Merge branch feature/add_http_sub_example into release/1.0.6

Title: Go SDK 1.0.6 版本

本次代码评审主要涉及更新了消息队列订阅逻辑，增加了HTTP订阅示例，调整了错误处理和代码结构，优化了注释和版本记录，同时放宽了消息保留周期的检查，移除了对最大消息大小的硬性限制，并新增了HTTP授权验证的示例代码。
Link: https://code.alibaba-inc.com/messaging/aliyun-mns-go-sdk/codereview/19011184

Author: Kayne666

CHANGELOG.md

@@ -1,5 +1,10 @@
 # Change log
 
+## 1.0.6
+- Added an example of HTTP endpoint subscription in `topic_example.go`.
+- Added an example of HTTP authorization in `http_authorization.go`.
+- Removed the check for message body size to allow for larger messages.
+
 ## 1.0.5
 - update the minimum Go version declared in go.mod to fix build failures.
 

README-CN.md

@@ -1,6 +1,6 @@
 # Aliyun MNS Go SDK
 
-[![Github version](https://badgen.net/badge/color/1.0.5/green?label=version)](https://badgen.net/badge/color/1.0.5/green?label=version)
+[![Github version](https://badgen.net/badge/color/1.0.6/green?label=version)](https://badgen.net/badge/color/1.0.6/green?label=version)
 
 Aliyun MNS Go SDK 是 MNS 在 Go 编译语言的官方 SDK
 

README.md

@@ -1,6 +1,6 @@
 # Aliyun MNS Go SDK
 
-[![Github version](https://badgen.net/badge/color/1.0.5/green?label=version)](https://badgen.net/badge/color/1.0.5/green?label=version)
+[![Github version](https://badgen.net/badge/color/1.0.6/green?label=version)](https://badgen.net/badge/color/1.0.6/green?label=version)
 
 The Aliyun MNS Go SDK is the official SDK for MNS in the Go programming language
 

errors.go

@@ -72,7 +72,7 @@ var (
 	ERR_MNS_MAX_MESSAGE_SIZE_RANGE_ERROR           = errors.TN(ALI_MNS_ERR_NS, 128, "max message size is not in range of (1024~65536)")
 	ERR_MNS_MSG_RETENTION_PERIOD_RANGE_ERROR       = errors.TN(ALI_MNS_ERR_NS, 129, "message retention period is not in range of (60~129600)")
 	ERR_MNS_MSG_VISIBILITY_TIMEOUT_RANGE_ERROR     = errors.TN(ALI_MNS_ERR_NS, 130, "message visibility timeout is not in range of (1~43200)")
-	ERR_MNS_MSG_POOLLING_WAIT_SECONDS_RANGE_ERROR  = errors.TN(ALI_MNS_ERR_NS, 131, "message poolling wait seconds is not in range of (0~30)")
+	ERR_MNS_MSG_POOLLING_WAIT_SECONDS_RANGE_ERROR  = errors.TN(ALI_MNS_ERR_NS, 131, "message polling wait seconds is not in range of (0~30)")
 	ERR_MNS_RET_NUMBER_RANGE_ERROR                 = errors.TN(ALI_MNS_ERR_NS, 132, "list param of ret number is not in range of (1~1000)")
 	ERR_MNS_QUEUE_ALREADY_EXIST_AND_HAVE_SAME_ATTR = errors.TN(ALI_MNS_ERR_NS, 133, "mns queue already exist, and the attribute is the same, queue name: {{.name}}")
 	ERR_MNS_BATCH_OP_FAIL                          = errors.TN(ALI_MNS_ERR_NS, 136, "mns queue batch operation fail")

