tommy
/
cos-go-sdk-v5
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
287 Commits
1 Branch
15 Tags
719 KiB
Tree: 720b499cf4
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '720b499cf4'
${ noResults }
cos-go-sdk-v5/cos.go

458 lines
11 KiB
Raw Normal View History

first to commit project
6 years ago
ACL转换
4 years ago
first to commit project
6 years ago
fix path
6 years ago
first to commit project
6 years ago
update the comment for godoc
6 years ago
update to v0.7.27
4 years ago
first to commit project
6 years ago
Add ci test with the testify and travis, test the working fix travis yml and test fix travis yml and test Fix yml and import package fix fix ci_test go on test ci Remote other infos
6 years ago
first to commit project
6 years ago
add batch
5 years ago
ci 内容审核
4 years ago
first to commit project
6 years ago
update crc
4 years ago
add req close options & update upload simple upload threshold
4 years ago
update crc
4 years ago
update the comment for godoc
6 years ago
first to commit project
6 years ago
add host
5 years ago
first to commit project
6 years ago
add batch
5 years ago
ci 内容审核
4 years ago
update crc
4 years ago
first to commit project
6 years ago
add batch
5 years ago
ci 内容审核
4 years ago
first to commit project
6 years ago
update crc
4 years ago
add req close options & update upload simple upload threshold
4 years ago
update crc
4 years ago
first to commit project
6 years ago
add batch
5 years ago
ci 内容审核
4 years ago
first to commit project
6 years ago
prepare crypto
4 years ago
add Crypto UserAgent and versionid
4 years ago
prepare crypto
4 years ago
add Crypto UserAgent and versionid
4 years ago
prepare crypto
4 years ago
first to commit project
6 years ago
add Crypto UserAgent and versionid
4 years ago
first to commit project
6 years ago
add host
5 years ago
add req close options & update upload simple upload threshold
4 years ago
first to commit project
6 years ago
latest 0.7.23 stable
4 years ago
first to commit project
6 years ago
update the comment for godoc
6 years ago
first to commit project
6 years ago
update the comment for godoc
6 years ago
first to commit project
6 years ago
update the comment for godoc
6 years ago
first to commit project
6 years ago
add object tagging && bucket origin && add stsv3 demo
5 years ago
first to commit project
6 years ago
update the comment for godoc
6 years ago
first to commit project
6 years ago
Add ci test with the testify and travis, test the working fix travis yml and test fix travis yml and test Fix yml and import package fix fix ci_test go on test ci Remote other infos
6 years ago
first to commit project
6 years ago
update the comment for godoc
6 years ago
first to commit project
6 years ago
update the comment for godoc
6 years ago
first to commit project
6 years ago
ACL转换
4 years ago
  1. package cos
  3. import (
  4. "bytes"
  5. "context"
  6. "encoding/base64"
  7. "encoding/xml"
  8. "fmt"
  9. "io"
  10. "io/ioutil"
  11. "net/http"
  12. "net/url"
  13. "reflect"
  14. "strings"
  15. "text/template"
  17. "strconv"
  19. "github.com/google/go-querystring/query"
  20. "github.com/mozillazg/go-httpheader"
  21. )
  23. const (
  24. // Version current go sdk version
  25. Version = "0.7.27"
  26. userAgent = "cos-go-sdk-v5/" + Version
  27. contentTypeXML = "application/xml"
  28. defaultServiceBaseURL = "http://service.cos.myqcloud.com"
  29. )
  31. var bucketURLTemplate = template.Must(
  32. template.New("bucketURLFormat").Parse(
  33. "{{.Schema}}://{{.BucketName}}.cos.{{.Region}}.myqcloud.com",
  34. ),
  35. )
  37. // BaseURL 访问各 API 所需的基础 URL
  38. type BaseURL struct {
  39. // 访问 bucket, object 相关 API 的基础 URL(不包含 path 部分): http://example.com
  40. BucketURL *url.URL
  41. // 访问 service API 的基础 URL(不包含 path 部分): http://example.com
  42. ServiceURL *url.URL
  43. // 访问 job API 的基础 URL (不包含 path 部分): http://example.com
  44. BatchURL *url.URL
  45. // 访问 CI 的基础 URL
  46. CIURL *url.URL
  47. }
  49. // NewBucketURL 生成 BaseURL 所需的 BucketURL
  50. //
  51. // bucketName: bucket名称, bucket的命名规则为{name}-{appid} ,此处填写的存储桶名称必须为此格式
  52. // Region: 区域代码: ap-beijing-1,ap-beijing,ap-shanghai,ap-guangzhou...
