penguin/s3-arch-utils
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Added arch_list_aws4.sh

Browse Source
This commit is contained in:
斟酌 鵬兄 2022-03-30 09:12:51 +09:00
parent 1b382d1390
commit 9e8ed023f1
4 changed files with 115 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
.gitignore vendored Normal file
View File

@ -0,0 +1 @@
*~

106
arch_list_aws4.sh Executable file
View File

@ -0,0 +1,106 @@
#!/bin/sh
# Copyleft https://git.k8s.astropenguin.net/penguin/s3-arch-utils
# ##
# Reference
# https://docs.aws.amazon.com/AmazonS3/latest/API/API_ListObjectsV2.html
#
# Usage
# arch_list_aws4.sh path/in/bucket/prefix_
#
# Description
# Print a sorted list of object keys using path/in/bucket/prefix_
# * maximum 1000 items, continuation-token is not implemented
# * modify _urlencode function to support more special characters
#
# Env vars
# ARCH_S3_BUCKET_URL The bucket url, e.g. my-bucket.s3.us-west-004.backblazeb2.com
# ARCH_S3_AUTH In the format of ACCESS_KEY:SECRET_KEY
# #
if [ -z "$ARCH_S3_BUCKET_URL" ]; then
echo "Env ARCH_S3_BUCKET_URL is required"
exit 1
fi
BUCKET_NAME=$( echo -n $ARCH_S3_BUCKET_URL | cut -d'.' -f1 )
SERVICE=$( echo -n $ARCH_S3_BUCKET_URL | cut -d'.' -f2 )
REGION=$( echo -n $ARCH_S3_BUCKET_URL | cut -d'.' -f3 )
ACCESS_KEY=$( echo -n $ARCH_S3_AUTH | cut -d':' -f1 )
SECRET_KEY=$( echo -n $ARCH_S3_AUTH | cut -d':' -f2 )
BUCKET_URL=$ARCH_S3_BUCKET_URL
_DATE=$( date -u +"%Y%m%d" )
_DTIME=$( date -u +"%Y%m%dT%H%M%SZ" )
_HEADERS="host;x-amz-date"
_SHA=$( echo -n "" | sha256sum | cut -d' ' -f1 )
_PATH=""
# Keys should be sorted
QPARAMS=(
"continuation-token" ""
"delimiter" "__OBJ__"
"encoding-type" "url"
"fetch-owner" "false"
"list-type" "2"
"max-keys" "1000"
"prefix" "$1"
"start-after" ""
)
function _urlencode {
echo -n $1 | sed "s/\//%2F/g"
}
_L=${#QPARAMS[@]}
QSTR=
for (( i=0; i<$_L; i+=2 )); do
_K=${QPARAMS[$i]}
_V=${QPARAMS[(($i+1))]}
if [ -z "$_V" ]; then
continue
fi
_S="$_K=$( _urlencode $_V )"
if [ -n "$QSTR" ]; then
QSTR="$QSTR&$_S"
else
QSTR="$_S"
fi
done
# Canon Request
_C="GET"
_C="$_C\n/$_PATH"
_C="$_C\n$QSTR"
_C="$_C\nhost:$BUCKET_URL"
_C="$_C\nx-amz-date:$_DTIME"
_C="$_C\n"
_C="$_C\n$_HEADERS"
_C="$_C\n$_SHA"
# String to Sign
_S="AWS4-HMAC-SHA256"
_S="$_S\n$_DTIME"
_S="$_S\n$_DATE/$REGION/$SERVICE/aws4_request"
_S="$_S\n$( echo -ne "$_C" | sha256sum | cut -d' ' -f1 )"
function _HMAC { echo -ne "$2" | openssl dgst -sha256 -hex -mac HMAC -macopt "$1" | cut -d' ' -f2; }
SIG=$( _HMAC "key:AWS4$SECRET_KEY" "$_DATE" )
SIG=$( _HMAC "hexkey:$SIG" "$REGION" )
SIG=$( _HMAC "hexkey:$SIG" "$SERVICE" )
SIG=$( _HMAC "hexkey:$SIG" "aws4_request" )
SIG=$( _HMAC "hexkey:$SIG" "$_S" )
curl -s -XGET \
-H "X-Amz-Date: $_DTIME" \
-H "X-Amz-Content-SHA256: $_SHA" \
-H "Authorization: AWS4-HMAC-SHA256 Credential=$ACCESS_KEY/$_DATE/$REGION/$SERVICE/aws4_request, SignedHeaders=$_HEADERS, Signature=$SIG" \
"https://$BUCKET_URL/$_PATH?$QSTR" \
| grep -Eo "<Key>[^<]*?</Key>" \
| sed "s/^<Key>\|<\/Key>//g" \
| sort

7
arch_upload_aws4.sh
View File

@ -1,5 +1,5 @@
#!/bin/sh #!/bin/sh
# Copyleft # Copyleft https://git.k8s.astropenguin.net/penguin/s3-arch-utils
# ## # ##
# Reference # Reference
@ -8,6 +8,11 @@
# Usage # Usage
# arch_upload_aws4.sh path/in/bucket file_name.ext # arch_upload_aws4.sh path/in/bucket file_name.ext
# #
# Description
# Upload file_name.ext to path/in/bucket
# * file_name.ext must not contain special characters
# * path/in/bucket must not contain special characters
#
# Env vars # Env vars
# ARCH_S3_BUCKET_URL The bucket url, e.g. my-bucket.s3.us-west-004.backblazeb2.com # ARCH_S3_BUCKET_URL The bucket url, e.g. my-bucket.s3.us-west-004.backblazeb2.com
# ARCH_S3_AUTH In the format of ACCESS_KEY:SECRET_KEY # ARCH_S3_AUTH In the format of ACCESS_KEY:SECRET_KEY

2
create-secrets.sh Normal file
View File

@ -0,0 +1,2 @@
#!/bin/bash