Mirror
/
seaweedfs
mirror of https://github.com/seaweedfs/seaweedfs.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7388 Commits
32 Branches
297 Tags
164 MiB
Tree: b6a2b43efe
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'b6a2b43efe'
${ noResults }
seaweedfs/weed/s3api/s3api_bucket_handlers.go

342 lines
9.8 KiB
Raw Normal View History

add list all my buckets
7 years ago
add namespace for ListAllMyBucketsResult
6 years ago
add list all my buckets
7 years ago
fix s3 ListAllMyBucketsResult to work with s3cmd
6 years ago
go fmt
7 years ago
go fmt
7 years ago
weed/s3api: added new bucket handlers for more compatibility with AWS S3 Protocol Otherwise any requests to the underlying handlers results in calls to ListObjects (v1) that may intensively load gateway and volume servers. Added the following handlers with default responses: - GetBucketLocation - GetBucketRequestPayment Added the following handlers with NotFound and NotImplemented responses: - PutBucketAcl - GetBucketPolicy - PutBucketPolicy - DeleteBucketPolicy - GetBucketCors - PutBucketCors - DeleteBucketCors
3 years ago
Add bucket owner attr.
4 years ago
fix s3 ListAllMyBucketsResult to work with s3cmd
6 years ago
fix directory lookup nil
5 years ago
go fmt
7 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
fix s3 ListAllMyBucketsResult to work with s3cmd
6 years ago
add context to all filer APIs
6 years ago
fix s3 ListAllMyBucketsResult to work with s3cmd
6 years ago
add namespace for ListAllMyBucketsResult
6 years ago
fix s3 ListAllMyBucketsResult to work with s3cmd
6 years ago
add list all my buckets
7 years ago
add glog for s3 handlers
3 years ago
s3: support config action Admin:bucket
4 years ago
refactoring
3 years ago
s3: support config action Admin:bucket
4 years ago
fix s3 ListAllMyBucketsResult to work with s3cmd
6 years ago
add list all my buckets
7 years ago
s3: ListParts output xml format fix https://github.com/chrislusf/seaweedfs/issues/1461
4 years ago
add list all my buckets
7 years ago
refactoring
6 years ago
refactoring
3 years ago
refactoring
6 years ago
add list all my buckets
7 years ago
Add bucket owner attr.
4 years ago
fix s3 ListAllMyBucketsResult to work with s3cmd
6 years ago
refactoring
6 years ago
wildcard prefix to restrict access to directories in s3 bucket https://github.com/chrislusf/seaweedfs/discussions/2551
3 years ago
enable admin to access all buckets
4 years ago
Add bucket owner attr.
4 years ago
fix s3 ListAllMyBucketsResult to work with s3cmd
6 years ago
s3: print out time in UTC format fix https://github.com/chrislusf/seaweedfs/issues/1297
5 years ago
refactoring
6 years ago
add list all my buckets
7 years ago
refactoring
6 years ago
add list all my buckets
7 years ago
fix s3 ListAllMyBucketsResult to work with s3cmd
6 years ago
Add bucket owner attr.
4 years ago
refactoring
6 years ago
fix s3 ListAllMyBucketsResult to work with s3cmd
6 years ago
add list all my buckets
7 years ago
refactoring
3 years ago
add list all my buckets
7 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
audit log
3 years ago
add glog for s3 handlers
3 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
s3: avoid duplicated bucket
4 years ago
use streaming mode for long poll grpc calls streaming mode would create separate grpc connections for each call. this is to ensure the long poll connections are properly closed.
3 years ago
s3: avoid duplicated bucket
4 years ago
go fmt
4 years ago
s3: avoid duplicated bucket
4 years ago
refactoring
3 years ago
s3: avoid duplicated bucket
4 years ago
check if bucket already exists.
4 years ago
s3: avoid duplicated bucket
4 years ago
refactoring
3 years ago
s3: avoid duplicated bucket
4 years ago
check auth only when enabled
3 years ago
s3: skip permission checking for creating bucket if the bucket already exists fix https://github.com/chrislusf/seaweedfs/issues/2417 Rclone was trying to create the bucket even though the bucket already exists.
3 years ago
Add bucket owner attr.
4 years ago
fix if nil map in entry.
4 years ago
Add bucket owner attr.
4 years ago
refactoring
6 years ago
Add bucket owner attr.