  53. // secure: 是否使用 https
  54. func NewBucketURL(bucketName, region string, secure bool) *url.URL {
  55. schema := "https"
  56. if !secure {
  57. schema = "http"
  58. }
  60. w := bytes.NewBuffer(nil)
  61. bucketURLTemplate.Execute(w, struct {
  62. Schema string
  63. BucketName string
  64. Region string
  65. }{
  66. schema, bucketName, region,
  67. })
  69. u, _ := url.Parse(w.String())
  70. return u
  71. }
  73. type Config struct {
  74. EnableCRC bool
  75. RequestBodyClose bool
  76. }
  78. // Client is a client manages communication with the COS API.
  79. type Client struct {
  80. client *http.Client
  82. Host string
  83. UserAgent string
  84. BaseURL *BaseURL
  86. common service
  88. Service *ServiceService
  89. Bucket *BucketService
  90. Object *ObjectService
  91. Batch *BatchService
  92. CI *CIService
  94. Conf *Config
  95. }
  97. type service struct {
  98. client *Client
  99. }
  101. // NewClient returns a new COS API client.
  102. func NewClient(uri *BaseURL, httpClient *http.Client) *Client {
  103. if httpClient == nil {
  104. httpClient = &http.Client{}
  105. }
  107. baseURL := &BaseURL{}
  108. if uri != nil {
  109. baseURL.BucketURL = uri.BucketURL
  110. baseURL.ServiceURL = uri.ServiceURL
  111. baseURL.BatchURL = uri.BatchURL
  112. baseURL.CIURL = uri.CIURL
  113. }
  114. if baseURL.ServiceURL == nil {
  115. baseURL.ServiceURL, _ = url.Parse(defaultServiceBaseURL)
  116. }
  118. c := &Client{
  119. client: httpClient,
  120. UserAgent: userAgent,
  121. BaseURL: baseURL,
  122. Conf: &Config{
  123. EnableCRC: true,
  124. RequestBodyClose: false,
  125. },
  126. }
  127. c.common.client = c
  128. c.Service = (*ServiceService)(&c.common)
  129. c.Bucket = (*BucketService)(&c.common)
  130. c.Object = (*ObjectService)(&c.common)
  131. c.Batch = (*BatchService)(&c.common)
  132. c.CI = (*CIService)(&c.common)
  133. return c
  134. }
  136. type Credential struct {
  137. SecretID string
  138. SecretKey string
  139. SessionToken string
  140. }
  142. func (c *Client) GetCredential() *Credential {
  143. auth, ok := c.client.Transport.(*AuthorizationTransport)
  144. if !ok {
  145. return nil
  146. }
  147. auth.rwLocker.Lock()
  148. defer auth.rwLocker.Unlock()
  149. return &Credential{
  150. SecretID: auth.SecretID,
  151. SecretKey: auth.SecretKey,
  152. SessionToken: auth.SessionToken,
  153. }
  154. }
  156. func (c *Client) newRequest(ctx context.Context, baseURL *url.URL, uri, method string, body interface{}, optQuery interface{}, optHeader interface{}) (req *http.Request, err error) {
  157. uri, err = addURLOptions(uri, optQuery)
  158. if err != nil {
  159. return
  160. }
  161. u, _ := url.Parse(uri)
  162. urlStr := baseURL.ResolveReference(u).String()
  164. var reader io.Reader
  165. contentType := ""
  166. contentMD5 := ""
  167. if body != nil {
  168. // 上传文件
  169. if r, ok := body.(io.Reader); ok {
  170. reader = r
  171. } else {
  172. b, err := xml.Marshal(body)
  173. if err != nil {
  174. return nil, err
  175. }
  176. contentType = contentTypeXML
  177. reader = bytes.NewReader(b)
  178. contentMD5 = base64.StdEncoding.EncodeToString(calMD5Digest(b))
  179. }
  180. }
  182. req, err = http.NewRequest(method, urlStr, reader)
  183. if err != nil {
  184. return
  185. }
  187. req.Header, err = addHeaderOptions(req.Header, optHeader)
  188. if err != nil {
  189. return
  190. }
  191. if v := req.Header.Get("Content-Length"); req.ContentLength == 0 && v != "" && v != "0" {
  192. req.ContentLength, _ = strconv.ParseInt(v, 10, 64)
  193. }
  195. if contentMD5 != "" {
  196. req.Header["Content-MD5"] = []string{contentMD5}
  197. }
  198. if v := req.Header.Get("User-Agent"); v == "" || !strings.HasPrefix(v, userAgent) {
  199. if c.UserAgent != "" {
  200. req.Header.Set("User-Agent", c.UserAgent)
  201. }
  202. }
  203. if req.Header.Get("Content-Type") == "" && contentType != "" {
  204. req.Header.Set("Content-Type", contentType)
  205. }
  206. if c.Host != "" {
  207. req.Host = c.Host
  208. }
  209. if c.Conf.RequestBodyClose {
  210. req.Close = true
  211. }
  212. return
  213. }
  215. func (c *Client) doAPI(ctx context.Context, req *http.Request, result interface{}, closeBody bool) (*Response, error) {
  216. req = req.WithContext(ctx)
  218. resp, err := c.client.Do(req)
  219. if err != nil {
  220. // If we got an error, and the context has been canceled,
  221. // the context's error is probably more useful.
