mirror of
https://github.com/pomerium/pomerium.git
synced 2025-04-29 18:36:30 +02:00
ee1fefb218
hpke: move published public keys to a new endpoint (#4044) Co-authored-by: Caleb Doxsey <cdoxsey@pomerium.com>
33 lines
870 B
Go
33 lines
870 B
Go
package handlers
|
|
|
|
import (
|
|
"bytes"
|
|
"fmt"
|
|
"hash/fnv"
|
|
"net/http"
|
|
"strconv"
|
|
"time"
|
|
|
|
"github.com/rs/cors"
|
|
|
|
"github.com/pomerium/pomerium/internal/httputil"
|
|
"github.com/pomerium/pomerium/pkg/hpke"
|
|
)
|
|
|
|
// HPKEPublicKeyHandler returns a handler which returns the HPKE public key.
|
|
func HPKEPublicKeyHandler(publicKey *hpke.PublicKey) http.Handler {
|
|
return cors.AllowAll().Handler(httputil.HandlerFunc(func(w http.ResponseWriter, r *http.Request) error {
|
|
bs := publicKey.Bytes()
|
|
|
|
hasher := fnv.New64()
|
|
_, _ = hasher.Write(bs)
|
|
h := hasher.Sum64()
|
|
|
|
w.Header().Set("Cache-Control", "max-age=60")
|
|
w.Header().Set("Content-Type", "application/octet-stream")
|
|
w.Header().Set("Content-Length", strconv.Itoa(len(bs)))
|
|
w.Header().Set("ETag", fmt.Sprintf(`"%x"`, h))
|
|
http.ServeContent(w, r, "hpke-public-key", time.Time{}, bytes.NewReader(bs))
|
|
return nil
|
|
}))
|
|
}
|