aws-sdk-s3 1.30.0 → 1.114.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (100) hide show
  1. checksums.yaml +5 -5
  2. data/CHANGELOG.md +903 -0
  3. data/LICENSE.txt +202 -0
  4. data/VERSION +1 -0
  5. data/lib/aws-sdk-s3/arn/access_point_arn.rb +69 -0
  6. data/lib/aws-sdk-s3/arn/multi_region_access_point_arn.rb +68 -0
  7. data/lib/aws-sdk-s3/arn/object_lambda_arn.rb +69 -0
  8. data/lib/aws-sdk-s3/arn/outpost_access_point_arn.rb +74 -0
  9. data/lib/aws-sdk-s3/bucket.rb +377 -77
  10. data/lib/aws-sdk-s3/bucket_acl.rb +57 -14
  11. data/lib/aws-sdk-s3/bucket_cors.rb +67 -13
  12. data/lib/aws-sdk-s3/bucket_lifecycle.rb +54 -15
  13. data/lib/aws-sdk-s3/bucket_lifecycle_configuration.rb +56 -15
  14. data/lib/aws-sdk-s3/bucket_logging.rb +52 -15
  15. data/lib/aws-sdk-s3/bucket_notification.rb +44 -15
  16. data/lib/aws-sdk-s3/bucket_policy.rb +51 -13
  17. data/lib/aws-sdk-s3/bucket_region_cache.rb +2 -0
  18. data/lib/aws-sdk-s3/bucket_request_payment.rb +51 -12
  19. data/lib/aws-sdk-s3/bucket_tagging.rb +59 -13
  20. data/lib/aws-sdk-s3/bucket_versioning.rb +118 -12
  21. data/lib/aws-sdk-s3/bucket_website.rb +66 -13
  22. data/lib/aws-sdk-s3/client.rb +9016 -669
  23. data/lib/aws-sdk-s3/client_api.rb +786 -2
  24. data/lib/aws-sdk-s3/customizations/bucket.rb +59 -16
  25. data/lib/aws-sdk-s3/customizations/multipart_upload.rb +2 -0
  26. data/lib/aws-sdk-s3/customizations/object.rb +200 -62
  27. data/lib/aws-sdk-s3/customizations/object_summary.rb +5 -0
  28. data/lib/aws-sdk-s3/customizations/types/list_object_versions_output.rb +2 -0
  29. data/lib/aws-sdk-s3/customizations.rb +4 -1
  30. data/lib/aws-sdk-s3/encryption/client.rb +23 -6
  31. data/lib/aws-sdk-s3/encryption/decrypt_handler.rb +71 -29
  32. data/lib/aws-sdk-s3/encryption/default_cipher_provider.rb +43 -5
  33. data/lib/aws-sdk-s3/encryption/default_key_provider.rb +2 -0
  34. data/lib/aws-sdk-s3/encryption/encrypt_handler.rb +13 -2
  35. data/lib/aws-sdk-s3/encryption/errors.rb +2 -0
  36. data/lib/aws-sdk-s3/encryption/io_auth_decrypter.rb +2 -0
  37. data/lib/aws-sdk-s3/encryption/io_decrypter.rb +11 -3
  38. data/lib/aws-sdk-s3/encryption/io_encrypter.rb +2 -0
  39. data/lib/aws-sdk-s3/encryption/key_provider.rb +2 -0
  40. data/lib/aws-sdk-s3/encryption/kms_cipher_provider.rb +34 -3
  41. data/lib/aws-sdk-s3/encryption/materials.rb +8 -6
  42. data/lib/aws-sdk-s3/encryption/utils.rb +25 -0
  43. data/lib/aws-sdk-s3/encryption.rb +4 -0
  44. data/lib/aws-sdk-s3/encryptionV2/client.rb +566 -0
  45. data/lib/aws-sdk-s3/encryptionV2/decrypt_handler.rb +222 -0
  46. data/lib/aws-sdk-s3/encryptionV2/default_cipher_provider.rb +170 -0
  47. data/lib/aws-sdk-s3/encryptionV2/default_key_provider.rb +40 -0
  48. data/lib/aws-sdk-s3/encryptionV2/encrypt_handler.rb +65 -0
  49. data/lib/aws-sdk-s3/encryptionV2/errors.rb +37 -0
  50. data/lib/aws-sdk-s3/encryptionV2/io_auth_decrypter.rb +58 -0
  51. data/lib/aws-sdk-s3/encryptionV2/io_decrypter.rb +37 -0
  52. data/lib/aws-sdk-s3/encryptionV2/io_encrypter.rb +73 -0
  53. data/lib/aws-sdk-s3/encryptionV2/key_provider.rb +31 -0
  54. data/lib/aws-sdk-s3/encryptionV2/kms_cipher_provider.rb +169 -0
  55. data/lib/aws-sdk-s3/encryptionV2/materials.rb +60 -0
  56. data/lib/aws-sdk-s3/encryptionV2/utils.rb +103 -0
