seaweedfs/weed/s3api/s3api_bucket_handlers.go

package s3api

import (
	"context"
	"encoding/xml"
	"fmt"
	"github.com/chrislusf/seaweedfs/weed/filer"
	"github.com/chrislusf/seaweedfs/weed/s3api/s3_constants"
	"github.com/chrislusf/seaweedfs/weed/storage/needle"
	"math"
	"net/http"
	"time"

	xhttp "github.com/chrislusf/seaweedfs/weed/s3api/http"
	"github.com/chrislusf/seaweedfs/weed/s3api/s3err"

	"github.com/aws/aws-sdk-go/aws"
	"github.com/aws/aws-sdk-go/service/s3"

	"github.com/chrislusf/seaweedfs/weed/glog"
	"github.com/chrislusf/seaweedfs/weed/pb/filer_pb"
)

type ListAllMyBucketsResult struct {
	XMLName xml.Name `xml:"http://s3.amazonaws.com/doc/2006-03-01/ ListAllMyBucketsResult"`
	Owner   *s3.Owner
	Buckets []*s3.Bucket `xml:"Buckets>Bucket"`
}

func (s3a *S3ApiServer) ListBucketsHandler(w http.ResponseWriter, r *http.Request) {

	glog.V(3).Infof("ListBucketsHandler")

	var identity *Identity
	var s3Err s3err.ErrorCode
	if s3a.iam.isEnabled() {
		identity, s3Err = s3a.iam.authUser(r)
		if s3Err != s3err.ErrNone {
			s3err.WriteErrorResponse(w, r, s3Err)
			return
		}
	}

	var response ListAllMyBucketsResult

	entries, _, err := s3a.list(s3a.option.BucketsPath, "", "", false, math.MaxInt32)

	if err != nil {
		s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
		return
	}

	identityId := r.Header.Get(xhttp.AmzIdentityId)

	var buckets []*s3.Bucket
	for _, entry := range entries {
		if entry.IsDirectory {
			if identity != nil && !identity.canDo(s3_constants.ACTION_LIST, entry.Name) {
				continue
			}
			buckets = append(buckets, &s3.Bucket{
				Name:         aws.String(entry.Name),
				CreationDate: aws.Time(time.Unix(entry.Attributes.Crtime, 0).UTC()),
			})
		}
	}

	response = ListAllMyBucketsResult{
		Owner: &s3.Owner{
			ID:          aws.String(identityId),
			DisplayName: aws.String(identityId),
		},
		Buckets: buckets,
	}

	writeSuccessResponseXML(w, r, response)
}

func (s3a *S3ApiServer) PutBucketHandler(w http.ResponseWriter, r *http.Request) {

	bucket, _ := getBucketAndObject(r)
	glog.V(3).Infof("PutBucketHandler %s", bucket)

	// avoid duplicated buckets
	errCode := s3err.ErrNone
	if err := s3a.WithFilerClient(func(client filer_pb.SeaweedFilerClient) error {
		if resp, err := client.CollectionList(context.Background(), &filer_pb.CollectionListRequest{
			IncludeEcVolumes:     true,
			IncludeNormalVolumes: true,
		}); err != nil {
			glog.Errorf("list collection: %v", err)
			return fmt.Errorf("list collections: %v", err)
		} else {
			for _, c := range resp.Collections {
				if bucket == c.Name {
					errCode = s3err.ErrBucketAlreadyExists
					break
				}
			}
		}
		return nil
	}); err != nil {
		s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
		return
	}
	if exist, err := s3a.exists(s3a.option.BucketsPath, bucket, true); err == nil && exist {
		errCode = s3err.ErrBucketAlreadyExists
	}
	if errCode != s3err.ErrNone {
		s3err.WriteErrorResponse(w, r, errCode)
		return
	}

	fn := func(entry *filer_pb.Entry) {
		if identityId := r.Header.Get(xhttp.AmzIdentityId); identityId != "" {
			if entry.Extended == nil {
				entry.Extended = make(map[string][]byte)
			}
			entry.Extended[xhttp.AmzIdentityId] = []byte(identityId)
		}
	}

