aboutsummaryrefslogtreecommitdiffstats
path: root/vendor/github.com/Azure/azure-storage-blob-go/2018-03-28/azblob/zc_sas_account.go
diff options
context:
space:
mode:
Diffstat (limited to 'vendor/github.com/Azure/azure-storage-blob-go/2018-03-28/azblob/zc_sas_account.go')
-rw-r--r--vendor/github.com/Azure/azure-storage-blob-go/2018-03-28/azblob/zc_sas_account.go217
1 files changed, 217 insertions, 0 deletions
diff --git a/vendor/github.com/Azure/azure-storage-blob-go/2018-03-28/azblob/zc_sas_account.go b/vendor/github.com/Azure/azure-storage-blob-go/2018-03-28/azblob/zc_sas_account.go
new file mode 100644
index 000000000..8b51193f6
--- /dev/null
+++ b/vendor/github.com/Azure/azure-storage-blob-go/2018-03-28/azblob/zc_sas_account.go
@@ -0,0 +1,217 @@
+package azblob
+
+import (
+ "bytes"
+ "fmt"
+ "strings"
+ "time"
+)
+
+// AccountSASSignatureValues is used to generate a Shared Access Signature (SAS) for an Azure Storage account.
+// For more information, see https://docs.microsoft.com/rest/api/storageservices/constructing-an-account-sas
+type AccountSASSignatureValues struct {
+ Version string `param:"sv"` // If not specified, this defaults to SASVersion
+ Protocol SASProtocol `param:"spr"` // See the SASProtocol* constants
+ StartTime time.Time `param:"st"` // Not specified if IsZero
+ ExpiryTime time.Time `param:"se"` // Not specified if IsZero
+ Permissions string `param:"sp"` // Create by initializing a AccountSASPermissions and then call String()
+ IPRange IPRange `param:"sip"`
+ Services string `param:"ss"` // Create by initializing AccountSASServices and then call String()
+ ResourceTypes string `param:"srt"` // Create by initializing AccountSASResourceTypes and then call String()
+}
+
+// NewSASQueryParameters uses an account's shared key credential to sign this signature values to produce
+// the proper SAS query parameters.
+func (v AccountSASSignatureValues) NewSASQueryParameters(sharedKeyCredential *SharedKeyCredential) SASQueryParameters {
+ // https://docs.microsoft.com/en-us/rest/api/storageservices/Constructing-an-Account-SAS
+ if v.ExpiryTime.IsZero() || v.Permissions == "" || v.ResourceTypes == "" || v.Services == "" {
+ panic("Account SAS is missing at least one of these: ExpiryTime, Permissions, Service, or ResourceType")
+ }
+ if v.Version == "" {
+ v.Version = SASVersion
+ }
+ perms := &AccountSASPermissions{}
+ if err := perms.Parse(v.Permissions); err != nil {
+ panic(err)
+ }
+ v.Permissions = perms.String()
+
+ startTime, expiryTime := FormatTimesForSASSigning(v.StartTime, v.ExpiryTime)
+
+ stringToSign := strings.Join([]string{
+ sharedKeyCredential.AccountName(),
+ v.Permissions,
+ v.Services,
+ v.ResourceTypes,
+ startTime,
+ expiryTime,
+ v.IPRange.String(),
+ string(v.Protocol),
+ v.Version,
+ ""}, // That right, the account SAS requires a terminating extra newline
+ "\n")
+
+ signature := sharedKeyCredential.ComputeHMACSHA256(stringToSign)
+ p := SASQueryParameters{
+ // Common SAS parameters
+ version: v.Version,
+ protocol: v.Protocol,
+ startTime: v.StartTime,
+ expiryTime: v.ExpiryTime,
+ permissions: v.Permissions,
+ ipRange: v.IPRange,
+
+ // Account-specific SAS parameters
+ services: v.Services,
+ resourceTypes: v.ResourceTypes,
+
+ // Calculated SAS signature
+ signature: signature,
+ }
+ return p
+}
+
+// The AccountSASPermissions type simplifies creating the permissions string for an Azure Storage Account SAS.
+// Initialize an instance of this type and then call its String method to set AccountSASSignatureValues's Permissions field.
