tommy
/
cos-go-sdk-v5
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
293 Commits
1 Branch
15 Tags
719 KiB
Tree: eb5f27672a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'eb5f27672a'
${ noResults }
cos-go-sdk-v5/cos.go

484 lines
12 KiB
Raw Normal View History

first to commit project
6 years ago
ACL转换
4 years ago
first to commit project
6 years ago
fix path
6 years ago
first to commit project
6 years ago
update the comment for godoc
6 years ago
update context
4 years ago
first to commit project
6 years ago
Add ci test with the testify and travis, test the working fix travis yml and test fix travis yml and test Fix yml and import package fix fix ci_test go on test ci Remote other infos
6 years ago
first to commit project
6 years ago
add batch
5 years ago
ci 内容审核
4 years ago
first to commit project
6 years ago
update crc
4 years ago
add req close options & update upload simple upload threshold
4 years ago
update crc
4 years ago
update the comment for godoc
6 years ago
first to commit project
6 years ago
add host
5 years ago
first to commit project
6 years ago
add batch
5 years ago
ci 内容审核
4 years ago
update crc
4 years ago
first to commit project
6 years ago
add batch
5 years ago
ci 内容审核
4 years ago
first to commit project
6 years ago
update crc
4 years ago
add req close options & update upload simple upload threshold
4 years ago
update crc
4 years ago
first to commit project
6 years ago
add batch
5 years ago
ci 内容审核
4 years ago
first to commit project
6 years ago
prepare crypto
4 years ago
add Crypto UserAgent and versionid
4 years ago
prepare crypto
4 years ago
add Crypto UserAgent and versionid
4 years ago
prepare crypto
4 years ago
first to commit project
6 years ago
add Crypto UserAgent and versionid
4 years ago
first to commit project
6 years ago
add host
5 years ago
add req close options & update upload simple upload threshold
4 years ago
first to commit project
6 years ago
update context
4 years ago
first to commit project
6 years ago
latest 0.7.23 stable
4 years ago
first to commit project
6 years ago
update context
4 years ago
first to commit project
6 years ago
update the comment for godoc
6 years ago
first to commit project
6 years ago
update the comment for godoc
6 years ago
first to commit project
6 years ago
update the comment for godoc
6 years ago
first to commit project
6 years ago
add object tagging && bucket origin && add stsv3 demo
5 years ago
first to commit project
6 years ago
update the comment for godoc
6 years ago
first to commit project
6 years ago
Add ci test with the testify and travis, test the working fix travis yml and test fix travis yml and test Fix yml and import package fix fix ci_test go on test ci Remote other infos
6 years ago
first to commit project
6 years ago
update the comment for godoc
6 years ago
first to commit project
6 years ago
update the comment for godoc
6 years ago
first to commit project
6 years ago
ACL转换
4 years ago
  1. package cos
  3. import (
  4. "bytes"
  5. "context"
  6. "encoding/base64"
  7. "encoding/xml"
  8. "fmt"
  9. "io"
  10. "io/ioutil"
  11. "net/http"
  12. "net/url"
  13. "reflect"
  14. "strings"
  15. "text/template"
  17. "strconv"
  19. "github.com/google/go-querystring/query"
  20. "github.com/mozillazg/go-httpheader"
  21. )
  23. const (
  24. // Version current go sdk version
  25. Version = "0.7.28"
  26. userAgent = "cos-go-sdk-v5/" + Version
  27. contentTypeXML = "application/xml"
  28. defaultServiceBaseURL = "http://service.cos.myqcloud.com"
  29. )
  31. var bucketURLTemplate = template.Must(
  32. template.New("bucketURLFormat").Parse(
  33. "{{.Schema}}://{{.BucketName}}.cos.{{.Region}}.myqcloud.com",
  34. ),
  35. )
  37. // BaseURL 访问各 API 所需的基础 URL
  38. type BaseURL struct {
  39. // 访问 bucket, object 相关 API 的基础 URL(不包含 path 部分): http://example.com
  40. BucketURL *url.URL
  41. // 访问 service API 的基础 URL(不包含 path 部分): http://example.com
  42. ServiceURL *url.URL
  43. // 访问 job API 的基础 URL (不包含 path 部分): http://example.com
  44. BatchURL *url.URL
  45. // 访问 CI 的基础 URL
  46. CIURL *url.URL
  47. }
  49. // NewBucketURL 生成 BaseURL 所需的 BucketURL
  50. //
  51. // bucketName: bucket名称, bucket的命名规则为{name}-{appid} ,此处填写的存储桶名称必须为此格式
  52. // Region: 区域代码: ap-beijing-1,ap-beijing,ap-shanghai,ap-guangzhou...
