gitlab-com-seaweedfs/seaweedfs
1
0
Fork 0
mirror of https://github.com/seaweedfs/seaweedfs.git synced 2024-01-19 02:48:24 +00:00
Code Issues Projects Releases Wiki Activity
seaweedfs/weed/s3api/s3api_server.go

233 lines
11 KiB
Go
Raw Normal View History

add list all my buckets
2018-07-18 09:37:09 +00:00
package s3api
import (
s3 and filer transport using unix domain socket instead of tcp
2022-03-07 10:00:14 +00:00
"context"
s3: use bucket in the domain fix https://github.com/chrislusf/seaweedfs/issues/1405
2020-07-28 15:47:24 +00:00
"fmt"
move to https://github.com/seaweedfs/seaweedfs
2022-07-29 07:17:28 +00:00
"github.com/seaweedfs/seaweedfs/weed/filer"
"github.com/seaweedfs/seaweedfs/weed/pb/s3_pb"
s3 and filer transport using unix domain socket instead of tcp
2022-03-07 10:00:14 +00:00
"net"
support acl
2020-02-09 22:30:02 +00:00
"net/http"
multiplate DomainNames through comma
2020-10-21 15:48:51 +00:00
"strings"
s3: subscribe to s3.configure changes
2020-12-07 08:10:29 +00:00
"time"
support acl
2020-02-09 22:30:02 +00:00
add list all my buckets
2018-07-18 09:37:09 +00:00
"github.com/gorilla/mux"
move to https://github.com/seaweedfs/seaweedfs
2022-07-29 07:17:28 +00:00
"github.com/seaweedfs/seaweedfs/weed/pb"
. "github.com/seaweedfs/seaweedfs/weed/s3api/s3_constants"
"github.com/seaweedfs/seaweedfs/weed/s3api/s3err"
"github.com/seaweedfs/seaweedfs/weed/security"
"github.com/seaweedfs/seaweedfs/weed/util"
adding grpc mutual tls
2019-02-18 20:11:52 +00:00
"google.golang.org/grpc"
add list all my buckets
2018-07-18 09:37:09 +00:00
)
type S3ApiServerOption struct {
allowDeleteBucketNotEmpty
2022-03-30 17:46:13 +00:00
Filer pb.ServerAddress
Port int
Config string
DomainName string
BucketsPath string
GrpcDialOption grpc.DialOption
AllowEmptyFolder bool
AllowDeleteBucketNotEmpty bool
LocalFilerSocket *string
add list all my buckets
2018-07-18 09:37:09 +00:00
}
type S3ApiServer struct {
s3: add grpc server to accept configuration changes
2022-05-15 07:43:37 +00:00
s3_pb.UnimplementedSeaweedS3Server
add client id for all metadata listening clients
2021-12-30 08:23:57 +00:00
option *S3ApiServerOption
iam *IdentityAccessManagement
add s3 circuit breaker support for 'simultaneous request count' and 'simultaneous request bytes' limitations configure s3 circuit breaker by 'command_s3_circuitbreaker.go': usage eg: # Configure the number of simultaneous global (current s3api node) requests s3.circuit.breaker -global -type count -actions Write -values 1000 -apply # Configure the number of simultaneous requests for bucket x read and write s3.circuit.breaker -buckets -type count -actions Read,Write -values 1000 -apply # Configure the total bytes of simultaneous requests for bucket write s3.circuit.breaker -buckets -type bytes -actions Write -values 100MiB -apply # Disable circuit breaker config of bucket 'x' s3.circuit.breaker -buckets x -enable false -apply # Delete circuit breaker config of bucket 'x' s3.circuit.breaker -buckets x -delete -apply
2022-06-15 13:07:55 +00:00
cb *CircuitBreaker
add client id for all metadata listening clients
2021-12-30 08:23:57 +00:00
randomClientId int32
Merge branch 'master' into metadata_follow_with_client_id
2022-01-02 09:07:30 +00:00
filerGuard *security.Guard
s3 and filer transport using unix domain socket instead of tcp
2022-03-07 10:00:14 +00:00
client *http.Client
add list all my buckets
2018-07-18 09:37:09 +00:00
}
func NewS3ApiServer(router *mux.Router, option *S3ApiServerOption) (s3ApiServer *S3ApiServer, err error) {
FEATURE: add JWT to HTTP endpoints of Filer and use them in S3 Client - one JWT for reading and one for writing, analogous to how the JWT between Master and Volume Server works - I did not implement IP `whiteList` parameter on the filer Additionally, because http_util.DownloadFile now sets the JWT, the `download` command should now work when `jwt.signing.read` is configured. By looking at the code, I think this case did not work before. ## Docs to be adjusted after a release Page `Amazon-S3-API`: ``` # Authentication with Filer You can use mTLS for the gRPC connection between S3-API-Proxy and the filer, as explained in [Security-Configuration](Security-Configuration) - controlled by the `grpc.