seaweedfs/weed/filer/s3iam_conf.go

53 lines
1.3 KiB
Go
Raw Normal View History

2020-12-07 15:16:20 +08:00
package filer
import (
2022-07-13 17:28:20 +08:00
"fmt"
"io"
"github.com/seaweedfs/seaweedfs/weed/pb/iam_pb"
2022-08-18 03:42:03 +08:00
jsonpb "google.golang.org/protobuf/encoding/protojson"
2022-08-18 03:05:07 +08:00
"google.golang.org/protobuf/proto"
2020-12-07 15:16:20 +08:00
)
func ParseS3ConfigurationFromBytes[T proto.Message](content []byte, config T) error {
2022-08-18 03:42:03 +08:00
if err := jsonpb.Unmarshal(content, config); err != nil {
2020-12-07 15:16:20 +08:00
return err
}
return nil
}
2021-07-09 18:19:21 +08:00
func ProtoToText(writer io.Writer, config proto.Message) error {
2020-12-07 15:16:20 +08:00
2022-08-18 03:42:03 +08:00
m := jsonpb.MarshalOptions{
EmitUnpopulated: true,
Indent: " ",
2020-12-07 15:16:20 +08:00
}
2022-08-18 03:42:03 +08:00
text, marshalErr := m.Marshal(config)
if marshalErr != nil {
return fmt.Errorf("marshal proto message: %v", marshalErr)
}
_, writeErr := writer.Write(text)
if writeErr != nil {
return fmt.Errorf("fail to write proto message: %v", writeErr)
}
return writeErr
2020-12-07 15:16:20 +08:00
}
2022-07-13 17:28:20 +08:00
// CheckDuplicateAccessKey returns an error message when s3cfg has duplicate access keys
func CheckDuplicateAccessKey(s3cfg *iam_pb.S3ApiConfiguration) error {
accessKeySet := make(map[string]string)
for _, ident := range s3cfg.Identities {
for _, cred := range ident.Credentials {
if userName, found := accessKeySet[cred.AccessKey]; !found {
accessKeySet[cred.AccessKey] = ident.Name
} else if userName != ident.Name {
return fmt.Errorf("duplicate accessKey[%s], already configured in user[%s]", cred.AccessKey, userName)
2022-07-13 17:28:20 +08:00
}
}
}
return nil
}