Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.
Awesome Lists | Featured Topics | Projects
https://github.com/cryptolens/cryptolens-cpp

C++ Interface for Cryptolens Web API
https://github.com/cryptolens/cryptolens-cpp
license-checking licensing-as-a-service licensing-library
Last synced: 19 days ago
JSON representation
C++ Interface for Cryptolens Web API
Host: GitHub
URL: https://github.com/cryptolens/cryptolens-cpp
Owner: Cryptolens
License: other
Created: 2017-03-24T09:32:51.000Z (over 7 years ago)
Default Branch: master
Last Pushed: 2023-08-26T08:06:20.000Z (over 1 year ago)
Last Synced: 2023-08-26T08:26:20.299Z (over 1 year ago)
Topics: license-checking, licensing-as-a-service, licensing-library
Language: C++
Homepage: https://cryptolens.io/support-cycle/
Size: 898 KB
Stars: 21
Watchers: 4
Forks: 12
Open Issues: 1
Metadata Files:
- Readme: README.md
- License: LICENSE.md
Awesome Lists containing this project

README

        # Cryptolens Client API for C++

On this page, we have outlined several examples of how to get started with the Cryptolens Client API for C++.

> **Note**, Cryptolens Client API for C++ currently supports a subset of the full Cryptolens Web API. Please contact us if you need something in particular.

You can find the API documentation here: [https://help.cryptolens.io/api/cpp/](https://help.cryptolens.io/api/cpp/).

If you are already familiar with the .NET version of the library, we have summarized key differences in an [announcement](https://cryptolens.io/2017/08/new-client-api-for-c/) on our blog.

## Table of contents

* [Example projects](#example-projects)

  - [CMake](#cmake) (for Linux)

  - [Visual Studio](#visual-studio) (for Windows)

* [Library overview](#library-overview)

* [Error handling](#error-handling)

* [Offline activation](#offline-activation)

* [HTTPS requests outside the library](#https-requests-outside-the-library)

## Example projects

[This repository](https://github.com/Cryptolens/cryptolens-cpp) contains some example projects using the library in the examples/ directory.

The cmake example project is set up to be compiled against OpenSSL and libcurl, while the

VisualStudio project builds against the CryptoAPI and WinHTTP libraries available on Windows.

The rest of this section contains instructions for how to build the example projects.

### CMake

First we need to install libcurl and OpenSSL, including the header files, unless that has

already been done.

```

Debian/Ubuntu:

$ apt-get install libcurl4-openssl-dev libssl-dev

Fedora/Red Hat:

$ yum install libcurl-devel openssl-devel

```

Next, clone the repository and build the examples

```

$ git clone https://github.com/Cryptolens/cryptolens-cpp.git

$ cd cryptolens-cpp/examples/unix/cmake

$ mkdir build

$ cd build

$ cmake ..

$ make -j8

$ ./example_activate

```

### Visual Studio

Getting started with the example project for Visual Studio requires two steps. First we

build the library file the example project will statically link against, then we build

the example project.

The following steps build the library:

 * Open the solution file *vsprojects/Cryptolens.sln* in Visual Studio.

 * Set platform and configuration as appropriate, e.g. *x64* and *Debug*

 * Build the project in Visual Studio

 * Now the folder *vsprojects/Output/$Platform/$Configuration/* contains the *Cryptolens.lib* file. With platform set to "x64" and configuration set to "Debug", the file is *vsprojects/Output/x64/Debug/Cryptolens.lib*

Now we can build the example project:

 * Open *examples/VisualStudio/VisualStudio.sln*

 * Set configuration and platform in the same way as when building the library

 * Build and run the project.

Instructions for how to add the library to your own Visual Studio project can be found [here](/tutorials/add-to-project-windows.md).

## Library overview

This section contains an overview of the standard way to implement the library in an

application. The first step is to include the appropriate headers:

```cpp

#include 

#include 

#include 

#include 

namespace cryptolens = ::cryptolens_io::v20190401;

```

Besides including headers the above code sets up a namespace alias for the api version of the C++

library we are using.

