implements EndpointResolverV2 for S3 client

punkwalker · punkwalker · commit dd8cda0e08f4 · 2025-05-01T21:05:26.000Z
Signed-off-by: Pankaj Walke &lt;pankaj.walke@mavs.uta.edu&gt;
diff --git a/go.mod b/go.mod
@@ -16,7 +16,7 @@ require (
 	github.com/aws/aws-sdk-go-v2/credentials v1.17.11
 	github.com/aws/aws-sdk-go-v2/service/s3 v1.53.1
 	github.com/aws/aws-sdk-go-v2/service/sts v1.28.6
-	github.com/aws/smithy-go v1.20.3
+	github.com/aws/smithy-go v1.22.2
 	github.com/awslabs/goformation/v4 v4.19.5
 	github.com/blang/semver v3.5.1+incompatible
 	github.com/coreos/ignition v0.35.0
diff --git a/go.sum b/go.sum
@@ -90,8 +90,8 @@ github.com/aws/aws-sdk-go-v2/service/ssooidc v1.23.4 h1:Jux+gDDyi1Lruk+KHF91tK2K
 github.com/aws/aws-sdk-go-v2/service/ssooidc v1.23.4/go.mod h1:mUYPBhaF2lGiukDEjJX2BLRRKTmoUSitGDUgM4tRxak=
 github.com/aws/aws-sdk-go-v2/service/sts v1.28.6 h1:cwIxeBttqPN3qkaAjcEcsh8NYr8n2HZPkcKgPAi1phU=
 github.com/aws/aws-sdk-go-v2/service/sts v1.28.6/go.mod h1:FZf1/nKNEkHdGGJP/cI2MoIMquumuRK6ol3QQJNDxmw=
-github.com/aws/smithy-go v1.20.3 h1:ryHwveWzPV5BIof6fyDvor6V3iUL7nTfiTKXHiW05nE=
-github.com/aws/smithy-go v1.20.3/go.mod h1:krry+ya/rV9RDcV/Q16kpu6ypI4K2czasz0NC3qS14E=
+github.com/aws/smithy-go v1.22.2 h1:6D9hW43xKFrRx/tXXfAlIZc4JI+yQe6snnWcQyxSyLQ=
+github.com/aws/smithy-go v1.22.2/go.mod h1:irrKGvNn1InZwb2d7fkIRNucdfwR8R+Ts3wxYa/cJHg=
 github.com/awslabs/goformation/v4 v4.19.5 h1:Y+Tzh01tWg8gf//AgGKUamaja7Wx9NPiJf1FpZu4/iU=
 github.com/awslabs/goformation/v4 v4.19.5/go.mod h1:JoNpnVCBOUtEz9bFxc9sjy8uBUCLF5c4D1L7RhRTVM8=
 github.com/aymerick/douceur v0.2.0 h1:Mv+mAeH1Q+n9Fr+oyamOlAkUNPWPlA8PPGR0QAaYuPk=
diff --git a/pkg/cloud/endpoints/endpoints.go b/pkg/cloud/endpoints/endpoints.go
@@ -24,6 +24,7 @@ import (
 
 	"github.com/aws/aws-sdk-go/aws/endpoints"
 
+	"sigs.k8s.io/cluster-api-provider-aws/v2/pkg/cloud/endpointsv2"
 	"sigs.k8s.io/cluster-api-provider-aws/v2/pkg/cloud/scope"
 )
 
@@ -104,6 +105,8 @@ func ParseFlag(serviceEndpoints string) ([]scope.ServiceEndpoint, error) {
 			})
 		}
 	}
+	// For Go SDK V2 migration
+	saveToServiceEndpointV2Map(endpoints)
 
 	return endpoints, nil
 }
@@ -117,3 +120,15 @@ func containsString(slice []string, s string) bool {
 
