use std::sync::Arc;
use crate::client::{BucketOperations, OSSClientInner};
use crate::error::{ErrorContext, OssError, OssErrorKind, Result};
use crate::http::client::HttpRequest;
use crate::types::bucket::BucketName;
pub struct PutBucketPolicyBuilder {
client: Arc<OSSClientInner>,
bucket: BucketName,
policy: String,
}
impl PutBucketPolicyBuilder {
pub(crate) fn new(client: Arc<OSSClientInner>, bucket: BucketName, policy: String) -> Self {
Self {
client,
bucket,
policy,
}
}
pub async fn send(self) -> Result<PutBucketPolicyOutput> {
let endpoint = self.client.endpoint.clone();
let uri = format!("https://{}.{}?policy", self.bucket.as_str(), endpoint);
let query_params: Vec<(String, String)> = vec![("policy".into(), String::new())];
let request = HttpRequest::builder()
.method(http::Method::PUT)
.uri(&uri)
.body(bytes::Bytes::from(self.policy))
.build();
let response = self
.client
.send_signed(request, Some(&self.bucket), query_params)
.await
.map_err(|e| OssError {
kind: OssErrorKind::TransportError,
context: Box::new(ErrorContext {
operation: Some("PutBucketPolicy".into()),
bucket: Some(self.bucket.to_string()),
endpoint: Some(endpoint),
..Default::default()
}),
source: Some(Box::new(e)),
})?;
if response.status().is_success() {
Ok(PutBucketPolicyOutput {
request_id: response
.headers
.get("x-oss-request-id")
.and_then(|v| v.to_str().ok())
.unwrap_or("")
.to_string(),
})
} else {
Err(OssError {
kind: OssErrorKind::ServiceError(Box::new(crate::error::OssServiceError {
status_code: response.status().as_u16(),
code: String::new(),
message: String::new(),
request_id: String::new(),
host_id: String::new(),
resource: Some(self.bucket.to_string()),
string_to_sign: None,
})),
context: Box::new(ErrorContext {
operation: Some("PutBucketPolicy".into()),
bucket: Some(self.bucket.to_string()),
..Default::default()
}),
source: None,
})
}
}
}
#[derive(Debug, Clone)]
pub struct PutBucketPolicyOutput {
pub request_id: String,
}
pub struct GetBucketPolicyBuilder {
client: Arc<OSSClientInner>,
bucket: BucketName,
}
impl GetBucketPolicyBuilder {
pub(crate) fn new(client: Arc<OSSClientInner>, bucket: BucketName) -> Self {
Self { client, bucket }
}
pub async fn send(self) -> Result<GetBucketPolicyOutput> {
let endpoint = self.client.endpoint.clone();
let uri = format!("https://{}.{}?policy", self.bucket.as_str(), endpoint);
let query_params: Vec<(String, String)> = vec![("policy".into(), String::new())];
let request = HttpRequest::builder()
.method(http::Method::GET)
.uri(&uri)
.build();
let response = self
.client
.send_signed(request, Some(&self.bucket), query_params)
.await
.map_err(|e| OssError {
kind: OssErrorKind::TransportError,
context: Box::new(ErrorContext {
operation: Some("GetBucketPolicy".into()),
bucket: Some(self.bucket.to_string()),
endpoint: Some(endpoint),
..Default::default()
}),
source: Some(Box::new(e)),
})?;
if response.is_success() {
Ok(GetBucketPolicyOutput {
policy: response.body_as_str().unwrap_or("").to_string(),
})
} else {
Err(OssError {
kind: OssErrorKind::ServiceError(Box::new(crate::error::OssServiceError {
status_code: response.status().as_u16(),
code: String::new(),
message: String::new(),
request_id: String::new(),
host_id: String::new(),
resource: Some(self.bucket.to_string()),
string_to_sign: None,
})),
context: Box::new(ErrorContext {
operation: Some("GetBucketPolicy".into()),
bucket: Some(self.bucket.to_string()),
..Default::default()
}),
source: None,
})
}
}
}
#[derive(Debug, Clone)]
pub struct GetBucketPolicyOutput {
pub policy: String,
}
pub struct DeleteBucketPolicyBuilder {
client: Arc<OSSClientInner>,
bucket: BucketName,
}
impl DeleteBucketPolicyBuilder {
pub(crate) fn new(client: Arc<OSSClientInner>, bucket: BucketName) -> Self {
Self { client, bucket }
}
pub async fn send(self) -> Result<DeleteBucketPolicyOutput> {
let endpoint = self.client.endpoint.clone();
let uri = format!("https://{}.{}?policy", self.bucket.as_str(), endpoint);
let query_params: Vec<(String, String)> = vec![("policy".into(), String::new())];
let request = HttpRequest::builder()
.method(http::Method::DELETE)
.uri(&uri)
.build();
let response = self
.client
.send_signed(request, Some(&self.bucket), query_params)
.await
.map_err(|e| OssError {