  222. select {
  223. case <-ctx.Done():
  224. return nil, ctx.Err()
  225. default:
  226. }
  227. return nil, err
  228. }
  230. defer func() {
  231. if closeBody {
  232. // Close the body to let the Transport reuse the connection
  233. io.Copy(ioutil.Discard, resp.Body)
  234. resp.Body.Close()
  235. }
  236. }()
  238. response := newResponse(resp)
  240. err = checkResponse(resp)
  241. if err != nil {
  242. // even though there was an error, we still return the response
  243. // in case the caller wants to inspect it further
  244. return response, err
  245. }
  247. // need CRC64 verification
  248. if reader, ok := req.Body.(*teeReader); ok {
  249. if c.Conf.EnableCRC && reader.writer != nil {
  250. localcrc := reader.Crc64()
  251. scoscrc := response.Header.Get("x-cos-hash-crc64ecma")
  252. icoscrc, _ := strconv.ParseUint(scoscrc, 10, 64)
  253. if icoscrc != localcrc {
  254. return response, fmt.Errorf("verification failed, want:%v, return:%v", localcrc, icoscrc)
  255. }
  256. }
  257. }
  259. if result != nil {
  260. if w, ok := result.(io.Writer); ok {
  261. io.Copy(w, resp.Body)
  262. } else {
  263. err = xml.NewDecoder(resp.Body).Decode(result)
  264. if err == io.EOF {
  265. err = nil // ignore EOF errors caused by empty response body
  266. }
  267. }
  268. }
  270. return response, err
  271. }
  273. type sendOptions struct {
  274. // 基础 URL
  275. baseURL *url.URL
  276. // URL 中除基础 URL 外的剩余部分
  277. uri string
  278. // 请求方法
  279. method string
  281. body interface{}
  282. // url 查询参数
  283. optQuery interface{}
  284. // http header 参数
  285. optHeader interface{}
  286. // 用 result 反序列化 resp.Body
  287. result interface{}
  288. // 是否禁用自动调用 resp.Body.Close()
  289. // 自动调用 Close() 是为了能够重用连接
  290. disableCloseBody bool
  291. }
  293. func (c *Client) send(ctx context.Context, opt *sendOptions) (resp *Response, err error) {
  294. req, err := c.newRequest(ctx, opt.baseURL, opt.uri, opt.method, opt.body, opt.optQuery, opt.optHeader)
  295. if err != nil {
  296. return
  297. }
  299. resp, err = c.doAPI(ctx, req, opt.result, !opt.disableCloseBody)
  300. return
  301. }
  303. // addURLOptions adds the parameters in opt as URL query parameters to s. opt
  304. // must be a struct whose fields may contain "url" tags.
  305. func addURLOptions(s string, opt interface{}) (string, error) {
  306. v := reflect.ValueOf(opt)
  307. if v.Kind() == reflect.Ptr && v.IsNil() {
  308. return s, nil
  309. }
  311. u, err := url.Parse(s)
  312. if err != nil {
  313. return s, err
  314. }
  316. qs, err := query.Values(opt)
  317. if err != nil {
  318. return s, err
  319. }
  321. // 保留原有的参数,并且放在前面。因为 cos 的 url 路由是以第一个参数作为路由的
  322. // e.g. /?uploads
  323. q := u.RawQuery
  324. rq := qs.Encode()
  325. if q != "" {
  326. if rq != "" {
  327. u.RawQuery = fmt.Sprintf("%s&%s", q, qs.Encode())
  328. }
  329. } else {
  330. u.RawQuery = rq
  331. }
  332. return u.String(), nil
  333. }
  335. // addHeaderOptions adds the parameters in opt as Header fields to req. opt
  336. // must be a struct whose fields may contain "header" tags.
