替换 software.amazon.awssdk.auth.signer 中的 AwsSignerExecutionAttribute?

问题描述 投票:0回答:1

我有逻辑对来自 Spring WebFlux 的反应式 

ClientRequest
请求进行签名。

import org.springframework.util.MultiValueMapAdapter
import org.springframework.web.reactive.function.client.ClientRequest
import reactor.core.publisher.Mono
import software.amazon.awssdk.auth.credentials.AwsCredentialsProvider
import software.amazon.awssdk.auth.signer.Aws4Signer
import software.amazon.awssdk.auth.signer.AwsSignerExecutionAttribute
import software.amazon.awssdk.core.interceptor.ExecutionAttributes
import software.amazon.awssdk.http.SdkHttpFullRequest
import software.amazon.awssdk.http.SdkHttpMethod
import software.amazon.awssdk.regions.Region
import java.util.function.Function

class WebClientAwsSigner(
    private val body: String? = null,
    private val signer: Aws4Signer,
    private val awsCredentialsProvider: AwsCredentialsProvider,
    private val serviceName: String,
    private val region: Region
) : Function<ClientRequest, Mono<ClientRequest>> {
    override fun apply(request: ClientRequest): Mono<ClientRequest> {
        val requestBuilder =
            SdkHttpFullRequest.builder()
                .method(SdkHttpMethod.fromValue(request.method().name()))
                .uri(request.url())
                .apply {
                    if (body != null) {
                        contentStreamProvider { body.byteInputStream() }
                    }
                }
                .headers(request.headers())

        val attributes = ExecutionAttributes()
        attributes.putAttribute(
            AwsSignerExecutionAttribute.AWS_CREDENTIALS,
            awsCredentialsProvider.resolveCredentials()
        )
        attributes.putAttribute(AwsSignerExecutionAttribute.SERVICE_SIGNING_NAME, serviceName)
        attributes.putAttribute(AwsSignerExecutionAttribute.SIGNING_REGION, region)

        val signedAwsRequest = signer.sign(requestBuilder.build(), attributes)
        val signedClientRequest =
            ClientRequest.from(request)
                .headers {
                    it.clear()
                    it.addAll(MultiValueMapAdapter(signedAwsRequest.headers()))
                }
                .build()

        return Mono.just(signedClientRequest)
    }
}

但是,我注意到 

AwsSignerExecutionAttribute
已被弃用。

如何在 AWS auth SDK 中签署请求,以便稍后将其传递给响应式请求?

amazon-web-services aws-sdk spring-webflux
1个回答
0
投票

不要使用 

ExecutionAttribute
,而使用 
Aws4SignerParams

所以替换:

import software.amazon.awssdk.auth.signer.AwsSignerExecutionAttribute
...

val attributes = ExecutionAttributes()
attributes.putAttribute(
    AwsSignerExecutionAttribute.AWS_CREDENTIALS,
    awsCredentialsProvider.resolveCredentials()
)
attributes.putAttribute(AwsSignerExecutionAttribute.SERVICE_SIGNING_NAME, serviceName)
attributes.putAttribute(AwsSignerExecutionAttribute.SIGNING_REGION, region)

val signedAwsRequest = signer.sign(requestBuilder.build(), attributes)

与:

import software.amazon.awssdk.auth.signer.params.Aws4SignerParams
...

val attributes = Aws4SignerParams.builder()
    .awsCredentials(awsCredentialsProvider.resolveCredentials())
    .signingName(serviceName)
    .signingRegion(region)
    .build();

val signedAwsRequest = signer.sign(requestBuilder.build(), attributes)
最新问题
© www.soinside.com 2019 - 2024. All rights reserved.