  57. data/lib/aws-sdk-s3/encryption_v2.rb +23 -0
  58. data/lib/aws-sdk-s3/errors.rb +123 -1
  59. data/lib/aws-sdk-s3/event_streams.rb +20 -7
  60. data/lib/aws-sdk-s3/file_downloader.rb +17 -10
  61. data/lib/aws-sdk-s3/file_part.rb +11 -6
  62. data/lib/aws-sdk-s3/file_uploader.rb +33 -14
  63. data/lib/aws-sdk-s3/legacy_signer.rb +17 -25
  64. data/lib/aws-sdk-s3/multipart_file_uploader.rb +78 -19
  65. data/lib/aws-sdk-s3/multipart_stream_uploader.rb +20 -7
  66. data/lib/aws-sdk-s3/multipart_upload.rb +178 -28
  67. data/lib/aws-sdk-s3/multipart_upload_error.rb +2 -0
  68. data/lib/aws-sdk-s3/multipart_upload_part.rb +236 -43
  69. data/lib/aws-sdk-s3/object.rb +848 -162
  70. data/lib/aws-sdk-s3/object_acl.rb +81 -20
  71. data/lib/aws-sdk-s3/object_copier.rb +2 -0
  72. data/lib/aws-sdk-s3/object_multipart_copier.rb +2 -0
  73. data/lib/aws-sdk-s3/object_summary.rb +615 -144
  74. data/lib/aws-sdk-s3/object_version.rb +161 -68
  75. data/lib/aws-sdk-s3/plugins/accelerate.rb +38 -38
  76. data/lib/aws-sdk-s3/plugins/arn.rb +254 -0
  77. data/lib/aws-sdk-s3/plugins/bucket_dns.rb +8 -8
  78. data/lib/aws-sdk-s3/plugins/bucket_name_restrictions.rb +25 -3
  79. data/lib/aws-sdk-s3/plugins/dualstack.rb +38 -33
  80. data/lib/aws-sdk-s3/plugins/expect_100_continue.rb +4 -4
  81. data/lib/aws-sdk-s3/plugins/get_bucket_location_fix.rb +3 -1
  82. data/lib/aws-sdk-s3/plugins/http_200_errors.rb +11 -3
  83. data/lib/aws-sdk-s3/plugins/iad_regional_endpoint.rb +73 -0
  84. data/lib/aws-sdk-s3/plugins/location_constraint.rb +2 -0
  85. data/lib/aws-sdk-s3/plugins/md5s.rb +34 -30
  86. data/lib/aws-sdk-s3/plugins/object_lambda_endpoint.rb +25 -0
  87. data/lib/aws-sdk-s3/plugins/redirects.rb +2 -0
  88. data/lib/aws-sdk-s3/plugins/s3_host_id.rb +2 -0
  89. data/lib/aws-sdk-s3/plugins/s3_signer.rb +95 -36
  90. data/lib/aws-sdk-s3/plugins/skip_whole_multipart_get_checksums.rb +31 -0
  91. data/lib/aws-sdk-s3/plugins/sse_cpk.rb +3 -1
  92. data/lib/aws-sdk-s3/plugins/streaming_retry.rb +139 -0
  93. data/lib/aws-sdk-s3/plugins/url_encoded_keys.rb +2 -0
  94. data/lib/aws-sdk-s3/presigned_post.rb +110 -51
  95. data/lib/aws-sdk-s3/presigner.rb +168 -66
  96. data/lib/aws-sdk-s3/resource.rb +41 -5
  97. data/lib/aws-sdk-s3/types.rb +8652 -1146
  98. data/lib/aws-sdk-s3/waiters.rb +67 -1
  99. data/lib/aws-sdk-s3.rb +12 -6
  100. metadata +38 -13
@@ -1,11 +1,14 @@
1
+ # frozen_string_literal: true
2
+
1
3
  # WARNING ABOUT GENERATED CODE
2
4
  #
3
5
  # This file is generated. See the contributing guide for more information:
4
- # https://github.com/aws/aws-sdk-ruby/blob/master/CONTRIBUTING.md
6
+ # https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
5
7
  #
6
8
  # WARNING ABOUT GENERATED CODE
7
9
 
8
10
  module Aws::S3
11
+
9
12
  class ObjectVersion
10
13
 
11
14
  extend Aws::Deprecations
@@ -27,6 +30,7 @@ module Aws::S3
27
30
  @id = extract_id(args, options)
28
31
  @data = options.delete(:data)
29
32
  @client = options.delete(:client) || Client.new(options)
33
+ @waiter_block_warned = false
30
34
  end
31
35
 
32
36
  # @!group Read-Only Attributes
@@ -46,11 +50,18 @@ module Aws::S3
46
50
  @id
47
51
  end
48
52
 
53
+ # The entity tag is an MD5 hash of that version of the object.
