providers/aws-s3/src/main/java/org/jclouds/aws/s3/filters/AWSRequestAuthorizeSignatureV4.java - jclouds - Git at Google

 /*
  * Licensed to the Apache Software Foundation (ASF) under one or more
  * contributor license agreements.  See the NOTICE file distributed with
  * this work for additional information regarding copyright ownership.
  * The ASF licenses this file to You under the Apache License, Version 2.0
  * (the "License"); you may not use this file except in compliance with
  * the License.  You may obtain a copy of the License at
  *
  *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
 package org.jclouds.aws.s3.filters;

 import static org.jclouds.http.utils.Queries.queryParser;
 import static org.jclouds.s3.filters.AwsSignatureV4Constants.AMZ_SIGNATURE_PARAM;
 import static org.jclouds.s3.reference.S3Constants.TEMPORARY_SIGNATURE_PARAM;

 import jakarta.inject.Inject;
 import jakarta.inject.Singleton;

 import com.google.common.collect.Multimap;

 import org.jclouds.http.HttpRequest;
 import org.jclouds.s3.filters.Aws4SignerForAuthorizationHeader;
 import org.jclouds.s3.filters.Aws4SignerForChunkedUpload;
 import org.jclouds.s3.filters.Aws4SignerForQueryString;
 import org.jclouds.s3.filters.RequestAuthorizeSignatureV4;

 /**
  * Signs the AWS S3 request, supporting temporary signatures.
  */
 @Singleton
 public class AWSRequestAuthorizeSignatureV4 extends RequestAuthorizeSignatureV4 {

    @Inject
    public AWSRequestAuthorizeSignatureV4(Aws4SignerForAuthorizationHeader signerForAuthorizationHeader,
          Aws4SignerForChunkedUpload signerForChunkedUpload,
          Aws4SignerForQueryString signerForQueryString) {
       super(signerForAuthorizationHeader, signerForChunkedUpload, signerForQueryString);
    }

    @Override
    protected HttpRequest signForAuthorizationHeader(HttpRequest request) {
       /*
       * Only add the Authorization header if the query string doesn't already contain
       * the 'X-Amz-Signature' parameter, otherwise S3 will fail the request complaining about
       * duplicate authentication methods. The 'Signature' parameter will be added for signed URLs
       * with expiration.
       */

       // Do not replace URI.getRawQuery() with URI.getQuery() see: JCLOUDS-1631
       Multimap<String, String> queryMap = queryParser().apply(request.getEndpoint().getRawQuery());
       if (queryMap.containsKey(AMZ_SIGNATURE_PARAM) || queryMap.containsKey(TEMPORARY_SIGNATURE_PARAM)) {
          return request;
       }
       return super.signForAuthorizationHeader(request);
    }
 }
	/*
	* Licensed to the Apache Software Foundation (ASF) under one or more
	* contributor license agreements. See the NOTICE file distributed with
	* this work for additional information regarding copyright ownership.
	* The ASF licenses this file to You under the Apache License, Version 2.0
	* (the "License"); you may not use this file except in compliance with
	* the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/
	package org.jclouds.aws.s3.filters;

	import static org.jclouds.http.utils.Queries.queryParser;
	import static org.jclouds.s3.filters.AwsSignatureV4Constants.AMZ_SIGNATURE_PARAM;
	import static org.jclouds.s3.reference.S3Constants.TEMPORARY_SIGNATURE_PARAM;

	import jakarta.inject.Inject;
	import jakarta.inject.Singleton;

	import com.google.common.collect.Multimap;

	import org.jclouds.http.HttpRequest;
	import org.jclouds.s3.filters.Aws4SignerForAuthorizationHeader;
	import org.jclouds.s3.filters.Aws4SignerForChunkedUpload;
	import org.jclouds.s3.filters.Aws4SignerForQueryString;
	import org.jclouds.s3.filters.RequestAuthorizeSignatureV4;

	/**
	* Signs the AWS S3 request, supporting temporary signatures.
	*/
	@Singleton
	public class AWSRequestAuthorizeSignatureV4 extends RequestAuthorizeSignatureV4 {

	@Inject
	public AWSRequestAuthorizeSignatureV4(Aws4SignerForAuthorizationHeader signerForAuthorizationHeader,
	Aws4SignerForChunkedUpload signerForChunkedUpload,
	Aws4SignerForQueryString signerForQueryString) {
	super(signerForAuthorizationHeader, signerForChunkedUpload, signerForQueryString);
	}

	@Override
	protected HttpRequest signForAuthorizationHeader(HttpRequest request) {
	/*
	* Only add the Authorization header if the query string doesn't already contain
	* the 'X-Amz-Signature' parameter, otherwise S3 will fail the request complaining about
	* duplicate authentication methods. The 'Signature' parameter will be added for signed URLs
	* with expiration.
	*/

	// Do not replace URI.getRawQuery() with URI.getQuery() see: JCLOUDS-1631
	Multimap<String, String> queryMap = queryParser().apply(request.getEndpoint().getRawQuery());
	if (queryMap.containsKey(AMZ_SIGNATURE_PARAM) \|\| queryMap.containsKey(TEMPORARY_SIGNATURE_PARAM)) {
	return request;
	}
	return super.signForAuthorizationHeader(request);
	}
	}