  53. // secure: 是否使用 https
  54. func NewBucketURL(bucketName, region string, secure bool) *url.URL {
  55. schema := "https"
  56. if !secure {
  57. schema = "http"
  58. }
  60. w := bytes.NewBuffer(nil)
  61. bucketURLTemplate.Execute(w, struct {
  62. Schema string
  63. BucketName string
  64. Region string
  65. }{
  66. schema, bucketName, region,
  67. })
  69. u, _ := url.Parse(w.String())
  70. return u
  71. }
  73. type Config struct {
  74. EnableCRC bool
  75. RequestBodyClose bool
  76. }
  78. // Client is a client manages communication with the COS API.
  79. type Client struct {
  80. client *http.Client
  82. Host string
  83. UserAgent string
  84. BaseURL *BaseURL
  86. common service
  88. Service *ServiceService
  89. Bucket *BucketService
  90. Object *ObjectService
  91. Batch *BatchService
  92. CI *CIService
  94. Conf *Config
  95. }
  97. type service struct {
  98. client *Client
  99. }
  101. // NewClient returns a new COS API client.
  102. func NewClient(uri *BaseURL, httpClient *http.Client) *Client {
  103. if httpClient == nil {
  104. httpClient = &http.Client{}
  105. }
  107. baseURL := &BaseURL{}
  108. if uri != nil {
  109. baseURL.BucketURL = uri.BucketURL
  110. baseURL.ServiceURL = uri.ServiceURL
  111. baseURL.BatchURL = uri.BatchURL
  112. baseURL.CIURL = uri.CIURL
  113. }
  114. if baseURL.ServiceURL == nil {
  115. baseURL.ServiceURL, _ = url.Parse(defaultServiceBaseURL)
  116. }
  118. c := &Client{
  119. client: httpClient,
  120. UserAgent: userAgent,
  121. BaseURL: baseURL,
  122. Conf: &Config{
  123. EnableCRC: true,
  124. RequestBodyClose: false,
  125. },
  126. }
  127. c.common.client = c
  128. c.Service = (*ServiceService)(&c.common)
  129. c.Bucket = (*BucketService)(&c.common)
  130. c.Object = (*ObjectService)(&c.common)
  131. c.Batch = (*BatchService)(&c.common)
  132. c.CI = (*CIService)(&c.common)
  133. return c
  134. }
  136. type Credential struct {
  137. SecretID string
  138. SecretKey string
  139. SessionToken string
  140. }
  142. func (c *Client) GetCredential() *Credential {
  143. auth, ok := c.client.Transport.(*AuthorizationTransport)
  144. if !ok {
  145. return nil
  146. }
  147. auth.rwLocker.Lock()
  148. defer auth.rwLocker.Unlock()
  149. return &Credential{
  150. SecretID: auth.SecretID,
  151. SecretKey: auth.SecretKey,
  152. SessionToken: auth.SessionToken,
  153. }
  154. }
  156. func (c *Client) newRequest(ctx context.Context, baseURL *url.URL, uri, method string, body interface{}, optQuery interface{}, optHeader interface{}) (req *http.Request, err error) {
  157. uri, err = addURLOptions(uri, optQuery)
  158. if err != nil {
  159. return
  160. }
  161. u, _ := url.Parse(uri)
