gRPC 拦截器简要说明及示例

最新推荐文章于 2024-06-11 10:59:30 发布
最新推荐文章于 2024-06-11 10:59:30 发布
阅读量521 收藏 1
点赞数
分类专栏: RPC技术研究
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/hero_java/article/details/118060674
版权

一、官方文档说明

Interceptor

gRPC provides simple APIs to implement and install interceptors on a per ClientConn/Server basis. Interceptor intercepts the execution of each RPC call. Users can use interceptors to do logging, authentication/authorization, metrics collection, and many other functionality that can be shared across RPCs.

Explanation

In gRPC, interceptors can be categorized into two kinds in terms of the type of RPC calls they intercept. The first one is the unary interceptor, which intercepts unary RPC calls. And the other is the stream interceptor which deals with streaming RPC calls. See here for explanation about unary RPCs and streaming RPCs. Each of client and server has their own types of unary and stream interceptors. Thus, there are in total four different types of interceptors in gRPC.

Client-side

Unary Interceptor

UnaryClientInterceptor is the type for client-side unary interceptor. It is essentially a function type with signature: func(ctx context.Context, method string, req, reply interface{}, cc *ClientConn, invoker UnaryInvoker, opts ...CallOption) error. An implementation of a unary interceptor can usually be divided into three parts: pre-processing, invoking RPC method, and post-processing.

For pre-processing, users can get info about the current RPC call by examining the args passed in, such as RPC context, method string, request to be sent, and CallOptions configured. With the info, users can even modify the RPC call. For instance, in the example, we examine the list of CallOptions and see if call credential has been configured. If not, configure it to use oauth2 with token "some-secret-token" as fallback. In our example, we intentionally omit configuring the per RPC credential to resort to fallback.

After pre-processing is done, use can invoke the RPC call by calling the invoker.

Once the invoker returns the reply and error, user can do post-processing of the RPC call. Usually, it's about dealing with the returned reply and error. In the example, we log the RPC timing and error info.

To install a unary interceptor on a ClientConn, configure Dial with DialOption WithUnaryInterceptor.

Stream Interceptor

StreamClientInterceptor is the type for client-side stream interceptor. It is a function type with signature: func(ctx context.Context, desc *StreamDesc, cc *ClientConn, method string, streamer Streamer, opts ...CallOption) (ClientStream, error). An implementation of a stream interceptor usually include pre-processing, and stream operation interception.

For pre-processing, it's similar to unary interceptor.

However, rather than doing the RPC method invocation and post-processing afterwards, stream interceptor intercepts the users' operation on the stream. First, the interceptor calls the passed-in streamer to get a ClientStream, and then wraps around the ClientStream and overloading its methods with intercepting logic. Finally, interceptors returns the wrapped ClientStream to user to operate on.

In the example, we define a new struct wrappedStream, which is embedded with a ClientStream. Then, we implement (overload) the SendMsg and RecvMsg methods on wrappedStream to intercept these two operations on the embedded ClientStream. In the example, we log the message type info and time info for interception purpose.

To install the stream interceptor for a ClientConn, configure Dial with DialOption WithStreamInterceptor.

Server-side

Server side interceptor is similar to client side, though with slightly different provided info.

Unary Interceptor

UnaryServerInterceptor is the type for server-side unary interceptor. It is a function type with signature: func(ctx context.Context, req interface{}, info *UnaryServerInfo, handler UnaryHandler) (resp interface{}, err error).

Refer to client-side unary interceptor section for detailed implementation explanation.

To install the unary interceptor for a Server, configure NewServer with ServerOption UnaryInterceptor.

Stream Interceptor

StreamServerInterceptor is the type for server-side stream interceptor. It is a function type with signature: func(srv interface{}, ss ServerStream, info *StreamServerInfo, handler StreamHandler) error.

Refer to client-side stream interceptor section for detailed implementation explanation.

To install the stream interceptor for a Server, configure NewServer with ServerOption StreamInterceptor.

