packer-cn/vendor/github.com/aliyun/aliyun-oss-go-sdk/oss/auth.go

98 lines
2.7 KiB
Go
Raw Normal View History

2017-03-04 05:06:32 -05:00
package oss
import (
"bytes"
"crypto/hmac"
"crypto/sha1"
"encoding/base64"
"hash"
"io"
"net/http"
"sort"
"strings"
)
2019-10-14 10:21:52 -04:00
// headerSorter defines the key-value structure for storing the sorted data in signHeader.
2017-03-04 05:06:32 -05:00
type headerSorter struct {
Keys []string
Vals []string
}
2019-10-14 10:21:52 -04:00
// signHeader signs the header and sets it as the authorization header.
2017-03-04 05:06:32 -05:00
func (conn Conn) signHeader(req *http.Request, canonicalizedResource string) {
2019-10-14 10:21:52 -04:00
// Get the final authorization string
authorizationStr := "OSS " + conn.config.AccessKeyID + ":" + conn.getSignedStr(req, canonicalizedResource)
// Give the parameter "Authorization" value
req.Header.Set(HTTPHeaderAuthorization, authorizationStr)
}
func (conn Conn) getSignedStr(req *http.Request, canonicalizedResource string) string {
// Find out the "x-oss-"'s address in header of the request
2017-03-04 05:06:32 -05:00
temp := make(map[string]string)
for k, v := range req.Header {
if strings.HasPrefix(strings.ToLower(k), "x-oss-") {
temp[strings.ToLower(k)] = v[0]
}
}
hs := newHeaderSorter(temp)
2019-10-14 10:21:52 -04:00
// Sort the temp by the ascending order
2017-03-04 05:06:32 -05:00
hs.Sort()
2019-10-14 10:21:52 -04:00
// Get the canonicalizedOSSHeaders
2017-03-04 05:06:32 -05:00
canonicalizedOSSHeaders := ""
for i := range hs.Keys {
canonicalizedOSSHeaders += hs.Keys[i] + ":" + hs.Vals[i] + "\n"
}
// Give other parameters values
2019-10-14 10:21:52 -04:00
// when sign URL, date is expires
2017-03-04 05:06:32 -05:00
date := req.Header.Get(HTTPHeaderDate)
contentType := req.Header.Get(HTTPHeaderContentType)
contentMd5 := req.Header.Get(HTTPHeaderContentMD5)
signStr := req.Method + "\n" + contentMd5 + "\n" + contentType + "\n" + date + "\n" + canonicalizedOSSHeaders + canonicalizedResource
h := hmac.New(func() hash.Hash { return sha1.New() }, []byte(conn.config.AccessKeySecret))
io.WriteString(h, signStr)
signedStr := base64.StdEncoding.EncodeToString(h.Sum(nil))
2019-10-14 10:21:52 -04:00
return signedStr
2017-03-04 05:06:32 -05:00
}
2019-10-14 10:21:52 -04:00
// newHeaderSorter is an additional function for function SignHeader.
2017-03-04 05:06:32 -05:00
func newHeaderSorter(m map[string]string) *headerSorter {
hs := &headerSorter{
Keys: make([]string, 0, len(m)),
Vals: make([]string, 0, len(m)),
}
for k, v := range m {
hs.Keys = append(hs.Keys, k)
hs.Vals = append(hs.Vals, v)
}
return hs
}
2019-10-14 10:21:52 -04:00
// Sort is an additional function for function SignHeader.
2017-03-04 05:06:32 -05:00
func (hs *headerSorter) Sort() {
sort.Sort(hs)
}
2019-10-14 10:21:52 -04:00
// Len is an additional function for function SignHeader.
2017-03-04 05:06:32 -05:00
func (hs *headerSorter) Len() int {
return len(hs.Vals)
}
2019-10-14 10:21:52 -04:00
// Less is an additional function for function SignHeader.
2017-03-04 05:06:32 -05:00
func (hs *headerSorter) Less(i, j int) bool {
return bytes.Compare([]byte(hs.Keys[i]), []byte(hs.Keys[j])) < 0
}
2019-10-14 10:21:52 -04:00
// Swap is an additional function for function SignHeader.
2017-03-04 05:06:32 -05:00
func (hs *headerSorter) Swap(i, j int) {
hs.Vals[i], hs.Vals[j] = hs.Vals[j], hs.Vals[i]
hs.Keys[i], hs.Keys[j] = hs.Keys[j], hs.Keys[i]
}