Mirror
/
seaweedfs
mirror of https://github.com/seaweedfs/seaweedfs.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
11158 Commits
37 Branches
296 Tags
161 MiB
Tree: 11042ddb71
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '11042ddb71'
${ noResults }
seaweedfs/weed/s3api/policy/postpolicyform.go

276 lines
9.0 KiB
Raw Normal View History

s3: add support for PostPolicy fix https://github.com/chrislusf/seaweedfs/issues/1426
4 years ago
refactoring
4 years ago
s3: add support for PostPolicy fix https://github.com/chrislusf/seaweedfs/issues/1426
4 years ago
docs(s3api): readability improvements (#3696) Signed-off-by: Ryan Russell <git@ryanrussell.org> Signed-off-by: Ryan Russell <git@ryanrussell.org>
2 years ago
s3: add support for PostPolicy fix https://github.com/chrislusf/seaweedfs/issues/1426
4 years ago
  1. package policy
  3. /*
  4. * MinIO Cloud Storage, (C) 2015, 2016, 2017 MinIO, Inc.
  5. *
  6. * Licensed under the Apache License, Version 2.0 (the "License");
  7. * you may not use this file except in compliance with the License.
  8. * You may obtain a copy of the License at
  9. *
  10. * http://www.apache.org/licenses/LICENSE-2.0
  11. *
  12. * Unless required by applicable law or agreed to in writing, software
  13. * distributed under the License is distributed on an "AS IS" BASIS,
  14. * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  15. * See the License for the specific language governing permissions and
  16. * limitations under the License.
  17. */
  19. import (
  20. "encoding/json"
  21. "errors"
  22. "fmt"
  23. "net/http"
  24. "reflect"
  25. "strconv"
  26. "strings"
  27. "time"
  28. )
  30. // startWithConds - map which indicates if a given condition supports starts-with policy operator
  31. var startsWithConds = map[string]bool{
  32. "$acl": true,
  33. "$bucket": false,
  34. "$cache-control": true,
  35. "$content-type": true,
  36. "$content-disposition": true,
  37. "$content-encoding": true,
  38. "$expires": true,
  39. "$key": true,
  40. "$success_action_redirect": true,
  41. "$redirect": true,
  42. "$success_action_status": false,
  43. "$x-amz-algorithm": false,
  44. "$x-amz-credential": false,
  45. "$x-amz-date": false,
  46. }
  48. // Add policy conditionals.
  49. const (
  50. policyCondEqual = "eq"
  51. policyCondStartsWith = "starts-with"
  52. policyCondContentLength = "content-length-range"
  53. )
  55. // toString - Safely convert interface to string without causing panic.
  56. func toString(val interface{}) string {
  57. switch v := val.(type) {
  58. case string:
  59. return v
  60. default:
  61. return ""
  62. }
  63. }
  65. // toLowerString - safely convert interface to lower string
  66. func toLowerString(val interface{}) string {
  67. return strings.ToLower(toString(val))
  68. }
  70. // toInteger _ Safely convert interface to integer without causing panic.
  71. func toInteger(val interface{}) (int64, error) {
  72. switch v := val.(type) {
  73. case float64:
  74. return int64(v), nil
  75. case int64:
  76. return v, nil
  77. case int:
  78. return int64(v), nil
  79. case string:
  80. i, err := strconv.Atoi(v)
  81. return int64(i), err
  82. default:
  83. return 0, errors.New("Invalid number format")
  84. }
  85. }
  87. // isString - Safely check if val is of type string without causing panic.
  88. func isString(val interface{}) bool {
  89. _, ok := val.(string)
  90. return ok
  91. }
  93. // ContentLengthRange - policy content-length-range field.
  94. type contentLengthRange struct {
  95. Min int64
  96. Max int64
  97. Valid bool // If content-length-range was part of policy
  98. }
  100. // PostPolicyForm provides strict static type conversion and validation for Amazon S3's POST policy JSON string.
