Mirror
/
seaweedfs
mirror of https://github.com/seaweedfs/seaweedfs.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
10705 Commits
32 Branches
301 Tags
175 MiB
Tree: 8f991bdcf9
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '8f991bdcf9'
${ noResults }
seaweedfs/weed/s3api/s3api_bucket_handlers.go

668 lines
20 KiB
Raw Normal View History

add list all my buckets
7 years ago
[s3] Put bucket lifecycle configuration (#5510)
10 months ago
add list all my buckets
7 years ago
add namespace for ListAllMyBucketsResult
6 years ago
use constant for ErrBucketNotEmpty
3 years ago
add list all my buckets
7 years ago
fix s3 ListAllMyBucketsResult to work with s3cmd
6 years ago
go fmt
7 years ago
fix test_lifecycle_get
8 months ago
[s3] Put bucket lifecycle configuration (#5510)
10 months ago
go fmt
7 years ago
go fmt
7 years ago
added s3 iam DeleteBucket permission management (#5599)
9 months ago
move to https://github.com/seaweedfs/seaweedfs
3 years ago
weed/s3api: added new bucket handlers for more compatibility with AWS S3 Protocol Otherwise any requests to the underlying handlers results in calls to ListObjects (v1) that may intensively load gateway and volume servers. Added the following handlers with default responses: - GetBucketLocation - GetBucketRequestPayment Added the following handlers with NotFound and NotImplemented responses: - PutBucketAcl - GetBucketPolicy - PutBucketPolicy - DeleteBucketPolicy - GetBucketCors - PutBucketCors - DeleteBucketCors
3 years ago
move to https://github.com/seaweedfs/seaweedfs
3 years ago
Add bucket owner attr.
4 years ago
fix s3 ListAllMyBucketsResult to work with s3cmd
6 years ago
fix directory lookup nil
5 years ago
move to https://github.com/seaweedfs/seaweedfs
3 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
add list all my buckets
7 years ago
add glog for s3 handlers
3 years ago
s3: support config action Admin:bucket
4 years ago
refactoring
3 years ago
s3: support config action Admin:bucket
4 years ago
fix s3 ListAllMyBucketsResult to work with s3cmd
6 years ago
add list all my buckets
7 years ago
s3: ListParts output xml format fix https://github.com/chrislusf/seaweedfs/issues/1461
5 years ago
add list all my buckets
7 years ago
refactoring
7 years ago
refactoring
3 years ago
refactoring
7 years ago
add list all my buckets
7 years ago
move s3 related constants from package http to s3_constants
3 years ago
Add bucket owner attr.
4 years ago
add s3test for sql (#5718) * add s3test for sql * fix test test_bucket_listv2_delimiter_basic for s3 * fix action s3tests * regen s3 api xsd * rm minor s3 test test_bucket_listv2_fetchowner_defaultempty * add docs * without xmlns
8 months ago
refactoring
7 years ago
wildcard prefix to restrict access to directories in s3 bucket https://github.com/chrislusf/seaweedfs/discussions/2551
3 years ago
enable admin to access all buckets
4 years ago
Add bucket owner attr.
4 years ago
add s3test for sql (#5718) * add s3test for sql * fix test test_bucket_listv2_delimiter_basic for s3 * fix action s3tests * regen s3 api xsd * rm minor s3 test test_bucket_listv2_fetchowner_defaultempty * add docs * without xmlns
8 months ago
refactoring
7 years ago
add list all my buckets
7 years ago
refactoring
7 years ago
add list all my buckets
7 years ago
fix s3 ListAllMyBucketsResult to work with s3cmd
6 years ago
add s3test for sql (#5718) * add s3test for sql * fix test test_bucket_listv2_delimiter_basic for s3 * fix action s3tests * regen s3 api xsd * rm minor s3 test test_bucket_listv2_fetchowner_defaultempty * add docs * without xmlns
8 months ago
refactoring
7 years ago
add s3test for sql (#5718) * add s3test for sql * fix test test_bucket_listv2_delimiter_basic for s3 * fix action s3tests * regen s3 api xsd * rm minor s3 test test_bucket_listv2_fetchowner_defaultempty * add docs * without xmlns
8 months ago
add list all my buckets
7 years ago
refactoring
3 years ago
add list all my buckets
7 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
move s3 related constants from package http to s3_constants
3 years ago
add glog for s3 handlers
3 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
detect invalid bucket name fix https://github.com/seaweedfs/seaweedfs/issues/4143
2 years ago
s3: avoid duplicated bucket
4 years ago
use streaming mode for long poll grpc calls streaming mode would create separate grpc connections for each call. this is to ensure the long poll connections are properly closed.
3 years ago
s3: avoid duplicated bucket
4 years ago
go fmt
4 years ago
s3: avoid duplicated bucket
4 years ago
Use filerGroup for s3 buckets collection prefix (#4465) * Use filerGroup for s3 buckets collection prefix * Fix templates * Remove flags * Remove s3CollectionPrefix
2 years ago
s3: avoid duplicated bucket
4 years ago
refactoring
3 years ago
s3: avoid duplicated bucket
4 years ago
check if bucket already exists.
4 years ago
s3: avoid duplicated bucket
4 years ago
refactoring
3 years ago
s3: avoid duplicated bucket
4 years ago
Add bucket owner attr.
4 years ago
move s3 related constants from package http to s3_constants
3 years ago
fix if nil map in entry.
4 years ago
move s3 related constants from package http to s3_constants
3 years ago
Add bucket owner attr.
4 years ago
refactoring
7 years ago
Add bucket owner attr.