*` configuration in `security.toml`. Starting with version XX, it is also possible to authenticate the HTTP operations between the S3-API-Proxy and the Filer (especially uploading new files). This is configured by setting `filer_jwt.signing.key` and `filer_jwt.signing.read.key` in `security.toml`. With both configurations (gRPC and JWT), it is possible to have Filer and S3 communicate in fully authenticated fashion; so Filer will reject any unauthenticated communication. ``` Page `Security Overview`: ``` The following items are not covered, yet: - master server http REST services Starting with version XX, the Filer HTTP REST services can be secured with a JWT, by setting `filer_jwt.signing.key` and `filer_jwt.signing.read.key` in `security.toml`. ... Before version XX: "weed filer -disableHttp", disable http operations, only gRPC operations are allowed. This works with "weed mount" by FUSE. It does **not work** with the [S3 Gateway](Amazon S3 API), as this does HTTP calls to the Filer. Starting with version XX: secured by JWT, by setting `filer_jwt.signing.key` and `filer_jwt.signing.read.key` in `security.toml`. **This now works with the [S3 Gateway](Amazon S3 API).** ... # Securing Filer HTTP with JWT To enable JWT-based access control for the Filer, 1. generate `security.toml` file by `weed scaffold -config=security` 2. set `filer_jwt.signing.key` to a secret string - and optionally filer_jwt.signing.read.key` as well to a secret string 3. copy the same `security.toml` file to the filers and all S3 proxies. If `filer_jwt.signing.key` is configured: When sending upload/update/delete HTTP operations to a filer server, the request header `Authorization` should be the JWT string (`Authorization: Bearer [JwtToken]`). The operation is authorized after the filer validates the JWT with `filer_jwt.signing.key`. If `filer_jwt.signing.read.key` is configured: When sending GET or HEAD requests to a filer server, the request header `Authorization` should be the JWT string (`Authorization: Bearer [JwtToken]`). The operation is authorized after the filer validates the JWT with `filer_jwt.signing.read.key`. The S3 API Gateway reads the above JWT keys and sends authenticated HTTP requests to the filer. ``` Page `Security Configuration`: ``` (update scaffold file) ... [filer_jwt.signing] key = "blahblahblahblah" [filer_jwt.signing.read] key = "blahblahblahblah" ``` Resolves: #158
2021-12-29 18:47:53 +00:00
v := util.GetViper()
signingKey := v.GetString("jwt.filer_signing.key")
v.SetDefault("jwt.filer_signing.expires_after_seconds", 10)
expiresAfterSec := v.GetInt("jwt.filer_signing.expires_after_seconds")
readSigningKey := v.GetString("jwt.filer_signing.read.key")
v.SetDefault("jwt.filer_signing.read.expires_after_seconds", 60)
readExpiresAfterSec := v.GetInt("jwt.filer_signing.read.expires_after_seconds")
add list all my buckets
2018-07-18 09:37:09 +00:00
s3ApiServer = &S3ApiServer{
add client id for all metadata listening clients
2021-12-30 08:23:57 +00:00
option: option,
iam: NewIdentityAccessManagement(option),
randomClientId: util.RandomInt32(),
Merge branch 'master' into metadata_follow_with_client_id
2022-01-02 09:07:30 +00:00
filerGuard: security.NewGuard([]string{}, signingKey, expiresAfterSec, readSigningKey, readExpiresAfterSec),
add s3 circuit breaker support for 'simultaneous request count' and 'simultaneous request bytes' limitations configure s3 circuit breaker by 'command_s3_circuitbreaker.go': usage eg: # Configure the number of simultaneous global (current s3api node) requests s3.circuit.breaker -global -type count -actions Write -values 1000 -apply # Configure the number of simultaneous requests for bucket x read and write s3.circuit.breaker -buckets -type count -actions Read,Write -values 1000 -apply # Configure the total bytes of simultaneous requests for bucket write s3.circuit.breaker -buckets -type bytes -actions Write -values 100MiB -apply # Disable circuit breaker config of bucket 'x' s3.circuit.breaker -buckets x -enable false -apply # Delete circuit breaker config of bucket 'x' s3.circuit.breaker -buckets x -delete -apply
