Make signUrl take long duration and TimeUnit parameter

mziccard · mziccard · commit d60d3f458c4f · 2015-10-13T08:35:41.000+02:00
- Add TimeSource abstract class to wrap clock functionalities (waiting for Java8 Clock)
- Add timeSource setter to StorageOptions builder and getter to StorageOptions
- Update StorageImplTest and ITStorageTest
- Update javadoc for Blob/Storage signUrl
diff --git a/gcloud-java-storage/src/main/java/com/google/gcloud/storage/Blob.java b/gcloud-java-storage/src/main/java/com/google/gcloud/storage/Blob.java
@@ -32,6 +32,7 @@
 import java.util.Collections;
 import java.util.List;
 import java.util.Objects;
+import java.util.concurrent.TimeUnit;
 
 /**
  * A Google cloud storage object.
@@ -246,13 +247,15 @@ public BlobWriteChannel writer(BlobTargetOption... options) {
    * time period. This is particularly useful if you don't want publicly accessible blobs, but don't
    * want to require users to explicitly log in.
    *
-   * @param expirationTimeInSeconds the signed URL expiration (using epoch time)
-   * @param options signed url options
+   * @param duration time until the signed URL expires, expressed in {@code unit}. The finer
+   * granularity supported is 1 second
+   * @param unit time unit of the {@code duration} parameter
+   * @param options optional URL signing options
    * @return a signed URL for this bucket and the specified options
    * @see <a href="https://cloud.google.com/storage/docs/access-control#Signed-URLs">Signed-URLs</a>
    */
-  public URL signUrl(long expirationTimeInSeconds, SignUrlOption... options) {
-    return storage.signUrl(info, expirationTimeInSeconds, options);
+  public URL signUrl(long duration, TimeUnit unit, SignUrlOption... options) {
+    return storage.signUrl(info, duration, unit, options);
   }
 
   /**
diff --git a/gcloud-java-storage/src/main/java/com/google/gcloud/storage/Storage.java b/gcloud-java-storage/src/main/java/com/google/gcloud/storage/Storage.java
@@ -34,6 +34,7 @@
 import java.util.LinkedList;
 import java.util.List;
 import java.util.Set;
+import java.util.concurrent.TimeUnit;
 
 /**
  * An interface for Google Cloud Storage.
@@ -643,15 +644,17 @@ public static Builder builder() {
    * <p>
    * Example usage of creating a signed URL that is valid for 2 weeks:
    * <pre>   {@code
-   *     service.signUrl(BlobInfo.of("bucket", "name"), TimeUnit.DAYS.toSeconds(14));
+   *     service.signUrl(BlobInfo.of("bucket", "name"), 14, TimeUnit.DAYS);
    * }</pre>
    *
-   * @param blobInfo the blob associated with the signed url
-   * @param  expirationTimeInSeconds the signed URL expiration (using epoch time)
+   * @param blobInfo the blob associated with the signed URL
+   * @param duration time until the signed URL expires, expressed in {@code unit}. The finer
+   * granularity supported is 1 second
+   * @param unit time unit of the {@code duration} parameter
    * @param options optional URL signing options
    * @see <a href="https://cloud.google.com/storage/docs/access-control#Signed-URLs">Signed-URLs</a>
    */
-  URL signUrl(BlobInfo blobInfo, long expirationTimeInSeconds, SignUrlOption... options);
+  URL signUrl(BlobInfo blobInfo, long duration, TimeUnit unit, SignUrlOption... options);
 
   /**
    * Gets the requested blobs. A batch request is used to perform this call.
diff --git a/gcloud-java-storage/src/main/java/com/google/gcloud/storage/StorageImpl.java b/gcloud-java-storage/src/main/java/com/google/gcloud/storage/StorageImpl.java
@@ -68,6 +68,7 @@
 import java.util.Map;
 import java.util.Set;
 import java.util.concurrent.Callable;
+import java.util.concurrent.TimeUnit;
 
 final class StorageImpl extends BaseService<StorageOptions> implements Storage {
 
@@ -521,7 +522,9 @@ public BlobWriteChannel writer(BlobInfo blobInfo, BlobTargetOption... options) {
   }
 
