beast/test/doc/core_snippets.cpp

//
// Copyright (c) 2016-2019 Vinnie Falco (vinnie dot falco at gmail dot com)
//
// Distributed under the Boost Software License, Version 1.0. (See accompanying
// file LICENSE_1_0.txt or copy at http://www.boost.org/LICENSE_1_0.txt)
//
// Official repository: https://github.com/boostorg/beast
//

//[snippet_core_1a

#include <boost/beast/core.hpp>
#include <boost/beast/http.hpp>
#include <boost/asio.hpp>
#include <boost/asio/ssl.hpp>
#include <iostream>
#include <thread>

//]

using namespace boost::beast;

namespace doc_core_snippets {

void fxx()
{
//[snippet_core_1b
//
using namespace boost::beast;
namespace net = boost::asio;
namespace ssl = boost::asio::ssl;
using tcp = net::ip::tcp;

net::io_context ioc;
net::any_io_executor work =
    net::require(ioc.get_executor(),
        net::execution::outstanding_work.tracked);
std::thread t{[&](){ ioc.run(); }};

error_code ec;
tcp::socket sock{ioc};

//]
    boost::ignore_unused(ec);

    {
//[snippet_core_2

// The resolver is used to look up IP addresses and port numbers from a domain and service name pair
tcp::resolver r{ioc};

// A socket represents the local end of a connection between two peers
tcp::socket stream{ioc};

// Establish a connection before sending and receiving data
net::connect(stream, r.resolve("www.example.com", "http"));

// At this point `stream` is a connected to a remote
// host and may be used to perform stream operations.

//]
    }

} // fxx()

//------------------------------------------------------------------------------

//[snippet_core_3

template<class SyncWriteStream>
void write_string(SyncWriteStream& stream, string_view s)
{
    static_assert(is_sync_write_stream<SyncWriteStream>::value,
        "SyncWriteStream type requirements not met");
    net::write(stream, net::const_buffer(s.data(), s.size()));
}

//]

void ssl_tls_shutdown()
{
    net::io_context ioc;
    net::ssl::context ctx(net::ssl::context::tlsv12);
    net::ssl::stream<tcp_stream> stream(ioc, ctx);
    flat_buffer buffer;
    http::response<http::dynamic_body> res;
    auto log = [](error_code){};

    {
//[snippet_core_4
// Receive the HTTP response
http::read(stream, buffer, res);

// Gracefully shutdown the SSL/TLS connection
error_code ec;
stream.shutdown(ec);
// Non-compliant servers don't participate in the SSL/TLS shutdown process and
// close the underlying transport layer. This causes the shutdown operation to
// complete with a `stream_truncated` error. One might decide not to log such
// errors as there are many non-compliant servers in the wild.
if(ec != net::ssl::error::stream_truncated)
    log(ec);
//]
    }

    {
//[snippet_core_5
// Use an HTTP response parser to have more control
http::response_parser<http::dynamic_body> parser;

error_code ec;
// Receive the HTTP response until the end or until an error occurs
http::read(stream, buffer, parser, ec);

// Try to manually commit the EOF, the resulting message body would be
// vulnerable to truncation attacks.
if(parser.need_eof() && ec == net::ssl::error::stream_truncated)
    parser.put_eof(ec); // Override the error_code

if(ec)
    throw system_error{ec};

// Access the HTTP response inside the parser
std::cout << parser.get() << std::endl;


// Gracefully shutdown the SSL/TLS connection
stream.shutdown(ec); // Override the error_code
// Non-compliant servers don't participate in the SSL/TLS shutdown process and
// close the underlying transport layer. This causes the shutdown operation to
// complete with a `stream_truncated` error. One might decide not to log such
// errors as there are many non-compliant servers in the wild.
if(ec != net::ssl::error::stream_truncated)
    log(ec);
//]
    }
}

void ssl_tls()
{
    net::io_context ioc;
    net::ssl::context ctx(net::ssl::context::tlsv12);
    net::ssl::stream<tcp_stream> stream(ioc, ctx);

    //[snippet_core_6
    // Verify the remote server's certificate
    ctx.set_verify_mode(net::ssl::verify_peer);
    //]

    //[snippet_core_7
    // Verify the remote server's Hostname or IP address
    stream.set_verify_callback(
        net::ssl::host_name_verification("host.name"));
    //]

    //[snippet_core_8
    // Verify the remote client's certificate
    ctx.set_verify_mode(
        net::ssl::verify_peer |
        net::ssl::verify_fail_if_no_peer_cert);
    //]
}