二、示例

Server端:

package main

import (
	"context"
	"flag"
	"fmt"
	"happy-go/microservice/grpc/data"
	pb "happy-go/microservice/grpc/features/proto/echo"
	"io"
	"log"
	"net"
	"strings"
	"time"

	"google.golang.org/grpc/credentials"

	"google.golang.org/grpc/metadata"

	"google.golang.org/grpc"

	"google.golang.org/grpc/codes"
	"google.golang.org/grpc/status"
)

var (
	port = flag.Int("port", 50051, "the port to serve on")

	errMissingMetadata = status.Errorf(codes.InvalidArgument, "missing metadata")
	errInvalidToken    = status.Errorf(codes.Unauthenticated, "invalid token")
)

//logger is to mock a sophisticated logging system.To simplify the example,we just print out the content.
func logger(format string, a ...interface{}) {
	fmt.Printf("LOG:\t"+format+"\n", a...)
}

type server struct {
	pb.UnimplementedEchoServer
}

func (s *server) UnaryEcho(ctx context.Context, in *pb.EchoRequest) (*pb.EchoResponse, error) {
	fmt.Printf("unary echoing message %q\n", in.Message)
	return &pb.EchoResponse{Message: in.Message}, nil
}

func (s *server) BidirectionalStreamingEcho(stream pb.Echo_BidirectionalStreamingEchoServer) error {
	for {
		in, err := stream.Recv()
		if err != nil {
			if err == io.EOF {
				return nil
			}
			fmt.Printf("server:error receiving from stream: %v\n", err)
			return err
		}
		fmt.Printf("bidi echoing message %q\n", in.Message)
		stream.Send(&pb.EchoResponse{Message: in.Message})
	}
}

// valid validates the authorization
func valid(authorization []string) bool {
	if len(authorization) < 1 {
		return false
	}
	token := strings.TrimPrefix(authorization[0], "Bearer ")
	//Perform the token validation here.For the sake of this example,the code
	//here forgoes any of usual OAuth2 token validation and instead checks for
	// for token matching an arbitrary string.
	return token == "some-secret-token"
}

func unaryInterceptor(ctx context.Context, req interface{}, info *grpc.UnaryServerInfo, handler grpc.UnaryHandler) (interface{}, error) {
	// authentication (token verification)
	md, ok := metadata.FromIncomingContext(ctx)
	if !ok {
		return nil, errInvalidToken
	}
	if !valid(md["authorization"]) {
		return nil, errInvalidToken
	}
	m, err := handler(ctx, req)
	if err != nil {
		logger("RPC failed with error %v", err)
	}
	return m, err
}

// wrappedStream wraps around the embedded grpc.ServerStream,and intercepts the RecvMsg and SendMsg method call.
// SendMsg method call.
type wrappedStream struct {
	grpc.ServerStream
}

func (w *wrappedStream) RecvMsg(m interface{}) error {
	logger("Receive a message (Type: %T) at %s", m, time.Now().Format(time.RFC3339))
	return w.ServerStream.RecvMsg(m)
}

func (w *wrappedStream) SendMsg(m interface{}) error {
	logger("Send a message (Type: %T) at %v", m, time.Now().Format(time.RFC3339))
	return w.ServerStream.SendMsg(m)
}

func newWrappedStream(s grpc.ServerStream) grpc.ServerStream {
	return &wrappedStream{s}
}

func streamInterceptor(srv interface{}, ss grpc.ServerStream, info *grpc.StreamServerInfo, handler grpc.StreamHandler) error {
	// authentication (token verification)
	md, ok := metadata.FromIncomingContext(ss.Context())
	if !ok {
		return errMissingMetadata
	}
	if !valid(md["authorization"]) {
		return errInvalidToken
	}

	err := handler(srv, newWrappedStream(ss))
	if err != nil {
		logger("RPC failed with error %v", err)
	}
	return err
}

func main() {
	flag.Parse()

	lis, err := net.Listen("tcp", fmt.Sprintf(":%d", *port))
	if err != nil {
		log.Fatalf("failed to listen: %v", err)
	}

	// Create tls based credential
	creds, err := credentials.NewServerTLSFromFile(data.Path("x509/server_cert.pem"), data.Path("x509/server_key.pem"))
	if err != nil {
		log.Fatalf("failed to create credentials: %v", err)
	}

	s := grpc.NewServer(grpc.Creds(creds), grpc.UnaryInterceptor(unaryInterceptor), grpc.StreamInterceptor(streamInterceptor))

	// Register EchoServer on the server.
	pb.RegisterEchoServer(s, &server{})

	if err := s.Serve(lis); err != nil {
		log.Fatalf("failed to server: %v", err)
	}
}

client端:

package main

import (
	"context"
	"flag"
	"fmt"
	"happy-go/microservice/grpc/data"
	"io"
	"log"
	"time"

	"google.golang.org/grpc/credentials"

	"golang.org/x/oauth2"
	"google.golang.org/grpc/credentials/oauth"

	"google.golang.org/grpc"

	ecpb "happy-go/microservice/grpc/features/proto/echo"
)

var addr = flag.String("addr", "localhost:50051", "the address to connect to")

const fallbackToken = "some-secret-token"