  162. urlStr := baseURL.ResolveReference(u).String()
  164. var reader io.Reader
  165. contentType := ""
  166. contentMD5 := ""
  167. if body != nil {
  168. // 上传文件
  169. if r, ok := body.(io.Reader); ok {
  170. reader = r
  171. } else {
  172. b, err := xml.Marshal(body)
  173. if err != nil {
  174. return nil, err
  175. }
  176. contentType = contentTypeXML
  177. reader = bytes.NewReader(b)
  178. contentMD5 = base64.StdEncoding.EncodeToString(calMD5Digest(b))
  179. }
  180. }
  182. req, err = http.NewRequest(method, urlStr, reader)
  183. if err != nil {
  184. return
  185. }
  187. req.Header, err = addHeaderOptions(req.Header, optHeader)
  188. if err != nil {
  189. return
  190. }
  191. if v := req.Header.Get("Content-Length"); req.ContentLength == 0 && v != "" && v != "0" {
  192. req.ContentLength, _ = strconv.ParseInt(v, 10, 64)
  193. }
  195. if contentMD5 != "" {
  196. req.Header["Content-MD5"] = []string{contentMD5}
  197. }
  198. if v := req.Header.Get("User-Agent"); v == "" || !strings.HasPrefix(v, userAgent) {
  199. if c.UserAgent != "" {
  200. req.Header.Set("User-Agent", c.UserAgent)
  201. }
  202. }
  203. if req.Header.Get("Content-Type") == "" && contentType != "" {
  204. req.Header.Set("Content-Type", contentType)
  205. }
  206. if c.Host != "" {
  207. req.Host = c.Host
  208. }
  209. if c.Conf.RequestBodyClose {
  210. req.Close = true
  211. }
  212. return
  213. }
  215. func (c *Client) doAPI(ctx context.Context, req *http.Request, result interface{}, closeBody bool) (*Response, error) {
  216. var cancel context.CancelFunc
  217. if closeBody {
  218. ctx, cancel = context.WithCancel(ctx)
  219. defer cancel()
  220. }
  221. req = req.WithContext(ctx)
  223. resp, err := c.client.Do(req)
  224. if err != nil {
  225. // If we got an error, and the context has been canceled,
  226. // the context's error is probably more useful.
  227. select {
  228. case <-ctx.Done():
  229. return nil, ctx.Err()
  230. default:
  231. }
  232. return nil, err
  233. }
  235. defer func() {
  236. if closeBody {
  237. // Close the body to let the Transport reuse the connection
  238. io.Copy(ioutil.Discard, resp.Body)
  239. resp.Body.Close()
  240. }
  241. }()
  243. response := newResponse(resp)
  245. err = checkResponse(resp)
  246. if err != nil {
  247. // even though there was an error, we still return the response
  248. // in case the caller wants to inspect it further
  249. return response, err
  250. }
  252. // need CRC64 verification
  253. if reader, ok := req.Body.(*teeReader); ok {
  254. if c.Conf.EnableCRC && reader.writer != nil {
  255. localcrc := reader.Crc64()
  256. scoscrc := response.Header.Get("x-cos-hash-crc64ecma")
  257. icoscrc, _ := strconv.ParseUint(scoscrc, 10, 64)