2022-06-15 13:07:55 +00:00
cb: NewCircuitBreaker(option),
add list all my buckets
2018-07-18 09:37:09 +00:00
}
skip unix socket mode for windows fix https://github.com/chrislusf/seaweedfs/issues/3013
2022-05-04 17:14:34 +00:00
if option.LocalFilerSocket == nil || *option.LocalFilerSocket == "" {
s3 and filer transport using unix domain socket instead of tcp
2022-03-07 10:00:14 +00:00
s3ApiServer.client = &http.Client{Transport: &http.Transport{
MaxIdleConns: 1024,
MaxIdleConnsPerHost: 1024,
}}
} else {
s3ApiServer.client = &http.Client{
Transport: &http.Transport{
DialContext: func(_ context.Context, _, _ string) (net.Conn, error) {
return net.Dial("unix", *option.LocalFilerSocket)
},
},
}
}
add list all my buckets
2018-07-18 09:37:09 +00:00
s3ApiServer.registerRouter(router)
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
go s3ApiServer.subscribeMetaEvents("s3", filer.DirectoryEtcRoot, time.Now().UnixNano())
add list all my buckets
2018-07-18 09:37:09 +00:00
return s3ApiServer, nil
}
func (s3a *S3ApiServer) registerRouter(router *mux.Router) {
// API Router
apiRouter := router.PathPrefix("/").Subrouter()
Add liveness\readiness probe for s3 api handler on /status path
2021-08-10 10:42:46 +00:00
// Readiness Probe
apiRouter.Methods("GET").Path("/status").HandlerFunc(s3a.StatusHandler)
add list all my buckets
2018-07-18 09:37:09 +00:00
var routers []*mux.Router
if s3a.option.DomainName != "" {
multiplate DomainNames through comma
2020-10-21 15:48:51 +00:00
domainNames := strings.Split(s3a.option.DomainName, ",")
for _, domainName := range domainNames {
routers = append(routers, apiRouter.Host(
fmt.Sprintf("%s.%s:%d", "{bucket:.+}", domainName, s3a.option.Port)).Subrouter())
routers = append(routers, apiRouter.Host(
fmt.Sprintf("%s.%s", "{bucket:.+}", domainName)).Subrouter())
}
add list all my buckets
2018-07-18 09:37:09 +00:00
}
routers = append(routers, apiRouter.PathPrefix("/{bucket}").Subrouter())
for _, bucket := range routers {
add s3 upload, and removing mono and multi part upload analyzer removing mono and multi part upload analyzer, which were used just to determine the file name
2018-07-21 17:39:02 +00:00
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
// each case should follow the next rule:
// - requesting object with query must precede any other methods
// - requesting object must precede any methods with buckets
// - requesting bucket with query must precede raw methods with buckets
// - requesting bucket must be processed in the end
// objects with query
s3 API add ListObjectsV2Handler
2018-07-22 09:04:07 +00:00
s3: add s3 copy fix https://github.com/chrislusf/seaweedfs/issues/1190
2020-01-31 08:11:08 +00:00
// CopyObjectPart
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("PUT").Path("/{object:.+}").HeadersRegexp("X-Amz-Copy-Source", `.*?(\/|%2F).*?`).HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.CopyObjectPartHandler, ACTION_WRITE)), "PUT")).Queries("partNumber", "{partNumber:[0-9]+}", "uploadId", "{uploadId:.*}")
add place holders for multiplarts upload
2018-09-03 18:38:10 +00:00
// PutObjectPart
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("PUT").Path("/{object:.+}").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.PutObjectPartHandler, ACTION_WRITE)), "PUT")).Queries("partNumber", "{partNumber:[0-9]+}", "uploadId", "{uploadId:.*}")
add place holders for multiplarts upload
2018-09-03 18:38:10 +00:00
// CompleteMultipartUpload
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("POST").Path("/{object:.+}").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.CompleteMultipartUploadHandler, ACTION_WRITE)), "POST")).Queries("uploadId", "{uploadId:.*}")
add place holders for multiplarts upload
2018-09-03 18:38:10 +00:00
// NewMultipartUpload
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("POST").Path("/{object:.+}").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.NewMultipartUploadHandler, ACTION_WRITE)), "POST")).Queries("uploads", "")
add place holders for multiplarts upload
2018-09-03 18:38:10 +00:00
// AbortMultipartUpload