// logger is to mock a sophisticated logging system.To simplify the example,we just print out the content
func logger(format string, a ...interface{}) {
	fmt.Printf("LOG:\t"+format+"\n", a...)
}

func unaryInterceptor(ctx context.Context, method string, req, reply interface{}, cc *grpc.ClientConn, invoker grpc.UnaryInvoker, opts ...grpc.CallOption) error {
	var credsConfigured bool
	for _, o := range opts {
		_, ok := o.(grpc.PerRPCCredsCallOption)
		if ok {
			credsConfigured = true
			break
		}
	}
	if !credsConfigured {
		opts = append(opts, grpc.PerRPCCredentials(oauth.NewOauthAccess(&oauth2.Token{
			AccessToken: fallbackToken,
		})))
	}
	start := time.Now()
	err := invoker(ctx, method, req, reply, cc, opts...)
	end := time.Now()
	logger("RPC: %s,start time: %s,end time: %s,err: %v", method, start.Format("Basic"), end.Format(time.RFC3339), err)
	return err
}

func streamInterceptor(ctx context.Context, desc *grpc.StreamDesc, cc *grpc.ClientConn, method string, streamer grpc.Streamer, opts ...grpc.CallOption) (grpc.ClientStream, error) {
	var credsConfigured bool
	for _, o := range opts {
		_, ok := o.(*grpc.PerRPCCredsCallOption)
		if ok {
			credsConfigured = true
			break
		}
	}
	if !credsConfigured {
		opts = append(opts, grpc.PerRPCCredentials(oauth.NewOauthAccess(&oauth2.Token{
			AccessToken: fallbackToken,
		})))
	}
	s, err := streamer(ctx, desc, cc, method, opts...)
	if err != nil {
		return nil, err
	}
	return newWrappedStream(s), nil
}

//UnaryEcho(ctx context.Context, in *EchoRequest, opts ...grpc.CallOption) (*EchoResponse, error)
func callUnaryEcho(client ecpb.EchoClient, message string) {
	ctx, cancel := context.WithTimeout(context.Background(), 10*time.Second)
	defer cancel()

	resp, err := client.UnaryEcho(ctx, &ecpb.EchoRequest{Message: message})
	if err != nil {
		log.Fatalf("client.UnaryEcho(_) = _,%v: ", err)
	}
	fmt.Println("UnaryEcho: ", resp.Message)
}

//BidirectionalStreamingEcho(ctx context.Context, opts ...grpc.CallOption) (Echo_BidirectionalStreamingEchoClient, error)
func callBidiStreamingEcho(client ecpb.EchoClient) {
	ctx, cancel := context.WithTimeout(context.Background(), 10*time.Second)
	defer cancel()

	c, err := client.BidirectionalStreamingEcho(ctx)
	if err != nil {
		return
	}
	for i := 0; i < 5; i++ {
		if err := c.Send(&ecpb.EchoRequest{Message: fmt.Sprintf("Request %d", i+1)}); err != nil {
			log.Fatalf("failed to send request due to error: %v", err)
		}
	}
	c.CloseSend()
	for {
		resp, err := c.Recv()
		if err == io.EOF {
			break
		}
		if err != nil {
			log.Fatalf("failed to receive response due to error: %v", err)
		}
		fmt.Println("BidiStreaming Echo: ", resp.Message)
	}
}

// wrappedStream wraps around the embedded grpc.ClientStream,and intercepts the RecvMsg and
// SendMsg method call.
type wrappedStream struct {
	grpc.ClientStream
}

func newWrappedStream(s grpc.ClientStream) grpc.ClientStream {
	return &wrappedStream{s}
}
func (w *wrappedStream) RecvMsg(m interface{}) error {
	logger("Receive a message (Type: %T) at %v", m, time.Now().Format(time.RFC3339))
	return w.ClientStream.RecvMsg(m)
}

func (w *wrappedStream) SendMsg(m interface{}) error {
	logger("Send a message (Type: %T) at %v", m, time.Now().Format(time.RFC3339))
	return w.ClientStream.SendMsg(m)
}
func main() {
	flag.Parse()

	// Create tls based credential
	creds, err := credentials.NewClientTLSFromFile(data.Path("x509/ca_cert.pem"), "x.test.example.com")
	if err != nil {
		log.Fatalf("failed to create credentials: %v", err)
	}

	// set up a connection to the server
	conn, err := grpc.Dial(*addr, grpc.WithTransportCredentials(creds), grpc.WithUnaryInterceptor(unaryInterceptor), grpc.WithStreamInterceptor(streamInterceptor), grpc.WithBlock())
	if err != nil {
		log.Fatalf("did not connect: %v", err)
	}
	defer conn.Close()