  258. if icoscrc != localcrc {
  259. return response, fmt.Errorf("verification failed, want:%v, return:%v", localcrc, icoscrc)
  260. }
  261. }
  262. }
  264. if result != nil {
  265. if w, ok := result.(io.Writer); ok {
  266. io.Copy(w, resp.Body)
  267. } else {
  268. err = xml.NewDecoder(resp.Body).Decode(result)
  269. if err == io.EOF {
  270. err = nil // ignore EOF errors caused by empty response body
  271. }
  272. }
  273. }
  275. return response, err
  276. }
  278. type sendOptions struct {
  279. // 基础 URL
  280. baseURL *url.URL
  281. // URL 中除基础 URL 外的剩余部分
  282. uri string
  283. // 请求方法
  284. method string
  286. body interface{}
  287. // url 查询参数
  288. optQuery interface{}
  289. // http header 参数
  290. optHeader interface{}
  291. // 用 result 反序列化 resp.Body
  292. result interface{}
  293. // 是否禁用自动调用 resp.Body.Close()
  294. // 自动调用 Close() 是为了能够重用连接
  295. disableCloseBody bool
  296. }
  298. func (c *Client) doRetry(ctx context.Context, opt *sendOptions) (resp *Response, err error) {
  299. if opt.body != nil {
  300. if _, ok := opt.body.(io.Reader); ok {
  301. return c.send(ctx, opt)
  302. }
  303. }
  304. nr := 0
  305. for nr < 3 {
  306. resp, err = c.send(ctx, opt)
  307. if err != nil {
  308. if resp != nil && resp.StatusCode <= 499 {
  309. break
  310. }
  311. nr++
  312. continue
  313. }
  314. break
  315. }
  316. return
  318. }
  319. func (c *Client) send(ctx context.Context, opt *sendOptions) (resp *Response, err error) {
  320. req, err := c.newRequest(ctx, opt.baseURL, opt.uri, opt.method, opt.body, opt.optQuery, opt.optHeader)
  321. if err != nil {
  322. return
  323. }
  325. resp, err = c.doAPI(ctx, req, opt.result, !opt.disableCloseBody)
  326. return
  327. }
  329. // addURLOptions adds the parameters in opt as URL query parameters to s. opt
  330. // must be a struct whose fields may contain "url" tags.
  331. func addURLOptions(s string, opt interface{}) (string, error) {
  332. v := reflect.ValueOf(opt)
  333. if v.Kind() == reflect.Ptr && v.IsNil() {
  334. return s, nil
  335. }
  337. u, err := url.Parse(s)
  338. if err != nil {
  339. return s, err
  340. }
  342. qs, err := query.Values(opt)
  343. if err != nil {
  344. return s, err
  345. }
  347. // 保留原有的参数,并且放在前面。因为 cos 的 url 路由是以第一个参数作为路由的
  348. // e.g. /?uploads
  349. q := u.RawQuery
  350. rq := qs.Encode()
  351. if q != "" {
  352. if rq != "" {
  353. u.RawQuery = fmt.Sprintf("%s&%s", q, qs.Encode())
  354. }
  355. } else {
  356. u.RawQuery = rq
  357. }
  358. return u.String(), nil
  359. }
  361. // addHeaderOptions adds the parameters in opt as Header fields to req. opt
  362. // must be a struct whose fields may contain "header" tags.
