2019-06-16 22:20:08 +00:00
|
|
|
package s3
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"bytes"
|
2019-06-16 22:46:52 +00:00
|
|
|
"context"
|
2019-06-16 22:20:08 +00:00
|
|
|
"crypto/md5"
|
2019-06-16 22:46:52 +00:00
|
|
|
"fmt"
|
2019-06-16 22:20:08 +00:00
|
|
|
"hash"
|
|
|
|
|
"io"
|
|
|
|
|
"net/url"
|
|
|
|
|
"strings"
|
|
|
|
|
|
|
|
|
|
"github.com/aws/aws-sdk-go/aws"
|
|
|
|
|
"github.com/aws/aws-sdk-go/aws/credentials"
|
|
|
|
|
"github.com/aws/aws-sdk-go/aws/session"
|
|
|
|
|
"github.com/aws/aws-sdk-go/service/s3"
|
2019-06-16 22:46:52 +00:00
|
|
|
"github.com/aws/aws-sdk-go/service/s3/s3manager"
|
2019-06-16 22:20:08 +00:00
|
|
|
"github.com/pkg/errors"
|
|
|
|
|
|
|
|
|
|
"github.com/Luzifer/cloudbox/providers"
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
type Provider struct {
|
2019-06-16 22:46:52 +00:00
|
|
|
bucket string
|
|
|
|
|
bucketRegion string
|
2019-06-30 02:54:04 +00:00
|
|
|
defaultACL string
|
2019-06-30 03:33:34 +00:00
|
|
|
prefix string
|
2019-06-16 22:46:52 +00:00
|
|
|
s3 *s3.S3
|
2019-06-16 22:20:08 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func New(uri string) (providers.CloudProvider, error) {
|
|
|
|
|
if !strings.HasPrefix(uri, "s3://") {
|
|
|
|
|
return nil, providers.ErrInvalidURI
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
u, err := url.Parse(uri)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, errors.Wrap(err, "Invalid URI specified")
|
|
|
|
|
}
|
|
|
|
|
|
2019-06-16 23:09:16 +00:00
|
|
|
region, err := s3manager.GetBucketRegion(context.Background(), session.New(), u.Host, "us-east-1")
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, errors.Wrap(err, "Unable to find bucket region")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
cfg := aws.NewConfig().WithRegion(region)
|
2019-06-16 22:20:08 +00:00
|
|
|
if u.User != nil {
|
|
|
|
|
user := u.User.Username()
|
|
|
|
|
pass, _ := u.User.Password()
|
|
|
|
|
cfg = cfg.WithCredentials(credentials.NewStaticCredentials(user, pass, ""))
|
|
|
|
|
}
|
|
|
|
|
|
2019-06-16 22:46:52 +00:00
|
|
|
sess := session.Must(session.NewSession(cfg))
|
|
|
|
|
svc := s3.New(sess)
|
|
|
|
|
|
2019-06-30 02:54:04 +00:00
|
|
|
p := &Provider{
|
2019-06-16 22:46:52 +00:00
|
|
|
bucket: u.Host,
|
|
|
|
|
bucketRegion: region,
|
2019-06-30 02:54:04 +00:00
|
|
|
defaultACL: s3.ObjectCannedACLPrivate,
|
2019-06-30 03:33:34 +00:00
|
|
|
prefix: strings.Trim(u.Path, "/"),
|
2019-06-16 22:46:52 +00:00
|
|
|
s3: svc,
|
2019-06-30 02:54:04 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if acl := u.Query().Get("acl"); acl == s3.ObjectCannedACLPublicRead || acl == s3.ObjectCannedACLPrivate {
|
|
|
|
|
p.defaultACL = acl
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return p, nil
|
2019-06-16 22:20:08 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (p *Provider) Capabilities() providers.Capability {
|
|
|
|
|
return providers.CapBasic | providers.CapAutoChecksum | providers.CapShare
|
|
|
|
|
}
|
|
|
|
|
func (p *Provider) Name() string { return "s3" }
|
|
|
|
|
func (p *Provider) GetChecksumMethod() hash.Hash { return md5.New() }
|
|
|
|
|
|
|
|
|
|
func (p *Provider) DeleteFile(relativeName string) error {
|
|
|
|
|
_, err := p.s3.DeleteObject(&s3.DeleteObjectInput{
|
|
|
|
|
Bucket: aws.String(p.bucket),
|
2019-06-30 03:33:34 +00:00
|
|
|
Key: p.relativeNameToKey(relativeName),
|
2019-06-16 22:20:08 +00:00
|
|
|
})
|
|
|
|
|
|
|
|
|
|
return errors.Wrap(err, "Unable to delete object")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (p *Provider) GetFile(relativeName string) (providers.File, error) {
|
|
|
|
|
resp, err := p.s3.HeadObject(&s3.HeadObjectInput{
|
|
|
|
|
Bucket: aws.String(p.bucket),
|
2019-06-30 03:33:34 +00:00
|
|
|
Key: p.relativeNameToKey(relativeName),
|
2019-06-16 22:20:08 +00:00
|
|
|
})
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, errors.Wrap(err, "Unable to fetch head information")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return File{
|
|
|
|
|
key: relativeName,
|
|
|
|
|
