feat: UrlSigner supports custom endpoints #12042
Conversation
amanda-tarafa
force-pushed
the
storage-url-signer
branch
2 times, most recently
from
343a743 to
252d85d
Compare
| @@ -174,15 +195,31 @@ public sealed class Options | |||
| /// <param name="urlStyle">The new url style.</param> | |||
| /// <returns>A new set ofoptions with the given url style.</returns> | |||
| public Options WithUrlStyle(UrlStyle urlStyle) => | |||
| new Options(Duration, Expiration, SigningVersion, urlStyle, Scheme, null); | |||
| new Options(Duration, Expiration, SigningVersion, urlStyle, Scheme, Host, Port, null); | |||
There was a problem hiding this comment.
Possibly note that this clears BucketBoundHostname? I'm pretty sure that's deliberate, but it confused me for a while.
There was a problem hiding this comment.
Ah, yes, done.
| @@ -240,6 +241,45 @@ public void WithPort_Null() | |||
| Assert.NotSame(options, newOptions); | |||
| Assert.Null(newOptions.Port); | |||
| } | |||
|
|
|||
| [Fact] | |||
| public void WithDefultOverrides_NullOverrideValues() | |||
There was a problem hiding this comment.
Defult => Default here and in the other tests
(And while amending this commit, the message is missing an "r" from "URLSigner".)
There was a problem hiding this comment.
Oh, done, both, and default here and eerywhere.
| { | ||
| /// <summary> | ||
| /// Overrides for default values for some of the options in <see cref="Options"/>. | ||
| /// Useful for creating signers where signing options default to specific valued, for instance |
|
|
||
| /// <summary> | ||
| /// The host to use for generating the signed URL. | ||
| /// This will never be null. If null is specified in <see cref="WithHost(string)"/> | ||
| /// then <see cref="DefaultStorageHost"/> will be used. | ||
| /// Will be ignored if <see cref="UrlStyle"/> is set to <see cref="UrlStyle.BucketBoundHostname"/>. | ||
| /// </summary> | ||
| public string Host { get; } | ||
| public string Host => ExplicitHost ?? DefaultOptionsOverrides?.Host ?? DefaultStorageHost; |
There was a problem hiding this comment.
I think the comment on line 82 may need to be amended.
| TimeSpan? duration, DateTimeOffset? expiration, SigningVersion version, UrlStyle? urlStyle, string scheme, string host, int? port, string bucketBoundHostname) | ||
| /// <summary> | ||
| /// Values to be used as default for some options in case they are not set, | ||
| /// instead of the usual default values.May be null. |
There was a problem hiding this comment.
Nit: space after the period before "May be null"
| internal UrlSigner WithClock(IClock clock) => new UrlSigner(_blobSignerProvider, clock, _defaultOptionsOverrides); | ||
|
|
||
| /// <summary> | ||
| /// Returns a URL signer identical to this one, excepto for the default options overrides used for signing. |
| /// on compatible credentials. | ||
| /// </summary> | ||
| /// <remarks> | ||
| /// Because credentials used by this client may changed, this property will return a new <see cref="UrlSigner"/> instance |
There was a problem hiding this comment.
I think it would be better to make this a method (CreateUrlSigner()) in that case. It just makes it really clear - and it's unlikely to be significantly harder to use that way.
I'd argue that when it's a method, we should allow any exceptions to propagate instead of returning null, too. (Or maybe have a TryCreateUrlSigner method that returns null.)
There was a problem hiding this comment.
Yes, I debated over this, settled on a property, but I wasn't convinced. I'm adding the method then, CreateUrlSigner and letting exceptions bobble up.
amanda-tarafa
force-pushed
the
storage-url-signer
branch
from
252d85d to
24db1df
Compare
There was a problem hiding this comment.
All comments addressed on ordered commits prefixed review:.
