Renaming keys as auth, working towards signature v4 support for all put objects

pkg/auth/auth.go

@@ -0,0 +1,51 @@
+/*
+ * Minimalist Object Storage, (C) 2015 Minio, Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package auth
+
+import (
+	"crypto/rand"
+	"encoding/base64"
+)
+
+// Static alphaNumeric table used for generating unique keys
+var alphaNumericTable = []byte("0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZ")
+
+// GenerateAccessKeyID - generate random alpha numeric value using only uppercase characters
+// takes input as size in integer
+func GenerateAccessKeyID(size int) ([]byte, error) {
+	alpha := make([]byte, size)
+	_, err := rand.Read(alpha)
+	if err != nil {
+		return nil, err
+	}
+
+	for i := 0; i < size; i++ {
+		alpha[i] = alphaNumericTable[alpha[i]%byte(len(alphaNumericTable))]
+	}
+	return alpha, nil
+}
+
+// GenerateSecretAccessKey - generate random base64 numeric value from a random seed.
+func GenerateSecretAccessKey(size int) ([]byte, error) {
+	rb := make([]byte, size)
+	_, err := rand.Read(rb)
+	if err != nil {
+		return nil, err
+	}
+
+	return []byte(base64.StdEncoding.EncodeToString(rb))[:size], nil
+}

pkg/auth/auth_test.go

@@ -0,0 +1,44 @@
+/*
+ * Minimalist Object Storage, (C) 2015 Minio, Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package auth_test
+
+import (
+	"testing"
+
+	. "github.com/minio/check"
+	"github.com/minio/minio/pkg/auth"
+)
+
+func Test(t *testing.T) { TestingT(t) }
+
+type MySuite struct{}
+
+var _ = Suite(&MySuite{})
+
+func (s *MySuite) TestAuth(c *C) {
+	secretID, err := auth.GenerateSecretAccessKey(auth.MinioSecretID)
+	c.Assert(err, IsNil)
+
+	accessID, err := auth.GenerateAccessKeyID(auth.MinioAccessID)
+	c.Assert(err, IsNil)
+
+	c.Assert(len(secretID), Equals, auth.MinioSecretID)
+	c.Assert(len(accessID), Equals, auth.MinioAccessID)
+
+	c.Log(string(secretID))
+	c.Log(string(accessID))
+}

pkg/auth/common.go

@@ -0,0 +1,45 @@
+/*
+ * Minimalist Object Storage, (C) 2015 Minio, Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package auth
+
+import "regexp"
+
+// AccessID and SecretID length in bytes
+const (
+	MinioAccessID = 20
+	MinioSecretID = 40
+)
+
+/// helpers
+
+// IsValidSecretKey - validate secret key
+func IsValidSecretKey(secretAccessKey string) bool {
+	if secretAccessKey == "" {
+		return true
+	}
+	regex := regexp.MustCompile("^.{40}$")
+	return regex.MatchString(secretAccessKey)
+}
+
+// IsValidAccessKey - validate access key
+func IsValidAccessKey(accessKeyID string) bool {
+	if accessKeyID == "" {
+		return true
+	}
+	regex := regexp.MustCompile("^[A-Z0-9\\-\\.\\_\\~]{20}$")
+	return regex.MatchString(accessKeyID)
+}