closes #279

afurer · afurer · commit 1a389994d99e · 2022-01-23T13:43:57.000+02:00
diff --git a/grpc-spring-boot-starter-demo/src/pureNettyTest/java/org/lognet/springboot/grpc/PureNettyTransportConfigTest.java b/grpc-spring-boot-starter-demo/src/pureNettyTest/java/org/lognet/springboot/grpc/PureNettyTransportConfigTest.java
@@ -1,7 +1,11 @@
 package org.lognet.springboot.grpc;
 
+import io.grpc.ManagedChannelBuilder;
 import io.grpc.ServerBuilder;
 import io.grpc.examples.GreeterGrpc;
+import io.grpc.netty.GrpcSslContexts;
+import io.grpc.netty.NettyChannelBuilder;
+import io.netty.handler.ssl.SslContext;
 import org.hamcrest.Matchers;
 import org.junit.BeforeClass;
 import org.junit.runner.RunWith;
@@ -15,8 +19,12 @@
 import org.springframework.context.annotation.Configuration;
 import org.springframework.context.annotation.Import;
 import org.springframework.context.event.EventListener;
+import org.springframework.core.io.Resource;
+import org.springframework.test.context.ActiveProfiles;
 import org.springframework.test.context.junit4.SpringRunner;
 
+import javax.validation.Valid;
+import java.io.IOException;
 import java.net.SocketAddress;
 import java.util.List;
 
@@ -29,7 +37,6 @@
         properties = {
                 "grpc.netty-server.additional-listen-addresses[0]=localhost:0",
                 "grpc.netty-server.primary-listen-address=localhost:0"
-
 }
 )
 @Import(PureNettyTransportConfigTest.TestConfig.class)
@@ -55,6 +62,13 @@ public GRpcServerBuilderConfigurer customGrpcServerBuilderConfigurer() {
     @Autowired
     private GRpcServerBuilderConfigurer configurer;
 
+    @Override
+    protected void setupTransportSecurity(ManagedChannelBuilder<?> channelBuilder, Resource certChain) throws IOException {
+        SslContext sslContext = GrpcSslContexts.forClient().trustManager(certChain.getInputStream()).build();
+        ((NettyChannelBuilder)channelBuilder)
+                .useTransportSecurity()
+                .sslContext(sslContext);
+    }
 
     @BeforeClass
     public static void before()  {
diff --git a/grpc-spring-boot-starter-demo/src/pureNettyTest/resources/application.yml b/grpc-spring-boot-starter-demo/src/pureNettyTest/resources/application.yml
@@ -8,7 +8,10 @@ management:
       base-path: "/"
       exposure:
         include: "*"
-
+grpc:
+  security:
+    cert-chain: classpath:cert/server-cert.pem
+    private-key: classpath:cert/server-key.pem
 
 logging:
   level:
diff --git a/grpc-spring-boot-starter-demo/src/test/java/org/lognet/springboot/grpc/GrpcServerTestBase.java b/grpc-spring-boot-starter-demo/src/test/java/org/lognet/springboot/grpc/GrpcServerTestBase.java
@@ -9,6 +9,7 @@
 import io.grpc.inprocess.InProcessChannelBuilder;
 import io.grpc.netty.shaded.io.grpc.netty.GrpcSslContexts;
 import io.grpc.netty.shaded.io.grpc.netty.NettyChannelBuilder;
+import io.grpc.netty.shaded.io.netty.handler.ssl.SslContext;
 import io.grpc.reflection.v1alpha.ServerReflectionGrpc;
 import org.junit.After;
 import org.junit.Before;
@@ -79,9 +80,9 @@ public   void setupChannels() throws IOException {
                     .map(GRpcServerProperties.SecurityProperties::getCertChain)
                     .orElse(null);
             if(null!= certChain){
-                ((NettyChannelBuilder)channelBuilder)
-                        .useTransportSecurity()
-                        .sslContext(GrpcSslContexts.forClient().trustManager(certChain.getInputStream()).build());
+
+                setupTransportSecurity(channelBuilder,certChain);
+
             }else{
                 channelBuilder.usePlaintext();
             }
@@ -99,6 +100,12 @@ public   void setupChannels() throws IOException {
         selectedChanel = getChannel();
     }
 
+    protected void setupTransportSecurity(ManagedChannelBuilder<?> channelBuilder, Resource certChain) throws IOException {
+        SslContext sslContext = GrpcSslContexts.forClient().trustManager(certChain.getInputStream()).build();
+        ((NettyChannelBuilder)channelBuilder)
+                .useTransportSecurity()
+                .sslContext(sslContext);
+    }
     protected  Channel getChannel(){
        return Optional.ofNullable(channel).orElse(inProcChannel);
     }
diff --git a/grpc-spring-boot-starter/build.gradle b/grpc-spring-boot-starter/build.gradle
@@ -270,7 +270,7 @@ dependencies {
     compile "io.grpc:grpc-netty-shaded:${grpcVersion}"
     compile "io.grpc:grpc-services:${grpcVersion}"
     compile(group: 'org.springframework.boot', name: 'spring-boot-starter')
-    compile 'io.netty:netty-tcnative-boringssl-static:2.0.25.Final'
+    compile 'io.netty:netty-tcnative-boringssl-static:2.0.47.Final'
 
     annotationProcessor("org.springframework.boot:spring-boot-configuration-processor")
 
