fog--fog/lib/fog/aws/dynamodb.rb

require 'fog/aws'

module Fog
  module AWS
    class DynamoDB < Fog::Service
      extend Fog::AWS::CredentialFetcher::ServiceMethods

      requires :aws_access_key_id, :aws_secret_access_key
      recognizes :aws_session_token, :host, :path, :port, :scheme, :persistent, :region, :use_iam_profile, :aws_credentials_expire_at

      request_path 'fog/aws/requests/dynamodb'
      request :batch_get_item
      request :batch_write_item
      request :create_table
      request :delete_item
      request :delete_table
      request :describe_table
      request :get_item
      request :list_tables
      request :put_item
      request :query
      request :scan
      request :update_item
      request :update_table

      class Mock

        def self.data
          @data ||= Hash.new do |hash, key|
            hash[key] = {
              :domains => {}
            }
          end
        end

        def self.reset
          @data = nil
        end

        def initialize(options={})
          @use_iam_profile = options[:use_iam_profile]
          setup_credentials(options)
        end

        def data
          self.class.data[@aws_access_key_id]
        end

        def reset_data
          self.class.data.delete(@aws_access_key_id)
        end

        def setup_credientials(options)
          @aws_access_key_id = options[:aws_access_key_id]
        end
      end

      class Real
        include Fog::AWS::CredentialFetcher::ConnectionMethods
        # Initialize connection to DynamoDB
        #
        # ==== Notes
        # options parameter must include values for :aws_access_key_id and
        # :aws_secret_access_key in order to create a connection
        #
        # ==== Examples
        #   ddb = DynamoDB.new(
        #     :aws_access_key_id => your_aws_access_key_id,
        #     :aws_secret_access_key => your_aws_secret_access_key
        #   )
        #
        # ==== Parameters
        # * options<~Hash> - config arguments for connection.  Defaults to {}.
        #
        # ==== Returns
        # * DynamoDB object with connection to aws
        def initialize(options={})
          @use_iam_profile = options[:use_iam_profile]
          #TODO check dynamodb stuff

          setup_credentials(options)
          
          @connection_options     = options[:connection_options] || {}
          
          options[:region] ||= 'us-east-1'
          @host = options[:host] || "dynamodb.#{options[:region]}.amazonaws.com"
          @path       = options[:path]        || '/'
          @persistent = options[:persistent]  || false
          @port       = options[:port]        || '80' #443
          @scheme     = options[:scheme]      || 'http' #'https'
          @connection = Fog::Connection.new("#{@scheme}://#{@host}:#{@port}#{@path}", @persistent, @connection_options)
        end

        private

        def setup_credentials(options)
          if options[:aws_session_token]
            @aws_access_key_id      = options[:aws_access_key_id]
            @aws_secret_access_key  = options[:aws_secret_access_key]
            @aws_session_token      = options[:aws_session_token]
            @aws_credentials_expire_at = options[:aws_credentials_expire_at]
          else
            sts = Fog::AWS::STS.new(
              :aws_access_key_id      => options[:aws_access_key_id],
              :aws_secret_access_key  => options[:aws_secret_access_key]
            )
            session_data = sts.get_session_token.body

            @aws_access_key_id      = session_data['AccessKeyId']
            @aws_secret_access_key  = session_data['SecretAccessKey']
            @aws_session_token      = session_data['SessionToken']
          end
          @hmac       = Fog::HMAC.new('sha256', @aws_secret_access_key)
        end

        def reload
          @connection.reset
        end

        def request(params)
          refresh_credentials_if_expired
          idempotent = params.delete(:idempotent)

          headers = {
            'Content-Type'          => 'application/x-amz-json-1.0',
            'x-amz-date'            => Fog::Time.now.to_date_header,
            'x-amz-security-token'  => @aws_session_token
          }.merge(params[:headers])

          headers['x-amzn-authorization']  = signed_authorization_header(params, headers)

          response = @connection.request({
            :body       => params[:body],
            :expects    => 200,
            :headers    => headers,
            :host       => @host,
            :idempotent => idempotent,
            :method     => 'POST',
          })

          unless response.body.empty?
            response.body = Fog::JSON.decode(response.body)
          end

          response
        end

        def signed_authorization_header(params, headers)
          string_to_sign = "POST\n/\n\nhost:#{@host}:#{@port}\n"

          amz_headers, canonical_amz_headers = {}, ''
          for key, value in headers
            if key[0..5] == 'x-amz-'
              amz_headers[key] = value
            end
          end
          amz_headers = amz_headers.sort {|x, y| x[0] <=> y[0]}
          for key, value in amz_headers
            canonical_amz_headers << "#{key}:#{value}\n"
          end
          string_to_sign << canonical_amz_headers
          string_to_sign << "\n"
          string_to_sign << (params[:body] || '')

          string_to_sign = OpenSSL::Digest::SHA256.digest(string_to_sign)

          signed_string = @hmac.sign(string_to_sign)
          signature = Base64.encode64(signed_string).chomp!

