d2/d17/XrdClS3Factory_8hh_source.html

/******************************************************************************/

/* Copyright (C) 2025, Pelican Project, Morgridge Institute for Research      */

/*                                                                            */

/* This file is part of the XrdClS3 client plugin for XRootD.                 */

/*                                                                            */

/* XRootD is free software: you can redistribute it and/or modify it under    */

/* the terms of the GNU Lesser General Public License as published by the     */

/* Free Software Foundation, either version 3 of the License, or (at your     */

/* option) any later version.                                                 */

/*                                                                            */

/* XRootD is distributed in the hope that it will be useful, but WITHOUT      */

/* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or      */

/* FITNESS FOR A PARTICULAR PURPOSE.  See the GNU Lesser General Public       */

/* License for more details.                                                  */

/*                                                                            */

/* The copyright holder's institutional names and contributor's names may not */

/* be used to endorse or promote products derived from this software without  */

/* specific prior written permission of the institution or contributor.       */

/******************************************************************************/


#ifndef XRDCLS3_S3FACTORY_HH

#define XRDCLS3_S3FACTORY_HH


#include <XrdCl/XrdClPlugInInterface.hh>


#include <mutex>

#include <shared_mutex>

#include <string>

#include <string_view>


namespace XrdCl {

    class Log;

}


namespace XrdClS3 {


const uint64_t kLogXrdClS3 = 73174;


class Factory final : public XrdCl::PlugInFactory {

public:

    Factory();

    virtual ~Factory() {}

    Factory(const Factory &) = delete;


    virtual XrdCl::FilePlugIn *CreateFile(const std::string &url) override;

    virtual XrdCl::FileSystemPlugIn *CreateFileSystem(const std::string &url) override;


    // Given a S3-style url (s3://bucket/object), return the corresponding HTTPS URL.

    //

    // If "obj_result" is not nullptr, then it will be set to the object/key and the resulting HTTPS URL

    // will not include the key name.

    static bool GenerateHttpUrl(const std::string &s3_url, std::string &https_url, std::string *obj_result, std::string &err_msg);


    // Convenience function to extract the hostname from a URL.

    static std::string_view ExtractHostname(const std::string_view url);


    // Convenience function to trim the leading and trailing whitespace from a string.

    static std::string_view TrimView(const std::string_view str);


    // Generate a V4 signature for the given HTTP URL, returning the

    // authorization token in auth_token.  Returns true on success, false

    // on failure, with an error message in err_msg.

    static bool GenerateV4Signature(const std::string &url, const std::string &verb, std::vector<std::pair<std::string, std::string>> &headers, std::string &auth_token, std::string &err_msg);


    // Given a HTTPS URL representing a S3 object request, return the bucket name.

    //

    // Parses the bucket name from the hostname (for virtual-hosted-style URLs) or

    // from the path (for path-style URLs).

    static std::string GetBucketFromHttpsUrl(const std::string &url);


    // Given a bucket name, return the credentials to use.

    static std::tuple<std::string, std::string, bool> GetCredentialsForBucket(const std::string &bucket, std::string &err_msg);


    // Helper function to convert the URL to a canonical path form for V4 signing.

    static std::string PathEncode(const std::string_view url);


    // Helper function to remove XRootD-specific query parameters from an object name

    static std::string CleanObjectName(const std::string &object);


    static const std::string &GetMkdirSentinel() {return m_mkdir_sentinel;}


    // Setters for the S3 endpoint, service, region, and URL style.

    // Intended to be used for testing or configuration purposes.

    static void SetEndpoint(const std::string &endpoint) { m_endpoint = endpoint; }

    static void SetService(const std::string &service) { m_service = service; }

    static void SetRegion(const std::string &region) { m_region = region; }

    static void SetUrlStyle(const std::string &url_style) { m_url_style = url_style; }


    static void SetDefaultCredentials(const std::string &access_key, const std::string &secret_key) {

        m_default_creds.m_accesskey = access_key;

        m_default_creds.m_secretkey = secret_key;

    }


    static void SetBucketCredentials(const std::string &bucket, const std::string &access_key, const std::string &secret_key) {

        m_bucket_location_map[bucket] = {access_key, secret_key};

    }


    static void ResetCredCache() {

        std::unique_lock lock(m_bucket_auth_map_mutex);

        m_bucket_auth_map.clear();

    }


private:


    // Iterate through the client configuration and determine the S3

    // settings

    static void InitS3Config();


    // Helper function to canonicalize the query string for V4 signing.

    static std::string CanonicalizeQueryString(const std::string &url);


    static bool m_initialized;

    static XrdCl::Log *m_log;

    static std::once_flag m_init_once;


    // Endpoint for the S3 service we will use

    static std::string m_endpoint;

    static std::string m_service;

    static std::string m_region;

    static std::string m_url_style;