  337. func addHeaderOptions(header http.Header, opt interface{}) (http.Header, error) {
  338. v := reflect.ValueOf(opt)
  339. if v.Kind() == reflect.Ptr && v.IsNil() {
  340. return header, nil
  341. }
  343. h, err := httpheader.Header(opt)
  344. if err != nil {
  345. return nil, err
  346. }
  348. for key, values := range h {
  349. for _, value := range values {
  350. header.Add(key, value)
  351. }
  352. }
  353. return header, nil
  354. }
  356. // Owner defines Bucket/Object's owner
  357. type Owner struct {
  358. UIN string `xml:"uin,omitempty"`
  359. ID string `xml:",omitempty"`
  360. DisplayName string `xml:",omitempty"`
  361. }
  363. // Initiator same to the Owner struct
  364. type Initiator Owner
  366. // Response API 响应
  367. type Response struct {
  368. *http.Response
  369. }
  371. func newResponse(resp *http.Response) *Response {
  372. return &Response{
  373. Response: resp,
  374. }
  375. }
  377. // ACLHeaderOptions is the option of ACLHeader
  378. type ACLHeaderOptions struct {
  379. XCosACL string `header:"x-cos-acl,omitempty" url:"-" xml:"-"`
  380. XCosGrantRead string `header:"x-cos-grant-read,omitempty" url:"-" xml:"-"`
  381. XCosGrantWrite string `header:"x-cos-grant-write,omitempty" url:"-" xml:"-"`
  382. XCosGrantFullControl string `header:"x-cos-grant-full-control,omitempty" url:"-" xml:"-"`
  383. XCosGrantReadACP string `header:"x-cos-grant-read-acp,omitempty" url:"-" xml:"-"`
  384. XCosGrantWriteACP string `header:"x-cos-grant-write-acp,omitempty" url:"-" xml:"-"`
  385. }
  387. // ACLGrantee is the param of ACLGrant
  388. type ACLGrantee struct {
  389. Type string `xml:"type,attr"`
  390. UIN string `xml:"uin,omitempty"`
  391. URI string `xml:"URI,omitempty"`
  392. ID string `xml:",omitempty"`
  393. DisplayName string `xml:",omitempty"`
  394. SubAccount string `xml:"Subaccount,omitempty"`
  395. }
  397. // ACLGrant is the param of ACLXml
  398. type ACLGrant struct {
  399. Grantee *ACLGrantee
  400. Permission string
  401. }
  403. // ACLXml is the ACL body struct
  404. type ACLXml struct {
  405. XMLName xml.Name `xml:"AccessControlPolicy"`
  406. Owner *Owner
  407. AccessControlList []ACLGrant `xml:"AccessControlList>Grant,omitempty"`
  408. }
  410. func decodeACL(resp *Response, res *ACLXml) {
  411. ItemMap := map[string]string{
  412. "ACL": "x-cos-acl",
  413. "READ": "x-cos-grant-read",
  414. "WRITE": "x-cos-grant-write",
  415. "READ_ACP": "x-cos-grant-read-acp",
  416. "WRITE_ACP": "x-cos-grant-write-acp",
  417. "FULL_CONTROL": "x-cos-grant-full-control",
  418. }
  419. publicACL := make(map[string]int)
  420. resACL := make(map[string][]string)
  421. for _, item := range res.AccessControlList {
  422. if item.Grantee == nil {
  423. continue
  424. }
  425. if item.Grantee.ID == "qcs::cam::anyone:anyone" || item.Grantee.URI == "http://cam.qcloud.com/groups/global/AllUsers" {
  426. publicACL[item.Permission] = 1
  427. } else if item.Grantee.ID != res.Owner.ID {
  428. resACL[item.Permission] = append(resACL[item.Permission], "id=\""+item.Grantee.ID+"\"")
  429. }
  430. }
  431. if publicACL["FULL_CONTROL"] == 1 || (publicACL["READ"] == 1 && publicACL["WRITE"] == 1) {
  432. resACL["ACL"] = []string{"public-read-write"}
  433. } else if publicACL["READ"] == 1 {
  434. resACL["ACL"] = []string{"public-read"}
  435. } else {
  436. resACL["ACL"] = []string{"private"}
  437. }
  439. for item, header := range ItemMap {
  440. if len(resp.Header.Get(header)) > 0 || len(resACL[item]) == 0 {
  441. continue
  442. }
  443. resp.Header.Set(header, uniqueGrantID(resACL[item]))
  444. }
  445. }
  447. func uniqueGrantID(grantIDs []string) string {
  448. res := []string{}
  449. filter := make(map[string]int)
  450. for _, id := range grantIDs {
  451. if filter[id] != 0 {
  452. continue
  453. }
  454. filter[id] = 1
  455. res = append(res, id)
  456. }
  457. return strings.Join(res, ",")
  458. }