   @Override
-  public URL signUrl(BlobInfo blobInfo, long expiration, SignUrlOption... options) {
+  public URL signUrl(BlobInfo blobInfo, long duration, TimeUnit unit, SignUrlOption... options) {
+    long expiration = TimeUnit.SECONDS.convert(
+        options().timeSource().millis() + unit.toMillis(duration), TimeUnit.MILLISECONDS);
     EnumMap<SignUrlOption.Option, Object> optionMap = Maps.newEnumMap(SignUrlOption.Option.class);
     for (SignUrlOption option : options) {
       optionMap.put(option.option(), option.value());
diff --git a/gcloud-java-storage/src/main/java/com/google/gcloud/storage/StorageOptions.java b/gcloud-java-storage/src/main/java/com/google/gcloud/storage/StorageOptions.java
@@ -23,6 +23,7 @@
 import com.google.gcloud.spi.StorageRpc;
 import com.google.gcloud.spi.StorageRpcFactory;
 
+import java.io.Serializable;
 import java.util.Objects;
 import java.util.Set;
 
@@ -34,24 +35,75 @@ public class StorageOptions extends ServiceOptions<StorageRpc, StorageOptions> {
   private static final String DEFAULT_PATH_DELIMITER = "/";
 
   private final String pathDelimiter;
+  private final TimeSource timeSource;
   private transient StorageRpc storageRpc;
 
+  /**
+   * A class providing access to the current time in milliseconds.
+   *
+   * Implementations should implement {@code Serializable} wherever possible and must document
+   * whether or not they do support serialization.
+   */
+  public static abstract class TimeSource {
+
+    private static TimeSource DEFAULT_TIME_SOURCE = new DefaultTimeSource();
+
+    /**
+     * Returns current time in milliseconds according to this time source.
+     */
+    public abstract long millis();
+
+    /**
+     * Returns the default time source.
+     */
+    public static TimeSource defaultTimeSource() {
+      return DEFAULT_TIME_SOURCE;
+    }
+
+    private static class DefaultTimeSource extends TimeSource implements Serializable {
+
+      private static final long serialVersionUID = -5077300394286703864L;
+
+      @Override
+      public long millis() {
+        return System.currentTimeMillis();
+      }
+    }
+  }
+
   public static class Builder extends
       ServiceOptions.Builder<StorageRpc, StorageOptions, Builder> {
 
     private String pathDelimiter;
+    private TimeSource timeSource;
 
     private Builder() {}
 
     private Builder(StorageOptions options) {
       super(options);
     }
 
+    /**
+     * Sets the path delimiter for the storage service.
+     * @param pathDelimiter the path delimiter to set
+     * @return the builder.
+     */
     public Builder pathDelimiter(String pathDelimiter) {
       this.pathDelimiter = pathDelimiter;
       return this;
     }
 
+    /**
+     * Sets the time source for the storage service. The time source is used by `signUrl` to compute
+     * URL's expiry time. If no time source is set by default `System.getTimeMillis()` is used.
+     * @param source the time source to set
+     * @return the builder.
+     */
+    public Builder timeSource(TimeSource source) {
+      this.timeSource = source;
+      return this;
+    }
+
     @Override
     public StorageOptions build() {
       return new StorageOptions(this);
@@ -61,6 +113,7 @@ public StorageOptions build() {
   private StorageOptions(Builder builder) {
     super(builder);
     pathDelimiter = MoreObjects.firstNonNull(builder.pathDelimiter, DEFAULT_PATH_DELIMITER);
+    timeSource = MoreObjects.firstNonNull(builder.timeSource, TimeSource.defaultTimeSource());
     // todo: consider providing read-timeout
   }
 
@@ -84,10 +137,21 @@ StorageRpc storageRpc() {
     return storageRpc;
   }
 
+  /**
+   * Returns the storage service's path delimiter.
+   */
   public String pathDelimiter() {
     return pathDelimiter;
   }
 