          "AWS3 AWSAccessKeyId=#{@aws_access_key_id},Algorithm=HmacSHA256,Signature=#{signature}"
        end

      end
    end
  end
end
Remove absolute path when requiring 2012-05-15 14:54:20 -04:00			`require 'fog/aws'`
[AWS\|DynamoDB] table requests 2012-01-21 21:31:36 -05:00
			`module Fog`
			`module AWS`
			`class DynamoDB < Fog::Service`
start an instance with an IAM profile and access the credentials 2012-06-18 04:44:51 -04:00			`extend Fog::AWS::CredentialFetcher::ServiceMethods`
[AWS\|DynamoDB] table requests 2012-01-21 21:31:36 -05:00
			`requires :aws_access_key_id, :aws_secret_access_key`
start an instance with an IAM profile and access the credentials 2012-06-18 04:44:51 -04:00			`recognizes :aws_session_token, :host, :path, :port, :scheme, :persistent, :region, :use_iam_profile, :aws_credentials_expire_at`
[AWS\|DynamoDB] table requests 2012-01-21 21:31:36 -05:00
			`request_path 'fog/aws/requests/dynamodb'`
[AWS\|DynamoDB] item requests 2012-01-22 18:12:07 -05:00			`request :batch_get_item`
[aws\|dynamodb] correct batch_put_item to batch_write_item for consistency with API 2012-04-29 17:31:28 -04:00			`request :batch_write_item`
[AWS\|DynamoDB] table requests 2012-01-21 21:31:36 -05:00			`request :create_table`
[AWS\|DynamoDB] item requests 2012-01-22 18:12:07 -05:00			`request :delete_item`
[AWS\|DynamoDB] table requests 2012-01-21 21:31:36 -05:00			`request :delete_table`
			`request :describe_table`
[AWS\|DynamoDB] item requests 2012-01-22 18:12:07 -05:00			`request :get_item`
[AWS\|DynamoDB] table requests 2012-01-21 21:31:36 -05:00			`request :list_tables`
[AWS\|DynamoDB] item requests 2012-01-22 18:12:07 -05:00			`request :put_item`
[AWS\|DynamoDB] first pass at query/scan requests 2012-02-05 13:00:04 -05:00			`request :query`
			`request :scan`
[AWS\|DynamoDB] item requests 2012-01-22 18:12:07 -05:00			`request :update_item`
[AWS\|DynamoDB] table requests 2012-01-21 21:31:36 -05:00			`request :update_table`

			`class Mock`

			`def self.data`
			`@data \|\|= Hash.new do \|hash, key\|`
			`hash[key] = {`
			`:domains => {}`
			`}`
			`end`
			`end`

			`def self.reset`
			`@data = nil`
			`end`

			`def initialize(options={})`
start an instance with an IAM profile and access the credentials 2012-06-18 04:44:51 -04:00			`@use_iam_profile = options[:use_iam_profile]`
			`setup_credentials(options)`
[AWS\|DynamoDB] table requests 2012-01-21 21:31:36 -05:00			`end`

			`def data`
			`self.class.data[@aws_access_key_id]`
			`end`

			`def reset_data`
			`self.class.data.delete(@aws_access_key_id)`
			`end`

start an instance with an IAM profile and access the credentials 2012-06-18 04:44:51 -04:00			`def setup_credientials(options)`
			`@aws_access_key_id = options[:aws_access_key_id]`
			`end`
[AWS\|DynamoDB] table requests 2012-01-21 21:31:36 -05:00			`end`

			`class Real`
start an instance with an IAM profile and access the credentials 2012-06-18 04:44:51 -04:00			`include Fog::AWS::CredentialFetcher::ConnectionMethods`
[AWS\|DynamoDB] table requests 2012-01-21 21:31:36 -05:00			`# Initialize connection to DynamoDB`
			`#`
			`# ==== Notes`
			`# options parameter must include values for :aws_access_key_id and`
			`# :aws_secret_access_key in order to create a connection`
			`#`
			`# ==== Examples`
			`# ddb = DynamoDB.new(`
			`# :aws_access_key_id => your_aws_access_key_id,`
			`# :aws_secret_access_key => your_aws_secret_access_key`
			`# )`
			`#`
			`# ==== Parameters`
			`# * options<~Hash> - config arguments for connection. Defaults to {}.`
			`#`
			`# ==== Returns`
			`# * DynamoDB object with connection to aws`
			`def initialize(options={})`
start an instance with an IAM profile and access the credentials 2012-06-18 04:44:51 -04:00			`@use_iam_profile = options[:use_iam_profile]`
			`#TODO check dynamodb stuff`

