Class: Google::Cloud::Storage::File::Signer

Inherits:

Object

• Object
• Google::Cloud::Storage::File::Signer

Defined in:

lib/google/cloud/storage/file.rb

Class Method Summary

• .from_bucket(bucket, path) ⇒ Object
• .from_file(file) ⇒ Object

Instance Method Summary

• #apply_option_defaults(options) ⇒ Object
• #determine_issuer(options = {}) ⇒ Object
• #determine_signing_key(options = {}) ⇒ Object
• #ext_path ⇒ Object

  The external path to the file.

• #ext_url ⇒ Object

  The external url to the file.

• #generate_signature(signing_key, options = {}) ⇒ Object
• #generate_signed_url(issuer, signed_string, expires) ⇒ Object
• #initialize(bucket, path, service) ⇒ Signer constructor

  A new instance of Signer.

• #signature_str(options) ⇒ Object
• #signed_url(options) ⇒ Object

Constructor Details

#initialize(bucket, path, service) ⇒ Signer

Returns a new instance of Signer.

# File 'lib/google/cloud/storage/file.rb', line 718

def initialize bucket, path, service
  @bucket = bucket
  @path = path
  @service = service
end

Class Method Details

.from_bucket(bucket, path) ⇒ Object

# File 'lib/google/cloud/storage/file.rb', line 728

def self.from_bucket bucket, path
  new bucket.name, path, bucket.service
end

.from_file(file) ⇒ Object

# File 'lib/google/cloud/storage/file.rb', line 724

def self.from_file file
  new file.bucket, file.name, file.service
end

Instance Method Details

#apply_option_defaults(options) ⇒ Object

# File 'lib/google/cloud/storage/file.rb', line 744

def apply_option_defaults options
  adjusted_expires = (Time.now.utc + (options[:expires] || 300)).to_i
  options[:expires] = adjusted_expires
  options[:method]  ||= "GET"
  options
end

#determine_issuer(options = {}) ⇒ Object

# File 'lib/google/cloud/storage/file.rb', line 762

def determine_issuer options = {}
  options[:issuer] || options[:client_email] ||
    @service.credentials.issuer
end

#determine_signing_key(options = {}) ⇒ Object

# File 'lib/google/cloud/storage/file.rb', line 757

def determine_signing_key options = {}
  options[:signing_key] || options[:private_key] ||
    @service.credentials.signing_key
end

#ext_path ⇒ Object

The external path to the file.

# File 'lib/google/cloud/storage/file.rb', line 734

def ext_path
  URI.escape "/#{@bucket}/#{@path}"
end

#ext_url ⇒ Object

The external url to the file.

# File 'lib/google/cloud/storage/file.rb', line 740

def ext_url
  "https://storage.googleapis.com#{ext_path}"
end

#generate_signature(signing_key, options = {}) ⇒ Object

# File 'lib/google/cloud/storage/file.rb', line 779

def generate_signature signing_key, options = {}
  unless signing_key.respond_to? :sign
    signing_key = OpenSSL::PKey::RSA.new signing_key
  end
  signing_key.sign OpenSSL::Digest::SHA256.new, signature_str(options)
end

#generate_signed_url(issuer, signed_string, expires) ⇒ Object

# File 'lib/google/cloud/storage/file.rb', line 786

def generate_signed_url issuer, signed_string, expires
  signature = Base64.strict_encode64(signed_string).delete("\n")
  "#{ext_url}?GoogleAccessId=#{CGI.escape issuer}" \
            "&Expires=#{expires}" \
            "&Signature=#{CGI.escape signature}"
end

#signature_str(options) ⇒ Object

# File 'lib/google/cloud/storage/file.rb', line 751

def signature_str options
  [options[:method], options[:content_md5],
   options[:content_type], options[:expires],
   ext_path].join "\n"
end

#signed_url(options) ⇒ Object

# File 'lib/google/cloud/storage/file.rb', line 767

def signed_url options
  options = apply_option_defaults options

  i = determine_issuer options
  s = determine_signing_key options

  fail SignedUrlUnavailable unless i && s

  sig = generate_signature s, options
  generate_signed_url i, sig, options[:expires]
end