4 years ago
s3: avoid duplicated bucket
4 years ago
refactoring
3 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
refactoring
3 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
audit log
3 years ago
add glog for s3 handlers
3 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
adjust check bucket if exist or has access.
4 years ago
refactoring
3 years ago
return NoSuchBucket instead of InternalError delete non-existed bucket.
4 years ago
skip if entry.Extended map is nil.
4 years ago
use streaming mode for long poll grpc calls streaming mode would create separate grpc connections for each call. this is to ensure the long poll connections are properly closed.
3 years ago
allowDeleteBucketNotEmpty
3 years ago
s3 test bucket delete nonempty
4 years ago
delete bucket also removes collection data
7 years ago
remove ctx if possible
5 years ago
fix string printing
7 years ago
delete bucket also removes collection data
7 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
s3 test bucket delete nonempty
4 years ago
allowDeleteBucketNotEmpty
3 years ago
s3 test bucket delete nonempty
4 years ago
S3 API: fix DeleteMultipleObjectsHandler fix https://github.com/chrislusf/seaweedfs/issues/1241
5 years ago
refactoring filer rm
6 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
refactoring
3 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
refactoring
3 years ago
add bucket creation and deletion 1. option for "weed s3 -filer.dir.buckets" to choose a folder for buckets 2. create a bucket 3. delete a bucket, recursively delete all metadata on filer
7 years ago
add HeadBucket
7 years ago
audit log
3 years ago
add glog for s3 handlers
3 years ago
add HeadBucket
7 years ago
Avoid forbiddening for HeadBucketHandler if owners are specified https://github.com/chrislusf/seaweedfs/issues/2434
3 years ago
adjust check bucket if exist or has access.
4 years ago
refactoring
3 years ago
adjust check bucket if exist or has access.
4 years ago
rename function
4 years ago
fix ErrNotFound
4 years ago
adjust check bucket if exist or has access.
4 years ago
add HeadBucket
7 years ago
skip if entry.Extended map is nil.
4 years ago
enable admin to access all buckets
4 years ago
adjust check bucket if exist or has access.
4 years ago
check permission for bucket delete/head.
4 years ago
adjust check bucket if exist or has access.
4 years ago
add HeadBucket
7 years ago
enable admin to access all buckets
4 years ago
adjust check bucket if exist or has access.
4 years ago
AclHandlers
3 years ago
audit log
3 years ago
AclHandlers
3 years ago
refactoring
3 years ago
AclHandlers
3 years ago
refactoring
3 years ago
AclHandlers
3 years ago
audit log
3 years ago
fix incorrect log information
3 years ago
AclHandlers
3 years ago
refactoring
3 years ago
AclHandlers
3 years ago
refactoring
3 years ago
AclHandlers
3 years ago
GetBucketLifecycleConfigurationHandler
3 years ago
refactoring
3 years ago
DeleteBucketLifecycleConfiguration return 204
3 years ago
GetBucketLifecycleConfigurationHandler
3 years ago
refactoring
3 years ago
AclHandlers
3 years ago
refactoring
3 years ago
AclHandlers
3 years ago
refactoring
3 years ago
AclHandlers
3 years ago
weed/s3api: added new bucket handlers for more compatibility with AWS S3 Protocol Otherwise any requests to the underlying handlers results in calls to ListObjects (v1) that may intensively load gateway and volume servers. Added the following handlers with default responses: - GetBucketLocation - GetBucketRequestPayment Added the following handlers with NotFound and NotImplemented responses: - PutBucketAcl - GetBucketPolicy - PutBucketPolicy - DeleteBucketPolicy - GetBucketCors - PutBucketCors - DeleteBucketCors
3 years ago
  1. package s3api
  3. import (
  4. "context"
  5. "encoding/xml"