4 years ago
s3: avoid duplicated bucket
4 years ago
refactoring
3 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
go fmt
3 years ago
refactoring
3 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
move s3 related constants from package http to s3_constants
3 years ago
add glog for s3 handlers
3 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
adjust check bucket if exist or has access.
4 years ago
refactoring
3 years ago
return NoSuchBucket instead of InternalError delete non-existed bucket.
4 years ago
skip if entry.Extended map is nil.
4 years ago
use streaming mode for long poll grpc calls streaming mode would create separate grpc connections for each call. this is to ensure the long poll connections are properly closed.
3 years ago
allowDeleteBucketNotEmpty
3 years ago
use const multipart uploads folder avoid error bucket NotEmpty if multipart uploads folder exist
3 years ago
allowDeleteBucketNotEmpty
3 years ago
use const multipart uploads folder avoid error bucket NotEmpty if multipart uploads folder exist
3 years ago
allowDeleteBucketNotEmpty
3 years ago
s3 test bucket delete nonempty
4 years ago
delete bucket also removes collection data
7 years ago
Use filerGroup for s3 buckets collection prefix (#4465) * Use filerGroup for s3 buckets collection prefix * Fix templates * Remove flags * Remove s3CollectionPrefix
2 years ago
delete bucket also removes collection data
7 years ago
remove ctx if possible
5 years ago
fix string printing
7 years ago
delete bucket also removes collection data
7 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
s3 test bucket delete nonempty
4 years ago
use constant for ErrBucketNotEmpty
3 years ago
s3 test bucket delete nonempty
4 years ago
allowDeleteBucketNotEmpty
3 years ago
s3 test bucket delete nonempty
4 years ago
S3 API: fix DeleteMultipleObjectsHandler fix https://github.com/chrislusf/seaweedfs/issues/1241
5 years ago
refactoring filer rm
7 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
refactoring
3 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
refactoring
3 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
add HeadBucket
7 years ago
move s3 related constants from package http to s3_constants
3 years ago
add glog for s3 handlers
3 years ago
add HeadBucket
7 years ago
Avoid forbiddening for HeadBucketHandler if owners are specified https://github.com/chrislusf/seaweedfs/issues/2434
3 years ago
adjust check bucket if exist or has access.
4 years ago
refactoring
3 years ago
adjust check bucket if exist or has access.
4 years ago
rename function
4 years ago
fix ErrNotFound
4 years ago
adjust check bucket if exist or has access.
4 years ago
add HeadBucket
7 years ago
skip if entry.Extended map is nil.
4 years ago
added s3 iam DeleteBucket permission management (#5599)
9 months ago
enable admin to access all buckets
4 years ago
adjust check bucket if exist or has access.
4 years ago
check permission for bucket delete/head.
4 years ago
adjust check bucket if exist or has access.
4 years ago
add HeadBucket
7 years ago
enable admin to access all buckets
4 years ago
move s3 related constants from package http to s3_constants
3 years ago
enable admin to access all buckets
4 years ago
move s3 related constants from package http to s3_constants
3 years ago
enable admin to access all buckets
4 years ago
added s3 iam DeleteBucket permission management (#5599)
9 months ago
enable admin to access all buckets
4 years ago
adjust check bucket if exist or has access.
4 years ago
AclHandlers
3 years ago
move s3 related constants from package http to s3_constants
3 years ago
AclHandlers
3 years ago
refactoring
3 years ago
AclHandlers
3 years ago
[s3acl] Step1: move s3account.AccountManager into to iam.S3ApiConfiguration (#4859) * move s3account.AccountManager into to iam.S3ApiConfiguration and switch to Interface https://github.com/seaweedfs/seaweedfs/issues/4519 * fix: test bucket acl default and adjust the variable names * fix: s3 api config test --------- Co-authored-by: Konstantin Lebedev <9497591+kmlebedev@users.noreply.github.co> Co-authored-by: Chris Lu <chrislusf@users.noreply.github.com>
1 year ago
[s3acl] Step 0: Put bucket ACL only responds success if the ACL is private. (#4856) * Passing test: test_bucket_acl_default test_bucket_acl_canned_private_to_private https://github.com/seaweedfs/seaweedfs/issues/4519 * Update weed/s3api/s3api_bucket_handlers.go --------- Co-authored-by: Konstantin Lebedev <9497591+kmlebedev@users.noreply.github.co> Co-authored-by: Chris Lu <chrislusf@users.noreply.github.com>
1 year ago
[s3acl] Step1: move s3account.AccountManager into to iam.S3ApiConfiguration (#4859) * move s3account.AccountManager into to iam.S3ApiConfiguration and switch to Interface https://github.com/seaweedfs/seaweedfs/issues/4519 * fix: test bucket acl default and adjust the variable names * fix: s3 api config test --------- Co-authored-by: Konstantin Lebedev <9497591+kmlebedev@users.noreply.github.co> Co-authored-by: Chris Lu <chrislusf@users.noreply.github.com>
