2016-04-29 05:01:11 +02:00
|
|
|
/*
|
2017-01-18 21:24:34 +01:00
|
|
|
* Minio Cloud Storage, (C) 2015, 2016, 2017 Minio, Inc.
|
2016-04-29 05:01:11 +02:00
|
|
|
*
|
|
|
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
|
* you may not use this file except in compliance with the License.
|
|
|
|
|
* You may obtain a copy of the License at
|
|
|
|
|
*
|
|
|
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
|
*
|
|
|
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
|
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
|
* See the License for the specific language governing permissions and
|
|
|
|
|
* limitations under the License.
|
|
|
|
|
*/
|
|
|
|
|
|
2016-08-19 01:23:42 +02:00
|
|
|
package cmd
|
2016-04-29 05:01:11 +02:00
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"io"
|
2016-07-24 07:51:12 +02:00
|
|
|
"io/ioutil"
|
|
|
|
|
"mime/multipart"
|
2016-07-19 06:20:17 +02:00
|
|
|
"net/http"
|
2016-07-23 05:31:45 +02:00
|
|
|
"strings"
|
2016-04-29 05:01:11 +02:00
|
|
|
)
|
|
|
|
|
|
2016-07-19 06:20:17 +02:00
|
|
|
// Validates location constraint in PutBucket request body.
|
|
|
|
|
// The location value in the request body should match the
|
|
|
|
|
// region configured at serverConfig, otherwise error is returned.
|
|
|
|
|
func isValidLocationConstraint(r *http.Request) (s3Error APIErrorCode) {
|
|
|
|
|
serverRegion := serverConfig.GetRegion()
|
|
|
|
|
// If the request has no body with content-length set to 0,
|
|
|
|
|
// we do not have to validate location constraint. Bucket will
|
|
|
|
|
// be created at default region.
|
|
|
|
|
locationConstraint := createBucketLocationConfiguration{}
|
2016-09-30 00:51:00 +02:00
|
|
|
err := xmlDecoder(r.Body, &locationConstraint, r.ContentLength)
|
|
|
|
|
if err == nil || err == io.EOF {
|
|
|
|
|
// Successfully decoded, proceed to verify the region.
|
|
|
|
|
// Once region has been obtained we proceed to verify it.
|
|
|
|
|
incomingRegion := locationConstraint.Location
|
|
|
|
|
if incomingRegion == "" {
|
2017-01-18 21:24:34 +01:00
|
|
|
// Location constraint is empty for region globalMinioDefaultRegion,
|
2016-09-30 00:51:00 +02:00
|
|
|
// in accordance with protocol.
|
2017-01-18 21:24:34 +01:00
|
|
|
incomingRegion = globalMinioDefaultRegion
|
2016-04-29 05:01:11 +02:00
|
|
|
}
|
2016-09-30 00:51:00 +02:00
|
|
|
// Return errInvalidRegion if location constraint does not match
|
|
|
|
|
// with configured region.
|
|
|
|
|
s3Error = ErrNone
|
|
|
|
|
if serverRegion != incomingRegion {
|
|
|
|
|
s3Error = ErrInvalidRegion
|
|
|
|
|
}
|
|
|
|
|
return s3Error
|
2016-04-29 05:01:11 +02:00
|
|
|
}
|
2016-09-30 00:51:00 +02:00
|
|
|
errorIf(err, "Unable to xml decode location constraint")
|
|
|
|
|
// Treat all other failures as XML parsing errors.
|
|
|
|
|
return ErrMalformedXML
|
2016-04-29 05:01:11 +02:00
|
|
|
}
|
2016-07-23 05:31:45 +02:00
|
|
|
|
|
|
|
|
// Supported headers that needs to be extracted.
|
|
|
|
|
var supportedHeaders = []string{
|
|
|
|
|
"content-type",
|
|
|
|
|
"cache-control",
|
|
|
|
|
"content-encoding",
|
|
|
|
|
"content-disposition",
|
|
|
|
|
// Add more supported headers here.