  6. "fmt"
  7. "math"
  8. "net/http"
  9. "time"
  11. "github.com/chrislusf/seaweedfs/weed/filer"
  12. "github.com/chrislusf/seaweedfs/weed/s3api/s3_constants"
  13. "github.com/chrislusf/seaweedfs/weed/storage/needle"
  15. xhttp "github.com/chrislusf/seaweedfs/weed/s3api/http"
  16. "github.com/chrislusf/seaweedfs/weed/s3api/s3err"
  18. "github.com/aws/aws-sdk-go/aws"
  19. "github.com/aws/aws-sdk-go/service/s3"
  21. "github.com/chrislusf/seaweedfs/weed/glog"
  22. "github.com/chrislusf/seaweedfs/weed/pb/filer_pb"
  23. )
  25. type ListAllMyBucketsResult struct {
  26. XMLName xml.Name `xml:"http://s3.amazonaws.com/doc/2006-03-01/ ListAllMyBucketsResult"`
  27. Owner *s3.Owner
  28. Buckets []*s3.Bucket `xml:"Buckets>Bucket"`
  29. }
  31. func (s3a *S3ApiServer) ListBucketsHandler(w http.ResponseWriter, r *http.Request) {
  33. glog.V(3).Infof("ListBucketsHandler")
  35. var identity *Identity
  36. var s3Err s3err.ErrorCode
  37. if s3a.iam.isEnabled() {
  38. identity, s3Err = s3a.iam.authUser(r)
  39. if s3Err != s3err.ErrNone {
  40. s3err.WriteErrorResponse(w, r, s3Err)
  41. return
  42. }
  43. }
  45. var response ListAllMyBucketsResult
  47. entries, _, err := s3a.list(s3a.option.BucketsPath, "", "", false, math.MaxInt32)
  49. if err != nil {
  50. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  51. return
  52. }
  54. identityId := r.Header.Get(xhttp.AmzIdentityId)
  56. var buckets []*s3.Bucket
  57. for _, entry := range entries {
  58. if entry.IsDirectory {
  59. if identity != nil && !identity.canDo(s3_constants.ACTION_LIST, entry.Name, "") {
  60. continue
  61. }
  62. buckets = append(buckets, &s3.Bucket{
  63. Name: aws.String(entry.Name),
  64. CreationDate: aws.Time(time.Unix(entry.Attributes.Crtime, 0).UTC()),
  65. })
  66. }
  67. }
  69. response = ListAllMyBucketsResult{
  70. Owner: &s3.Owner{
  71. ID: aws.String(identityId),
  72. DisplayName: aws.String(identityId),
  73. },
  74. Buckets: buckets,
  75. }
  77. writeSuccessResponseXML(w, r, response)
  78. }
  80. func (s3a *S3ApiServer) PutBucketHandler(w http.ResponseWriter, r *http.Request) {
  82. bucket, _ := xhttp.GetBucketAndObject(r)
  83. glog.V(3).Infof("PutBucketHandler %s", bucket)
  85. // avoid duplicated buckets
  86. errCode := s3err.ErrNone
  87. if err := s3a.WithFilerClient(false, func(client filer_pb.SeaweedFilerClient) error {
  88. if resp, err := client.CollectionList(context.Background(), &filer_pb.CollectionListRequest{
  89. IncludeEcVolumes: true,
  90. IncludeNormalVolumes: true,
  91. }); err != nil {
  92. glog.Errorf("list collection: %v", err)
  93. return fmt.Errorf("list collections: %v", err)
  94. } else {
  95. for _, c := range resp.Collections {
  96. if bucket == c.Name {
  97. errCode = s3err.ErrBucketAlreadyExists
  98. break
  99. }
  100. }
  101. }
  102. return nil
  103. }); err != nil {
  104. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  105. return
  106. }
  107. if exist, err := s3a.exists(s3a.option.BucketsPath, bucket, true); err == nil && exist {
  108. errCode = s3err.ErrBucketAlreadyExists
  109. }
  110. if errCode != s3err.ErrNone {
  111. s3err.WriteErrorResponse(w, r, errCode)
  112. return
  113. }
  115. if s3a.iam.isEnabled() {
  116. if _, errCode = s3a.iam.authRequest(r, s3_constants.ACTION_ADMIN); errCode != s3err.ErrNone {
  117. s3err.WriteErrorResponse(w, r, errCode)
  118. return
  119. }
  120. }
  122. fn := func(entry *filer_pb.Entry) {
  123. if identityId := r.Header.Get(xhttp.AmzIdentityId); identityId != "" {
  124. if entry.Extended == nil {
  125. entry.Extended = make(map[string][]byte)
  126. }
  127. entry.Extended[xhttp.AmzIdentityId] = []byte(identityId)
  128. }
  129. }
  131. // create the folder for bucket, but lazily create actual collection
