Sample project that demonstrates a possible file structure and CMake configurations that are suitable for small-middle size personal projects. The repository can be used as a starting point for a new project.
The project components:
include/components/ClientInterceptor/client-interceptor.hpp: contains the implementation of the client interceptor; this interceptor is responsible for attaching a JWT token to the request and tokens refreshing if theStatusCode::UNAUTHORIZEDwas returned by the server.include/components/ServerInterceptor/server-interceptor.hpp: contains the implementation of the server interceptor; this interceptor is responsible for validating the JWT token. The server interceptor cannot prevent the endpoint accepting a request with an invalid token, therfore the interceptor creates a meta-field namedx-user-idwhich indicates whether the token was valid. The endpoint should check the mentioned field and act accordingly: if it present allow access to the resource, otherwise cancel the operation. The interceptor memorizes that token was invalid, thus when the server endpoint returns, it changes the returningStatusto be 1)StatusCode::UNAVAILABLEor 2)StatusCOde::Unauthorizeddepending on whether the should 1) retry the request or 2) should not.src/proto: contains the definition of a single serviceMyServicewith a private endpointPrivateResource.include/services/MyServiceImpl/my-service-impl.hpp: contains the implementation of the serviceMyService; the implementation checks whether thex-user-idmeta-field is present within the metadata coming with the request.tests/client.cpp: contains an example of the client code;SampleClientclass requests the endpoint and retries the request if one failed withUNAVAILABLEstatus code.
Read comments inside the source files to better understand the idea.
Warning: the implementation is likely not the way you should implement the gRPC JWT Auth in C++. AuthMetadataProcessor is likely to be more suitable for this (See this).