 	return false
 }
+
+// TODO: punkwalker - remove this after Go SDK V2 migration
+func saveToServiceEndpointV2Map(src []scope.ServiceEndpoint) {
+	for _, svc := range src {
+		endpoint := endpointsv2.ServiceEndpoint{
+			ServiceID:     svc.ServiceID,
+			URL:           svc.URL,
+			SigningRegion: svc.SigningRegion,
+		}
+		endpointsv2.ServiceEndpointsMap[svc.ServiceID] = endpoint
+	}
+}
diff --git a/pkg/cloud/endpointsv2/endpoints.go b/pkg/cloud/endpointsv2/endpoints.go
@@ -0,0 +1,115 @@
+/*
+Copyright 2020 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+	http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+// Package endpoints contains aws endpoint related utilities.
+package endpointsv2
+
+import (
+	"context"
+	"errors"
+	"net/url"
+	"strings"
+
+	"github.com/aws/aws-sdk-go-v2/service/s3"
+	smithyendpoints "github.com/aws/smithy-go/endpoints"
+)
+
+var (
+	errServiceEndpointFormat             = errors.New("must be formatted as ${ServiceID}=${URL}")
+	errServiceEndpointSigningRegion      = errors.New("must be formatted as ${SigningRegion}:${ServiceID1}=${URL1},${ServiceID2}=${URL2...}")
+	errServiceEndpointURL                = errors.New("must use a valid URL as a service-endpoint")
+	errServiceEndpointDuplicateServiceID = errors.New("same serviceID defined twice for signing region")
+	// ServiceEndpointsMap Can be made private after Go SDK V2 migration
+	ServiceEndpointsMap map[string]ServiceEndpoint
+)
+
+// ServiceEndpoint contains AWS Service resolution information for SDK V2.
+type ServiceEndpoint struct {
+	ServiceID     string
+	URL           string
+	SigningRegion string
+}
+
+// ParseFlag parses the command line flag of service endponts in the format ${SigningRegion1}:${ServiceID1}=${URL1},${ServiceID2}=${URL2}...;${SigningRegion2}...
+// returning a set of ServiceEndpoints.
+func ParseFlag(serviceEndpoints string) error {
+	if serviceEndpoints == "" {
+		return nil
+	}
+
+	signingRegionConfigs := strings.Split(serviceEndpoints, ";")
+	for _, regionConfig := range signingRegionConfigs {
+		components := strings.SplitN(regionConfig, ":", 2)
+		if len(components) != 2 {
+			return errServiceEndpointSigningRegion
+		}
+		signingRegion := components[0]
+		servicePairs := strings.Split(components[1], ",")
+		for _, servicePair := range servicePairs {
+			kv := strings.Split(servicePair, "=")
+			if len(kv) != 2 {
+				return errServiceEndpointFormat
+			}
+			var serviceID = kv[0]
+			if _, ok := ServiceEndpointsMap[serviceID]; ok {
+				return errServiceEndpointDuplicateServiceID
+			}
+
+			URL, err := url.ParseRequestURI(kv[1])
+			if err != nil {
+				return errServiceEndpointURL
+			}
+			ServiceEndpointsMap[serviceID] = ServiceEndpoint{
+				ServiceID:     serviceID,
+				URL:           URL.String(),
+				SigningRegion: signingRegion,
+			}
+		}
+	}
+	return nil
+}
+
+// Custom EndpointResolverV2 ResolveEndpoint handlers
+
+// MultiServiceEndpointResolver implements EndpointResolverV2 interface for services
+type MultiServiceEndpointResolver struct {
+	endpoints map[string]ServiceEndpoint
+}
+
+// NewMultiServiceEndpointResolver returns new MultiServiceEndpointResolver
+func NewMultiServiceEndpointResolver() *MultiServiceEndpointResolver {
+	return &MultiServiceEndpointResolver{
+		endpoints: ServiceEndpointsMap,
+	}
+}
+
+// S3EndpointResolver implements EndpointResolverV2 interface for S3
+type S3EndpointResolver struct {
+	*MultiServiceEndpointResolver
+}
+
+// ResolveEndpoint for S3
+func (s *S3EndpointResolver) ResolveEndpoint(ctx context.Context, params s3.EndpointParameters) (smithyendpoints.Endpoint, error) {
+	// If custom endpoint not found, return default endpoint for the service
+	if _, ok := s.endpoints[s3.ServiceID]; !ok {
+		return s3.NewDefaultEndpointResolverV2().ResolveEndpoint(ctx, params)
+	}
+
+	endpoint := ServiceEndpointsMap[s3.ServiceID]
+	params.Endpoint = &endpoint.URL
+	params.Region = &endpoint.SigningRegion
+	return s3.NewDefaultEndpointResolverV2().ResolveEndpoint(ctx, params)
+}
diff --git a/pkg/cloud/scope/clients.go b/pkg/cloud/scope/clients.go
@@ -18,7 +18,6 @@ package scope
 