example/http_authorization.go

@@ -0,0 +1,171 @@
+package main
+
+import (
+	"crypto"
+	"crypto/rsa"
+	"crypto/sha1"
+	"crypto/x509"
+	"encoding/base64"
+	"encoding/pem"
+	"fmt"
+	"io/ioutil"
+	"net/http"
+	"sort"
+	"strings"
+)
+
+func main() {
+	headers := map[string]string{
+		"Connection":              "keep-alive",
+		"x-mns-message-id":        "AC10020B0019681A95159E591D10****",
+		"Content-Type":            "text/plain;charset=utf-8",
+		"Content-md5":             "5B4682CCA07FFB080FFE0A9D9821****",
+		"x-mns-topic-owner":       "****",
+		"x-mns-topic-name":        "HTTP-test",
+		"x-mns-subscriber":        "****",
+		"x-mns-subscription-name": "sub-test-header",
+		"x-mns-publish-time":      "1730368640272",
+		"x-mns-request-id":        "672354803035301900003***",
+		"Date":                    "Thu, 31 Oct 2024 09:57:20 GMT",
+		"x-mns-version":           "2015-06-06",
+		"User-Agent":              "Aliyun Notification Service Agent",
+		"x-mns-signing-cert-url":  "aHR0cHM6Ly9tbnN0ZXN0Lm9zcy1jbi1oYW5nemhvdS5hbGl5dW5****",
+		"Authorization":           "pg5Prc+ADujqjHbK1XKMK+o+aZjtkAntpR19s2B0T1k1deilZ5UgUFoIsKmLbgirN+1m2srdh****",
+		"Host":                    "****",
+		"Content-length":          "40",
+		"Accept":                  "*/*",
+	}
+
+	method := "POST"
+	path := "/api/test"
+	if authenticateWithHeaderMap(method, path, toLowercaseKeys(headers)) {
+		fmt.Println("Signature verification succeeded")
+	} else {
+		fmt.Println("Signature verification failed")
+	}
+}
+
+func authenticateWithResponse(method, path string, resp *http.Response) bool {
+	headersMap := headersToMap(resp)
+	return authenticateWithHeaderMap(method, path, headersMap)
+}
+
+func authenticateWithHeaderMap(method, path string, headers map[string]string) bool {
+	// Get string to sign
+	var serviceHeaders []string
+	for k, v := range headers {
+		if strings.HasPrefix(strings.ToLower(k), "x-mns-") {
+			serviceHeaders = append(serviceHeaders, fmt.Sprintf("%s:%s", k, v))
+		}
+	}
+
+	sort.Strings(serviceHeaders)
+	serviceStr := strings.Join(serviceHeaders, "\n")
+	var signHeaderList []string
+	for _, key := range []string{"content-md5", "content-type", "date"} {
+		if val, ok := headers[key]; ok {
+			signHeaderList = append(signHeaderList, val)
+		} else {
+			signHeaderList = append(signHeaderList, "")
+		}
+	}
+
+	str2sign := fmt.Sprintf("%s\n%s\n%s\n%s", method, strings.Join(signHeaderList, "\n"), serviceStr, path)
+	fmt.Println("String to sign:", str2sign)
+
+	// 获取证书的URL
+	certURLBase64, ok := headers["x-mns-signing-cert-url"]
+	if !ok {
+		fmt.Println("x-mns-signing-cert-url Header not found")
+		return false
+	}
+
+	certURLBytes, err := base64.StdEncoding.DecodeString(certURLBase64)
+	if err != nil {
+		fmt.Println("Failed to decode base64 cert URL:", err)
+		return false
+	}
+
+	certURL := string(certURLBytes)
+	fmt.Println("x-mns-signing-cert-url:\t", certURL)
+
+	// 根据URL获取证书，并从证书中获取公钥
+	resp, err := http.Get(certURL)
+	if err != nil {
+		fmt.Println("Failed to fetch certificate:", err)
+		return false
+	}
+	//goland:noinspection GoUnhandledErrorResult
+	defer resp.Body.Close()
+
+	//goland:noinspection GoDeprecation
+	certData, err := ioutil.ReadAll(resp.Body)
+	if err != nil {
+		fmt.Println("Failed to read certificate:", err)
+		return false
+	}
+
+	block, _ := pem.Decode(certData)
+	if block == nil || block.Type != "CERTIFICATE" {
+		fmt.Println("Failed to decode PEM block containing the certificate")
+		return false
+	}
+
+	cert, err := x509.ParseCertificate(block.Bytes)
+	if err != nil {
+		fmt.Println("Failed to parse certificate:", err)
+		return false
+	}
+
+	pubKey, ok := cert.PublicKey.(*rsa.PublicKey)
+	if !ok {
+		fmt.Println("Failed to cast public key to RSA public key")
+		return false
+	}
+
+	// 对Authorization字段做Base64解码
+	signatureBase64, ok := headers["authorization"]
+	if !ok {
+		fmt.Println("Authorization Header not found")
+		return false
+	}
+
+	signature, err := base64.StdEncoding.DecodeString(signatureBase64)
+	if err != nil {
+		fmt.Println("Failed to decode base64 signature:", err)
+		return false
+	}
+
+	// 认证
+	hash := sha1.New()
+	hash.Write([]byte(str2sign))
+	digest := hash.Sum(nil)
+	err = rsa.VerifyPKCS1v15(pubKey, crypto.SHA1, digest, signature)
+	if err != nil {
+		fmt.Println("Signature verification failed:", err)
+		return false
+	}
+
+	return true
+}
+
+func headersToMap(resp *http.Response) map[string]string {
+	headersMap := make(map[string]string)
+	for key, values := range resp.Header {
+		// 连接多个值为一个字符串，使用逗号分隔
+		// map 键值全小写
+		lowercaseKey := strings.ToLower(key)
+		headersMap[lowercaseKey] = strings.Join(values, ",")
+	}
+	return headersMap
+}
+
+// HTTP header 不区分大小写，将 map 的 keys 转换为全小写
+func toLowercaseKeys(input map[string]string) map[string]string {
+	output := make(map[string]string)
+	for k, v := range input {
+		lowercaseKey := strings.ToLower(k)
+		output[lowercaseKey] = v
+	}
+	return output
+}