+type AccountSASPermissions struct {
+ Read, Write, Delete, List, Add, Create, Update, Process bool
+}
+
+// String produces the SAS permissions string for an Azure Storage account.
+// Call this method to set AccountSASSignatureValues's Permissions field.
+func (p AccountSASPermissions) String() string {
+ var buffer bytes.Buffer
+ if p.Read {
+ buffer.WriteRune('r')
+ }
+ if p.Write {
+ buffer.WriteRune('w')
+ }
+ if p.Delete {
+ buffer.WriteRune('d')
+ }
+ if p.List {
+ buffer.WriteRune('l')
+ }
+ if p.Add {
+ buffer.WriteRune('a')
+ }
+ if p.Create {
+ buffer.WriteRune('c')
+ }
+ if p.Update {
+ buffer.WriteRune('u')
+ }
+ if p.Process {
+ buffer.WriteRune('p')
+ }
+ return buffer.String()
+}
+
+// Parse initializes the AccountSASPermissions's fields from a string.
+func (p *AccountSASPermissions) Parse(s string) error {
+ *p = AccountSASPermissions{} // Clear out the flags
+ for _, r := range s {
+ switch r {
+ case 'r':
+ p.Read = true
+ case 'w':
+ p.Write = true
+ case 'd':
+ p.Delete = true
+ case 'l':
+ p.List = true
+ case 'a':
+ p.Add = true
+ case 'c':
+ p.Create = true
+ case 'u':
+ p.Update = true
+ case 'p':
+ p.Process = true
+ default:
+ return fmt.Errorf("Invalid permission character: '%v'", r)
+ }
+ }
+ return nil
+}
+
+// The AccountSASServices type simplifies creating the services string for an Azure Storage Account SAS.
+// Initialize an instance of this type and then call its String method to set AccountSASSignatureValues's Services field.
+type AccountSASServices struct {
+ Blob, Queue, File bool
+}
+
+// String produces the SAS services string for an Azure Storage account.
+// Call this method to set AccountSASSignatureValues's Services field.
+func (s AccountSASServices) String() string {
+ var buffer bytes.Buffer
+ if s.Blob {
+ buffer.WriteRune('b')
+ }
+ if s.Queue {
+ buffer.WriteRune('q')
+ }
+ if s.File {
+ buffer.WriteRune('f')
+ }
+ return buffer.String()
+}
+
+// Parse initializes the AccountSASServices' fields from a string.
+func (a *AccountSASServices) Parse(s string) error {
+ *a = AccountSASServices{} // Clear out the flags
+ for _, r := range s {
+ switch r {
+ case 'b':
+ a.Blob = true
+ case 'q':
+ a.Queue = true
+ case 'f':
+ a.File = true
+ default:
+ return fmt.Errorf("Invalid service character: '%v'", r)
+ }
+ }
+ return nil
+}
+
+// The AccountSASResourceTypes type simplifies creating the resource types string for an Azure Storage Account SAS.
+// Initialize an instance of this type and then call its String method to set AccountSASSignatureValues's ResourceTypes field.
+type AccountSASResourceTypes struct {
+ Service, Container, Object bool
+}
+
+// String produces the SAS resource types string for an Azure Storage account.
+// Call this method to set AccountSASSignatureValues's ResourceTypes field.
+func (rt AccountSASResourceTypes) String() string {
+ var buffer bytes.Buffer
+ if rt.Service {
+ buffer.WriteRune('s')
+ }
+ if rt.Container {
+ buffer.WriteRune('c')
+ }
+ if rt.Object {
+ buffer.WriteRune('o')
+ }
+ return buffer.String()
+}
+
+// Parse initializes the AccountSASResourceType's fields from a string.
+func (rt *AccountSASResourceTypes) Parse(s string) error {
+ *rt = AccountSASResourceTypes{} // Clear out the flags
+ for _, r := range s {
+ switch r {
+ case 's':
+ rt.Service = true
+ case 'q':
+ rt.Container = true
+ case 'o':
+ rt.Object = true
+ default:
+ return fmt.Errorf("Invalid resource type: '%v'", r)
+ }
+ }
+ return nil
+}
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-13 10:17:53 +0800