/* * * Mint, (C) 2021 Minio, Inc. * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. * */ package main import ( "fmt" "math/rand" "strings" "time" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/service/s3" ) // Test locking for different versions func testLockingLegalhold() { startTime := time.Now() function := "testLockingLegalhold" bucket := randString(60, rand.NewSource(time.Now().UnixNano()), "versioning-test-") object := "testObject" expiry := 1 * time.Minute args := map[string]interface{}{ "bucketName": bucket, "objectName": object, "expiry": expiry, } _, err := s3Client.CreateBucket(&s3.CreateBucketInput{ Bucket: aws.String(bucket), ObjectLockEnabledForBucket: aws.Bool(true), }) if err != nil { if strings.Contains(err.Error(), "NotImplemented: A header you provided implies functionality that is not implemented") { ignoreLog(function, args, startTime, "Versioning is not implemented").Info() return } failureLog(function, args, startTime, "", "CreateBucket failed", err).Fatal() return } defer cleanupBucket(bucket, function, args, startTime) type uploadedObject struct { legalhold string successfulRemove bool versionId string deleteMarker bool } uploads := []uploadedObject{ {legalhold: "ON"}, {legalhold: "OFF"}, } // Upload versions and save their version IDs for i := range uploads { putInput := &s3.PutObjectInput{ Body: aws.ReadSeekCloser(strings.NewReader("content")), Bucket: aws.String(bucket), Key: aws.String(object), ObjectLockLegalHoldStatus: aws.String(uploads[i].legalhold), } output, err := s3Client.PutObject(putInput) if err != nil { failureLog(function, args, startTime, "", fmt.Sprintf("PUT expected to succeed but got %v", err), err).Fatal() return } uploads[i].versionId = *output.VersionId } // In all cases, we can remove an object by creating a delete marker // First delete without version ID deleteInput := &s3.DeleteObjectInput{ Bucket: aws.String(bucket), Key: aws.String(object), } deleteOutput, err := s3Client.DeleteObject(deleteInput) if err != nil { failureLog(function, args, startTime, "", fmt.Sprintf("DELETE expected to succeed but got %v", err), err).Fatal() return } uploads = append(uploads, uploadedObject{versionId: *deleteOutput.VersionId, deleteMarker: true}) // Put tagging on each version for i := range uploads { if uploads[i].deleteMarker { continue } deleteInput := &s3.DeleteObjectInput{ Bucket: aws.String(bucket), Key: aws.String(object), VersionId: aws.String(uploads[i].versionId), } _, err = s3Client.DeleteObject(deleteInput) if err == nil && uploads[i].legalhold == "ON" { failureLog(function, args, startTime, "", "DELETE expected to fail but succeed instead", nil).Fatal() return } if err != nil && uploads[i].legalhold == "OFF" { failureLog(function, args, startTime, "", fmt.Sprintf("DELETE expected to succeed but got %v", err), err).Fatal() return } } for i := range uploads { if uploads[i].deleteMarker || uploads[i].legalhold == "OFF" { continue } input := &s3.PutObjectLegalHoldInput{ Bucket: aws.String(bucket), Key: aws.String(object), LegalHold: &s3.ObjectLockLegalHold{Status: aws.String("OFF")}, VersionId: aws.String(uploads[i].versionId), } _, err := s3Client.PutObjectLegalHold(input) if err != nil { failureLog(function, args, startTime, "", fmt.Sprintf("Turning off legalhold failed with %v", err), err).Fatal() return } } successLogger(function, args, startTime).Info() }