example/topic_example.go

@@ -13,7 +13,8 @@ func main() {
 	endpoint := "http://xxx.mns.cn-hangzhou.aliyuncs.com"
 	queueName := "test-queue"
 	topicName := "test-topic"
-	subName := "test-sub"
+	queueSubName := "test-sub-queue"
+	httpSubName := "test-sub-http"
 	client := ali_mns.NewClient(endpoint)
 
 	// 1. create a queue for receiving pushed messages
@@ -33,15 +34,26 @@ func main() {
 		return
 	}
 
-	// 3. subscribe to topic, the endpoint is set to be a queue in this example
 	topic := ali_mns.NewMNSTopic(topicName, client)
-	sub := ali_mns.MessageSubsribeRequest{
+	// 3. subscribe to topic, the endpoint is queue
+	queueSub := ali_mns.MessageSubsribeRequest{
 		Endpoint:            topic.GenerateQueueEndpoint(queueName),
 		NotifyContentFormat: ali_mns.SIMPLIFIED,
 	}
 
-	// topic.Unsubscribe("SubscriptionNameA")
-	err = topic.Subscribe(subName, sub)
+	// 4. subscribe to topic, the endpoint is HTTP(S)
+	httpSub := ali_mns.MessageSubsribeRequest{
+		Endpoint:            "http://www.baidu.com",
+		NotifyContentFormat: ali_mns.SIMPLIFIED,
+	}
+
+	err = topic.Subscribe(queueSubName, queueSub)
+	if err != nil && !ali_mns.ERR_MNS_SUBSCRIPTION_ALREADY_EXIST_AND_HAVE_SAME_ATTR.IsEqual(err) {
+		fmt.Println(err)
+		return
+	}
+
+	err = topic.Subscribe(httpSubName, httpSub)
 	if err != nil && !ali_mns.ERR_MNS_SUBSCRIPTION_ALREADY_EXIST_AND_HAVE_SAME_ATTR.IsEqual(err) {
 		fmt.Println(err)
 		return
@@ -65,7 +77,7 @@ func main() {
 
 	time.Sleep(time.Duration(2) * time.Second)
 
