1 pub mod pb {
2 tonic::include_proto!("grpc.examples.unaryecho");
3 }
4
5 use pb::{EchoRequest, EchoResponse};
6 use tonic::transport::{Certificate, Identity, Server, ServerTlsConfig};
7 use tonic::{Request, Response, Status};
8
9 type EchoResult<T> = Result<Response<T>, Status>;
10
11 #[derive(Default)]
12 pub struct EchoServer {}
13
14 #[tonic::async_trait]
15 impl pb::echo_server::Echo for EchoServer {
unary_echo(&self, request: Request<EchoRequest>) -> EchoResult<EchoResponse>16 async fn unary_echo(&self, request: Request<EchoRequest>) -> EchoResult<EchoResponse> {
17 let certs = request
18 .peer_certs()
19 .expect("Client did not send its certs!");
20
21 println!("Got {} peer certs!", certs.len());
22
23 let message = request.into_inner().message;
24 Ok(Response::new(EchoResponse { message }))
25 }
26 }
27
28 #[tokio::main]
main() -> Result<(), Box<dyn std::error::Error>>29 async fn main() -> Result<(), Box<dyn std::error::Error>> {
30 let data_dir = std::path::PathBuf::from_iter([std::env!("CARGO_MANIFEST_DIR"), "data"]);
31 let cert = std::fs::read_to_string(data_dir.join("tls/server.pem"))?;
32 let key = std::fs::read_to_string(data_dir.join("tls/server.key"))?;
33 let server_identity = Identity::from_pem(cert, key);
34
35 let client_ca_cert = std::fs::read_to_string(data_dir.join("tls/client_ca.pem"))?;
36 let client_ca_cert = Certificate::from_pem(client_ca_cert);
37
38 let addr = "[::1]:50051".parse().unwrap();
39 let server = EchoServer::default();
40
41 let tls = ServerTlsConfig::new()
42 .identity(server_identity)
43 .client_ca_root(client_ca_cert);
44
45 Server::builder()
46 .tls_config(tls)?
47 .add_service(pb::echo_server::EchoServer::new(server))
48 .serve(addr)
49 .await?;
50
51 Ok(())
52 }
53