    // S3 doesn't have the concept of "directories"; if a given name

    // (some/path) has an object containing it as a prefix

    // (some/path/foo.txt), then we say it's a directory.  Hence, to

    // "make" a directory, we create a zero-length sentinel file inside

    // it; this static variable controls the name.

    static std::string m_mkdir_sentinel;


    // Struct describing S3 credentials

    struct Credentials {

        std::string m_accesskey;

        std::string m_secretkey;

    };


    // Default credentials if not specified for a bucket.

    static Credentials m_default_creds;


    // Map from bucket name to credentials to use

    static std::unordered_map<std::string, Credentials> m_bucket_location_map;


    // Shared mutex to protect access to the bucket credentials map.

    static std::shared_mutex m_bucket_auth_map_mutex;


    // Map for bucket-to-credential info.

    static std::unordered_map<std::string, std::pair<Credentials, std::chrono::steady_clock::time_point>> m_bucket_auth_map;

};


}


#endif // XRDCLS3_S3FACTORY_HH

XrdClPlugInInterface.hh

XrdClS3::Factory::ResetCredCache
static void ResetCredCache()
Definition XrdClS3Factory.hh:96

XrdClS3::Factory::CreateFile
virtual XrdCl::FilePlugIn * CreateFile(const std::string &url) override
Create a file plug-in for the given URL.

XrdClS3::Factory::SetBucketCredentials
static void SetBucketCredentials(const std::string &bucket, const std::string &access_key, const std::string &secret_key)
Definition XrdClS3Factory.hh:93

XrdClS3::Factory::ExtractHostname
static std::string_view ExtractHostname(const std::string_view url)
Definition XrdClS3Factory.cc:324

XrdClS3::Factory::SetEndpoint
static void SetEndpoint(const std::string &endpoint)
Definition XrdClS3Factory.hh:85

XrdClS3::Factory::PathEncode
static std::string PathEncode(const std::string_view url)
Definition XrdClS3Factory.cc:803

XrdClS3::Factory::SetRegion
static void SetRegion(const std::string &region)
Definition XrdClS3Factory.hh:87

XrdClS3::Factory::SetDefaultCredentials
static void SetDefaultCredentials(const std::string &access_key, const std::string &secret_key)
Definition XrdClS3Factory.hh:89

XrdClS3::Factory::CleanObjectName
static std::string CleanObjectName(const std::string &object)
Definition XrdClS3Factory.cc:291

XrdClS3::Factory::GenerateHttpUrl
static bool GenerateHttpUrl(const std::string &s3_url, std::string &https_url, std::string *obj_result, std::string &err_msg)
Definition XrdClS3Factory.cc:411

XrdClS3::Factory::CreateFileSystem
virtual XrdCl::FileSystemPlugIn * CreateFileSystem(const std::string &url) override
Create a file system plug-in for the given URL.
Definition XrdClHttpFactory.cc:347

XrdClS3::Factory::GetCredentialsForBucket
static std::tuple< std::string, std::string, bool > GetCredentialsForBucket(const std::string &bucket, std::string &err_msg)
Definition XrdClS3Factory.cc:736

XrdClS3::Factory::SetService
static void SetService(const std::string &service)
Definition XrdClS3Factory.hh:86

XrdClS3::Factory::GenerateV4Signature
static bool GenerateV4Signature(const std::string &url, const std::string &verb, std::vector< std::pair< std::string, std::string > > &headers, std::string &auth_token, std::string &err_msg)
Definition XrdClS3Factory.cc:481

XrdClS3::Factory::~Factory
virtual ~Factory()
Definition XrdClS3Factory.hh:42

XrdClS3::Factory::Factory
Factory()
Definition XrdClS3Factory.cc:83

XrdClS3::Factory::TrimView
static std::string_view TrimView(const std::string_view str)
Definition XrdClS3Factory.cc:842

XrdClS3::Factory::GetMkdirSentinel
static const std::string & GetMkdirSentinel()
Definition XrdClS3Factory.hh:81

XrdClS3::Factory::Factory
Factory(const Factory &)=delete

XrdClS3::Factory::SetUrlStyle
static void SetUrlStyle(const std::string &url_style)
Definition XrdClS3Factory.hh:88

XrdClS3::Factory::GetBucketFromHttpsUrl
static std::string GetBucketFromHttpsUrl(const std::string &url)
Definition XrdClS3Factory.cc:692

XrdCl::FilePlugIn
An interface for file plug-ins.
Definition XrdClPlugInInterface.hh:39

XrdCl::FileSystemPlugIn
An interface for file plug-ins.
Definition XrdClPlugInInterface.hh:346

XrdCl::Log
Handle diagnostics.
Definition XrdClLog.hh:101

XrdCl::PlugInFactory
Plugin factory.
Definition XrdClPlugInInterface.hh:611

XrdClS3
Definition XrdClS3DownloadHandler.hh:28

XrdClS3::kLogXrdClS3
const uint64_t kLogXrdClS3
Definition XrdClS3Factory.hh:37

XrdCl
Definition XrdClAction.hh:34