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("DELETE").Path("/{object:.+}").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.AbortMultipartUploadHandler, ACTION_WRITE)), "DELETE")).Queries("uploadId", "{uploadId:.*}")
add place holders for multiplarts upload
2018-09-03 18:38:10 +00:00
// ListObjectParts
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("GET").Path("/{object:.+}").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.ListObjectPartsHandler, ACTION_READ)), "GET")).Queries("uploadId", "{uploadId:.*}")
add place holders for multiplarts upload
2018-09-03 18:38:10 +00:00
// ListMultipartUploads
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("GET").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.ListMultipartUploadsHandler, ACTION_READ)), "GET")).Queries("uploads", "")
add place holders for multiplarts upload
2018-09-03 18:38:10 +00:00
s3: support object tagging * GetObjectTagging * PutObjectTagging * DeleteObjectTagging
2020-10-03 05:21:51 +00:00
// GetObjectTagging
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("GET").Path("/{object:.+}").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.GetObjectTaggingHandler, ACTION_READ)), "GET")).Queries("tagging", "")
s3: support object tagging * GetObjectTagging * PutObjectTagging * DeleteObjectTagging
2020-10-03 05:21:51 +00:00
// PutObjectTagging
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("PUT").Path("/{object:.+}").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.PutObjectTaggingHandler, ACTION_TAGGING)), "PUT")).Queries("tagging", "")
s3: support object tagging * GetObjectTagging * PutObjectTagging * DeleteObjectTagging
2020-10-03 05:21:51 +00:00
// DeleteObjectTagging
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("DELETE").Path("/{object:.+}").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.DeleteObjectTaggingHandler, ACTION_TAGGING)), "DELETE")).Queries("tagging", "")
s3: support object tagging * GetObjectTagging * PutObjectTagging * DeleteObjectTagging
2020-10-03 05:21:51 +00:00
s3: avoid overwriting object with ACL/LegalHold/Retension/LockConfiguration requests
2021-09-19 10:24:47 +00:00
// PutObjectACL
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("PUT").Path("/{object:.+}").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.PutObjectAclHandler, ACTION_WRITE)), "PUT")).Queries("acl", "")
s3: avoid overwriting object with ACL/LegalHold/Retension/LockConfiguration requests
2021-09-19 10:24:47 +00:00
// PutObjectRetention
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("PUT").Path("/{object:.+}").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.PutObjectRetentionHandler, ACTION_WRITE)), "PUT")).Queries("retention", "")
s3: avoid overwriting object with ACL/LegalHold/Retension/LockConfiguration requests
2021-09-19 10:24:47 +00:00
// PutObjectLegalHold
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("PUT").Path("/{object:.+}").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.PutObjectLegalHoldHandler, ACTION_WRITE)), "PUT")).Queries("legal-hold", "")
s3: avoid overwriting object with ACL/LegalHold/Retension/LockConfiguration requests
2021-09-19 10:24:47 +00:00
// PutObjectLockConfiguration
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("PUT").Path("/{object:.+}").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.PutObjectLockConfigurationHandler, ACTION_WRITE)), "PUT")).Queries("object-lock", "")
s3: avoid overwriting object with ACL/LegalHold/Retension/LockConfiguration requests
2021-09-19 10:24:47 +00:00
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
// GetObjectACL
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("GET").Path("/{object:.+}").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.GetObjectAclHandler, ACTION_READ)), "GET")).Queries("acl", "")
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
// objects with query
// raw objects
// HeadObject
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("HEAD").Path("/{object:.+}").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.HeadObjectHandler, ACTION_READ)), "GET"))
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
