Class: RightScale::CloudApi::AWS::S3::Link::RequestSigner

Inherits:

RequestSigner

• Object
• CloudApi::Routine
• RequestSigner
• RightScale::CloudApi::AWS::S3::Link::RequestSigner

Defined in:

lib/cloud/aws/s3/link/routines/request_signer.rb

Overview

S3 Request signer

Constant Summary

Constants inherited from RequestSigner

RequestSigner::ONE_YEAR_OF_SECONDS, RequestSigner::OVERRIDE_RESPONSE_HEADERS, RequestSigner::SUB_RESOURCES

Instance Method Summary

• #compute_params!(params, access_key) ⇒ Hash

  Sets response params.

• #compute_signature(secret_key, verb, bucket, object, params) ⇒ String

  Computes signature.

• #process ⇒ void

  Authenticates an S3 request.

Methods inherited from RequestSigner

#compute_body, #compute_bucket_name_and_object_path, #compute_canonicalized_bucket, #compute_canonicalized_path, #compute_headers!, #compute_host, #compute_path, #get_subresources

Instance Method Details

#compute_params!(params, access_key) ⇒ Hash

Sets response params

Parameters:

• params (Hash)

Returns:

• (Hash)

# File 'lib/cloud/aws/s3/link/routines/request_signer.rb', line 79

def compute_params!(params, access_key)
  # Expires
  expires   = params['Expires']
  expires ||= Time.now.utc.to_i + ONE_YEAR_OF_SECONDS
  expires   = expires.to_i unless expires.is_a?(Fixnum)
  params['Expires']        = expires
  params['AWSAccessKeyId'] = access_key
  params
end

#compute_signature(secret_key, verb, bucket, object, params) ⇒ String

Computes signature

Parameters:

• secret_key (String)
• verb (String)
• bucket (String)
• params (Hash)

Returns:

• (String)

# File 'lib/cloud/aws/s3/link/routines/request_signer.rb', line 99

def compute_signature(secret_key, verb, bucket, object, params)
  can_path = compute_canonicalized_path(bucket, object, params)
  Utils::AWS::sign_s3_signature(secret_key, verb, can_path, { 'expires' => params['Expires'] })
end

#process ⇒ void

This method returns an undefined value.

Authenticates an S3 request

Examples:

# no example

# File 'lib/cloud/aws/s3/link/routines/request_signer.rb', line 41

def process
  fail Error::new("Only GET method is supported") unless @data[:request][:verb] == :get
  fail Error::new("Body must be blank")           unless @data[:request][:body]._blank?
  fail Error::new("Headers must be blank")        unless @data[:request][:headers]._blank?

  uri        = @data[:connection][:uri]
  access_key = @data[:credentials][:aws_access_key_id]
  secret_key = @data[:credentials][:aws_secret_access_key]
  bucket     = @data[:request][:bucket]
  object     = @data[:request][:relative_path]
  params     = @data[:request][:params]
  verb       = @data[:request][:verb]

  bucket, object = compute_bucket_name_and_object_path(bucket, object)
  uri            = compute_host(bucket, uri)

  compute_params!(params, access_key)

  # Set Auth param
  signature = compute_signature(secret_key, verb, bucket, object, params)
  params['Signature'] = signature

  # Compute href
  path                = compute_path(bucket, object, params)
  uri.path, uri.query = path.split('?')
  @data[:result]      = uri.to_s

  # Set completion flag
  @data[:vars][:system][:done] = true
end