	// create the folder for bucket, but lazily create actual collection
	if err := s3a.mkdir(s3a.option.BucketsPath, bucket, fn); err != nil {
		glog.Errorf("PutBucketHandler mkdir: %v", err)
		s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
		return
	}

	writeSuccessResponseEmpty(w, r)
}

func (s3a *S3ApiServer) DeleteBucketHandler(w http.ResponseWriter, r *http.Request) {

	bucket, _ := getBucketAndObject(r)
	glog.V(3).Infof("DeleteBucketHandler %s", bucket)

	if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {
		s3err.WriteErrorResponse(w, r, err)
		return
	}

	err := s3a.WithFilerClient(func(client filer_pb.SeaweedFilerClient) error {

		// delete collection
		deleteCollectionRequest := &filer_pb.DeleteCollectionRequest{
			Collection: bucket,
		}

		glog.V(1).Infof("delete collection: %v", deleteCollectionRequest)
		if _, err := client.DeleteCollection(context.Background(), deleteCollectionRequest); err != nil {
			return fmt.Errorf("delete collection %s: %v", bucket, err)
		}

		return nil
	})

	err = s3a.rm(s3a.option.BucketsPath, bucket, false, true)

	if err != nil {
		s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
		return
	}

	s3err.WriteEmptyResponse(w, r, http.StatusNoContent)
}

func (s3a *S3ApiServer) HeadBucketHandler(w http.ResponseWriter, r *http.Request) {

	bucket, _ := getBucketAndObject(r)
	glog.V(3).Infof("HeadBucketHandler %s", bucket)

	if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {
		s3err.WriteErrorResponse(w, r, err)
		return
	}

	writeSuccessResponseEmpty(w, r)
}

func (s3a *S3ApiServer) checkBucket(r *http.Request, bucket string) s3err.ErrorCode {
	entry, err := s3a.getEntry(s3a.option.BucketsPath, bucket)
	if entry == nil || err == filer_pb.ErrNotFound {
		return s3err.ErrNoSuchBucket
	}

	if !s3a.hasAccess(r, entry) {
		return s3err.ErrAccessDenied
	}
	return s3err.ErrNone
}

func (s3a *S3ApiServer) hasAccess(r *http.Request, entry *filer_pb.Entry) bool {
	isAdmin := r.Header.Get(xhttp.AmzIsAdmin) != ""
	if isAdmin {
		return true
	}
	if entry.Extended == nil {
		return true
	}

	identityId := r.Header.Get(xhttp.AmzIdentityId)
	if id, ok := entry.Extended[xhttp.AmzIdentityId]; ok {
		if identityId != string(id) {
			return false
		}
	}
	return true
}

// GetBucketAclHandler Get Bucket ACL
// https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketAcl.html
func (s3a *S3ApiServer) GetBucketAclHandler(w http.ResponseWriter, r *http.Request) {
	// collect parameters
	bucket, _ := getBucketAndObject(r)
	glog.V(3).Infof("GetBucketAclHandler %s", bucket)

	if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {
		s3err.WriteErrorResponse(w, r, err)
		return
	}

	response := AccessControlPolicy{}
	for _, ident := range s3a.iam.identities {
		if len(ident.Credentials) == 0 {
			continue
		}
		for _, action := range ident.Actions {
			if !action.overBucket(bucket) || action.getPermission() == "" {
				continue
			}
			id := ident.Credentials[0].AccessKey
			if response.Owner.DisplayName == "" && action.isOwner(bucket) && len(ident.Credentials) > 0 {
				response.Owner.DisplayName = ident.Name
				response.Owner.ID = id
			}
			response.AccessControlList.Grant = append(response.AccessControlList.Grant, Grant{
				Grantee: Grantee{
					ID:          id,
					DisplayName: ident.Name,
					Type:        "CanonicalUser",
					XMLXSI:      "CanonicalUser",
					XMLNS:       "http://www.w3.org/2001/XMLSchema-instance"},
				Permission: action.getPermission(),
			})
		}
	}
	writeSuccessResponseXML(w, r, response)
}