// GetObject, but directory listing is not supported
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("GET").Path("/{object:.+}").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.GetObjectHandler, ACTION_READ)), "GET"))
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
s3: add s3 copy fix https://github.com/chrislusf/seaweedfs/issues/1190
2020-01-31 08:11:08 +00:00
// CopyObject
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("PUT").Path("/{object:.+}").HeadersRegexp("X-Amz-Copy-Source", ".*?(\\/|%2F).*?").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.CopyObjectHandler, ACTION_WRITE)), "COPY"))
working S3 multipart uploads
2018-09-12 07:46:12 +00:00
// PutObject
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("PUT").Path("/{object:.+}").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.PutObjectHandler, ACTION_WRITE)), "PUT"))
s3 add HEAD DELETE
2018-07-22 01:49:47 +00:00
// DeleteObject
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("DELETE").Path("/{object:.+}").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.DeleteObjectHandler, ACTION_WRITE)), "DELETE"))
add list all my buckets
2018-07-18 09:37:09 +00:00
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
// raw objects
s3 API add ListObjectsV1
2018-07-22 08:14:36 +00:00
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
// buckets with query
s3: add support for PostPolicy fix https://github.com/chrislusf/seaweedfs/issues/1426
2020-09-20 03:14:19 +00:00
preparing to support S3 multipart uploads
2018-09-04 07:42:44 +00:00
// DeleteMultipleObjects
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("POST").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.DeleteMultipleObjectsHandler, ACTION_WRITE)), "DELETE")).Queries("delete", "")
AclHandlers
2021-10-11 10:03:56 +00:00
// GetBucketACL
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("GET").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.GetBucketAclHandler, ACTION_READ)), "GET")).Queries("acl", "")
weed/s3api: added new bucket handlers for more compatibility with AWS S3 Protocol Otherwise any requests to the underlying handlers results in calls to ListObjects (v1) that may intensively load gateway and volume servers. Added the following handlers with default responses: - GetBucketLocation - GetBucketRequestPayment Added the following handlers with NotFound and NotImplemented responses: - PutBucketAcl - GetBucketPolicy - PutBucketPolicy - DeleteBucketPolicy - GetBucketCors - PutBucketCors - DeleteBucketCors
2022-02-03 14:17:05 +00:00
// PutBucketACL
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("PUT").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.PutBucketAclHandler, ACTION_WRITE)), "PUT")).Queries("acl", "")
weed/s3api: added new bucket handlers for more compatibility with AWS S3 Protocol Otherwise any requests to the underlying handlers results in calls to ListObjects (v1) that may intensively load gateway and volume servers. Added the following handlers with default responses: - GetBucketLocation - GetBucketRequestPayment Added the following handlers with NotFound and NotImplemented responses: - PutBucketAcl - GetBucketPolicy - PutBucketPolicy - DeleteBucketPolicy - GetBucketCors - PutBucketCors - DeleteBucketCors
2022-02-03 14:17:05 +00:00
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
// GetBucketPolicy
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("GET").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.GetBucketPolicyHandler, ACTION_READ)), "GET")).Queries("policy", "")
weed/s3api: added new bucket handlers for more compatibility with AWS S3 Protocol Otherwise any requests to the underlying handlers results in calls to ListObjects (v1) that may intensively load gateway and volume servers. Added the following handlers with default responses: - GetBucketLocation - GetBucketRequestPayment Added the following handlers with NotFound and NotImplemented responses: - PutBucketAcl - GetBucketPolicy - PutBucketPolicy - DeleteBucketPolicy - GetBucketCors - PutBucketCors - DeleteBucketCors
2022-02-03 14:17:05 +00:00
// PutBucketPolicy