	// Make a echo client and send RPCs.
	rgc := ecpb.NewEchoClient(conn)
	callUnaryEcho(rgc, "hello world")
	callBidiStreamingEcho(rgc)
}

 

DreamCatcher
关注
  • 0
    点赞
  • 1
    收藏
    觉得还不错? 一键收藏
  • 打赏
    打赏
  • 0
    评论
专栏目录
在golang grpc中如何使用拦截器
coffiasd的博客
04-07 693
在我认识的人当中大多数对中间件都有深刻的认知,但是对拦截器却知之甚少。接下来让我们剖析一下拦截器,来学习下怎么写和使用拦截器,并且为什么要这么做。 gRPC是一项伟大的技术,我把之前写的许多API替换成了这种方式。我发现开发gRPC接口比基于HTTP的接口要更加容易。我还是建议大家花点时间去学习下这项技术。 这里已经是这个系列的第2部分了,但是你并不需要一些预习的知识,甚至不需要去看第1部分和1.1部分. - 1 - 1.1 - 2(我们在这里) - 3 gRPC的数据流 在普通的HTTP服务中,我们...
ASP.NET Core 3.0 gRPC拦截器的使用
10-15
ASP.NET Core 3.0 gRPC拦截器的使用是一个重要的概念,它允许开发者在gRPC服务调用的过程中插入自定义逻辑,比如日志记录、授权验证、性能监控等。拦截器是面向切面编程(AOP)的一种实现,类似于ASP.NET MVC中的...
带入gRPCUnary and Stream interceptor
weixin_34080571的博客
10-10 823
带入gRPCUnary and Stream interceptor 原文地址:带入gRPCUnary and Stream interceptor项目地址:https://github.com/EDDYCJY/go... 前言 我想在每个 RPC 方法的前或后做某些事情,怎么做? 本章节将要介绍的拦截器(interceptor),就...
Golang——gRPC认证和拦截器
最新发布
weixin_57023347的博客
06-11 970
TLS(Transport Layer Security,安全传输层),TLS是建立在传输层TCP协议之上的协议,服务于应用层,它的前身是SSL(Secure Socket Layer,安全套接字层),它实现了将应用层的报文进行加密后再交由TCP进行传输的功能。Token认证是一种基于Token的身份验证方法,用于在客户端和服务器之间进行身份验证。主要概念Token的含义:Token(令牌)是服务端生成的一串字符串,作为客户端进行请求的一个标识。Token的组成。
grpc 拦截器 python_带入gRPCUnary and Stream interceptor
weixin_35725862的博客
02-01 403
前言我想在每个 RPC 方法的前或后做某些事情,怎么做?本章节将要介绍的拦截器(interceptor),就能帮你在合适的地方实现这些功能 ????有几种方法在 gRPC 中,大类可分为两种 RPC 方法,与拦截器的对应关系是:普通方法:一元拦截器(grpc.UnaryInterceptor)流方法:流拦截器(grpc.StreamInterceptor)看一看grpc.UnaryInterceptor...
gRPC拦截器
qq_46457076的博客
02-25 683
关于 gRPC拦截器使用介绍!
grpc拦截器实践
Man_ge的博客
12-08 317
grpc提供了拦截器,可以使用拦截器开发grpc中间件,实现各种中间功能。 比如: 日志采集,认证 等 Server端 核心方法: streamInterceptor Client端 核心方法: unaryInterceptor cc.GetState() 以下方法可以获取客户端地址 完整实例代码地址: https://github.com/mangenotwork/man/tree/master/core/grpc_1
grpc-demo:java版grpc 示例,使用拦截器实现了token认证
05-16
【标题】:“grpc-demo:java版grpc 示例,使用拦截器实现了token认证” 在这个项目中,我们探讨的是如何在Java中利用gRPC框架实现基于JWT(JSON Web Token)的token认证。gRPC是一种高性能、开源的通用RPC框架,它...
grpc-interceptor:简化的 Python gRPC 拦截器
05-31
概括 简化的 Python gRPC 拦截器。 Python grpc包提供了服务...定义您自己的拦截器(我们可以使用ExceptionToStatusInterceptor作为示例): from grpc_interceptor import ServerInterceptor from grpc_interceptor
grpc-jaeger:Go实现的gRPC拦截器
05-12
grpc-jaeger grpc-jaeger是Go实施的gRPC拦截器,它基于opentracing和uber / jaeger。 您可以使用它来构建分布式gRPC跟踪系统。依存关系github.com/opentracing/opentracing-gogithub.com/uber/jaeger-client-go用法...