  132. if err := s3a.mkdir(s3a.option.BucketsPath, bucket, fn); err != nil {
  133. glog.Errorf("PutBucketHandler mkdir: %v", err)
  134. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  135. return
  136. }
  137. writeSuccessResponseEmpty(w, r)
  138. }
  140. func (s3a *S3ApiServer) DeleteBucketHandler(w http.ResponseWriter, r *http.Request) {
  142. bucket, _ := xhttp.GetBucketAndObject(r)
  143. glog.V(3).Infof("DeleteBucketHandler %s", bucket)
  145. if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {
  146. s3err.WriteErrorResponse(w, r, err)
  147. return
  148. }
  150. err := s3a.WithFilerClient(false, func(client filer_pb.SeaweedFilerClient) error {
  151. if !s3a.option.AllowDeleteBucketNotEmpty {
  152. entries, _, err := s3a.list(s3a.option.BucketsPath+"/"+bucket, "", "", false, 1)
  153. if err != nil {
  154. return fmt.Errorf("failed to list bucket %s: %v", bucket, err)
  155. }
  156. if len(entries) > 0 {
  157. return fmt.Errorf("BucketNotEmpty")
  158. }
  159. }
  161. // delete collection
  162. deleteCollectionRequest := &filer_pb.DeleteCollectionRequest{
  163. Collection: bucket,
  164. }
  166. glog.V(1).Infof("delete collection: %v", deleteCollectionRequest)
  167. if _, err := client.DeleteCollection(context.Background(), deleteCollectionRequest); err != nil {
  168. return fmt.Errorf("delete collection %s: %v", bucket, err)
  169. }
  171. return nil
  172. })
  174. if err != nil {
  175. s3ErrorCode := s3err.ErrInternalError
  176. if err.Error() == "BucketNotEmpty" {
  177. s3ErrorCode = s3err.ErrBucketNotEmpty
  178. }
  179. s3err.WriteErrorResponse(w, r, s3ErrorCode)
  180. return
  181. }
  183. err = s3a.rm(s3a.option.BucketsPath, bucket, false, true)
  185. if err != nil {
  186. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  187. return
  188. }
  190. s3err.WriteEmptyResponse(w, r, http.StatusNoContent)
  191. }
  193. func (s3a *S3ApiServer) HeadBucketHandler(w http.ResponseWriter, r *http.Request) {
  195. bucket, _ := xhttp.GetBucketAndObject(r)
  196. glog.V(3).Infof("HeadBucketHandler %s", bucket)
  198. if entry, err := s3a.getEntry(s3a.option.BucketsPath, bucket); entry == nil || err == filer_pb.ErrNotFound {
  199. s3err.WriteErrorResponse(w, r, s3err.ErrNoSuchBucket)
  200. return
  201. }
  203. writeSuccessResponseEmpty(w, r)
  204. }
  206. func (s3a *S3ApiServer) checkBucket(r *http.Request, bucket string) s3err.ErrorCode {
  207. entry, err := s3a.getEntry(s3a.option.BucketsPath, bucket)
  208. if entry == nil || err == filer_pb.ErrNotFound {
  209. return s3err.ErrNoSuchBucket
  210. }
  212. if !s3a.hasAccess(r, entry) {
  213. return s3err.ErrAccessDenied
  214. }
  215. return s3err.ErrNone
  216. }
  218. func (s3a *S3ApiServer) hasAccess(r *http.Request, entry *filer_pb.Entry) bool {
  219. isAdmin := r.Header.Get(xhttp.AmzIsAdmin) != ""
  220. if isAdmin {
  221. return true
  222. }
  223. if entry.Extended == nil {
  224. return true
  225. }
  227. identityId := r.Header.Get(xhttp.AmzIdentityId)
  228. if id, ok := entry.Extended[xhttp.AmzIdentityId]; ok {
  229. if identityId != string(id) {
  230. return false
  231. }
  232. }
  233. return true
  234. }
  236. // GetBucketAclHandler Get Bucket ACL
  237. // https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketAcl.html
  238. func (s3a *S3ApiServer) GetBucketAclHandler(w http.ResponseWriter, r *http.Request) {
  239. // collect parameters
  240. bucket, _ := xhttp.GetBucketAndObject(r)
  241. glog.V(3).Infof("GetBucketAclHandler %s", bucket)
  243. if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {
  244. s3err.WriteErrorResponse(w, r, err)
  245. return
  246. }
  248. response := AccessControlPolicy{}