|
|
|
|
|
}
|
|
|
|
|
|
2016-12-27 01:29:26 +01:00
|
|
|
// isMetadataDirectiveValid - check if metadata-directive is valid.
|
|
|
|
|
func isMetadataDirectiveValid(h http.Header) bool {
|
|
|
|
|
_, ok := h[http.CanonicalHeaderKey("X-Amz-Metadata-Directive")]
|
|
|
|
|
if ok {
|
|
|
|
|
// Check atleast set metadata-directive is valid.
|
|
|
|
|
return (isMetadataCopy(h) || isMetadataReplace(h))
|
|
|
|
|
}
|
|
|
|
|
// By default if x-amz-metadata-directive is not we
|
|
|
|
|
// treat it as 'COPY' this function returns true.
|
|
|
|
|
return true
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check if the metadata COPY is requested.
|
|
|
|
|
func isMetadataCopy(h http.Header) bool {
|
|
|
|
|
return h.Get("X-Amz-Metadata-Directive") == "COPY"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check if the metadata REPLACE is requested.
|
|
|
|
|
func isMetadataReplace(h http.Header) bool {
|
|
|
|
|
return h.Get("X-Amz-Metadata-Directive") == "REPLACE"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Splits an incoming path into bucket and object components.
|
|
|
|
|
func path2BucketAndObject(path string) (bucket, object string) {
|
|
|
|
|
// Skip the first element if it is '/', split the rest.
|
|
|
|
|
path = strings.TrimPrefix(path, "/")
|
|
|
|
|
pathComponents := strings.SplitN(path, "/", 2)
|
|
|
|
|
|
|
|
|
|
// Save the bucket and object extracted from path.
|
|
|
|
|
switch len(pathComponents) {
|
|
|
|
|
case 1:
|
|
|
|
|
bucket = pathComponents[0]
|
|
|
|
|
case 2:
|
|
|
|
|
bucket = pathComponents[0]
|
|
|
|
|
object = pathComponents[1]
|
|
|
|
|
}
|
|
|
|
|
return bucket, object
|
|
|
|
|
}
|
|
|
|
|
|
2016-07-23 05:31:45 +02:00
|
|
|
// extractMetadataFromHeader extracts metadata from HTTP header.
|
|
|
|
|
func extractMetadataFromHeader(header http.Header) map[string]string {
|
|
|
|
|
metadata := make(map[string]string)
|
|
|
|
|
// Save standard supported headers.
|
|
|
|
|
for _, supportedHeader := range supportedHeaders {
|
|
|
|
|
canonicalHeader := http.CanonicalHeaderKey(supportedHeader)
|
|
|
|
|
// HTTP headers are case insensitive, look for both canonical
|
|
|
|
|
// and non canonical entries.
|
|
|
|
|
if _, ok := header[canonicalHeader]; ok {
|
|
|
|
|
metadata[supportedHeader] = header.Get(canonicalHeader)
|
|
|
|
|
} else if _, ok := header[supportedHeader]; ok {
|
|
|
|
|
metadata[supportedHeader] = header.Get(supportedHeader)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
// Go through all other headers for any additional headers that needs to be saved.
|
|
|
|
|
for key := range header {
|
|
|
|
|
cKey := http.CanonicalHeaderKey(key)
|
|
|
|
|
if strings.HasPrefix(cKey, "X-Amz-Meta-") {
|
2016-12-20 20:59:08 +01:00
|
|
|
metadata[cKey] = header.Get(key)
|
2016-07-23 05:31:45 +02:00
|
|
|
} else if strings.HasPrefix(key, "X-Minio-Meta-") {
|
2016-12-20 20:59:08 +01:00
|
|
|
metadata[cKey] = header.Get(key)
|
2016-07-23 05:31:45 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
// Return.
|
|
|
|
|
return metadata
|
2016-12-20 01:14:04 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// extractMetadataFromForm extracts metadata from Post Form.
