific header issue + unit test * chore: fix examples * fix: introduce init method and use for enroll namespace list --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: xavierchanth <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * feat: Almost working * fix: add compatibility to staging in test_atclient_pkam_authenticate * fix: * ci: * ci: * ci: * fix: compilation errors * fix: warning * fix: * ci: * ci: * ci: * ci: add virtual environment step in functional tests * ci: * ci: nslookup * feat: null terminate port_str * fix: test_atclient_monitor bugs * feat: modify test_atclient_connection.c * fix: typo * fix: * fix: * chore: undo playground * chore: undo random change * chore: remove unused function * ci: remove debug statements in our tests.yaml --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: XavierChanth <[email protected]> Co-authored-by: Sri Teja T <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

srieteja and others added 30 commits November 13, 2024 17:57

feat: create atcommons and introduce enroll related deps

9295b4e

feat: introduce arg parser for at_activate

f786bc7

feat: add apkam_symmetric_key to atkeys_file

c7c637d

feat: add apkam_symmetric_key to atkeys

ff396f8

feat: introduce atactivate + hex, base64 and utf8 utils

8964e73

feat: cmakeLists update + default homedir impl + more atactivate code

6710bfb

docs: added docs + some more refactoring

c034d1e

fix: migration to mallocs + minor refactoring

b2925c7

chore: resolve compile warnings and refactor methods signatures

061439b

fix: import platform dependent header limits.

2e90e60

chore: rename all instance of "atclient_pkam_authenticate_options_*" …

04a872b

…-> "atclient_authenticate_options_*"

fix: analyzer warnings

013fd0a

chore: update .gitignore

6957202

chore: fix method duplication

ecf30f1

chore: refactoring + add missing docs + better logging

9a59586

test: unit tests + refactoring

2491f69

test: unit tests + refactoring

eba4ff0

Merge remote-tracking branch 'origin/create_at_commons' into create_a…

e5153e9

…t_commons # Conflicts: # packages/atcommons/CMakeLists.txt

chore: address review comments

ac675cf

chore: address review comments - round 2

b23f45c

fix: atsign memory leak bug

c90f62b

fix: atsign memory leak bug

88501e5

Merge remote-tracking branch 'origin/create_at_commons' into create_a…

6a3231d

…t_commons # Conflicts: # packages/atauth/src/atactivate.c

feat: introduce new params into the arg_parser

a3d043a

feat: add param "err_msg" to atclient_pkam_authenticate

d646b46

feat: new method to parse enroll_namespace_list_t from string

aff312e

feat: introduce auth_cli

e8c7b71

srieteja added 4 commits December 13, 2024 02:53

feat: impl multiple exits for auth_cli + minor refactoring

6e1ac0b

fix: linux specific header issue + unit test

ea3fb92

chore: fix examples

3e95460

Merge remote-tracking branch 'origin/trunk' into enroll_using_otp

1d09787

srieteja requested review from JeremyTubongbanua, sitaram-kalluri, XavierChanth, gkc and cpswan December 16, 2024 10:32