-
Notifications
You must be signed in to change notification settings - Fork 4.2k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #1668 from rayluo/cloudfront-sign
Cloudfront sign
- Loading branch information
Showing
4 changed files
with
173 additions
and
3 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,84 @@ | ||
# Copyright 2015 Amazon.com, Inc. or its affiliates. All Rights Reserved. | ||
# | ||
# Licensed under the Apache License, Version 2.0 (the "License"). You | ||
# may not use this file except in compliance with the License. A copy of | ||
# the License is located at | ||
# | ||
# http://aws.amazon.com/apache2.0/ | ||
# | ||
# or in the "license" file accompanying this file. This file is | ||
# distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF | ||
# ANY KIND, either express or implied. See the License for the specific | ||
# language governing permissions and limitations under the License. | ||
import mock | ||
from botocore.compat import urlparse, parse_qs | ||
|
||
from awscli.testutils import FileCreator | ||
from awscli.testutils import BaseAWSPreviewCommandParamsTest as \ | ||
BaseAWSCommandParamsTest | ||
|
||
|
||
class TestSign(BaseAWSCommandParamsTest): | ||
# A private key only for testing purpose. | ||
private_key = ''' | ||
-----BEGIN RSA PRIVATE KEY----- | ||
MIIEowIBAAKCAQEAu6o2+Jc8UINw2P/w2l7A1xXu3emQEZQ9diA3bmog8r9Dg+65 | ||
fZgAqmuNWPqBivv7j3DGnLUdt8uCIr7PYUbK7wDa6n7U3ryOWtO2ZTc3StiJVcqT | ||
sokZ0qxGFtDRafjBuydXtcxh52vVTcHqH33nubyyZIzuhTwfmrIOnUXnLwbMrBBP | ||
bg/8mlgQooyo1XbrN1eO4XMs+UgQ9Mqc7KRJRinUJ+KYuCnM8f/nN4RjYdjTcghk | ||
xCPEHCeSt2luywWyYmfguWCBS2Mu1q0250wKyNazlgiiTJtAuuSeweb4NKPOJL9X | ||
hR6Ce6UuU4WYlli8gvQh3FAV3N3C1Rxo20k28QIDAQABAoIBAQCUEkP5dWrzpCJg | ||
NeHWizjg/L9SfT1dgXfVQqo6BqckoeElsjDNdifgT6hhcpbQEO52SWeMsiNWp85w | ||
l9mNSYxJdIVGzPgtHt27sJyT1DNebOg/tu0+y4qCfcd3rR/u24YQo4RDP5ZoQN82 | ||
0TBn1LIIDWk8iS6SFdRh/OgnE8bLhNbK9IfZQFEEJrFkArrn/le/ro2mfJkC/imo | ||
QvqKmM0dGBXt5SCDSbUQAzKtEcR/4gf/qSjFe2YAwAvSA05WXMH6szdtx6/H/VbK | ||
Uck/WwTHvGObQDFEWmICxPK9AWT0qaFNjlUsi3bjQRdIlYYrXe+6nVMB/Jp1awq7 | ||
tGBqIcWBAoGBAPtXCNuoQhKXqkjJgteQpB+wFav12XRZgpOciYdeviJrgWydpOOu | ||
O9wkiRUctUijRJbUuWCJF7SgYGoT2xTTp/COiOReqs7qXLMuuXCZcPKkMRJj5wmo | ||
Uc2AwUV/o3+PNz1NFK+2RgciXplac7qugIyuxIvBKuVFTBlCg0+if/0pAoGBAL8k | ||
845wKqOeiawwle/o9lKLGPy1T11GrE6l1A5jRuE1WTVM77jRrb0Hmo0mdfHaf5A0 | ||
EjXGIX/fjcmQzBrEd78eCUsvI2Bgn6xXwhd4TTyWHGZfoQjFqAGkixuLN1oo2h1g | ||
bRreFKfAubFP8MC93z23vnH6tdY2VIA4h5ehUFyJAoGAJqxJrKLDJ+E2TmTTQR/8 | ||
YPPTIdZ+UyzCrrvTXYTydJFeJLxM9suEYmcswJbePgMBNsQckgIGJ8DVlPzhJN88 | ||
ZANKhPkcByKAiQGTfwPdITiqZE4C6rV/gMNi+bKeEa6TrVcC69Z8B/T94VLNo9fd | ||
58esbmSWmRiEkQ5u7f3u+6ECgYA8+6ANCLJB43nPCu07TpsP+LrvHTWF799XdEa0 | ||
lG3vuiKNA8/TqmoAziU79VJZ6Dkcm9BXga/8aSmGboD/5UDDI+UZLJ/fxtQKmzEc | ||
ZdBWjRnge5AYCV+xrnqHPiJZzIDSMIp+sO3sG2vjKzsHc0x/F1lWagOLpWfORLrV | ||
4KyP6QKBgAafeSrfK3LM7idiCBuxckLCgFoHa7uXLUNJRS5iIU+bbZLPj2ozu/tk | ||
U0jp7sNk1CyMWI36lR3sujkSyH3lPIXVgrXMuGY3PJRGntN8WlWEsw4VUMGRj3h4 | ||
5rB+y/UOS+nlEwQ6eOS09GByJDEXOXpcwjFcTr/f7V8mi0jH+gY/ | ||
-----END RSA PRIVATE KEY----- | ||
''' | ||
prefix = 'cloudfront sign --key-pair-id my_id --url http://example.com/hi ' | ||
|
||
def setUp(self): | ||
files = FileCreator() | ||
self.private_key_file = files.create_file('foo.pem', self.private_key) | ||
self.addCleanup(files.remove_all) | ||
super(TestSign, self).setUp() | ||
|
||
def assertDesiredUrl(self, url, base, params): | ||
self.assertEqual(len(url.splitlines()), 1, "Expects only 1 line") | ||
self.assertTrue(url.startswith(base), "URL mismatch") | ||
url = url.strip() # Otherwise the last param contains a trailing CRLF | ||
self.assertEqual(parse_qs(urlparse(url).query), params) | ||
|
||
def test_canned_policy(self): | ||
cmdline = ( | ||
self.prefix + '--private-key file://' + self.private_key_file + | ||
' --date-less-than 2016-1-1') | ||
expected_params = { | ||
'Key-Pair-Id': ['my_id'], | ||
'Expires': ['1451606400'], 'Signature': [mock.ANY]} | ||
self.assertDesiredUrl( | ||
self.run_cmd(cmdline)[0], 'http://example.com/hi', expected_params) | ||
|
||
def test_custom_policy(self): | ||
cmdline = ( | ||
self.prefix + '--private-key file://' + self.private_key_file + | ||
' --date-less-than 2016-1-1 --ip-address 12.34.56.78') | ||
expected_params = { | ||
'Key-Pair-Id': ['my_id'], | ||
'Policy': [mock.ANY], 'Signature': [mock.ANY]} | ||
self.assertDesiredUrl( | ||
self.run_cmd(cmdline)[0], 'http://example.com/hi', expected_params) |