|
|
|
|
|
func extractMetadataFromForm(formValues map[string]string) map[string]string {
|
|
|
|
|
metadata := make(map[string]string)
|
|
|
|
|
// Save standard supported headers.
|
|
|
|
|
for _, supportedHeader := range supportedHeaders {
|
|
|
|
|
canonicalHeader := http.CanonicalHeaderKey(supportedHeader)
|
|
|
|
|
// Form field names are case insensitive, look for both canonical
|
|
|
|
|
// and non canonical entries.
|
|
|
|
|
if _, ok := formValues[canonicalHeader]; ok {
|
|
|
|
|
metadata[supportedHeader] = formValues[canonicalHeader]
|
|
|
|
|
} else if _, ok := formValues[supportedHeader]; ok {
|
|
|
|
|
metadata[supportedHeader] = formValues[canonicalHeader]
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
// Go through all other form values for any additional headers that needs to be saved.
|
|
|
|
|
for key := range formValues {
|
|
|
|
|
cKey := http.CanonicalHeaderKey(key)
|
|
|
|
|
if strings.HasPrefix(cKey, "X-Amz-Meta-") {
|
|
|
|
|
metadata[cKey] = formValues[key]
|
|
|
|
|
} else if strings.HasPrefix(cKey, "X-Minio-Meta-") {
|
|
|
|
|
metadata[cKey] = formValues[key]
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return metadata
|
2016-07-23 05:31:45 +02:00
|
|
|
}
|
2016-07-24 07:51:12 +02:00
|
|
|
|
2016-07-28 21:02:22 +02:00
|
|
|
// Extract form fields and file data from a HTTP POST Policy
|
|
|
|
|
func extractPostPolicyFormValues(reader *multipart.Reader) (filePart io.Reader, fileName string, formValues map[string]string, err error) {
|
2016-07-24 07:51:12 +02:00
|
|
|
/// HTML Form values
|
2016-07-28 21:02:22 +02:00
|
|
|
formValues = make(map[string]string)
|
|
|
|
|
fileName = ""
|
2016-07-24 07:51:12 +02:00
|
|
|
for err == nil {
|
|
|
|
|
var part *multipart.Part
|
|
|
|
|
part, err = reader.NextPart()
|
|
|
|
|
if part != nil {
|
2016-07-28 02:51:55 +02:00
|
|
|
canonicalFormName := http.CanonicalHeaderKey(part.FormName())
|
|
|
|
|
if canonicalFormName != "File" {
|
2016-07-24 07:51:12 +02:00
|
|
|
var buffer []byte
|
2016-07-28 21:02:22 +02:00
|
|
|
limitReader := io.LimitReader(part, maxFormFieldSize+1)
|
|
|
|
|
buffer, err = ioutil.ReadAll(limitReader)
|
2016-07-24 07:51:12 +02:00
|
|
|
if err != nil {
|
2016-07-28 02:51:55 +02:00
|
|
|
return nil, "", nil, err
|
2016-07-24 07:51:12 +02:00
|
|
|
}
|
2016-07-28 21:02:22 +02:00
|
|
|
if int64(len(buffer)) > maxFormFieldSize {
|
|
|
|
|
return nil, "", nil, errSizeUnexpected
|
|
|
|
|
}
|
2016-07-28 02:51:55 +02:00
|
|
|
formValues[canonicalFormName] = string(buffer)
|
2016-07-24 07:51:12 +02:00
|
|
|
} else {
|
2016-10-25 08:47:03 +02:00
|
|
|
filePart = part
|
2016-07-28 02:51:55 +02:00
|
|
|
fileName = part.FileName()
|
2016-07-28 21:02:22 +02:00
|
|
|
// As described in S3 spec, we expect file to be the last form field
|
|
|
|
|
break
|
2016-07-24 07:51:12 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2016-07-28 02:51:55 +02:00
|
|
|
return filePart, fileName, formValues, nil
|
2016-07-24 07:51:12 +02:00
|
|
|
}
|
