tommy
/
cos-go-sdk-v5
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Browse Source

ACL转换

tags/v0.7.10^2
jojoliang 5 years ago
parent
d5130075f0
commit
0206a7d026
3 changed files with 60 additions and 3 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 5
      bucket_acl.go
  2. 53
      cos.go
  3. 5
      object_acl.go

5
bucket_acl.go
View File

@ -6,7 +6,7 @@ import (
) )
// BucketGetACLResult is same to the ACLXml // BucketGetACLResult is same to the ACLXml
type BucketGetACLResult ACLXml
type BucketGetACLResult = ACLXml
// GetACL 使用API读取Bucket的ACL表,只有所有者有权操作。 // GetACL 使用API读取Bucket的ACL表,只有所有者有权操作。
// //
@ -20,6 +20,9 @@ func (s *BucketService) GetACL(ctx context.Context) (*BucketGetACLResult, *Respo
result: &res, result: &res,
} }
resp, err := s.client.send(ctx, &sendOpt) resp, err := s.client.send(ctx, &sendOpt)
if err == nil {
decodeACL(resp, &res)
}
return &res, resp, err return &res, resp, err
} }

53
cos.go
View File

@ -11,6 +11,7 @@ import (
"net/http" "net/http"
"net/url" "net/url"
"reflect" "reflect"
"strings"
"text/template" "text/template"
"strconv" "strconv"
@ -21,7 +22,7 @@ import (
const ( const (
// Version current go sdk version // Version current go sdk version
Version = "0.7.8"
Version = "0.7.10"
userAgent = "cos-go-sdk-v5/" + Version userAgent = "cos-go-sdk-v5/" + Version
contentTypeXML = "application/xml" contentTypeXML = "application/xml"
defaultServiceBaseURL = "http://service.cos.myqcloud.com" defaultServiceBaseURL = "http://service.cos.myqcloud.com"
@ -355,3 +356,53 @@ type ACLXml struct {
Owner *Owner Owner *Owner
AccessControlList []ACLGrant `xml:"AccessControlList>Grant,omitempty"` AccessControlList []ACLGrant `xml:"AccessControlList>Grant,omitempty"`
} }
func decodeACL(resp *Response, res *ACLXml) {
ItemMap := map[string]string{
"ACL": "x-cos-acl",
"READ": "x-cos-grant-read",
"WRITE": "x-cos-grant-write",
"READ_ACP": "x-cos-grant-read-acp",
"WRITE_ACP": "x-cos-grant-write-acp",
"FULL_CONTROL": "x-cos-grant-full-control",
}
publicACL := make(map[string]int)
resACL := make(map[string][]string)
for _, item := range res.AccessControlList {
if item.Grantee == nil {
continue
}
if item.Grantee.ID == "qcs::cam::anyone:anyone" || item.Grantee.URI == "http://cam.qcloud.com/groups/global/AllUsers" {
publicACL[item.Permission] = 1
} else if item.Grantee.ID != res.Owner.ID {
resACL[item.Permission] = append(resACL[item.Permission], "id=\""+item.Grantee.ID+"\"")
}
}
if publicACL["FULL_CONTROL"] == 1 || (publicACL["READ"] == 1 && publicACL["WRITE"] == 1) {
resACL["ACL"] = []string{"public-read-write"}
} else if publicACL["READ"] == 1 {
resACL["ACL"] = []string{"public-read"}
} else {
resACL["ACL"] = []string{"private"}
}
for item, header := range ItemMap {
if len(resp.Header.Get(header)) > 0 || len(resACL[item]) == 0 {
continue
}
resp.Header.Set(header, uniqueGrantID(resACL[item]))
}
}
func uniqueGrantID(grantIDs []string) string {
res := []string{}
filter := make(map[string]int)
for _, id := range grantIDs {
if filter[id] != 0 {
continue
}
filter[id] = 1
res = append(res, id)
}
return strings.Join(res, ",")
}

5
object_acl.go
View File

@ -6,7 +6,7 @@ import (
) )
// ObjectGetACLResult is the result of GetObjectACL // ObjectGetACLResult is the result of GetObjectACL
type ObjectGetACLResult ACLXml
type ObjectGetACLResult = ACLXml
// GetACL Get Object ACL接口实现使用API读取Object的ACL表,只有所有者有权操作。 // GetACL Get Object ACL接口实现使用API读取Object的ACL表,只有所有者有权操作。
// //
@ -20,6 +20,9 @@ func (s *ObjectService) GetACL(ctx context.Context, name string) (*ObjectGetACLR
result: &res, result: &res,
} }
resp, err := s.client.send(ctx, &sendOpt) resp, err := s.client.send(ctx, &sendOpt)
if err == nil {
decodeACL(resp, &res)
}
return &res, resp, err return &res, resp, err
} }

Write Preview
Loading…
Cancel
Save