+  /**
+   * Returns the storage service's time source. Default time source uses `System.getTimeMillis()` to
+   * get current time. 
+   */
+  public TimeSource timeSource() {
+    return timeSource;
+  }
+
   @Override
   public Builder toBuilder() {
     return new Builder(this);
diff --git a/gcloud-java-storage/src/test/java/com/google/gcloud/storage/BlobTest.java b/gcloud-java-storage/src/test/java/com/google/gcloud/storage/BlobTest.java
@@ -38,6 +38,7 @@
 import java.net.URL;
 import java.util.Arrays;
 import java.util.List;
+import java.util.concurrent.TimeUnit;
 
 public class BlobTest {
 
@@ -161,9 +162,9 @@ public void testWriter() throws Exception {
   @Test
   public void testSignUrl() throws Exception {
     URL url = new URL("http://localhost:123/bla");
-    expect(storage.signUrl(BLOB_INFO, 100)).andReturn(url);
+    expect(storage.signUrl(BLOB_INFO, 100, TimeUnit.SECONDS)).andReturn(url);
     replay(storage);
-    assertEquals(url, blob.signUrl(100));
+    assertEquals(url, blob.signUrl(100, TimeUnit.SECONDS));
   }
 
   @Test
diff --git a/gcloud-java-storage/src/test/java/com/google/gcloud/storage/ITStorageTest.java b/gcloud-java-storage/src/test/java/com/google/gcloud/storage/ITStorageTest.java
@@ -435,10 +435,7 @@ public void testGetSignedUrl() throws IOException {
     String blobName = "test-get-signed-url-blob";
     BlobInfo blob = BlobInfo.of(bucket, blobName);
     assertNotNull(storage.create(BlobInfo.of(bucket, blobName), BLOB_BYTE_CONTENT));
-    Calendar calendar = Calendar.getInstance();
-    calendar.add(Calendar.HOUR, 1);
-    long expiration = calendar.getTimeInMillis() / 1000;
-    URL url = storage.signUrl(blob, expiration);
+    URL url = storage.signUrl(blob, 1, TimeUnit.HOURS);
     URLConnection connection = url.openConnection();
     byte[] readBytes = new byte[BLOB_BYTE_CONTENT.length];
     try (InputStream responseStream = connection.getInputStream()) {
@@ -453,10 +450,8 @@ public void testPostSignedUrl() throws IOException {
     String blobName = "test-post-signed-url-blob";
     BlobInfo blob = BlobInfo.of(bucket, blobName);
     assertNotNull(storage.create(BlobInfo.of(bucket, blobName)));
-    Calendar calendar = Calendar.getInstance();
-    calendar.add(Calendar.HOUR, 1);
-    long expiration = calendar.getTimeInMillis() / 1000;
-    URL url = storage.signUrl(blob, expiration, Storage.SignUrlOption.httpMethod(HttpMethod.POST));
+    URL url =
+        storage.signUrl(blob, 1, TimeUnit.HOURS, Storage.SignUrlOption.httpMethod(HttpMethod.POST));
     URLConnection connection = url.openConnection();
     connection.setDoOutput(true);
     connection.connect();
diff --git a/gcloud-java-storage/src/test/java/com/google/gcloud/storage/StorageImplTest.java b/gcloud-java-storage/src/test/java/com/google/gcloud/storage/StorageImplTest.java
@@ -65,6 +65,7 @@
 import java.security.spec.X509EncodedKeySpec;
 import java.util.List;
 import java.util.Map;
+import java.util.concurrent.TimeUnit;
 
 public class StorageImplTest {
 
@@ -171,6 +172,13 @@ public class StorageImplTest {
           + "EkPPhszldvQTY486uPxyD/D7HdfnGW/Nbw5JUhfvecAdudDEhNAQ3PNabyDMI+TpiHy4NTWOrgdcWrzj6VXcdc"
           + "+uuABnPwRCdcyJ1xl2kOrPksRnp1auNGMLOe4IpEBjGY7baX9UG8+A45MbG0aHmkR59Op/aR9XowIDAQAB";
 
+  private static final StorageOptions.TimeSource TIME_SOURCE = new StorageOptions.TimeSource() {
+    @Override
+    public long millis() {
+      return 42000L;
+    }
+  };
+
   private static PrivateKey privateKey;
   private static PublicKey publicKey;
 
@@ -794,24 +802,26 @@ public void testSignUrl() throws NoSuchAlgorithmException, InvalidKeyException,
     String account = "account";
     ServiceAccountAuthCredentials credentialsMock =
         EasyMock.createMock(ServiceAccountAuthCredentials.class);
-    EasyMock.expect(optionsMock.storageRpc()).andReturn(storageRpcMock).times(1);
+    EasyMock.expect(optionsMock.storageRpc()).andReturn(storageRpcMock);
     EasyMock.expect(optionsMock.authCredentials()).andReturn(credentialsMock).times(2);
+    EasyMock.expect(optionsMock.timeSource()).andReturn(TIME_SOURCE);
     EasyMock.expect(credentialsMock.privateKey()).andReturn(privateKey);
     EasyMock.expect(credentialsMock.account()).andReturn(account);
     EasyMock.replay(optionsMock, storageRpcMock, credentialsMock);
     storage = StorageFactory.instance().get(optionsMock);
-    URL url = storage.signUrl(BLOB_INFO1, 60);
+    URL url = storage.signUrl(BLOB_INFO1, 14, TimeUnit.DAYS);
     String stringUrl = url.toString();
     String expectedUrl =
         new StringBuilder("https://storage.googleapis.com/").append(BUCKET_NAME1).append("/")
             .append(BLOB_NAME1).append("?GoogleAccessId=").append(account).append("&Expires=")
-            .append(60).append("&Signature=").toString();
+            .append(42L + 1209600).append("&Signature=").toString();
     assertTrue(stringUrl.startsWith(expectedUrl));
     String signature = stringUrl.substring(expectedUrl.length());
 
     StringBuilder signedMessageBuilder = new StringBuilder();
-    signedMessageBuilder.append(HttpMethod.GET).append('\n').append('\n').append('\n').append(60)
-        .append('\n').append("/").append(BUCKET_NAME1).append("/").append(BLOB_NAME1);
+    signedMessageBuilder.append(HttpMethod.GET).append('\n').append('\n').append('\n')
+        .append(42L + 1209600).append('\n').append("/").append(BUCKET_NAME1).append("/")
+        .append(BLOB_NAME1);
 
     Signature signer = Signature.getInstance("SHA256withRSA");
     signer.initVerify(publicKey);
@@ -827,27 +837,29 @@ public void testSignUrlWithOptions() throws NoSuchAlgorithmException, InvalidKey
     String account = "account";
     ServiceAccountAuthCredentials credentialsMock =
         EasyMock.createMock(ServiceAccountAuthCredentials.class);
-    EasyMock.expect(optionsMock.storageRpc()).andReturn(storageRpcMock).times(1);
+    EasyMock.expect(optionsMock.storageRpc()).andReturn(storageRpcMock);
     EasyMock.expect(optionsMock.authCredentials()).andReturn(credentialsMock).times(2);
+    EasyMock.expect(optionsMock.timeSource()).andReturn(TIME_SOURCE);
     EasyMock.expect(credentialsMock.privateKey()).andReturn(privateKey);
     EasyMock.expect(credentialsMock.account()).andReturn(account);
     EasyMock.replay(optionsMock, storageRpcMock, credentialsMock);
     storage = StorageFactory.instance().get(optionsMock);
     URL url =
-        storage.signUrl(BLOB_INFO1, 60, Storage.SignUrlOption.httpMethod(HttpMethod.POST),
+        storage.signUrl(BLOB_INFO1, 14, TimeUnit.DAYS,
+            Storage.SignUrlOption.httpMethod(HttpMethod.POST),
             Storage.SignUrlOption.withContentType(), Storage.SignUrlOption.withMd5());
     String stringUrl = url.toString();
     String expectedUrl =
         new StringBuilder("https://storage.googleapis.com/").append(BUCKET_NAME1).append("/")
             .append(BLOB_NAME1).append("?GoogleAccessId=").append(account).append("&Expires=")
-            .append(60).append("&Signature=").toString();
+            .append(42L + 1209600).append("&Signature=").toString();
     assertTrue(stringUrl.startsWith(expectedUrl));
     String signature = stringUrl.substring(expectedUrl.length());
 
     StringBuilder signedMessageBuilder = new StringBuilder();
     signedMessageBuilder.append(HttpMethod.POST).append('\n').append(BLOB_INFO1.md5()).append('\n')
-        .append(BLOB_INFO1.contentType()).append('\n').append(60).append('\n').append("/")
-        .append(BUCKET_NAME1).append("/").append(BLOB_NAME1);
+        .append(BLOB_INFO1.contentType()).append('\n').append(42L + 1209600).append('\n')
+        .append("/").append(BUCKET_NAME1).append("/").append(BLOB_NAME1);
 
     Signature signer = Signature.getInstance("SHA256withRSA");
     signer.initVerify(publicKey);
