merge

Author: alshabalin

.gitignore

@@ -1 +1,4 @@
 .idea
+tmp/
+vendor/
+composer.lock

CHANGELOG.md

@@ -1,7 +1,15 @@
 # CHANGELOG
 
 
-## 1.4.2 (2022-01-13)
+## 1.4.3 (2023-02-15)
+
+### Features
+
+- anonymous authentication method
+- insecure grpc connection
+
+
+## 1.4.2 (2023-01-13)
 
 ### Bugs
 

README.md

@@ -32,6 +32,7 @@ YDB supports the following authentication methods:
 - JWT + private key
 - JWT + JSON file
 - Metadata URL
+- Anonymous
 
 ## OAuth token
 
@@ -160,6 +161,34 @@ $ydb = new Ydb($config);
 
 ```
 
+## Anonymous
+
+```php
+<?php
+
+use YdbPlatform\Ydb\Ydb;
+
+$config = [
+
+    // Database path
+    'database'    => '/local',
+
+    // Database endpoint
+    'endpoint'    => 'localhost:2136',
+
+    // Auto discovery (dedicated server only)
+    'discovery'   => false,
+
+    // IAM config
+    'iam_config'  => [
+        'anonymous' => true,
+        'insecure' => true,
+    ],
+];
+
+$ydb = new Ydb($config);
+
+```
 
 # Usage
 

composer.json

@@ -18,7 +18,7 @@
         "grpc/grpc": "^1.35",
         "lcobucci/jwt": "~4.1.5",
         "phpseclib/phpseclib": "^2.0|^3.0",
-        "psr/log": "~1.0"
+        "psr/log": "^1|^2|^3"
     },
     "autoload": {
         "psr-4": {

src/Iam.php

@@ -10,6 +10,8 @@
 use YdbPlatform\Ydb\Jwt\Signer\Sha256;
 use YdbPlatform\Ydb\Contracts\IamTokenContract;
 
+use function filter_var;
+
 class Iam implements IamTokenContract
 {
     use Traits\LoggerTrait;
@@ -48,7 +50,7 @@ public function __construct(array $config = [], LoggerInterface $logger = null)
     {
         if ($config)
         {
-            $this->config = $config;
+            $this->config = $this->parseConfig($config);
         }
 
         $this->logger = $logger;
@@ -95,7 +97,6 @@ public function newToken()
         else if ($this->config('private_key'))
         {
             $token = $this->getJwtToken();
-
             $request_data = [
                 'jwt' => $token->toString(),
             ];
@@ -159,6 +160,11 @@ public function newToken()
      */
     public function getCredentials()
     {
+        if ($this->config('insecure'))
+        {
+            return ChannelCredentials::createInsecure();
+        }
+
         $root_pem_file = $this->config('root_cert_file');
 
         if ($root_pem_file && is_file($root_pem_file))
@@ -169,28 +175,72 @@ public function getCredentials()
         return ChannelCredentials::createSsl($pem ?? null);
     }
 
+    /**
+     * @param array $config
+     * @return array
+     */
+    protected function parseConfig(array $config)
+    {
+        $parsedConfig = [];
+
+        $stringParams = [
+            'temp_dir',
+            'root_cert_file',
+            'oauth_token',
+            'key_id',
+            'service_account_id',
+            'private_key_file',
+            'service_file',
+        ];
+
+        foreach ($stringParams as $param)
+        {
+            $parsedConfig[$param] = (string)($config[$param] ?? '');
+        }
+
+        $boolParams = [
+            'use_metadata',
+            'anonymous',
+            'insecure',
+        ];
+
+        foreach ($boolParams as $param)
+        {
+            $parsedConfig[$param] = (
+                isset($config[$param])
+                && filter_var($config[$param], \FILTER_VALIDATE_BOOLEAN)
+            );
+        }
+
+        return $parsedConfig;
+    }
+
     /**
      * @return void
      * @throws Exception
      */
     protected function initConfig()
     {
-        if (empty($this->config['temp_dir']))
+        if (!$this->config('temp_dir'))
         {
             $this->config['temp_dir'] = sys_get_temp_dir();
         }
 
-        if (!empty($this->config['use_metadata']))
+        if ($this->config('anonymous'))
+        {
+            $this->logger()->info('YDB: Authentication method: Anonymous');
+        }
+        else if ($this->config('use_metadata'))
         {
             $this->logger()->info('YDB: Authentication method: Metadata URL');
         }
-        else if (!empty($this->config['service_file']))
+        else if ($serviceFile = $this->config('service_file'))
         {
-            if (is_file($this->config['service_file']))
+            if (is_file($serviceFile))
             {
                 $this->logger()->info('YDB: Authentication method: SA JSON file');
 
-                $service = json_decode(file_get_contents($this->config['service_file']));
+                $service = json_decode(file_get_contents($serviceFile));
 
                 if (is_object($service)
                     && isset($service->id)
@@ -203,28 +253,28 @@ protected function initConfig()
                 }
                 else
                 {
-                    throw new Exception('Service file [' . $this->config['service_file'] . '] is broken.');
+                    throw new Exception('Service file [' . $serviceFile . '] is broken.');
                 }
             }
             else
             {
-                throw new Exception('Service file [' . $this->config['service_file'] . '] is missing.');
+                throw new Exception('Service file [' . $serviceFile . '] is missing.');
             }
         }
-        else if (!empty($this->config['private_key_file']))
+        else if ($privateKeyFile = $this->config('private_key_file'))
         {
             $this->logger()->info('YDB: Authentication method: Private key');
 
-            if (is_file($this->config['private_key_file']))
+            if (is_file($privateKeyFile))
             {
-                $this->config['private_key'] = file_get_contents($this->config['private_key_file']);
+                $this->config['private_key'] = file_get_contents($privateKeyFile);
             }
             else
             {
-                throw new Exception('Private key [' . $this->config['private_key_file'] . '] is missing.');
+                throw new Exception('Private key [' . $privateKeyFile . '] is missing.');
             }
         }
-        else if (!empty($this->config['oauth_token']))
+        else if ($this->config('oauth_token'))
         {
             $this->logger()->info('YDB: Authentication method: OAuth token');
         }

src/Ydb.php

@@ -102,16 +102,19 @@ public function database()
         return $this->database;
     }
 
-    /**
-     * @return array
-     */
-    public function meta()
+    public function meta(): array
     {
-        return [
-            'x-ydb-auth-ticket' => [$this->iam()->token()],
+        $meta = [
             'x-ydb-database' => [$this->database],
             'x-ydb-sdk-build-info' => ['ydb-php-sdk/' . static::VERSION],
         ];
+
+        if (!$this->iam()->config('anonymous'))
+        {
+            $meta['x-ydb-auth-ticket'] = [$this->iam()->token()];
+        }
+
+        return $meta;
     }
 
     /**