lastModified: *resp.LastModified,
|
|
|
|
|
checksum: strings.Trim(*resp.ETag, `"`),
|
|
|
|
|
size: uint64(*resp.ContentLength),
|
|
|
|
|
|
|
|
|
|
s3Conn: p.s3,
|
|
|
|
|
bucket: p.bucket,
|
|
|
|
|
}, nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (p *Provider) ListFiles() ([]providers.File, error) {
|
|
|
|
|
var files []providers.File
|
|
|
|
|
|
|
|
|
|
err := p.s3.ListObjectsPages(&s3.ListObjectsInput{
|
|
|
|
|
Bucket: aws.String(p.bucket),
|
2019-06-30 03:33:34 +00:00
|
|
|
Prefix: aws.String(p.prefix),
|
2019-06-16 22:20:08 +00:00
|
|
|
}, func(out *s3.ListObjectsOutput, lastPage bool) bool {
|
|
|
|
|
for _, obj := range out.Contents {
|
|
|
|
|
files = append(files, File{
|
|
|
|
|
key: *obj.Key,
|
|
|
|
|
lastModified: *obj.LastModified,
|
|
|
|
|
checksum: strings.Trim(*obj.ETag, `"`),
|
|
|
|
|
size: uint64(*obj.Size),
|
|
|
|
|
|
|
|
|
|
s3Conn: p.s3,
|
|
|
|
|
bucket: p.bucket,
|
2019-06-30 03:33:34 +00:00
|
|
|
prefix: p.prefix,
|
2019-06-16 22:20:08 +00:00
|
|
|
})
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return !lastPage
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
return files, errors.Wrap(err, "Unable to list objects")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (p *Provider) PutFile(f providers.File) (providers.File, error) {
|
|
|
|
|
body, err := f.Content()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, errors.Wrap(err, "Unable to get file reader")
|
|
|
|
|
}
|
|
|
|
|
defer body.Close()
|
|
|
|
|
|
|
|
|
|
buf := new(bytes.Buffer)
|
|
|
|
|
if _, err := io.Copy(buf, body); err != nil {
|
|
|
|
|
return nil, errors.Wrap(err, "Unable to read source file")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if _, err = p.s3.PutObject(&s3.PutObjectInput{
|
2019-06-16 22:46:52 +00:00
|
|
|
ACL: aws.String(p.getFileACL(f.Info().RelativeName)),
|
2019-06-16 22:20:08 +00:00
|
|
|
Body: bytes.NewReader(buf.Bytes()),
|
|
|
|
|
Bucket: aws.String(p.bucket),
|
2019-06-30 03:33:34 +00:00
|
|
|
Key: p.relativeNameToKey(f.Info().RelativeName),
|
2019-06-16 22:20:08 +00:00
|
|
|
}); err != nil {
|
|
|
|
|
return nil, errors.Wrap(err, "Unable to write file")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return p.GetFile(f.Info().RelativeName)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (p *Provider) Share(relativeName string) (string, error) {
|
2019-06-16 22:46:52 +00:00
|
|
|
_, err := p.s3.PutObjectAcl(&s3.PutObjectAclInput{
|
|
|
|
|
ACL: aws.String(s3.ObjectCannedACLPublicRead),
|
|
|
|
|
Bucket: aws.String(p.bucket),
|
2019-06-30 03:33:34 +00:00
|
|
|
Key: p.relativeNameToKey(relativeName),
|
2019-06-16 22:46:52 +00:00
|
|
|
})
|
|
|
|
|
if err != nil {
|
|
|
|
|
return "", errors.Wrap(err, "Unable to publish file")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return fmt.Sprintf("https://s3-%s.amazonaws.com/%s/%s", p.bucketRegion, p.bucket, relativeName), nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (p *Provider) getFileACL(relativeName string) string {
|
|
|
|
|
objACL, err := p.s3.GetObjectAcl(&s3.GetObjectAclInput{
|
|
|
|
|
Bucket: aws.String(p.bucket),
|
2019-06-30 03:33:34 +00:00
|
|
|
Key: p.relativeNameToKey(relativeName),
|
2019-06-16 22:46:52 +00:00
|
|
|
})
|
|
|
|
|
|
|
|
|
|
if err != nil {
|
2019-06-30 02:54:04 +00:00
|
|
|
return p.defaultACL
|
2019-06-16 22:46:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for _, g := range objACL.Grants {
|
2019-06-16 23:09:16 +00:00
|
|
|
if g.Grantee == nil || g.Grantee.URI == nil {
|
|
|
|
|
continue
|
|
|
|
|
}
|
2019-06-16 22:46:52 +00:00
|
|
|
if *g.Grantee.URI == "http://acs.amazonaws.com/groups/global/AllUsers" && *g.Permission == "READ" {
|
|
|
|
|
return s3.ObjectCannedACLPublicRead
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2019-06-30 02:54:04 +00:00
|
|
|
return p.defaultACL
|
2019-06-16 22:20:08 +00:00
|
|
|
}
|
2019-06-30 03:33:34 +00:00
|
|
|
|
|
|
|
|
func (p Provider) relativeNameToKey(relativeName string) *string {
|
|
|
|
|
key := strings.Join([]string{p.prefix, relativeName}, "/")
|
|
|
|
|
return &key
|
|
|
|
|
}
|
