aws-crt-cpp/_sigv4_signing_8h_source.html

#pragma once

#include <aws/crt/Exports.h>


#include <aws/crt/DateTime.h>

#include <aws/crt/Types.h>

#include <aws/crt/auth/Signing.h>


struct aws_signing_config_aws;


namespace Aws

{

    namespace Crt

    {

        namespace Auth

        {

            class Credentials;

            class ICredentialsProvider;


            enum class SigningAlgorithm

            {

                SigV4 = AWS_SIGNING_ALGORITHM_V4,


                SigV4A = AWS_SIGNING_ALGORITHM_V4_ASYMMETRIC,

            };


            enum class SignatureType

            {

                HttpRequestViaHeaders = AWS_ST_HTTP_REQUEST_HEADERS,


                HttpRequestViaQueryParams = AWS_ST_HTTP_REQUEST_QUERY_PARAMS,


                HttpRequestChunk = AWS_ST_HTTP_REQUEST_CHUNK,


                HttpRequestEvent = AWS_ST_HTTP_REQUEST_EVENT,

            };


            namespace SignedBodyValue

            {

                AWS_CRT_CPP_API const char *EmptySha256Str();


                AWS_CRT_CPP_API const char *UnsignedPayloadStr();


                AWS_CRT_CPP_API const char *StreamingAws4HmacSha256PayloadStr();

                AWS_CRT_CPP_API const char *StreamingAws4HmacSha256EventsStr();


                AWS_CRT_CPP_API extern const char *UnsignedPayload;

                AWS_CRT_CPP_API extern const char *EmptySha256;

                AWS_CRT_CPP_API extern const char *StreamingAws4HmacSha256Payload;

                AWS_CRT_CPP_API extern const char *StreamingAws4HmacSha256Events;

            } // namespace SignedBodyValue


            enum class SignedBodyHeaderType

            {

                None = AWS_SBHT_NONE,


                XAmzContentSha256 = AWS_SBHT_X_AMZ_CONTENT_SHA256,

            };


            using ShouldSignHeaderCb = bool (*)(const Crt::ByteCursor *, void *);


            class AWS_CRT_CPP_API AwsSigningConfig : public ISigningConfig

            {

              public:

                AwsSigningConfig(Allocator *allocator = ApiAllocator());

                virtual ~AwsSigningConfig();


                virtual SigningConfigType GetType() const noexcept override { return SigningConfigType::Aws; }


                SigningAlgorithm GetSigningAlgorithm() const noexcept;


                void SetSigningAlgorithm(SigningAlgorithm algorithm) noexcept;


                SignatureType GetSignatureType() const noexcept;


                void SetSignatureType(SignatureType signatureType) noexcept;


                const Crt::String &GetRegion() const noexcept;


                void SetRegion(const Crt::String &region) noexcept;


                const Crt::String &GetService() const noexcept;


                void SetService(const Crt::String &service) noexcept;


                DateTime GetSigningTimepoint() const noexcept;


                void SetSigningTimepoint(const DateTime &date) noexcept;


                /*

                 * We assume the uri will be encoded once in preparation for transmission.  Certain services

                 * do not decode before checking signature, requiring us to actually double-encode the uri in the

                 * canonical request in order to pass a signature check.

                 */


                bool GetUseDoubleUriEncode() const noexcept;


                void SetUseDoubleUriEncode(bool useDoubleUriEncode) noexcept;


                bool GetShouldNormalizeUriPath() const noexcept;


                void SetShouldNormalizeUriPath(bool shouldNormalizeUriPath) noexcept;


                bool GetOmitSessionToken() const noexcept;


                void SetOmitSessionToken(bool omitSessionToken) noexcept;


                ShouldSignHeaderCb GetShouldSignHeaderCallback() const noexcept;


                void SetShouldSignHeaderCallback(ShouldSignHeaderCb shouldSignHeaderCb) noexcept;


                void *GetShouldSignHeaderUserData() const noexcept;


                void SetShouldSignHeaderUserData(void *userData) noexcept;


                const Crt::String &GetSignedBodyValue() const noexcept;


                void SetSignedBodyValue(const Crt::String &signedBodyValue) noexcept;


                SignedBodyHeaderType GetSignedBodyHeader() const noexcept;


                void SetSignedBodyHeader(SignedBodyHeaderType signedBodyHeader) noexcept;


                uint64_t GetExpirationInSeconds() const noexcept;


                void SetExpirationInSeconds(uint64_t expirationInSeconds) noexcept;


                /*

                 * For Sigv4 signing, either the credentials provider or the credentials must be set.

                 * Credentials, if set, takes precedence over the provider.

                 */


                const std::shared_ptr<ICredentialsProvider> &GetCredentialsProvider() const noexcept;


                void SetCredentialsProvider(const std::shared_ptr<ICredentialsProvider> &credsProvider) noexcept;


                const std::shared_ptr<Credentials> &GetCredentials() const noexcept;


                void SetCredentials(const std::shared_ptr<Credentials> &credentials) noexcept;


                const struct aws_signing_config_aws *GetUnderlyingHandle() const noexcept;


              private:

                Allocator *m_allocator;

                std::shared_ptr<ICredentialsProvider> m_credentialsProvider;

                std::shared_ptr<Credentials> m_credentials;

                struct aws_signing_config_aws m_config;

                Crt::String m_signingRegion;

                Crt::String m_serviceName;

                Crt::String m_signedBodyValue;

            };


            class AWS_CRT_CPP_API Sigv4HttpRequestSigner : public IHttpRequestSigner

            {

              public:

                Sigv4HttpRequestSigner(Allocator *allocator = ApiAllocator());

                virtual ~Sigv4HttpRequestSigner() = default;


                bool IsValid() const override { return true; }


                virtual bool SignRequest(

                    const std::shared_ptr<Aws::Crt::Http::HttpRequest> &request,

                    const ISigningConfig &config,

                    const OnHttpRequestSigningComplete &completionCallback) override;


              private:

                Allocator *m_allocator;

            };


        } // namespace Auth

    } // namespace Crt

} // namespace Aws

DateTime.h

Exports.h

AWS_CRT_CPP_API
#define AWS_CRT_CPP_API
Definition Exports.h:36

Signing.h

Types.h

Aws::Crt::Auth::AwsSigningConfig
Definition Sigv4Signing.h:135

Aws::Crt::Auth::AwsSigningConfig::GetType
virtual SigningConfigType GetType() const noexcept override
Definition Sigv4Signing.h:140

Aws::Crt::Auth::Credentials
Definition Credentials.h:38

Aws::Crt::Auth::ICredentialsProvider
Definition Credentials.h:112

Aws::Crt::Auth::IHttpRequestSigner
Definition Signing.h:68

Aws::Crt::Auth::ISigningConfig
Definition Signing.h:46

Aws::Crt::Auth::Sigv4HttpRequestSigner
Definition Sigv4Signing.h:332

Aws::Crt::Auth::Sigv4HttpRequestSigner::IsValid
bool IsValid() const override
Definition Sigv4Signing.h:337

Aws::Crt::Auth::Sigv4HttpRequestSigner::~Sigv4HttpRequestSigner
virtual ~Sigv4HttpRequestSigner()=default

Aws::Crt::DateTime
Definition DateTime.h:53

Aws::Crt::Auth::SignedBodyValue::StreamingAws4HmacSha256Payload
AWS_CRT_CPP_API const char * StreamingAws4HmacSha256Payload
Definition Sigv4Signing.cpp:35

Aws::Crt::Auth::SignedBodyValue::StreamingAws4HmacSha256Events
AWS_CRT_CPP_API const char * StreamingAws4HmacSha256Events
Definition Sigv4Signing.cpp:41

Aws::Crt::Auth::SignedBodyValue::EmptySha256Str
AWS_CRT_CPP_API const char * EmptySha256Str()
Definition Sigv4Signing.cpp:24

Aws::Crt::Auth::SignedBodyValue::StreamingAws4HmacSha256EventsStr
AWS_CRT_CPP_API const char * StreamingAws4HmacSha256EventsStr()
Definition Sigv4Signing.cpp:42

Aws::Crt::Auth::SignedBodyValue::UnsignedPayload
AWS_CRT_CPP_API const char * UnsignedPayload
Definition Sigv4Signing.cpp:29

Aws::Crt::Auth::SignedBodyValue::StreamingAws4HmacSha256PayloadStr
AWS_CRT_CPP_API const char * StreamingAws4HmacSha256PayloadStr()
Definition Sigv4Signing.cpp:36

Aws::Crt::Auth::SignedBodyValue::UnsignedPayloadStr
AWS_CRT_CPP_API const char * UnsignedPayloadStr()
Definition Sigv4Signing.cpp:30

Aws::Crt::Auth::SignedBodyValue::EmptySha256
AWS_CRT_CPP_API const char * EmptySha256
Definition Sigv4Signing.cpp:23

Aws::Crt::Auth::SigningAlgorithm
SigningAlgorithm
Definition Sigv4Signing.h:28

Aws::Crt::Auth::SigningAlgorithm::SigV4A
@ SigV4A

Aws::Crt::Auth::SigningAlgorithm::SigV4
@ SigV4

Aws::Crt::Auth::SigningConfigType
SigningConfigType
Definition Signing.h:30

Aws::Crt::Auth::SignedBodyHeaderType
SignedBodyHeaderType
Definition Sigv4Signing.h:116

Aws::Crt::Auth::SignedBodyHeaderType::None
@ None

Aws::Crt::Auth::SignedBodyHeaderType::XAmzContentSha256
@ XAmzContentSha256

Aws::Crt::Auth::OnHttpRequestSigningComplete
std::function< void(const std::shared_ptr< Aws::Crt::Http::HttpRequest > &, int)> OnHttpRequestSigningComplete
Definition Signing.h:39

Aws::Crt::Auth::ShouldSignHeaderCb
bool(*)(const Crt::ByteCursor *, void *) ShouldSignHeaderCb
Definition Sigv4Signing.h:128

Aws::Crt::Auth::SignatureType
SignatureType
Definition Sigv4Signing.h:46

Aws::Crt::Auth::SignatureType::HttpRequestViaHeaders
@ HttpRequestViaHeaders

Aws::Crt::Auth::SignatureType::HttpRequestViaQueryParams
@ HttpRequestViaQueryParams

Aws::Crt::Auth::SignatureType::HttpRequestChunk
@ HttpRequestChunk

Aws::Crt::Auth::SignatureType::HttpRequestEvent
@ HttpRequestEvent

Aws::Crt::ByteCursor
aws_byte_cursor ByteCursor
Definition Types.h:31

Aws::Crt::Allocator
aws_allocator Allocator
Definition Allocator.h:14

Aws::Crt::ApiAllocator
AWS_CRT_CPP_API Allocator * ApiAllocator() noexcept
Definition Allocator.cpp:24

Aws::Crt::String
std::basic_string< char, std::char_traits< char >, StlAllocator< char > > String
Definition Types.h:45

Aws
Definition Allocator.h:11

std
Definition StringView.h:862