File: shared_key.rb

package info (click to toggle)
ruby-azure-storage-common 2.0.1-5
  • links: PTS, VCS
  • area: main
  • in suites: bullseye
  • size: 456 kB
  • sloc: ruby: 3,021; makefile: 7
file content (125 lines) | stat: -rw-r--r-- 4,956 bytes parent folder | download | duplicates (3) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
 
#-------------------------------------------------------------------------
# # Copyright (c) Microsoft and contributors. All rights reserved.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#   http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#--------------------------------------------------------------------------
require 'cgi'
require 'azure/core/auth/signer'

module Azure
  module Core
    module Auth
      class SharedKey < Signer
        # The Azure account's name.
        attr :account_name

        # Initialize the Signer.
        #
        # @param account_name [String] The account name. Defaults to the one in the
        #                global configuration.
        # @param access_key   [String] The access_key encoded in Base64. Defaults to the
        #                one in the global configuration.
        def initialize(account_name=Azure.storage_account_name, access_key=Azure.storage_access_key)
          @account_name = account_name
          super(access_key)
        end

        # The name of the strategy.
        #
        # @return [String]
        def name
          'SharedKey'
        end

        # Create the signature for the request parameters
        #
        # @param method     [Symbol] HTTP request method.
        # @param uri        [URI] URI of the request we're signing.
        # @param headers    [Hash] HTTP request headers.
        #
        # @return           [String] base64 encoded signature
        def sign(method, uri, headers)
          "#{account_name}:#{super(signable_string(method, uri, headers))}"
        end

        # Sign the request
        #
        # @param req    [Azure::Core::Http::HttpRequest] HTTP request to sign
        #
        # @return       [Azure::Core::Http::HttpRequest]
        def sign_request(req)
          # Need to make sure Content-Length is correctly set.
          if ((!req.body.nil?)) then
            if (req.body.respond_to? :bytesize) then
              req.headers['Content-Length'] = req.body.bytesize.to_s
            elsif (req.body.respond_to? :size)
              req.headers['Content-Length'] = req.body.size.to_s
            end
          end
          req.headers['Authorization'] = "#{name} #{sign(req.method, req.uri, req.headers)}"
          req
        end

        # Generate the string to sign.
        #
        # @param method     [Symbol] HTTP request method.
        # @param uri        [URI] URI of the request we're signing.
        # @param headers    [Hash] HTTP request headers.
        #
        # @return [String]
        def signable_string(method, uri, headers)
          [
            method.to_s.upcase,
            headers.fetch('Content-Encoding', ''),
            headers.fetch('Content-Language', ''),
            headers.fetch('Content-Length', ''),
            headers.fetch('Content-MD5', ''),
            headers.fetch('Content-Type', ''),
            headers.fetch('Date', ''),
            headers.fetch('If-Modified-Since', ''),
            headers.fetch('If-Match', ''),
            headers.fetch('If-None-Match', ''),
            headers.fetch('If-Unmodified-Since', ''),
            headers.fetch('Range', ''),
            canonicalized_headers(headers),
            canonicalized_resource(uri)
          ].join("\n")
        end

        # Calculate the Canonicalized Headers string for a request.
        #
        # @param headers    [Hash] HTTP request headers.
        #
        # @return [String] a string with the canonicalized headers.
        def canonicalized_headers(headers)
          headers = headers.map { |k,v| [k.to_s.downcase, v] }
          headers.select! { |k,_| k =~ /^x-ms-/ }
          headers.sort_by! { |(k,_)| k }
          headers.map! { |k,v| '%s:%s' % [k, v] }.join("\n")
        end

        # Calculate the Canonicalized Resource string for a request.
        #
        # @param uri        [URI] URI of the request we're signing.
        #
        # @return           [String] a string with the canonicalized resource.
        def canonicalized_resource(uri)
          resource = '/' + account_name + (uri.path.empty? ? '/' : uri.path)
          params = CGI.parse(uri.query.to_s).map { |k,v| [k.downcase, v] }
          params.sort_by! { |k,_| k }
          params.map! { |k,v| '%s:%s' % [k, v.map(&:strip).sort.join(',')] }
          [resource, *params].join("\n")
        end
      end
    end
  end
end