Class: Google::Cloud::Storage::File::Signer

Inherits:

Object

• Object
• Google::Cloud::Storage::File::Signer

Defined in:

lib/google/cloud/storage/file.rb

Instance Method Summary

• #apply_option_defaults(options) ⇒ Object
• #determine_issuer(options = {}) ⇒ Object
• #determine_signing_key(options = {}) ⇒ Object
• #ext_path ⇒ Object

  The external path to the file.

• #ext_url ⇒ Object

  The external url to the file.

• #generate_signature(signing_key, options = {}) ⇒ Object
• #generate_signed_url(issuer, signed_string, expires) ⇒ Object
• #initialize(file) ⇒ Signer constructor

  A new instance of Signer.

• #signature_str(options) ⇒ Object
• #signed_url(options) ⇒ Object

Constructor Details

#initialize(file) ⇒ Signer

Returns a new instance of Signer.

# File 'lib/google/cloud/storage/file.rb', line 734

def initialize file
  @file = file
end

Instance Method Details

#apply_option_defaults(options) ⇒ Object

# File 'lib/google/cloud/storage/file.rb', line 750

def apply_option_defaults options
  adjusted_expires = (Time.now.utc + (options[:expires] || 300)).to_i
  options[:expires] = adjusted_expires
  options[:method]  ||= "GET"
  options
end

#determine_issuer(options = {}) ⇒ Object

# File 'lib/google/cloud/storage/file.rb', line 768

def determine_issuer options = {}
  options[:issuer] || options[:client_email] ||
    @file.service.credentials.issuer
end

#determine_signing_key(options = {}) ⇒ Object

# File 'lib/google/cloud/storage/file.rb', line 763

def determine_signing_key options = {}
  options[:signing_key] || options[:private_key] ||
    @file.service.credentials.signing_key
end

#ext_path ⇒ Object

The external path to the file.

# File 'lib/google/cloud/storage/file.rb', line 740

def ext_path
  URI.escape "/#{@file.bucket}/#{@file.name}"
end

#ext_url ⇒ Object

The external url to the file.

# File 'lib/google/cloud/storage/file.rb', line 746

def ext_url
  "https://storage.googleapis.com#{ext_path}"
end

#generate_signature(signing_key, options = {}) ⇒ Object

# File 'lib/google/cloud/storage/file.rb', line 785

def generate_signature signing_key, options = {}
  unless signing_key.respond_to? :sign
    signing_key = OpenSSL::PKey::RSA.new signing_key
  end
  signing_key.sign OpenSSL::Digest::SHA256.new, signature_str(options)
end

#generate_signed_url(issuer, signed_string, expires) ⇒ Object

# File 'lib/google/cloud/storage/file.rb', line 792

def generate_signed_url issuer, signed_string, expires
  signature = Base64.strict_encode64(signed_string).delete("\n")
  "#{ext_url}?GoogleAccessId=#{CGI.escape issuer}" \
            "&Expires=#{expires}" \
            "&Signature=#{CGI.escape signature}"
end

#signature_str(options) ⇒ Object

# File 'lib/google/cloud/storage/file.rb', line 757

def signature_str options
  [options[:method], options[:content_md5],
   options[:content_type], options[:expires],
   ext_path].join "\n"
end

#signed_url(options) ⇒ Object

# File 'lib/google/cloud/storage/file.rb', line 773

def signed_url options
  options = apply_option_defaults options

  i = determine_issuer options
  s = determine_signing_key options

  fail SignedUrlUnavailable unless i && s

  sig = generate_signature s, options
  generate_signed_url i, sig, options[:expires]
end