			`setup_credentials(options)`

			`@connection_options = options[:connection_options] \|\| {}`

			`options[:region] \|\|= 'us-east-1'`
			`@host = options[:host] \|\| "dynamodb.#{options[:region]}.amazonaws.com"`
			`@path = options[:path] \|\| '/'`
			`@persistent = options[:persistent] \|\| false`
			`@port = options[:port] \|\| '80' #443`
			`@scheme = options[:scheme] \|\| 'http' #'https'`
			`@connection = Fog::Connection.new("#{@scheme}://#{@host}:#{@port}#{@path}", @persistent, @connection_options)`
			`end`

			`private`

			`def setup_credentials(options)`
[AWS\|DynamoDB] table requests 2012-01-21 21:31:36 -05:00			`if options[:aws_session_token]`
			`@aws_access_key_id = options[:aws_access_key_id]`
			`@aws_secret_access_key = options[:aws_secret_access_key]`
			`@aws_session_token = options[:aws_session_token]`
start an instance with an IAM profile and access the credentials 2012-06-18 04:44:51 -04:00			`@aws_credentials_expire_at = options[:aws_credentials_expire_at]`
[AWS\|DynamoDB] table requests 2012-01-21 21:31:36 -05:00			`else`
			`sts = Fog::AWS::STS.new(`
			`:aws_access_key_id => options[:aws_access_key_id],`
			`:aws_secret_access_key => options[:aws_secret_access_key]`
			`)`
			`session_data = sts.get_session_token.body`

			`@aws_access_key_id = session_data['AccessKeyId']`
			`@aws_secret_access_key = session_data['SecretAccessKey']`
			`@aws_session_token = session_data['SessionToken']`
			`end`
			`@hmac = Fog::HMAC.new('sha256', @aws_secret_access_key)`
			`end`

			`def reload`
			`@connection.reset`
			`end`

			`def request(params)`
start an instance with an IAM profile and access the credentials 2012-06-18 04:44:51 -04:00			`refresh_credentials_if_expired`
[AWS\|DynamoDB] table requests 2012-01-21 21:31:36 -05:00			`idempotent = params.delete(:idempotent)`

			`headers = {`
			`'Content-Type' => 'application/x-amz-json-1.0',`
			`'x-amz-date' => Fog::Time.now.to_date_header,`
			`'x-amz-security-token' => @aws_session_token`
			`}.merge(params[:headers])`
Remove unused variable 2012-05-14 15:26:02 -04:00
[AWS\|DynamoDB] table requests 2012-01-21 21:31:36 -05:00			`headers['x-amzn-authorization'] = signed_authorization_header(params, headers)`

			`response = @connection.request({`
			`:body => params[:body],`
			`:expects => 200,`
			`:headers => headers,`
			`:host => @host,`
			`:idempotent => idempotent,`
			`:method => 'POST',`
			`})`

			`unless response.body.empty?`
Fixed #875: Loosen multi_json version. 2012-04-25 10:31:28 -04:00			`response.body = Fog::JSON.decode(response.body)`
[AWS\|DynamoDB] table requests 2012-01-21 21:31:36 -05:00			`end`

			`response`
			`end`

			`def signed_authorization_header(params, headers)`
			`string_to_sign = "POST\n/\n\nhost:#{@host}:#{@port}\n"`

			`amz_headers, canonical_amz_headers = {}, ''`
			`for key, value in headers`
			`if key[0..5] == 'x-amz-'`
			`amz_headers[key] = value`
			`end`
			`end`
			`amz_headers = amz_headers.sort {\|x, y\| x[0] <=> y[0]}`
			`for key, value in amz_headers`
			`canonical_amz_headers << "#{key}:#{value}\n"`
			`end`
			`string_to_sign << canonical_amz_headers`
			`string_to_sign << "\n"`
			`string_to_sign << (params[:body] \|\| '')`

			`string_to_sign = OpenSSL::Digest::SHA256.digest(string_to_sign)`

			`signed_string = @hmac.sign(string_to_sign)`
			`signature = Base64.encode64(signed_string).chomp!`

			`"AWS3 AWSAccessKeyId=#{@aws_access_key_id},Algorithm=HmacSHA256,Signature=#{signature}"`
			`end`

			`end`
			`end`
			`end`
			`end`