[github/fretlink/hmacaroons.git] / src / Crypto / Macaroon / Serializer / Base64.hs

{-# LANGUAGE OverloadedStrings #-}
{-|
Module      : Crypto.Macaroon.Serializer.Base64
Copyright   : (c) 2015 Julien Tanguy
License     : BSD3

Maintainer  : julien.tanguy@jhome.fr
Stability   : experimental
Portability : portable

Base64 serializer/deserializer

-}
module Crypto.Macaroon.Serializer.Base64 (
        serialize
      , deserialize
      ) where

import           Control.Applicative
import           Control.Monad
import           Crypto.Macaroon.Internal
import           Data.Attoparsec.ByteString
import qualified Data.Attoparsec.ByteString.Char8 as A8
import           Data.Bits
import qualified Data.ByteString                  as BS
import qualified Data.ByteString.Base64.URL       as B64
import qualified Data.ByteString.Char8            as B8
import           Data.Char
import           Data.Hex
import           Data.Int
import           Data.List
import           Data.Maybe
import           Data.Serialize
import           Data.Word


-- | Serialize a macaroon in an URL-safe Base64 encoding
serialize :: Macaroon -> BS.ByteString
serialize m = B8.filter (/= '=') . B64.encode . runPut $ do
    packetize "location" (location m)
    packetize "identifier" (identifier m)
    forM_ (caveats m) $ \c -> do
        packetize "cid" (cid c)
        unless (cl c == location m && vid c == BS.empty) $ do
            packetize "vid" (vid c)
            packetize "cl" (cl c)
    packetize "signature" (signature m)

packetize :: BS.ByteString -> BS.ByteString -> Put
packetize key dat = do
    let size = 4 + 2 + BS.length key + BS.length dat
    putByteString $ B8.map toLower . hex . encode $ (fromIntegral size :: Word16)
    putByteString key
    putByteString " "
    putByteString dat
    putByteString "\n"

-- | Deserialize a macaroon from a base64url-encoded ByteString
deserialize :: BS.ByteString -> Either String Macaroon
deserialize = parseOnly macaroon . B64.decodeLenient


macaroon :: Parser Macaroon
macaroon = do
    ps <- many packet <* endOfInput
    let ([("location",l),("identifier",i)],ps') = splitAt 2 ps
    let (caveats,sig) = splitAt (length ps' - 1) ps'
    let [("signature",s)] = sig
    return $ MkMacaroon l i (map (mkCaveat l) (groupBy splitCavs caveats)) s
  where
    mkCaveat _ [("cid",c),("vid",v),("cl",l)] = MkCaveat c v l
    mkCaveat l [("cid",c)] = MkCaveat c BS.empty l
    mkCaveat _ _ = error "Malformed caveat"
    splitCavs _ ("cid",_) = False
    splitCavs _ _ = True

packet :: Parser (BS.ByteString, BS.ByteString)
packet = do
    size <- A8.take 4
    case A8.parseOnly (A8.hexadecimal :: Parser Word16) size of
        Left e -> fail e
        Right s -> do
            bs <- A8.take (fromIntegral $ s - 4)
            let (key, dat) = B8.break (== ' ') bs
            return (key, B8.tail $ B8.init dat)
Commit	Line	Data
a20c77f8 JT	1	{-# LANGUAGE OverloadedStrings #-}
	2	{-\|
	3	Module : Crypto.Macaroon.Serializer.Base64
	4	Copyright : (c) 2015 Julien Tanguy
	5	License : BSD3
	6
	7	Maintainer : julien.tanguy@jhome.fr
	8	Stability : experimental
	9	Portability : portable
	10
	11	Base64 serializer/deserializer
	12
	13	-}
	14	module Crypto.Macaroon.Serializer.Base64 (
	15	serialize
	16	, deserialize
	17	) where
	18
b1f77d7e JT	19	import Control.Applicative
	20	import Control.Monad
	21	import Crypto.Macaroon.Internal
	22	import Data.Attoparsec.ByteString
a20c77f8 JT	23	import qualified Data.Attoparsec.ByteString.Char8 as A8
a20c77f8 JT	24	import Data.Bits
b1f77d7e JT	25	import qualified Data.ByteString as BS
	26	import qualified Data.ByteString.Base64.URL as B64
	27	import qualified Data.ByteString.Char8 as B8
a20c77f8 JT	28	import Data.Char
	29	import Data.Hex
	30	import Data.Int
	31	import Data.List
	32	import Data.Maybe
a20c77f8	33	import Data.Serialize
b1f77d7e	34	import Data.Word
a20c77f8 JT	35
	36
	37	-- \| Serialize a macaroon in an URL-safe Base64 encoding
	38	serialize :: Macaroon -> BS.ByteString
	39	serialize m = B8.filter (/= '=') . B64.encode . runPut $ do
	40	packetize "location" (location m)
	41	packetize "identifier" (identifier m)
	42	forM_ (caveats m) $ \c -> do
	43	packetize "cid" (cid c)
	44	unless (cl c == location m && vid c == BS.empty) $ do
	45	packetize "vid" (vid c)
	46	packetize "cl" (cl c)
	47	packetize "signature" (signature m)
	48
	49	packetize :: BS.ByteString -> BS.ByteString -> Put
	50	packetize key dat = do
	51	let size = 4 + 2 + BS.length key + BS.length dat
	52	putByteString $ B8.map toLower . hex . encode $ (fromIntegral size :: Word16)
	53	putByteString key
	54	putByteString " "
	55	putByteString dat
	56	putByteString "\n"
	57
7986de7c	58	-- \| Deserialize a macaroon from a base64url-encoded ByteString
a20c77f8 JT	59	deserialize :: BS.ByteString -> Either String Macaroon
	60	deserialize = parseOnly macaroon . B64.decodeLenient
	61
	62
	63	macaroon :: Parser Macaroon
	64	macaroon = do
	65	ps <- many packet <* endOfInput
	66	let ([("location",l),("identifier",i)],ps') = splitAt 2 ps
	67	let (caveats,sig) = splitAt (length ps' - 1) ps'
	68	let [("signature",s)] = sig
	69	return $ MkMacaroon l i (map (mkCaveat l) (groupBy splitCavs caveats)) s
	70	where
	71	mkCaveat _ [("cid",c),("vid",v),("cl",l)] = MkCaveat c v l
	72	mkCaveat l [("cid",c)] = MkCaveat c BS.empty l
	73	mkCaveat _ _ = error "Malformed caveat"
	74	splitCavs _ ("cid",_) = False
	75	splitCavs _ _ = True
	76
	77	packet :: Parser (BS.ByteString, BS.ByteString)
	78	packet = do
	79	size <- A8.take 4
	80	case A8.parseOnly (A8.hexadecimal :: Parser Word16) size of
	81	Left e -> fail e
	82	Right s -> do
	83	bs <- A8.take (fromIntegral $ s - 4)
	84	let (key, dat) = B8.break (== ' ') bs
	85	return (key, B8.tail $ B8.init dat)
	86