kind: OssErrorKind::TransportError,
context: Box::new(ErrorContext {
operation: Some("DeleteBucketPolicy".into()),
bucket: Some(self.bucket.to_string()),
endpoint: Some(endpoint),
..Default::default()
}),
source: Some(Box::new(e)),
})?;
if response.status().is_success() {
Ok(DeleteBucketPolicyOutput {
request_id: response
.headers
.get("x-oss-request-id")
.and_then(|v| v.to_str().ok())
.unwrap_or("")
.to_string(),
})
} else {
Err(OssError {
kind: OssErrorKind::ServiceError(Box::new(crate::error::OssServiceError {
status_code: response.status().as_u16(),
code: String::new(),
message: String::new(),
request_id: String::new(),
host_id: String::new(),
resource: Some(self.bucket.to_string()),
string_to_sign: None,
})),
context: Box::new(ErrorContext {
operation: Some("DeleteBucketPolicy".into()),
bucket: Some(self.bucket.to_string()),
..Default::default()
}),
source: None,
})
}
}
}
#[derive(Debug, Clone)]
pub struct DeleteBucketPolicyOutput {
pub request_id: String,
}
impl BucketOperations {
pub fn put_policy(&self, policy: String) -> PutBucketPolicyBuilder {
PutBucketPolicyBuilder::new(
self.client_inner().clone(),
self.bucket_name().clone(),
policy,
)
}
pub fn get_policy(&self) -> GetBucketPolicyBuilder {
GetBucketPolicyBuilder::new(self.client_inner().clone(), self.bucket_name().clone())
}
pub fn delete_policy(&self) -> DeleteBucketPolicyBuilder {
DeleteBucketPolicyBuilder::new(self.client_inner().clone(), self.bucket_name().clone())
}
}
#[cfg(test)]
mod tests {
use std::sync::Mutex;
use crate::client::OSSClientInner;
use crate::config::credentials::Credentials;
use crate::http::client::{HttpClient, HttpRequest, HttpResponse};
use crate::types::region::Region;
use super::*;
struct RecordingHttpClient {
requests: Arc<Mutex<Vec<HttpRequest>>>,
status_code: http::StatusCode,
response_body: bytes::Bytes,
}
#[async_trait::async_trait]
impl HttpClient for RecordingHttpClient {
async fn send(&self, request: HttpRequest) -> crate::error::Result<HttpResponse> {
self.requests.lock().unwrap().push(request);
let mut headers = http::HeaderMap::new();
headers.insert(
"x-oss-request-id",
http::HeaderValue::from_static("rid-policy"),
);
Ok(HttpResponse {
status: self.status_code,
headers,
body: self.response_body.clone(),
})
}
}
fn create_test_inner_with_body(
status: http::StatusCode,
body: bytes::Bytes,
) -> (Arc<OSSClientInner>, Arc<Mutex<Vec<HttpRequest>>>) {
let requests = Arc::new(Mutex::new(Vec::new()));
let http = Arc::new(RecordingHttpClient {
requests: requests.clone(),
status_code: status,
response_body: body,
});
let credentials = Arc::new(crate::config::credentials::StaticCredentialsProvider::new(
Credentials::builder()
.access_key_id("test-ak")
.access_key_secret("test-sk")
.build()
.unwrap(),
));
let inner = Arc::new(OSSClientInner {
http,
credentials,
signer: Arc::from(crate::signer::create_signer(crate::signer::SignVersion::V4)),
region: Region::CnHangzhou,
endpoint: "oss-cn-hangzhou.aliyuncs.com".into(),
});
(inner, requests)
}
#[tokio::test]
async fn put_bucket_policy_sends_json_body() {
let (inner, requests) =
create_test_inner_with_body(http::StatusCode::OK, bytes::Bytes::new());
let policy = r#"{"Version":"1","Statement":[]}"#;
let builder = PutBucketPolicyBuilder::new(
inner,
BucketName::new("test-bucket").unwrap(),
policy.to_string(),
);
builder.send().await.unwrap();
let captured = requests.lock().unwrap();
assert_eq!(captured[0].method, http::Method::PUT);
assert!(captured[0].uri.contains("?policy"));
}
#[tokio::test]
async fn get_bucket_policy_returns_json() {
let policy = r#"{"Version":"1","Statement":[]}"#;
let (inner, _) =
create_test_inner_with_body(http::StatusCode::OK, bytes::Bytes::from(policy));
let builder = GetBucketPolicyBuilder::new(inner, BucketName::new("test-bucket").unwrap());
let output = builder.send().await.unwrap();
assert_eq!(output.policy, policy);
}
#[tokio::test]
async fn delete_bucket_policy_sends_delete_request() {
let (inner, requests) =
create_test_inner_with_body(http::StatusCode::NO_CONTENT, bytes::Bytes::new());
let builder =
DeleteBucketPolicyBuilder::new(inner, BucketName::new("test-bucket").unwrap());
builder.send().await.unwrap();
let captured = requests.lock().unwrap();
assert_eq!(captured[0].method, http::Method::DELETE);
}
}