grpc 开发进阶 - 使用拦截器 interceptor
热门推荐
IceberGu的博客
04-28 1万+
现在网上大部分都是 grpc 相关的介绍,真正涉及到 grpc 的配置使用的文章还是比较少的 所以本系列着重介绍 grpc 开发时可以能会用到的一些配置 拦截器在作用于每一个 RPC 调用,通常用来做日志,认证,metric 等等 interfactor 分为两种 unary interceptor 拦截 unary(一元) RPC 调用 stream interceptor 处理 stre...
python grpc 拦截器使用记录
qq_42031243的博客
12-08 673
grpc 拦截器(同步 异步)使用记录
gRPC(六)进阶:拦截器 interceptor
林钟一的博客
11-07 3514
在常规的 HTTP 服务器中,我们可以设置有一个中间件将我们的处理程序包装在服务器上。此中间件可用于在实际提供正确内容之前执行服务器想要执行的任何操作,它可以是身份验证或日志记录或任​​何东西。中间件:中间件供系统软件和应用软件之间连接、便于软件各部件之间的沟通的计算机软件,相当于不同技术、工具和数据库之间的桥梁,例如他可以记录响应时长、记录请求和响应数据日志,身份验证等。中间件可以在拦截到发送给 handler 的请求,且可以拦截 handler 返回给客户端的响应。
grpc拦截器的使用
lff的博客
02-13 1445
gRPC作为通用RPC框架,内置了拦截器功能。包括服务器端的拦截器和客户端拦截器,使用上大同小异。主要作用是在rpc调用的前后进行额外处理。 拦截器在很多场景中使用,比如调用接口前验证用户是否登录,比如接口中判断用户的useragent做一些反爬的策略等等,大量的情况就是把请求拦截一下,做一下接口的预处理,我们不可能在每个接口中都写一遍,需要做统一的拦截器。 实现简单的拦截器 1)服务端:grpc.UnaryInterceptor(interceptor) interceptor是自定义的拦截器函数
从源码透析gRPC调用原理
稻草人技术博客
04-08 971
gRPC是如何work的,清楚的理解其调用逻辑,对于我们更好、更深入的使用gRPC很有必要。因此我们必须深度解析下gRPC的实现逻辑,在本文中,将分别从客户端和服务端来说明gRPC的实现原理。 准备条件 本文将以gRPC Github上helloword代码作为一个完整的项目示例作为介绍的基础,在展开分析之前,简单介绍下作为gRPC的文件结构: greeter_client greeter_ser...
Interceptor拦截器 -- gRPC生态里的中间件
kevin_tech的博客,微信搜「网管叨bi叨」
04-25 2108
什么是拦截器gRPC拦截器(interceptor)类似各种Web框架里的请求中间件,请求中间件大家都知道是利用装饰器模式对最终处理请求的handler程序进行装饰,这样中间件就可以在处...
grpc进阶篇之retry拦截器
djqueen的博客
08-30 2532
前言 之前还在学校的时候,写过一篇go gRPC初体验,算是初步预习了一下grpc的用法,知道了如何使用grpc实现简单的rpc调用,当时写了一个demo,跑通了之后就觉得,应该够用了,然而到了公司之后才发现,grpc,远不止于此。。。于是我决定好好总结一下grpc的一些进阶知识,结合公司项目里的实际用法,分享给大家,帮助初学者们更好的掌握grpc。本篇,就先介绍一下grpc的retry拦截器。 为什么要retry retry很好理解,就是重试,为什么需要重试?首先,grpc常用于移动端和跨机房调用的
go grpc 设置返回头信息_跟我学 gRPC—6.Unary and Stream interceptor
weixin_39703561的博客
12-27 201
Go语言中文网,致力于每日分享编码、开源等知识,欢迎关注我,会有意想不到的收获!项目地址:https://github.com/EDDYCJY/go-grpc-example前言我想在每个 RPC 方法的前或后做某些事情,怎么做?本章节将要介绍的拦截器(interceptor),就能帮你在合适的地方实现这些功能有几种方法在 gRPC 中,大类可分为两种 RPC 方法,与拦截器的对应关系是:普通方法...
java grpc 拦截器获取参数值
05-19
gRPC 中,可以通过拦截器来实现请求和响应的拦截和处理。在拦截器中,可以通过 `ServerCall` 对象获取请求参数值。 假设你有一个简单的 gRPC 服务,其中包含一个 `SayHello` 方法: ```proto service ...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包

打赏作者

DreamCatcher

你的鼓励将是我创作的最大动力

¥1 ¥2 ¥4 ¥6 ¥10 ¥20
扫码支付:¥1
获取中
扫码支付

您的余额不足,请更换扫码支付或充值

打赏作者

实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值