The `Configuration` class allows for using different libraries for parsing JSON, making HTTPS

requests, performing cryptographic operations as well as minor changes in the behaviour of the

library. We currently support the following `Configurations` and `MachineCodeComputers`:

| Configuration                         | Description                                           |

| -----------------------------------   | ----------------------------------------------------- |

| `Configuration_Unix`                 | Good default configuration for Unix-like based systems. Uses ArduinoJson 5, libcurl and OpenSSL. Checks if the license key has expired against the users system time. |

| `Configuration_Unix_IgnoreExpires`   | Same as `Configuration_Unix`, but does not check if the license key has expired against the users system time. |

| `Configuration_Windows`               | Good default configuration for Windows based systems. Uses ArduinoJson 5, WinHTTP and CryptoAPI. Checks if the license key has expired against the users system time. |

| `Configuration_Windows_IgnoreExpires` | Same as `Configuration_Windows`, but does not check if the license key has expired against the users system time. |

| MachineCodeComputer             | Description                                     |

| ------------------------------- | ----------------------------------------------- |

| `MachineCodeComputer_COM` | Works on Windows and computes a machine code using functionallity provided through COM. |

| `MachineCodeComputer_static` | Does not automatically compute a machine code, instead the machine code is set by calling `set_machine_code()`. |

| `MachineCodeComputer_SystemdDBusInodes_SHA256` | Works on Linux systems and computes a machine code based on information provided by Systemd, DBus and the filesystem. |

The next step is to create and set up a handle class responsible for making requests

to the Cryptolens Web API.

```cpp

using Cryptolens = cryptolens::basic_Cryptolens

                     >;

cryptolens::Error e;

Cryptolens cryptolens_handle(e);

cryptolens_handle.signature_verifier.set_modulus_base64(e, "ABCDEFGHI1234");

cryptolens_handle.signature_verifier.set_exponent_base64(e, "ABCD");

// This line is only for MachineCodeComputer_static and sets the machine code to a static value

cryptolens_handle.machine_code_computer.set_machine_code(e, "289jf2afs3");

```

Here the strings `"ABCDEFGHI1234"` and `"ABCD"` needs to be replaced by your public keys. These

can be found when logged in on Cryptolens.io from the menu in the top-right corner

("Hello !") and then *Security Settings*. The example above corresponds to

the following value on the website

```

ABCDEFGHI1234ABCD

```

In this example we set the machine code used to `"289jf2afs3"`.

Now that the handle class has been set up, we can attempt to activate a license key

```cpp

cryptolens::optional license_key =

  cryptolens_handle.activate

    ( // Object used for reporting if an error occured

      e

    , // Cryptolens Access Token

      "WyI0NjUiLCJBWTBGTlQwZm9WV0FyVnZzMEV1Mm9LOHJmRDZ1SjF0Vk52WTU0VzB2Il0="

    , // Product id

      3646

    , // License Key

      "MPDWY-PQAOW-FKSCH-SGAAU"

    );

if (e) {

  // An error occured. Handle it.

  handle_error(e);

  return 1;

}

```

The `activate` method takes several arguments:

 1. The first argument is used to indicate if an error occured, and if so can provide additional

    information. For more details see the section *Error handling* below.

 1. We need an access token with the `Activate` scope. Access tokens can be created at

    https://app.cryptolens.io/User/AccessToken/.

 1. The third argument is the product id, this can be found at the page for the corresponding product at

    https://app.cryptolens.io/Product.

 1. The fourth argument is a string containing the license key string, in most cases this will be

    input by the user of the application in some application dependent fashion.

After the `activate` call we check if an error occurred by converting `e` to bool. If an error

occured this returns true. If an error occurs, the optional containing the `LicenseKey` object

will be empty, and dereferencing it will result in undefined behaviour.

