427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
|
# File 'lib/cnvrg/files.rb', line 427
def resolve_bucket(response)
begin
sts_path = response["path_sts"]
sts_body = self.download_and_read(sts_path)
split = sts_body.split("\n")
key = split[0]
iv = split[1]
access = Cnvrg::Helpers.decrypt(key, iv, response["sts_a"])
secret = Cnvrg::Helpers.decrypt(key, iv, response["sts_s"])
session = Cnvrg::Helpers.decrypt(key, iv, response["sts_st"])
region = Cnvrg::Helpers.decrypt(key, iv, response["region"])
bucket = Cnvrg::Helpers.decrypt(key, iv, response["bucket"])
Cnvrg::Logger.log_info("Resolving bucket #{bucket}, region: #{region}")
is_s3 = response["is_s3"]
if is_s3 or is_s3.nil?
client = Aws::S3::Client.new(
:access_key_id => access,
:secret_access_key => secret,
:session_token => session,
:region => region,
:use_accelerate_endpoint => true,
:http_open_timeout => 60, :retry_limit => 20)
else
endpoint = Cnvrg::Helpers.decrypt(key, iv, response["endpoint"])
client = Aws::S3::Client.new(
:access_key_id => access,
:secret_access_key => secret,
:region => region,
:endpoint => endpoint, :force_path_style => true, :ssl_verify_peer => false,
:use_accelerate_endpoint => false,
:server_side_encryption => 'AES256',
:http_open_timeout => 60, :retry_limit => 20)
end
s3 = Aws::S3::Resource.new(client: client)
s3.bucket(bucket)
rescue => e
Cnvrg::Logger.log_error(e)
Cnvrg::Logger.log_method(bind: binding)
end
end
|