49
54
  # @return [String]
50
55
  def etag
51
56
  data[:etag]
52
57
  end
53
58
 
59
+ # The algorithm that was used to create a checksum of the object.
60
+ # @return [Array<String>]
61
+ def checksum_algorithm
62
+ data[:checksum_algorithm]
63
+ end
64
+
54
65
  # Size in bytes of the object.
55
66
  # @return [Integer]
56
67
  def size
@@ -88,6 +99,7 @@ module Aws::S3
88
99
  data[:last_modified]
89
100
  end
90
101
 
102
+ # Specifies the owner of the object.
91
103
  # @return [Types::Owner]
92
104
  def owner
93
105
  data[:owner]
@@ -128,7 +140,8 @@ module Aws::S3
128
140
  # Waiter polls an API operation until a resource enters a desired
129
141
  # state.
130
142
  #
131
- # @note The waiting operation is performed on a copy. The original resource remains unchanged
143
+ # @note The waiting operation is performed on a copy. The original resource
144
+ # remains unchanged.
132
145
  #
133
146
  # ## Basic Usage
134
147
  #
@@ -141,13 +154,15 @@ module Aws::S3
141
154
  #
142
155
  # ## Example
143
156
  #
144
- # instance.wait_until(max_attempts:10, delay:5) {|instance| instance.state.name == 'running' }
157
+ # instance.wait_until(max_attempts:10, delay:5) do |instance|
158
+ # instance.state.name == 'running'
159
+ # end
145
160
  #
146
161
  # ## Configuration
147
162
  #
148
163
  # You can configure the maximum number of polling attempts, and the
149
- # delay (in seconds) between each polling attempt. The waiting condition is set
150
- # by passing a block to {#wait_until}:
164
+ # delay (in seconds) between each polling attempt. The waiting condition is
165
+ # set by passing a block to {#wait_until}:
151
166
  #
152
167
  # # poll for ~25 seconds
153
168
  # resource.wait_until(max_attempts:5,delay:5) {|resource|...}
@@ -178,17 +193,16 @@ module Aws::S3
178
193
  # # resource did not enter the desired state in time
179
194
  # end
180
195
  #
196
+ # @yieldparam [Resource] resource to be used in the waiting condition.
181
197
  #
182
- # @yield param [Resource] resource to be used in the waiting condition
183
- #
184
- # @raise [Aws::Waiters::Errors::FailureStateError] Raised when the waiter terminates
185
- # because the waiter has entered a state that it will not transition
186
- # out of, preventing success.
198
+ # @raise [Aws::Waiters::Errors::FailureStateError] Raised when the waiter
199
+ # terminates because the waiter has entered a state that it will not
200
+ # transition out of, preventing success.
187
201
  #
188
202
  # yet successful.
189
203
  #
190
- # @raise [Aws::Waiters::Errors::UnexpectedError] Raised when an error is encountered
191
- # while polling for a resource that is not expected.
204
+ # @raise [Aws::Waiters::Errors::UnexpectedError] Raised when an error is
205
+ # encountered while polling for a resource that is not expected.
