forked from cubefs/cubefs
/
auth.go
51 lines (44 loc) · 1.2 KB
/
auth.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
// Package s3 provides ...
package objectnode
import "net/http"
//https://docs.aws.amazon.com/AmazonS3/latest/dev/RESTAuthentication.html#ConstructingTheAuthenticationHeader
type AuthType string
const (
SignatrueV2 AuthType = "signature_v2"
SignatrueV4 = "signature_v4"
PresignedV2 = "presigned_v2"
PresignedV4 = "presigned_v4"
)
type RequestAuthInfo struct {
authType AuthType
accessKey string
}
func parseRequestAuthInfo(r *http.Request) *RequestAuthInfo {
auth := new(RequestAuthInfo)
if isHeaderUsingSignatureAlgorithmV2(r) {
auth.authType = SignatrueV2
ai, _ := parseRequestAuthInfoV2(r)
if ai != nil {
auth.accessKey = ai.accessKeyId
}
} else if isHeaderUsingSignatureAlgorithmV4(r) {
auth.authType = SignatrueV4
ai, _ := parseRequestV4(r)
if ai != nil {
auth.accessKey = ai.Credential.AccessKey
}
} else if isUrlUsingSignatureAlgorithmV2(r) {
auth.authType = PresignedV2
ai, _ := parsePresignedV2AuthInfo(r)
if ai != nil {
auth.accessKey = ai.accessKeyId
}
} else if isUrlUsingSignatureAlgorithmV4(r) {
auth.authType = PresignedV4
ai, _ := parseRequestV4(r)
if ai != nil {
auth.accessKey = ai.Credential.AccessKey
}
}
return auth
}