  363. func addHeaderOptions(header http.Header, opt interface{}) (http.Header, error) {
  364. v := reflect.ValueOf(opt)
  365. if v.Kind() == reflect.Ptr && v.IsNil() {
  366. return header, nil
  367. }
  369. h, err := httpheader.Header(opt)
  370. if err != nil {
  371. return nil, err
  372. }
  374. for key, values := range h {
  375. for _, value := range values {
  376. header.Add(key, value)
  377. }
  378. }
  379. return header, nil
  380. }
  382. // Owner defines Bucket/Object's owner
  383. type Owner struct {
  384. UIN string `xml:"uin,omitempty"`
  385. ID string `xml:",omitempty"`
  386. DisplayName string `xml:",omitempty"`
  387. }
  389. // Initiator same to the Owner struct
  390. type Initiator Owner
  392. // Response API 响应
  393. type Response struct {
  394. *http.Response
  395. }
  397. func newResponse(resp *http.Response) *Response {
  398. return &Response{
  399. Response: resp,
  400. }
  401. }
  403. // ACLHeaderOptions is the option of ACLHeader
  404. type ACLHeaderOptions struct {
  405. XCosACL string `header:"x-cos-acl,omitempty" url:"-" xml:"-"`
  406. XCosGrantRead string `header:"x-cos-grant-read,omitempty" url:"-" xml:"-"`
  407. XCosGrantWrite string `header:"x-cos-grant-write,omitempty" url:"-" xml:"-"`
  408. XCosGrantFullControl string `header:"x-cos-grant-full-control,omitempty" url:"-" xml:"-"`
  409. XCosGrantReadACP string `header:"x-cos-grant-read-acp,omitempty" url:"-" xml:"-"`
  410. XCosGrantWriteACP string `header:"x-cos-grant-write-acp,omitempty" url:"-" xml:"-"`
  411. }
  413. // ACLGrantee is the param of ACLGrant
  414. type ACLGrantee struct {
  415. Type string `xml:"type,attr"`
  416. UIN string `xml:"uin,omitempty"`
  417. URI string `xml:"URI,omitempty"`
  418. ID string `xml:",omitempty"`
  419. DisplayName string `xml:",omitempty"`
  420. SubAccount string `xml:"Subaccount,omitempty"`
  421. }
  423. // ACLGrant is the param of ACLXml
  424. type ACLGrant struct {
  425. Grantee *ACLGrantee
  426. Permission string
  427. }
  429. // ACLXml is the ACL body struct
  430. type ACLXml struct {
  431. XMLName xml.Name `xml:"AccessControlPolicy"`
  432. Owner *Owner
  433. AccessControlList []ACLGrant `xml:"AccessControlList>Grant,omitempty"`
  434. }
  436. func decodeACL(resp *Response, res *ACLXml) {
  437. ItemMap := map[string]string{
  438. "ACL": "x-cos-acl",
  439. "READ": "x-cos-grant-read",
  440. "WRITE": "x-cos-grant-write",
  441. "READ_ACP": "x-cos-grant-read-acp",
  442. "WRITE_ACP": "x-cos-grant-write-acp",
  443. "FULL_CONTROL": "x-cos-grant-full-control",
  444. }
  445. publicACL := make(map[string]int)
  446. resACL := make(map[string][]string)
  447. for _, item := range res.AccessControlList {
  448. if item.Grantee == nil {
  449. continue
  450. }
  451. if item.Grantee.ID == "qcs::cam::anyone:anyone" || item.Grantee.URI == "http://cam.qcloud.com/groups/global/AllUsers" {
  452. publicACL[item.Permission] = 1
  453. } else if item.Grantee.ID != res.Owner.ID {
  454. resACL[item.Permission] = append(resACL[item.Permission], "id=\""+item.Grantee.ID+"\"")
  455. }
  456. }
  457. if publicACL["FULL_CONTROL"] == 1 || (publicACL["READ"] == 1 && publicACL["WRITE"] == 1) {
  458. resACL["ACL"] = []string{"public-read-write"}
  459. } else if publicACL["READ"] == 1 {
  460. resACL["ACL"] = []string{"public-read"}
  461. } else {
  462. resACL["ACL"] = []string{"private"}
  463. }
  465. for item, header := range ItemMap {
  466. if len(resp.Header.Get(header)) > 0 || len(resACL[item]) == 0 {
  467. continue
  468. }
  469. resp.Header.Set(header, uniqueGrantID(resACL[item]))
  470. }
  471. }
  473. func uniqueGrantID(grantIDs []string) string {
  474. res := []string{}
  475. filter := make(map[string]int)
  476. for _, id := range grantIDs {
  477. if filter[id] != 0 {
  478. continue
  479. }
  480. filter[id] = 1
  481. res = append(res, id)
  482. }
  483. return strings.Join(res, ",")
  484. }