192
206
  #
193
207
  # @raise [NotImplementedError] Raised when the resource does not
194
208
  #
@@ -226,20 +240,32 @@ module Aws::S3
226
240
  # mfa: "MFA",
227
241
  # request_payer: "requester", # accepts requester
228
242
  # bypass_governance_retention: false,
243
+ # expected_bucket_owner: "AccountId",
229
244
  # })
230
245
  # @param [Hash] options ({})
231
246
  # @option options [String] :mfa
232
247
  # The concatenation of the authentication device's serial number, a
233
248
  # space, and the value that is displayed on your authentication device.
249
+ # Required to permanently delete a versioned object if versioning is
250
+ # configured with MFA delete enabled.
234
251
  # @option options [String] :request_payer
235
- # Confirms that the requester knows that she or he will be charged for
236
- # the request. Bucket owners need not specify this parameter in their
237
- # requests. Documentation on downloading objects from requester pays
238
- # buckets can be found at
239
- # http://docs.aws.amazon.com/AmazonS3/latest/dev/ObjectsinRequesterPaysBuckets.html
252
+ # Confirms that the requester knows that they will be charged for the
253
+ # request. Bucket owners need not specify this parameter in their
254
+ # requests. For information about downloading objects from Requester
255
+ # Pays buckets, see [Downloading Objects in Requester Pays Buckets][1]
256
+ # in the *Amazon S3 User Guide*.
257
+ #
258
+ #
259
+ #
260
+ # [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/ObjectsinRequesterPaysBuckets.html
240
261
  # @option options [Boolean] :bypass_governance_retention
241
262
  # Indicates whether S3 Object Lock should bypass Governance-mode
242
- # restrictions to process this operation.
263
+ # restrictions to process this operation. To use this header, you must
264
+ # have the `s3:BypassGovernanceRetention` permission.
265
+ # @option options [String] :expected_bucket_owner
266
+ # The account ID of the expected bucket owner. If the bucket is owned by
267
+ # a different account, the request fails with the HTTP status code `403
268
+ # Forbidden` (access denied).
243
269
  # @return [Types::DeleteObjectOutput]
244
270
  def delete(options = {})
245
271
  options = options.merge(
@@ -270,60 +296,81 @@ module Aws::S3
270
296
  # sse_customer_key_md5: "SSECustomerKeyMD5",
271
297
  # request_payer: "requester", # accepts requester
272
298
  # part_number: 1,
299
+ # expected_bucket_owner: "AccountId",
300
+ # checksum_mode: "ENABLED", # accepts ENABLED
273
301
  # })
274
302
  # @param [Hash] options ({})
275
303
  # @option options [String] :if_match
276
304
  # Return the object only if its entity tag (ETag) is the same as the one
277
- # specified, otherwise return a 412 (precondition failed).
305
+ # specified; otherwise, return a 412 (precondition failed) error.
278
306
  # @option options [Time,DateTime,Date,Integer,String] :if_modified_since
279
307
  # Return the object only if it has been modified since the specified
280
- # time, otherwise return a 304 (not modified).
308
+ # time; otherwise, return a 304 (not modified) error.
281
309
  # @option options [String] :if_none_match
282
310
  # Return the object only if its entity tag (ETag) is different from the
283
- # one specified, otherwise return a 304 (not modified).
311
+ # one specified; otherwise, return a 304 (not modified) error.
284
312
  # @option options [Time,DateTime,Date,Integer,String] :if_unmodified_since
285
313
  # Return the object only if it has not been modified since the specified
286
- # time, otherwise return a 412 (precondition failed).
314
+ # time; otherwise, return a 412 (precondition failed) error.
287
315
  # @option options [String] :range
288
316
  # Downloads the specified range bytes of an object. For more information
289
- # about the HTTP Range header, go to
290
- # http://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.35.
317
+ # about the HTTP Range header, see
318
+ # [https://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.35][1].
319
+ #
320
+ # <note markdown="1"> Amazon S3 doesn't support retrieving multiple ranges of data per
321
+ # `GET` request.
322
+ #
323
+ # </note>
324
+ #
325
+ #
326
+ #
327
+ # [1]: https://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.35
291
328
  # @option options [String] :response_cache_control
292
- # Sets the Cache-Control header of the response.
329
+ # Sets the `Cache-Control` header of the response.
293
330
  # @option options [String] :response_content_disposition
294
- # Sets the Content-Disposition header of the response
331
+ # Sets the `Content-Disposition` header of the response
295
332
  # @option options [String] :response_content_encoding
296
- # Sets the Content-Encoding header of the response.
333
+ # Sets the `Content-Encoding` header of the response.
297
334
  # @option options [String] :response_content_language
298
- # Sets the Content-Language header of the response.
