| /* |
| * Licensed to the Apache Software Foundation (ASF) under one or more |
| * contributor license agreements. See the NOTICE file distributed with |
| * this work for additional information regarding copyright ownership. |
| * The ASF licenses this file to You under the Apache License, Version 2.0 |
| * (the "License"); you may not use this file except in compliance with |
| * the License. You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, software |
| * distributed under the License is distributed on an "AS IS" BASIS, |
| * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| * See the License for the specific language governing permissions and |
| * limitations under the License. |
| */ |
| package org.jclouds.aws.s3.filters; |
| |
| import static org.jclouds.http.utils.Queries.queryParser; |
| import static org.jclouds.s3.filters.AwsSignatureV4Constants.AMZ_SIGNATURE_PARAM; |
| import static org.jclouds.s3.reference.S3Constants.TEMPORARY_SIGNATURE_PARAM; |
| |
| import jakarta.inject.Inject; |
| import jakarta.inject.Singleton; |
| |
| import com.google.common.collect.Multimap; |
| |
| import org.jclouds.http.HttpRequest; |
| import org.jclouds.s3.filters.Aws4SignerForAuthorizationHeader; |
| import org.jclouds.s3.filters.Aws4SignerForChunkedUpload; |
| import org.jclouds.s3.filters.Aws4SignerForQueryString; |
| import org.jclouds.s3.filters.RequestAuthorizeSignatureV4; |
| |
| /** |
| * Signs the AWS S3 request, supporting temporary signatures. |
| */ |
| @Singleton |
| public class AWSRequestAuthorizeSignatureV4 extends RequestAuthorizeSignatureV4 { |
| |
| @Inject |
| public AWSRequestAuthorizeSignatureV4(Aws4SignerForAuthorizationHeader signerForAuthorizationHeader, |
| Aws4SignerForChunkedUpload signerForChunkedUpload, |
| Aws4SignerForQueryString signerForQueryString) { |
| super(signerForAuthorizationHeader, signerForChunkedUpload, signerForQueryString); |
| } |
| |
| @Override |
| protected HttpRequest signForAuthorizationHeader(HttpRequest request) { |
| /* |
| * Only add the Authorization header if the query string doesn't already contain |
| * the 'X-Amz-Signature' parameter, otherwise S3 will fail the request complaining about |
| * duplicate authentication methods. The 'Signature' parameter will be added for signed URLs |
| * with expiration. |
| */ |
| |
| // Do not replace URI.getRawQuery() with URI.getQuery() see: JCLOUDS-1631 |
| Multimap<String, String> queryMap = queryParser().apply(request.getEndpoint().getRawQuery()); |
| if (queryMap.containsKey(AMZ_SIGNATURE_PARAM) || queryMap.containsKey(TEMPORARY_SIGNATURE_PARAM)) { |
| return request; |
| } |
| return super.signForAuthorizationHeader(request); |
| } |
| } |