} // doc_core_snippets
Documentation work 2017-06-07 18:18:50 -07:00			`//`
Check BOOST_NO_CXX11_THREAD_LOCAL 2019-02-21 07:00:31 -08:00			`// Copyright (c) 2016-2019 Vinnie Falco (vinnie dot falco at gmail dot com)`
Documentation work 2017-06-07 18:18:50 -07:00			`//`
			`// Distributed under the Boost Software License, Version 1.0. (See accompanying`
			`// file LICENSE_1_0.txt or copy at http://www.boost.org/LICENSE_1_0.txt)`
			`//`
Boost prep 2017-07-20 13:40:34 -07:00			`// Official repository: https://github.com/boostorg/beast`
			`//`
Documentation work 2017-06-07 18:18:50 -07:00
			`//[snippet_core_1a`

Boost prep 2017-07-20 13:40:34 -07:00			`#include <boost/beast/core.hpp>`
Add 'SSL/TLS Shutdown Procedure' section to documentation Closes #2868 2024-05-28 09:54:07 +00:00			`#include <boost/beast/http.hpp>`
Documentation work 2017-06-07 18:18:50 -07:00			`#include <boost/asio.hpp>`
Documentation work 2018-12-01 13:22:21 -08:00			`#include <boost/asio/ssl.hpp>`
Documentation work 2017-06-07 18:18:50 -07:00			`#include <iostream>`
			`#include <thread>`

			`//]`

Boost prep 2017-07-20 13:40:34 -07:00			`using namespace boost::beast;`
Documentation work 2017-06-07 18:18:50 -07:00
			`namespace doc_core_snippets {`

			`void fxx()`
			`{`
			`//[snippet_core_1b`
			`//`
Boost prep 2017-07-20 13:40:34 -07:00			`using namespace boost::beast;`
Documentation work 2018-12-01 13:22:21 -08:00			`namespace net = boost::asio;`
			`namespace ssl = boost::asio::ssl;`
			`using tcp = net::ip::tcp;`
Documentation work 2017-06-07 18:18:50 -07:00
net is a namespace alias for boost::asio: The namespace alias beast::net replaces boost::asio in all code and documentation. 2018-11-30 14:58:38 -08:00			`net::io_context ioc;`
Fix style errors 2020-07-04 07:33:22 +02:00			`net::any_io_executor work =`
Examples require tracked 2020-07-04 08:22:39 +02:00			`net::require(ioc.get_executor(),`
Fix style errors 2020-07-04 07:33:22 +02:00			`net::execution::outstanding_work.tracked);`
Update for Net-TS Asio (API Change): fix #769 The following classes are removed: * handler_type * async_result * async_completion * is_dynamic_buffer * is_const_buffer_sequence * is_mutable_buffer_sequence * handler_alloc Actions Required: * Use BOOST_ASIO_HANDLER_TYPE instead of handler_type * Use BOOST_ASIO_INITFN_RESULT_TYPE instead of async_result * Use boost::asio::async_completion * Use boost::asio::is_dynamic_buffer * Use boost::asio::is_const_buffer_sequence * Use boost::asio::is_mutable_buffer_sequence * boost::asio::associated_allocator_t replaces handler_alloc 2017-09-07 07:39:52 -07:00			`std::thread t{[&](){ ioc.run(); }};`
Documentation work 2017-06-07 18:18:50 -07:00
Documentation work 2017-06-07 16:30:49 -07:00			`error_code ec;`
Documentation work 2018-12-01 13:22:21 -08:00			`tcp::socket sock{ioc};`
Documentation work 2017-06-07 18:18:50 -07:00
			`//]`
Tidy up warnings and deprecated usage: fix #1290 * BOOST_ASIO_NO_DEPRECATED=1 is now set * Fix various warnings from the Boost regression test matrix * Fix a bug in advanced servers when checking for a timeout 2018-11-22 20:49:30 -08:00			`boost::ignore_unused(ec);`
Documentation work 2017-06-07 18:18:50 -07:00
Tidy up warnings and deprecated usage: fix #1290 * BOOST_ASIO_NO_DEPRECATED=1 is now set * Fix various warnings from the Boost regression test matrix * Fix a bug in advanced servers when checking for a timeout 2018-11-22 20:49:30 -08:00			`{`
Documentation work 2017-06-07 18:18:50 -07:00			`//[snippet_core_2`

Documentation work 2018-12-01 13:22:21 -08:00			`// The resolver is used to look up IP addresses and port numbers from a domain and service name pair`
			`tcp::resolver r{ioc};`

			`// A socket represents the local end of a connection between two peers`
			`tcp::socket stream{ioc};`

			`// Establish a connection before sending and receiving data`
			`net::connect(stream, r.resolve("www.example.com", "http"));`
Documentation work 2017-06-07 18:18:50 -07:00
			// At this point `stream` is a connected to a remote
			`// host and may be used to perform stream operations.`

