Class: ObjectStorage::CDN::GoogleCDN

Inherits:

Object

• Object
• ObjectStorage::CDN::GoogleCDN

Includes:

Gitlab::Utils::StrongMemoize

Defined in:

app/uploaders/object_storage/cdn/google_cdn.rb

Instance Attribute Summary

• #options ⇒ Object readonly

  Returns the value of attribute options.

Instance Method Summary

• #initialize(options) ⇒ GoogleCDN constructor

  A new instance of GoogleCDN.

• #signed_url(path, expiry: 10.minutes, params: {}) ⇒ Object
• #use_cdn?(request_ip) ⇒ Boolean

Constructor Details

#initialize(options) ⇒ GoogleCDN

Returns a new instance of GoogleCDN.

# File 'app/uploaders/object_storage/cdn/google_cdn.rb', line 11

def initialize(options)
  @options = HashWithIndifferentAccess.new(options.to_h)

  GoogleIpCache.async_refresh unless GoogleIpCache.ready?
end

Instance Attribute Details

#options ⇒ Object (readonly)

Returns the value of attribute options.

# File 'app/uploaders/object_storage/cdn/google_cdn.rb', line 9

def options
  @options
end

Instance Method Details

#signed_url(path, expiry: 10.minutes, params: {}) ⇒ Object

# File 'app/uploaders/object_storage/cdn/google_cdn.rb', line 27

def signed_url(path, expiry: 10.minutes, params: {})
  expiration = (Time.current + expiry).utc.to_i

  uri = Addressable::URI.parse(cdn_url)
  uri.path = Addressable::URI.encode_component(path, Addressable::URI::CharacterClasses::PATH)
  # Use an Array to preserve order: Google CDN needs to have
  # Expires, KeyName, and Signature in that order or it will return a 403 error:
  # https://cloud.google.com/cdn/docs/troubleshooting-steps#signing
  query_params = params.to_a
  query_params << ['Expires', expiration]
  query_params << ['KeyName', key_name]
  uri.query_values = query_params

  unsigned_url = uri.to_s
  signature = OpenSSL::HMAC.digest('SHA1', decoded_key, unsigned_url)
  encoded_signature = Base64.urlsafe_encode64(signature)

  "#{unsigned_url}&Signature=#{encoded_signature}"
end

#use_cdn?(request_ip) ⇒ Boolean

Returns:

• (Boolean)

# File 'app/uploaders/object_storage/cdn/google_cdn.rb', line 17

def use_cdn?(request_ip)
  return false unless config_valid?

  ip = IPAddr.new(request_ip)

  return false if ip.private? || ip.link_local? || ip.loopback?

  !GoogleIpCache.google_ip?(request_ip)
end