Home Explore Help
Sign In
urbanu619
/
yunbaolive
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
yunbaolive
/
web
/
sdk
/
aws
/
Aws
/
S3
/
PostObjectV4.php

PostObjectV4.php 5.3 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195 
  1. <?php
    2. 

  2. namespace Aws\S3;
    3. 

  3. 

  4. use Aws\Credentials\CredentialsInterface;
    5. 

  5. use GuzzleHttp\Psr7\Uri;
    6. 

  6. use Aws\Signature\SignatureTrait;
    7. 

  7. use Aws\Signature\SignatureV4 as SignatureV4;
    8. 

  8. use Aws\Api\TimestampShape as TimestampShape;
    9. 

  9. 

  10. /**
    11. 

  11.  * Encapsulates the logic for getting the data for an S3 object POST upload form
    12. 

  12.  *
    13. 

  13.  * @link http://docs.aws.amazon.com/AmazonS3/latest/API/RESTObjectPOST.html
    14. 

  14.  * @link http://docs.aws.amazon.com/AmazonS3/latest/API/sigv4-post-example.html
    15. 

  15.  */
    16. 

  16. class PostObjectV4
    17. 

  17. {
    18. 

  18.     use SignatureTrait;
    19. 

  19. 

  20.     private $client;
    21. 

  21.     private $bucket;
    22. 

  22.     private $formAttributes;
    23. 

  23.     private $formInputs;
    24. 

  24. 

  25.     /**
    26. 

  26.      * Constructs the PostObject.
    27. 

  27.      *
    28. 

  28.      * The options array accepts the following keys:
    29. 

  29.      * @link http://docs.aws.amazon.com/AmazonS3/latest/API/sigv4-query-string-auth.html
    30. 

  30.      *
    31. 

  31.      * @param S3ClientInterface $client     Client used with the POST object
    32. 

  32.      * @param string            $bucket     Bucket to use
    33. 

  33.      * @param array             $formInputs Associative array of form input
    34. 

  34.      *                                      fields.
    35. 

  35.      * @param array             $options    Policy condition options
    36. 

  36.      * @param mixed             $expiration Upload expiration time value. By
    37. 

  37.      *                                      default: 1 hour valid period.
    38. 

  38.      */
    39. 

  39.     public function __construct(
    40. 

  40.         S3ClientInterface $client,
    41. 

  41.         $bucket,
    42. 

  42.         array $formInputs,
    43. 

  43.         array $options = [],
    44. 

  44.         $expiration = '+1 hours'
    45. 

  45.     ) {
    46. 

  46.         $this->client = $client;
    47. 

  47.         $this->bucket = $bucket;
    48. 

  48. 

  49.         // setup form attributes
    50. 

  50.         $this->formAttributes = [
    51. 

  51.             'action'  => $this->generateUri(),
    52. 

  52.             'method'  => 'POST',
    53. 

  53.             'enctype' => 'multipart/form-data'
    54. 

  54.         ];
    55. 

  55. 

  56.         $credentials   = $this->client->getCredentials()->wait();
    57. 

  57. 

  58.         if ($securityToken = $credentials->getSecurityToken()) {
    59. 

  59.             $options [] = ['x-amz-security-token' => $securityToken];
    60. 

  60.             $formInputs['X-Amz-Security-Token'] = $securityToken;
    61. 

  61.         }
    62. 

  62. 

  63.         // setup basic policy
    64. 

  64.         $policy = [
    65. 

  65.             'expiration' => TimestampShape::format($expiration, 'iso8601'),
    66. 

  66.             'conditions' => $options,
    67. 

  67.         ];
    68. 

  68. 

  69.         // setup basic formInputs
    70. 

  70.         $this->formInputs = $formInputs + ['key' => '${filename}'];
    71. 

  71. 

  72.         // finalize policy and signature
    73. 

  73. 

  74.         $this->formInputs += $this->getPolicyAndSignature(
    75. 

  75.             $credentials,
    76. 

  76.             $policy
    77. 

  77.         );
    78. 

  78.     }
    79. 

  79. 

  80.     /**
    81. 

  81.      * Gets the S3 client.
    82. 

  82.      *
    83. 

  83.      * @return S3ClientInterface
    84. 

  84.      */
    85. 

  85.     public function getClient()
    86. 

  86.     {
    87. 

  87.         return $this->client;
    88. 

  88.     }
    89. 

  89. 

  90.     /**
    91. 

  91.      * Gets the bucket name.
    92. 

  92.      *
    93. 

  93.      * @return string
    94. 

  94.      */
    95. 

  95.     public function getBucket()
    96. 

