Add command of checksum validation by using http way

README.md

@@ -106,3 +106,11 @@ usage: charon index $PATH [-t, --target] [-D, --debug] [-q, --quiet]
 This command will refresh the index.html for the specified path.
 
 * Note that if the path is a NPM metadata path which contains package.json, this refreshment will not work because this type of folder will display the package.json instead of the index.html in http request.
+
+### charon-validate: validate the checksum of files in specified path in a maven repository
+
+```bash
+usage: charon validate $path [-t, --target] [-f, --report_file_path] [-i, --includes] [-r, --recursive] [-D, --debug] [-q, --quiet]
+```
+
+This command will validate the checksum of the specified path for the maven repository. It will calculate the sha1 checksum of all artifact files in the specified path and compare with the companied .sha1 files of the artifacts, then record all mismatched artifacts in the report file. If some artifact files misses the companied .sha1 files, they will also be recorded.

charon/cmd/__init__.py

@@ -17,6 +17,7 @@
 from charon.cmd.cmd_upload import upload
 from charon.cmd.cmd_delete import delete
 from charon.cmd.cmd_index import index
+from charon.cmd.cmd_checksum import validate
 
 
 @group()
@@ -31,3 +32,4 @@ def cli():
 cli.add_command(upload)
 cli.add_command(delete)
 cli.add_command(index)
+cli.add_command(validate)

charon/cmd/cmd_checksum.py

@@ -0,0 +1,154 @@
+"""
+Copyright (C) 2022 Red Hat, Inc. (https://github.com/Commonjava/charon)
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+         http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+"""
+from typing import List
+
+from charon.config import get_config
+from charon.pkgs.checksum_http import handle_checksum_validation_http
+from charon.cmd.internal import _decide_mode
+from click import command, option, argument
+
+import traceback
+import logging
+import os
+import sys
+
+logger = logging.getLogger(__name__)
+
+
+@argument(
+    "path",
+    type=str
+)
+@option(
+    "--debug",
+    "-D",
+    "debug",
+    help="Debug mode, will print all debug logs for problem tracking.",
+    is_flag=True,
+    default=False
+)
+@option(
+    "--quiet",
+    "-q",
+    "quiet",
+    help="Quiet mode, will shrink most of the logs except warning and errors.",
+    is_flag=True,
+    default=False
+)
+@option(
+    "--skip",
+    "-k",
+    "skips",
+    multiple=True,
+    help="""
+    Paths to be skipped. This is used for recursive mode when $PATH has sub folders.
+    """
+)
+@option(
+    "--recursive",
+    "-r",
+    "recursive",
+    help="""
+    Decide if do validation recursively in the specified path.
+    Warning: if the path is high level which contains lots of sub path(e.g org/
+    or com/), set this flag will take very long time to do the validation.
+    """,
+    is_flag=True,
+    default=False
+)
+@option(
+    "--report-file-path",
+    "-f",
+    "report_file_path",
+    help="""
+    The path where the final report files will be generated
+    """
+)
+@option(
+    "--includes",
+    "-i",
+    "includes",
+    help="""
+    The comma splitted file suffix for all files that need to
+    validate. e.g, ".jar,.pom,.xml". If not specified, will use
+    default file types
+    """
+)
+@option(
+    "--target",
+    "-t",
+    "target",
+    help="""
+    The target to do the uploading, which will decide which s3 bucket
+    and what root path where all files will be uploaded to.
+    Can accept more than one target.
+    """,
+    required=True
+)
+@command()
+def validate(
+    path: str,
+    target: str,
+    includes: List[str],
+    report_file_path: str,
+    skips: List[str],
+    recursive: bool = False,
+    quiet: bool = False,
+    debug: bool = False
+):
+    """This command will validate the checksum of the specified path for the
+       maven repository. It will calculate the sha1 checksum of all artifact
+       files in the specified path and compare with the companied .sha1 files
+       of the artifacts, then record all mismatched artifacts in the report file.
+       If some artifact files misses the companied .sha1 files, they will also
+       be recorded.
+    """
+    _decide_mode(
+        "checksum-{}".format(target), path.replace("/", "_"),
+        is_quiet=quiet, is_debug=debug
+    )
+    try:
+        conf = get_config()
+        if not conf:
+            sys.exit(1)
+
+        aws_bucket = ""
+        root_path = ""
+        t = conf.get_target(target)
+        if not t:
+            sys.exit(1)
+        for b in t:
+            aws_bucket = b.get('bucket')
+            prefix = b.get('prefix', '')
+
+        # NOTE: This is a liitle hacky, which constrain the configuration of
+        #       of target should define the bucket to contain "prod-maven"
+        #       or "stage-maven" to decide that the bucket is for maven repo
+        #       in our defined aws env for production or stage
+        if "prod-maven" not in aws_bucket and "stage-maven" not in aws_bucket:
+            logger.error("The target %s is not a maven repository.", target)
+            sys.exit(1)
+
+        root_path = os.path.join(prefix, path)
+        skip_paths = [os.path.join(prefix, p) for p in skips if p != "" and p != "/"]
+        if path == "/":
+            root_path = prefix
+        handle_checksum_validation_http(
+            aws_bucket, root_path, includes, report_file_path, recursive, skip_paths
+        )
+    except Exception:
+        print(traceback.format_exc())
+        sys.exit(2)