// GetBucketLifecycleConfigurationHandler Get Bucket Lifecycle configuration
// https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketLifecycleConfiguration.html
func (s3a *S3ApiServer) GetBucketLifecycleConfigurationHandler(w http.ResponseWriter, r *http.Request) {
	// collect parameters
	bucket, _ := getBucketAndObject(r)
	glog.V(3).Infof("GetBucketAclHandler %s", bucket)

	if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {
		s3err.WriteErrorResponse(w, r, err)
		return
	}
	fc, err := filer.ReadFilerConf(s3a.option.Filer, s3a.option.GrpcDialOption, nil)
	if err != nil {
		glog.Errorf("GetBucketLifecycleConfigurationHandler: %s", err)
		s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
		return
	}
	ttls := fc.GetCollectionTtls(bucket)
	if len(ttls) == 0 {
		s3err.WriteErrorResponse(w, r, s3err.ErrNoSuchLifecycleConfiguration)
		return
	}
	response := Lifecycle{}
	for prefix, internalTtl := range ttls {
		ttl, _ := needle.ReadTTL(internalTtl)
		days := int(ttl.Minutes() / 60 / 24)
		if days == 0 {
			continue
		}
		response.Rules = append(response.Rules, Rule{
			Status: Enabled, Filter: Filter{
				Prefix: Prefix{string: prefix, set: true},
				set:    true,
			},
			Expiration: Expiration{Days: days, set: true},
		})
	}
	writeSuccessResponseXML(w, r, response)
}

// PutBucketLifecycleConfigurationHandler Put Bucket Lifecycle configuration
// https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutBucketLifecycleConfiguration.html
func (s3a *S3ApiServer) PutBucketLifecycleConfigurationHandler(w http.ResponseWriter, r *http.Request) {

	s3err.WriteErrorResponse(w, r, s3err.ErrNotImplemented)

}

// DeleteBucketMetricsConfiguration Delete Bucket Lifecycle
// https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteBucketLifecycle.html
func (s3a *S3ApiServer) DeleteBucketLifecycleHandler(w http.ResponseWriter, r *http.Request) {

	s3err.WriteEmptyResponse(w, r, http.StatusNoContent)

}
add list all my buckets 2018-07-18 09:37:09 +00:00			`package s3api`

			`import (`
			`"context"`
add namespace for ListAllMyBucketsResult 2019-02-27 07:23:04 +00:00			`"encoding/xml"`
add list all my buckets 2018-07-18 09:37:09 +00:00			`"fmt"`
AclHandlers 2021-10-11 10:03:56 +00:00			`"github.com/chrislusf/seaweedfs/weed/filer"`
s3: support config action Admin:bucket 2020-12-25 08:38:56 +00:00			`"github.com/chrislusf/seaweedfs/weed/s3api/s3_constants"`
GetBucketLifecycleConfigurationHandler 2021-10-13 20:35:33 +00:00			`"github.com/chrislusf/seaweedfs/weed/storage/needle"`
fix s3 ListAllMyBucketsResult to work with s3cmd 2019-01-02 19:36:29 +00:00			`"math"`
go fmt 2018-07-22 00:39:10 +00:00			`"net/http"`
			`"time"`
go fmt 2018-07-24 08:38:08 +00:00
Add bucket owner attr. 2020-11-11 08:20:59 +00:00			`xhttp "github.com/chrislusf/seaweedfs/weed/s3api/http"`
			`"github.com/chrislusf/seaweedfs/weed/s3api/s3err"`