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("PUT").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.PutBucketPolicyHandler, ACTION_WRITE)), "PUT")).Queries("policy", "")
weed/s3api: added new bucket handlers for more compatibility with AWS S3 Protocol Otherwise any requests to the underlying handlers results in calls to ListObjects (v1) that may intensively load gateway and volume servers. Added the following handlers with default responses: - GetBucketLocation - GetBucketRequestPayment Added the following handlers with NotFound and NotImplemented responses: - PutBucketAcl - GetBucketPolicy - PutBucketPolicy - DeleteBucketPolicy - GetBucketCors - PutBucketCors - DeleteBucketCors
2022-02-03 14:17:05 +00:00
// DeleteBucketPolicy
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("DELETE").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.DeleteBucketPolicyHandler, ACTION_WRITE)), "DELETE")).Queries("policy", "")
weed/s3api: added new bucket handlers for more compatibility with AWS S3 Protocol Otherwise any requests to the underlying handlers results in calls to ListObjects (v1) that may intensively load gateway and volume servers. Added the following handlers with default responses: - GetBucketLocation - GetBucketRequestPayment Added the following handlers with NotFound and NotImplemented responses: - PutBucketAcl - GetBucketPolicy - PutBucketPolicy - DeleteBucketPolicy - GetBucketCors - PutBucketCors - DeleteBucketCors
2022-02-03 14:17:05 +00:00
// GetBucketCors
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("GET").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.GetBucketCorsHandler, ACTION_READ)), "GET")).Queries("cors", "")
weed/s3api: added new bucket handlers for more compatibility with AWS S3 Protocol Otherwise any requests to the underlying handlers results in calls to ListObjects (v1) that may intensively load gateway and volume servers. Added the following handlers with default responses: - GetBucketLocation - GetBucketRequestPayment Added the following handlers with NotFound and NotImplemented responses: - PutBucketAcl - GetBucketPolicy - PutBucketPolicy - DeleteBucketPolicy - GetBucketCors - PutBucketCors - DeleteBucketCors
2022-02-03 14:17:05 +00:00
// PutBucketCors
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("PUT").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.PutBucketCorsHandler, ACTION_WRITE)), "PUT")).Queries("cors", "")
weed/s3api: added new bucket handlers for more compatibility with AWS S3 Protocol Otherwise any requests to the underlying handlers results in calls to ListObjects (v1) that may intensively load gateway and volume servers. Added the following handlers with default responses: - GetBucketLocation - GetBucketRequestPayment Added the following handlers with NotFound and NotImplemented responses: - PutBucketAcl - GetBucketPolicy - PutBucketPolicy - DeleteBucketPolicy - GetBucketCors - PutBucketCors - DeleteBucketCors
2022-02-03 14:17:05 +00:00
// DeleteBucketCors
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("DELETE").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.DeleteBucketCorsHandler, ACTION_WRITE)), "DELETE")).Queries("cors", "")
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
// GetBucketLifecycleConfiguration
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("GET").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.GetBucketLifecycleConfigurationHandler, ACTION_READ)), "GET")).Queries("lifecycle", "")
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
// PutBucketLifecycleConfiguration
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("PUT").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.PutBucketLifecycleConfigurationHandler, ACTION_WRITE)), "PUT")).Queries("lifecycle", "")
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
// DeleteBucketLifecycleConfiguration
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("DELETE").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.DeleteBucketLifecycleHandler, ACTION_WRITE)), "DELETE")).Queries("lifecycle", "")
