mirror of
https://github.com/go-gitea/gitea
synced 2024-06-01 17:05:48 +00:00
62e6c9bc6c
* Add a storage layer for attachments * Fix some bug * fix test * Fix copyright head and lint * Fix bug * Add setting for minio and flags for migrate-storage * Add documents * fix lint * Add test for minio store type on attachments * fix test * fix test * Apply suggestions from code review Co-authored-by: guillep2k <18600385+guillep2k@users.noreply.github.com> * Add warning when storage migrated successfully * Fix drone * fix test * rebase * Fix test * display the error on console * Move minio test to amd64 since minio docker don't support arm64 * refactor the codes * add trace * Fix test * remove log on xorm * Fi download bug * Add a storage layer for attachments * Add setting for minio and flags for migrate-storage * fix lint * Add test for minio store type on attachments * Apply suggestions from code review Co-authored-by: guillep2k <18600385+guillep2k@users.noreply.github.com> * Fix drone * fix test * Fix test * display the error on console * Move minio test to amd64 since minio docker don't support arm64 * refactor the codes * add trace * Fix test * Add URL function to serve attachments directly from S3/Minio * Add ability to enable/disable redirection in attachment configuration * Fix typo * Add a storage layer for attachments * Add setting for minio and flags for migrate-storage * fix lint * Add test for minio store type on attachments * Apply suggestions from code review Co-authored-by: guillep2k <18600385+guillep2k@users.noreply.github.com> * Fix drone * fix test * Fix test * display the error on console * Move minio test to amd64 since minio docker don't support arm64 * don't change unrelated files * Fix lint * Fix build * update go.mod and go.sum * Use github.com/minio/minio-go/v6 * Remove unused function * Upgrade minio to v7 and some other improvements * fix lint * Fix go mod Co-authored-by: guillep2k <18600385+guillep2k@users.noreply.github.com> Co-authored-by: Tyler <tystuyfzand@gmail.com>
121 lines
3.5 KiB
Go
Vendored
121 lines
3.5 KiB
Go
Vendored
/*
|
|
* MinIO Go Library for Amazon S3 Compatible Cloud Storage
|
|
* Copyright 2017 MinIO, Inc.
|
|
*
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
* you may not use this file except in compliance with the License.
|
|
* You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
*
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
* See the License for the specific language governing permissions and
|
|
* limitations under the License.
|
|
*/
|
|
|
|
package credentials
|
|
|
|
import (
|
|
"os"
|
|
"path/filepath"
|
|
|
|
homedir "github.com/mitchellh/go-homedir"
|
|
ini "gopkg.in/ini.v1"
|
|
)
|
|
|
|
// A FileAWSCredentials retrieves credentials from the current user's home
|
|
// directory, and keeps track if those credentials are expired.
|
|
//
|
|
// Profile ini file example: $HOME/.aws/credentials
|
|
type FileAWSCredentials struct {
|
|
// Path to the shared credentials file.
|
|
//
|
|
// If empty will look for "AWS_SHARED_CREDENTIALS_FILE" env variable. If the
|
|
// env value is empty will default to current user's home directory.
|
|
// Linux/OSX: "$HOME/.aws/credentials"
|
|
// Windows: "%USERPROFILE%\.aws\credentials"
|
|
Filename string
|
|
|
|
// AWS Profile to extract credentials from the shared credentials file. If empty
|
|
// will default to environment variable "AWS_PROFILE" or "default" if
|
|
// environment variable is also not set.
|
|
Profile string
|
|
|
|
// retrieved states if the credentials have been successfully retrieved.
|
|
retrieved bool
|
|
}
|
|
|
|
// NewFileAWSCredentials returns a pointer to a new Credentials object
|
|
// wrapping the Profile file provider.
|
|
func NewFileAWSCredentials(filename string, profile string) *Credentials {
|
|
return New(&FileAWSCredentials{
|
|
Filename: filename,
|
|
Profile: profile,
|
|
})
|
|
}
|
|
|
|
// Retrieve reads and extracts the shared credentials from the current
|
|
// users home directory.
|
|
func (p *FileAWSCredentials) Retrieve() (Value, error) {
|
|
if p.Filename == "" {
|
|
p.Filename = os.Getenv("AWS_SHARED_CREDENTIALS_FILE")
|
|
if p.Filename == "" {
|
|
homeDir, err := homedir.Dir()
|
|
if err != nil {
|
|
return Value{}, err
|
|
}
|
|
p.Filename = filepath.Join(homeDir, ".aws", "credentials")
|
|
}
|
|
}
|
|
if p.Profile == "" {
|
|
p.Profile = os.Getenv("AWS_PROFILE")
|
|
if p.Profile == "" {
|
|
p.Profile = "default"
|
|
}
|
|
}
|
|
|
|
p.retrieved = false
|
|
|
|
iniProfile, err := loadProfile(p.Filename, p.Profile)
|
|
if err != nil {
|
|
return Value{}, err
|
|
}
|
|
|
|
// Default to empty string if not found.
|
|
id := iniProfile.Key("aws_access_key_id")
|
|
// Default to empty string if not found.
|
|
secret := iniProfile.Key("aws_secret_access_key")
|
|
// Default to empty string if not found.
|
|
token := iniProfile.Key("aws_session_token")
|
|
|
|
p.retrieved = true
|
|
return Value{
|
|
AccessKeyID: id.String(),
|
|
SecretAccessKey: secret.String(),
|
|
SessionToken: token.String(),
|
|
SignerType: SignatureV4,
|
|
}, nil
|
|
}
|
|
|
|
// IsExpired returns if the shared credentials have expired.
|
|
func (p *FileAWSCredentials) IsExpired() bool {
|
|
return !p.retrieved
|
|
}
|
|
|
|
// loadProfiles loads from the file pointed to by shared credentials filename for profile.
|
|
// The credentials retrieved from the profile will be returned or error. Error will be
|
|
// returned if it fails to read from the file, or the data is invalid.
|
|
func loadProfile(filename, profile string) (*ini.Section, error) {
|
|
config, err := ini.Load(filename)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
iniProfile, err := config.GetSection(profile)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return iniProfile, nil
|
|
}
|