1 year ago
[s3acl] Step 0: Put bucket ACL only responds success if the ACL is private. (#4856) * Passing test: test_bucket_acl_default test_bucket_acl_canned_private_to_private https://github.com/seaweedfs/seaweedfs/issues/4519 * Update weed/s3api/s3api_bucket_handlers.go --------- Co-authored-by: Konstantin Lebedev <9497591+kmlebedev@users.noreply.github.co> Co-authored-by: Chris Lu <chrislusf@users.noreply.github.com>
1 year ago
[s3acl] Step1: move s3account.AccountManager into to iam.S3ApiConfiguration (#4859) * move s3account.AccountManager into to iam.S3ApiConfiguration and switch to Interface https://github.com/seaweedfs/seaweedfs/issues/4519 * fix: test bucket acl default and adjust the variable names * fix: s3 api config test --------- Co-authored-by: Konstantin Lebedev <9497591+kmlebedev@users.noreply.github.co> Co-authored-by: Chris Lu <chrislusf@users.noreply.github.com>
1 year ago
[s3acl] Step 0: Put bucket ACL only responds success if the ACL is private. (#4856) * Passing test: test_bucket_acl_default test_bucket_acl_canned_private_to_private https://github.com/seaweedfs/seaweedfs/issues/4519 * Update weed/s3api/s3api_bucket_handlers.go --------- Co-authored-by: Konstantin Lebedev <9497591+kmlebedev@users.noreply.github.co> Co-authored-by: Chris Lu <chrislusf@users.noreply.github.com>
1 year ago
AclHandlers
3 years ago
[s3acl] Step 0: Put bucket ACL only responds success if the ACL is private. (#4856) * Passing test: test_bucket_acl_default test_bucket_acl_canned_private_to_private https://github.com/seaweedfs/seaweedfs/issues/4519 * Update weed/s3api/s3api_bucket_handlers.go --------- Co-authored-by: Konstantin Lebedev <9497591+kmlebedev@users.noreply.github.co> Co-authored-by: Chris Lu <chrislusf@users.noreply.github.com>
1 year ago
AclHandlers
3 years ago
[s3acl] Step 0: Put bucket ACL only responds success if the ACL is private. (#4856) * Passing test: test_bucket_acl_default test_bucket_acl_canned_private_to_private https://github.com/seaweedfs/seaweedfs/issues/4519 * Update weed/s3api/s3api_bucket_handlers.go --------- Co-authored-by: Konstantin Lebedev <9497591+kmlebedev@users.noreply.github.co> Co-authored-by: Chris Lu <chrislusf@users.noreply.github.com>
1 year ago
AclHandlers
3 years ago
[s3acl] Step 0: Put bucket ACL only responds success if the ACL is private. (#4856) * Passing test: test_bucket_acl_default test_bucket_acl_canned_private_to_private https://github.com/seaweedfs/seaweedfs/issues/4519 * Update weed/s3api/s3api_bucket_handlers.go --------- Co-authored-by: Konstantin Lebedev <9497591+kmlebedev@users.noreply.github.co> Co-authored-by: Chris Lu <chrislusf@users.noreply.github.com>
1 year ago
AclHandlers
3 years ago
move s3 related constants from package http to s3_constants
3 years ago
fix incorrect log information
3 years ago
AclHandlers
3 years ago
refactoring
3 years ago
AclHandlers
3 years ago
refactoring
3 years ago
AclHandlers
3 years ago
Use filerGroup for s3 buckets collection prefix (#4465) * Use filerGroup for s3 buckets collection prefix * Fix templates * Remove flags * Remove s3CollectionPrefix
2 years ago
GetBucketLifecycleConfigurationHandler
3 years ago
refactoring
3 years ago
DeleteBucketLifecycleConfiguration return 204
3 years ago
GetBucketLifecycleConfigurationHandler
3 years ago
[s3] Put bucket lifecycle configuration (#5510)
10 months ago
GetBucketLifecycleConfigurationHandler
3 years ago
[s3] Put bucket lifecycle configuration (#5510)
10 months ago
GetBucketLifecycleConfigurationHandler
3 years ago
[s3] Put bucket lifecycle configuration (#5510)
10 months ago
GetBucketLifecycleConfigurationHandler
3 years ago
[s3] Put bucket lifecycle configuration (#5510)
10 months ago
GetBucketLifecycleConfigurationHandler
3 years ago
fix test_lifecycle_get
8 months ago
refactoring
3 years ago
AclHandlers
3 years ago
[s3] Put bucket lifecycle configuration (#5510)
10 months ago
AclHandlers
3 years ago
[s3] Put bucket lifecycle configuration (#5510)
10 months ago
AclHandlers
3 years ago
[s3] Put bucket lifecycle configuration (#5510)
10 months ago
AclHandlers
3 years ago
chore: fix function names in comment (#5478)
11 months ago
AclHandlers
3 years ago
[s3] Put bucket lifecycle configuration (#5510)
10 months ago
AclHandlers
3 years ago
[s3] Put bucket lifecycle configuration (#5510)
10 months ago
AclHandlers
3 years ago
[s3] Put bucket lifecycle configuration (#5510)
10 months ago
AclHandlers
3 years ago
weed/s3api: added new bucket handlers for more compatibility with AWS S3 Protocol Otherwise any requests to the underlying handlers results in calls to ListObjects (v1) that may intensively load gateway and volume servers. Added the following handlers with default responses: - GetBucketLocation - GetBucketRequestPayment Added the following handlers with NotFound and NotImplemented responses: - PutBucketAcl - GetBucketPolicy - PutBucketPolicy - DeleteBucketPolicy - GetBucketCors - PutBucketCors - DeleteBucketCors
3 years ago
