Move expires timestamp in SignatureV4 to be generated before startTimestamp #1325
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,7 @@ | ||
| [ | ||
| { | ||
| "type": "bugfix", | ||
| "category": "Signature", | ||
| "description": "Fixed edgecase in expiration duration check on signature when seconds roll between implicit startime and relative end time." | ||
| } | ||
| ] |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -82,7 +82,9 @@ public function presign( | |
| $expires, | ||
| array $options = [] | ||
| ) { | ||
|
|
||
| $startTimestamp = isset($options['start_time']) ? $this->convertToTimestamp($options['start_time'], null) : time(); | ||
| $expiresTimestamp = $this->convertToTimestamp($expires, $startTimestamp); | ||
|
|
||
| $parsed = $this->createPresignedRequest($request, $credentials); | ||
| $payload = $this->getPresignedPayload($request); | ||
|
|
@@ -94,7 +96,7 @@ public function presign( | |
| $parsed['query']['X-Amz-Credential'] = $credential; | ||
| $parsed['query']['X-Amz-Date'] = gmdate('Ymd\THis\Z', $startTimestamp); | ||
| $parsed['query']['X-Amz-SignedHeaders'] = 'host'; | ||
| $parsed['query']['X-Amz-Expires'] = $this->convertExpires($expiresTimestamp, $startTimestamp); | ||
| $context = $this->createContext($parsed, $payload); | ||
| $stringToSign = $this->createStringToSign($httpDate, $scope, $context['creq']); | ||
| $key = $this->getSigningKey( | ||
|
|
@@ -285,22 +287,22 @@ private function getCanonicalizedQuery(array $query) | |
| return substr($qs, 0, -1); | ||
| } | ||
|
|
||
| private function convertToTimestamp($dateValue, $relativeTimeBase = null) | ||
| { | ||
| if ($dateValue instanceof \DateTime) { | ||
| $timestamp = $dateValue->getTimestamp(); | ||
| } elseif (!is_numeric($dateValue)) { | ||
| $timestamp = strtotime($dateValue, $relativeTimeBase === null ? time() : $relativeTimeBase ); | ||
|
There was a problem hiding this comment. Please break this into multiple lines. We try to keep all line length to be of less than 80 characters in the PHP SDK. There was a problem hiding this comment. How do you want to break the ternary statements? I personally think they are much more readable on one line like this but understand the 80 character comment, was just following other examples in the code like https://github.com/daum/aws-sdk-php/blob/6cd12a2744b9da9813faf1f7d6bf3f52d336c67a/src/Signature/SignatureV4.php#L39 Can you just give me an example of how you'd like the ternary formatted for the multiple lines and I'll get that fixed up asap. There was a problem hiding this comment. For this case, the ternary can be one line but the arguments would be separated. strtotime(
$dateValue,
$relativeTimeBase === null ? time() : $relativeTimeBase
); |
||
| } else { | ||
| $timestamp = $dateValue; | ||
| } | ||
|
|
||
| return $timestamp; | ||
| } | ||
|
|
||
| private function convertExpires($expiresTimestamp, $startTimestamp) | ||
| { | ||
| $duration = $expiresTimestamp - $startTimestamp; | ||
|
|
||
| // Ensure that the duration of the signature is not longer than a week | ||
| if ($duration > 604800) { | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Please break this into multiple lines. We try to keep all line length to be of less than 80 characters in the PHP SDK.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Similar to my other comment - how would you like the ternary broken up. If you would prefer I could also switch it to a if/else which would have a shorter line length.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
An example of what our 3 line ternary looks like can be found here.