Also, take a look at the Firestore change, or let me know if you'd prefer me to bring that out to another PR. According to googleapis/conformance-tests#84 you were fine with this, and it's simple enough though.
| @@ -174,15 +195,31 @@ public sealed class Options | |||
| /// <param name="urlStyle">The new url style.</param> | |||
| /// <returns>A new set ofoptions with the given url style.</returns> | |||
| public Options WithUrlStyle(UrlStyle urlStyle) => | |||
| new Options(Duration, Expiration, SigningVersion, urlStyle, Scheme, null); | |||
| new Options(Duration, Expiration, SigningVersion, urlStyle, Scheme, Host, Port, null); | |||
There was a problem hiding this comment.
Ah, yes, done.
| @@ -240,6 +241,45 @@ public void WithPort_Null() | |||
| Assert.NotSame(options, newOptions); | |||
| Assert.Null(newOptions.Port); | |||
| } | |||
|
|
|||
| [Fact] | |||
| public void WithDefultOverrides_NullOverrideValues() | |||
There was a problem hiding this comment.
Oh, done, both, and default here and eerywhere.
| { | ||
| /// <summary> | ||
| /// Overrides for default values for some of the options in <see cref="Options"/>. | ||
| /// Useful for creating signers where signing options default to specific valued, for instance |
|
|
||
| /// <summary> | ||
| /// The host to use for generating the signed URL. | ||
| /// This will never be null. If null is specified in <see cref="WithHost(string)"/> | ||
| /// then <see cref="DefaultStorageHost"/> will be used. | ||
| /// Will be ignored if <see cref="UrlStyle"/> is set to <see cref="UrlStyle.BucketBoundHostname"/>. | ||
| /// </summary> | ||
| public string Host { get; } | ||
| public string Host => ExplicitHost ?? DefaultOptionsOverrides?.Host ?? DefaultStorageHost; |
| TimeSpan? duration, DateTimeOffset? expiration, SigningVersion version, UrlStyle? urlStyle, string scheme, string host, int? port, string bucketBoundHostname) | ||
| /// <summary> | ||
| /// Values to be used as default for some options in case they are not set, | ||
| /// instead of the usual default values.May be null. |
| internal UrlSigner WithClock(IClock clock) => new UrlSigner(_blobSignerProvider, clock, _defaultOptionsOverrides); | ||
|
|
||
| /// <summary> | ||
| /// Returns a URL signer identical to this one, excepto for the default options overrides used for signing. |
| /// on compatible credentials. | ||
| /// </summary> | ||
| /// <remarks> | ||
| /// Because credentials used by this client may changed, this property will return a new <see cref="UrlSigner"/> instance |
There was a problem hiding this comment.
Yes, I debated over this, settled on a property, but I wasn't convinced. I'm adding the method then, CreateUrlSigner and letting exceptions bobble up.
| @@ -65,8 +65,7 @@ public sealed class Options | |||
| /// <summary> | |||
| /// The Scheme to use for the request. Only http or https supported. | |||
| /// This will never be null. If null is specified in <see cref="WithScheme(string)"/> | |||
| /// then https will be used. | |||
| /// Defaults to https. | |||
| /// an appropiate default value will be used. | |||
There was a problem hiding this comment.
Nit (sorry) - appropiate => appropriate
| @@ -79,7 +78,7 @@ public sealed class Options | |||
| /// <summary> | |||
| /// The host to use for generating the signed URL. | |||
| /// This will never be null. If null is specified in <see cref="WithHost(string)"/> | |||
| /// then <see cref="DefaultStorageHost"/> will be used. | |||
| /// then the appropiate default value will be used. | |||
| @@ -167,6 +132,29 @@ public UrlSigner UrlSigner | |||
| UnauthenticatedAccess = true | |||
| }.Build(); | |||
|
|
|||
| /// <summary> | |||
| /// Creates a URL signer built base on this client, that is using the same credential as this client, as well | |||
There was a problem hiding this comment.
base => based (and maybe remove the "built"?)
is using => uses
| @@ -167,6 +132,29 @@ public UrlSigner UrlSigner | |||
| UnauthenticatedAccess = true | |||
| }.Build(); | |||
|
|
|||
| /// <summary> | |||
| /// Creates a URL signer built base on this client, that is using the same credential as this client, as well | |||
| /// as defaulting to this client's URI scheme, host and port. If the credential used by this client is not compatible | |||
There was a problem hiding this comment.