add s3test for sql (#5718) * add s3test for sql * fix test test_bucket_listv2_delimiter_basic for s3 * fix action s3tests * regen s3 api xsd * rm minor s3 test test_bucket_listv2_fetchowner_defaultempty * add docs * without xmlns
8 months ago
weed/s3api: added new bucket handlers for more compatibility with AWS S3 Protocol Otherwise any requests to the underlying handlers results in calls to ListObjects (v1) that may intensively load gateway and volume servers. Added the following handlers with default responses: - GetBucketLocation - GetBucketRequestPayment Added the following handlers with NotFound and NotImplemented responses: - PutBucketAcl - GetBucketPolicy - PutBucketPolicy - DeleteBucketPolicy - GetBucketCors - PutBucketCors - DeleteBucketCors
3 years ago
add ownership rest apis (#3765)
2 years ago
s3 api add default response for GetBucketVersioning
1 year ago
Fix missing VersionConfiguration node in get-bucket-versioning response (#5162) * fix: s3 response for get bucket version https://github.com/seaweedfs/seaweedfs/issues/5155 * fix: s3 response for get bucket version https://github.com/seaweedfs/seaweedfs/issues/5155
1 year ago
s3 api add default response for GetBucketVersioning
1 year ago
  1. package s3api
  3. import (
  4. "bytes"
  5. "context"
  6. "encoding/xml"
  7. "errors"
  8. "fmt"
  9. "math"
  10. "net/http"
  11. "sort"
  12. "strings"
  13. "time"
  15. "github.com/aws/aws-sdk-go/private/protocol/xml/xmlutil"
  16. "github.com/seaweedfs/seaweedfs/weed/s3api/s3bucket"
  17. "github.com/seaweedfs/seaweedfs/weed/util"
  19. "github.com/seaweedfs/seaweedfs/weed/filer"
  20. "github.com/seaweedfs/seaweedfs/weed/s3api/s3_constants"
  21. "github.com/seaweedfs/seaweedfs/weed/storage/needle"
  23. "github.com/seaweedfs/seaweedfs/weed/s3api/s3err"
  25. "github.com/aws/aws-sdk-go/aws"
  26. "github.com/aws/aws-sdk-go/service/s3"
  28. "github.com/seaweedfs/seaweedfs/weed/glog"
  29. "github.com/seaweedfs/seaweedfs/weed/pb/filer_pb"
  30. )
  32. func (s3a *S3ApiServer) ListBucketsHandler(w http.ResponseWriter, r *http.Request) {
  34. glog.V(3).Infof("ListBucketsHandler")
  36. var identity *Identity
  37. var s3Err s3err.ErrorCode
  38. if s3a.iam.isEnabled() {
  39. identity, s3Err = s3a.iam.authUser(r)
  40. if s3Err != s3err.ErrNone {
  41. s3err.WriteErrorResponse(w, r, s3Err)
  42. return
  43. }
  44. }
  46. var response ListAllMyBucketsResult
  48. entries, _, err := s3a.list(s3a.option.BucketsPath, "", "", false, math.MaxInt32)
  50. if err != nil {
  51. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  52. return
  53. }
  55. identityId := r.Header.Get(s3_constants.AmzIdentityId)
  57. var listBuckets ListAllMyBucketsList
  58. for _, entry := range entries {
  59. if entry.IsDirectory {
  60. if identity != nil && !identity.canDo(s3_constants.ACTION_LIST, entry.Name, "") {
  61. continue
  62. }
  63. listBuckets.Bucket = append(listBuckets.Bucket, ListAllMyBucketsEntry{
  64. Name: entry.Name,
  65. CreationDate: time.Unix(entry.Attributes.Crtime, 0).UTC(),
  66. })
  67. }
  68. }
  70. response = ListAllMyBucketsResult{
  71. Owner: CanonicalUser{
  72. ID: identityId,
  73. DisplayName: identityId,
  74. },
  75. Buckets: listBuckets,
  76. }
  78. writeSuccessResponseXML(w, r, response)
  79. }
  81. func (s3a *S3ApiServer) PutBucketHandler(w http.ResponseWriter, r *http.Request) {
  83. bucket, _ := s3_constants.GetBucketAndObject(r)
  84. glog.V(3).Infof("PutBucketHandler %s", bucket)
  86. // validate the bucket name
  87. err := s3bucket.VerifyS3BucketName(bucket)
  88. if err != nil {
  89. glog.Errorf("put invalid bucket name: %v %v", bucket, err)
  90. s3err.WriteErrorResponse(w, r, s3err.ErrInvalidBucketName)
  91. return
  92. }
  94. // avoid duplicated buckets
  95. errCode := s3err.ErrNone
  96. if err := s3a.WithFilerClient(false, func(client filer_pb.SeaweedFilerClient) error {
  97. if resp, err := client.CollectionList(context.Background(), &filer_pb.CollectionListRequest{
  98. IncludeEcVolumes: true,
  99. IncludeNormalVolumes: true,
  100. }); err != nil {
  101. glog.Errorf("list collection: %v", err)
  102. return fmt.Errorf("list collections: %v", err)
  103. } else {
  104. for _, c := range resp.Collections {
  105. if s3a.getCollectionName(bucket) == c.Name {
  106. errCode = s3err.ErrBucketAlreadyExists
  107. break
  108. }
  109. }
  110. }
  111. return nil
  112. }); err != nil {
  113. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  114. return
  115. }
  116. if exist, err := s3a.exists(s3a.option.BucketsPath, bucket, true); err == nil && exist {
  117. errCode = s3err.ErrBucketAlreadyExists
  118. }
  119. if errCode != s3err.ErrNone {
  120. s3err.WriteErrorResponse(w, r, errCode)
  121. return
  122. }
  124. fn := func(entry *filer_pb.Entry) {
  125. if identityId := r.Header.Get(s3_constants.AmzIdentityId); identityId != "" {
  126. if entry.Extended == nil {
  127. entry.Extended = make(map[string][]byte)
  128. }
  129. entry.Extended[s3_constants.AmzIdentityId] = []byte(identityId)
  130. }
  131. }
  133. // create the folder for bucket, but lazily create actual collection
  134. if err := s3a.mkdir(s3a.option.BucketsPath, bucket, fn); err != nil {
  135. glog.Errorf("PutBucketHandler mkdir: %v", err)
  136. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  137. return
  138. }
  139. w.Header().Set("Location", "/"+bucket)
  140. writeSuccessResponseEmpty(w, r)
  141. }
  143. func (s3a *S3ApiServer) DeleteBucketHandler(w http.ResponseWriter, r *http.Request) {
  145. bucket, _ := s3_constants.GetBucketAndObject(r)
  146. glog.V(3).Infof("DeleteBucketHandler %s", bucket)
  148. if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {
  149. s3err.WriteErrorResponse(w, r, err)
  150. return
  151. }
  153. err := s3a.WithFilerClient(false, func(client filer_pb.SeaweedFilerClient) error {
  154. if !s3a.option.AllowDeleteBucketNotEmpty {
  155. entries, _, err := s3a.list(s3a.option.BucketsPath+"/"+bucket, "", "", false, 2)
  156. if err != nil {
  157. return fmt.Errorf("failed to list bucket %s: %v", bucket, err)
  158. }
  159. for _, entry := range entries {
  160. if entry.Name != s3_constants.MultipartUploadsFolder {
  161. return errors.New(s3err.GetAPIError(s3err.ErrBucketNotEmpty).Code)
  162. }
  163. }
  164. }
  166. // delete collection
  167. deleteCollectionRequest := &filer_pb.DeleteCollectionRequest{
  168. Collection: s3a.getCollectionName(bucket),
  169. }
  171. glog.V(1).Infof("delete collection: %v", deleteCollectionRequest)
  172. if _, err := client.DeleteCollection(context.Background(), deleteCollectionRequest); err != nil {
  173. return fmt.Errorf("delete collection %s: %v", bucket, err)
  174. }
  176. return nil
  177. })
  179. if err != nil {
  180. s3ErrorCode := s3err.ErrInternalError
  181. if err.Error() == s3err.GetAPIError(s3err.ErrBucketNotEmpty).Code {
  182. s3ErrorCode = s3err.ErrBucketNotEmpty
  183. }
  184. s3err.WriteErrorResponse(w, r, s3ErrorCode)
  185. return
  186. }
  188. err = s3a.rm(s3a.option.BucketsPath, bucket, false, true)
  190. if err != nil {
  191. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  192. return
  193. }
  195. s3err.WriteEmptyResponse(w, r, http.StatusNoContent)
  196. }
  198. func (s3a *S3ApiServer) HeadBucketHandler(w http.ResponseWriter, r *http.Request) {
  200. bucket, _ := s3_constants.GetBucketAndObject(r)
  201. glog.V(3).Infof("HeadBucketHandler %s", bucket)
  203. if entry, err := s3a.getEntry(s3a.option.BucketsPath, bucket); entry == nil || err == filer_pb.ErrNotFound {
  204. s3err.WriteErrorResponse(w, r, s3err.ErrNoSuchBucket)
  205. return
  206. }
  208. writeSuccessResponseEmpty(w, r)
  209. }
  211. func (s3a *S3ApiServer) checkBucket(r *http.Request, bucket string) s3err.ErrorCode {
  212. entry, err := s3a.getEntry(s3a.option.BucketsPath, bucket)
  213. if entry == nil || err == filer_pb.ErrNotFound {
  214. return s3err.ErrNoSuchBucket
  215. }
  217. //if iam is enabled, the access was already checked before
  218. if s3a.iam.isEnabled() {
  219. return s3err.ErrNone
  220. }
  221. if !s3a.hasAccess(r, entry) {
  222. return s3err.ErrAccessDenied
  223. }
  224. return s3err.ErrNone
  225. }
  227. func (s3a *S3ApiServer) hasAccess(r *http.Request, entry *filer_pb.Entry) bool {
  228. isAdmin := r.Header.Get(s3_constants.AmzIsAdmin) != ""
  229. if isAdmin {
  230. return true
  231. }
  232. if entry.Extended == nil {
  233. return true
  234. }
  236. identityId := r.Header.Get(s3_constants.AmzIdentityId)
  237. if id, ok := entry.Extended[s3_constants.AmzIdentityId]; ok {
  238. if identityId != string(id) {
  239. glog.V(3).Infof("hasAccess: %s != %s (entry.Extended = %v)", identityId, id, entry.Extended)
  240. return false
  241. }
  242. }
  243. return true
  244. }
  246. // GetBucketAclHandler Get Bucket ACL
  247. // https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketAcl.html
  248. func (s3a *S3ApiServer) GetBucketAclHandler(w http.ResponseWriter, r *http.Request) {
  249. // collect parameters
  250. bucket, _ := s3_constants.GetBucketAndObject(r)
  251. glog.V(3).Infof("GetBucketAclHandler %s", bucket)
  253. if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {
  254. s3err.WriteErrorResponse(w, r, err)
  255. return
  256. }
  258. amzAccountId := r.Header.Get(s3_constants.AmzAccountId)
  259. amzDisplayName := s3a.iam.GetAccountNameById(amzAccountId)
  260. response := AccessControlPolicy{
  261. Owner: CanonicalUser{
  262. ID: amzAccountId,
  263. DisplayName: amzDisplayName,
  264. },
  265. }
  266. response.AccessControlList.Grant = append(response.AccessControlList.Grant, Grant{
  267. Grantee: Grantee{
  268. ID: amzAccountId,
  269. DisplayName: amzDisplayName,
  270. Type: "CanonicalUser",
  271. XMLXSI: "CanonicalUser",
  272. XMLNS: "http://www.w3.org/2001/XMLSchema-instance"},
  273. Permission: s3.PermissionFullControl,
  274. })
  275. writeSuccessResponseXML(w, r, response)
  276. }
  278. // PutBucketAclHandler Put bucket ACL only responds success if the ACL is private.
  279. // https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutBucketAcl.html //
  280. func (s3a *S3ApiServer) PutBucketAclHandler(w http.ResponseWriter, r *http.Request) {
  281. // collect parameters
  282. bucket, _ := s3_constants.GetBucketAndObject(r)
  283. glog.V(3).Infof("PutBucketAclHandler %s", bucket)
  285. if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {
  286. s3err.WriteErrorResponse(w, r, err)
  287. return
  288. }
  289. cannedAcl := r.Header.Get(s3_constants.AmzCannedAcl)
  290. switch {
  291. case cannedAcl == "":
  292. acl := &s3.AccessControlPolicy{}
  293. if err := xmlDecoder(r.Body, acl, r.ContentLength); err != nil {
  294. glog.Errorf("PutBucketAclHandler: %s", err)
  295. s3err.WriteErrorResponse(w, r, s3err.ErrInvalidRequest)
  296. return
  297. }
  298. if len(acl.Grants) == 1 && acl.Grants[0].Permission != nil && *acl.Grants[0].Permission == s3_constants.PermissionFullControl {
  299. writeSuccessResponseEmpty(w, r)
  300. return
  301. }
  302. case cannedAcl == s3_constants.CannedAclPrivate:
  303. writeSuccessResponseEmpty(w, r)
  304. return
  305. }
  306. s3err.WriteErrorResponse(w, r, s3err.ErrNotImplemented)
  307. }
  309. // GetBucketLifecycleConfigurationHandler Get Bucket Lifecycle configuration
  310. // https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketLifecycleConfiguration.html
  311. func (s3a *S3ApiServer) GetBucketLifecycleConfigurationHandler(w http.ResponseWriter, r *http.Request) {
  312. // collect parameters
  313. bucket, _ := s3_constants.GetBucketAndObject(r)
  314. glog.V(3).Infof("GetBucketLifecycleConfigurationHandler %s", bucket)
  316. if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {
  317. s3err.WriteErrorResponse(w, r, err)
  318. return
  319. }
  320. fc, err := filer.ReadFilerConf(s3a.option.Filer, s3a.option.GrpcDialOption, nil)
  321. if err != nil {
  322. glog.Errorf("GetBucketLifecycleConfigurationHandler: %s", err)
  323. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  324. return
  325. }
  326. ttls := fc.GetCollectionTtls(s3a.getCollectionName(bucket))
  327. if len(ttls) == 0 {
  328. s3err.WriteErrorResponse(w, r, s3err.ErrNoSuchLifecycleConfiguration)
  329. return
  330. }
  332. response := Lifecycle{}
  333. for locationPrefix, internalTtl := range ttls {
  334. ttl, _ := needle.ReadTTL(internalTtl)
  335. days := int(ttl.Minutes() / 60 / 24)
  336. if days == 0 {
  337. continue
  338. }
  339. prefix, found := strings.CutPrefix(locationPrefix, fmt.Sprintf("%s/%s/", s3a.option.BucketsPath, bucket))
  340. if !found {
  341. continue
  342. }
  343. response.Rules = append(response.Rules, Rule{
  344. ID: prefix,
  345. Status: Enabled,
  346. Prefix: Prefix{val: prefix, set: true},
  347. Expiration: Expiration{Days: days, set: true},
  348. })
  349. }
  350. sort.Slice(response.Rules, func(i, j int) bool {
  351. return response.Rules[i].ID < response.Rules[j].ID
  352. })
  353. writeSuccessResponseXML(w, r, response)
  354. }
  356. // PutBucketLifecycleConfigurationHandler Put Bucket Lifecycle configuration
  357. // https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutBucketLifecycleConfiguration.html
  358. func (s3a *S3ApiServer) PutBucketLifecycleConfigurationHandler(w http.ResponseWriter, r *http.Request) {
  359. // collect parameters
  360. bucket, _ := s3_constants.GetBucketAndObject(r)
  361. glog.V(3).Infof("PutBucketLifecycleConfigurationHandler %s", bucket)
  363. if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {
  364. s3err.WriteErrorResponse(w, r, err)
  365. return
  366. }
  368. lifeCycleConfig := Lifecycle{}
  369. if err := xmlDecoder(r.Body, &lifeCycleConfig, r.ContentLength); err != nil {
  370. glog.Warningf("PutBucketLifecycleConfigurationHandler xml decode: %s", err)
  371. s3err.WriteErrorResponse(w, r, s3err.ErrMalformedXML)
  372. return
  373. }
  375. fc, err := filer.ReadFilerConf(s3a.option.Filer, s3a.option.GrpcDialOption, nil)
  376. if err != nil {
  377. glog.Errorf("PutBucketLifecycleConfigurationHandler read filer config: %s", err)
  378. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  379. return
  380. }
  381. collectionName := s3a.getCollectionName(bucket)
  382. collectionTtls := fc.GetCollectionTtls(collectionName)
  383. changed := false
  385. for _, rule := range lifeCycleConfig.Rules {
  386. if rule.Status != Enabled {
  387. continue
  388. }
  389. var rulePrefix string
  390. switch {
  391. case rule.Filter.Prefix.set:
  392. rulePrefix = rule.Filter.Prefix.val
  393. case rule.Prefix.set:
  394. rulePrefix = rule.Prefix.val
  395. case !rule.Expiration.Date.IsZero() || rule.Transition.Days > 0 || !rule.Transition.Date.IsZero():
  396. s3err.WriteErrorResponse(w, r, s3err.ErrNotImplemented)
  397. return
  398. }
  400. if rule.Expiration.Days == 0 {
  401. continue
  402. }
  404. locConf := &filer_pb.FilerConf_PathConf{
  405. LocationPrefix: fmt.Sprintf("%s/%s/%s", s3a.option.BucketsPath, bucket, rulePrefix),
  406. Collection: collectionName,
  407. Ttl: fmt.Sprintf("%dd", rule.Expiration.Days),
  408. }
  409. if ttl, ok := collectionTtls[locConf.LocationPrefix]; ok && ttl == locConf.Ttl {
  410. continue
  411. }
  412. if err := fc.AddLocationConf(locConf); err != nil {
  413. glog.Errorf("PutBucketLifecycleConfigurationHandler add location config: %s", err)
  414. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  415. return
  416. }
  417. changed = true
  418. }
  420. if changed {
  421. var buf bytes.Buffer
  422. if err := fc.ToText(&buf); err != nil {
  423. glog.Errorf("PutBucketLifecycleConfigurationHandler save config to text: %s", err)
  424. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  425. }
  426. if err := s3a.WithFilerClient(false, func(client filer_pb.SeaweedFilerClient) error {
  427. return filer.SaveInsideFiler(client, filer.DirectoryEtcSeaweedFS, filer.FilerConfName, buf.Bytes())
  428. }); err != nil {
  429. glog.Errorf("PutBucketLifecycleConfigurationHandler save config inside filer: %s", err)
  430. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  431. return
  432. }
  433. }
  435. writeSuccessResponseEmpty(w, r)
  436. }
  438. // DeleteBucketLifecycleHandler Delete Bucket Lifecycle
  439. // https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteBucketLifecycle.html
  440. func (s3a *S3ApiServer) DeleteBucketLifecycleHandler(w http.ResponseWriter, r *http.Request) {
  441. // collect parameters
  442. bucket, _ := s3_constants.GetBucketAndObject(r)
  443. glog.V(3).Infof("DeleteBucketLifecycleHandler %s", bucket)
  445. if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {
  446. s3err.WriteErrorResponse(w, r, err)
  447. return
  448. }
  450. fc, err := filer.ReadFilerConf(s3a.option.Filer, s3a.option.GrpcDialOption, nil)
  451. if err != nil {
  452. glog.Errorf("DeleteBucketLifecycleHandler read filer config: %s", err)
  453. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  454. return
  455. }
  456. collectionTtls := fc.GetCollectionTtls(s3a.getCollectionName(bucket))
  457. changed := false
  458. for prefix, ttl := range collectionTtls {
  459. bucketPrefix := fmt.Sprintf("%s/%s/", s3a.option.BucketsPath, bucket)
  460. if strings.HasPrefix(prefix, bucketPrefix) && strings.HasSuffix(ttl, "d") {
  461. fc.DeleteLocationConf(prefix)
  462. changed = true
  463. }
  464. }
  466. if changed {
  467. var buf bytes.Buffer
  468. if err := fc.ToText(&buf); err != nil {
  469. glog.Errorf("DeleteBucketLifecycleHandler save config to text: %s", err)
  470. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  471. }
  472. if err := s3a.WithFilerClient(false, func(client filer_pb.SeaweedFilerClient) error {
  473. return filer.SaveInsideFiler(client, filer.DirectoryEtcSeaweedFS, filer.FilerConfName, buf.Bytes())
  474. }); err != nil {
  475. glog.Errorf("DeleteBucketLifecycleHandler save config inside filer: %s", err)
  476. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  477. return
  478. }
  479. }
  481. s3err.WriteEmptyResponse(w, r, http.StatusNoContent)
  482. }
  484. // GetBucketLocationHandler Get bucket location
  485. // https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketLocation.html
  486. func (s3a *S3ApiServer) GetBucketLocationHandler(w http.ResponseWriter, r *http.Request) {
  487. writeSuccessResponseXML(w, r, CreateBucketConfiguration{})
  488. }
  490. // GetBucketRequestPaymentHandler Get bucket location
  491. // https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketRequestPayment.html
  492. func (s3a *S3ApiServer) GetBucketRequestPaymentHandler(w http.ResponseWriter, r *http.Request) {
  493. writeSuccessResponseXML(w, r, RequestPaymentConfiguration{Payer: "BucketOwner"})
  494. }
  496. // PutBucketOwnershipControls https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutBucketOwnershipControls.html
  497. func (s3a *S3ApiServer) PutBucketOwnershipControls(w http.ResponseWriter, r *http.Request) {
  498. bucket, _ := s3_constants.GetBucketAndObject(r)
  499. glog.V(3).Infof("PutBucketOwnershipControls %s", bucket)
  501. errCode := s3a.checkAccessByOwnership(r, bucket)
  502. if errCode != s3err.ErrNone {
  503. s3err.WriteErrorResponse(w, r, errCode)
  504. return
  505. }
  507. if r.Body == nil || r.Body == http.NoBody {
  508. s3err.WriteErrorResponse(w, r, s3err.ErrInvalidRequest)
  509. return
  510. }
  512. var v s3.OwnershipControls
  513. defer util.CloseRequest(r)
  515. err := xmlutil.UnmarshalXML(&v, xml.NewDecoder(r.Body), "")
  516. if err != nil {
  517. s3err.WriteErrorResponse(w, r, s3err.ErrInvalidRequest)
  518. return
  519. }
  521. if len(v.Rules) != 1 {
  522. s3err.WriteErrorResponse(w, r, s3err.ErrInvalidRequest)
  523. return
  524. }
  526. printOwnership := true