If no error occurs we can inspect the `LicenseKey` object for information as follows

```cpp

std::cout << "License key for product with id: " << license_key->get_product_id() << std::endl;

if (license_key->check()->has_expired(1234567)) {

  std::cout << "Your subscription has expired." << std::endl;

  return 1;

}

if (license_key->check()->has_feature(1)) { std::cout << "Welcome! Pro version enabled!" << std::endl; }

else                                      { std::cout << "Welcome!" << std::endl; }

```

## Error handling

This section describes in more detail how the library reports when something went wrong.

The library uses an exceptionless design and return values use optionals where they can be missing.

All functions accept as the first argument a reference to `cryptolens::basic_Error` which

is used to indicate when an error has occured as well as for reporting more detailed error information.

Furthermore, if an error occurs, subsequent calls to the library with that error object as first

argument are turned into noops. consider the following code:

```cpp

cryptolens::Error e;

f1(e);

f2(e);

```

If an error occurs during the call to `f1()`, `f2()` will not be performed. This allows writing

several function calls after each other without having to check for errors after

every single call.

## Offline activation

One way to support activation while offline is to initially make one activation request

while connected to the internet and then saving this response. By then reading the saved

response and performing the cryptographic checks it is not necessary to make another

request to the Web API in the future. Thus we can proceed as during online activation

but save the response as a string:

```cpp

cryptolens::Error e;

Cryptolens cryptolens_handle(e);

cryptolens_handle.signature_verifier.set_modulus_base64(e, "ABCDEFGHI1234");

cryptolens_handle.signature_verifier.set_exponent_base64(e, "ABCD");

cryptolens_handle.machine_code_computer.set_machine_code(e, "289jf2afs3");

cryptolens::optional license_key =

  cryptolens_handle.activate

    ( // Object used for reporting if an error occured

      e

    , // Cryptolens Access Token

      "WyI0NjUiLCJBWTBGTlQwZm9WV0FyVnZzMEV1Mm9LOHJmRDZ1SjF0Vk52WTU0VzB2Il0="

    , // Product id

      3646

    , // License Key

      "MPDWY-PQAOW-FKSCH-SGAAU"

    );

if (e) { handle_error(e); return 1; }

std::string s = license_key->to_string();

```

The string *s* can now be saved to a file or similar, in an application dependent manner. In order

to check the license later when offline, load the string *s* and recover the license key as follows:

```cpp

cryptolens::Error e;

Cryptolens cryptolens_handle(e);

cryptolens_handle.signature_verifier.set_modulus_base64(e, "ABCDEFGHI1234");

cryptolens_handle.signature_verifier.set_exponent_base64(e, "ABCD");

cryptolens_handle.machine_code_computer.set_machine_code(e, "289jf2afs3");

cryptolens::optional license_key =

  cryptolens_handle.make_license_key(e, s);

if (e) { handle_error(e); return 1; }

```

A full working version of the code above can be found as *example_offline.cpp* among the examples.

## HTTPS requests outside the library

In some cases it may be needlessly complex to have the Cryptolens library be responsible

for initiating the HTTPS request to the Web API, instead it might be easier to have some

other part of the application that does the HTTPS request, and then only use this library

for making sure that the cryptographic signatures are valid. This can be accomplished

by using the `handle_activate()` function as follows

```cpp

std::string web_api_response; // Some other part of the code creates and populates this object

cryptolens::Error e;

Cryptolens cryptolens_handle(e);

cryptolens_handle.signature_verifier.set_modulus_base64(e, "ABCDEFGHI1234");

cryptolens_handle.signature_verifier.set_exponent_base64(e, "ABCD");

cryptolens_handle.machine_code_computer.set_machine_code(e, "289jf2afs3");

cryptolens::optional license_key =

  cryptolens_handle.make_license_key(e, web_api_response);

if (e) { handle_error(e); return 1; }

```

This code is also applicable to the case where one wants a completly air-gapped offline activation.

In this case the `web_api_response` string would be prepared and delivered one for example an USB

thumb drive, and the application then reads this response from the device and stores it in

the `web_api_response` string.