fix s3 ListAllMyBucketsResult to work with s3cmd 2019-01-02 19:36:29 +00:00			`"github.com/aws/aws-sdk-go/aws"`
			`"github.com/aws/aws-sdk-go/service/s3"`
fix directory lookup nil 2020-02-25 19:13:06 +00:00
go fmt 2018-07-24 08:38:08 +00:00			`"github.com/chrislusf/seaweedfs/weed/glog"`
			`"github.com/chrislusf/seaweedfs/weed/pb/filer_pb"`
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer 2018-07-19 08:21:44 +00:00			`)`

fix s3 ListAllMyBucketsResult to work with s3cmd 2019-01-02 19:36:29 +00:00			`type ListAllMyBucketsResult struct {`
add context to all filer APIs 2019-03-15 22:55:34 +00:00			XMLName xml.Name `xml:"http://s3.amazonaws.com/doc/2006-03-01/ ListAllMyBucketsResult"`
fix s3 ListAllMyBucketsResult to work with s3cmd 2019-01-02 19:36:29 +00:00			`Owner *s3.Owner`
add namespace for ListAllMyBucketsResult 2019-02-27 07:23:04 +00:00			Buckets []*s3.Bucket `xml:"Buckets>Bucket"`
fix s3 ListAllMyBucketsResult to work with s3cmd 2019-01-02 19:36:29 +00:00			`}`

add list all my buckets 2018-07-18 09:37:09 +00:00			`func (s3a S3ApiServer) ListBucketsHandler(w http.ResponseWriter, r http.Request) {`

add glog for s3 handlers 2021-09-19 07:18:59 +00:00			`glog.V(3).Infof("ListBucketsHandler")`

s3: support config action Admin:bucket 2020-12-25 08:38:56 +00:00			`var identity *Identity`
			`var s3Err s3err.ErrorCode`
			`if s3a.iam.isEnabled() {`
			`identity, s3Err = s3a.iam.authUser(r)`
			`if s3Err != s3err.ErrNone {`
refactoring 2021-11-01 01:05:34 +00:00			`s3err.WriteErrorResponse(w, r, s3Err)`
s3: support config action Admin:bucket 2020-12-25 08:38:56 +00:00			`return`
			`}`
			`}`

fix s3 ListAllMyBucketsResult to work with s3cmd 2019-01-02 19:36:29 +00:00			`var response ListAllMyBucketsResult`
add list all my buckets 2018-07-18 09:37:09 +00:00
s3: ListParts output xml format fix https://github.com/chrislusf/seaweedfs/issues/1461 2020-09-11 21:53:50 +00:00			`entries, _, err := s3a.list(s3a.option.BucketsPath, "", "", false, math.MaxInt32)`
add list all my buckets 2018-07-18 09:37:09 +00:00
refactoring 2018-09-03 20:03:16 +00:00			`if err != nil {`
refactoring 2021-11-01 01:05:34 +00:00			`s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)`
refactoring 2018-09-03 20:03:16 +00:00			`return`
			`}`
add list all my buckets 2018-07-18 09:37:09 +00:00
Add bucket owner attr. 2020-11-11 08:20:59 +00:00			`identityId := r.Header.Get(xhttp.AmzIdentityId)`

