package azure-cosmos-db

  1. Overview
  2. Docs

Source file app_config.ml

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
(*

Docs:
https://learn.microsoft.com/en-us/azure/azure-app-configuration/rest-api-authentication-hmac
https://learn.microsoft.com/en-us/azure/azure-app-configuration/rest-api-key-value

*)

let content_hash body =
  let hash = Cryptokit.Hash.sha256 () in
  hash#add_string body;
  Base64.encode_exn hash#result

let signature secret string_to_sign =
  let key = Base64.decode_exn secret in
  let hash = Cryptokit.MAC.hmac_sha256 key in
  hash#add_string string_to_sign;
  Base64.encode_exn hash#result

let date_header date header =
  Cohttp.Header.add header "x-ms-date" (Utilities.Ms_time.x_ms_date date)

let content_hash_header content header =
  let content_hash = content_hash content in
  Cohttp.Header.add header "x-ms-content-sha256" content_hash

let authorization_header credential signed_headers signature header =
  let s =
    Printf.sprintf "HMAC-SHA256 Credential=%s&SignedHeaders=%s&Signature=%s"
      credential signed_headers signature
  in
  Cohttp.Header.add header "Authorization" s

let headers date body credential signed_headers signature =
  Cohttp.Header.init () |> date_header date |> content_hash_header body
  |> authorization_header credential signed_headers signature

let signed_headers = "x-ms-date;host;x-ms-content-sha256"

let string_to_sign verb uri date host content_hash =
  let verb_of_string = Utilities.Verb.string_of_verb verb in
  let path_and_query = Uri.path_and_query uri in
  let date_string = Utilities.Ms_time.x_ms_date date in
  Printf.sprintf "%s\n%s\n%s;%s;%s" verb_of_string path_and_query date_string
    host content_hash

let headers verb host uri credential secret () =
  let now = Utilities.Ms_time.create_now () in
  let body = "" in
  let content_hash = content_hash body in
  let string_to_sign = string_to_sign verb uri now host content_hash in
  let signature = signature secret string_to_sign in
  let headers = headers now "" credential signed_headers signature in
  headers

let uri host =
  Uri.make ~scheme:"https" ~host ~path:"kv"
    ~query:[ ("api-version", [ "1.0" ]) ]
    ()

let request headers uri = Cohttp_lwt_unix.Client.get ~headers uri

let call host credential secret () =
  let uri = uri host in
  let verb = Utilities.Verb.Get in
  let headers = headers verb host uri credential secret () in
  let%lwt reponse, body = request headers uri in
  let code = reponse |> Cohttp.Response.status |> Cohttp.Code.code_of_status in
  let%lwt body = Cohttp_lwt.Body.to_string body in
  Lwt.return (code, body)

let call_json host credential secret () =
  let%lwt code, body = call host credential secret () in
  let result = Json_j.kv_result_of_string body in
  Lwt.return (code, result)

module Json = Json_j
OCaml

Innovation. Community. Security.

GitHub Discord Twitter Peertube RSS
About
Changelog Releases Industrial Users Academic Users Why OCaml
Ecosystem
Packages Community Events OCaml Planet Jobs
Resources
Install OCaml Get Started Platform Tools Language Manual Standard Library API Books Exercises Papers OCaml Playground Logo
Policies
Carbon Footprint Governance Privacy Code of Conduct