Mirror
/
seaweedfs
mirror of https://github.com/seaweedfs/seaweedfs.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
11268 Commits
32 Branches
300 Tags
172 MiB
Tree: 5058879eff
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5058879eff'
${ noResults }
seaweedfs/weed/s3api/s3api_object_handlers_put.go

209 lines
6.0 KiB
Raw Normal View History

split file
10 months ago
Add bucket's traffic metrics (#6444) * Add bucket's traffic metrics * Add bucket traffic to dashboards * Fix bucket metrics help messages * Fix variable names
3 weeks ago
split file
10 months ago
Add metrics for uploaded and deleted s3 objects (#6475)
2 weeks ago
split file
10 months ago
refactor all methods strings to const (#5726)
7 months ago
split file
10 months ago
Add bucket's traffic metrics (#6444) * Add bucket's traffic metrics * Add bucket traffic to dashboards * Fix bucket metrics help messages * Fix variable names
3 weeks ago
split file
10 months ago
  1. package s3api
  3. import (
  4. "crypto/md5"
  5. "encoding/json"
  6. "fmt"
  7. "io"
  8. "net/http"
  9. "strings"
  10. "time"
  12. "github.com/pquerna/cachecontrol/cacheobject"
  13. "github.com/seaweedfs/seaweedfs/weed/s3api/s3_constants"
  14. "github.com/seaweedfs/seaweedfs/weed/s3api/s3err"
  15. "github.com/seaweedfs/seaweedfs/weed/security"
  17. "github.com/seaweedfs/seaweedfs/weed/glog"
  18. "github.com/seaweedfs/seaweedfs/weed/pb/filer_pb"
  19. weed_server "github.com/seaweedfs/seaweedfs/weed/server"
  20. stats_collect "github.com/seaweedfs/seaweedfs/weed/stats"
  21. )
  23. func (s3a *S3ApiServer) PutObjectHandler(w http.ResponseWriter, r *http.Request) {
  25. // http://docs.aws.amazon.com/AmazonS3/latest/dev/UploadingObjects.html
  27. bucket, object := s3_constants.GetBucketAndObject(r)
  28. glog.V(3).Infof("PutObjectHandler %s %s", bucket, object)
  30. _, err := validateContentMd5(r.Header)
  31. if err != nil {
  32. s3err.WriteErrorResponse(w, r, s3err.ErrInvalidDigest)
  33. return
  34. }
  36. if r.Header.Get("Cache-Control") != "" {
  37. if _, err = cacheobject.ParseRequestCacheControl(r.Header.Get("Cache-Control")); err != nil {
  38. s3err.WriteErrorResponse(w, r, s3err.ErrInvalidDigest)
  39. return
  40. }
  41. }
  43. if r.Header.Get("Expires") != "" {
  44. if _, err = time.Parse(http.TimeFormat, r.Header.Get("Expires")); err != nil {
  45. s3err.WriteErrorResponse(w, r, s3err.ErrMalformedDate)
  46. return
  47. }
  48. }
  50. dataReader := r.Body
  51. rAuthType := getRequestAuthType(r)
  52. if s3a.iam.isEnabled() {
  53. var s3ErrCode s3err.ErrorCode
  54. switch rAuthType {
  55. case authTypeStreamingSigned:
  56. dataReader, s3ErrCode = s3a.iam.newSignV4ChunkedReader(r)
  57. case authTypeSignedV2, authTypePresignedV2:
  58. _, s3ErrCode = s3a.iam.isReqAuthenticatedV2(r)
  59. case authTypePresigned, authTypeSigned:
  60. _, s3ErrCode = s3a.iam.reqSignatureV4Verify(r)
  61. }
  62. if s3ErrCode != s3err.ErrNone {
  63. s3err.WriteErrorResponse(w, r, s3ErrCode)
  64. return
  65. }
  66. } else {
  67. if authTypeStreamingSigned == rAuthType {
  68. s3err.WriteErrorResponse(w, r, s3err.ErrAuthNotSetup)
  69. return
  70. }
  71. }
  72. defer dataReader.Close()
  74. objectContentType := r.Header.Get("Content-Type")
  75. if strings.HasSuffix(object, "/") && r.ContentLength <= 1024 {
  76. if err := s3a.mkdir(
  77. s3a.option.BucketsPath, bucket+strings.TrimSuffix(object, "/"),
  78. func(entry *filer_pb.Entry) {
  79. if objectContentType == "" {
  80. objectContentType = s3_constants.FolderMimeType
  81. }
  82. if r.ContentLength > 0 {
  83. entry.Content, _ = io.ReadAll(r.Body)
  84. }
  85. entry.Attributes.Mime = objectContentType
  86. }); err != nil {
  87. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  88. return
  89. }
  90. } else {
  91. uploadUrl := s3a.toFilerUrl(bucket, object)
  92. if objectContentType == "" {
  93. dataReader = mimeDetect(r, dataReader)
  94. }
