Startseite Erkunden Hilfe
Registrieren Anmelden
ben
/
be-ytb
1
0
Fork 0
Dateien Issues 0 Pull-Requests 0 Wiki
Struktur: 9ccc00cb16
Branches Tags
be-ytb
/
js
/
node_modules
/
aws-sdk
/
lib
/
signers
/
s3.js

s3.js 4.4 KB
Verlauf Originalformat

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175 
  1. var AWS = require('../core');
    2. 

  2. var inherit = AWS.util.inherit;
    3. 

  3. 

  4. /**
    5. 

  5.  * @api private
    6. 

  6.  */
    7. 

  7. AWS.Signers.S3 = inherit(AWS.Signers.RequestSigner, {
    8. 

  8.   /**
    9. 

  9.    * When building the stringToSign, these sub resource params should be
    10. 

  10.    * part of the canonical resource string with their NON-decoded values
    11. 

  11.    */
    12. 

  12.   subResources: {
    13. 

  13.     'acl': 1,
    14. 

  14.     'accelerate': 1,
    15. 

  15.     'analytics': 1,
    16. 

  16.     'cors': 1,
    17. 

  17.     'lifecycle': 1,
    18. 

  18.     'delete': 1,
    19. 

  19.     'inventory': 1,
    20. 

  20.     'location': 1,
    21. 

  21.     'logging': 1,
    22. 

  22.     'metrics': 1,
    23. 

  23.     'notification': 1,
    24. 

  24.     'partNumber': 1,
    25. 

  25.     'policy': 1,
    26. 

  26.     'requestPayment': 1,
    27. 

  27.     'replication': 1,
    28. 

  28.     'restore': 1,
    29. 

  29.     'tagging': 1,
    30. 

  30.     'torrent': 1,
    31. 

  31.     'uploadId': 1,
    32. 

  32.     'uploads': 1,
    33. 

  33.     'versionId': 1,
    34. 

  34.     'versioning': 1,
    35. 

  35.     'versions': 1,
    36. 

  36.     'website': 1
    37. 

  37.   },
    38. 

  38. 

  39.   // when building the stringToSign, these querystring params should be
    40. 

  40.   // part of the canonical resource string with their NON-encoded values
    41. 

  41.   responseHeaders: {
    42. 

  42.     'response-content-type': 1,
    43. 

  43.     'response-content-language': 1,
    44. 

  44.     'response-expires': 1,
    45. 

  45.     'response-cache-control': 1,
    46. 

  46.     'response-content-disposition': 1,
    47. 

  47.     'response-content-encoding': 1
    48. 

  48.   },
    49. 

  49. 

  50.   addAuthorization: function addAuthorization(credentials, date) {
    51. 

  51.     if (!this.request.headers['presigned-expires']) {
    52. 

  52.       this.request.headers['X-Amz-Date'] = AWS.util.date.rfc822(date);
    53. 

  53.     }
    54. 

  54. 

  55.     if (credentials.sessionToken) {
    56. 

  56.       // presigned URLs require this header to be lowercased
    57. 

  57.       this.request.headers['x-amz-security-token'] = credentials.sessionToken;
    58. 

  58.     }
    59. 

  59. 

  60.     var signature = this.sign(credentials.secretAccessKey, this.stringToSign());
    61. 

  61.     var auth = 'AWS ' + credentials.accessKeyId + ':' + signature;
    62. 

  62. 

  63.     this.request.headers['Authorization'] = auth;
    64. 

  64.   },
    65. 

  65. 

  66.   stringToSign: function stringToSign() {
    67. 

  67.     var r = this.request;
    68. 

  68. 

  69.     var parts = [];
    70. 

  70.     parts.push(r.method);
    71. 

  71.     parts.push(r.headers['Content-MD5'] || '');
    72. 

  72.     parts.push(r.headers['Content-Type'] || '');
    73. 

  73. 

  74.     // This is the "Date" header, but we use X-Amz-Date.
    75. 

  75.     // The S3 signing mechanism requires us to pass an empty
    76. 

  76.     // string for this Date header regardless.
    77. 