fix s3 ListAllMyBucketsResult to work with s3cmd 2019-01-02 19:36:29 +00:00			`var buckets []*s3.Bucket`
refactoring 2018-09-03 20:03:16 +00:00			`for _, entry := range entries {`
			`if entry.IsDirectory {`
s3: list permission is needed to list my buckets fix https://github.com/chrislusf/seaweedfs/issues/1837 2021-03-01 20:41:55 +00:00			`if identity != nil && !identity.canDo(s3_constants.ACTION_LIST, entry.Name) {`
enable admin to access all buckets 2020-11-12 21:57:54 +00:00			`continue`
Add bucket owner attr. 2020-11-11 08:20:59 +00:00			`}`
fix s3 ListAllMyBucketsResult to work with s3cmd 2019-01-02 19:36:29 +00:00			`buckets = append(buckets, &s3.Bucket{`
			`Name: aws.String(entry.Name),`
s3: print out time in UTC format fix https://github.com/chrislusf/seaweedfs/issues/1297 2020-04-30 04:35:24 +00:00			`CreationDate: aws.Time(time.Unix(entry.Attributes.Crtime, 0).UTC()),`
refactoring 2018-09-03 20:03:16 +00:00			`})`
add list all my buckets 2018-07-18 09:37:09 +00:00			`}`
refactoring 2018-09-03 20:03:16 +00:00			`}`
add list all my buckets 2018-07-18 09:37:09 +00:00
fix s3 ListAllMyBucketsResult to work with s3cmd 2019-01-02 19:36:29 +00:00			`response = ListAllMyBucketsResult{`
			`Owner: &s3.Owner{`
Add bucket owner attr. 2020-11-11 08:20:59 +00:00			`ID: aws.String(identityId),`
			`DisplayName: aws.String(identityId),`
refactoring 2018-09-03 20:03:16 +00:00			`},`
fix s3 ListAllMyBucketsResult to work with s3cmd 2019-01-02 19:36:29 +00:00			`Buckets: buckets,`
add list all my buckets 2018-07-18 09:37:09 +00:00			`}`

refactoring 2021-11-01 01:02:08 +00:00			`writeSuccessResponseXML(w, r, response)`
add list all my buckets 2018-07-18 09:37:09 +00:00			`}`
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer 2018-07-19 08:21:44 +00:00
			`func (s3a S3ApiServer) PutBucketHandler(w http.ResponseWriter, r http.Request) {`

refactor 2020-07-26 19:58:58 +00:00			`bucket, _ := getBucketAndObject(r)`
add glog for s3 handlers 2021-09-19 07:18:59 +00:00			`glog.V(3).Infof("PutBucketHandler %s", bucket)`
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer 2018-07-19 08:21:44 +00:00
s3: avoid duplicated bucket 2020-10-15 17:52:17 +00:00			`// avoid duplicated buckets`
			`errCode := s3err.ErrNone`
			`if err := s3a.WithFilerClient(func(client filer_pb.SeaweedFilerClient) error {`
			`if resp, err := client.CollectionList(context.Background(), &filer_pb.CollectionListRequest{`
			`IncludeEcVolumes: true,`
			`IncludeNormalVolumes: true,`
			`}); err != nil {`
			`glog.Errorf("list collection: %v", err)`
			`return fmt.Errorf("list collections: %v", err)`
go fmt 2020-10-25 03:12:04 +00:00			`} else {`
s3: avoid duplicated bucket 2020-10-15 17:52:17 +00:00			`for _, c := range resp.Collections {`
			`if bucket == c.Name {`
			`errCode = s3err.ErrBucketAlreadyExists`
			`break`
			`}`
			`}`
			`}`
			`return nil`
			`}); err != nil {`
refactoring 2021-11-01 01:05:34 +00:00			`s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)`
s3: avoid duplicated bucket 2020-10-15 17:52:17 +00:00			`return`
			`}`
check if bucket already exists. 2020-11-12 06:11:03 +00:00			`if exist, err := s3a.exists(s3a.option.BucketsPath, bucket, true); err == nil && exist {`
			`errCode = s3err.ErrBucketAlreadyExists`
			`}`
s3: avoid duplicated bucket 2020-10-15 17:52:17 +00:00			`if errCode != s3err.ErrNone {`
refactoring 2021-11-01 01:05:34 +00:00			`s3err.WriteErrorResponse(w, r, errCode)`
s3: avoid duplicated bucket 2020-10-15 17:52:17 +00:00			`return`
			`}`

