Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/brucify/cola

Last synced: 6 days ago
JSON representation

Host: GitHub
URL: https://github.com/brucify/cola
Owner: brucify
License: apache-2.0
Created: 2021-04-12T15:43:44.000Z (over 3 years ago)
Default Branch: master
Last Pushed: 2021-05-11T20:42:01.000Z (over 3 years ago)
Last Synced: 2024-07-11T18:23:20.845Z (4 months ago)
Language: Erlang
Size: 817 KB
Stars: 0
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

cola
=====

An Erlang application based on cowboy http server

Build
-----

$ rebar3 compile

Running
-----

$ rebar3 shell

Running eunit tests
-----

$ rebar3 eunit

Running integration tests
-----

$ rebar3 ct

The app will be running at https://localhost:8443 as configured in `config/dev/sys.config`.

The Swagger UI will be served at https://localhost:8443/api-docs/.

Testing against localhost using the curl scripts in `scripts`:

HOST=https://localhost:8443 ./post_bookings_coke | jq
HOST=https://localhost:8443 ID=fa293f3f-8fca-478e-b718-159ff669d85f ./get_bookings_id_coke | jq
HOST=https://localhost:8443 ID=fa293f3f-8fca-478e-b718-159ff669d85f ./get_bookings_id_proof_coke | jq
HOST=https://localhost:8443 ./post_bookings_merkle_coke | jq
HOST=https://localhost:8443 ./post_bookings_merkle_verify_coke | jq
HOST=https://localhost:8443 ID=fa293f3f-8fca-478e-b718-159ff669d85f ./delete_bookings_id_coke | jq

Switching between public and private mode:

1> cola_worker_permission:public_mode().
ok
2> cola_worker_permission:current_mode().
public
3> cola_worker_permission:reset().
ok
4> cola_worker_permission:current_mode().
private

Usage
-----

```bash
$ HOST=https://localhost:8443 ./get_rooms_coke | jq
< HTTP/2 200
[
{
"occupied": [
{
"start_time": "2021-04-10T17:24:31Z",
"end_time": "2021-04-10T18:24:31Z"
}
],
"name": "C01"
},
{
"occupied": [],
"name": "C02"
},
{
"occupied": [],
"name": "C03"
},
...
]

$ HOST=https://localhost:8443 ./post_bookings_coke | jq
< HTTP/2 200
{
"start_time": "2021-04-10T17:24:31Z",
"signature": "MEYCIQCX3Y639yIcrOHcz2flAOzJJQJBgqGZFQGLBEpTXZFXsgIhANSm52RejFqRIl3C9RSknqiQ/VT5dKwgri7gv5myvGgF",
"room": "C01",
"hash_value": "Crku/YArhTvwybz1MI7RJWpr63uJT8iYYOmUu29CkUk=",
"end_time": "2021-04-10T18:24:31Z",
"created": true,
"booking_id": "6570b42c-3783-4521-9c71-059aa33f57ad"
}

$ HOST=https://localhost:8443 ID=6570b42c-3783-4521-9c71-059aa33f57ad ./get_bookings_id_coke | jq
< HTTP/2 200
{
"start_time": "2021-04-10T17:24:31Z",
"signature": "MEYCIQCWnblvZkWRukti51uphD1+bklqAGcCyY9Pi84MTZOwGgIhAIXbLe8/FASWvk8G5DevwTWSTkYAdYREnAJI2Ma/1Evk",
"room": "C01",
"hash_value": "Crku/YArhTvwybz1MI7RJWpr63uJT8iYYOmUu29CkUk=",
"end_time": "2021-04-10T18:24:31Z",
"booking_id": "6570b42c-3783-4521-9c71-059aa33f57ad"
}

$ HOST=https://localhost:8443 ID=6570b42c-3783-4521-9c71-059aa33f57ad ./get_bookings_id_pepsi | jq
< HTTP/2 404

HOST=https://localhost:8443 ./post_merkle_coke | jq
< HTTP/2 200
{
"root_hash": "OOs7xC8o7f+QCNL+4ZO1paCgMs7p6kY1lH4FEunmTug="
}

HOST=https://localhost:8443 ID=6570b42c-3783-4521-9c71-059aa33f57ad ./get_bookings_id_proof_coke | jq
< HTTP/2 200
{
"proof": "g2wAAAABaAJkAAVyaWdodG0AAAAgGqIkxqYIql1TX08L/LL/V4CLF1EpAgu7s4QuN6FAKHNq"
}

HOST=https://localhost:8443 ./post_merkle_verify_coke | jq
< HTTP/2 200
{
"result": true
}

$ HOST=https://localhost:8443 ID=6570b42c-3783-4521-9c71-059aa33f57ad ./delete_bookings_id_coke | jq
< HTTP/2 200
{
"result": true
}

```

Certificates
-----

Generate and self-sign server certificate (RSA). This is used for hosting over HTTPS:

$ openssl req -x509 -newkey rsa:2048 -keyout server.key -out server.crt -nodes -days 365 -subj "/CN=localhost/O=Client\ Certificate\ Demo"

Generate and client certificates (RSA) and sign using server's public key. These are used for sending the HTTP request:

$ openssl req -newkey rsa:2048 -keyout coke.key -out coke.csr
$ openssl req -newkey rsa:2048 -keyout pepsi.key -out pepsi.csr
$ openssl x509 -req -CA server.crt -CAkey server.key -in coke.csr -out coke.crt -set_serial 02 -days 365
$ openssl x509 -req -CA server.crt -CAkey server.key -in pepsi.csr -out pepsi.crt -set_serial 02 -days 365

Wrap client certificates in PKCS12 to be used in browsers:

$ openssl pkcs12 -export -clcerts -in coke.crt -inkey coke.key -out coke.p12
$ openssl pkcs12 -export -clcerts -in pepsi.crt -inkey pepsi.key -out pepsi.p12

Server's EC key, used to issue ECDSA signature:

$ openssl ecparam -genkey -name secp256r1 -noout -out server_ec.key
$ openssl ec -in server_ec.key -pubout -out server_ec.pub