335
+ # Sets the `Content-Language` header of the response.
299
336
  # @option options [String] :response_content_type
300
- # Sets the Content-Type header of the response.
337
+ # Sets the `Content-Type` header of the response.
301
338
  # @option options [Time,DateTime,Date,Integer,String] :response_expires
302
- # Sets the Expires header of the response.
339
+ # Sets the `Expires` header of the response.
303
340
  # @option options [String] :sse_customer_algorithm
304
- # Specifies the algorithm to use to when encrypting the object (e.g.,
305
- # AES256).
341
+ # Specifies the algorithm to use to when decrypting the object (for
342
+ # example, AES256).
306
343
  # @option options [String] :sse_customer_key
307
- # Specifies the customer-provided encryption key for Amazon S3 to use in
308
- # encrypting data. This value is used to store the object and then it is
309
- # discarded; Amazon does not store the encryption key. The key must be
310
- # appropriate for use with the algorithm specified in the
311
- # x-amz-server-side​-encryption​-customer-algorithm header.
344
+ # Specifies the customer-provided encryption key for Amazon S3 used to
345
+ # encrypt the data. This value is used to decrypt the object when
346
+ # recovering it and must match the one used when storing the data. The
347
+ # key must be appropriate for use with the algorithm specified in the
348
+ # `x-amz-server-side-encryption-customer-algorithm` header.
312
349
  # @option options [String] :sse_customer_key_md5
313
350
  # Specifies the 128-bit MD5 digest of the encryption key according to
314
351
  # RFC 1321. Amazon S3 uses this header for a message integrity check to
315
- # ensure the encryption key was transmitted without error.
352
+ # ensure that the encryption key was transmitted without error.
316
353
  # @option options [String] :request_payer
317
- # Confirms that the requester knows that she or he will be charged for
318
- # the request. Bucket owners need not specify this parameter in their
319
- # requests. Documentation on downloading objects from requester pays
320
- # buckets can be found at
321
- # http://docs.aws.amazon.com/AmazonS3/latest/dev/ObjectsinRequesterPaysBuckets.html
354
+ # Confirms that the requester knows that they will be charged for the
355
+ # request. Bucket owners need not specify this parameter in their
356
+ # requests. For information about downloading objects from Requester
357
+ # Pays buckets, see [Downloading Objects in Requester Pays Buckets][1]
358
+ # in the *Amazon S3 User Guide*.
359
+ #
360
+ #
361
+ #
362
+ # [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/ObjectsinRequesterPaysBuckets.html
322
363
  # @option options [Integer] :part_number
323
364
  # Part number of the object being read. This is a positive integer
324
365
  # between 1 and 10,000. Effectively performs a 'ranged' GET request
325
366
  # for the part specified. Useful for downloading just a part of an
326
367
  # object.
368
+ # @option options [String] :expected_bucket_owner
369
+ # The account ID of the expected bucket owner. If the bucket is owned by
370
+ # a different account, the request fails with the HTTP status code `403
371
+ # Forbidden` (access denied).
372
+ # @option options [String] :checksum_mode
373
+ # To retrieve the checksum, this mode must be enabled.
327
374
  # @return [Types::GetObjectOutput]
328
375
  def get(options = {}, &block)
329
376
  options = options.merge(
@@ -348,48 +395,64 @@ module Aws::S3
348
395
  # sse_customer_key_md5: "SSECustomerKeyMD5",
349
396
  # request_payer: "requester", # accepts requester
350
397
  # part_number: 1,
398
+ # expected_bucket_owner: "AccountId",
399
+ # checksum_mode: "ENABLED", # accepts ENABLED
351
400
  # })
352
401
  # @param [Hash] options ({})
353
402
  # @option options [String] :if_match
354
403
  # Return the object only if its entity tag (ETag) is the same as the one
355
- # specified, otherwise return a 412 (precondition failed).
404
+ # specified; otherwise, return a 412 (precondition failed) error.
356
405
  # @option options [Time,DateTime,Date,Integer,String] :if_modified_since
357
406
  # Return the object only if it has been modified since the specified
358
- # time, otherwise return a 304 (not modified).
407
+ # time; otherwise, return a 304 (not modified) error.
359
408
  # @option options [String] :if_none_match
360
409
  # Return the object only if its entity tag (ETag) is different from the
361
- # one specified, otherwise return a 304 (not modified).
410
+ # one specified; otherwise, return a 304 (not modified) error.
362
411
  # @option options [Time,DateTime,Date,Integer,String] :if_unmodified_since
363
412
  # Return the object only if it has not been modified since the specified
364
- # time, otherwise return a 412 (precondition failed).
413
+ # time; otherwise, return a 412 (precondition failed) error.
365
414
  # @option options [String] :range
366
- # Downloads the specified range bytes of an object. For more information
367
- # about the HTTP Range header, go to
368
- # http://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.35.
415
+ # Because `HeadObject` returns only the metadata for an object, this
416
+ # parameter has no effect.
369
417
  # @option options [String] :sse_customer_algorithm
370
- # Specifies the algorithm to use to when encrypting the object (e.g.,
371
- # AES256).
418
+ # Specifies the algorithm to use to when encrypting the object (for
419
+ # example, AES256).
372
420
  # @option options [String] :sse_customer_key
373
421
  # Specifies the customer-provided encryption key for Amazon S3 to use in
374
422
  # encrypting data. This value is used to store the object and then it is
375
- # discarded; Amazon does not store the encryption key. The key must be
376
- # appropriate for use with the algorithm specified in the
377
- # x-amz-server-side​-encryption​-customer-algorithm header.
423
+ # discarded; Amazon S3 does not store the encryption key. The key must
424
+ # be appropriate for use with the algorithm specified in the
425
+ # `x-amz-server-side-encryption-customer-algorithm` header.
378
426
  # @option options [String] :sse_customer_key_md5
379
427
  # Specifies the 128-bit MD5 digest of the encryption key according to
380
428
  # RFC 1321. Amazon S3 uses this header for a message integrity check to
381
- # ensure the encryption key was transmitted without error.
429
+ # ensure that the encryption key was transmitted without error.
382
430
  # @option options [String] :request_payer
383
- # Confirms that the requester knows that she or he will be charged for
384
- # the request. Bucket owners need not specify this parameter in their
385
- # requests. Documentation on downloading objects from requester pays
386
- # buckets can be found at
387
- # http://docs.aws.amazon.com/AmazonS3/latest/dev/ObjectsinRequesterPaysBuckets.html
431
+ # Confirms that the requester knows that they will be charged for the
432
+ # request. Bucket owners need not specify this parameter in their
433
+ # requests. For information about downloading objects from Requester
434
+ # Pays buckets, see [Downloading Objects in Requester Pays Buckets][1]
435
+ # in the *Amazon S3 User Guide*.
436
+ #
437
+ #
438
+ #
439
+ # [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/ObjectsinRequesterPaysBuckets.html
388
440
  # @option options [Integer] :part_number
389
441
  # Part number of the object being read. This is a positive integer
390
442
  # between 1 and 10,000. Effectively performs a 'ranged' HEAD request
391
443
  # for the part specified. Useful querying about the size of the part and
392
444
  # the number of parts in this object.
445
+ # @option options [String] :expected_bucket_owner
446
+ # The account ID of the expected bucket owner. If the bucket is owned by
447
+ # a different account, the request fails with the HTTP status code `403
448
+ # Forbidden` (access denied).
449
+ # @option options [String] :checksum_mode
450
+ # To retrieve the checksum, this parameter must be enabled.
451
+ #
452
+ # In addition, if you enable `ChecksumMode` and the object is encrypted
453
+ # with Amazon Web Services Key Management Service (Amazon Web Services
454
+ # KMS), you must have permission to use the `kms:Decrypt` action for the
455
+ # request to succeed.
393
456
  # @return [Types::HeadObjectOutput]
394
457
  def head(options = {})
395
458
  options = options.merge(
@@ -468,21 +531,51 @@ module Aws::S3
468
531
  # mfa: "MFA",
469
532
  # request_payer: "requester", # accepts requester
470
533
  # bypass_governance_retention: false,
534
+ # expected_bucket_owner: "AccountId",
535
+ # checksum_algorithm: "CRC32", # accepts CRC32, CRC32C, SHA1, SHA256
471
536
  # })
472
537
  # @param options ({})
473
538
  # @option options [String] :mfa
474
539
  # The concatenation of the authentication device's serial number, a
475
540
  # space, and the value that is displayed on your authentication device.
541
+ # Required to permanently delete a versioned object if versioning is
542
+ # configured with MFA delete enabled.
476
543
  # @option options [String] :request_payer
477
- # Confirms that the requester knows that she or he will be charged for
478
- # the request. Bucket owners need not specify this parameter in their
479
- # requests. Documentation on downloading objects from requester pays
480
- # buckets can be found at
481
- # http://docs.aws.amazon.com/AmazonS3/latest/dev/ObjectsinRequesterPaysBuckets.html
544
+ # Confirms that the requester knows that they will be charged for the
545
+ # request. Bucket owners need not specify this parameter in their
546
+ # requests. For information about downloading objects from Requester
547
+ # Pays buckets, see [Downloading Objects in Requester Pays Buckets][1]
548
+ # in the *Amazon S3 User Guide*.
549
+ #
550
+ #
551
+ #
552
+ # [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/ObjectsinRequesterPaysBuckets.html
482
553
  # @option options [Boolean] :bypass_governance_retention
483
554
  # Specifies whether you want to delete this object even if it has a
484
- # Governance-type Object Lock in place. You must have sufficient
485
- # permissions to perform this operation.
555
+ # Governance-type Object Lock in place. To use this header, you must
556
+ # have the `s3:BypassGovernanceRetention` permission.
557
+ # @option options [String] :expected_bucket_owner
558
+ # The account ID of the expected bucket owner. If the bucket is owned by
559
+ # a different account, the request fails with the HTTP status code `403
560
+ # Forbidden` (access denied).
561
+ # @option options [String] :checksum_algorithm
562
+ # Indicates the algorithm used to create the checksum for the object
563
+ # when using the SDK. This header will not provide any additional
564
+ # functionality if not using the SDK. When sending this header, there
565
+ # must be a corresponding `x-amz-checksum` or `x-amz-trailer` header
566
+ # sent. Otherwise, Amazon S3 fails the request with the HTTP status code
567
+ # `400 Bad Request`. For more information, see [Checking object
568
+ # integrity][1] in the *Amazon S3 User Guide*.
569
+ #
570
+ # If you provide an individual checksum, Amazon S3 ignores any provided
571
+ # `ChecksumAlgorithm` parameter.
572
+ #
573
+ # This checksum algorithm must be the same for all parts and it match
574
+ # the checksum value supplied in the `CreateMultipartUpload` request.
575
+ #
576
+ #
577
+ #
578
+ # [1]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/checking-object-integrity.html
486
579
  # @return [void]
487
580
  def batch_delete!(options = {})
488
581
  batch_enum.each do |batch|
@@ -1,36 +1,57 @@
1
+ # frozen_string_literal: true
2
+
1
3
  module Aws
2
4
  module S3
3
5
  module Plugins
4
-
5
6
  # Provides support for using `Aws::S3::Client` with Amazon S3 Transfer
6
7
  # Acceleration.
7
8
  #
8
9
  # Go here for more information about transfer acceleration:
9
10
  # [http://docs.aws.amazon.com/AmazonS3/latest/dev/transfer-acceleration.html](http://docs.aws.amazon.com/AmazonS3/latest/dev/transfer-acceleration.html)
10
11
  class Accelerate < Seahorse::Client::Plugin
11
-
12
- option(:use_accelerate_endpoint,
12
+ option(
13
+ :use_accelerate_endpoint,
13
14
  default: false,
14
15
  doc_type: 'Boolean',
15
16
  docstring: <<-DOCS)
16
17
  When set to `true`, accelerated bucket endpoints will be used
17
18
  for all object operations. You must first enable accelerate for
18
- each bucket. [Go here for more information](http://docs.aws.amazon.com/AmazonS3/latest/dev/transfer-acceleration.html).
19
+ each bucket. [Go here for more information](http://docs.aws.amazon.com/AmazonS3/latest/dev/transfer-acceleration.html).
19
20
  DOCS
20
21
 
21
22
  def add_handlers(handlers, config)
22
23
  operations = config.api.operation_names - [
23
- :create_bucket, :list_buckets, :delete_bucket,
24
+ :create_bucket, :list_buckets, :delete_bucket
24
25
  ]
25
- handlers.add(OptionHandler, step: :initialize, operations: operations)
26
- handlers.add(AccelerateHandler, step: :build, priority: 0, operations: operations)
26
+ # Need 2 handlers so that the context can be set for other plugins
27
+ # and to remove :use_accelerate_endpoint from the params.
28
+ handlers.add(
29
+ OptionHandler, step: :initialize, operations: operations
30
+ )
31
+ handlers.add(
32
+ AccelerateHandler, step: :build, priority: 11, operations: operations
33
+ )
27
34
  end
28
35
 
29
36
  # @api private
30
37
  class OptionHandler < Seahorse::Client::Handler
31
38
  def call(context)
32
- accelerate = context.params.delete(:use_accelerate_endpoint)
39
+ # Support client configuration and per-operation configuration
40
+ if context.params.is_a?(Hash)
41
+ accelerate = context.params.delete(:use_accelerate_endpoint)
42
+ end
33
43
  accelerate = context.config.use_accelerate_endpoint if accelerate.nil?
44
+ # Raise if :endpoint and accelerate are both provided
45
+ if accelerate && !context.config.regional_endpoint
46
+ raise ArgumentError,
47
+ 'Cannot use both :use_accelerate_endpoint and :endpoint'
48
+ end
49
+ # Raise if :use_fips_endpoint and accelerate are both provided
50
+ if accelerate && context.config.use_fips_endpoint
51
+ raise ArgumentError,
52
+ 'Cannot use both :use_accelerate_endpoint and '\
53
+ ':use_fips_endpoint'
54
+ end
34
55
  context[:use_accelerate_endpoint] = accelerate
35
56
  @handler.call(context)
36
57
  end
@@ -38,39 +59,24 @@ each bucket. [Go here for more information](http://docs.aws.amazon.com/AmazonS3
38
59
 
39
60
  # @api private
40
61
  class AccelerateHandler < Seahorse::Client::Handler
41
-
42
62
  def call(context)
43
- if context[:use_accelerate_endpoint]
44
- if context[:use_dualstack_endpoint]
45
- use_combined_accelerate_dualstack_endpoint(context)
46
- else
47
- use_accelerate_endpoint(context)
48
- end
63
+ if context.config.regional_endpoint && context[:use_accelerate_endpoint]
64
+ dualstack = !!context[:use_dualstack_endpoint]
65
+ use_accelerate_endpoint(context, dualstack)
49
66
  end
50
67
  @handler.call(context)
51
68
  end
52
69
 
53
70
  private
54
71
 
55
- def use_accelerate_endpoint(context)
72
+ def use_accelerate_endpoint(context, dualstack)
56
73
  bucket_name = context.params[:bucket]
57
74
  validate_bucket_name!(bucket_name)
58
75
  endpoint = URI.parse(context.http_request.endpoint.to_s)
59
76
  endpoint.scheme = 'https'
60
77
  endpoint.port = 443
61
- endpoint.host = "#{bucket_name}.s3-accelerate.amazonaws.com"
62
- context.http_request.endpoint = endpoint.to_s
63
- # s3 accelerate endpoint doesn't work with 'expect' header
64
- context.http_request.headers.delete('expect')
65
- end
66
-
67
- def use_combined_accelerate_dualstack_endpoint(context)
68
- bucket_name = context.params[:bucket]
69
- validate_bucket_name!(bucket_name)
70
- endpoint = URI.parse(context.http_request.endpoint.to_s)
71
- endpoint.scheme = 'https'
72
- endpoint.port = 443
73
- endpoint.host = "#{bucket_name}.s3-accelerate.dualstack.amazonaws.com"
78
+ endpoint.host = "#{bucket_name}.s3-accelerate"\
79
+ "#{'.dualstack' if dualstack}.amazonaws.com"
74
80
  context.http_request.endpoint = endpoint.to_s
75
81
  # s3 accelerate endpoint doesn't work with 'expect' header
76
82
  context.http_request.headers.delete('expect')
@@ -78,17 +84,11 @@ each bucket. [Go here for more information](http://docs.aws.amazon.com/AmazonS3
78
84
 
79
85
  def validate_bucket_name!(bucket_name)
80
86
  unless BucketDns.dns_compatible?(bucket_name, _ssl = true)
81
- msg = "unable to use `accelerate: true` on buckets with "
82
- msg << "non-DNS compatible names"
83
- raise ArgumentError, msg
84
- end
85
- if bucket_name.include?('.')
86
- msg = "unable to use `accelerate: true` on buckets with dots"
87
- msg << "in their name: #{bucket_name.inspect}"
88
- raise ArgumentError, msg
87
+ raise ArgumentError,
88
+ 'Unable to use `use_accelerate_endpoint: true` on buckets '\
89
+ 'with non-DNS compatible names.'
89
90
  end
90
91
  end
91
-
92
92
  end
93
93
  end
94
94
  end