Add bucket owner attr. 2020-11-11 08:20:59 +00:00			`fn := func(entry *filer_pb.Entry) {`
			`if identityId := r.Header.Get(xhttp.AmzIdentityId); identityId != "" {`
fix if nil map in entry. 2020-11-12 03:50:19 +00:00			`if entry.Extended == nil {`
			`entry.Extended = make(map[string][]byte)`
			`}`
Add bucket owner attr. 2020-11-11 08:20:59 +00:00			`entry.Extended[xhttp.AmzIdentityId] = []byte(identityId)`
			`}`
			`}`

refactoring 2018-09-03 20:03:16 +00:00			`// create the folder for bucket, but lazily create actual collection`
Add bucket owner attr. 2020-11-11 08:20:59 +00:00			`if err := s3a.mkdir(s3a.option.BucketsPath, bucket, fn); err != nil {`
s3: avoid duplicated bucket 2020-10-15 17:52:17 +00:00			`glog.Errorf("PutBucketHandler mkdir: %v", err)`
refactoring 2021-11-01 01:05:34 +00:00			`s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)`
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer 2018-07-19 08:21:44 +00:00			`return`
			`}`

refactoring 2021-11-01 01:02:08 +00:00			`writeSuccessResponseEmpty(w, r)`
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer 2018-07-19 08:21:44 +00:00			`}`

			`func (s3a S3ApiServer) DeleteBucketHandler(w http.ResponseWriter, r http.Request) {`

refactor 2020-07-26 19:58:58 +00:00			`bucket, _ := getBucketAndObject(r)`
add glog for s3 handlers 2021-09-19 07:18:59 +00:00			`glog.V(3).Infof("DeleteBucketHandler %s", bucket)`
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer 2018-07-19 08:21:44 +00:00
adjust check bucket if exist or has access. 2020-11-13 09:13:20 +00:00			`if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {`
refactoring 2021-11-01 01:05:34 +00:00			`s3err.WriteErrorResponse(w, r, err)`
return NoSuchBucket instead of InternalError delete non-existed bucket. 2020-11-12 08:44:16 +00:00			`return`
			`}`
skip if entry.Extended map is nil. 2020-11-12 09:59:31 +00:00
adjust check bucket if exist or has access. 2020-11-13 09:13:20 +00:00			`err := s3a.WithFilerClient(func(client filer_pb.SeaweedFilerClient) error {`
delete bucket also removes collection data 2018-07-20 07:10:01 +00:00
			`// delete collection`
			`deleteCollectionRequest := &filer_pb.DeleteCollectionRequest{`
			`Collection: bucket,`
			`}`

			`glog.V(1).Infof("delete collection: %v", deleteCollectionRequest)`
remove ctx if possible 2020-02-26 06:23:59 +00:00			`if _, err := client.DeleteCollection(context.Background(), deleteCollectionRequest); err != nil {`
fix string printing 2018-07-20 07:58:10 +00:00			`return fmt.Errorf("delete collection %s: %v", bucket, err)`
delete bucket also removes collection data 2018-07-20 07:10:01 +00:00			`}`

add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer 2018-07-19 08:21:44 +00:00			`return nil`
			`})`

S3 API: fix DeleteMultipleObjectsHandler fix https://github.com/chrislusf/seaweedfs/issues/1241 2020-03-20 21:17:31 +00:00			`err = s3a.rm(s3a.option.BucketsPath, bucket, false, true)`
refactoring filer rm 2018-09-03 20:16:26 +00:00
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer 2018-07-19 08:21:44 +00:00			`if err != nil {`
refactoring 2021-11-01 01:05:34 +00:00			`s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)`
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer 2018-07-19 08:21:44 +00:00			`return`
			`}`

refactoring 2021-11-01 01:02:08 +00:00			`s3err.WriteEmptyResponse(w, r, http.StatusNoContent)`
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer 2018-07-19 08:21:44 +00:00			`}`
add HeadBucket 2018-07-19 08:43:27 +00:00
			`func (s3a S3ApiServer) HeadBucketHandler(w http.ResponseWriter, r http.Request) {`

