first pass at query param signed s3 requests

lib/fog/aws/models/s3/objects.rb

@@ -42,6 +42,10 @@ module Fog
           nil
         end
 
+        def get_url(key, expires)
+          connection.get_object_url(bucket.name, key, expires)
+        end
+
         def head(key, options = {})
           data = connection.head_object(bucket.name, key, options)
           object_data = {

lib/fog/aws/requests/s3/get_object.rb

@@ -44,6 +44,21 @@ unless Fog.mocking?
           })
         end
 
+        def get_object_url(bucket_name, object_name, expires)
+          unless bucket_name
+            raise ArgumentError.new('bucket_name is required')
+          end
+          unless object_name
+            raise ArgumentError.new('object_name is required')
+          end
+          url({
+            :headers  => {},
+            :host     => "#{bucket_name}.#{@host}",
+            :method   => 'GET',
+            :path     => object_name
+          }, expires)
+        end
+
       end
     end
   end

lib/fog/aws/s3.rb

@@ -100,7 +100,33 @@ module Fog
 
       def request(params)
         params[:headers]['Date'] = Time.now.utc.strftime("%a, %d %b %Y %H:%M:%S +0000")
+        params[:headers]['Authorization'] = "AWS #{@aws_access_key_id}:#{signature(params)}"
 
+        response = @connection.request({
+          :block    => params[:block],
+          :body     => params[:body],
+          :expects  => params[:expects],
+          :headers  => params[:headers],
+          :host     => params[:host],
+          :method   => params[:method],
+          :parser   => params[:parser],
+          :path     => params[:path],
+          :query    => params[:query]
+        })
+
+        response
+      end
+
+      def url(params, expires)
+        params[:headers]['Date'] = expires.to_i
+        query = [params[:query]].compact
+        query << "AWSAccessKeyId=#{@aws_access_key_id}"
+        query << "Signature=#{CGI.escape(signature(params))}"
+        query << "Expires=#{params[:headers]['Date']}"
+        "http://#{params[:host]}/#{params[:path]}?#{query.join('&')}"
+      end
+
+      def signature(params)
         string_to_sign =
 <<-DATA
 #{params[:method]}
@@ -145,21 +171,6 @@ DATA
 
         hmac = @hmac.update(string_to_sign)
         signature = Base64.encode64(hmac.digest).chomp!
-        params[:headers]['Authorization'] = "AWS #{@aws_access_key_id}:#{signature}"
-
-        response = @connection.request({
-          :block    => params[:block],
-          :body     => params[:body],
-          :expects  => params[:expects],
-          :headers  => params[:headers],
-          :host     => params[:host],
-          :method   => params[:method],
-          :parser   => params[:parser],
-          :path     => params[:path],
-          :query    => params[:query]
-        })
-
-        response
       end
 
     end

spec/aws/models/s3/objects_spec.rb

@@ -90,6 +90,18 @@ describe 'Fog::AWS::S3::Objects' do
 
   end
 
+  describe "#get_url" do
+
+    it "should return a signed expiring url" do
+      file = File.open(File.dirname(__FILE__) + '/../../../lorem.txt', 'r')
+      object = @bucket.objects.create(:key => 'fogobjectname', :body => file)
+      url = @bucket.objects.get_url('fogobjectname', Time.now + 60 * 10)
+      open(url).read.should == File.open(File.dirname(__FILE__) + '/../../../lorem.txt', 'r').read
+      object.destroy
+    end
+
+  end
+
   describe "#head" do
 
     it "should return a Fog::AWS::S3::Object with metadata" do

spec/aws/requests/s3/get_object_spec.rb

@@ -35,6 +35,12 @@ describe 'S3.get_object' do
       data.should == file.read
     end
 
+    it 'should return a signed expiring url' do
+      url = s3.get_object_url('foggetobject', 'fog_get_object', Time.now + 60 * 10)
+      file = File.open(File.dirname(__FILE__) + '/../../../lorem.txt', 'r')
+      open(url).read.should == file.read
+    end
+
   end
   describe 'failure' do
 

spec/spec_helper.rb

@@ -1,4 +1,5 @@
 require 'spec'
+require 'open-uri'
 
 current_directory = File.dirname(__FILE__)
 require "#{current_directory}/../lib/fog"