 import (
 	"context"
-	"errors"
 	"fmt"
 
 	awsv2middleware "github.com/aws/aws-sdk-go-v2/aws/middleware"
@@ -53,9 +52,11 @@ import (
 	"github.com/aws/smithy-go"
 	"github.com/aws/smithy-go/middleware"
 	smithyhttp "github.com/aws/smithy-go/transport/http"
+	"github.com/pkg/errors"
 	"k8s.io/apimachinery/pkg/runtime"
 
 	"sigs.k8s.io/cluster-api-provider-aws/v2/pkg/cloud"
+	"sigs.k8s.io/cluster-api-provider-aws/v2/pkg/cloud/endpointsv2"
 	awslogs "sigs.k8s.io/cluster-api-provider-aws/v2/pkg/cloud/logs"
 	awsmetrics "sigs.k8s.io/cluster-api-provider-aws/v2/pkg/cloud/metrics"
 	"sigs.k8s.io/cluster-api-provider-aws/v2/pkg/logger"
@@ -208,14 +209,16 @@ func NewSSMClient(scopeUser cloud.ScopeUsage, session cloud.Session, logger logg
 
 // NewS3Client creates a new S3 API client for a given session.
 func NewS3Client(scopeUser cloud.ScopeUsage, session cloud.Session, logger logger.Wrapper, target runtime.Object) *s3.Client {
-	// TODO: Implement EndpointResolverV2 for Service Endpoints
 	cfg := session.SessionV2()
+	multiSvcEndpointResolver := endpointsv2.NewMultiServiceEndpointResolver()
+	s3EndpointResolver := &endpointsv2.S3EndpointResolver{
+		MultiServiceEndpointResolver: multiSvcEndpointResolver,
+	}
 	s3Opts := []func(*s3.Options){
 		func(o *s3.Options) {
 			o.Logger = logger.GetAWSLogger()
-		},
-		func(o *s3.Options) {
 			o.ClientLogMode = awslogs.GetAWSLogLevelV2(logger.GetLogger())
+			o.EndpointResolverV2 = s3EndpointResolver
 		},
 		s3.WithAPIOptions(
 			func(stack *middleware.Stack) error {

Original file line number	Diff line number	Diff line change
`@@ -24,6 +24,7 @@ import (`
`24`	`24`
`25`	`25`	`"github.com/aws/aws-sdk-go/aws/endpoints"`
`26`	`26`
	`27`	`+ "sigs.k8s.io/cluster-api-provider-aws/v2/pkg/cloud/endpointsv2"`
`27`	`28`	`"sigs.k8s.io/cluster-api-provider-aws/v2/pkg/cloud/scope"`
`28`	`29`	`)`
`29`	`30`
`@@ -104,6 +105,8 @@ func ParseFlag(serviceEndpoints string) ([]scope.ServiceEndpoint, error) {`
`104`	`105`	`})`
`105`	`106`	`}`
`106`	`107`	`}`
	`108`	`+ // For Go SDK V2 migration`
	`109`	`+ saveToServiceEndpointV2Map(endpoints)`
`107`	`110`
`108`	`111`	`return endpoints, nil`
`109`	`112`	`}`
`@@ -117,3 +120,15 @@ func containsString(slice []string, s string) bool {`
`117`	`120`
`118`	`121`	`return false`
`119`	`122`	`}`
	`123`	`+`
	`124`	`+// TODO: punkwalker - remove this after Go SDK V2 migration`
	`125`	`+func saveToServiceEndpointV2Map(src []scope.ServiceEndpoint) {`
	`126`	`+ for _, svc := range src {`
	`127`	`+ endpoint := endpointsv2.ServiceEndpoint{`
	`128`	`+ ServiceID: svc.ServiceID,`
	`129`	`+ URL: svc.URL,`
	`130`	`+ SigningRegion: svc.SigningRegion,`
	`131`	`+ }`
	`132`	`+ endpointsv2.ServiceEndpointsMap[svc.ServiceID] = endpoint`
	`133`	`+ }`
	`134`	`+}`