weed/s3api: added new bucket handlers for more compatibility with AWS S3 Protocol Otherwise any requests to the underlying handlers results in calls to ListObjects (v1) that may intensively load gateway and volume servers. Added the following handlers with default responses: - GetBucketLocation - GetBucketRequestPayment Added the following handlers with NotFound and NotImplemented responses: - PutBucketAcl - GetBucketPolicy - PutBucketPolicy - DeleteBucketPolicy - GetBucketCors - PutBucketCors - DeleteBucketCors
2022-02-03 14:17:05 +00:00
// GetBucketLocation
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("GET").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.GetBucketLocationHandler, ACTION_READ)), "GET")).Queries("location", "")
weed/s3api: added new bucket handlers for more compatibility with AWS S3 Protocol Otherwise any requests to the underlying handlers results in calls to ListObjects (v1) that may intensively load gateway and volume servers. Added the following handlers with default responses: - GetBucketLocation - GetBucketRequestPayment Added the following handlers with NotFound and NotImplemented responses: - PutBucketAcl - GetBucketPolicy - PutBucketPolicy - DeleteBucketPolicy - GetBucketCors - PutBucketCors - DeleteBucketCors
2022-02-03 14:17:05 +00:00
// GetBucketRequestPayment
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("GET").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.GetBucketRequestPaymentHandler, ACTION_READ)), "GET")).Queries("requestPayment", "")
AclHandlers
2021-10-11 10:03:56 +00:00
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
// ListObjectsV2
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("GET").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.ListObjectsV2Handler, ACTION_LIST)), "LIST")).Queries("list-type", "2")
AclHandlers
2021-10-11 10:03:56 +00:00
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
// buckets with query
AclHandlers
2021-10-11 10:03:56 +00:00
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
// raw buckets
AclHandlers
2021-10-11 10:03:56 +00:00
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
// PostPolicy
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("POST").HeadersRegexp("Content-Type", "multipart/form-data*").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.PostPolicyBucketHandler, ACTION_WRITE)), "POST"))
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
// HeadBucket
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("HEAD").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.HeadBucketHandler, ACTION_READ)), "GET"))
fix DeleteBucketLifecycleConfiguration
2021-10-28 13:30:33 +00:00
// PutBucket
s3: skip permission checking for creating bucket if the bucket already exists fix https://github.com/chrislusf/seaweedfs/issues/2417 Rclone was trying to create the bucket even though the bucket already exists.
2021-11-02 20:13:36 +00:00
bucket.Methods("PUT").HandlerFunc(track(s3a.PutBucketHandler, "PUT"))
fix DeleteBucketLifecycleConfiguration
2021-10-28 13:30:33 +00:00
// DeleteBucket
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("DELETE").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.DeleteBucketHandler, ACTION_WRITE)), "DELETE"))
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
// ListObjectsV1 (Legacy)
add some unit tests and some code optimizes
2022-06-17 09:11:18 +00:00
bucket.Methods("GET").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.ListObjectsV1Handler, ACTION_LIST)), "LIST"))
weed/s3api: rearrange s3 methods handlers to ensure correct methods requesting Otherwise current calls for some methods (i.e. GetObjectAcl) ends up with wrong method selection (i.e. GetObject). Added generic comment rule of traversing methods
2022-02-04 12:14:48 +00:00
// raw buckets
add list all my buckets
2018-07-18 09:37:09 +00:00
}
// ListBuckets
s3: support config action Admin:bucket
2020-12-25 08:38:56 +00:00
apiRouter.Methods("GET").Path("/").HandlerFunc(track(s3a.ListBucketsHandler, "LIST"))
add list all my buckets
2018-07-18 09:37:09 +00:00
// NotFound
refactor
2021-06-11 04:50:21 +00:00
apiRouter.NotFoundHandler = http.HandlerFunc(s3err.NotFoundHandler)
add list all my buckets
2018-07-18 09:37:09 +00:00
}
Reference in a new issue Copy permalink