Possibly just use <exception> instead of summary for the exception bit? (I don't mind either way.)
| /// See <see cref="UrlSigner"/>'s documentation for more information on compatible credentials. | ||
| /// </summary> | ||
| /// <remarks> | ||
| /// Because credentials used by this client may changed, this method will always return a new <see cref="UrlSigner"/> instance |
There was a problem hiding this comment.
I think we can probably remove these remarks now - I'd expect a method called "Create" to return a new instance anyway.
| // If the original URI didn't specify a port, we want signed URLs to not have a port either; | ||
| // but Uri.Port returns the default port for the URI scheme when the port was not specified on the | ||
| // original URI. | ||
| baseUri.IsDefaultPort && !Service.BaseUri.Contains(baseUri.Port.ToString()) ? null : baseUri.Port)); |
There was a problem hiding this comment.
I'd personally move this logic (including the comment) into a separate local variable declaration of port, so we can then just use new UrlSigner.DefaultOptionsOverrides(baseUri.Scheme, baseUri.Host, port).
Yes, I'm fine doing that in this PR. |
And regenerated conformance tests protos.
This will allow creating signers from StorageClients.
The created UrlSigner will use the same credential and base URI as the StorageClient it is created from.
amanda-tarafa
force-pushed
the
storage-url-signer
branch
from
24db1df to
fc00fa2
Compare
| @@ -65,8 +65,7 @@ public sealed class Options | |||
| /// <summary> | |||
| /// The Scheme to use for the request. Only http or https supported. | |||
| /// This will never be null. If null is specified in <see cref="WithScheme(string)"/> | |||
| /// then https will be used. | |||
| /// Defaults to https. | |||
| /// an appropiate default value will be used. | |||
| @@ -79,7 +78,7 @@ public sealed class Options | |||
| /// <summary> | |||
| /// The host to use for generating the signed URL. | |||
| /// This will never be null. If null is specified in <see cref="WithHost(string)"/> | |||
| /// then <see cref="DefaultStorageHost"/> will be used. | |||
| /// then the appropiate default value will be used. | |||
| @@ -167,6 +132,29 @@ public UrlSigner UrlSigner | |||
| UnauthenticatedAccess = true | |||
| }.Build(); | |||
|
|
|||
| /// <summary> | |||
| /// Creates a URL signer built base on this client, that is using the same credential as this client, as well | |||
| @@ -167,6 +132,29 @@ public UrlSigner UrlSigner | |||
| UnauthenticatedAccess = true | |||
| }.Build(); | |||
|
|
|||
| /// <summary> | |||
| /// Creates a URL signer built base on this client, that is using the same credential as this client, as well | |||
| /// as defaulting to this client's URI scheme, host and port. If the credential used by this client is not compatible | |||
| /// See <see cref="UrlSigner"/>'s documentation for more information on compatible credentials. | ||
| /// </summary> | ||
| /// <remarks> | ||
| /// Because credentials used by this client may changed, this method will always return a new <see cref="UrlSigner"/> instance |
| // If the original URI didn't specify a port, we want signed URLs to not have a port either; | ||
| // but Uri.Port returns the default port for the URI scheme when the port was not specified on the | ||
| // original URI. | ||
| baseUri.IsDefaultPort && !Service.BaseUri.Contains(baseUri.Port.ToString()) ? null : baseUri.Port)); |
And can be built from StorageClient
Closes #11313
@jskeet as always, one commit at a time. And a couple of notes: