carrierwave_direct 0.0.17 → 1.0.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/.travis.yml +5 -9
- data/Changelog.md +3 -4
- data/README.md +6 -2
- data/gemfiles/{3.2.gemfile → 4.2.gemfile} +2 -2
- data/gemfiles/{4.0.gemfile → 5.1.gemfile} +2 -2
- data/lib/carrierwave_direct/form_builder.rb +4 -2
- data/lib/carrierwave_direct/uploader.rb +41 -7
- data/lib/carrierwave_direct/version.rb +1 -1
- data/spec/form_builder_spec.rb +13 -7
- data/spec/orm/activerecord_spec.rb +6 -2
- data/spec/orm/indirect_activerecord_spec.rb +7 -1
- data/spec/uploader_spec.rb +16 -4
- metadata +3 -4
- data/gemfiles/4.1.gemfile +0 -13
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: b64419d902b8c1afba920fafe9a7029dd4c3d94a
|
|
4
|
+
data.tar.gz: 5dfbb28ea14db2c7ae9bd665192c009534cbef90
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: c8f39ac6ced22656b3a96821356d92333f9ca141f215bb66125b3d2a8fa282718341adb133b0baa33308f9268cf1ef2014e59e3e21bb1f7949a389f170b4c1be
|
|
7
|
+
data.tar.gz: b2e2fe378dfed399fc011fb4ebcb8a94d5d4ffe4cb4c982ed71b918aa53fa7767a1b1c6d226e6fda5ad2169af24af2a43c83b80b300650367ad49aa0e6faa9d6
|
data/.travis.yml
CHANGED
|
@@ -1,16 +1,12 @@
|
|
|
1
1
|
rvm:
|
|
2
|
-
- 2.
|
|
3
|
-
- 2.
|
|
4
|
-
- 2.
|
|
5
|
-
install:
|
|
6
|
-
- 'travis_retry bundle install'
|
|
2
|
+
- 2.3.0
|
|
3
|
+
- 2.4.0
|
|
4
|
+
- 2.5.0
|
|
7
5
|
script: 'bundle exec rspec spec'
|
|
8
6
|
gemfile:
|
|
9
7
|
- Gemfile
|
|
10
|
-
- gemfiles/
|
|
11
|
-
- gemfiles/
|
|
12
|
-
- gemfiles/4.1.gemfile
|
|
8
|
+
- gemfiles/4.2.gemfile
|
|
9
|
+
- gemfiles/5.1.gemfile
|
|
13
10
|
# Move to containerized travis, see http://docs.travis-ci.com/user/migrating-from-legacy
|
|
14
11
|
sudo: false
|
|
15
12
|
cache: bundler
|
|
16
|
-
|
data/Changelog.md
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
|
-
### 0.0
|
|
1
|
+
### 1.0.0
|
|
2
2
|
|
|
3
|
-
|
|
4
|
-
*
|
|
3
|
+
Features:
|
|
4
|
+
* Upgraded signing algorithm to use [AWS V4 POST authentication](http://docs.aws.amazon.com/AmazonS3/latest/API/sigv4-authentication-HTTPPOST.html). This is a breaking change if you are constructing your own upload forms or submitting your own POST requests. See the Sinatra section of the README for a summary of the new fields required in your V4 POST request. (Fran Worley @fran-worley)
|
|
5
5
|
|
|
6
6
|
### 0.0.16
|
|
7
7
|
|
|
@@ -127,4 +127,3 @@ Misc:
|
|
|
127
127
|
### 0.0.1
|
|
128
128
|
|
|
129
129
|
[Full Changes](https://github.com/dwilkie/carrierwave_direct/compare/e68498587a4e4209d121512dbb0df529e15e9282...v0.0.1)
|
|
130
|
-
|
data/README.md
CHANGED
|
@@ -113,15 +113,19 @@ end
|
|
|
113
113
|
```
|
|
114
114
|
```haml
|
|
115
115
|
# index.haml
|
|
116
|
+
# Now using AWS POST authentication V4
|
|
117
|
+
# See http://docs.aws.amazon.com/AmazonS3/latest/API/sigv4-authentication-HTTPPOST.html for more information
|
|
116
118
|
|
|
117
119
|
%form{:action => @uploader.direct_fog_url, :method => "post", :enctype => "multipart/form-data"}
|
|
118
120
|
%input{:name => "utf8", :type => "hidden"}
|
|
119
121
|
%input{:type => "hidden", :name => "key", :value => @uploader.key}
|
|
120
|
-
%input{:type => "hidden", :name => "AWSAccessKeyId", :value => @uploader.aws_access_key_id}
|
|
121
122
|
%input{:type => "hidden", :name => "acl", :value => @uploader.acl}
|
|
122
123
|
%input{:type => "hidden", :name => "success_action_redirect", :value => @uploader.success_action_redirect}
|
|
123
124
|
%input{:type => "hidden", :name => "policy", :value => @uploader.policy}
|
|
124
|
-
%input{:type => "hidden", :name => "
|
|
125
|
+
%input{:type => "hidden", :name => "x-amz-algorithm", :value => @uploader.algorithm}
|
|
126
|
+
%input{:type => "hidden", :name => "x-amz-credential", :value => @uploader.credential}
|
|
127
|
+
%input{:type => "hidden", :name => "x-amz-date", :value => @uploader.date}
|
|
128
|
+
%input{:type => "hidden", :name => "x-amz-signature", :value => @uploader.signature}
|
|
125
129
|
%input{:name => "file", :type => "file"}
|
|
126
130
|
%input{:type => "submit", :value => "Upload to S3"}
|
|
127
131
|
```
|
|
@@ -4,9 +4,9 @@ gem "carrierwave", "~>0.11"
|
|
|
4
4
|
gem "fog-aws"
|
|
5
5
|
|
|
6
6
|
group :test do
|
|
7
|
-
gem "rspec", '3.0
|
|
7
|
+
gem "rspec", '~> 3.0'
|
|
8
8
|
gem "timecop"
|
|
9
|
-
gem "rails", "~>
|
|
9
|
+
gem "rails", "~>4.2.0"
|
|
10
10
|
gem "sqlite3", :platform => [:ruby, :mswin, :mingw]
|
|
11
11
|
gem "capybara"
|
|
12
12
|
# gem "activerecord-jdbcsqlite3-adapter", :platform => :jruby
|
|
@@ -4,9 +4,9 @@ gem "carrierwave", "~>0.11"
|
|
|
4
4
|
gem "fog-aws"
|
|
5
5
|
|
|
6
6
|
group :test do
|
|
7
|
-
gem "rspec", '3.0
|
|
7
|
+
gem "rspec", '~> 3.0'
|
|
8
8
|
gem "timecop"
|
|
9
|
-
gem "rails", "~>
|
|
9
|
+
gem "rails", "~>5.1.0"
|
|
10
10
|
gem "sqlite3", :platform => [:ruby, :mswin, :mingw]
|
|
11
11
|
gem "capybara"
|
|
12
12
|
# gem "activerecord-jdbcsqlite3-adapter", :platform => :jruby
|
|
@@ -31,10 +31,12 @@ module CarrierWaveDirect
|
|
|
31
31
|
|
|
32
32
|
def required_base_fields
|
|
33
33
|
hidden_field(:key, :name => "key") <<
|
|
34
|
-
hidden_field(:aws_access_key_id, :name => "AWSAccessKeyId") <<
|
|
35
34
|
hidden_field(:acl, :name => "acl") <<
|
|
36
35
|
hidden_field(:policy, :name => "policy") <<
|
|
37
|
-
hidden_field(:signature, :name => "
|
|
36
|
+
hidden_field(:signature, :name => "X-Amz-Signature") <<
|
|
37
|
+
hidden_field(:credential, :name => "X-Amz-Credential") <<
|
|
38
|
+
hidden_field(:algorithm, :name => "X-Amz-Algorithm") <<
|
|
39
|
+
hidden_field(:date, :name => "X-Amz-Date")
|
|
38
40
|
end
|
|
39
41
|
|
|
40
42
|
def content_type_field(options)
|
|
@@ -26,6 +26,11 @@ module CarrierWaveDirect
|
|
|
26
26
|
include CarrierWaveDirect::Uploader::ContentType
|
|
27
27
|
include CarrierWaveDirect::Uploader::DirectUrl
|
|
28
28
|
|
|
29
|
+
#ensure that region returns something. Since sig v4 it is required in the signing key & credentials
|
|
30
|
+
def region
|
|
31
|
+
defined?(super) ? super : "us-east-1"
|
|
32
|
+
end
|
|
33
|
+
|
|
29
34
|
def acl
|
|
30
35
|
fog_public ? 'public-read' : 'private'
|
|
31
36
|
end
|
|
@@ -35,20 +40,36 @@ module CarrierWaveDirect
|
|
|
35
40
|
options[:min_file_size] ||= min_file_size
|
|
36
41
|
options[:max_file_size] ||= max_file_size
|
|
37
42
|
|
|
43
|
+
@date ||= Time.now.utc.strftime("%Y%m%d")
|
|
44
|
+
@timestamp ||= Time.now.utc.strftime("%Y%m%dT%H%M%SZ")
|
|
38
45
|
@policy ||= generate_policy(options, &block)
|
|
39
46
|
end
|
|
40
47
|
|
|
48
|
+
def date
|
|
49
|
+
@timestamp ||= Time.now.utc.strftime("%Y%m%dT%H%M%SZ")
|
|
50
|
+
end
|
|
51
|
+
|
|
52
|
+
def algorithm
|
|
53
|
+
'AWS4-HMAC-SHA256'
|
|
54
|
+
end
|
|
55
|
+
|
|
56
|
+
def credential
|
|
57
|
+
@date ||= Time.now.utc.strftime("%Y%m%d")
|
|
58
|
+
"#{aws_access_key_id}/#{@date}/#{region}/s3/aws4_request"
|
|
59
|
+
end
|
|
60
|
+
|
|
41
61
|
def clear_policy!
|
|
42
62
|
@policy = nil
|
|
63
|
+
@date = nil
|
|
64
|
+
@timestamp = nil
|
|
43
65
|
end
|
|
44
66
|
|
|
45
67
|
def signature
|
|
46
|
-
|
|
47
|
-
|
|
48
|
-
|
|
49
|
-
|
|
50
|
-
|
|
51
|
-
).gsub("\n","")
|
|
68
|
+
OpenSSL::HMAC.hexdigest(
|
|
69
|
+
'sha256',
|
|
70
|
+
signing_key,
|
|
71
|
+
policy
|
|
72
|
+
)
|
|
52
73
|
end
|
|
53
74
|
|
|
54
75
|
def url_scheme_white_list
|
|
@@ -139,7 +160,9 @@ module CarrierWaveDirect
|
|
|
139
160
|
|
|
140
161
|
conditions << ["starts-with", "$utf8", ""] if options[:enforce_utf8]
|
|
141
162
|
conditions << ["starts-with", "$key", key.sub(/#{Regexp.escape(FILENAME_WILDCARD)}\z/, "")]
|
|
142
|
-
|
|
163
|
+
conditions << {'X-Amz-Algorithm' => algorithm}
|
|
164
|
+
conditions << {'X-Amz-Credential' => credential}
|
|
165
|
+
conditions << {'X-Amz-Date' => date}
|
|
143
166
|
conditions << ["starts-with", "$Content-Type", ""] if will_include_content_type
|
|
144
167
|
conditions << {"bucket" => fog_directory}
|
|
145
168
|
conditions << {"acl" => acl}
|
|
@@ -161,5 +184,16 @@ module CarrierWaveDirect
|
|
|
161
184
|
}.to_json
|
|
162
185
|
).gsub("\n","")
|
|
163
186
|
end
|
|
187
|
+
|
|
188
|
+
def signing_key(options = {})
|
|
189
|
+
@date ||= Time.now.utc.strftime("%Y%m%d")
|
|
190
|
+
#AWS Signature Version 4
|
|
191
|
+
kDate = OpenSSL::HMAC.digest('sha256', "AWS4" + aws_secret_access_key, @date)
|
|
192
|
+
kRegion = OpenSSL::HMAC.digest('sha256', kDate, region)
|
|
193
|
+
kService = OpenSSL::HMAC.digest('sha256', kRegion, 's3')
|
|
194
|
+
kSigning = OpenSSL::HMAC.digest('sha256', kService, "aws4_request")
|
|
195
|
+
|
|
196
|
+
kSigning
|
|
197
|
+
end
|
|
164
198
|
end
|
|
165
199
|
end
|
data/spec/form_builder_spec.rb
CHANGED
|
@@ -12,11 +12,13 @@ end
|
|
|
12
12
|
shared_examples_for 'hidden values form' do
|
|
13
13
|
hidden_fields = [
|
|
14
14
|
:key,
|
|
15
|
-
{:
|
|
15
|
+
{:credential => "X-Amz-Credential"},
|
|
16
|
+
{:algorithm => "X-Amz-Algorithm"},
|
|
17
|
+
{:date => "X-Amz-Date"},
|
|
18
|
+
{:signature => "X-Amz-Signature"},
|
|
16
19
|
:acl,
|
|
17
20
|
:success_action_redirect,
|
|
18
|
-
:policy
|
|
19
|
-
:signature
|
|
21
|
+
:policy
|
|
20
22
|
]
|
|
21
23
|
|
|
22
24
|
hidden_fields.each do |input|
|
|
@@ -60,19 +62,23 @@ describe CarrierWaveDirect::FormBuilder do
|
|
|
60
62
|
|
|
61
63
|
default_hidden_fields = [
|
|
62
64
|
:key,
|
|
63
|
-
{:
|
|
65
|
+
{:credential => "X-Amz-Credential"},
|
|
66
|
+
{:algorithm => "X-Amz-Algorithm"},
|
|
67
|
+
{:date => "X-Amz-Date"},
|
|
68
|
+
{:signature => "X-Amz-Signature"},
|
|
64
69
|
:acl,
|
|
65
70
|
:success_action_redirect,
|
|
66
71
|
:policy,
|
|
67
|
-
:signature
|
|
68
72
|
]
|
|
69
73
|
status_hidden_fields = [
|
|
70
74
|
:key,
|
|
71
|
-
{:
|
|
75
|
+
{:credential => "X-Amz-Credential"},
|
|
76
|
+
{:algorithm => "X-Amz-Algorithm"},
|
|
77
|
+
{:date => "X-Amz-Date"},
|
|
78
|
+
{:signature => "X-Amz-Signature"},
|
|
72
79
|
:acl,
|
|
73
80
|
:success_action_status,
|
|
74
81
|
:policy,
|
|
75
|
-
:signature
|
|
76
82
|
]
|
|
77
83
|
|
|
78
84
|
# http://aws.amazon.com/articles/1434?_encoding=UTF8
|
|
@@ -9,8 +9,12 @@ describe CarrierWaveDirect::ActiveRecord do
|
|
|
9
9
|
:adapter => 'sqlite3',
|
|
10
10
|
:database => ':memory:'
|
|
11
11
|
}
|
|
12
|
-
|
|
13
|
-
|
|
12
|
+
if ActiveRecord::VERSION::MAJOR >= 5
|
|
13
|
+
migration_class = ::ActiveRecord::Migration[5.0]
|
|
14
|
+
else
|
|
15
|
+
migration_class = ::ActiveRecord::Migration
|
|
16
|
+
end
|
|
17
|
+
class TestMigration < migration_class
|
|
14
18
|
def self.up
|
|
15
19
|
create_table :parties, :force => true do |t|
|
|
16
20
|
t.column :video, :string
|
|
@@ -10,7 +10,13 @@ describe CarrierWave::ActiveRecord do
|
|
|
10
10
|
:database => ':memory:'
|
|
11
11
|
}
|
|
12
12
|
|
|
13
|
-
|
|
13
|
+
if ActiveRecord::VERSION::MAJOR >= 5
|
|
14
|
+
migration_class = ::ActiveRecord::Migration[5.0]
|
|
15
|
+
else
|
|
16
|
+
migration_class = ::ActiveRecord::Migration
|
|
17
|
+
end
|
|
18
|
+
|
|
19
|
+
class OtherTestMigration < migration_class
|
|
14
20
|
def self.up
|
|
15
21
|
create_table :other_parties, :force => true do |t|
|
|
16
22
|
t.column :video, :string
|
data/spec/uploader_spec.rb
CHANGED
|
@@ -275,6 +275,7 @@ describe CarrierWaveDirect::Uploader do
|
|
|
275
275
|
end
|
|
276
276
|
|
|
277
277
|
# http://aws.amazon.com/articles/1434?_encoding=UTF8
|
|
278
|
+
#http://docs.aws.amazon.com/AmazonS3/latest/API/sigv4-UsingHTTPPOST.html
|
|
278
279
|
describe "#policy" do
|
|
279
280
|
|
|
280
281
|
|
|
@@ -478,13 +479,24 @@ describe CarrierWaveDirect::Uploader do
|
|
|
478
479
|
expect(subject.signature).to_not include("\n")
|
|
479
480
|
end
|
|
480
481
|
|
|
481
|
-
it "should return a
|
|
482
|
-
expect(
|
|
483
|
-
OpenSSL::Digest.new('
|
|
484
|
-
subject.
|
|
482
|
+
it "should return a HMAC hexdigest encoded 'sha256' hash of the secret key and policy document" do
|
|
483
|
+
expect(subject.signature).to eq OpenSSL::HMAC.hexdigest(
|
|
484
|
+
OpenSSL::Digest.new('sha256'),
|
|
485
|
+
subject.send(:signing_key), subject.policy
|
|
485
486
|
)
|
|
486
487
|
end
|
|
487
488
|
end
|
|
489
|
+
#http://docs.aws.amazon.com/AmazonS3/latest/API/sigv4-UsingHTTPPOST.html
|
|
490
|
+
describe "#signature_key" do
|
|
491
|
+
it "should include correct signature_key elements" do
|
|
492
|
+
kDate = OpenSSL::HMAC.digest('sha256', "AWS4" + subject.aws_secret_access_key, Time.now.utc.strftime("%Y%m%d"))
|
|
493
|
+
kRegion = OpenSSL::HMAC.digest('sha256', kDate, subject.region)
|
|
494
|
+
kService = OpenSSL::HMAC.digest('sha256', kRegion, 's3')
|
|
495
|
+
kSigning = OpenSSL::HMAC.digest('sha256', kService, "aws4_request")
|
|
496
|
+
|
|
497
|
+
expect(subject.send(:signing_key)).to eq (kSigning)
|
|
498
|
+
end
|
|
499
|
+
end
|
|
488
500
|
|
|
489
501
|
|
|
490
502
|
# note that 'video' is hardcoded into the MountedClass support file
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: carrierwave_direct
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.0
|
|
4
|
+
version: 1.0.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- David Wilkie
|
|
@@ -123,9 +123,8 @@ files:
|
|
|
123
123
|
- README.md
|
|
124
124
|
- Rakefile
|
|
125
125
|
- carrierwave_direct.gemspec
|
|
126
|
-
- gemfiles/
|
|
127
|
-
- gemfiles/
|
|
128
|
-
- gemfiles/4.1.gemfile
|
|
126
|
+
- gemfiles/4.2.gemfile
|
|
127
|
+
- gemfiles/5.1.gemfile
|
|
129
128
|
- lib/carrierwave_direct.rb
|
|
130
129
|
- lib/carrierwave_direct/action_view_extensions/form_helper.rb
|
|
131
130
|
- lib/carrierwave_direct/form_builder.rb
|
data/gemfiles/4.1.gemfile
DELETED
|
@@ -1,13 +0,0 @@
|
|
|
1
|
-
source "https://rubygems.org"
|
|
2
|
-
|
|
3
|
-
gem "carrierwave", "~>0.11"
|
|
4
|
-
gem "fog-aws"
|
|
5
|
-
|
|
6
|
-
group :test do
|
|
7
|
-
gem "rspec", '3.0.0'
|
|
8
|
-
gem "timecop"
|
|
9
|
-
gem "rails", "~>4.1.0"
|
|
10
|
-
gem "sqlite3", :platform => [:ruby, :mswin, :mingw]
|
|
11
|
-
gem "capybara"
|
|
12
|
-
# gem "activerecord-jdbcsqlite3-adapter", :platform => :jruby
|
|
13
|
-
end
|