  77.     parts.push(r.headers['presigned-expires'] || '');
    78. 

  78. 

  79.     var headers = this.canonicalizedAmzHeaders();
    80. 

  80.     if (headers) parts.push(headers);
    81. 

  81.     parts.push(this.canonicalizedResource());
    82. 

  82. 

  83.     return parts.join('\n');
    84. 

  84. 

  85.   },
    86. 

  86. 

  87.   canonicalizedAmzHeaders: function canonicalizedAmzHeaders() {
    88. 

  88. 

  89.     var amzHeaders = [];
    90. 

  90. 

  91.     AWS.util.each(this.request.headers, function (name) {
    92. 

  92.       if (name.match(/^x-amz-/i))
    93. 

  93.         amzHeaders.push(name);
    94. 

  94.     });
    95. 

  95. 

  96.     amzHeaders.sort(function (a, b) {
    97. 

  97.       return a.toLowerCase() < b.toLowerCase() ? -1 : 1;
    98. 

  98.     });
    99. 

  99. 

  100.     var parts = [];
    101. 

  101.     AWS.util.arrayEach.call(this, amzHeaders, function (name) {
    102. 

  102.       parts.push(name.toLowerCase() + ':' + String(this.request.headers[name]));
    103. 

  103.     });
    104. 

  104. 

  105.     return parts.join('\n');
    106. 

  106. 

  107.   },
    108. 

  108. 

  109.   canonicalizedResource: function canonicalizedResource() {
    110. 

  110. 

  111.     var r = this.request;
    112. 

  112. 

  113.     var parts = r.path.split('?');
    114. 

  114.     var path = parts[0];
    115. 

  115.     var querystring = parts[1];
    116. 

  116. 

  117.     var resource = '';
    118. 

  118. 

  119.     if (r.virtualHostedBucket)
    120. 

  120.       resource += '/' + r.virtualHostedBucket;
    121. 

  121. 

  122.     resource += path;
    123. 

  123. 

  124.     if (querystring) {
    125. 

  125. 

  126.       // collect a list of sub resources and query params that need to be signed
    127. 

  127.       var resources = [];
    128. 

  128. 

  129.       AWS.util.arrayEach.call(this, querystring.split('&'), function (param) {
    130. 

  130.         var name = param.split('=')[0];
    131. 

  131.         var value = param.split('=')[1];
    132. 

  132.         if (this.subResources[name] || this.responseHeaders[name]) {
    133. 

  133.           var subresource = { name: name };
    134. 

  134.           if (value !== undefined) {
    135. 

  135.             if (this.subResources[name]) {
    136. 

  136.               subresource.value = value;
    137. 

  137.             } else {
    138. 

  138.               subresource.value = decodeURIComponent(value);
    139. 

  139.             }
    140. 

  140.           }
    141. 

  141.           resources.push(subresource);
    142. 

  142.         }
    143. 

  143.       });
    144. 

  144. 

  145.       resources.sort(function (a, b) { return a.name < b.name ? -1 : 1; });
    146. 

  146. 

  147.       if (resources.length) {
    148. 

  148. 

  149.         querystring = [];
    150. 

  150.         AWS.util.arrayEach(resources, function (res) {
    151. 

  151.           if (res.value === undefined) {
    152. 

  152.             querystring.push(res.name);
    153. 

  153.           } else {
    154. 

  154.             querystring.push(res.name + '=' + res.value);
    155. 

  155.           }
    156. 

  156.         });
    157. 

  157. 

  158.         resource += '?' + querystring.join('&');
    159. 

  159.       }
    160. 

  160. 

  161.     }
    162. 

  162. 

  163.     return resource;
    164. 

  164. 

  165.   },
    166. 

  166. 

  167.   sign: function sign(secret, string) {
    168. 

  168.     return AWS.util.crypto.hmac(secret, string, 'base64', 'sha1');
    169. 

  169.   }
    170. 

  170. });
    171. 

  171. 

  172. /**
    173. 

  173.  * @api private
    174. 

  174.  */
    175. 

  175. module.exports = AWS.Signers.S3;
    176.