			`//]`
Tidy up warnings and deprecated usage: fix #1290 * BOOST_ASIO_NO_DEPRECATED=1 is now set * Fix various warnings from the Boost regression test matrix * Fix a bug in advanced servers when checking for a timeout 2018-11-22 20:49:30 -08:00			`}`
Documentation work 2017-06-07 18:18:50 -07:00
			`} // fxx()`

Tidy up warnings and deprecated usage: fix #1290 * BOOST_ASIO_NO_DEPRECATED=1 is now set * Fix various warnings from the Boost regression test matrix * Fix a bug in advanced servers when checking for a timeout 2018-11-22 20:49:30 -08:00			`//------------------------------------------------------------------------------`

Documentation work 2017-06-07 18:18:50 -07:00			`//[snippet_core_3`

			`template<class SyncWriteStream>`
			`void write_string(SyncWriteStream& stream, string_view s)`
			`{`
			`static_assert(is_sync_write_stream<SyncWriteStream>::value,`
Concept check tidying 2019-02-20 19:19:59 -08:00			`"SyncWriteStream type requirements not met");`
net is a namespace alias for boost::asio: The namespace alias beast::net replaces boost::asio in all code and documentation. 2018-11-30 14:58:38 -08:00			`net::write(stream, net::const_buffer(s.data(), s.size()));`
Documentation work 2017-06-07 18:18:50 -07:00			`}`

			`//]`

Add 'SSL/TLS Shutdown Procedure' section to documentation Closes #2868 2024-05-28 09:54:07 +00:00			`void ssl_tls_shutdown()`
			`{`
			`net::io_context ioc;`
			`net::ssl::context ctx(net::ssl::context::tlsv12);`
net::ssl::stream is canonical in snippets 2024-05-30 11:39:48 +00:00			`net::ssl::stream<tcp_stream> stream(ioc, ctx);`
Add 'SSL/TLS Shutdown Procedure' section to documentation Closes #2868 2024-05-28 09:54:07 +00:00			`flat_buffer buffer;`
			`http::response<http::dynamic_body> res;`
			`auto log = [](error_code){};`

			`{`
			`//[snippet_core_4`
			`// Receive the HTTP response`
			`http::read(stream, buffer, res);`

			`// Gracefully shutdown the SSL/TLS connection`
			`error_code ec;`
			`stream.shutdown(ec);`
			`// Non-compliant servers don't participate in the SSL/TLS shutdown process and`
			`// close the underlying transport layer. This causes the shutdown operation to`
			// complete with a `stream_truncated` error. One might decide not to log such
			`// errors as there are many non-compliant servers in the wild.`
			`if(ec != net::ssl::error::stream_truncated)`
			`log(ec);`
			`//]`
			`}`

			`{`
			`//[snippet_core_5`
			`// Use an HTTP response parser to have more control`
			`http::response_parser<http::dynamic_body> parser;`

			`error_code ec;`
			`// Receive the HTTP response until the end or until an error occurs`
			`http::read(stream, buffer, parser, ec);`

			`// Try to manually commit the EOF, the resulting message body would be`
			`// vulnerable to truncation attacks.`
			`if(parser.need_eof() && ec == net::ssl::error::stream_truncated)`
			`parser.put_eof(ec); // Override the error_code`

			`if(ec)`
			`throw system_error{ec};`

			`// Access the HTTP response inside the parser`
			`std::cout << parser.get() << std::endl;`


			`// Gracefully shutdown the SSL/TLS connection`
			`stream.shutdown(ec); // Override the error_code`
			`// Non-compliant servers don't participate in the SSL/TLS shutdown process and`
			`// close the underlying transport layer. This causes the shutdown operation to`
			// complete with a `stream_truncated` error. One might decide not to log such
			`// errors as there are many non-compliant servers in the wild.`
			`if(ec != net::ssl::error::stream_truncated)`
			`log(ec);`
			`//]`
			`}`
			`}`

Add `SSL/TLS Certificate` section to documentation Closes #2910 2025-02-26 09:53:15 +00:00			`void ssl_tls()`
			`{`
			`net::io_context ioc;`
			`net::ssl::context ctx(net::ssl::context::tlsv12);`
			`net::ssl::stream<tcp_stream> stream(ioc, ctx);`

			`//[snippet_core_6`
			`// Verify the remote server's certificate`
			`ctx.set_verify_mode(net::ssl::verify_peer);`
			`//]`

			`//[snippet_core_7`
			`// Verify the remote server's Hostname or IP address`
			`stream.set_verify_callback(`
			`net::ssl::host_name_verification("host.name"));`
			`//]`

			`//[snippet_core_8`
			`// Verify the remote client's certificate`
			`ctx.set_verify_mode(`
			`net::ssl::verify_peer \|`
			`net::ssl::verify_fail_if_no_peer_cert);`
			`//]`
			`}`

Documentation work 2017-06-07 18:18:50 -07:00			`} // doc_core_snippets`