ossify 0.4.0

A modern, easy-to-use, and reqwest-powered Rust SDK for Alibaba Cloud Object Storage Service (OSS)
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63

use crate::credentials::{Credentials, CredentialsProvider};
use crate::{Error, Result};

/// Environment variable credential provider.
///
/// Reads credentials from the following environment variables, in order:
///
/// 1. `ALIBABA_CLOUD_ACCESS_KEY_ID` / `ALIBABA_CLOUD_ACCESS_KEY_SECRET`
///    (+ optional `ALIBABA_CLOUD_SECURITY_TOKEN`). These match the variables
///    used by the official Alibaba Cloud SDKs.
/// 2. `OSS_ACCESS_KEY_ID` / `OSS_ACCESS_KEY_SECRET` (+ optional
///    `OSS_SESSION_TOKEN`). These match the variables used by the OSS v2 SDK
///    family.
///
/// Returns `Error::InvalidCredentials` if neither pair is set.
#[derive(Clone, Debug, Default)]
pub struct EnvironmentCredentialsProvider {
    _priv: (),
}

impl EnvironmentCredentialsProvider {
    pub fn new() -> Self {
        Self { _priv: () }
    }

    fn read() -> Option<Credentials> {
        // Prefer the generic Alibaba Cloud variables.
        if let (Ok(ak), Ok(sk)) = (
            std::env::var("ALIBABA_CLOUD_ACCESS_KEY_ID"),
            std::env::var("ALIBABA_CLOUD_ACCESS_KEY_SECRET"),
        ) && !ak.is_empty()
            && !sk.is_empty()
        {
            let token = std::env::var("ALIBABA_CLOUD_SECURITY_TOKEN")
                .ok()
                .filter(|s| !s.is_empty());
            return Some(match token {
                Some(t) => Credentials::with_sts(ak, sk, t, None),
                None => Credentials::new(ak, sk),
            });
        }

        // Fall back to the OSS-specific variables.
        if let (Ok(ak), Ok(sk)) = (std::env::var("OSS_ACCESS_KEY_ID"), std::env::var("OSS_ACCESS_KEY_SECRET"))
            && !ak.is_empty()
            && !sk.is_empty()
        {
            let token = std::env::var("OSS_SESSION_TOKEN").ok().filter(|s| !s.is_empty());
            return Some(match token {
                Some(t) => Credentials::with_sts(ak, sk, t, None),
                None => Credentials::new(ak, sk),
            });
        }

        None
    }
}

impl CredentialsProvider for EnvironmentCredentialsProvider {
    async fn get_credentials(&self) -> Result<Credentials> {
        Self::read().ok_or(Error::InvalidCredentials)
    }
}