  96. etag, errCode := s3a.putToFiler(r, uploadUrl, dataReader, "", bucket)
  98. if errCode != s3err.ErrNone {
  99. s3err.WriteErrorResponse(w, r, errCode)
  100. return
  101. }
  103. setEtag(w, etag)
  104. }
  105. stats_collect.S3UploadedObjectsCounter.WithLabelValues(bucket).Inc()
  107. writeSuccessResponseEmpty(w, r)
  108. }
  110. func (s3a *S3ApiServer) putToFiler(r *http.Request, uploadUrl string, dataReader io.Reader, destination string, bucket string) (etag string, code s3err.ErrorCode) {
  112. hash := md5.New()
  113. var body = io.TeeReader(dataReader, hash)
  115. proxyReq, err := http.NewRequest(http.MethodPut, uploadUrl, body)
  117. if err != nil {
  118. glog.Errorf("NewRequest %s: %v", uploadUrl, err)
  119. return "", s3err.ErrInternalError
  120. }
  122. proxyReq.Header.Set("X-Forwarded-For", r.RemoteAddr)
  123. if destination != "" {
  124. proxyReq.Header.Set(s3_constants.SeaweedStorageDestinationHeader, destination)
  125. }
  127. if s3a.option.FilerGroup != "" {
  128. query := proxyReq.URL.Query()
  129. query.Add("collection", s3a.getCollectionName(bucket))
  130. proxyReq.URL.RawQuery = query.Encode()
  131. }
  133. for header, values := range r.Header {
  134. for _, value := range values {
  135. proxyReq.Header.Add(header, value)
  136. }
  137. }
  138. // ensure that the Authorization header is overriding any previous
  139. // Authorization header which might be already present in proxyReq
  140. s3a.maybeAddFilerJwtAuthorization(proxyReq, true)
  141. resp, postErr := s3a.client.Do(proxyReq)
  143. if postErr != nil {
  144. glog.Errorf("post to filer: %v", postErr)
  145. return "", s3err.ErrInternalError
  146. }
  147. defer resp.Body.Close()
  149. etag = fmt.Sprintf("%x", hash.Sum(nil))
  151. resp_body, ra_err := io.ReadAll(resp.Body)
  152. if ra_err != nil {
  153. glog.Errorf("upload to filer response read %d: %v", resp.StatusCode, ra_err)
  154. return etag, s3err.ErrInternalError
  155. }
  156. var ret weed_server.FilerPostResult
  157. unmarshal_err := json.Unmarshal(resp_body, &ret)
  158. if unmarshal_err != nil {
  159. glog.Errorf("failing to read upload to %s : %v", uploadUrl, string(resp_body))
  160. return "", s3err.ErrInternalError
  161. }
  162. if ret.Error != "" {
  163. glog.Errorf("upload to filer error: %v", ret.Error)
  164. return "", filerErrorToS3Error(ret.Error)
  165. }
  166. stats_collect.S3BucketTrafficReceivedBytesCounter.WithLabelValues(bucket).Add(float64(ret.Size))
  167. return etag, s3err.ErrNone
  168. }
  170. func setEtag(w http.ResponseWriter, etag string) {
  171. if etag != "" {
  172. if strings.HasPrefix(etag, "\"") {
  173. w.Header()["ETag"] = []string{etag}
  174. } else {
  175. w.Header()["ETag"] = []string{"\"" + etag + "\""}
  176. }
  177. }
  178. }
  180. func filerErrorToS3Error(errString string) s3err.ErrorCode {
  181. switch {
  182. case strings.HasPrefix(errString, "existing ") && strings.HasSuffix(errString, "is a directory"):
  183. return s3err.ErrExistingObjectIsDirectory
  184. case strings.HasSuffix(errString, "is a file"):
  185. return s3err.ErrExistingObjectIsFile
  186. default:
  187. return s3err.ErrInternalError
  188. }
  189. }
  191. func (s3a *S3ApiServer) maybeAddFilerJwtAuthorization(r *http.Request, isWrite bool) {
  192. encodedJwt := s3a.maybeGetFilerJwtAuthorizationToken(isWrite)
  194. if encodedJwt == "" {
  195. return
  196. }
  198. r.Header.Set("Authorization", "BEARER "+string(encodedJwt))
  199. }
  201. func (s3a *S3ApiServer) maybeGetFilerJwtAuthorizationToken(isWrite bool) string {
  202. var encodedJwt security.EncodedJwt
  203. if isWrite {
  204. encodedJwt = security.GenJwtForFilerServer(s3a.filerGuard.SigningKey, s3a.filerGuard.ExpiresAfterSec)
  205. } else {
  206. encodedJwt = security.GenJwtForFilerServer(s3a.filerGuard.ReadSigningKey, s3a.filerGuard.ReadExpiresAfterSec)
  207. }
  208. return string(encodedJwt)
  209. }