  101. type PostPolicyForm struct {
  102. Expiration time.Time // Expiration date and time of the POST policy.
  103. Conditions struct { // Conditional policy structure.
  104. Policies []struct {
  105. Operator string
  106. Key string
  107. Value string
  108. }
  109. ContentLengthRange contentLengthRange
  110. }
  111. }
  113. // ParsePostPolicyForm - Parse JSON policy string into typed PostPolicyForm structure.
  114. func ParsePostPolicyForm(policy string) (ppf PostPolicyForm, e error) {
  115. // Convert po into interfaces and
  116. // perform strict type conversion using reflection.
  117. var rawPolicy struct {
  118. Expiration string `json:"expiration"`
  119. Conditions []interface{} `json:"conditions"`
  120. }
  122. err := json.Unmarshal([]byte(policy), &rawPolicy)
  123. if err != nil {
  124. return ppf, err
  125. }
  127. parsedPolicy := PostPolicyForm{}
  129. // Parse expiry time.
  130. parsedPolicy.Expiration, err = time.Parse(time.RFC3339Nano, rawPolicy.Expiration)
  131. if err != nil {
  132. return ppf, err
  133. }
  135. // Parse conditions.
  136. for _, val := range rawPolicy.Conditions {
  137. switch condt := val.(type) {
  138. case map[string]interface{}: // Handle key:value map types.
  139. for k, v := range condt {
  140. if !isString(v) { // Pre-check value type.
  141. // All values must be of type string.
  142. return parsedPolicy, fmt.Errorf("Unknown type %s of conditional field value %s found in POST policy form", reflect.TypeOf(condt).String(), condt)
  143. }
  144. // {"acl": "public-read" } is an alternate way to indicate - [ "eq", "$acl", "public-read" ]
  145. // In this case we will just collapse this into "eq" for all use cases.
  146. parsedPolicy.Conditions.Policies = append(parsedPolicy.Conditions.Policies, struct {
  147. Operator string
  148. Key string
  149. Value string
  150. }{
  151. policyCondEqual, "$" + strings.ToLower(k), toString(v),
  152. })
  153. }
  154. case []interface{}: // Handle array types.
  155. if len(condt) != 3 { // Return error if we have insufficient elements.
  156. return parsedPolicy, fmt.Errorf("Malformed conditional fields %s of type %s found in POST policy form", condt, reflect.TypeOf(condt).String())
  157. }
  158. switch toLowerString(condt[0]) {
  159. case policyCondEqual, policyCondStartsWith:
  160. for _, v := range condt { // Pre-check all values for type.
  161. if !isString(v) {
  162. // All values must be of type string.
  163. return parsedPolicy, fmt.Errorf("Unknown type %s of conditional field value %s found in POST policy form", reflect.TypeOf(condt).String(), condt)
  164. }
  165. }
  166. operator, matchType, value := toLowerString(condt[0]), toLowerString(condt[1]), toString(condt[2])
  167. if !strings.HasPrefix(matchType, "$") {
  168. return parsedPolicy, fmt.Errorf("Invalid according to Policy: Policy Condition failed: [%s, %s, %s]", operator, matchType, value)
  169. }
  170. parsedPolicy.Conditions.Policies = append(parsedPolicy.Conditions.Policies, struct {
  171. Operator string
  172. Key string
  173. Value string
  174. }{
  175. operator, matchType, value,
  176. })
  177. case policyCondContentLength:
  178. min, err := toInteger(condt[1])
  179. if err != nil {
  180. return parsedPolicy, err
  181. }
  183. max, err := toInteger(condt[2])
  184. if err != nil {
  185. return parsedPolicy, err
  186. }
  188. parsedPolicy.Conditions.ContentLengthRange = contentLengthRange{
  189. Min: min,
  190. Max: max,
  191. Valid: true,
  192. }
  193. default:
  194. // Condition should be valid.
  195. return parsedPolicy, fmt.Errorf("Unknown type %s of conditional field value %s found in POST policy form",
  196. reflect.TypeOf(condt).String(), condt)
  197. }
  198. default:
  199. return parsedPolicy, fmt.Errorf("Unknown field %s of type %s found in POST policy form",
  200. condt, reflect.TypeOf(condt).String())
  201. }
  202. }
  203. return parsedPolicy, nil
  204. }
  206. // checkPolicyCond returns a boolean to indicate if a condition is satisfied according
  207. // to the passed operator
  208. func checkPolicyCond(op string, input1, input2 string) bool {
  209. switch op {
  210. case policyCondEqual:
  211. return input1 == input2
  212. case policyCondStartsWith:
  213. return strings.HasPrefix(input1, input2)
  214. }
  215. return false
  216. }
  218. // CheckPostPolicy - apply policy conditions and validate input values.
  219. // (http://docs.aws.amazon.com/AmazonS3/latest/API/sigv4-HTTPPOSTConstructPolicy.html)
  220. func CheckPostPolicy(formValues http.Header, postPolicyForm PostPolicyForm) error {
  221. // Check if policy document expiry date is still not reached
  222. if !postPolicyForm.Expiration.After(time.Now().UTC()) {
  223. return fmt.Errorf("Invalid according to Policy: Policy expired")
  224. }
  225. // map to store the metadata
  226. metaMap := make(map[string]string)
  227. for _, policy := range postPolicyForm.Conditions.Policies {
  228. if strings.HasPrefix(policy.Key, "$x-amz-meta-") {
  229. formCanonicalName := http.CanonicalHeaderKey(strings.TrimPrefix(policy.Key, "$"))
  230. metaMap[formCanonicalName] = policy.Value
  231. }
  232. }
  233. // Check if any extra metadata field is passed as input
  234. for key := range formValues {
  235. if strings.HasPrefix(key, "X-Amz-Meta-") {
  236. if _, ok := metaMap[key]; !ok {
  237. return fmt.Errorf("Invalid according to Policy: Extra input fields: %s", key)
  238. }
  239. }
  240. }
  242. // Flag to indicate if all policies conditions are satisfied
  243. var condPassed bool
  245. // Iterate over policy conditions and check them against received form fields
  246. for _, policy := range postPolicyForm.Conditions.Policies {
  247. // Form fields names are in canonical format, convert conditions names
  248. // to canonical for simplification purpose, so `$key` will become `Key`
  249. formCanonicalName := http.CanonicalHeaderKey(strings.TrimPrefix(policy.Key, "$"))
  250. // Operator for the current policy condition
  251. op := policy.Operator
  252. // If the current policy condition is known
  253. if startsWithSupported, condFound := startsWithConds[policy.Key]; condFound {
  254. // Check if the current condition supports starts-with operator
  255. if op == policyCondStartsWith && !startsWithSupported {
  256. return fmt.Errorf("Invalid according to Policy: Policy Condition failed")
  257. }
  258. // Check if current policy condition is satisfied
  259. condPassed = checkPolicyCond(op, formValues.Get(formCanonicalName), policy.Value)
  260. if !condPassed {
  261. return fmt.Errorf("Invalid according to Policy: Policy Condition failed")
  262. }
  263. } else {
  264. // This covers all conditions X-Amz-Meta-* and X-Amz-*
  265. if strings.HasPrefix(policy.Key, "$x-amz-meta-") || strings.HasPrefix(policy.Key, "$x-amz-") {
  266. // Check if policy condition is satisfied
  267. condPassed = checkPolicyCond(op, formValues.Get(formCanonicalName), policy.Value)
  268. if !condPassed {
  269. return fmt.Errorf("Invalid according to Policy: Policy Condition failed: [%s, %s, %s]", op, policy.Key, policy.Value)
  270. }
  271. }
  272. }
  273. }
  275. return nil
  276. }