BYO creds related issue

doc/api.md

@@ -539,6 +539,7 @@ Azure account credentials. Must have the permission to create containers.
 | storageAccount | <code>string</code> | name of azure storage account |
 | storageAccessKey | <code>string</code> | access key for azure storage account |
 | containerName | <code>string</code> | name of container to store files. Another `${containerName}-public` will also be used for public files. |
+| [hostName] | <code>string</code> | custom domain for returned URLs |
 
 <a name="RemotePathString"></a>
 

lib/FilesError.js

@@ -45,6 +45,7 @@ E('ERROR_FILE_NOT_EXISTS', 'file `%s` does not exist')
 E('ERROR_BAD_FILE_TYPE', '%s')
 E('ERROR_OUT_OF_RANGE', '%s')
 E('ERROR_MISSING_OPTION', '%s')
+E('ERROR_UNSUPPORTED_OPERATION', 'Operation %s not supported for SAS credentails')
 
 module.exports = {
   codes,

lib/impl/AzureBlobFiles.js

@@ -73,7 +73,7 @@ class AzureBlobFiles extends Files {
   constructor (credentials, tvm) {
     super()
     this.tvm = tvm
-    this.hasOwnCredentials = false
+    this.hasOwnCredentials = (tvm === null)
     const cloned = utils.withHiddenFields(credentials, ['storageAccessKey', 'sasURLPrivate', 'sasURLPublic'])
     logger.debug(`init AzureBlobFiles with config ${JSON.stringify(cloned, null, 2)}`)
 
@@ -110,7 +110,6 @@ class AzureBlobFiles extends Files {
       this._azure.containerURLPublic = azure.ContainerURL.fromServiceURL(serviceURL, credentials.containerName + '-public')
       this._azure.sasCreds = false
       this.credentials = utils.clone(credentials)
-      this.hasOwnCredentials = true
     }
   }
 
@@ -383,6 +382,8 @@ class AzureBlobFiles extends Files {
    * @private
    */
   async _getAzureBlobPresignCredentials (params) {
+    if (this._azure.sasCreds) { logAndThrow(new codes.ERROR_UNSUPPORTED_OPERATION({ messageValues: ['generatePresignURL'], sdkDetails: params })) }
+
     const sharedKeyCredential = new azure.SharedKeyCredential(this.credentials.storageAccount, this.credentials.storageAccessKey)
     const containerName = this.credentials.containerName
     // generate SAS token

lib/types.jsdoc.js

@@ -43,6 +43,7 @@ governing permissions and limitations under the License.
  * @property {string} storageAccessKey access key for azure storage account
  * @property {string} containerName name of container to store files.
  * Another `${containerName}-public` will also be used for public files.
+ * @property {string} [hostName] custom domain for returned URLs
  */
 /**
  * @typedef RemotePathString

test/impl/AzureBlobFiles.test.js

@@ -534,7 +534,7 @@ describe('_getUrl', () => {
   })
 
   test('test _getUrl custom host', async () => {
-    files = new AzureBlobFiles({ ...fakeUserCredentials, hostName: 'fakeHost' })
+    files = new AzureBlobFiles({ ...fakeUserCredentials, hostName: 'fakeHost' }, null)
     const cleanUrl = 'https://fake.blob.core.windows.net/fake/fakesub/afile'
     setMockBlobUrl(cleanUrl)
     const expectedUrl = 'https://fakeHost/fake/fakesub/afile'
@@ -610,6 +610,7 @@ describe('_getPresignUrl', () => {
   test('_getPresignUrl with correct options default permission own credentials', async () => {
     files.hasOwnCredentials = true
     files.credentials = fakeUserCredentials
+    files._azure.sasCreds = false
     const cleanUrl = 'https://fake.blob.core.windows.net/fake/fakesub/afile'
     setMockBlobUrl(cleanUrl)
     const expectedUrl = 'https://fake.blob.core.windows.net/fake/fakesub/afile?fakeSAS'
@@ -620,16 +621,23 @@ describe('_getPresignUrl', () => {
   test('_getPresignUrl with correct options explicit permission own credentials', async () => {
     files.hasOwnCredentials = true
     files.credentials = fakeUserCredentials
+    files._azure.sasCreds = false
     const cleanUrl = 'https://fake.blob.core.windows.net/fake/fakesub/afile'
     setMockBlobUrl(cleanUrl)
     const expectedUrl = 'https://fake.blob.core.windows.net/fake/fakesub/afile?fakeSAS'
     const url = await files._getPresignUrl('fakesub/afile', { expiryInSeconds: 60, permissions: 'fake' })
     expect(url).toEqual(expectedUrl)
   })
 
-  test('_getAzureBlobPresignCredentials with correct options', async () => {
+  test('_getAzureBlobPresignCredentials with sas creds', async () => {
+    files.hasOwnCredentials = true
+    await expect(files._getAzureBlobPresignCredentials('fakesub/afile', { expiryInSeconds: 60 })).rejects.toThrow('[FilesLib:ERROR_UNSUPPORTED_OPERATION] Operation generatePresignURL not supported for SAS credentails')
+  })
+
+  test('_getAzureBlobPresignCredentials with account creds', async () => {
     files.hasOwnCredentials = true
     files.credentials = fakeUserCredentials
+    files._azure.sasCreds = false
     const ret = await files._getAzureBlobPresignCredentials('fakesub/afile', { expiryInSeconds: 60 })
     expect(ret).toEqual({ signature: 'fakeSAS' })
   })

types.d.ts

@@ -311,11 +311,13 @@ export type AzureCredentialsSAS = {
  * @property storageAccessKey - access key for azure storage account
  * @property containerName - name of container to store files.
  * Another `${containerName}-public` will also be used for public files.
+ * @property [hostName] - custom domain for returned URLs
  */
 export type AzureCredentialsAccount = {
     storageAccount: string;
     storageAccessKey: string;
     containerName: string;
+    hostName?: string;
 };
 
 /**