  96.     {
    97. 

  97.         return $this->bucket;
    98. 

  98.     }
    99. 

  99. 

  100.     /**
    101. 

  101.      * Gets the form attributes as an array.
    102. 

  102.      *
    103. 

  103.      * @return array
    104. 

  104.      */
    105. 

  105.     public function getFormAttributes()
    106. 

  106.     {
    107. 

  107.         return $this->formAttributes;
    108. 

  108.     }
    109. 

  109. 

  110.     /**
    111. 

  111.      * Set a form attribute.
    112. 

  112.      *
    113. 

  113.      * @param string $attribute Form attribute to set.
    114. 

  114.      * @param string $value     Value to set.
    115. 

  115.      */
    116. 

  116.     public function setFormAttribute($attribute, $value)
    117. 

  117.     {
    118. 

  118.         $this->formAttributes[$attribute] = $value;
    119. 

  119.     }
    120. 

  120. 

  121.     /**
    122. 

  122.      * Gets the form inputs as an array.
    123. 

  123.      *
    124. 

  124.      * @return array
    125. 

  125.      */
    126. 

  126.     public function getFormInputs()
    127. 

  127.     {
    128. 

  128.         return $this->formInputs;
    129. 

  129.     }
    130. 

  130. 

  131.     /**
    132. 

  132.      * Set a form input.
    133. 

  133.      *
    134. 

  134.      * @param string $field Field name to set
    135. 

  135.      * @param string $value Value to set.
    136. 

  136.      */
    137. 

  137.     public function setFormInput($field, $value)
    138. 

  138.     {
    139. 

  139.         $this->formInputs[$field] = $value;
    140. 

  140.     }
    141. 

  141. 

  142.     private function generateUri()
    143. 

  143.     {
    144. 

  144.         $uri = new Uri($this->client->getEndpoint());
    145. 

  145. 

  146.         if ($this->client->getConfig('use_path_style_endpoint') === true
    147. 

  147.             || ($uri->getScheme() === 'https'
    148. 

  148.             && strpos($this->bucket, '.') !== false)
    149. 

  149.         ) {
    150. 

  150.             // Use path-style URLs
    151. 

  151.             $uri = $uri->withPath("/{$this->bucket}");
    152. 

  152.         } else {
    153. 

  153.             // Use virtual-style URLs if haven't been set up already
    154. 

  154.             if (strpos($uri->getHost(), $this->bucket . '.') !== 0) {
    155. 

  155.                 $uri = $uri->withHost($this->bucket . '.' . $uri->getHost());
    156. 

  156.             }
    157. 

  157.         }
    158. 

  158. 

  159.         return (string) $uri;
    160. 

  160.     }
    161. 

  161. 

  162.     protected function getPolicyAndSignature(
    163. 

  163.         CredentialsInterface $credentials,
    164. 

  164.         array $policy
    165. 

  165.     ){
    166. 

  166.         $ldt = gmdate(SignatureV4::ISO8601_BASIC);
    167. 

  167.         $sdt = substr($ldt, 0, 8);
    168. 

  168.         $policy['conditions'][] = ['X-Amz-Date' => $ldt];
    169. 

  169. 

  170.         $region = $this->client->getRegion();
    171. 

  171.         $scope = $this->createScope($sdt, $region, 's3');
    172. 

  172.         $creds = "{$credentials->getAccessKeyId()}/$scope";
    173. 

  173.         $policy['conditions'][] = ['X-Amz-Credential' => $creds];
    174. 

  174. 

  175.         $policy['conditions'][] = ['X-Amz-Algorithm' => "AWS4-HMAC-SHA256"];
    176. 

  176. 

  177.         $jsonPolicy64 = base64_encode(json_encode($policy));
    178. 

  178.         $key = $this->getSigningKey(
    179. 

  179.             $sdt,
    180. 

  180.             $region,
    181. 

  181.             's3',
    182. 

  182.             $credentials->getSecretKey()
    183. 

  183.         );
    184. 

  184. 

  185.         return [
    186. 

  186.             'X-Amz-Credential' => $creds,
    187. 

  187.             'X-Amz-Algorithm' => "AWS4-HMAC-SHA256",
    188. 

  188.             'X-Amz-Date' => $ldt,
    189. 

  189.             'Policy'           => $jsonPolicy64,
    190. 

  190.             'X-Amz-Signature'  => bin2hex(
    191. 

  191.                 hash_hmac('sha256', $jsonPolicy64, $key, true)
    192. 

  192.             ),
    193. 

  193.         ];
    194. 

  194.     }
    195. 

  195. }
    196.