  527. ownership := *v.Rules[0].ObjectOwnership
  528. switch ownership {
  529. case s3_constants.OwnershipObjectWriter:
  530. case s3_constants.OwnershipBucketOwnerPreferred:
  531. case s3_constants.OwnershipBucketOwnerEnforced:
  532. printOwnership = false
  533. default:
  534. s3err.WriteErrorResponse(w, r, s3err.ErrInvalidRequest)
  535. return
  536. }
  538. bucketEntry, err := s3a.getEntry(s3a.option.BucketsPath, bucket)
  539. if err != nil {
  540. if err == filer_pb.ErrNotFound {
  541. s3err.WriteErrorResponse(w, r, s3err.ErrNoSuchBucket)
  542. return
  543. }
  544. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  545. return
  546. }
  548. oldOwnership, ok := bucketEntry.Extended[s3_constants.ExtOwnershipKey]
  549. if !ok || string(oldOwnership) != ownership {
  550. if bucketEntry.Extended == nil {
  551. bucketEntry.Extended = make(map[string][]byte)
  552. }
  553. bucketEntry.Extended[s3_constants.ExtOwnershipKey] = []byte(ownership)
  554. err = s3a.updateEntry(s3a.option.BucketsPath, bucketEntry)
  555. if err != nil {
  556. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  557. return
  558. }
  559. }
  561. if printOwnership {
  562. result := &s3.PutBucketOwnershipControlsInput{
  563. OwnershipControls: &v,
  564. }
  565. s3err.WriteAwsXMLResponse(w, r, http.StatusOK, result)
  566. } else {
  567. writeSuccessResponseEmpty(w, r)
  568. }
  569. }
  571. // GetBucketOwnershipControls https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketOwnershipControls.html
  572. func (s3a *S3ApiServer) GetBucketOwnershipControls(w http.ResponseWriter, r *http.Request) {
  573. bucket, _ := s3_constants.GetBucketAndObject(r)
  574. glog.V(3).Infof("GetBucketOwnershipControls %s", bucket)
  576. errCode := s3a.checkAccessByOwnership(r, bucket)
  577. if errCode != s3err.ErrNone {
  578. s3err.WriteErrorResponse(w, r, errCode)
  579. return
  580. }
  582. bucketEntry, err := s3a.getEntry(s3a.option.BucketsPath, bucket)
  583. if err != nil {
  584. if err == filer_pb.ErrNotFound {
  585. s3err.WriteErrorResponse(w, r, s3err.ErrNoSuchBucket)
  586. return
  587. }
  588. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  589. return
  590. }
  592. v, ok := bucketEntry.Extended[s3_constants.ExtOwnershipKey]
  593. if !ok {
  594. s3err.WriteErrorResponse(w, r, s3err.OwnershipControlsNotFoundError)
  595. return
  596. }
  597. ownership := string(v)
  599. result := &s3.PutBucketOwnershipControlsInput{
  600. OwnershipControls: &s3.OwnershipControls{
  601. Rules: []*s3.OwnershipControlsRule{
  602. {
  603. ObjectOwnership: &ownership,
  604. },
  605. },
  606. },
  607. }
  609. s3err.WriteAwsXMLResponse(w, r, http.StatusOK, result)
  610. }
  612. // DeleteBucketOwnershipControls https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteBucketOwnershipControls.html
  613. func (s3a *S3ApiServer) DeleteBucketOwnershipControls(w http.ResponseWriter, r *http.Request) {
  614. bucket, _ := s3_constants.GetBucketAndObject(r)
  615. glog.V(3).Infof("PutBucketOwnershipControls %s", bucket)
  617. errCode := s3a.checkAccessByOwnership(r, bucket)
  618. if errCode != s3err.ErrNone {
  619. s3err.WriteErrorResponse(w, r, errCode)
  620. return
  621. }
  623. bucketEntry, err := s3a.getEntry(s3a.option.BucketsPath, bucket)
  624. if err != nil {
  625. if err == filer_pb.ErrNotFound {
  626. s3err.WriteErrorResponse(w, r, s3err.ErrNoSuchBucket)
  627. return
  628. }
  629. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  630. return
  631. }
  633. _, ok := bucketEntry.Extended[s3_constants.ExtOwnershipKey]
  634. if !ok {
  635. s3err.WriteErrorResponse(w, r, s3err.OwnershipControlsNotFoundError)
  636. return
  637. }
  639. delete(bucketEntry.Extended, s3_constants.ExtOwnershipKey)
  640. err = s3a.updateEntry(s3a.option.BucketsPath, bucketEntry)
  641. if err != nil {
  642. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  643. return
  644. }
  646. emptyOwnershipControls := &s3.OwnershipControls{
  647. Rules: []*s3.OwnershipControlsRule{},
  648. }
  649. s3err.WriteAwsXMLResponse(w, r, http.StatusOK, emptyOwnershipControls)
  650. }
  652. // GetBucketVersioningHandler Get Bucket Versioning status
  653. // https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketVersioning.html
  654. func (s3a *S3ApiServer) GetBucketVersioningHandler(w http.ResponseWriter, r *http.Request) {
  655. bucket, _ := s3_constants.GetBucketAndObject(r)
  656. glog.V(3).Infof("GetBucketVersioning %s", bucket)
  658. if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {
  659. s3err.WriteErrorResponse(w, r, err)
  660. return
  661. }
  663. s3err.WriteAwsXMLResponse(w, r, http.StatusOK, &s3.PutBucketVersioningInput{
  664. VersioningConfiguration: &s3.VersioningConfiguration{
  665. Status: aws.String(s3.BucketVersioningStatusSuspended),
  666. },
  667. })
  668. }