refactor 2020-07-26 19:58:58 +00:00			`bucket, _ := getBucketAndObject(r)`
add glog for s3 handlers 2021-09-19 07:18:59 +00:00			`glog.V(3).Infof("HeadBucketHandler %s", bucket)`
add HeadBucket 2018-07-19 08:43:27 +00:00
adjust check bucket if exist or has access. 2020-11-13 09:13:20 +00:00			`if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {`
refactoring 2021-11-01 01:05:34 +00:00			`s3err.WriteErrorResponse(w, r, err)`
adjust check bucket if exist or has access. 2020-11-13 09:13:20 +00:00			`return`
			`}`

refactoring 2021-11-01 01:02:08 +00:00			`writeSuccessResponseEmpty(w, r)`
adjust check bucket if exist or has access. 2020-11-13 09:13:20 +00:00			`}`

			`func (s3a S3ApiServer) checkBucket(r http.Request, bucket string) s3err.ErrorCode {`
rename function 2020-11-12 21:30:08 +00:00			`entry, err := s3a.getEntry(s3a.option.BucketsPath, bucket)`
fix ErrNotFound 2020-11-12 21:30:46 +00:00			`if entry == nil \|\| err == filer_pb.ErrNotFound {`
adjust check bucket if exist or has access. 2020-11-13 09:13:20 +00:00			`return s3err.ErrNoSuchBucket`
add HeadBucket 2018-07-19 08:43:27 +00:00			`}`
skip if entry.Extended map is nil. 2020-11-12 09:59:31 +00:00
enable admin to access all buckets 2020-11-12 21:57:54 +00:00			`if !s3a.hasAccess(r, entry) {`
adjust check bucket if exist or has access. 2020-11-13 09:13:20 +00:00			`return s3err.ErrAccessDenied`
check permission for bucket delete/head. 2020-11-12 08:15:59 +00:00			`}`
adjust check bucket if exist or has access. 2020-11-13 09:13:20 +00:00			`return s3err.ErrNone`
add HeadBucket 2018-07-19 08:43:27 +00:00			`}`
enable admin to access all buckets 2020-11-12 21:57:54 +00:00
			`func (s3a S3ApiServer) hasAccess(r http.Request, entry *filer_pb.Entry) bool {`
			`isAdmin := r.Header.Get(xhttp.AmzIsAdmin) != ""`
			`if isAdmin {`
			`return true`
			`}`
			`if entry.Extended == nil {`
			`return true`
			`}`

			`identityId := r.Header.Get(xhttp.AmzIdentityId)`
			`if id, ok := entry.Extended[xhttp.AmzIdentityId]; ok {`
			`if identityId != string(id) {`
			`return false`
			`}`
			`}`
			`return true`
adjust check bucket if exist or has access. 2020-11-13 09:13:20 +00:00			`}`
AclHandlers 2021-10-11 10:03:56 +00:00
			`// GetBucketAclHandler Get Bucket ACL`
			`// https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketAcl.html`
			`func (s3a S3ApiServer) GetBucketAclHandler(w http.ResponseWriter, r http.Request) {`
			`// collect parameters`
			`bucket, _ := getBucketAndObject(r)`
			`glog.V(3).Infof("GetBucketAclHandler %s", bucket)`

			`if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {`
refactoring 2021-11-01 01:05:34 +00:00			`s3err.WriteErrorResponse(w, r, err)`
AclHandlers 2021-10-11 10:03:56 +00:00			`return`
			`}`

			`response := AccessControlPolicy{}`
			`for _, ident := range s3a.iam.identities {`
			`if len(ident.Credentials) == 0 {`
			`continue`
			`}`
			`for _, action := range ident.Actions {`
			`if !action.overBucket(bucket) \|\| action.getPermission() == "" {`
			`continue`
			`}`
			`id := ident.Credentials[0].AccessKey`
			`if response.Owner.DisplayName == "" && action.isOwner(bucket) && len(ident.Credentials) > 0 {`
			`response.Owner.DisplayName = ident.Name`
			`response.Owner.ID = id`
			`}`
			`response.AccessControlList.Grant = append(response.AccessControlList.Grant, Grant{`
			`Grantee: Grantee{`
			`ID: id,`
			`DisplayName: ident.Name,`
			`Type: "CanonicalUser",`
			`XMLXSI: "CanonicalUser",`
			`XMLNS: "http://www.w3.org/2001/XMLSchema-instance"},`
			`Permission: action.getPermission(),`
			`})`
			`}`
			`}`
refactoring 2021-11-01 01:02:08 +00:00			`writeSuccessResponseXML(w, r, response)`
AclHandlers 2021-10-11 10:03:56 +00:00			`}`