-	// 4. now publish message
+	// 5. now publish message
 	msg := ali_mns.MessagePublishRequest{
 		MessageBody: "hello topic <\"aliyun-mns-go-sdk\">",
 		MessageAttributes: &ali_mns.MessageAttributes{
@@ -81,7 +93,7 @@ func main() {
 		return
 	}
 
-	// 5. receive the message from queue
+	// 6. receive the message from queue
 	queue := ali_mns.NewMNSQueue(queueName, client)
 	endChan := make(chan int)
 	respChan := make(chan ali_mns.MessageReceiveResponse)

queue_manager.go

@@ -40,14 +40,6 @@ func checkDelaySeconds(seconds int32) (err error) {
 	return
 }
 
-func checkMaxMessageSize(maxSize int32) (err error) {
-	if maxSize < 1024 || maxSize > 262144 {
-		err = ERR_MNS_MAX_MESSAGE_SIZE_RANGE_ERROR.New()
-		return
-	}
-	return
-}
-
 func checkMessageRetentionPeriod(retentionPeriod int32) (err error) {
 	if retentionPeriod < 60 || retentionPeriod > 1296000 {
 		err = ERR_MNS_MSG_RETENTION_PERIOD_RANGE_ERROR.New()
@@ -79,13 +71,10 @@ func NewMNSQueueManager(client MNSClient) AliQueueManager {
 	}
 }
 
-func checkAttributes(delaySeconds int32, maxMessageSize int32, messageRetentionPeriod int32, visibilityTimeout int32, pollingWaitSeconds int32) (err error) {
+func checkAttributes(delaySeconds int32, messageRetentionPeriod int32, visibilityTimeout int32, pollingWaitSeconds int32) (err error) {
 	if err = checkDelaySeconds(delaySeconds); err != nil {
 		return
 	}
-	if err = checkMaxMessageSize(maxMessageSize); err != nil {
-		return
-	}
 	if err = checkMessageRetentionPeriod(messageRetentionPeriod); err != nil {
 		return
 	}
@@ -110,7 +99,6 @@ func (p *MNSQueueManager) CreateQueue(queueName string, delaySeconds int32, maxM
 	}
 
 	if err = checkAttributes(delaySeconds,
-		maxMessageSize,
 		messageRetentionPeriod,
 		visibilityTimeout,
 		pollingWaitSeconds); err != nil {
@@ -144,7 +132,6 @@ func (p *MNSQueueManager) SetQueueAttributes(queueName string, delaySeconds int3
 	}
 
 	if err = checkAttributes(delaySeconds,
-		maxMessageSize,
 		messageRetentionPeriod,
 		visibilityTimeout,
 		pollingWaitSeconds); err != nil {

topic_manager.go

@@ -50,10 +50,6 @@ func (p *MNSTopicManager) CreateTopic(topicName string, maxMessageSize int32, lo
 		return
 	}
 
-	if err = checkMaxMessageSize(maxMessageSize); err != nil {
-		return
-	}
-
 	message := CreateTopicRequest{
 		MaxMessageSize: maxMessageSize,
 		LoggingEnabled: loggingEnabled,
@@ -77,10 +73,6 @@ func (p *MNSTopicManager) SetTopicAttributes(topicName string, maxMessageSize in
 		return
 	}
 
-	if err = checkMaxMessageSize(maxMessageSize); err != nil {
-		return
-	}
-
 	message := CreateTopicRequest{
 		MaxMessageSize: maxMessageSize,
 		LoggingEnabled: loggingEnabled,