// Licensed to the Apache Software Foundation (ASF) under one // or more contributor license agreements. See the NOTICE file // distributed with this work for additional information // regarding copyright ownership. The ASF licenses this file // to you under the Apache License, Version 2.0 (the // "License"); you may not use this file except in compliance // with the License. You may obtain a copy of the License at // // http://www.apache.org/licenses/LICENSE-2.0 // // Unless required by applicable law or agreed to in writing, // software distributed under the License is distributed on an // "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY // KIND, either express or implied. See the License for the // specific language governing permissions and limitations // under the License. package io import ( "context" "errors" "fmt" "net/url" "github.com/Azure/azure-sdk-for-go/sdk/storage/azblob" "github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container" "gocloud.dev/blob" "gocloud.dev/blob/azureblob" ) // Constants for Azure configuration options const ( AdlsSasTokenPrefix = "adls.sas-token." AdlsConnectionStringPrefix = "adls.connection-string." AdlsSharedKeyAccountName = "adls.auth.shared-key.account.name" AdlsSharedKeyAccountKey = "adls.auth.shared-key.account.key" AdlsEndpoint = "adls.endpoint" AdlsProtocol = "adls.protocol" // Not in use yet // AdlsReadBlockSize = "adls.read.block-size-bytes" // AdlsWriteBlockSize = "adls.write.block-size-bytes" ) // Construct a Azure bucket from a URL func createAzureBucket(ctx context.Context, parsed *url.URL, props map[string]string) (*blob.Bucket, error) { adlsSasTokens := propertiesWithPrefix(props, AdlsSasTokenPrefix) adlsConnectionStrings := propertiesWithPrefix(props, AdlsConnectionStringPrefix) // Construct the client accountName := props[AdlsSharedKeyAccountName] endpoint := props[AdlsEndpoint] protocol := props[AdlsProtocol] var client *container.Client if accountName == "" { return nil, errors.New("account name is required for azure bucket") } if accountKey, ok := props[AdlsSharedKeyAccountKey]; ok { svcURL, err := azureblob.NewServiceURL(&azureblob.ServiceURLOptions{ AccountName: accountName, Protocol: protocol, StorageDomain: endpoint, }) if err != nil { return nil, err } containerURL, err := url.JoinPath(string(svcURL), parsed.Host) if err != nil { return nil, err } sharedKeyCred, err := azblob.NewSharedKeyCredential(accountName, accountKey) if err != nil { return nil, fmt.Errorf("failed azblob.NewSharedKeyCredential: %w", err) } client, err = container.NewClientWithSharedKeyCredential(containerURL, sharedKeyCred, nil) if err != nil { return nil, fmt.Errorf("failed container.NewClientWithSharedKeyCredential: %w", err) } } else if sasToken, ok := adlsSasTokens[accountName]; ok { svcURL, err := azureblob.NewServiceURL(&azureblob.ServiceURLOptions{ AccountName: accountName, SASToken: sasToken, Protocol: protocol, StorageDomain: endpoint, }) if err != nil { return nil, err } containerURL, err := url.JoinPath(string(svcURL), parsed.Host) if err != nil { return nil, err } client, err = container.NewClientWithNoCredential(containerURL, nil) if err != nil { return nil, fmt.Errorf("failed container.NewClientWithNoCredential: %w", err) } } else if connectionString, ok := adlsConnectionStrings[accountName]; ok { var err error client, err = container.NewClientFromConnectionString(connectionString, parsed.Host, nil) if err != nil { return nil, fmt.Errorf("failed container.NewClientFromConnectionString: %w", err) } } return azureblob.OpenBucket(ctx, client, nil) }