  249. for _, ident := range s3a.iam.identities {
  250. if len(ident.Credentials) == 0 {
  251. continue
  252. }
  253. for _, action := range ident.Actions {
  254. if !action.overBucket(bucket) || action.getPermission() == "" {
  255. continue
  256. }
  257. id := ident.Credentials[0].AccessKey
  258. if response.Owner.DisplayName == "" && action.isOwner(bucket) && len(ident.Credentials) > 0 {
  259. response.Owner.DisplayName = ident.Name
  260. response.Owner.ID = id
  261. }
  262. response.AccessControlList.Grant = append(response.AccessControlList.Grant, Grant{
  263. Grantee: Grantee{
  264. ID: id,
  265. DisplayName: ident.Name,
  266. Type: "CanonicalUser",
  267. XMLXSI: "CanonicalUser",
  268. XMLNS: "http://www.w3.org/2001/XMLSchema-instance"},
  269. Permission: action.getPermission(),
  270. })
  271. }
  272. }
  273. writeSuccessResponseXML(w, r, response)
  274. }
  276. // GetBucketLifecycleConfigurationHandler Get Bucket Lifecycle configuration
  277. // https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketLifecycleConfiguration.html
  278. func (s3a *S3ApiServer) GetBucketLifecycleConfigurationHandler(w http.ResponseWriter, r *http.Request) {
  279. // collect parameters
  280. bucket, _ := xhttp.GetBucketAndObject(r)
  281. glog.V(3).Infof("GetBucketLifecycleConfigurationHandler %s", bucket)
  283. if err := s3a.checkBucket(r, bucket); err != s3err.ErrNone {
  284. s3err.WriteErrorResponse(w, r, err)
  285. return
  286. }
  287. fc, err := filer.ReadFilerConf(s3a.option.Filer, s3a.option.GrpcDialOption, nil)
  288. if err != nil {
  289. glog.Errorf("GetBucketLifecycleConfigurationHandler: %s", err)
  290. s3err.WriteErrorResponse(w, r, s3err.ErrInternalError)
  291. return
  292. }
  293. ttls := fc.GetCollectionTtls(bucket)
  294. if len(ttls) == 0 {
  295. s3err.WriteErrorResponse(w, r, s3err.ErrNoSuchLifecycleConfiguration)
  296. return
  297. }
  298. response := Lifecycle{}
  299. for prefix, internalTtl := range ttls {
  300. ttl, _ := needle.ReadTTL(internalTtl)
  301. days := int(ttl.Minutes() / 60 / 24)
  302. if days == 0 {
  303. continue
  304. }
  305. response.Rules = append(response.Rules, Rule{
  306. Status: Enabled, Filter: Filter{
  307. Prefix: Prefix{string: prefix, set: true},
  308. set: true,
  309. },
  310. Expiration: Expiration{Days: days, set: true},
  311. })
  312. }
  313. writeSuccessResponseXML(w, r, response)
  314. }
  316. // PutBucketLifecycleConfigurationHandler Put Bucket Lifecycle configuration
  317. // https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutBucketLifecycleConfiguration.html
  318. func (s3a *S3ApiServer) PutBucketLifecycleConfigurationHandler(w http.ResponseWriter, r *http.Request) {
  320. s3err.WriteErrorResponse(w, r, s3err.ErrNotImplemented)
  322. }
  324. // DeleteBucketMetricsConfiguration Delete Bucket Lifecycle
  325. // https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteBucketLifecycle.html
  326. func (s3a *S3ApiServer) DeleteBucketLifecycleHandler(w http.ResponseWriter, r *http.Request) {
  328. s3err.WriteEmptyResponse(w, r, http.StatusNoContent)
  330. }
  332. // GetBucketLocationHandler Get bucket location
  333. // https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketLocation.html
  334. func (s3a *S3ApiServer) GetBucketLocationHandler(w http.ResponseWriter, r *http.Request) {
  335. writeSuccessResponseXML(w, r, LocationConstraint{})
  336. }
  338. // GetBucketRequestPaymentHandler Get bucket location
  339. // https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketRequestPayment.html
  340. func (s3a *S3ApiServer) GetBucketRequestPaymentHandler(w http.ResponseWriter, r *http.Request) {
  341. writeSuccessResponseXML(w, r, RequestPaymentConfiguration{Payer: "BucketOwner"})
  342. }