1 pub mod pb { 2 tonic::include_proto!("grpc.examples.unaryecho"); 3 } 4 5 use pb::{EchoRequest, EchoResponse}; 6 use tonic::transport::{Certificate, Identity, Server, ServerTlsConfig}; 7 use tonic::{Request, Response, Status}; 8 9 type EchoResult<T> = Result<Response<T>, Status>; 10 11 #[derive(Default)] 12 pub struct EchoServer; 13 14 #[tonic::async_trait] 15 impl pb::echo_server::Echo for EchoServer { 16 async fn unary_echo(&self, request: Request<EchoRequest>) -> EchoResult<EchoResponse> { 17 let certs = request 18 .peer_certs() 19 .expect("Client did not send its certs!"); 20 21 println!("Got {} peer certs!", certs.len()); 22 23 let message = request.into_inner().message; 24 Ok(Response::new(EchoResponse { message })) 25 } 26 } 27 28 #[tokio::main] 29 async fn main() -> Result<(), Box<dyn std::error::Error>> { 30 let data_dir = std::path::PathBuf::from_iter([std::env!("CARGO_MANIFEST_DIR"), "data"]); 31 let cert = std::fs::read_to_string(data_dir.join("tls/server.pem"))?; 32 let key = std::fs::read_to_string(data_dir.join("tls/server.key"))?; 33 let server_identity = Identity::from_pem(cert, key); 34 35 let client_ca_cert = std::fs::read_to_string(data_dir.join("tls/client_ca.pem"))?; 36 let client_ca_cert = Certificate::from_pem(client_ca_cert); 37 38 let addr = "[::1]:50051".parse().unwrap(); 39 let server = EchoServer::default(); 40 41 let tls = ServerTlsConfig::new() 42 .identity(server_identity) 43 .client_ca_root(client_ca_cert); 44 45 Server::builder() 46 .tls_config(tls)? 47 .add_service(pb::echo_server::EchoServer::new(server)) 48 .serve(addr) 49 .await?; 50 51 Ok(()) 52 } 53