			`// GetBucketLifecycleConfigurationHandler Get Bucket Lifecycle configuration`
			`// https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketLifecycleConfiguration.html`
			`func (s3a S3ApiServer) GetBucketLifecycleConfigurationHandler(w http.ResponseWriter, r http.Request) {`
			`// collect parameters`
			`bucket, _ := getBucketAndObject(r)`
			`glog.V(3).Infof("GetBucketAclHandler %s", bucket)`

			`if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {`
refactoring 2021-11-01 01:05:34 +00:00			`s3err.WriteErrorResponse(w, r, err)`
AclHandlers 2021-10-11 10:03:56 +00:00			`return`
			`}`
			`fc, err := filer.ReadFilerConf(s3a.option.Filer, s3a.option.GrpcDialOption, nil)`
			`if err != nil {`
			`glog.Errorf("GetBucketLifecycleConfigurationHandler: %s", err)`
refactoring 2021-11-01 01:05:34 +00:00			`s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)`
AclHandlers 2021-10-11 10:03:56 +00:00			`return`
			`}`
GetBucketLifecycleConfigurationHandler 2021-10-13 20:35:33 +00:00			`ttls := fc.GetCollectionTtls(bucket)`
			`if len(ttls) == 0 {`
refactoring 2021-11-01 01:05:34 +00:00			`s3err.WriteErrorResponse(w, r, s3err.ErrNoSuchLifecycleConfiguration)`
DeleteBucketLifecycleConfiguration return 204 2021-10-28 14:34:37 +00:00			`return`
GetBucketLifecycleConfigurationHandler 2021-10-13 20:35:33 +00:00			`}`
			`response := Lifecycle{}`
			`for prefix, internalTtl := range ttls {`
			`ttl, _ := needle.ReadTTL(internalTtl)`
			`days := int(ttl.Minutes() / 60 / 24)`
			`if days == 0 {`
			`continue`
			`}`
			`response.Rules = append(response.Rules, Rule{`
			`Status: Enabled, Filter: Filter{`
			`Prefix: Prefix{string: prefix, set: true},`
			`set: true,`
			`},`
			`Expiration: Expiration{Days: days, set: true},`
			`})`
			`}`
refactoring 2021-11-01 01:02:08 +00:00			`writeSuccessResponseXML(w, r, response)`
AclHandlers 2021-10-11 10:03:56 +00:00			`}`

			`// PutBucketLifecycleConfigurationHandler Put Bucket Lifecycle configuration`
			`// https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutBucketLifecycleConfiguration.html`
			`func (s3a S3ApiServer) PutBucketLifecycleConfigurationHandler(w http.ResponseWriter, r http.Request) {`

refactoring 2021-11-01 01:05:34 +00:00			`s3err.WriteErrorResponse(w, r, s3err.ErrNotImplemented)`
AclHandlers 2021-10-11 10:03:56 +00:00
			`}`

			`// DeleteBucketMetricsConfiguration Delete Bucket Lifecycle`
			`// https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteBucketLifecycle.html`
			`func (s3a S3ApiServer) DeleteBucketLifecycleHandler(w http.ResponseWriter, r http.Request) {`

refactoring 2021-11-01 01:02:08 +00:00			`s3err.WriteEmptyResponse(w, r, http.StatusNoContent)`
AclHandlers 2021-10-11 10:03:56 +00:00
			`}`