Skip to content

feat: implements AWS signature version 4 for signing requests #622

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
busunkim96 merged 15 commits into from
Oct 9, 2020
Merged

feat: implements AWS signature version 4 for signing requests #622

busunkim96 merged 15 commits into from
Oct 9, 2020

Conversation

@bojeil-google
Copy link
Contributor

@bojeil-google bojeil-google commented Oct 8, 2020

Implements the AWS signature version 4 for signing requests based on:
https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html

It will be used to generate signed requests to AWS GetCallerIdentity API.
https://docs.aws.amazon.com/STS/latest/APIReference/API_GetCallerIdentity.html

This API is used to securely return details about the IAM user or role whose
credentials are used to call the operation.

The majority of the test cases are using the AWS SDK test fixtures.

busunkim96 and others added 12 commits September 2, 2020 14:55
@busunkim96 @tseaver
refactor: split 'with_quota_project' into separate base class (#561)
41599ae 
Co-authored-by: Tres Seaver <[email protected]>
@arithmetic1728
fix: dummy commit to trigger a auto release (#597)
d32f7df
@release-please
chore: release 1.21.1 (#599)
892dc37 
* chore: updated CHANGELOG.md [ci skip]

* chore: updated setup.cfg [ci skip]

* chore: updated setup.py

Co-authored-by: release-please[bot] <55107282+release-please[bot]@users.noreply.github.com>
@busunkim96
fix: migrate signBlob to iamcredentials.googleapis.com (#600)
694d83f 
Migrate signBlob from iam.googleapis.com to iamcredentials.googleapis.com.

This API is deprecated and will be shutdown in one year.

This is used google.auth.iam.Signer.
Added a system_test to sanity check the implementation.
@release-please
chore: release 1.21.2 (#601)
b921a0a 
Co-authored-by: release-please[bot] <55107282+release-please[bot]@users.noreply.github.com>
@wescpy
fix: fix expiry for to_json() (#589)
d0e0aba 
* This patch for </issues/501> includes the following fixes:

- The access token is always set to `None`, so the fix involves using (the access) `token` from the saved JSON credentials file.
- For refresh needs, `expiry` also needs to be saved via `to_json()`.
    - DUMP: As `expiry` is a `datetime.datetime` object, serialize to `datetime.isoformat()` in the same [`oauth2client` format](https://github.com/googleapis/oauth2client/blob/master/oauth2client/client.py#L55) for consistency.
    - LOAD: Add code to restore `expiry` back to `datetime.datetime` object when imported.
    - LOAD: If `expiry` was unsaved, automatically set it as expired so refresh takes place.
- Minor `scopes` updates
    - DUMP: Add property for `scopes` so `to_json()` can grab it
    - LOAD: `scopes` may be saved as a string instead of a JSON array (Python list), so ensure it is Sequence[str] when imported.
@busunkim96
chore: add default CODEOWNERS (#609)
da3526f
@release-please
chore: release 1.21.3 (#607)
cc91e75
@crwilcox @anibadde
feat: add asyncio based auth flow (#612)
7e15258 
* feat: asyncio http request logic and asynchronous credentials logic  (#572)

Co-authored-by: Anirudh Baddepudi <[email protected]>
@release-please
chore: release 1.22.0 (#615)
ee5617c 
Co-authored-by: release-please[bot] <55107282+release-please[bot]@users.noreply.github.com>
@bojeil-google
Merge remote-tracking branch 'upstream/byoid'
ea6c6e6
@bojeil-google
feat: implements AWS signature version 4 for signing requests
945fd72 
Implements the AWS signature version 4 for signing requests based on:
https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html
@bojeil-google bojeil-google requested a review from a team as a code owner October 8, 2020 06:03
@google-cla
Copy link

google-cla bot commented Oct 8, 2020

We found a Contributor License Agreement for you (the sender of this pull request), but were unable to find agreements for all the commit author(s) or Co-authors. If you authored these, maybe you used a different email address in the git commits than was used to sign the CLA (login here to double check)? If these were authored by someone else, then they will need to sign a CLA as well, and confirm that they're okay with these being contributed to Google.
In order to pass this check, please resolve this problem and then comment @googlebot I fixed it.. If the bot doesn't comment, it means it doesn't think anything has changed.

ℹ️ Googlers: Go here for more info.

@google-cla google-cla bot added the cla: no This human has *not* signed the Contributor License Agreement. label Oct 8, 2020
@google-cla
Copy link

google-cla bot commented Oct 8, 2020

We found a Contributor License Agreement for you (the sender of this pull request), but were unable to find agreements for all the commit author(s) or Co-authors. If you authored these, maybe you used a different email address in the git commits than was used to sign the CLA (login here to double check)? If these were authored by someone else, then they will need to sign a CLA as well, and confirm that they're okay with these being contributed to Google.
In order to pass this check, please resolve this problem and then comment @googlebot I fixed it.. If the bot doesn't comment, it means it doesn't think anything has changed.

ℹ️ Googlers: Go here for more info.

@google-cla
Copy link

google-cla bot commented Oct 8, 2020

We found a Contributor License Agreement for you (the sender of this pull request), but were unable to find agreements for all the commit author(s) or Co-authors. If you authored these, maybe you used a different email address in the git commits than was used to sign the CLA (login here to double check)? If these were authored by someone else, then they will need to sign a CLA as well, and confirm that they're okay with these being contributed to Google.
In order to pass this check, please resolve this problem and then comment @googlebot I fixed it.. If the bot doesn't comment, it means it doesn't think anything has changed.

ℹ️ Googlers: Go here for more info.

@busunkim96 busunkim96 added cla: yes This human has signed the Contributor License Agreement. and removed cla: no This human has *not* signed the Contributor License Agreement. labels Oct 8, 2020
busunkim96
busunkim96 suggested changes Oct 8, 2020
View reviewed changes
@google-cla
Copy link

google-cla bot commented Oct 9, 2020

We found a Contributor License Agreement for you (the sender of this pull request), but were unable to find agreements for all the commit author(s) or Co-authors. If you authored these, maybe you used a different email address in the git commits than was used to sign the CLA (login here to double check)? If these were authored by someone else, then they will need to sign a CLA as well, and confirm that they're okay with these being contributed to Google.
In order to pass this check, please resolve this problem and then comment @googlebot I fixed it.. If the bot doesn't comment, it means it doesn't think anything has changed.

ℹ️ Googlers: Go here for more info.

@google-cla google-cla bot added cla: no This human has *not* signed the Contributor License Agreement. and removed cla: yes This human has signed the Contributor License Agreement. labels Oct 9, 2020
@busunkim96 busunkim96 added cla: yes This human has signed the Contributor License Agreement. and removed cla: no This human has *not* signed the Contributor License Agreement. labels Oct 9, 2020
@busunkim96 busunkim96 merged commit 6477a8b into googleapis:byoid Oct 9, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@busunkim96 busunkim96 busunkim96 approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

cla: yes This human has signed the Contributor License Agreement.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@bojeil-google @busunkim96 @arithmetic1728 @wescpy @crwilcox